last executing test programs: 3m51.67583111s ago: executing program 0 (id=99): r0 = syz_open_dev$dri(&(0x7f0000000480), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0, 0x0, 0x0], &(0x7f0000000200), 0x3, r1}) writev(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f0000000040)="60b4e2a5", 0x4}], 0x1) ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000500)={0x200, 0x1, &(0x7f0000000180)=[r1], &(0x7f0000000200), &(0x7f0000000580)=[r2], 0x0}) 3m51.431856965s ago: executing program 0 (id=103): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_FLUSH(r0, 0x0, 0xd1, &(0x7f0000000000)=0x3, 0x4) ioctl$SIOCGETVIFCNT(r0, 0x89e0, 0x0) 3m51.244203266s ago: executing program 0 (id=106): syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000c80)='./file1\x00', 0x10048, &(0x7f0000000180)=ANY=[], 0x1, 0xc4d, &(0x7f0000001b40)="$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") mkdir(&(0x7f0000000140)='./control\x00', 0x8) rmdir(&(0x7f0000000280)='./control\x00') 3m50.506405289s ago: executing program 0 (id=113): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@nogrpid}, {@jqfmt_vfsv0}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@debug}, {@nombcache}, {@quota}, {@nolazytime}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") creat(&(0x7f0000000040)='./bus\x00', 0x122dfb579e447c7a) r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x101042, 0x91) pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c) mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000200)='./bus\x00', 0x0, 0x1000, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x3, 0x0, 0x0, 0x4, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000007700000c00002000", "036c47c678082004cb59d654cb9b1b165263bdbcef549ba197fce47ddfdd753abd950100172a00ffffff00f7ffffff000000f3e7f20000000200000000000600", "b7326736181c208220fffff2ff00000000000000000e00", [0x4]}) 3m49.917240903s ago: executing program 0 (id=120): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x4361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0x0, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_NAT={0x8, 0xb, 0x1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890) sendto$packet(0xffffffffffffffff, &(0x7f0000000240)="800000800000210ee7decd7a0000", 0xe, 0x40, &(0x7f00000001c0)={0x11, 0x8100, r3, 0x1, 0xd8, 0x6, @broadcast}, 0x14) 3m49.206668025s ago: executing program 0 (id=128): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x8001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)={0x1, 0x0, [{0x10, 0x0, 0xffffffffffffffff}]}) 3m48.850382596s ago: executing program 32 (id=128): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x8001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)={0x1, 0x0, [{0x10, 0x0, 0xffffffffffffffff}]}) 3m37.31720857s ago: executing program 1 (id=193): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100}) r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x20400) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x8166, 0x7}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000200)={0x200, 0x1fb, 0xc38}) r4 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000340)={0x8, 0x8169, 0x6}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f00000001c0)={0x7, 0x1, 0x7}) close_range(r0, 0xffffffffffffffff, 0x0) 3m36.938547942s ago: executing program 1 (id=195): capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x105, 0x0, &(0x7f0000000cc0)="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", 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffff6}, 0x50) r0 = syz_open_dev$sg(&(0x7f0000000140), 0x6f5e, 0x2) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85) 3m36.697055336s ago: executing program 1 (id=196): syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0) close(r0) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x12) listen(r1, 0x787) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000200), 0x2a10413, &(0x7f0000000780)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 3m35.541242354s ago: executing program 1 (id=204): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@nogrpid}, {@jqfmt_vfsv0}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@debug}, {@nombcache}, {@quota}, {@nolazytime}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") creat(&(0x7f0000000040)='./bus\x00', 0x122dfb579e447c7a) mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000200)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x3, 0x0, 0x0, 0x4, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000007700000c00002000", "036c47c678082004cb59d654cb9b1b165263bdbcef549ba197fce47ddfdd753abd950100172a00ffffff00f7ffffff000000f3e7f20000000200000000000600", "b7326736181c208220fffff2ff00000000000000000e00", [0x4]}) unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0) 3m34.612069238s ago: executing program 1 (id=209): openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sysvipc/shm\x00', 0x0, 0x0) r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000040)={'filter\x00', 0x104, 0x4, 0x3b0, 0x1ec, 0x1ec, 0x2d0, 0x2d0, 0x2d0, 0x2d0, 0x4, 0x0, {[{{@arp={@empty, @remote, 0x0, 0xffffff00, 0x3, 0x6, {@empty, {[0xff, 0x0, 0x0, 0x0, 0xff, 0xff]}}, {@mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x25}, {[0xff]}}, 0x9, 0x2, 0x81, 0xfffc, 0xbd, 0x5, 'veth0_vlan\x00', 'caif0\x00', {}, {}, 0x0, 0x4}, 0xbc, 0xe0}, @unspec=@NFQUEUE1={0x24, 'NFQUEUE\x00', 0x1, {0x0, 0x401}}}, {{@arp={@remote, @multicast2, 0x0, 0xffffff00, 0xf, 0x1, {@mac=@multicast, {[0x7f, 0xff, 0x0, 0x0, 0x0, 0xff]}}, {@empty, {[0xff, 0xff, 0xff, 0xff, 0x0, 0xff]}}, 0x1, 0x6, 0x53, 0x1ff, 0x0, 0x7, 'team_slave_0\x00', 'vlan0\x00', {}, {0xff}, 0x0, 0x1}, 0xbc, 0x10c}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="58538100", @multicast2, @multicast1, 0xf, 0x1}}}, {{@uncond, 0xbc, 0xe4}, @unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x7, 0x5, 0x1}}}], {{'\x00', 0xbc, 0xe0}, {0x24}}}}, 0x44d) 3m33.921432358s ago: executing program 1 (id=213): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000900)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r3, {0x8, 0x7}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x10, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x4}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x22044028}, 0x0) 3m33.559431389s ago: executing program 33 (id=213): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000900)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r3, {0x8, 0x7}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x10, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x4}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x22044028}, 0x0) 2.073482249s ago: executing program 5 (id=2466): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000000a140162"], 0x48}, 0x1, 0x0, 0x0, 0x24000000}, 0x20008804) 1.849850732s ago: executing program 5 (id=2472): socket$nl_route(0x10, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x9) openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x282, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x163081, 0x0) r2 = eventfd(0x3) r3 = syz_open_procfs(0x0, &(0x7f0000000100)='sessionid\x00') mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3]) 1.673499032s ago: executing program 6 (id=2474): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = fanotify_init(0x20, 0x8000) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup2(r2, r0) fanotify_mark(r1, 0x201, 0x48000008, r4, 0x0) vmsplice(r3, &(0x7f0000001480)=[{&(0x7f0000001280)="c8", 0x1}], 0x1, 0x9) read(r0, &(0x7f0000000100)=""/140, 0x8c) 1.597710427s ago: executing program 4 (id=2476): unshare(0x20060400) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_buf(r0, 0x107, 0x2, &(0x7f00000003c0)="fdcd05dea041ef4c217c7ab0edb7e58a", 0x4cf7) 1.533917201s ago: executing program 5 (id=2477): r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfe000000000]}, 0x8, 0x800) io_setup(0x7, &(0x7f0000000200)=0x0) io_submit(r1, 0x1, &(0x7f0000000580)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x3, r0, 0x0, 0x0, 0x8, 0x0, 0x2, r0}]) 1.472367174s ago: executing program 6 (id=2479): r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x10000000}) epoll_pwait2(r1, &(0x7f0000000200)=[{}], 0x1, 0x0, 0x0, 0x0) epoll_pwait2(r1, &(0x7f0000000140)=[{}], 0x1, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000040)='\x00', 0x1, 0x20040882, &(0x7f0000000100)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x26}}, 0x10) 1.402004358s ago: executing program 4 (id=2480): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@setlink={0x24, 0x13, 0x1, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, 0x88, 0xa01}, [@IFLA_AF_SPEC={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) 1.209376229s ago: executing program 5 (id=2482): r0 = socket$igmp6(0xa, 0x3, 0x2) sendmmsg$inet6(r0, &(0x7f0000002e80)=[{{&(0x7f0000000000)={0xa, 0x0, 0x663e, @mcast1, 0x6}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='$\x00'], 0x38}}], 0x1, 0x2400c000) 1.2091241s ago: executing program 6 (id=2483): openat(0xffffffffffffff9c, &(0x7f0000001880)='./file0\x00', 0x141040, 0x51) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000180), &(0x7f0000000400)='./file0\x00', 0x10010, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}}, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f00000009c0)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r0, &(0x7f0000002a00)="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", 0x2000, &(0x7f0000007100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x78, 0x0, 0x7, {0x5, 0xc27, 0x0, {0x1000003, 0x8, 0x6, 0x9, 0x8538, 0x129f, 0x1ff, 0x9, 0x80000000, 0x8000, 0x4, r2, r3, 0xb, 0x7ffffffb}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000480)='./file0\x00', 0x0) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x2b, 0x100002e5, 0x40100080, 0x7, 0x6449, 0x1040, 0xee, 0x0, 0x0, 0x10, 0x4678}}, 0x50) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000040)) 1.193339391s ago: executing program 2 (id=2484): unshare(0x20060400) unshare(0x20060400) mknod$loop(&(0x7f00000000c0)='./file0\x00', 0x1, 0x0) 1.187485481s ago: executing program 4 (id=2485): r0 = msgget(0x0, 0x223) msgsnd(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="01"], 0x2000, 0x2d3e49c85323258d) msgsnd(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000000000000282d83e61a4217bd681fa4538e762ed720cc2cd662750218762fb03c0bdcb024074983f47fa521da335b1a36abcd0359dbb84a74c4c4a4c20a12f9880d9e900e574ff9c8723ea73cffbdd8d9b866fe182f9c2e546ef96f2e18a3f2cbcb48e4c446c2680b36fed1251924342703b389a0edd77f7306c00919f38f3308426d8f2c45d5af671dda8dd80e7e38e2f15ef7194e05d0e597fa3a1b00c2fe32079e7e8415e3fa0f547c192fc8e87710d34a51b214bd14ef14c1ebd182af7f34f6d4ba9aabb161063e4923dd84e37982bfcc2b001242e770b83008bd0196a8cb42dbb225aa0dcf8eb527ac66792897283d71081220f948b0d7a1307af21424294a2532f10272307223579b65023857afd95076631036ca75d607a9f563a0699fb93f7b8b43a198e8c469f6b8e3f0f986ee2d09e8fa0022ab224f3e2687c72946d5d194c4abeb497429fe8a05ae239d0f4998d4f92182bdba502ebdd8f32788b8598234b0ae9f96c5341dc1b18d6f199ee78acd356e33e7d9c20703ce45d221e48e0757be35827868380245e756d0892692ef57fb30e090826d94ea41a25386b8a3af5a6e3a0d8d538873dd557aa7117711c5a75d8626914e5c452d5e031c8c892b607fba85af831c1e1b3083cc3890bf332d217787acbfe77a5c3d93b70dc72d3183be2376f5752234f6deef90593952d8d49e5f831a21c5770ec4cd64198dce71736d8d1d9e8762f42831a838eb7f330ec08c537040fbe1c6c511fa15db1fc757a7f4de226ceefa7ec7f47282af85f573cbcb8baef08a1fbcc2207b694d325a12bffa3d8464d74c8bc4656a5957f155d2cef128f274a115c012af79fb8a71568626ccfd26a468d8fd67eb26f7977b162e8859547ddb75f83a363637e03dac257a98afd47ff128677ee4e237295f09ccb29161327780f63d2dddc450fa4f5896c522feaf4b29a902c115d0eafe7a2d3e1fa1c78a0b6962fc4cf7a2f6f96c72dcc0f58aed20ee32c74c2e6b478237438f3db5006d9104238add273423120041d32dc259664d3614ddc107354c11f0efb98b299c0c2946da0d1d6e12deb28e8b41f15659b3437d2a7641913d8db5dc2a6019c325814b328d9c23dffab357b7207508c85a3704d2463a2be9a296de8f5edf9483a8072109dca62a8785f5092b7ac8d025f076987d7f4046682999a4017670cc1bd11b37cc15afeebc3f577e7d813c7b05c0f49a22e7c46d5b78b2b1523a4ba7fc8add33f1193edfa65c4fc661373556aa149df516c43a6131ef1927d9c49a528480aad4a29d4ab6bc0a69fe53a5de9d46550d1ec1f4203bb7e27273985fa22f9a1b203109e4f9317feec312873387c153527629a12f97190da82f65130a5a678d2bf92108c8f4cf50fcb01aa31cd197947336f00a6d5c8c230f8af39c26d3c385be8947ddb98171ac48d7a098a89368e698d71ab6996281fbc48d85c3069d0798b4dfdad5cb87bb6fef40a9416655c1997dab31ce4fabb75462c7ece87753a32940e1e4c3b9c096687d5aa3a6bc906252a61efc962c109d0977154f437e529d6e857390ba42f64e0b358db331d0e8e33aa9efb9bf2e09d71f657842fdb18ffd085830349503ad8a7f568d8ed11a91f39bdaad4921ec9806d418dffe4c56aa002135c28e803680fc81ac58675a33d7594dc1040eabef280f1c2764c1f0a978ad8e6e4781c0d6b533eb31ddfde5efe5c9fc9742c49ae1e1601da5e65b8d9e610f1ba8d0519e9a6acd4f45886d113885f21761abeb4a6f46d8b187260f246fce63f8c7ebb6e6479a3950730ada4c32ecf6c13409b3f0e07b9741964652cdd7c8353070a3417db2e55a23f1bef9f8a0c6929286d4ce0c9d18b527b67278edd1a30ac2070faf54582cd3ec7875c72ebba416fd908e18f8a07bc7ccb58f4a925f48b9ff5fcf65d6a4497fafe729a4db846fa9f622c9f1bb3084888c99ea6add92eaac09bcf422475b52e8d2d3bc2f6373b95757405c027bd02e972c15341cecb0ae159ba3fbb626c816208bca210a781427d0f097ce3f0dc07de8251b515adeca00f32b68f9d1245adde54e73a6e2422d247d6d82096a68844411ab9de330373096e154d9ca34ded8c188bd6d6b4892c3f40c23b89ee615d8fc9bbc696c6231ac8b0973c1354d88942603e31b8679b5020d14b806e5acab0782521cc3e7a239ee618612e1651297ea12fa8505a9ce8554981c88a699457014ccf3025256d104520754be8ba8dc96016c68b2d7d01594be69377ef8f7191cb1e550e3766c11ee017e"], 0xe8a, 0x0) msgrcv(r0, 0x0, 0x0, 0x1, 0x3000) msgctl$IPC_RMID(0x0, 0x0) 1.041504959s ago: executing program 5 (id=2486): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x3, @private0, 0x3ff}, 0x1c) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, 0x0) 1.039563389s ago: executing program 3 (id=2487): r0 = syz_clone(0x180, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x44) r1 = io_uring_setup(0x4ba6, &(0x7f0000001e00)={0x0, 0xf18b, 0x2, 0x1, 0x1eb}) mmap$IORING_OFF_CQ_RING(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x100000c, 0x31, 0xffffffffffffffff, 0x8000000) io_uring_enter(r1, 0x7390, 0x9d07, 0x3, &(0x7f0000001e80)={[0x400]}, 0x8) 1.02070726s ago: executing program 2 (id=2488): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@newlink={0x44, 0x10, 0x701, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x0, 0x60181}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_LACP_RATE={0x5}, @IFLA_BOND_MODE={0x5, 0x1, 0x2}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20008000}, 0x40040d0) 900.770478ms ago: executing program 2 (id=2489): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = fanotify_init(0x20, 0x8000) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup2(r2, r0) fanotify_mark(r1, 0x201, 0x48000008, r4, 0x0) vmsplice(r3, &(0x7f0000001480)=[{&(0x7f0000001280)="c8", 0x1}], 0x1, 0x9) read(r0, &(0x7f0000000100)=""/140, 0x8c) 781.419524ms ago: executing program 4 (id=2490): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e62, 0x8, @loopback, 0x2}, 0x1c) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps_rollup\x00') read$FUSE(r2, &(0x7f0000000040)={0x2020}, 0x2020) openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="540000001200"], 0x54}, 0x1, 0x0, 0x0, 0x10}, 0x8000) 759.603376ms ago: executing program 2 (id=2491): syz_mount_image$fuse(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x11cc8a8, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x840, 0x0) syz_mount_image$fuse(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x31d2462, &(0x7f0000000400)=ANY=[], 0x1, 0x0, 0x0) symlink(&(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000140)='./file0\x00') creat(&(0x7f0000000240)='./file0\x00', 0x44) 694.59536ms ago: executing program 4 (id=2492): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\r'], 0x50) 611.249964ms ago: executing program 3 (id=2493): mmap$IORING_OFF_CQ_RING(&(0x7f0000ff1000/0xf000)=nil, 0xf000, 0x100000f, 0x31, 0xffffffffffffffff, 0x8000000) madvise(&(0x7f0000ffb000/0x5000)=nil, 0x5000, 0x65) r0 = userfaultfd(0x80801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x80}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ff9000/0x4000)=nil, 0x4000}, 0x3}) ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, &(0x7f0000000000)={{&(0x7f0000ff9000/0x4000)=nil, 0x4000}, 0x1}) 565.543367ms ago: executing program 2 (id=2494): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x6, 0x10, 0x4, 0x7fff0000}]}) r0 = syz_clone(0x180, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) 559.114508ms ago: executing program 4 (id=2495): socket$nl_rdma(0x10, 0x3, 0x14) r0 = socket$inet_tcp(0x2, 0x1, 0x0) socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x7040, 0x0) select(0x40, &(0x7f0000000000)={0x2, 0xffffffffffffffff, 0xf3, 0x8, 0x4, 0x40000000000005, 0x0, 0xffffffffffffffff}, 0x0, &(0x7f0000000100)={0x3d, 0x392, 0x100, 0x1, 0x8000000000000001, 0x806, 0x4, 0xfffffffffffffffc}, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @empty}, 0x10) 459.927154ms ago: executing program 3 (id=2496): r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ipvlan0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000000)={r2, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10) 357.310969ms ago: executing program 2 (id=2497): r0 = inotify_init() mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r1, &(0x7f00000000c0)={0x50, 0x0, r2, {0x7, 0x1f, 0xa, 0x40010, 0x2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88}}, 0x50) syz_fuse_handle_req(r1, &(0x7f0000006380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea21056000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000efff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ca8e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20, 0x0, 0x7ff, {0x0, 0x7f69ff17f1e1ab77}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = openat(0xffffffffffffff9c, 0x0, 0x2c41, 0x0) flock(r3, 0x5) close_range(r0, 0xffffffffffffffff, 0x0) 324.079791ms ago: executing program 3 (id=2498): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000010729bd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="058200008101060008000400fa0600001800128008000100736974000c0002"], 0x40}, 0x1, 0x0, 0x0, 0x58895}, 0x4040800) 255.703776ms ago: executing program 6 (id=2499): syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000002440)='./file0\x00', 0x800, &(0x7f00000003c0)=ANY=[], 0x1, 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x1000000, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x8800, &(0x7f0000000640)={0x81, 0x6}, 0x20) 216.590858ms ago: executing program 3 (id=2500): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x2400c0e5, &(0x7f0000000380)={0xa, 0x4e21, 0x80000000, @ipv4={'\x00', '\xff\xff', @local}, 0x4}, 0x1c) select(0x40, &(0x7f0000000540)={0x9, 0x9, 0x26, 0x3ff, 0x4, 0x1, 0x101, 0xffffffff913d24e0}, 0x0, 0x0, 0x0) 121.394323ms ago: executing program 5 (id=2501): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000040)=@fragment={0x33, 0x0, 0xa, 0x0, 0x0, 0x2, 0x66}, 0x8) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x1000007, @empty, 0xfffd}, 0x1c) setsockopt$inet6_opts(r0, 0x29, 0x37, 0x0, 0x0) 121.223503ms ago: executing program 6 (id=2502): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e62, 0x8, @loopback, 0x2}, 0x1c) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps_rollup\x00') read$FUSE(r2, &(0x7f0000000040)={0x2020}, 0x2020) openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="540000001200"], 0x54}, 0x1, 0x0, 0x0, 0x10}, 0x8000) 95.84µs ago: executing program 6 (id=2503): r0 = syz_clone(0x180, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x44) r1 = io_uring_setup(0x4ba6, &(0x7f0000001e00)={0x0, 0xf18b, 0x2, 0x1, 0x1eb}) mmap$IORING_OFF_CQ_RING(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x100000c, 0x31, 0xffffffffffffffff, 0x8000000) io_uring_enter(r1, 0x7390, 0x9d07, 0x3, &(0x7f0000001e80)={[0x400]}, 0x8) 0s ago: executing program 3 (id=2504): mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xc, 0x31, 0xffffffffffffffff, 0x8000000) remap_file_pages(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0xe459, 0x1) remap_file_pages(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xe45a, 0x0) kernel console output (not intermixed with test programs): : I2c Bus Busy Wait 00 [ 138.705328][ T4338] gspca_vc032x: I2c Bus Busy Wait 00 [ 138.758779][ T4338] gspca_vc032x: I2c Bus Busy Wait 00 [ 138.765316][ T4338] gspca_vc032x: I2c Bus Busy Wait 00 [ 138.791320][ T4338] gspca_vc032x: I2c Bus Busy Wait 00 [ 138.798893][ T4338] gspca_vc032x: I2c Bus Busy Wait 00 [ 138.809034][ T4338] gspca_vc032x: Unknown sensor... [ 138.819154][ T4338] vc032x: probe of 3-1:0.0 failed with error -22 [ 138.842479][ T4338] usb 3-1: USB disconnect, device number 8 [ 139.278477][ T6116] program syz.5.474 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 139.901544][ T6133] loop2: detected capacity change from 0 to 32768 [ 139.927670][ T6133] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 14 [ 139.975147][ T4431] I/O error, dev loop2, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 140.191094][ T6133] loop2: detected capacity change from 0 to 256 [ 140.195361][ T4431] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 140.198109][ T6133] exfat: Unknown parameter 'վ.ks$:/T [VAՉ8lƑlISDsƵ}mH{fWBn}' [ 140.290131][ T6147] netlink: 8 bytes leftover after parsing attributes in process `syz.3.483'. [ 140.624718][ T6158] netlink: 64 bytes leftover after parsing attributes in process `syz.5.486'. [ 140.836651][ T6162] program syz.3.488 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 140.851377][ T6063] usb 5-1: USB disconnect, device number 11 [ 141.352088][ T6185] overlayfs: failed to resolve './file2': -2 [ 141.648947][ T6189] loop4: detected capacity change from 0 to 32768 [ 141.658668][ T6189] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 14 [ 142.120615][ T6204] netlink: 64 bytes leftover after parsing attributes in process `syz.4.501'. [ 142.150333][ T4431] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 14 [ 142.180374][ T6206] netlink: 8 bytes leftover after parsing attributes in process `syz.2.500'. [ 142.287993][ T6211] program syz.3.504 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 142.488772][ T6063] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 142.701689][ T6063] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 142.713241][ T6224] overlayfs: failed to resolve './file2': -2 [ 142.732253][ T6063] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 142.755614][ T26] audit: type=1326 audit(1770557536.016:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 142.800423][ T6063] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253 [ 142.837261][ T26] audit: type=1326 audit(1770557536.036:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 142.867131][ T6063] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 142.914035][ T6063] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 142.954850][ T6063] usb 7-1: Manufacturer: syz [ 142.977009][ T26] audit: type=1326 audit(1770557536.036:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 143.006719][ T6063] usb 7-1: config 0 descriptor?? [ 143.035492][ T6063] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 143.066838][ T26] audit: type=1326 audit(1770557536.036:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 143.146960][ T26] audit: type=1326 audit(1770557536.036:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 143.227022][ T26] audit: type=1326 audit(1770557536.036:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 143.315797][ T26] audit: type=1326 audit(1770557536.036:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 143.392927][ T26] audit: type=1326 audit(1770557536.036:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 143.396161][ T6243] netlink: 4 bytes leftover after parsing attributes in process `syz.3.513'. [ 143.435244][ T6245] overlayfs: failed to resolve './file2': -2 [ 143.457879][ T26] audit: type=1326 audit(1770557536.036:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 143.537907][ T26] audit: type=1326 audit(1770557536.036:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6227 comm="syz.2.511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 144.121612][ T6270] netlink: 64 bytes leftover after parsing attributes in process `syz.3.518'. [ 144.130835][ T6259] loop5: detected capacity change from 0 to 32768 [ 144.148939][ T6259] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 14 [ 144.665639][ T4431] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 14 [ 144.744813][ T6282] netlink: 8 bytes leftover after parsing attributes in process `syz.5.521'. [ 145.335402][ T6059] usb 7-1: USB disconnect, device number 5 [ 145.761242][ T6318] netlink: 64 bytes leftover after parsing attributes in process `syz.2.534'. [ 146.538727][ T14] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 146.664643][ T6356] netlink: 8 bytes leftover after parsing attributes in process `syz.4.543'. [ 146.761533][ T14] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 146.799685][ T14] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253 [ 146.860383][ T14] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 146.914415][ T14] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 146.948937][ T14] usb 7-1: Manufacturer: syz [ 146.976085][ T14] usb 7-1: config 0 descriptor?? [ 147.007254][ T14] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 147.269891][ T6376] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 147.299569][ T6380] input: syz1 as /devices/virtual/input/input7 [ 147.306354][ T6380] input: failed to attach handler leds to device input7, error: -6 [ 147.357857][ T4431] udevd[4431]: setting mode of /dev/input/event4 to 020660 failed: No such file or directory [ 147.396471][ T4431] udevd[4431]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory [ 147.830253][ T6398] loop2: detected capacity change from 0 to 1024 [ 147.868661][ T6063] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 148.070680][ T6063] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 148.087376][ T6063] usb 5-1: config 0 has no interface number 0 [ 148.105074][ T6063] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 148.126868][ T6063] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 148.155169][ T6063] usb 5-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 148.176978][ T6063] usb 5-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00 [ 148.191333][ T6063] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 148.224635][ T6063] usb 5-1: config 0 descriptor?? [ 148.287947][ T6398] EXT4-fs: Ignoring removed i_version option [ 148.298753][ T6398] EXT4-fs: inline encryption not supported [ 148.312947][ T6398] EXT4-fs (loop2): Test dummy encryption mode enabled [ 148.407817][ T6398] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 148.718824][ T4338] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 148.854143][ T4279] Bluetooth: hci3: unexpected event 0x2f length: 509 > 260 [ 148.857543][ T6063] input: HID 28bd:0042 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.1/0003:28BD:0042.0002/input/input8 [ 148.908960][ T4338] usb 3-1: Using ep0 maxpacket: 16 [ 148.921962][ T4338] usb 3-1: New USB device found, idVendor=054c, idProduct=002e, bcdDevice= 5.00 [ 148.948647][ T4338] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 148.956775][ T4338] usb 3-1: Product: syz [ 148.966109][ T6063] uclogic 0003:28BD:0042.0002: input,hidraw0: USB HID v0.00 Keypad [HID 28bd:0042] on usb-dummy_hcd.4-1/input1 [ 148.968967][ T4338] usb 3-1: Manufacturer: syz [ 149.021968][ T4338] usb 3-1: SerialNumber: syz [ 149.026257][ T6063] usb 5-1: USB disconnect, device number 12 [ 149.038941][ T4324] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 149.079867][ T4338] usb 3-1: config 0 descriptor?? [ 149.237703][ T6440] fido_id[6440]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 149.267323][ T4324] usb 6-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a [ 149.293831][ T4338] usb-storage 3-1:0.0: USB Mass Storage device detected [ 149.309165][ T4324] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 149.325704][ T4338] usb-storage 3-1:0.0: Quirks match for vid 054c pid 002e: 1 [ 149.350065][ T4324] usb 6-1: Product: syz [ 149.354294][ T4324] usb 6-1: Manufacturer: syz [ 149.360061][ T4338] usb-storage 3-1:0.0: This device (054c,002e,0500 S 04 P 69) has an unneeded SubClass entry in unusual_devs.h (kernel syzkaller) [ 149.360061][ T4338] Please send a copy of this message to and [ 149.398624][ T4324] usb 6-1: SerialNumber: syz [ 149.410804][ T4324] usb 6-1: config 0 descriptor?? [ 149.429002][ T4309] usb 7-1: USB disconnect, device number 6 [ 149.564670][ T4338] usb 3-1: USB disconnect, device number 9 [ 149.907756][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 150.424720][ T4324] usb 6-1: non-Atmel transceiver xxxx19f5 [ 150.625860][ T4324] usb 6-1: Firmware version (0.0) predates our first public release. [ 150.650891][ T4324] usb 6-1: Please update to version 0.2 or newer [ 150.697973][ T4324] usb 6-1: atusb_probe: initialization failed, error = -19 [ 150.742628][ T4324] usb 6-1: USB disconnect, device number 3 [ 150.928900][ T6063] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 151.105683][ T6498] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 151.160206][ T6063] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 151.178999][ T6063] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253 [ 151.215076][ T6063] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 151.249574][ T6063] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 151.278367][ T6063] usb 5-1: Manufacturer: syz [ 151.329088][ T6063] usb 5-1: config 0 descriptor?? [ 151.356716][ T6063] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 151.644643][ T6521] overlayfs: unrecognized mount option "verity=on" or missing value [ 152.585009][ T6560] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 152.972115][ T6575] loop5: detected capacity change from 0 to 16 [ 153.029724][ T6575] erofs: Unknown parameter './cgroup/syz1' [ 153.048284][ T6578] genirq: Flags mismatch irq 10. 00000000 (pcl812) vs. 00000080 (virtio2) [ 153.817011][ T6063] usb 5-1: USB disconnect, device number 13 [ 153.997554][ T6622] overlayfs: failed to resolve './file2': -2 [ 154.245963][ T6628] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 154.320417][ T6628] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 154.363709][ T6634] loop4: detected capacity change from 0 to 128 [ 154.559609][ T6639] syz.4.615: attempt to access beyond end of device [ 154.559609][ T6639] loop4: rw=34817, sector=102, nr_sectors = 32 limit=128 [ 154.653027][ T6647] loop5: detected capacity change from 0 to 64 [ 155.268780][ T6059] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 155.333391][ T6668] overlayfs: failed to resolve './file2': -2 [ 155.471602][ T6059] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 155.516295][ T6059] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253 [ 155.595436][ T6059] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 155.638010][ T6059] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 155.657211][ T6059] usb 7-1: Manufacturer: syz [ 155.683343][ T6059] usb 7-1: config 0 descriptor?? [ 155.708229][ T6059] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 155.885982][ T6688] overlayfs: failed to resolve './file2': -2 [ 155.960588][ T6694] loop5: detected capacity change from 0 to 128 [ 156.158850][ T6694] syz.5.632: attempt to access beyond end of device [ 156.158850][ T6694] loop5: rw=34817, sector=102, nr_sectors = 32 limit=128 [ 157.457844][ T6755] loop3: detected capacity change from 0 to 128 [ 157.613731][ T6755] syz.3.649: attempt to access beyond end of device [ 157.613731][ T6755] loop3: rw=34817, sector=102, nr_sectors = 32 limit=128 [ 158.095618][ T6062] usb 7-1: USB disconnect, device number 7 [ 158.977972][ T6814] loop2: detected capacity change from 0 to 128 [ 159.438869][ T4338] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 159.638196][ T4338] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 159.664153][ T4338] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 159.713894][ T4338] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 159.740089][ T4338] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 159.750417][ T4338] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 159.759434][ T4338] usb 4-1: Manufacturer: syz [ 159.774502][ T4338] usb 4-1: config 0 descriptor?? [ 159.827444][ T4338] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 160.255380][ T6860] loop6: detected capacity change from 0 to 128 [ 160.277423][ T6860] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 160.345381][ T6860] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 160.597439][ T57] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 160.673681][ T6877] loop4: detected capacity change from 0 to 128 [ 161.938717][ T6062] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 162.130907][ T6062] usb 7-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config [ 162.157994][ T6062] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 162.187343][ T6062] usb 7-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 162.213719][ T6934] loop4: detected capacity change from 0 to 128 [ 162.218616][ T6062] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 162.258100][ T6062] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 162.293557][ T4338] usb 4-1: USB disconnect, device number 14 [ 162.334867][ T6062] usb 7-1: invalid MIDI out EP 0 [ 162.512188][ T6062] snd-usb-audio: probe of 7-1:27.0 failed with error -22 [ 162.559723][ T6062] usb 7-1: USB disconnect, device number 8 [ 162.794891][ T4433] udevd[4433]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 163.265440][ T6967] input: syz0 as /devices/virtual/input/input9 [ 163.658975][ T6059] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 163.850721][ T6059] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 163.880291][ T6059] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 163.909456][ T6059] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 163.935161][ T6059] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 163.978884][ T6059] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 164.020158][ T6059] usb 3-1: Manufacturer: syz [ 164.027396][ T6059] usb 3-1: config 0 descriptor?? [ 164.056952][ T6059] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 164.221112][ T6996] loop4: detected capacity change from 0 to 128 [ 164.343772][ T6998] loop5: detected capacity change from 0 to 512 [ 164.366031][ T6998] EXT4-fs: Ignoring removed bh option [ 164.384026][ T6998] EXT4-fs: Conflicting test_dummy_encryption options [ 165.304897][ T7036] loop3: detected capacity change from 0 to 128 [ 165.597604][ T7047] loop4: detected capacity change from 0 to 256 [ 165.623635][ T7047] exfat: Unknown parameter 'zero_size_dir' [ 165.808469][ T7052] loop3: detected capacity change from 0 to 128 [ 165.915062][ T7056] overlayfs: missing 'lowerdir' [ 166.496426][ T4309] usb 3-1: USB disconnect, device number 10 [ 166.599364][ T7076] loop6: detected capacity change from 0 to 128 [ 166.801009][ T7083] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 166.824625][ T7083] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 166.870719][ T7083] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 167.003147][ T7089] loop2: detected capacity change from 0 to 2048 [ 167.060123][ T7089] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 167.094034][ T7091] overlayfs: missing 'lowerdir' [ 167.127386][ T26] kauditd_printk_skb: 1 callbacks suppressed [ 167.127404][ T26] audit: type=1326 audit(1770557560.386:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7088 comm="syz.2.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 167.244352][ T26] audit: type=1326 audit(1770557560.386:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7088 comm="syz.2.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 167.266893][ C1] vkms_vblank_simulate: vblank timer overrun [ 167.381234][ T26] audit: type=1326 audit(1770557560.456:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7088 comm="syz.2.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 167.497973][ T26] audit: type=1326 audit(1770557560.456:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7088 comm="syz.2.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2739aeb9 code=0x7ffc0000 [ 167.820114][ T6062] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 168.037563][ T7121] loop4: detected capacity change from 0 to 128 [ 168.045910][ T6062] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 168.071670][ T6062] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 168.118320][ T6062] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 168.186486][ T6062] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 168.226386][ T7130] syz.4.762: attempt to access beyond end of device [ 168.226386][ T7130] loop4: rw=2049, sector=129, nr_sectors = 1 limit=128 [ 168.251262][ T6062] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 168.270815][ T6062] usb 7-1: Manufacturer: syz [ 168.276511][ T7130] Buffer I/O error on dev loop4, logical block 129, lost async page write [ 168.330239][ T6062] usb 7-1: config 0 descriptor?? [ 168.335516][ T7130] syz.4.762: attempt to access beyond end of device [ 168.335516][ T7130] loop4: rw=2049, sector=130, nr_sectors = 1 limit=128 [ 168.352833][ T6062] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 168.369907][ T7130] Buffer I/O error on dev loop4, logical block 130, lost async page write [ 168.396484][ T7130] syz.4.762: attempt to access beyond end of device [ 168.396484][ T7130] loop4: rw=2049, sector=131, nr_sectors = 1 limit=128 [ 168.430780][ T7135] overlayfs: missing 'lowerdir' [ 168.449035][ T7130] Buffer I/O error on dev loop4, logical block 131, lost async page write [ 168.475666][ T7130] syz.4.762: attempt to access beyond end of device [ 168.475666][ T7130] loop4: rw=2049, sector=132, nr_sectors = 1 limit=128 [ 168.518422][ T7130] Buffer I/O error on dev loop4, logical block 132, lost async page write [ 168.548334][ T7130] syz.4.762: attempt to access beyond end of device [ 168.548334][ T7130] loop4: rw=2049, sector=133, nr_sectors = 1 limit=128 [ 168.588824][ T7130] Buffer I/O error on dev loop4, logical block 133, lost async page write [ 169.958143][ T7194] overlayfs: missing 'lowerdir' [ 170.076581][ T7197] loop4: detected capacity change from 0 to 128 [ 170.137370][ T7197] syz.4.783: attempt to access beyond end of device [ 170.137370][ T7197] loop4: rw=2049, sector=129, nr_sectors = 1 limit=128 [ 170.178764][ T7197] Buffer I/O error on dev loop4, logical block 129, lost async page write [ 170.204257][ T7197] syz.4.783: attempt to access beyond end of device [ 170.204257][ T7197] loop4: rw=2049, sector=130, nr_sectors = 1 limit=128 [ 170.255619][ T7197] Buffer I/O error on dev loop4, logical block 130, lost async page write [ 170.275173][ T7197] syz.4.783: attempt to access beyond end of device [ 170.275173][ T7197] loop4: rw=2049, sector=131, nr_sectors = 1 limit=128 [ 170.328657][ T7197] Buffer I/O error on dev loop4, logical block 131, lost async page write [ 170.372208][ T7204] 9pnet_virtio: no channels available for device syz [ 170.426073][ T7197] syz.4.783: attempt to access beyond end of device [ 170.426073][ T7197] loop4: rw=2049, sector=132, nr_sectors = 1 limit=128 [ 170.711162][ T7197] Buffer I/O error on dev loop4, logical block 132, lost async page write [ 170.821657][ T7197] syz.4.783: attempt to access beyond end of device [ 170.821657][ T7197] loop4: rw=2049, sector=133, nr_sectors = 1 limit=128 [ 171.031838][ T7197] Buffer I/O error on dev loop4, logical block 133, lost async page write [ 171.118250][ T4309] usb 7-1: USB disconnect, device number 9 [ 171.665210][ T7226] overlayfs: missing 'lowerdir' [ 171.869770][ T7235] loop2: detected capacity change from 0 to 512 [ 171.931006][ T7235] EXT4-fs (loop2): 1 truncate cleaned up [ 171.940876][ T7235] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 172.024744][ T7242] 9pnet_virtio: no channels available for device syz [ 172.213261][ T26] audit: type=1800 audit(1770557565.476:21): pid=7235 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.798" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 172.388783][ T6059] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 172.462888][ T37] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm kworker/u4:2: bg 0: block 465: padding at end of block bitmap is not set [ 172.623974][ T6059] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 172.733866][ T6059] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 172.765367][ T7235] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 20 with error 28 [ 172.790822][ T37] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 172.869263][ T7235] EXT4-fs (loop2): This should not happen!! Data will be lost [ 172.869263][ T7235] [ 172.894215][ T6059] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 172.934554][ T37] EXT4-fs (loop2): This should not happen!! Data will be lost [ 172.934554][ T37] [ 172.993050][ T7235] EXT4-fs (loop2): Total free blocks count 0 [ 173.010666][ T6059] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 173.061231][ T37] EXT4-fs (loop2): Total free blocks count 0 [ 173.086056][ T7235] EXT4-fs (loop2): Free/Dirty block details [ 173.160800][ T37] EXT4-fs (loop2): Free/Dirty block details [ 173.179792][ T7235] EXT4-fs (loop2): free_blocks=0 [ 173.215522][ T6059] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 173.361433][ T6059] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 173.471643][ T6059] usb 6-1: Manufacturer: syz [ 173.574098][ T6059] usb 6-1: config 0 descriptor?? [ 174.078093][ T6059] usbhid 6-1:0.0: can't add hid device: -71 [ 174.105532][ T6059] usbhid: probe of 6-1:0.0 failed with error -71 [ 174.112874][ T7257] loop4: detected capacity change from 0 to 128 [ 174.138826][ T6059] usb 6-1: USB disconnect, device number 4 [ 174.139525][ T7256] device syzkaller0 entered promiscuous mode [ 174.239127][ T7257] syz.4.805: attempt to access beyond end of device [ 174.239127][ T7257] loop4: rw=2049, sector=129, nr_sectors = 1 limit=128 [ 174.262271][ T7257] Buffer I/O error on dev loop4, logical block 129, lost async page write [ 174.271847][ T7257] syz.4.805: attempt to access beyond end of device [ 174.271847][ T7257] loop4: rw=2049, sector=130, nr_sectors = 1 limit=128 [ 174.328337][ T7257] Buffer I/O error on dev loop4, logical block 130, lost async page write [ 174.368029][ T7257] syz.4.805: attempt to access beyond end of device [ 174.368029][ T7257] loop4: rw=2049, sector=131, nr_sectors = 1 limit=128 [ 174.384474][ T7257] Buffer I/O error on dev loop4, logical block 131, lost async page write [ 174.394262][ T7257] syz.4.805: attempt to access beyond end of device [ 174.394262][ T7257] loop4: rw=2049, sector=132, nr_sectors = 1 limit=128 [ 174.448924][ T7257] Buffer I/O error on dev loop4, logical block 132, lost async page write [ 174.463737][ T7257] syz.4.805: attempt to access beyond end of device [ 174.463737][ T7257] loop4: rw=2049, sector=133, nr_sectors = 1 limit=128 [ 174.528802][ T7257] Buffer I/O error on dev loop4, logical block 133, lost async page write [ 174.571175][ T7269] overlayfs: missing 'lowerdir' [ 174.845772][ T7280] 9pnet_virtio: no channels available for device syz [ 175.982123][ T7296] loop4: detected capacity change from 0 to 512 [ 175.983087][ T7294] device syzkaller0 entered promiscuous mode [ 176.063067][ T7296] EXT4-fs (loop4): 1 truncate cleaned up [ 176.102437][ T7296] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 176.208064][ T26] audit: type=1800 audit(1770557569.466:22): pid=7296 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.818" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 176.328753][ T7300] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 465: padding at end of block bitmap is not set [ 176.359585][ T7296] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.818: bg 0: block 465: padding at end of block bitmap is not set [ 176.428750][ T7296] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 117 [ 176.459208][ T7296] EXT4-fs (loop4): This should not happen!! Data will be lost [ 176.459208][ T7296] [ 176.538878][ T4324] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 176.549523][ T7313] loop5: detected capacity change from 0 to 128 [ 176.557350][ T7311] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 176.607417][ T7311] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 176.682956][ T46] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 176.706551][ T46] EXT4-fs (loop4): This should not happen!! Data will be lost [ 176.706551][ T46] [ 176.721544][ T46] EXT4-fs (loop4): Total free blocks count 0 [ 176.739127][ T46] EXT4-fs (loop4): Free/Dirty block details [ 176.740434][ T4324] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 176.748906][ T46] EXT4-fs (loop4): free_blocks=0 [ 176.772630][ T4324] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 176.778599][ T46] EXT4-fs (loop4): dirty_blocks=3 [ 176.794695][ T4324] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 176.797804][ T46] EXT4-fs (loop4): Block reservation details [ 176.885031][ T4324] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 176.929468][ T4324] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 176.950659][ T4324] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 176.965182][ T4324] usb 4-1: Manufacturer: syz [ 176.973024][ T4324] usb 4-1: config 0 descriptor?? [ 177.166479][ T7326] 9pnet_virtio: no channels available for device syz [ 177.377950][ T7328] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 177.526591][ T4324] usbhid 4-1:0.0: can't add hid device: -71 [ 177.565593][ T4324] usbhid: probe of 4-1:0.0 failed with error -71 [ 177.727092][ T4324] usb 4-1: USB disconnect, device number 15 [ 177.807340][ T7328] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 178.369556][ T7342] device syzkaller0 entered promiscuous mode [ 178.730245][ T7360] loop4: detected capacity change from 0 to 128 [ 178.818638][ T7366] loop5: detected capacity change from 0 to 512 [ 178.836912][ T7368] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 178.847904][ T7368] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 178.876889][ T7366] EXT4-fs (loop5): 1 truncate cleaned up [ 178.896607][ T7366] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 178.948072][ T26] audit: type=1800 audit(1770557572.206:23): pid=7366 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.844" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 179.127094][ T7366] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.844: bg 0: block 465: padding at end of block bitmap is not set [ 179.161092][ T7366] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 179.175996][ T7366] EXT4-fs (loop5): This should not happen!! Data will be lost [ 179.175996][ T7366] [ 179.186379][ T7366] EXT4-fs (loop5): Total free blocks count 0 [ 179.193078][ T7366] EXT4-fs (loop5): Free/Dirty block details [ 179.199888][ T7366] EXT4-fs (loop5): free_blocks=0 [ 179.205268][ T7366] EXT4-fs (loop5): dirty_blocks=484 [ 179.211176][ T7366] EXT4-fs (loop5): Block reservation details [ 179.217297][ T7366] EXT4-fs (loop5): i_reserved_data_blocks=484 [ 179.292267][ T9] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 179.378636][ T6061] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 179.517827][ T7387] 9pnet_virtio: no channels available for device syz [ 179.610211][ T6061] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 181.022444][ T6061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 181.034087][ T6061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 181.044296][ T6061] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 181.059886][ T6061] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 181.069291][ T6061] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 181.078714][ T6061] usb 5-1: Manufacturer: syz [ 181.085578][ T6061] usb 5-1: config 0 descriptor?? [ 181.326508][ T7395] device syzkaller0 entered promiscuous mode [ 181.507469][ T6061] usbhid 5-1:0.0: can't add hid device: -71 [ 181.522423][ T6061] usbhid: probe of 5-1:0.0 failed with error -71 [ 181.545405][ T7404] loop3: detected capacity change from 0 to 128 [ 181.555279][ T6061] usb 5-1: USB disconnect, device number 14 [ 181.884208][ T7414] overlayfs: missing 'lowerdir' [ 181.946355][ T7416] loop3: detected capacity change from 0 to 512 [ 181.970273][ T7419] netlink: 36 bytes leftover after parsing attributes in process `syz.5.864'. [ 182.002076][ T7416] EXT4-fs (loop3): 1 truncate cleaned up [ 182.045337][ T7416] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 182.104737][ T26] audit: type=1800 audit(1770557575.366:24): pid=7416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.863" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 182.246456][ T7416] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.863: bg 0: block 465: padding at end of block bitmap is not set [ 182.268689][ T7416] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 182.289822][ T7416] EXT4-fs (loop3): This should not happen!! Data will be lost [ 182.289822][ T7416] [ 182.311882][ T7416] EXT4-fs (loop3): Total free blocks count 0 [ 182.342309][ T7416] EXT4-fs (loop3): Free/Dirty block details [ 182.354670][ T7416] EXT4-fs (loop3): free_blocks=0 [ 182.363799][ T7416] EXT4-fs (loop3): dirty_blocks=484 [ 182.373845][ T7416] EXT4-fs (loop3): Block reservation details [ 182.385395][ T7416] EXT4-fs (loop3): i_reserved_data_blocks=484 [ 182.543502][ T9] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 182.722438][ T7441] device syzkaller0 entered promiscuous mode [ 182.876426][ T7449] overlayfs: missing 'lowerdir' [ 183.037840][ T7453] netlink: 36 bytes leftover after parsing attributes in process `syz.5.878'. [ 183.198982][ T7] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 183.388155][ T7467] loop6: detected capacity change from 0 to 512 [ 183.401018][ T7] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 183.439662][ T7467] EXT4-fs (loop6): 1 truncate cleaned up [ 183.522285][ T7467] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 184.006925][ T26] audit: type=1800 audit(1770557577.266:25): pid=7467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.883" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 184.259541][ T7] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 184.271989][ T7] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 184.283024][ T7] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 184.309634][ T7] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 184.320456][ T7] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 184.328879][ T7] usb 5-1: Manufacturer: syz [ 184.337541][ T7] usb 5-1: config 0 descriptor?? [ 184.374695][ T7467] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.883: bg 0: block 465: padding at end of block bitmap is not set [ 184.407335][ T7467] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 348 with error 28 [ 184.444514][ T7467] EXT4-fs (loop6): This should not happen!! Data will be lost [ 184.444514][ T7467] [ 184.454697][ T7467] EXT4-fs (loop6): Total free blocks count 0 [ 184.461702][ T7467] EXT4-fs (loop6): Free/Dirty block details [ 184.477968][ T7467] EXT4-fs (loop6): free_blocks=0 [ 184.483675][ T7467] EXT4-fs (loop6): dirty_blocks=349 [ 184.490389][ T7467] EXT4-fs (loop6): Block reservation details [ 184.501616][ T7467] EXT4-fs (loop6): i_reserved_data_blocks=349 [ 184.667508][ T4467] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 184.738265][ T7485] device syzkaller0 entered promiscuous mode [ 184.756098][ T7] usbhid 5-1:0.0: can't add hid device: -71 [ 184.773780][ T7] usbhid: probe of 5-1:0.0 failed with error -71 [ 184.821338][ T7] usb 5-1: USB disconnect, device number 15 [ 184.890943][ T7490] overlayfs: missing 'lowerdir' [ 184.920250][ T7492] netlink: 36 bytes leftover after parsing attributes in process `syz.5.894'. [ 185.145612][ T7500] netlink: 12 bytes leftover after parsing attributes in process `syz.5.898'. [ 186.401505][ T7517] loop4: detected capacity change from 0 to 512 [ 186.443613][ T7517] EXT4-fs (loop4): 1 truncate cleaned up [ 186.459557][ T7517] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 186.477148][ T26] audit: type=1800 audit(1770557579.736:26): pid=7517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.904" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 186.560042][ T7523] device syzkaller0 entered promiscuous mode [ 186.668096][ T7517] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.904: bg 0: block 465: padding at end of block bitmap is not set [ 186.686032][ T7525] netlink: 8 bytes leftover after parsing attributes in process `syz.6.905'. [ 186.732443][ T7517] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 186.779059][ T7517] EXT4-fs (loop4): This should not happen!! Data will be lost [ 186.779059][ T7517] [ 186.884921][ T7527] overlayfs: missing 'workdir' [ 186.888656][ T7517] EXT4-fs (loop4): Total free blocks count 0 [ 186.896411][ T7517] EXT4-fs (loop4): Free/Dirty block details [ 186.937435][ T7531] netlink: 8 bytes leftover after parsing attributes in process `syz.5.909'. [ 186.940304][ T7517] EXT4-fs (loop4): free_blocks=0 [ 186.961211][ T7517] EXT4-fs (loop4): dirty_blocks=484 [ 186.966745][ T7517] EXT4-fs (loop4): Block reservation details [ 186.978461][ T7517] EXT4-fs (loop4): i_reserved_data_blocks=484 [ 187.128036][ T57] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 187.234004][ T7539] netlink: 12 bytes leftover after parsing attributes in process `syz.3.913'. [ 187.438733][ T7] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 187.602878][ T7555] device syzkaller0 entered promiscuous mode [ 187.670038][ T7] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 187.737924][ T7] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 187.783660][ T7] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 187.830181][ T7] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 187.937596][ T7] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 188.009362][ T7] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 188.059223][ T7] usb 7-1: Manufacturer: syz [ 188.162061][ T7] usb 7-1: config 0 descriptor?? [ 188.712913][ T7562] netlink: 8 bytes leftover after parsing attributes in process `syz.2.921'. [ 188.749427][ T7] usbhid 7-1:0.0: can't add hid device: -71 [ 188.755636][ T7] usbhid: probe of 7-1:0.0 failed with error -71 [ 188.809926][ T7564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.922'. [ 188.869067][ T7] usb 7-1: USB disconnect, device number 10 [ 188.873538][ T7566] loop3: detected capacity change from 0 to 128 [ 189.009567][ T7569] netlink: 112 bytes leftover after parsing attributes in process `syz.5.923'. [ 189.044926][ T7570] overlayfs: missing 'workdir' [ 189.182919][ T7575] loop3: detected capacity change from 0 to 512 [ 189.237292][ T7578] netlink: 12 bytes leftover after parsing attributes in process `syz.5.928'. [ 189.265068][ T7575] EXT4-fs (loop3): 1 truncate cleaned up [ 189.304411][ T7575] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 189.327950][ T26] audit: type=1800 audit(1770557582.586:27): pid=7575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.927" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 189.349630][ T7575] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.927: bg 0: block 465: padding at end of block bitmap is not set [ 189.350424][ T7575] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 189.379515][ T7575] EXT4-fs (loop3): This should not happen!! Data will be lost [ 189.379515][ T7575] [ 189.389608][ T7575] EXT4-fs (loop3): Total free blocks count 0 [ 189.395700][ T7575] EXT4-fs (loop3): Free/Dirty block details [ 189.401958][ T7575] EXT4-fs (loop3): free_blocks=0 [ 189.407098][ T7575] EXT4-fs (loop3): dirty_blocks=484 [ 189.412617][ T7575] EXT4-fs (loop3): Block reservation details [ 189.419301][ T7575] EXT4-fs (loop3): i_reserved_data_blocks=484 [ 189.598187][ T57] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 189.656762][ T7592] netlink: 8 bytes leftover after parsing attributes in process `syz.2.933'. [ 189.889520][ T7595] device syzkaller0 entered promiscuous mode [ 190.343620][ T7602] netlink: 8 bytes leftover after parsing attributes in process `syz.5.936'. [ 190.940338][ T7607] loop4: detected capacity change from 0 to 128 [ 191.034811][ T7611] overlayfs: missing 'workdir' [ 191.093227][ T7613] netlink: 112 bytes leftover after parsing attributes in process `syz.2.941'. [ 191.278676][ T6062] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 191.358681][ T4283] Bluetooth: hci4: command 0x0406 tx timeout [ 191.365048][ T4283] Bluetooth: hci0: command 0x0406 tx timeout [ 191.372781][ T4279] Bluetooth: hci3: command 0x0406 tx timeout [ 191.406599][ T7621] loop6: detected capacity change from 0 to 512 [ 191.500467][ T6062] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 191.513877][ T7621] EXT4-fs (loop6): 1 truncate cleaned up [ 191.525173][ T6062] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 191.558582][ T7621] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 191.573462][ T26] audit: type=1800 audit(1770557584.836:28): pid=7621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.945" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 191.618705][ T6062] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 191.643521][ T6062] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 191.690037][ T7621] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.945: bg 0: block 465: padding at end of block bitmap is not set [ 191.708891][ T6062] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 191.718262][ T6062] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 191.780131][ T7621] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 191.823133][ T7621] EXT4-fs (loop6): This should not happen!! Data will be lost [ 191.823133][ T7621] [ 191.839252][ T6062] usb 4-1: Manufacturer: syz [ 191.861420][ T7621] EXT4-fs (loop6): Total free blocks count 0 [ 191.867482][ T7621] EXT4-fs (loop6): Free/Dirty block details [ 191.884863][ T6062] usb 4-1: config 0 descriptor?? [ 191.938777][ T7621] EXT4-fs (loop6): free_blocks=0 [ 191.949198][ T7621] EXT4-fs (loop6): dirty_blocks=484 [ 191.954635][ T7621] EXT4-fs (loop6): Block reservation details [ 191.983888][ T7621] EXT4-fs (loop6): i_reserved_data_blocks=484 [ 192.124091][ T7639] device syzkaller0 entered promiscuous mode [ 192.133810][ T9] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 192.139990][ T7640] netlink: 8 bytes leftover after parsing attributes in process `syz.4.950'. [ 192.276584][ T7642] netlink: 112 bytes leftover after parsing attributes in process `syz.4.953'. [ 192.329461][ C1] raw-gadget.0 gadget.3: ignoring, device is not running [ 192.337237][ T6062] usbhid 4-1:0.0: can't add hid device: -32 [ 192.344941][ T6062] usbhid: probe of 4-1:0.0 failed with error -32 [ 192.374675][ T6062] usb 4-1: USB disconnect, device number 16 [ 192.545693][ T7649] loop2: detected capacity change from 0 to 128 [ 192.906030][ T7662] netlink: 100 bytes leftover after parsing attributes in process `syz.5.969'. [ 194.010466][ T7670] netlink: 8 bytes leftover after parsing attributes in process `syz.6.964'. [ 194.087472][ T7677] device syzkaller0 entered promiscuous mode [ 194.112828][ T7674] loop5: detected capacity change from 0 to 512 [ 194.225727][ T7674] EXT4-fs (loop5): 1 truncate cleaned up [ 194.235126][ T7674] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 194.401808][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.408819][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.434425][ T4753] EXT4-fs (loop5): unmounting filesystem. [ 194.527915][ T7687] fuse: Bad value for 'fd' [ 194.601058][ T7690] loop5: detected capacity change from 0 to 128 [ 194.810010][ T7695] netlink: 100 bytes leftover after parsing attributes in process `syz.4.974'. [ 194.871334][ T7696] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 195.049478][ T4373] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 195.100763][ T7702] netlink: 8 bytes leftover after parsing attributes in process `syz.4.976'. [ 195.222776][ T26] audit: type=1326 audit(1770557588.486:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7705 comm="syz.5.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 195.286795][ T26] audit: type=1326 audit(1770557588.516:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7705 comm="syz.5.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 195.311341][ T4373] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 195.343098][ T4373] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 195.354590][ T26] audit: type=1326 audit(1770557588.516:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7705 comm="syz.5.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 195.364446][ T4373] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 195.395038][ T7712] overlayfs: upper fs does not support file handles, falling back to index=off. [ 195.423364][ T4373] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 195.435380][ T26] audit: type=1326 audit(1770557588.516:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7705 comm="syz.5.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 195.465529][ T7715] device syzkaller0 entered promiscuous mode [ 195.468152][ T7712] overlayfs: NFS export requires "index=on", falling back to nfs_export=off. [ 195.484119][ T26] audit: type=1326 audit(1770557588.546:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7705 comm="syz.5.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 195.514227][ T4373] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 195.533541][ T4373] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 195.542536][ T4373] usb 7-1: Manufacturer: syz [ 195.562274][ T26] audit: type=1326 audit(1770557588.546:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7705 comm="syz.5.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 195.566906][ T4373] usb 7-1: config 0 descriptor?? [ 195.600108][ T7718] fuse: Bad value for 'fd' [ 195.629866][ T26] audit: type=1326 audit(1770557588.546:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7705 comm="syz.5.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 195.904225][ T7724] loop4: detected capacity change from 0 to 128 [ 195.945008][ T7727] loop3: detected capacity change from 0 to 512 [ 195.960343][ T7728] netlink: 100 bytes leftover after parsing attributes in process `syz.2.987'. [ 195.982902][ T7727] EXT4-fs (loop3): 1 truncate cleaned up [ 196.015437][ T4373] usbhid 7-1:0.0: can't add hid device: -71 [ 196.041290][ T7727] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 196.050748][ T4373] usbhid: probe of 7-1:0.0 failed with error -71 [ 196.076281][ T4373] usb 7-1: USB disconnect, device number 11 [ 196.290546][ T4275] EXT4-fs (loop3): unmounting filesystem. [ 196.708440][ T7749] fuse: Bad value for 'fd' [ 196.859400][ T7751] device syzkaller0 entered promiscuous mode [ 196.959787][ T7758] bridge0: port 2(bridge_slave_1) entered disabled state [ 196.967810][ T7758] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.225062][ T7762] netlink: 84 bytes leftover after parsing attributes in process `syz.5.1000'. [ 197.245421][ T7763] loop3: detected capacity change from 0 to 512 [ 197.285571][ T7767] loop6: detected capacity change from 0 to 128 [ 197.355702][ T7763] EXT4-fs (loop3): 1 truncate cleaned up [ 197.383470][ T7763] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 197.555138][ T7771] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 197.617893][ T4275] EXT4-fs (loop3): unmounting filesystem. [ 197.888730][ T4952] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 197.999414][ T7789] loop2: detected capacity change from 0 to 512 [ 198.098698][ T4952] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 198.112959][ T7789] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 198.147974][ T7796] device syzkaller0 entered promiscuous mode [ 198.167494][ T4952] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 198.186467][ T7789] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 198.216818][ T4952] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 198.264949][ T4952] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 198.319317][ T4952] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 198.348687][ T4952] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 198.377219][ T4952] usb 7-1: Manufacturer: syz [ 198.397631][ T4952] usb 7-1: config 0 descriptor?? [ 198.438411][ T7800] netlink: 84 bytes leftover after parsing attributes in process `syz.5.1015'. [ 198.711573][ T7807] loop3: detected capacity change from 0 to 128 [ 198.818751][ T4952] usbhid 7-1:0.0: can't add hid device: -71 [ 198.830261][ T4952] usbhid: probe of 7-1:0.0 failed with error -71 [ 198.841127][ T4952] usb 7-1: USB disconnect, device number 12 [ 198.858844][ T6062] usb 3-1: new full-speed USB device number 11 using dummy_hcd [ 199.089898][ T6062] usb 3-1: config 0 has an invalid interface number: 214 but max is 0 [ 199.112782][ T6062] usb 3-1: config 0 has no interface number 0 [ 199.123129][ T6062] usb 3-1: config 0 interface 214 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 199.155110][ T6062] usb 3-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 199.197685][ T6062] usb 3-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5 [ 199.224382][ T6062] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 199.248697][ T6062] usb 3-1: Product: syz [ 199.252930][ T6062] usb 3-1: Manufacturer: syz [ 199.257588][ T6062] usb 3-1: SerialNumber: syz [ 199.266063][ T6062] usb 3-1: config 0 descriptor?? [ 199.484647][ T7827] device syzkaller0 entered promiscuous mode [ 199.492157][ T6062] usbtouchscreen 3-1:0.214: Failed to read FW rev: -71 [ 199.508365][ T6062] usbtouchscreen: probe of 3-1:0.214 failed with error -71 [ 199.532606][ T6062] usb 3-1: USB disconnect, device number 11 [ 199.734367][ T7833] netlink: 84 bytes leftover after parsing attributes in process `syz.5.1030'. [ 199.803208][ T7836] loop6: detected capacity change from 0 to 128 [ 200.271377][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 200.476916][ T7857] device syzkaller0 entered promiscuous mode [ 200.478808][ T4952] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 200.665584][ T7861] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1044'. [ 200.677246][ T4952] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 200.711716][ T4952] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 200.754395][ T4952] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 200.779996][ T4952] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 200.800349][ T7867] loop3: detected capacity change from 0 to 128 [ 200.846768][ T4952] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 200.882414][ T4952] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 200.890899][ T4952] usb 5-1: Manufacturer: syz [ 200.897548][ T4952] usb 5-1: config 0 descriptor?? [ 201.331318][ T4952] usbhid 5-1:0.0: can't add hid device: -71 [ 201.337659][ T4952] usbhid: probe of 5-1:0.0 failed with error -71 [ 201.399330][ T4952] usb 5-1: USB disconnect, device number 16 [ 201.693959][ T7894] netlink: 84 bytes leftover after parsing attributes in process `syz.5.1058'. [ 201.735942][ T7893] device syzkaller0 entered promiscuous mode [ 201.997664][ T7904] loop6: detected capacity change from 0 to 128 [ 202.091283][ T7906] loop4: detected capacity change from 0 to 512 [ 202.146680][ T7906] EXT4-fs (loop4): 1 truncate cleaned up [ 202.181408][ T7906] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 202.256154][ T7915] loop3: detected capacity change from 0 to 1024 [ 202.263820][ T7915] EXT4-fs: Ignoring removed nomblk_io_submit option [ 202.281320][ T7915] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 202.305314][ T7915] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 202.318289][ T7915] System zones: 0-1, 3-36 [ 202.374568][ T7915] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 202.428180][ T4277] EXT4-fs (loop4): unmounting filesystem. [ 202.627101][ T4275] EXT4-fs (loop3): unmounting filesystem. [ 202.817208][ T7929] netlink: 84 bytes leftover after parsing attributes in process `syz.6.1071'. [ 203.048215][ T7938] device syzkaller0 entered promiscuous mode [ 203.142183][ T7940] loop4: detected capacity change from 0 to 128 [ 203.206959][ T7944] loop3: detected capacity change from 0 to 512 [ 203.244225][ T7944] EXT4-fs (loop3): 1 truncate cleaned up [ 203.270425][ T7944] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 203.308672][ T6059] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 203.368169][ T4275] EXT4-fs (loop3): unmounting filesystem. [ 203.466519][ T7949] device syzkaller0 entered promiscuous mode [ 203.520636][ T6059] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 203.538692][ T6059] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 203.554011][ T6059] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 203.564676][ T6059] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 203.610335][ T6059] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 203.638619][ T6059] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 203.662333][ T6059] usb 6-1: Manufacturer: syz [ 203.700020][ T6059] usb 6-1: config 0 descriptor?? [ 203.941747][ T7965] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1086'. [ 204.125600][ T6059] usbhid 6-1:0.0: can't add hid device: -71 [ 204.145861][ T6059] usbhid: probe of 6-1:0.0 failed with error -71 [ 204.192695][ T6059] usb 6-1: USB disconnect, device number 5 [ 204.313580][ T7980] loop4: detected capacity change from 0 to 512 [ 204.355528][ T7980] EXT4-fs (loop4): 1 truncate cleaned up [ 204.381094][ T7981] loop6: detected capacity change from 0 to 128 [ 204.412144][ T7984] loop3: detected capacity change from 0 to 1024 [ 204.418031][ T7980] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 204.450345][ T7984] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 204.540012][ T26] audit: type=1800 audit(1770557597.806:36): pid=7984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1095" name="file2" dev="loop3" ino=840 res=0 errno=0 [ 204.736330][ T4277] EXT4-fs (loop4): unmounting filesystem. [ 204.935561][ T7992] device syzkaller0 entered promiscuous mode [ 205.047972][ T7999] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1101'. [ 205.587729][ T8017] loop3: detected capacity change from 0 to 512 [ 205.676647][ T8017] EXT4-fs (loop3): 1 truncate cleaned up [ 205.684930][ T8017] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 205.710293][ T26] audit: type=1800 audit(1770557598.976:37): pid=8017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1108" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 205.759818][ T8023] loop5: detected capacity change from 0 to 128 [ 205.892380][ T4275] EXT4-fs (loop3): unmounting filesystem. [ 205.921211][ T4952] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 206.120438][ T4952] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 206.178688][ T4952] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 206.220194][ T4952] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 206.236448][ T8035] netlink: 1363 bytes leftover after parsing attributes in process `syz.5.1113'. [ 206.255965][ T4952] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 206.300476][ T4952] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 206.340677][ T4952] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 206.359987][ T4952] usb 5-1: Manufacturer: syz [ 206.400094][ T4952] usb 5-1: config 0 descriptor?? [ 206.569520][ T8040] device syzkaller0 entered promiscuous mode [ 206.819449][ C0] raw-gadget.0 gadget.4: ignoring, device is not running [ 206.827482][ T4952] usbhid 5-1:0.0: can't add hid device: -32 [ 206.833741][ T4952] usbhid: probe of 5-1:0.0 failed with error -32 [ 206.859567][ T4952] usb 5-1: USB disconnect, device number 17 [ 206.868324][ T8051] loop3: detected capacity change from 0 to 512 [ 206.922703][ T8055] loop5: detected capacity change from 0 to 128 [ 206.933226][ T8051] EXT4-fs (loop3): 1 truncate cleaned up [ 206.999078][ T8051] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 207.084964][ T26] audit: type=1800 audit(1770557600.346:38): pid=8051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1122" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 207.181982][ T4275] EXT4-fs (loop3): unmounting filesystem. [ 207.530101][ T8074] tipc: Started in network mode [ 207.551168][ T8074] tipc: Node identity 5e2888748d15, cluster identity 4711 [ 207.606150][ T8074] tipc: Enabled bearer , priority 0 [ 207.688453][ T8077] tipc: Resetting bearer [ 207.752944][ T8073] tipc: Disabling bearer [ 207.787680][ T8086] device syzkaller0 entered promiscuous mode [ 208.016775][ T8094] loop2: detected capacity change from 0 to 512 [ 208.052853][ T8096] loop4: detected capacity change from 0 to 128 [ 208.104667][ T8094] EXT4-fs (loop2): 1 truncate cleaned up [ 208.166627][ T8094] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 208.181397][ T26] audit: type=1800 audit(1770557601.446:39): pid=8094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1138" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 208.207101][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 208.488621][ T4952] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 208.695288][ T4952] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 208.721884][ T4952] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 208.733935][ T4952] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 208.744749][ T4952] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 208.772562][ T4952] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 208.781847][ T4952] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 208.792249][ T4952] usb 7-1: Manufacturer: syz [ 208.835696][ T4952] usb 7-1: config 0 descriptor?? [ 209.087564][ T8131] loop5: detected capacity change from 0 to 512 [ 209.171429][ T8131] EXT4-fs (loop5): 1 truncate cleaned up [ 209.187809][ T8131] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 209.216998][ T26] audit: type=1800 audit(1770557602.476:40): pid=8131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1152" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 209.262707][ T8134] loop2: detected capacity change from 0 to 2048 [ 209.266729][ T4952] usbhid 7-1:0.0: can't add hid device: -71 [ 209.283767][ T4952] usbhid: probe of 7-1:0.0 failed with error -71 [ 209.305867][ T4753] EXT4-fs (loop5): unmounting filesystem. [ 209.336608][ T4952] usb 7-1: USB disconnect, device number 13 [ 209.337424][ T8137] device syzkaller0 entered promiscuous mode [ 209.357400][ T8134] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 209.389755][ T8134] ext4 filesystem being mounted at /259/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 209.506097][ T8143] loop4: detected capacity change from 0 to 128 [ 209.515152][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 210.216667][ T8169] loop4: detected capacity change from 0 to 512 [ 210.294869][ T8169] EXT4-fs (loop4): 1 truncate cleaned up [ 210.378385][ T8169] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 210.473833][ T26] audit: type=1800 audit(1770557603.736:41): pid=8169 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1166" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 210.623068][ T4277] EXT4-fs (loop4): unmounting filesystem. [ 210.646122][ T8183] device syzkaller0 entered promiscuous mode [ 210.980140][ T8197] tmpfs: Unknown parameter 'quota' [ 211.049837][ T4952] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 211.251156][ T4952] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 211.268153][ T4952] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 211.284705][ T4952] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 211.318011][ T4952] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 211.343662][ T4952] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 211.375596][ T4952] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 211.389273][ T4952] usb 3-1: Manufacturer: syz [ 211.395936][ T4952] usb 3-1: config 0 descriptor?? [ 211.436766][ T8213] set_capacity_and_notify: 1 callbacks suppressed [ 211.436783][ T8213] loop5: detected capacity change from 0 to 512 [ 211.535243][ T8213] EXT4-fs (loop5): 1 truncate cleaned up [ 211.548845][ T8213] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 211.645241][ T8219] loop3: detected capacity change from 0 to 128 [ 211.689186][ T26] audit: type=1800 audit(1770557604.956:42): pid=8213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1183" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 211.814489][ T4753] EXT4-fs (loop5): unmounting filesystem. [ 211.845264][ T4281] Bluetooth: hci1: command 0x0406 tx timeout [ 212.036255][ T4952] usbhid 3-1:0.0: can't add hid device: -71 [ 212.045560][ T8227] device syzkaller0 entered promiscuous mode [ 212.049046][ T4952] usbhid: probe of 3-1:0.0 failed with error -71 [ 212.071639][ T4952] usb 3-1: USB disconnect, device number 12 [ 212.457938][ T8244] device syzkaller0 entered promiscuous mode [ 212.815760][ T8257] loop2: detected capacity change from 0 to 512 [ 212.884050][ T8257] EXT4-fs (loop2): 1 truncate cleaned up [ 212.896560][ T8257] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 212.911943][ T26] audit: type=1800 audit(1770557606.176:43): pid=8257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1200" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 212.982215][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 213.378745][ T4952] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 213.579876][ T4952] usb 6-1: Using ep0 maxpacket: 32 [ 213.587055][ T4952] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 213.625079][ T4952] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 213.639107][ T8287] device syzkaller0 entered promiscuous mode [ 213.656673][ T4952] usb 6-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00 [ 213.675470][ T4952] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 213.678159][ T8290] loop6: detected capacity change from 0 to 512 [ 213.687547][ T4952] usb 6-1: config 0 descriptor?? [ 213.691664][ T6059] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 213.766117][ T8290] EXT4-fs (loop6): 1 truncate cleaned up [ 213.778991][ T8290] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 213.804651][ T26] audit: type=1800 audit(1770557607.066:44): pid=8290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1215" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 213.864818][ T5109] EXT4-fs (loop6): unmounting filesystem. [ 213.914093][ T6059] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 213.948037][ T6059] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 213.975979][ T6059] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 214.025853][ T6059] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 214.057672][ T6059] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 214.098658][ T6059] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 214.107166][ T6059] usb 3-1: Manufacturer: syz [ 214.117701][ T4952] ft260 0003:0403:6030.0003: unknown main item tag 0x0 [ 214.147940][ T6059] usb 3-1: config 0 descriptor?? [ 214.167294][ T4952] ft260 0003:0403:6030.0003: hidraw0: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.5-1/input0 [ 214.314121][ T4952] ft260 0003:0403:6030.0003: chip code: 6424 8183 [ 214.716553][ T4952] ft260 0003:0403:6030.0003: failed to retrieve status: -32 [ 214.802725][ C1] raw-gadget.1 gadget.2: ignoring, device is not running [ 214.812000][ T6059] usbhid 3-1:0.0: can't add hid device: -32 [ 214.818070][ T6059] usbhid: probe of 3-1:0.0 failed with error -32 [ 214.863110][ T6059] usb 3-1: USB disconnect, device number 13 [ 214.876313][ T8317] loop4: detected capacity change from 0 to 512 [ 214.940407][ T6062] usb 6-1: USB disconnect, device number 6 [ 214.955888][ T8321] device syzkaller0 entered promiscuous mode [ 214.973754][ T8317] EXT4-fs (loop4): 1 truncate cleaned up [ 215.000570][ T8317] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 215.093127][ T26] audit: type=1800 audit(1770557608.356:45): pid=8317 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1226" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 215.104356][ T8318] fido_id[8318]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 215.217874][ T4277] EXT4-fs (loop4): unmounting filesystem. [ 215.855285][ T8349] loop4: detected capacity change from 0 to 512 [ 215.954141][ T8351] loop5: detected capacity change from 0 to 512 [ 216.110587][ T8351] EXT4-fs (loop5): 1 truncate cleaned up [ 216.116323][ T8351] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 216.164261][ T26] audit: type=1800 audit(1770557609.426:46): pid=8351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1240" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 216.230443][ T4753] EXT4-fs (loop5): unmounting filesystem. [ 216.310417][ T8361] device syzkaller0 entered promiscuous mode [ 216.388649][ T6059] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 216.600782][ T6059] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 216.625355][ T6059] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 216.640092][ T6059] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 216.685552][ T6059] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 216.730441][ T6059] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 216.769414][ T6059] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 216.787859][ T6059] usb 7-1: Manufacturer: syz [ 216.818728][ T6059] usb 7-1: config 0 descriptor?? [ 217.115894][ T8389] loop3: detected capacity change from 0 to 512 [ 217.140154][ T8389] EXT4-fs (loop3): 1 truncate cleaned up [ 217.145970][ T8389] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 217.180475][ T26] audit: type=1800 audit(1770557610.446:47): pid=8389 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1256" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 217.208165][ T4275] EXT4-fs (loop3): unmounting filesystem. [ 217.382068][ T8399] sctp: [Deprecated]: syz.3.1259 (pid 8399) Use of int in max_burst socket option deprecated. [ 217.382068][ T8399] Use struct sctp_assoc_value instead [ 217.453401][ T6059] usbhid 7-1:0.0: can't add hid device: -71 [ 217.479582][ T6059] usbhid: probe of 7-1:0.0 failed with error -71 [ 217.505508][ T6059] usb 7-1: USB disconnect, device number 14 [ 217.629458][ T8404] device syzkaller0 entered promiscuous mode [ 217.997745][ T8419] loop3: detected capacity change from 0 to 512 [ 218.042647][ T8419] EXT4-fs (loop3): 1 truncate cleaned up [ 218.070214][ T8419] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 218.095251][ T26] audit: type=1800 audit(1770557611.356:48): pid=8419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1269" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 218.231490][ T4275] EXT4-fs (loop3): unmounting filesystem. [ 218.705715][ T8441] device syzkaller0 entered promiscuous mode [ 218.914480][ T8452] loop4: detected capacity change from 0 to 512 [ 218.955785][ T8452] EXT4-fs (loop4): 1 truncate cleaned up [ 218.978833][ T8452] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 219.018936][ T6059] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 219.049291][ T26] audit: type=1800 audit(1770557612.316:49): pid=8452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1283" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 219.070706][ C0] vkms_vblank_simulate: vblank timer overrun [ 219.177532][ T4277] EXT4-fs (loop4): unmounting filesystem. [ 219.224854][ T6059] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 219.250690][ T6059] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 219.268134][ T6059] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 219.290331][ T6059] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 219.352783][ T6059] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 219.388663][ T6059] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 219.406793][ T6059] usb 4-1: Manufacturer: syz [ 219.442317][ T6059] usb 4-1: config 0 descriptor?? [ 219.886886][ T6059] appleir 0003:05AC:8243.0004: unknown main item tag 0x0 [ 219.926726][ T6059] appleir 0003:05AC:8243.0004: No inputs registered, leaving [ 219.964663][ T8486] device syzkaller0 entered promiscuous mode [ 219.969339][ T6059] appleir 0003:05AC:8243.0004: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 220.147483][ T8489] loop5: detected capacity change from 0 to 512 [ 220.177551][ T8489] EXT4-fs (loop5): 1 truncate cleaned up [ 220.184064][ T8489] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 220.200687][ T26] audit: type=1800 audit(1770557613.466:50): pid=8489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1298" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 220.301115][ T8495] loop2: detected capacity change from 0 to 2048 [ 220.331411][ T8495] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 220.351585][ T8489] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1298: bg 0: block 465: padding at end of block bitmap is not set [ 220.392649][ T8489] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 220.438891][ T8489] EXT4-fs (loop5): This should not happen!! Data will be lost [ 220.438891][ T8489] [ 220.468723][ T8489] EXT4-fs (loop5): Total free blocks count 0 [ 220.497688][ T8489] EXT4-fs (loop5): Free/Dirty block details [ 220.504992][ T8489] EXT4-fs (loop5): free_blocks=0 [ 220.536069][ T8489] EXT4-fs (loop5): dirty_blocks=484 [ 220.554406][ T8489] EXT4-fs (loop5): Block reservation details [ 220.576237][ T8489] EXT4-fs (loop5): i_reserved_data_blocks=484 [ 220.716823][ T7388] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 221.006648][ T8515] fuse: Bad value for 'fd' [ 221.275401][ T8522] device syzkaller0 entered promiscuous mode [ 221.438367][ T8528] netlink: 64 bytes leftover after parsing attributes in process `syz.6.1314'. [ 221.854965][ T14] usb 4-1: USB disconnect, device number 17 [ 221.968754][ T6059] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 222.075248][ T8549] fuse: Bad value for 'fd' [ 222.158668][ T6059] usb 7-1: Using ep0 maxpacket: 32 [ 222.174302][ T6059] usb 7-1: config 0 has an invalid interface number: 188 but max is 0 [ 222.214785][ T6059] usb 7-1: config 0 has no interface number 0 [ 222.227507][ T6059] usb 7-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32 [ 222.262126][ T6059] usb 7-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36 [ 222.290081][ T6059] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 222.323236][ T6059] usb 7-1: Product: syz [ 222.327469][ T6059] usb 7-1: Manufacturer: syz [ 222.343450][ T6059] usb 7-1: SerialNumber: syz [ 222.384879][ T6059] usb 7-1: config 0 descriptor?? [ 222.404034][ T8539] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22 [ 222.437186][ T8559] device syzkaller0 entered promiscuous mode [ 222.444042][ T8561] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1329'. [ 222.632077][ T8539] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22 [ 222.832871][ T8576] netlink: 1367 bytes leftover after parsing attributes in process `syz.3.1336'. [ 222.930840][ T8578] fuse: Bad value for 'fd' [ 222.968844][ T6061] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 223.180645][ T6061] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 223.196253][ T6061] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 223.228634][ T6061] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 223.259437][ T6061] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 223.280647][ T6061] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 223.290020][ T6061] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 223.298205][ T6061] usb 6-1: Manufacturer: syz [ 223.306530][ T6061] usb 6-1: config 0 descriptor?? [ 223.461615][ T8592] ax25_connect(): syz.4.1342 uses autobind, please contact jreuter@yaina.de [ 223.477564][ T8594] netlink: 'syz.2.1344': attribute type 10 has an invalid length. [ 223.485809][ T8594] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1344'. [ 223.507684][ T8594] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.541358][ T8594] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.557799][ T8594] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.568958][ T8594] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.606708][ T8594] team0: Port device geneve0 added [ 223.668940][ T6063] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 223.704894][ T8599] device syzkaller0 entered promiscuous mode [ 223.744149][ T6061] appleir 0003:05AC:8243.0005: unknown main item tag 0x0 [ 223.754493][ T6061] appleir 0003:05AC:8243.0005: No inputs registered, leaving [ 223.784785][ T6061] appleir 0003:05AC:8243.0005: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0 [ 223.880915][ T6063] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 223.903432][ T6063] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 223.935403][ T6063] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 223.969428][ T6063] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 224.000320][ T6063] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 224.018582][ T6063] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 224.050238][ T6063] usb 4-1: Manufacturer: syz [ 224.081773][ T6063] usb 4-1: config 0 descriptor?? [ 224.507963][ T6063] appleir 0003:05AC:8243.0006: unknown main item tag 0x0 [ 224.516163][ T6063] appleir 0003:05AC:8243.0006: No inputs registered, leaving [ 224.530450][ T6063] appleir 0003:05AC:8243.0006: hiddev1,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 224.885775][ T6059] asix 7-1:0.188 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 224.897737][ T6059] asix 7-1:0.188 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 224.915198][ T6059] asix: probe of 7-1:0.188 failed with error -71 [ 224.932912][ T6059] usb 7-1: USB disconnect, device number 15 [ 224.985268][ T4338] usb 6-1: USB disconnect, device number 7 [ 225.867136][ T8634] ax25_connect(): syz.6.1358 uses autobind, please contact jreuter@yaina.de [ 225.975694][ T8637] device syzkaller0 entered promiscuous mode [ 226.232503][ T8642] device syzkaller0 entered promiscuous mode [ 226.438314][ T4952] usb 4-1: USB disconnect, device number 18 [ 226.848618][ T6063] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 227.040543][ T6063] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 227.052187][ T6063] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 227.064881][ T6063] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 227.075987][ T6063] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 227.105248][ T6063] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 227.114889][ T6063] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 227.123566][ T6063] usb 5-1: Manufacturer: syz [ 227.131988][ T6063] usb 5-1: config 0 descriptor?? [ 227.204085][ T4281] Bluetooth: hci2: command 0x0406 tx timeout [ 227.555125][ T6063] appleir 0003:05AC:8243.0007: unknown main item tag 0x0 [ 227.575235][ T6063] appleir 0003:05AC:8243.0007: No inputs registered, leaving [ 227.597663][ T6063] appleir 0003:05AC:8243.0007: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0 [ 229.485745][ T8673] ax25_connect(): syz.3.1372 uses autobind, please contact jreuter@yaina.de [ 229.597266][ T8677] device syzkaller0 entered promiscuous mode [ 229.659618][ T4338] usb 5-1: USB disconnect, device number 18 [ 230.065585][ T8694] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1382'. [ 230.130315][ T8694] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1382'. [ 230.552142][ T8711] ax25_connect(): syz.2.1391 uses autobind, please contact jreuter@yaina.de [ 230.583555][ T8712] device syzkaller0 entered promiscuous mode [ 230.668633][ T4338] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 230.870440][ T4338] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 230.932397][ T4338] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 230.974441][ T4338] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 231.006059][ T4338] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 231.055172][ T4338] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 231.077630][ T4338] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 231.100025][ T4338] usb 5-1: Manufacturer: syz [ 231.127727][ T4338] usb 5-1: config 0 descriptor?? [ 231.564254][ T4338] appleir 0003:05AC:8243.0008: unknown main item tag 0x0 [ 231.582918][ T4338] appleir 0003:05AC:8243.0008: No inputs registered, leaving [ 231.606815][ T4338] appleir 0003:05AC:8243.0008: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0 [ 231.827476][ T8755] device syzkaller0 entered promiscuous mode [ 231.979551][ T8762] fuse: Bad value for 'fd' [ 232.713515][ T8791] fuse: Bad value for 'fd' [ 232.775198][ T8794] device syzkaller0 entered promiscuous mode [ 233.047320][ T4952] usb 5-1: reset high-speed USB device number 19 using dummy_hcd [ 233.228655][ T4952] usb 5-1: device descriptor read/64, error -32 [ 233.498716][ T4952] usb 5-1: reset high-speed USB device number 19 using dummy_hcd [ 233.573538][ T8821] fuse: Bad value for 'fd' [ 233.831700][ T8832] device syzkaller0 entered promiscuous mode [ 234.343626][ T4338] usb 5-1: USB disconnect, device number 19 [ 235.097057][ T8857] fuse: Bad value for 'fd' [ 235.471169][ T8869] device syzkaller0 entered promiscuous mode [ 235.672935][ T4952] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 235.886541][ T4952] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 235.909982][ T4952] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 235.956058][ T4952] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 235.977858][ T4952] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 236.003770][ T4952] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 236.023268][ T4952] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 236.033771][ T4952] usb 4-1: Manufacturer: syz [ 236.039491][ T8889] fuse: Bad value for 'fd' [ 236.052843][ T4952] usb 4-1: config 0 descriptor?? [ 236.467371][ T4952] appleir 0003:05AC:8243.0009: unknown main item tag 0x0 [ 236.491357][ T4952] appleir 0003:05AC:8243.0009: No inputs registered, leaving [ 236.515790][ T4952] appleir 0003:05AC:8243.0009: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 236.622819][ T8907] device syzkaller0 entered promiscuous mode [ 237.000771][ T8922] fuse: Bad value for 'fd' [ 237.757839][ T8948] device syzkaller0 entered promiscuous mode [ 237.918682][ T14] usb 4-1: reset high-speed USB device number 19 using dummy_hcd [ 238.098674][ T14] usb 4-1: device descriptor read/64, error -32 [ 238.368640][ T14] usb 4-1: reset high-speed USB device number 19 using dummy_hcd [ 238.588627][ T8981] device syzkaller0 entered promiscuous mode [ 239.242996][ T4338] usb 4-1: USB disconnect, device number 19 [ 239.466696][ T9010] device syzkaller0 entered promiscuous mode [ 239.858351][ T9024] fuse: Bad value for 'group_id' [ 240.139968][ T4338] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 240.357088][ T4338] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 240.381948][ T4338] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 240.424997][ T4338] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 240.435483][ T4338] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 240.465241][ T4338] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 240.485709][ T4338] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 240.504473][ T4338] usb 7-1: Manufacturer: syz [ 240.545935][ T4338] usb 7-1: config 0 descriptor?? [ 240.947660][ T9056] device syzkaller0 entered promiscuous mode [ 240.964447][ T9058] fuse: Bad value for 'group_id' [ 240.972790][ T4338] appleir 0003:05AC:8243.000A: unknown main item tag 0x0 [ 240.984878][ T4338] appleir 0003:05AC:8243.000A: No inputs registered, leaving [ 241.018181][ T4338] appleir 0003:05AC:8243.000A: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.6-1/input0 [ 242.005697][ T9097] device syzkaller0 entered promiscuous mode [ 242.207998][ T9101] fuse: Bad value for 'group_id' [ 242.428784][ T14] usb 7-1: reset high-speed USB device number 16 using dummy_hcd [ 242.598904][ T14] usb 7-1: device descriptor read/64, error -32 [ 242.868650][ T14] usb 7-1: reset high-speed USB device number 16 using dummy_hcd [ 243.720455][ T4338] usb 7-1: USB disconnect, device number 16 [ 244.528651][ T4338] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 244.730458][ T4338] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 244.759605][ T4338] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 244.810144][ T4338] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 244.826723][ T4338] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 244.851577][ T4338] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 244.894706][ T4338] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 244.904239][ T4338] usb 6-1: Manufacturer: syz [ 244.927034][ T4338] usb 6-1: config 0 descriptor?? [ 245.346740][ T4338] appleir 0003:05AC:8243.000B: unknown main item tag 0x0 [ 245.364405][ T4338] appleir 0003:05AC:8243.000B: No inputs registered, leaving [ 245.398158][ T4338] appleir 0003:05AC:8243.000B: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0 [ 246.293575][ T9253] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled [ 247.334545][ T9287] device lo entered promiscuous mode [ 247.402412][ T9287] device tunl0 entered promiscuous mode [ 247.425870][ T9287] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check. [ 247.476011][ T14] usb 6-1: USB disconnect, device number 8 [ 247.763935][ T9299] fuse: Unknown parameter 'grou00000000000000000000' [ 248.294997][ T6059] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 248.435322][ T9327] fuse: Bad value for 'group_id' [ 248.507849][ T6059] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 248.538670][ T6059] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 248.573765][ T6059] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 248.584359][ T6059] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 248.627294][ T6059] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 248.647285][ T6059] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 248.659990][ T9333] fuse: Unknown parameter 'grou00000000000000000000' [ 248.666665][ T6059] usb 6-1: Manufacturer: syz [ 248.687221][ T6059] usb 6-1: config 0 descriptor?? [ 249.143388][ T6059] appleir 0003:05AC:8243.000C: unknown main item tag 0x0 [ 249.159121][ T6059] appleir 0003:05AC:8243.000C: No inputs registered, leaving [ 249.211299][ T6059] appleir 0003:05AC:8243.000C: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0 [ 249.567548][ T9364] fuse: Unknown parameter 'grou00000000000000000000' [ 249.595620][ T9366] fuse: Bad value for 'group_id' [ 250.506860][ T9394] fuse: Unknown parameter 'group_i00000000000000000000' [ 250.594638][ T9400] fuse: Bad value for 'group_id' [ 251.123121][ T9419] overlayfs: failed to clone upperpath [ 251.284936][ T6061] usb 6-1: USB disconnect, device number 9 [ 251.587408][ T9436] fuse: Unknown parameter 'group_i00000000000000000000' [ 251.601277][ T9435] fuse: Bad value for 'user_id' [ 251.785286][ T9438] fuse: Unknown parameter 'group_i00000000000000000000' [ 252.298902][ T4338] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 252.505241][ T4338] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 252.533298][ T4338] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 252.535495][ T9471] fuse: Bad value for 'user_id' [ 252.558152][ T4338] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 252.575277][ T4338] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 252.607608][ T4338] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 252.627387][ T4338] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 252.646451][ T4338] usb 3-1: Manufacturer: syz [ 252.664452][ T4338] usb 3-1: config 0 descriptor?? [ 252.923867][ T9481] fuse: Unknown parameter 'group_id00000000000000000000' [ 253.097313][ T4338] appleir 0003:05AC:8243.000D: unknown main item tag 0x0 [ 253.108954][ T4338] appleir 0003:05AC:8243.000D: No inputs registered, leaving [ 253.136848][ T4338] appleir 0003:05AC:8243.000D: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 255.039743][ T9489] fuse: Unknown parameter 'group_id00000000000000000000' [ 255.239885][ T4338] usb 3-1: USB disconnect, device number 14 [ 255.567163][ T9507] fuse: Bad value for 'user_id' [ 255.841791][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.849576][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.080647][ T9521] fuse: Unknown parameter 'group_id00000000000000000000' [ 256.310043][ T26] audit: type=1326 audit(1770557649.576:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9527 comm="syz.3.1725" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c4379aeb9 code=0x0 [ 256.349092][ T4338] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 256.580468][ T4338] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 256.605509][ T4338] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 256.633304][ T9534] fuse: Bad value for 'user_id' [ 256.641555][ T4338] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 256.653578][ T4338] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 256.688936][ T4338] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 256.706385][ T4338] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 256.722934][ T4338] usb 3-1: Manufacturer: syz [ 256.750176][ T4338] usb 3-1: config 0 descriptor?? [ 257.179245][ T4338] appleir 0003:05AC:8243.000E: unknown main item tag 0x0 [ 257.187097][ T4338] appleir 0003:05AC:8243.000E: No inputs registered, leaving [ 257.223940][ T4338] appleir 0003:05AC:8243.000E: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 257.454143][ T9554] fuse: Bad value for 'user_id' [ 257.839360][ T9563] fuse: Bad value for 'user_id' [ 258.256209][ T9574] overlayfs: unrecognized mount option "verity=on" or missing value [ 258.425250][ T9581] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1746'. [ 258.624899][ T9585] fuse: Bad value for 'user_id' [ 258.712465][ T9591] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1751'. [ 258.847011][ T9597] fuse: Bad value for 'user_id' [ 259.313830][ T4338] usb 3-1: USB disconnect, device number 15 [ 259.435144][ T9620] fuse: Bad value for 'user_id' [ 259.612237][ T9626] fuse: Unknown parameter 'grou00000000000000000000' [ 259.834558][ T9636] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1771'. [ 259.958914][ T6063] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 260.170670][ T6063] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 260.199368][ T6063] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 260.245004][ T6063] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 260.268644][ T6063] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 260.285564][ T9655] fuse: Bad value for 'fd' [ 260.299554][ T6063] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 260.319245][ T6063] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 260.337194][ T6063] usb 3-1: Manufacturer: syz [ 260.355600][ T6063] usb 3-1: config 0 descriptor?? [ 260.435968][ T9660] fuse: Unknown parameter 'grou00000000000000000000' [ 260.778182][ T6063] appleir 0003:05AC:8243.000F: unknown main item tag 0x0 [ 260.799091][ T9669] bond0: (slave bond_slave_0): Releasing backup interface [ 260.808033][ T6063] appleir 0003:05AC:8243.000F: No inputs registered, leaving [ 260.842841][ T6063] appleir 0003:05AC:8243.000F: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 261.205640][ T9684] fuse: Bad value for 'fd' [ 261.244335][ T9685] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 261.244335][ T9685] The task syz.3.1792 (9685) triggered the difference, watch for misbehavior. [ 261.427086][ T9691] fuse: Unknown parameter 'grou00000000000000000000' [ 261.802652][ T9699] ptrace attach of "./syz-executor exec"[9701] was attempted by "./syz-executor exec"[9699] [ 262.562347][ T9721] fuse: Bad value for 'fd' [ 262.755872][ T9723] fuse: Unknown parameter 'group_i00000000000000000000' [ 262.919595][ T6063] usb 3-1: USB disconnect, device number 16 [ 263.052920][ T26] audit: type=1326 audit(1770557656.316:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.6.1813" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1dc559aeb9 code=0x0 [ 263.352718][ T9742] tmpfs: Bad value for 'huge' [ 263.537744][ T9748] fuse: Bad value for 'fd' [ 263.681380][ T9752] fuse: Unknown parameter 'group_i00000000000000000000' [ 263.788867][ T6063] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 263.912575][ T9759] syz.2.1826 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 263.981380][ T6063] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 264.002703][ T6063] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 264.048199][ T6063] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 264.087324][ T6063] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 264.119637][ T6063] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 264.138603][ T6063] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 264.157701][ T6063] usb 5-1: Manufacturer: syz [ 264.168901][ T6063] usb 5-1: config 0 descriptor?? [ 264.596799][ T6063] appleir 0003:05AC:8243.0010: unknown main item tag 0x0 [ 264.610602][ T6063] appleir 0003:05AC:8243.0010: No inputs registered, leaving [ 264.632004][ T6063] appleir 0003:05AC:8243.0010: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0 [ 265.134719][ T9784] fuse: Bad value for 'fd' [ 265.335373][ T9789] fuse: Unknown parameter 'group_i00000000000000000000' [ 265.680696][ T6063] kernel write not supported for file [eventfd] (pid: 6063 comm: kworker/1:18) [ 266.456228][ T9812] fuse: Bad value for 'fd' [ 266.722011][ T6061] usb 5-1: USB disconnect, device number 20 [ 266.943281][ T9824] fuse: Unknown parameter 'group_id00000000000000000000' [ 267.222337][ T9826] ptrace attach of "./syz-executor exec"[9829] was attempted by "./syz-executor exec"[9826] [ 267.404221][ T9833] devpts: called with bogus options [ 267.945547][ T9848] fuse: Invalid rootmode [ 267.965515][ T6061] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 268.160215][ T6061] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 268.188713][ T6061] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 268.208604][ T6061] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 268.235536][ T6061] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 268.269967][ T9857] fuse: Unknown parameter 'group_id00000000000000000000' [ 268.301527][ T6061] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 268.331179][ T6061] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 268.378163][ T6061] usb 4-1: Manufacturer: syz [ 268.403400][ T6061] usb 4-1: config 0 descriptor?? [ 268.458348][ T9864] ramfs: Bad value for 'mode' [ 268.831026][ T6061] appleir 0003:05AC:8243.0011: unknown main item tag 0x0 [ 268.864488][ T6061] appleir 0003:05AC:8243.0011: No inputs registered, leaving [ 268.908415][ T6061] appleir 0003:05AC:8243.0011: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 269.300636][ T9889] fuse: Invalid rootmode [ 269.777329][ T9899] fuse: Unknown parameter 'group_id00000000000000000000' [ 270.934192][ T9923] fuse: Invalid rootmode [ 270.969758][ T6059] usb 4-1: USB disconnect, device number 20 [ 271.158660][ T9933] fuse: Bad value for 'user_id' [ 271.728313][ T26] audit: type=1326 audit(1770557664.986:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9953 comm="syz.4.1896" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff82df9aeb9 code=0x0 [ 271.782804][ T9956] fuse: Bad value for 'rootmode' [ 271.828703][ T4338] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 271.957320][ T9961] fuse: Bad value for 'user_id' [ 272.030448][ T4338] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 272.062060][ T4338] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 272.093876][ T4338] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 272.124495][ T4338] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 272.146944][ T4338] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 272.177209][ T4338] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 272.192634][ T4338] usb 7-1: Manufacturer: syz [ 272.218755][ T4338] usb 7-1: config 0 descriptor?? [ 272.578965][ T9986] fuse: Bad value for 'rootmode' [ 272.634935][ T4338] appleir 0003:05AC:8243.0012: unknown main item tag 0x0 [ 272.659179][ T4338] appleir 0003:05AC:8243.0012: No inputs registered, leaving [ 272.706173][ T9991] fuse: Bad value for 'user_id' [ 272.707568][ T4338] appleir 0003:05AC:8243.0012: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.6-1/input0 [ 273.063646][T10004] capability: warning: `syz.4.1917' uses deprecated v2 capabilities in a way that may be insecure [ 273.176630][T10007] sctp: [Deprecated]: syz.2.1918 (pid 10007) Use of struct sctp_assoc_value in delayed_ack socket option. [ 273.176630][T10007] Use struct sctp_sack_info instead [ 273.507537][T10019] fuse: Bad value for 'rootmode' [ 273.624699][T10023] fuse: Bad value for 'fd' [ 273.795369][T10029] kernel read not supported for file /file0 (pid: 10029 comm: syz.3.1927) [ 273.811696][ T26] audit: type=1800 audit(1770557667.076:54): pid=10029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1927" name="file0" dev="mqueue" ino=64689 res=0 errno=0 [ 274.141915][T10039] ptrace attach of "./syz-executor exec"[10041] was attempted by "./syz-executor exec"[10039] [ 274.456468][T10051] fuse: Bad value for 'fd' [ 274.488410][T10052] fuse: Unknown parameter 'use00000000000000000000' [ 274.694149][ T4952] usb 7-1: USB disconnect, device number 17 [ 275.232049][T10076] fuse: Bad value for 'fd' [ 275.478595][ T6061] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 275.495413][T10084] fuse: Unknown parameter 'use00000000000000000000' [ 275.670628][ T6061] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 275.689424][ T6061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 275.721370][ T6061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 275.741783][ T6061] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 275.771904][ T6061] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 275.791847][ T6061] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 275.819838][ T6061] usb 5-1: Manufacturer: syz [ 275.851627][ T6061] usb 5-1: config 0 descriptor?? [ 276.207146][T10108] fuse: Bad value for 'fd' [ 276.291483][ T6061] appleir 0003:05AC:8243.0013: unknown main item tag 0x0 [ 276.306941][ T6061] appleir 0003:05AC:8243.0013: No inputs registered, leaving [ 276.322518][ T6061] appleir 0003:05AC:8243.0013: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0 [ 276.792287][T10124] fuse: Unknown parameter 'use00000000000000000000' [ 277.926401][T10145] fuse: Bad value for 'fd' [ 278.326390][ T6063] usb 5-1: USB disconnect, device number 21 [ 278.378132][T10157] fuse: Unknown parameter 'user_i00000000000000000000' [ 279.218373][T10174] fuse: Bad value for 'fd' [ 279.478582][ T6061] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 279.496332][T10187] fuse: Unknown parameter 'user_i00000000000000000000' [ 279.704650][ T6061] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 279.768580][ T6061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 279.801857][ T6061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 279.838104][ T6061] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 279.890759][ T6061] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 279.926673][ T6061] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 279.935859][ T6061] usb 5-1: Manufacturer: syz [ 279.959943][ T6061] usb 5-1: config 0 descriptor?? [ 280.165037][T10212] fuse: Invalid rootmode [ 280.320370][T10218] fuse: Unknown parameter 'user_i00000000000000000000' [ 280.373855][ T6061] appleir 0003:05AC:8243.0014: unknown main item tag 0x0 [ 280.419868][ T6061] appleir 0003:05AC:8243.0014: No inputs registered, leaving [ 280.456106][ T6061] appleir 0003:05AC:8243.0014: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0 [ 280.848048][T10239] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2013'. [ 280.877099][T10239] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2013'. [ 281.057719][T10242] veth0_vlan: mtu less than device minimum [ 281.243802][T10250] fuse: Invalid rootmode [ 281.272197][T10252] fuse: Unknown parameter 'user_id00000000000000000000' [ 281.917670][T10279] device bridge1 entered promiscuous mode [ 282.073890][T10287] fuse: Invalid rootmode [ 282.167878][T10290] fuse: Unknown parameter 'user_id00000000000000000000' [ 282.373759][ T26] audit: type=1326 audit(1770557675.636:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10296 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 282.441872][ T26] audit: type=1326 audit(1770557675.686:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10296 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 282.491078][ T4952] usb 5-1: USB disconnect, device number 22 [ 282.523422][ T26] audit: type=1326 audit(1770557675.686:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10296 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 282.592667][ T26] audit: type=1326 audit(1770557675.686:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10296 comm="syz.5.2037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb27c39aeb9 code=0x7ffc0000 [ 282.890273][T10319] fuse: Bad value for 'rootmode' [ 283.089237][T10328] fuse: Unknown parameter 'user_id00000000000000000000' [ 283.248663][ T6061] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 283.450025][ T6061] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 283.488268][ T6061] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 283.505627][ T6061] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 283.515823][ T6061] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 283.552409][ T6061] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 283.563053][ T6061] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 283.571790][ T6061] usb 3-1: Manufacturer: syz [ 283.587727][ T6061] usb 3-1: config 0 descriptor?? [ 283.688890][T10345] macvtap0: refused to change device tx_queue_len [ 283.918574][T10352] fuse: Bad value for 'rootmode' [ 284.008676][ T6061] appleir 0003:05AC:8243.0015: unknown main item tag 0x0 [ 284.016388][ T6061] appleir 0003:05AC:8243.0015: No inputs registered, leaving [ 284.038372][ T6061] appleir 0003:05AC:8243.0015: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 284.049584][T10357] fuse: Bad value for 'fd' [ 284.651431][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 284.663238][T10379] fuse: Bad value for 'rootmode' [ 285.026639][T10389] fuse: Bad value for 'fd' [ 285.595910][T10403] fuse: Unknown parameter 'use00000000000000000000003' [ 285.934272][T10413] fuse: Bad value for 'fd' [ 286.141777][ T4952] usb 3-1: USB disconnect, device number 17 [ 286.246491][ T26] audit: type=1326 audit(1770557679.506:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.3.2094" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c4379aeb9 code=0x0 [ 286.292162][T10427] fuse: Unknown parameter 'use00000000000000000000003' [ 286.705569][T10446] fuse: Unknown parameter '0x0000000000000004' [ 286.831068][T10450] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2106'. [ 286.849791][T10450] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2106'. [ 286.889170][ T4952] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 286.898618][T10450] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2106'. [ 287.055503][T10456] fuse: Unknown parameter 'use00000000000000000000003' [ 287.101296][ T4952] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 287.136786][ T4952] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 287.188890][ T4952] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 287.233321][ T4952] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 287.263782][ T4952] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 287.284696][ T4952] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 287.323023][ T4952] usb 7-1: Manufacturer: syz [ 287.332906][ T4952] usb 7-1: config 0 descriptor?? [ 287.628989][T10477] fuse: Unknown parameter '0x0000000000000004' [ 287.749978][ T4952] appleir 0003:05AC:8243.0016: unknown main item tag 0x0 [ 287.758054][ T4952] appleir 0003:05AC:8243.0016: No inputs registered, leaving [ 287.800669][ T4952] appleir 0003:05AC:8243.0016: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.6-1/input0 [ 288.318370][T10491] fuse: Unknown parameter 'user_i00000000000000000000003' [ 288.769222][T10505] fuse: Unknown parameter '0x0000000000000004' [ 289.782049][T10525] fuse: Unknown parameter 'user_i00000000000000000000003' [ 289.883448][ T4952] usb 7-1: USB disconnect, device number 18 [ 290.239079][T10532] fuse: Unknown parameter '0x0000000000000004' [ 290.317424][T10536] ip6_vti0: Master is either lo or non-ether device [ 290.415008][ T26] audit: type=1326 audit(1770557683.676:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.2.2141" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1b2739aeb9 code=0x0 [ 290.617864][T10549] fuse: Unknown parameter 'user_i00000000000000000000003' [ 290.749360][ T6059] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 290.852701][T10555] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2149'. [ 290.870190][T10555] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2149'. [ 290.911430][T10555] bridge2: the hash_elasticity option has been deprecated and is always 16 [ 290.957500][ T6059] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 290.996730][ T6059] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 291.018232][ T6059] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 291.039323][ T6059] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 291.077483][T10563] program syz.6.2153 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 291.082065][ T6059] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 291.105624][ T6059] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 291.116408][T10565] fuse: Unknown parameter '0x0000000000000004' [ 291.124429][ T6059] usb 6-1: Manufacturer: syz [ 291.136570][ T6059] usb 6-1: config 0 descriptor?? [ 291.501361][T10575] fuse: Unknown parameter 'user_id00000000000000000000003' [ 291.570160][ T6059] appleir 0003:05AC:8243.0017: unknown main item tag 0x0 [ 291.577950][ T6059] appleir 0003:05AC:8243.0017: No inputs registered, leaving [ 291.622162][ T6059] appleir 0003:05AC:8243.0017: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0 [ 292.185433][T10593] fuse: Unknown parameter '0x0000000000000004' [ 292.943265][T10609] fuse: Unknown parameter 'user_id00000000000000000000003' [ 293.276718][T10621] fuse: Unknown parameter 'fd0x0000000000000004' [ 293.689558][ T14] usb 6-1: USB disconnect, device number 10 [ 293.913087][T10641] fuse: Unknown parameter 'user_id00000000000000000000003' [ 294.108576][T10649] fuse: Unknown parameter 'fd0x0000000000000004' [ 294.528605][ T4373] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 294.737843][ T4373] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 294.762735][ T4373] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 294.776125][T10673] sctp: [Deprecated]: syz.6.2203 (pid 10673) Use of int in max_burst socket option. [ 294.776125][T10673] Use struct sctp_assoc_value instead [ 294.780407][ T4373] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 294.800163][T10675] fuse: Bad value for 'fd' [ 294.801356][ T4373] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 294.820949][ T4373] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 294.832858][ T4373] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 294.850595][ T4373] usb 3-1: Manufacturer: syz [ 294.857602][T10677] fuse: Unknown parameter 'fd0x0000000000000004' [ 294.870040][ T4373] usb 3-1: config 0 descriptor?? [ 295.284793][ T4373] appleir 0003:05AC:8243.0018: unknown main item tag 0x0 [ 295.298046][ T4373] appleir 0003:05AC:8243.0018: No inputs registered, leaving [ 295.302080][T10696] tmpfs: Bad value for 'mpol' [ 295.310852][ T4373] appleir 0003:05AC:8243.0018: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 295.623325][T10704] fuse: Bad value for 'fd' [ 295.754890][T10709] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2217'. [ 295.767005][T10709] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 296.336608][T10733] fuse: Bad value for 'fd' [ 296.660487][T10744] netlink: 152 bytes leftover after parsing attributes in process `syz.5.2232'. [ 297.191938][T10764] fuse: Unknown parameter '0x0000000000000003' [ 297.257342][T10766] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2241'. [ 297.295566][T10766] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2241'. [ 297.354893][T10771] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2241'. [ 297.471364][ T14] usb 3-1: USB disconnect, device number 18 [ 298.085665][T10797] fuse: Unknown parameter '0x0000000000000003' [ 298.328554][ T4373] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 298.530725][ T4373] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 298.549189][ T4373] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 298.600946][ T4373] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 298.623943][ T4373] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 298.659350][ T4373] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 298.714403][ T4373] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 298.729136][ T4373] usb 4-1: Manufacturer: syz [ 298.754924][ T4373] usb 4-1: config 0 descriptor?? [ 298.938078][T10826] fuse: Unknown parameter '0x0000000000000003' [ 299.205530][ T4373] appleir 0003:05AC:8243.0019: unknown main item tag 0x0 [ 299.218004][ T4373] appleir 0003:05AC:8243.0019: No inputs registered, leaving [ 299.240036][ T4373] appleir 0003:05AC:8243.0019: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 300.534609][T10855] fuse: Unknown parameter '0x0000000000000003' [ 300.840421][T10862] 9pnet_fd: Insufficient options for proto=fd [ 301.329920][ T4324] usb 4-1: USB disconnect, device number 21 [ 301.674807][T10884] process 'syz.4.2288' launched './file0' with NULL argv: empty string added [ 301.797409][T10886] fuse: Unknown parameter '0x0000000000000003' [ 302.180013][T10892] fuse: Unknown parameter '0x0000000000000003' [ 302.746950][ T26] audit: type=1326 audit(1770557696.006:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10906 comm="syz.6.2295" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1dc559aeb9 code=0x0 [ 302.888730][ T4373] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 303.090643][ T4373] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 303.106484][T10912] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 303.112221][ T4373] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 303.128393][T10912] overlayfs: missing 'lowerdir' [ 303.161955][ T4373] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 303.192352][ T4373] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 303.237722][ T4373] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 303.267966][ T4373] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 303.285041][ T4373] usb 5-1: Manufacturer: syz [ 303.298002][ T4373] usb 5-1: config 0 descriptor?? [ 303.730655][ T4373] appleir 0003:05AC:8243.001A: unknown main item tag 0x0 [ 303.737623][T10924] fuse: Unknown parameter 'fd0x0000000000000003' [ 303.742072][ T4373] appleir 0003:05AC:8243.001A: No inputs registered, leaving [ 303.783952][ T4373] appleir 0003:05AC:8243.001A: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0 [ 305.880444][ T4324] usb 5-1: USB disconnect, device number 23 [ 306.328698][ T4952] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 306.374141][T10959] fuse: Unknown parameter 'fd0x0000000000000003' [ 306.531450][ T4952] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 306.547256][ T4952] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 306.568543][ T4952] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 306.578726][ T4952] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 306.595221][ T4952] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 306.604800][ T4952] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 306.613314][ T4952] usb 6-1: Manufacturer: syz [ 306.620206][ T4952] usb 6-1: config 0 descriptor?? [ 306.716083][T10968] netlink: 152 bytes leftover after parsing attributes in process `syz.4.2320'. [ 307.043910][ T4952] appleir 0003:05AC:8243.001B: unknown main item tag 0x0 [ 307.070879][ T4952] appleir 0003:05AC:8243.001B: No inputs registered, leaving [ 307.097264][ T4952] appleir 0003:05AC:8243.001B: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0 [ 307.494002][T10996] fuse: Unknown parameter 'fd0x0000000000000003' [ 308.926977][T11045] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2351'. [ 309.162107][ T4373] usb 6-1: USB disconnect, device number 11 [ 309.277027][T11057] fuse: Unknown parameter 'mrootmode' [ 310.415238][ T26] audit: type=1326 audit(1770557703.676:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff82df9aeb9 code=0x7ffc0000 [ 310.518876][ T26] audit: type=1326 audit(1770557703.726:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7ff82df9aeb9 code=0x7ffc0000 [ 310.588085][ T26] audit: type=1326 audit(1770557703.726:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff82df9ac22 code=0x7ffc0000 [ 310.670340][ T26] audit: type=1326 audit(1770557703.726:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff82df9ac22 code=0x7ffc0000 [ 310.736614][ T26] audit: type=1326 audit(1770557703.726:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff82df9aeb9 code=0x7ffc0000 [ 310.825044][ T26] audit: type=1326 audit(1770557703.726:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff82df9aeb9 code=0x7ffc0000 [ 310.958602][ T26] audit: type=1326 audit(1770557703.726:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7ff82df9aeb9 code=0x7ffc0000 [ 311.032126][ T26] audit: type=1326 audit(1770557703.726:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff82df9aeb9 code=0x7ffc0000 [ 311.153843][ T26] audit: type=1326 audit(1770557703.726:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff82df9aeb9 code=0x7ffc0000 [ 311.226988][ T26] audit: type=1326 audit(1770557703.726:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11106 comm="syz.4.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff82df5b78e code=0x7ffc0000 [ 311.642612][T11156] netlink: 3 bytes leftover after parsing attributes in process `syz.5.2402'. [ 315.077767][T11303] overlayfs: workdir and upperdir must be separate subtrees [ 315.342114][T11311] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2466'. [ 315.708753][T11331] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2475'. [ 316.332834][T11360] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-xor(2) [ 316.957048][T11387] device ipvlan0 entered promiscuous mode [ 316.965943][T11384] device ipvlan0 left promiscuous mode [ 317.044366][T11390] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2498'. [ 317.290690][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.297239][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.336695][T11401] mmap: syz.3.2504 (11401) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 317.349844][T11401] [ 317.352469][T11401] ====================================================== [ 317.359596][T11401] WARNING: possible circular locking dependency detected [ 317.366895][T11401] syzkaller #0 Not tainted [ 317.371433][T11401] ------------------------------------------------------ [ 317.378742][T11401] syz.3.2504/11401 is trying to acquire lock: [ 317.385167][T11401] ffff888054f208e0 (&sb->s_type->i_mutex_key#13){+.+.}-{3:3}, at: process_measurement+0x3a2/0x1c30 [ 317.396455][T11401] [ 317.396455][T11401] but task is already holding lock: [ 317.403986][T11401] ffff88807db988d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x1a4/0x7b0 [ 317.414363][T11401] [ 317.414363][T11401] which lock already depends on the new lock. [ 317.414363][T11401] [ 317.425034][T11401] [ 317.425034][T11401] the existing dependency chain (in reverse order) is: [ 317.434248][T11401] [ 317.434248][T11401] -> #1 (&mm->mmap_lock){++++}-{3:3}: [ 317.442419][T11401] down_read_killable+0x4c/0x340 [ 317.448182][T11401] mmap_read_lock_killable+0x1d/0x60 [ 317.454093][T11401] lock_mm_and_find_vma+0x2b1/0x2f0 [ 317.460004][T11401] do_user_addr_fault+0x2db/0xb10 [ 317.465863][T11401] exc_page_fault+0x60/0x100 [ 317.471168][T11401] asm_exc_page_fault+0x22/0x30 [ 317.476834][T11401] fault_in_readable+0x13e/0x1f0 [ 317.482410][T11401] fault_in_iov_iter_readable+0xbb/0x2e0 [ 317.489297][T11401] generic_perform_write+0x1f1/0x5c0 [ 317.495447][T11401] __generic_file_write_iter+0x148/0x2a0 [ 317.501883][T11401] generic_file_write_iter+0xab/0x2e0 [ 317.507984][T11401] vfs_write+0x4b1/0xa30 [ 317.512844][T11401] ksys_write+0x14c/0x250 [ 317.517712][T11401] do_syscall_64+0x4c/0xa0 [ 317.522862][T11401] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 317.529391][T11401] [ 317.529391][T11401] -> #0 (&sb->s_type->i_mutex_key#13){+.+.}-{3:3}: [ 317.538362][T11401] __lock_acquire+0x2d07/0x7d10 [ 317.543760][T11401] lock_acquire+0x1bb/0x4a0 [ 317.549056][T11401] down_write+0x36/0x60 [ 317.553830][T11401] process_measurement+0x3a2/0x1c30 [ 317.559837][T11401] ima_file_mmap+0x102/0x150 [ 317.565304][T11401] __se_sys_remap_file_pages+0x559/0x7b0 [ 317.571640][T11401] do_syscall_64+0x4c/0xa0 [ 317.576678][T11401] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 317.583183][T11401] [ 317.583183][T11401] other info that might help us debug this: [ 317.583183][T11401] [ 317.593611][T11401] Possible unsafe locking scenario: [ 317.593611][T11401] [ 317.601084][T11401] CPU0 CPU1 [ 317.606557][T11401] ---- ---- [ 317.611940][T11401] lock(&mm->mmap_lock); [ 317.616288][T11401] lock(&sb->s_type->i_mutex_key#13); [ 317.624842][T11401] lock(&mm->mmap_lock); [ 317.632197][T11401] lock(&sb->s_type->i_mutex_key#13); [ 317.637682][T11401] [ 317.637682][T11401] *** DEADLOCK *** [ 317.637682][T11401] [ 317.646265][T11401] 1 lock held by syz.3.2504/11401: [ 317.651458][T11401] #0: ffff88807db988d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x1a4/0x7b0 [ 317.662807][T11401] [ 317.662807][T11401] stack backtrace: [ 317.669020][T11401] CPU: 1 PID: 11401 Comm: syz.3.2504 Not tainted syzkaller #0 [ 317.676778][T11401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 317.687279][T11401] Call Trace: [ 317.690571][T11401] [ 317.693596][T11401] dump_stack_lvl+0x188/0x24e [ 317.698548][T11401] ? load_image+0x400/0x400 [ 317.703160][T11401] ? show_regs_print_info+0x12/0x12 [ 317.708742][T11401] ? print_circular_bug+0x12b/0x1a0 [ 317.714065][T11401] check_noncircular+0x296/0x330 [ 317.719216][T11401] ? look_up_lock_class+0x75/0x140 [ 317.724948][T11401] ? add_chain_block+0x940/0x940 [ 317.729997][T11401] ? lockdep_lock+0xf1/0x1f0 [ 317.735010][T11401] ? _find_first_zero_bit+0xcf/0x100 [ 317.740970][T11401] __lock_acquire+0x2d07/0x7d10 [ 317.746016][T11401] ? ima_match_policy+0x107/0x2120 [ 317.751320][T11401] ? __lock_acquire+0x7d10/0x7d10 [ 317.756442][T11401] ? verify_lock_unused+0x140/0x140 [ 317.761753][T11401] ? ima_match_policy+0x107/0x2120 [ 317.766982][T11401] ? ima_match_policy+0x2093/0x2120 [ 317.772392][T11401] lock_acquire+0x1bb/0x4a0 [ 317.777012][T11401] ? process_measurement+0x3a2/0x1c30 [ 317.782492][T11401] ? __might_sleep+0xd0/0xd0 [ 317.787097][T11401] ? read_lock_is_recursive+0x10/0x10 [ 317.792770][T11401] ? ima_get_action+0x71/0xa0 [ 317.797690][T11401] down_write+0x36/0x60 [ 317.802088][T11401] ? process_measurement+0x3a2/0x1c30 [ 317.807468][T11401] process_measurement+0x3a2/0x1c30 [ 317.812709][T11401] ? ima_file_mmap+0x150/0x150 [ 317.817651][T11401] ? aa_file_perm+0x112/0xf00 [ 317.822407][T11401] ? aa_file_perm+0x112/0xf00 [ 317.827208][T11401] ? mtree_load+0x100/0xa70 [ 317.831819][T11401] ? apparmor_current_getsecid_subj+0xb1/0x110 [ 317.838040][T11401] ima_file_mmap+0x102/0x150 [ 317.842663][T11401] ? end_current_label_crit_section+0x14b/0x170 [ 317.849516][T11401] ? ima_file_free+0x3e0/0x3e0 [ 317.854284][T11401] ? common_file_perm+0x171/0x1c0 [ 317.859587][T11401] ? bpf_lsm_mmap_file+0x5/0x10 [ 317.864450][T11401] ? security_mmap_file+0x11b/0x180 [ 317.870031][T11401] __se_sys_remap_file_pages+0x559/0x7b0 [ 317.875675][T11401] ? up_write+0x1bb/0x420 [ 317.880012][T11401] ? __x64_sys_remap_file_pages+0xc0/0xc0 [ 317.885741][T11401] ? lock_chain_count+0x20/0x20 [ 317.890690][T11401] ? lockdep_hardirqs_on+0x94/0x140 [ 317.896145][T11401] ? __x64_sys_remap_file_pages+0x1c/0xc0 [ 317.901985][T11401] do_syscall_64+0x4c/0xa0 [ 317.906608][T11401] ? clear_bhb_loop+0x60/0xb0 [ 317.911399][T11401] ? clear_bhb_loop+0x60/0xb0 [ 317.916088][T11401] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 317.922007][T11401] RIP: 0033:0x7f0c4379aeb9 [ 317.926519][T11401] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 317.946310][T11401] RSP: 002b:00007f0c446cd028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 317.955179][T11401] RAX: ffffffffffffffda RBX: 00007f0c43a15fa0 RCX: 00007f0c4379aeb9 [ 317.963262][T11401] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000200000ffc000 [ 317.972147][T11401] RBP: 00007f0c43808c1f R08: 0000000000000001 R09: 0000000000000000 [ 317.980528][T11401] R10: 000000000000e459 R11: 0000000000000246 R12: 0000000000000000 [ 317.988768][T11401] R13: 00007f0c43a16038 R14: 00007f0c43a15fa0 R15: 00007fff0cfc5de8 [ 317.997282][T11401]