last executing test programs: 4.927484889s ago: executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000004200)={{0x12, 0x1, 0x0, 0xe2, 0x79, 0x3b, 0x10, 0x5d1, 0x2001, 0x900, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x4d, 0x2f, 0x9c}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000a40)={0x34, &(0x7f0000000800)={0x0, 0x0, 0x2, "d784"}, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000004c0)={0x44, &(0x7f0000000180)={0x0, 0x0, 0x2, "8144"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 2.953406014s ago: executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10) syz_usb_connect(0x0, 0x24, &(0x7f0000000980)={{0x12, 0x1, 0x300, 0xbe, 0x9a, 0x8e, 0x40, 0x499, 0x1003, 0xa0fc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xec, 0x70, 0x91}}]}}]}}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0}) 2.692849514s ago: executing program 4: syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x53d, &(0x7f0000000a80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc1, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000002700)=ANY=[], 0x1015, 0x0) 2.537894358s ago: executing program 3: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000028c0)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ad30c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b82614b2550bae878ec65a6fe5f7ee415af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd7fe926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846b3e578af7dc7d5e87d44ff828de453f7edf34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd353646000000000000000000000000000000000000000000000000eeffffff000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37c53cb57ff9d57ac41afb92a9d13e5de7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981179186e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489a261f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db55474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1386f58c5eeab6dac2877225e90995554e92cb5d2f6af1f70188027773d82e5f43d0dbc60fd3dc8763c3aa884e7a3d06496384e179be004e56176dfc64fe5b1b0e6ede32527d6bed6225d9b6efe63b3798f8606ab2e5b50a15fd66f54d49ac9eaeb79dd87ec000000000000"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000e1e, 0x0, 0x60e}, 0x2c) 2.444291592s ago: executing program 4: bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000008952000000fc00001811", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"}) 2.417383097s ago: executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001ac0)={0x0, 0x9, &(0x7f0000001a80)={&(0x7f0000001940)={0x20, r1, 0x1, 0x0, 0x0, {0x1b}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}}, 0x0) 2.385084762s ago: executing program 3: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10) io_setup(0x3, &(0x7f0000000340)) 2.367752454s ago: executing program 4: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='global_dirty_state\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='global_dirty_state\x00', r2}, 0x10) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r3, &(0x7f0000000180), 0x40001) 2.291101486s ago: executing program 4: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) ioctl$HIDIOCGREPORTINFO(r0, 0xc00c4809, &(0x7f00000001c0)={0x1, 0x0, 0x183}) syz_open_dev$tty20(0xc, 0x4, 0x1) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x6) r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x0) r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000140)) r3 = dup3(r2, r1, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r3, 0xc020662a, &(0x7f0000000540)={0x4010040c000, 0xeb0}) sched_setscheduler(0x0, 0x1, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f0000000740)=[{{&(0x7f00000005c0)=@tipc, 0x80, &(0x7f0000000400)=[{&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000000640)=""/251, 0xfb}], 0x2}}], 0x40002db, 0x2, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080005300000000faff0000940000000fad413e550000000f04000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10) ioprio_set$pid(0x0, 0x0, 0x0) r7 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r7, 0x800) lseek(r7, 0x200, 0x0) r8 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0) sendfile(r7, r8, 0x0, 0xf800) 2.286253157s ago: executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x5, 0x4, 0xfff, 0x3}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000040), &(0x7f0000000200)='%pK \x00'}, 0x20) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r2) setsockopt$inet6_IPV6_RTHDR(r3, 0x29, 0x39, 0x0, 0x0) 2.234034355s ago: executing program 3: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) ioctl$HIDIOCGREPORTINFO(r0, 0xc00c4809, &(0x7f00000001c0)={0x1, 0x0, 0x183}) syz_open_dev$tty20(0xc, 0x4, 0x1) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x6) r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x0) r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000140)) r3 = dup3(r2, r1, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r3, 0xc020662a, &(0x7f0000000540)={0x4010040c000, 0xeb0}) sched_setscheduler(0x0, 0x1, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f0000000740)=[{{&(0x7f00000005c0)=@tipc, 0x80, &(0x7f0000000400)=[{&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000000640)=""/251, 0xfb}], 0x2}}], 0x40002db, 0x2, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080005300000000faff0000940000000fad413e550000000f04000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10) ioprio_set$pid(0x0, 0x0, 0x0) r7 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r7, 0x800) lseek(r7, 0x200, 0x0) r8 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0) sendfile(r7, r8, 0x0, 0xf800) 1.201178824s ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d0000000002a870000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)=@ipv6_getroute={0x1c, 0x1a, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}, 0x1c}}, 0x0) 1.167854139s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x5, 0x4, 0xfff, 0x3}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000040), &(0x7f0000000200)='%pK \x00'}, 0x20) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r2) setsockopt$inet6_IPV6_RTHDR(r3, 0x29, 0x39, 0x0, 0x0) 1.143375243s ago: executing program 0: pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) splice(r2, 0x0, r0, 0x0, 0x1, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) 1.132516125s ago: executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1810714, &(0x7f0000000340)={[{@journal_dev={'journal_dev', 0x3d, 0x9}}, {@noblock_validity}, {@usrquota}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@jqfmt_vfsold}, {@usrjquota, 0x5}, {@min_batch_time={'min_batch_time', 0x3d, 0xa9f}}, {@nodiscard}]}, 0xff, 0x451, &(0x7f0000000d00)="$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") creat(&(0x7f0000000040)='./bus\x00', 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x4}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1807000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) creat(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) creat(&(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) unlink(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 1.121042677s ago: executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) eventfd(0x0) 1.09632931s ago: executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = dup2(r1, r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10) flistxattr(0xffffffffffffffff, 0x0, 0x0) 1.067393275s ago: executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000380)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000040)='mm_lru_insertion\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r2, &(0x7f0000000180), 0x40010) 1.024072712s ago: executing program 1: syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2000082, &(0x7f00000002c0)={[{@numtail}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'maccenteuro'}}, {@shortname_lower}, {@fat=@nocase}, {@shortname_mixed}, {@numtail}, {@shortname_lower}, {@utf8}, {@fat=@time_offset={'time_offset', 0x3d, 0x196}}, {@fat=@nfs}, {@utf8no}, {@shortname_win95}, {@utf8no}]}, 0x26, 0x358, &(0x7f0000000480)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 1.012019883s ago: executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001ac0)={0x0, 0x9, &(0x7f0000001a80)={&(0x7f0000001940)={0x20, r1, 0x1, 0x0, 0x0, {0x1b}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}}, 0x0) 992.018337ms ago: executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000180)=0x4004, 0x4) setrlimit(0x7, &(0x7f0000000300)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00'}, 0x10) 980.140608ms ago: executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.idle_time\x00', 0x26e1, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000001c00)='ext4_es_insert_delayed_block\x00', r2}, 0x10) write$cgroup_subtree(r0, &(0x7f00000009c0)=ANY=[], 0xda00) 908.48486ms ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='ext4_es_find_extent_range_enter\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='ext4_es_find_extent_range_enter\x00', r2}, 0x10) mkdir(&(0x7f0000000080)='./file1\x00', 0x0) 874.167185ms ago: executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2001095, 0x0) r0 = socket(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'}) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r2, 0x400452c8, 0x0) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001080), 0x189080) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) recvmmsg(r0, &(0x7f0000000f40)=[{{&(0x7f0000000180)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000240)=""/84, 0x54}], 0x1}, 0x101}, {{&(0x7f00000002c0)=@in={0x2, 0x0, @empty}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000340)=""/149, 0x95}, {&(0x7f0000000400)=""/223, 0xdf}], 0x2}, 0xffff}, {{&(0x7f0000000540)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x80, &(0x7f0000000740)=[{&(0x7f00000005c0)=""/240, 0xf0}, {&(0x7f00000006c0)=""/82, 0x52}], 0x2, &(0x7f0000000780)=""/138, 0x8a}, 0xe7b}, {{&(0x7f0000000cc0)=@l2tp={0x2, 0x0, @initdev}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000000d40)=""/15, 0xf}, {&(0x7f0000000d80)=""/98, 0x62}, {&(0x7f0000000e00)=""/150, 0x96}], 0x3, &(0x7f0000000f00)=""/29, 0x1d}, 0x15}], 0x4, 0x82, &(0x7f0000001040)={0x0, 0x989680}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000840)='./file0\x00', 0x83873c, &(0x7f00000000c0)={[{@errors_continue}, {@grpjquota, 0x1e}, {@nodiscard}, {@jqfmt_vfsold}, {@jqfmt_vfsv0}, {@barrier}, {@block_validity}, {@test_dummy_encryption}, {@journal_async_commit}, {@nodelalloc}, {@noquota}, {@discard}]}, 0xf4, 0x43a, &(0x7f0000000880)="$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") 741.017645ms ago: executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10) syz_usb_connect(0x0, 0x24, &(0x7f0000000980)={{0x12, 0x1, 0x300, 0xbe, 0x9a, 0x8e, 0x40, 0x499, 0x1003, 0xa0fc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xec, 0x70, 0x91}}]}}]}}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0}) 651.232209ms ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x5, 0x4, 0xfff, 0x3}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000040), &(0x7f0000000200)='%pK \x00'}, 0x20) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r2) setsockopt$inet6_IPV6_RTHDR(r3, 0x29, 0x39, 0x0, 0x0) 622.281994ms ago: executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2001095, 0x0) r0 = socket(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'}) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r2, 0x400452c8, 0x0) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001080), 0x189080) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) recvmmsg(r0, &(0x7f0000000f40)=[{{&(0x7f0000000180)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000240)=""/84, 0x54}], 0x1}, 0x101}, {{&(0x7f00000002c0)=@in={0x2, 0x0, @empty}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000340)=""/149, 0x95}, {&(0x7f0000000400)=""/223, 0xdf}], 0x2}, 0xffff}, {{&(0x7f0000000540)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x80, &(0x7f0000000740)=[{&(0x7f00000005c0)=""/240, 0xf0}, {&(0x7f00000006c0)=""/82, 0x52}], 0x2, &(0x7f0000000780)=""/138, 0x8a}, 0xe7b}, {{&(0x7f0000000cc0)=@l2tp={0x2, 0x0, @initdev}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000000d40)=""/15, 0xf}, {&(0x7f0000000d80)=""/98, 0x62}, {&(0x7f0000000e00)=""/150, 0x96}], 0x3, &(0x7f0000000f00)=""/29, 0x1d}, 0x15}], 0x4, 0x82, &(0x7f0000001040)={0x0, 0x989680}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000840)='./file0\x00', 0x83873c, &(0x7f00000000c0)={[{@errors_continue}, {@grpjquota, 0x1e}, {@nodiscard}, {@jqfmt_vfsold}, {@jqfmt_vfsv0}, {@barrier}, {@block_validity}, {@test_dummy_encryption}, {@journal_async_commit}, {@nodelalloc}, {@noquota}, {@discard}]}, 0xf4, 0x43a, &(0x7f0000000880)="$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") 28.199955ms ago: executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10) unshare(0x64000600) sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000003c0)=ANY=[], 0x14}}, 0x0) 26.669866ms ago: executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000200)=ANY=[], 0x40) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000300)=[@mss, @mss, @sack_perm, @sack_perm, @mss, @timestamp, @mss, @sack_perm], 0x8) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) socket$packet(0x11, 0x2, 0x300) sendto$inet(r0, &(0x7f00000004c0)="3ce2de4d8d957a8de4e490b6cd04b988d4edef164bd3377aa381b5f50b7ca414516489f78cd7208982e9bde22b2b7c1c7606d565477f3db9d2b077283644c0f27ab52a863a42863e06944e40a0b3c5d21c8cbe102e7f726263f28aef1bc12a069063d4c30e8f329fdb36859be727fbef4314161e5fb5f01ae00a2634d5cdecca2089c62e32f4c919886b2b88d237e28731", 0x91, 0x805, 0x0, 0x0) 0s ago: executing program 4: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000380)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000040)='mm_lru_insertion\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r2, &(0x7f0000000180), 0x40010) kernel console output (not intermixed with test programs): T5134] syz-executor.2[5134] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.866209][ T5134] syz-executor.2[5134] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 132.031996][ T5152] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 132.059662][ T333] usb 5-1: Using ep0 maxpacket: 32 [ 132.092720][ T5159] loop2: detected capacity change from 0 to 512 [ 132.109331][ T5162] syz-executor.0[5162] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 132.109408][ T5162] syz-executor.0[5162] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 132.112052][ T5159] EXT4-fs warning (device loop2): ext4_enable_quotas:6987: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 132.150415][ T5159] EXT4-fs (loop2): mount failed [ 132.164285][ T715] usb 2-1: USB disconnect, device number 16 [ 132.228395][ T5170] bridge0: port 1(bridge_slave_0) entered disabled state [ 132.236445][ T5170] bridge0: port 2(bridge_slave_1) entered disabled state [ 132.281918][ T5170] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 132.289126][ T5170] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 132.298768][ T5170] bridge0: port 1(bridge_slave_0) entered blocking state [ 132.305867][ T5170] bridge0: port 1(bridge_slave_0) entered forwarding state [ 132.314353][ T5170] bridge0: port 2(bridge_slave_1) entered blocking state [ 132.319175][ T5179] syz-executor.1[5179] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 132.321249][ T5170] bridge0: port 2(bridge_slave_1) entered forwarding state [ 132.331196][ T5170] IPv6: ADDRCONF(NETDEV_CHANGE): ipip0: link becomes ready [ 132.333923][ T5179] syz-executor.1[5179] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 132.340934][ T5170] IPv6: ADDRCONF(NETDEV_CHANGE): ipip0: link becomes ready [ 132.369606][ T333] usb 5-1: New USB device found, idVendor=0584, idProduct=0008, bcdDevice= 1.02 [ 132.378657][ T333] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 132.404041][ T333] usb 5-1: Product: syz [ 132.408160][ T333] usb 5-1: Manufacturer: syz [ 132.421367][ T333] usb 5-1: SerialNumber: syz [ 132.429913][ T333] usb 5-1: config 0 descriptor?? [ 132.470089][ T333] ums-alauda 5-1:0.0: USB Mass Storage device detected [ 132.490443][ T5200] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 132.581528][ T5209] loop0: detected capacity change from 0 to 128 [ 132.589848][ T5209] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 132.601718][ T5209] ext4 filesystem being mounted at /root/syzkaller-testdir2223555240/syzkaller.JtI0x0/139/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff) [ 132.671446][ T333] usb 5-1: USB disconnect, device number 23 [ 132.678760][ T4113] EXT4-fs (loop0): unmounting filesystem. [ 132.720928][ T5217] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 132.836820][ T5231] loop0: detected capacity change from 0 to 2048 [ 132.880017][ T5231] loop0: p2 < > [ 133.182142][ T5250] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'. [ 133.564105][ T5265] loop2: detected capacity change from 0 to 512 [ 133.571265][ T5265] EXT4-fs: Ignoring removed mblk_io_submit option [ 133.577991][ T5265] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 133.589825][ T5265] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor.2: corrupted in-inode xattr [ 133.602241][ T5265] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 133.614823][ T5265] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 133.640171][ T4190] EXT4-fs (loop2): unmounting filesystem. [ 133.945902][ T5291] loop4: detected capacity change from 0 to 512 [ 133.947256][ T5289] loop1: detected capacity change from 0 to 512 [ 133.953004][ T5291] EXT4-fs: Ignoring removed mblk_io_submit option [ 133.962500][ T5289] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz-executor.1: inode #1: comm syz-executor.1: iget: illegal inode # [ 133.964974][ T5291] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 133.978038][ T5289] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 1 err=-117 [ 133.990264][ T715] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 134.000859][ T5289] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz-executor.1: inode #1: comm syz-executor.1: iget: illegal inode # [ 134.007233][ T5291] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor.4: corrupted in-inode xattr [ 134.020840][ T5289] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 1 err=-117 [ 134.033461][ T5291] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 134.049909][ T5289] EXT4-fs (loop1): 1 orphan inode deleted [ 134.057534][ T5291] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 134.062680][ T5289] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 134.096531][ T1871] EXT4-fs (loop1): unmounting filesystem. [ 134.108316][ T4244] EXT4-fs (loop4): unmounting filesystem. [ 134.262447][ T5319] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 134.279693][ T715] usb 3-1: Using ep0 maxpacket: 32 [ 134.285752][ T5321] loop1: detected capacity change from 0 to 512 [ 134.294472][ T5321] EXT4-fs: Ignoring removed mblk_io_submit option [ 134.302436][ T5321] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 134.313859][ T5321] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor.1: corrupted in-inode xattr [ 134.326693][ T5321] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 134.338948][ T5321] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 134.366442][ T1871] EXT4-fs (loop1): unmounting filesystem. [ 134.559586][ T715] usb 3-1: New USB device found, idVendor=0584, idProduct=0008, bcdDevice= 1.02 [ 134.568539][ T715] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 134.576330][ T715] usb 3-1: Product: syz [ 134.580357][ T715] usb 3-1: Manufacturer: syz [ 134.584692][ T715] usb 3-1: SerialNumber: syz [ 134.590295][ T715] usb 3-1: config 0 descriptor?? [ 134.629997][ T715] ums-alauda 3-1:0.0: USB Mass Storage device detected [ 134.810702][ T28] kauditd_printk_skb: 2 callbacks suppressed [ 134.810718][ T28] audit: type=1400 audit(1717413837.923:1078): avc: denied { listen } for pid=5347 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 134.846233][ T333] usb 3-1: USB disconnect, device number 15 [ 135.035426][ T5354] loop4: detected capacity change from 0 to 512 [ 135.041960][ T5354] EXT4-fs: Ignoring removed mblk_io_submit option [ 135.048509][ T5354] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 135.060125][ T5354] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor.4: corrupted in-inode xattr [ 135.072550][ T5354] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 135.084877][ T5354] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 135.107425][ T4244] EXT4-fs (loop4): unmounting filesystem. [ 135.157638][ T5364] loop4: detected capacity change from 0 to 512 [ 135.164317][ T5364] EXT4-fs: Ignoring removed mblk_io_submit option [ 135.170891][ T5364] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 135.181957][ T5364] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor.4: corrupted in-inode xattr [ 135.194390][ T5364] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 135.206700][ T5364] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 135.229028][ T4244] EXT4-fs (loop4): unmounting filesystem. [ 135.405707][ T5380] loop4: detected capacity change from 0 to 512 [ 135.415248][ T5380] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz-executor.4: inode #1: comm syz-executor.4: iget: illegal inode # [ 135.430619][ T5380] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz-executor.4: error while reading EA inode 1 err=-117 [ 135.443619][ T5380] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz-executor.4: inode #1: comm syz-executor.4: iget: illegal inode # [ 135.457469][ T5380] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz-executor.4: error while reading EA inode 1 err=-117 [ 135.470484][ T5380] EXT4-fs (loop4): 1 orphan inode deleted [ 135.476104][ T5380] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 135.494314][ T4244] EXT4-fs (loop4): unmounting filesystem. [ 135.511256][ T5383] incfs_lookup_dentry err:-14 [ 135.515775][ T5383] incfs: Can't find or create .index dir in ./file0 [ 135.522296][ T5383] incfs: mount failed -14 [ 135.594279][ T5394] loop2: detected capacity change from 0 to 512 [ 135.602900][ T5394] EXT4-fs (loop2): orphan cleanup on readonly fs [ 135.609385][ T5394] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=4 [ 135.618746][ T5394] EXT4-fs warning (device loop2): ext4_enable_quotas:6987: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 135.633870][ T5394] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 135.640897][ T5394] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz-executor.2: bg 0: block 64: padding at end of block bitmap is not set [ 135.655564][ T5394] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6157: Corrupt filesystem [ 135.664457][ T5394] EXT4-fs (loop2): 1 orphan inode deleted [ 135.670117][ T5394] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 135.764032][ T4190] EXT4-fs (loop2): unmounting filesystem. [ 136.079552][ T333] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 136.126105][ T5402] loop0: detected capacity change from 0 to 512 [ 136.135283][ T5402] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.0: inline data xattr refers to an external xattr inode [ 136.150690][ T5402] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz-executor.0: couldn't read orphan inode 12 (err -117) [ 136.163255][ T5402] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 136.188172][ T4113] EXT4-fs (loop0): unmounting filesystem. [ 136.272589][ T28] audit: type=1326 audit(1717413839.383:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2756c7cee9 code=0x0 [ 136.349497][ T333] usb 3-1: Using ep0 maxpacket: 32 [ 136.397950][ T3566] bridge0: port 3(syz_tun) entered disabled state [ 136.406253][ T3566] device syz_tun left promiscuous mode [ 136.411669][ T3566] bridge0: port 3(syz_tun) entered disabled state [ 136.556764][ T28] audit: type=1400 audit(1717413839.663:1080): avc: denied { read } for pid=5415 comm="syz-executor.3" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 136.590612][ T28] audit: type=1400 audit(1717413839.663:1081): avc: denied { open } for pid=5415 comm="syz-executor.3" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 136.637473][ T5415] bridge0: port 1(bridge_slave_0) entered blocking state [ 136.644460][ T5415] bridge0: port 1(bridge_slave_0) entered disabled state [ 136.652016][ T5415] device bridge_slave_0 entered promiscuous mode [ 136.659186][ T5415] bridge0: port 2(bridge_slave_1) entered blocking state [ 136.666149][ T5415] bridge0: port 2(bridge_slave_1) entered disabled state [ 136.666776][ T5415] device bridge_slave_1 entered promiscuous mode [ 136.689622][ T333] usb 3-1: New USB device found, idVendor=0584, idProduct=0008, bcdDevice= 1.02 [ 136.698520][ T333] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 136.706378][ T333] usb 3-1: Product: syz [ 136.710704][ T333] usb 3-1: Manufacturer: syz [ 136.715084][ T333] usb 3-1: SerialNumber: syz [ 136.720288][ T333] usb 3-1: config 0 descriptor?? [ 136.768782][ T5415] bridge0: port 2(bridge_slave_1) entered blocking state [ 136.775798][ T5415] bridge0: port 2(bridge_slave_1) entered forwarding state [ 136.783014][ T5415] bridge0: port 1(bridge_slave_0) entered blocking state [ 136.789911][ T5415] bridge0: port 1(bridge_slave_0) entered forwarding state [ 136.797597][ T333] ums-alauda 3-1:0.0: USB Mass Storage device detected [ 136.821354][ T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 136.828879][ T715] bridge0: port 1(bridge_slave_0) entered disabled state [ 136.836085][ T715] bridge0: port 2(bridge_slave_1) entered disabled state [ 136.845382][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 136.853720][ T24] bridge0: port 1(bridge_slave_0) entered blocking state [ 136.860582][ T24] bridge0: port 1(bridge_slave_0) entered forwarding state [ 136.871715][ T715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 136.879971][ T715] bridge0: port 2(bridge_slave_1) entered blocking state [ 136.886854][ T715] bridge0: port 2(bridge_slave_1) entered forwarding state [ 136.911446][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 136.920840][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 136.928648][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 136.940734][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 136.949096][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 136.956549][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 136.967972][ T5415] device veth0_vlan entered promiscuous mode [ 136.980470][ T5415] device veth1_macvtap entered promiscuous mode [ 136.990516][ T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 137.000762][ T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 137.009056][ T24] usb 3-1: USB disconnect, device number 16 [ 137.020898][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 137.040313][ T4337] device bridge_slave_1 left promiscuous mode [ 137.046660][ T4337] bridge0: port 2(bridge_slave_1) entered disabled state [ 137.054528][ T4337] device bridge_slave_0 left promiscuous mode [ 137.062921][ T4337] bridge0: port 1(bridge_slave_0) entered disabled state [ 137.065277][ T5424] incfs_lookup_dentry err:-14 [ 137.074633][ T5424] incfs: Can't find or create .index dir in ./file0 [ 137.081462][ T5424] incfs: mount failed -14 [ 137.081487][ T4337] device veth1_macvtap left promiscuous mode [ 137.091881][ T4337] device veth0_vlan left promiscuous mode [ 137.388455][ T5434] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. [ 137.409548][ T1579] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 137.419437][ T715] hid-generic 0000:0000:0000.001B: hidraw0: HID v0.00 Device [syz1] on syz1 [ 137.457484][ T5440] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 137.480079][ T5442] loop3: detected capacity change from 0 to 16 [ 137.486871][ T5442] erofs: (device loop3): mounted with root inode @ nid 36. [ 137.494916][ T5442] syz-executor.3: attempt to access beyond end of device [ 137.494916][ T5442] loop3: rw=0, sector=1049256, nr_sectors = 128 limit=16 [ 137.615304][ T5449] incfs_lookup_dentry err:-14 [ 137.620487][ T5449] incfs: Can't find or create .index dir in ./file0 [ 137.627049][ T5449] incfs: mount failed -14 [ 137.669504][ T1579] usb 1-1: Using ep0 maxpacket: 32 [ 137.791458][ T5453] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. [ 137.848835][ T5457] serio: Serial port pts0 [ 137.961634][ T5444] loop3: detected capacity change from 0 to 131072 [ 137.969732][ T5444] F2FS-fs (loop3): invalid crc value [ 137.977072][ T5444] F2FS-fs (loop3): Found nat_bits in checkpoint [ 138.016988][ T5444] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 138.035498][ T28] audit: type=1400 audit(1717413841.143:1082): avc: denied { execute } for pid=5443 comm="syz-executor.3" path="/root/syzkaller-testdir1346682207/syzkaller.C5NErC/8/file0/bus" dev="loop3" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 138.039903][ T1579] usb 1-1: New USB device found, idVendor=0584, idProduct=0008, bcdDevice= 1.02 [ 138.072244][ T1579] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 138.080174][ T1579] usb 1-1: Product: syz [ 138.084165][ T1579] usb 1-1: Manufacturer: syz [ 138.088590][ T1579] usb 1-1: SerialNumber: syz [ 138.093752][ T1579] usb 1-1: config 0 descriptor?? [ 138.140273][ T1579] ums-alauda 1-1:0.0: USB Mass Storage device detected [ 138.237855][ T5471] loop3: detected capacity change from 0 to 16 [ 138.245028][ T5471] erofs: (device loop3): mounted with root inode @ nid 36. [ 138.253574][ T5471] syz-executor.3: attempt to access beyond end of device [ 138.253574][ T5471] loop3: rw=0, sector=1049256, nr_sectors = 128 limit=16 [ 138.287088][ T5477] loop3: detected capacity change from 0 to 16 [ 138.294455][ T5477] erofs: (device loop3): mounted with root inode @ nid 36. [ 138.303071][ T5477] syz-executor.3: attempt to access beyond end of device [ 138.303071][ T5477] loop3: rw=0, sector=1049256, nr_sectors = 128 limit=16 [ 138.352165][ T1579] usb 1-1: USB disconnect, device number 18 [ 138.701727][ T1579] hid-generic 0000:0000:0000.001C: hidraw0: HID v0.00 Device [syz1] on syz1 [ 138.739749][ T3538] Bluetooth: hci0: command 0x1003 tx timeout [ 138.740793][ T45] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 138.774062][ T5503] serio: Serial port pts0 [ 138.973699][ T5526] EXT4-fs (sda1): re-mounted. Quota mode: none. [ 138.983344][ T1579] hid-generic 0000:0000:0000.001D: hidraw0: HID v0.00 Device [syz1] on syz1 [ 139.025039][ T5532] serio: Serial port pts0 [ 139.033887][ T5534] serio: Serial port pts1 [ 139.240209][ T5544] overlayfs: invalid redirect ((null)) [ 139.499658][ T5553] serio: Serial port pts0 [ 139.613681][ T28] audit: type=1400 audit(1717413842.723:1083): avc: denied { ioctl } for pid=5561 comm="syz-executor.4" path="/dev/usbmon0" dev="devtmpfs" ino=139 ioctlcmd=0x9204 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 140.584020][ T5586] IPv6: sit1: Disabled Multicast RS [ 140.598613][ T5588] overlayfs: invalid redirect ((null)) [ 140.667499][ T5600] loop2: detected capacity change from 0 to 512 [ 140.682125][ T5600] EXT4-fs (loop2): 1 orphan inode deleted [ 140.687809][ T5600] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 140.697302][ T5600] ext4 filesystem being mounted at /root/syzkaller-testdir747279304/syzkaller.zT2FP0/149/file1 supports timestamps until 2038 (0x7fffffff) [ 140.718264][ T5600] EXT4-fs error (device loop2): ext4_free_blocks:6197: comm syz-executor.2: Freeing blocks not in datazone - block = 41, count = 1 [ 140.732017][ T5600] EXT4-fs (loop2): Remounting filesystem read-only [ 140.738801][ T5600] EXT4-fs error (device loop2): __ext4_get_inode_loc:4497: comm syz-executor.2: Invalid inode table block 0 in block_group 0 [ 140.752746][ T5600] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5870: Corrupt filesystem [ 140.762279][ T5600] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz-executor.2: mark_inode_dirty error [ 140.774099][ T5600] EXT4-fs error (device loop2): __ext4_get_inode_loc:4497: comm syz-executor.2: Invalid inode table block 0 in block_group 0 [ 140.776307][ T5608] overlayfs: invalid redirect ((null)) [ 140.792562][ T5600] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5870: Corrupt filesystem [ 140.808546][ T5600] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz-executor.2: mark_inode_dirty error [ 140.821002][ T5600] EXT4-fs error (device loop2): __ext4_get_inode_loc:4497: comm syz-executor.2: Invalid inode table block 0 in block_group 0 [ 140.835264][ T5600] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5870: Corrupt filesystem [ 140.846892][ T5610] SELinux: Context ( is not valid (left unmapped). [ 140.847922][ T5600] EXT4-fs error (device loop2): ext4_punch_hole:4142: inode #16: comm syz-executor.2: mark_inode_dirty error [ 140.859548][ T28] audit: type=1400 audit(1717413843.973:1084): avc: denied { create } for pid=5609 comm="syz-executor.0" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="(" [ 140.886741][ T28] audit: type=1400 audit(1717413843.973:1085): avc: denied { mounton } for pid=5609 comm="syz-executor.0" path="/root/syzkaller-testdir2223555240/syzkaller.JtI0x0/164/file0" dev="sda1" ino=1965 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="(" [ 140.923523][ T28] audit: type=1400 audit(1717413843.973:1086): avc: denied { write } for pid=5609 comm="syz-executor.0" name="file0" dev="sda1" ino=1965 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="(" [ 140.947520][ T28] audit: type=1400 audit(1717413843.973:1087): avc: denied { add_name } for pid=5609 comm="syz-executor.0" name="work" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="(" [ 140.948201][ T4190] EXT4-fs (loop2): unmounting filesystem. [ 140.973266][ T28] audit: type=1400 audit(1717413843.973:1088): avc: denied { setattr } for pid=5609 comm="syz-executor.0" name="work" dev="sda1" ino=1967 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="(" [ 140.998936][ T28] audit: type=1400 audit(1717413843.973:1089): avc: denied { write open } for pid=5609 comm="syz-executor.0" path=2F202864656C6574656429 dev="sda1" ino=1968 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="(" [ 141.027272][ T28] audit: type=1400 audit(1717413843.973:1090): avc: denied { create } for pid=5609 comm="syz-executor.0" name="#27" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="(" [ 141.049424][ T28] audit: type=1400 audit(1717413843.973:1091): avc: denied { remove_name } for pid=5609 comm="syz-executor.0" name="#27" dev="sda1" ino=1969 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="(" [ 141.073492][ T28] audit: type=1400 audit(1717413843.973:1092): avc: denied { rename } for pid=5609 comm="syz-executor.0" name="#27" dev="sda1" ino=1969 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="(" [ 141.097237][ T28] audit: type=1400 audit(1717413843.973:1093): avc: denied { unlink } for pid=5609 comm="syz-executor.0" name="#27" dev="sda1" ino=1974 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="(" [ 141.299669][ T45] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 141.345753][ T5621] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.355034][ T5621] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.363380][ T5621] device bridge_slave_0 entered promiscuous mode [ 141.374009][ T5628] loop3: detected capacity change from 0 to 256 [ 141.374024][ T5621] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.374041][ T5621] bridge0: port 2(bridge_slave_1) entered disabled state [ 141.388073][ T5628] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 141.395774][ T5621] device bridge_slave_1 entered promiscuous mode [ 141.508292][ T5621] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.515268][ T5621] bridge0: port 2(bridge_slave_1) entered forwarding state [ 141.522434][ T5621] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.529313][ T5621] bridge0: port 1(bridge_slave_0) entered forwarding state [ 141.560812][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 141.568203][ T318] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.575504][ T318] bridge0: port 2(bridge_slave_1) entered disabled state [ 141.585930][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 141.594647][ T1579] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.601544][ T1579] bridge0: port 1(bridge_slave_0) entered forwarding state [ 141.614483][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 141.622627][ T318] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.629505][ T318] bridge0: port 2(bridge_slave_1) entered forwarding state [ 141.643442][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 141.656454][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 141.674311][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 141.688348][ T5621] device veth0_vlan entered promiscuous mode [ 141.702408][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 141.717009][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 141.724957][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 141.745944][ T5621] device veth1_macvtap entered promiscuous mode [ 141.758034][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 141.782617][ T8] device bridge_slave_1 left promiscuous mode [ 141.790273][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 141.798330][ T8] device bridge_slave_0 left promiscuous mode [ 141.804542][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.814061][ T8] device veth1_macvtap left promiscuous mode [ 141.823333][ T5642] loop3: detected capacity change from 0 to 512 [ 141.829894][ T8] device veth0_vlan left promiscuous mode [ 141.870793][ T5645] loop4: detected capacity change from 0 to 2048 [ 141.892767][ T5642] EXT4-fs (loop3): 1 orphan inode deleted [ 141.898967][ T5642] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 141.908793][ T5642] ext4 filesystem being mounted at /root/syzkaller-testdir1346682207/syzkaller.C5NErC/28/file1 supports timestamps until 2038 (0x7fffffff) [ 141.939187][ T5642] EXT4-fs error (device loop3): ext4_free_blocks:6197: comm syz-executor.3: Freeing blocks not in datazone - block = 41, count = 1 [ 141.949299][ T5645] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 141.967172][ T5642] EXT4-fs (loop3): Remounting filesystem read-only [ 141.974712][ T5642] EXT4-fs error (device loop3): __ext4_get_inode_loc:4497: comm syz-executor.3: Invalid inode table block 0 in block_group 0 [ 141.984064][ T5644] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 141.990067][ T5642] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5870: Corrupt filesystem [ 142.003964][ T5644] EXT4-fs (loop4): Remounting filesystem read-only [ 142.011696][ T5642] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #16: comm syz-executor.3: mark_inode_dirty error [ 142.029376][ T5642] EXT4-fs error (device loop3): __ext4_get_inode_loc:4497: comm syz-executor.3: Invalid inode table block 0 in block_group 0 [ 142.042528][ T5642] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5870: Corrupt filesystem [ 142.044164][ T4244] EXT4-fs (loop4): unmounting filesystem. [ 142.052021][ T5642] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #16: comm syz-executor.3: mark_inode_dirty error [ 142.069636][ T5642] EXT4-fs error (device loop3): __ext4_get_inode_loc:4497: comm syz-executor.3: Invalid inode table block 0 in block_group 0 [ 142.082694][ T5642] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5870: Corrupt filesystem [ 142.092351][ T5642] EXT4-fs error (device loop3): ext4_punch_hole:4142: inode #16: comm syz-executor.3: mark_inode_dirty error [ 142.126321][ T5415] EXT4-fs (loop3): unmounting filesystem. [ 142.159135][ T5655] can0: slcan on ptm0. [ 142.166747][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 142.175155][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 142.229672][ T5654] can0 (unregistered): slcan off ptm0. [ 142.287256][ T5670] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 142.382338][ T5676] loop4: detected capacity change from 0 to 256 [ 142.409246][ T5676] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 142.481473][ T5677] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.488420][ T5677] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.495902][ T5677] device bridge_slave_0 entered promiscuous mode [ 142.510201][ T5677] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.517230][ T5677] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.525049][ T5677] device bridge_slave_1 entered promiscuous mode [ 142.528731][ T5663] loop2: detected capacity change from 0 to 40427 [ 142.538592][ T5663] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 142.546763][ T5663] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 142.559112][ T5663] F2FS-fs (loop2): Found nat_bits in checkpoint [ 142.611031][ T5663] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 142.630694][ T5663] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 142.637707][ T5663] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 142.650377][ T5663] F2FS-fs (loop2): Found FS corruption, run fsck to fix. [ 142.667231][ T5677] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.674209][ T5677] bridge0: port 2(bridge_slave_1) entered forwarding state [ 142.681321][ T5677] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.688170][ T5677] bridge0: port 1(bridge_slave_0) entered forwarding state [ 142.724371][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 142.733712][ T1579] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.742485][ T1579] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.752691][ T5696] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 142.762115][ T5696] 8021q: VLANs not supported on lo [ 142.769752][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 142.779128][ T318] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.786024][ T318] bridge0: port 1(bridge_slave_0) entered forwarding state [ 142.811667][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 142.820341][ T1579] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.827250][ T1579] bridge0: port 2(bridge_slave_1) entered forwarding state [ 142.849806][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 142.858090][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 142.869697][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 142.886380][ T5677] device veth0_vlan entered promiscuous mode [ 142.894060][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 142.903991][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 142.911607][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 142.927659][ T5677] device veth1_macvtap entered promiscuous mode [ 142.934446][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 142.947641][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 142.960720][ T8] device bridge_slave_1 left promiscuous mode [ 142.967056][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.974940][ T8] device bridge_slave_0 left promiscuous mode [ 142.982005][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.990385][ T8] device veth1_macvtap left promiscuous mode [ 142.996306][ T8] device veth0_vlan left promiscuous mode [ 143.112438][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 143.199824][ T5720] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 143.209033][ T5720] 8021q: VLANs not supported on lo [ 143.238662][ T5725] bpf_get_probe_write_proto: 12 callbacks suppressed [ 143.238684][ T5725] syz-executor.2[5725] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 143.245583][ T5725] syz-executor.2[5725] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 143.406281][ T5743] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 143.426953][ T5743] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 143.429329][ T5745] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 143.445907][ T5745] 8021q: VLANs not supported on lo [ 143.470540][ T5747] device syzkaller0 entered promiscuous mode [ 143.495569][ T5749] device syzkaller0 entered promiscuous mode [ 143.565949][ T5751] device syzkaller0 entered promiscuous mode [ 143.569563][ T333] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 143.603155][ T5753] loop2: detected capacity change from 0 to 512 [ 143.611678][ T5753] EXT4-fs (loop2): orphan cleanup on readonly fs [ 143.618691][ T5753] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz-executor.2: bg 0: block 97: padding at end of block bitmap is not set [ 143.636842][ T5753] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2926: inode #15: comm syz-executor.2: corrupted xattr block 19 [ 143.653710][ T5753] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117) [ 143.668461][ T5753] EXT4-fs (loop2): 1 orphan inode deleted [ 143.682063][ T5753] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 143.714904][ T5621] EXT4-fs (loop2): unmounting filesystem. [ 143.809533][ T333] usb 5-1: Using ep0 maxpacket: 32 [ 143.939704][ T318] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 144.009559][ T333] usb 5-1: New USB device found, idVendor=046d, idProduct=08f6, bcdDevice=81.8a [ 144.018531][ T333] usb 5-1: New USB device strings: Mfr=0, Product=9, SerialNumber=0 [ 144.026705][ T333] usb 5-1: Product: syz [ 144.031233][ T333] usb 5-1: config 0 descriptor?? [ 144.189536][ T318] usb 4-1: Using ep0 maxpacket: 32 [ 144.271023][ T333] usb 5-1: USB disconnect, device number 24 [ 144.309607][ T318] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 144.320384][ T318] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 144.330071][ T318] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 144.338966][ T318] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 144.379938][ T318] hub 4-1:4.0: USB hub found [ 144.639621][ T318] hub 4-1:4.0: config failed, hub doesn't have any ports! (err -19) [ 144.660372][ T45] Bluetooth: hci0: command 0x1003 tx timeout [ 144.660453][ T3538] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 144.918474][ T5777] overlayfs: unrecognized mount option "dont_measure" or missing value [ 144.959632][ T333] usb 4-1: USB disconnect, device number 11 [ 145.371838][ T5795] syz-executor.3[5795] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 145.371897][ T5795] syz-executor.3[5795] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 145.409534][ T1414] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 145.544618][ T5799] loop3: detected capacity change from 0 to 40427 [ 145.551784][ T5799] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 145.559327][ T5799] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 145.570391][ T5799] F2FS-fs (loop3): Found nat_bits in checkpoint [ 145.605770][ T5799] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 145.618674][ T5799] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 145.625686][ T5799] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 145.642244][ T5799] F2FS-fs (loop3): Found FS corruption, run fsck to fix. [ 145.679541][ T1414] usb 1-1: Using ep0 maxpacket: 32 [ 145.718540][ T5807] overlayfs: unrecognized mount option "dont_measure" or missing value [ 145.909611][ T1414] usb 1-1: New USB device found, idVendor=046d, idProduct=08f6, bcdDevice=81.8a [ 145.918597][ T1414] usb 1-1: New USB device strings: Mfr=0, Product=9, SerialNumber=0 [ 145.926646][ T1414] usb 1-1: Product: syz [ 145.931434][ T1414] usb 1-1: config 0 descriptor?? [ 146.182175][ T333] usb 1-1: USB disconnect, device number 19 [ 146.578079][ T5826] syz-executor.3[5826] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 146.578141][ T5826] syz-executor.3[5826] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 146.886062][ T5849] input: syz1 as /devices/virtual/input/input10 [ 146.904579][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 146.904594][ T28] audit: type=1400 audit(1717413850.023:1096): avc: denied { read } for pid=86 comm="acpid" name="event3" dev="devtmpfs" ino=1082 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 146.938126][ T28] audit: type=1400 audit(1717413850.023:1097): avc: denied { open } for pid=86 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=1082 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 146.962179][ T28] audit: type=1400 audit(1717413850.023:1098): avc: denied { ioctl } for pid=86 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=1082 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 147.372109][ T5858] loop4: detected capacity change from 0 to 40427 [ 147.382415][ T5859] loop3: detected capacity change from 0 to 40427 [ 147.386988][ T5858] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 147.397362][ T5859] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 147.406086][ T5858] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 147.413759][ T5859] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 147.424463][ T5858] F2FS-fs (loop4): invalid crc value [ 147.433566][ T5855] loop2: detected capacity change from 0 to 40427 [ 147.439641][ T5859] F2FS-fs (loop3): invalid crc value [ 147.446627][ T5859] F2FS-fs (loop3): Found nat_bits in checkpoint [ 147.447494][ T5855] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 147.471463][ T5858] F2FS-fs (loop4): Found nat_bits in checkpoint [ 147.489639][ T5855] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 147.497137][ T5859] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 147.504694][ T5859] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 147.522132][ T5855] F2FS-fs (loop2): invalid crc value [ 147.537183][ T28] audit: type=1400 audit(1717413850.643:1099): avc: denied { write } for pid=5857 comm="syz-executor.3" name="bus" dev="loop3" ino=457 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 147.566419][ T5855] F2FS-fs (loop2): Found nat_bits in checkpoint [ 147.592450][ T28] audit: type=1400 audit(1717413850.673:1100): avc: denied { add_name } for pid=5857 comm="syz-executor.3" name="work" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 147.616859][ T5859] syz-executor.3: attempt to access beyond end of device [ 147.616859][ T5859] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 147.636994][ T28] audit: type=1400 audit(1717413850.673:1101): avc: denied { setattr } for pid=5857 comm="syz-executor.3" name="work" dev="loop3" ino=458 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 147.637020][ T5855] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 147.659529][ T5859] syz-executor.3: attempt to access beyond end of device [ 147.659529][ T5859] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 147.666887][ T5858] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 147.680138][ T5859] overlayfs: cleanup of 'file1/bus' failed (-5) [ 147.686946][ T5858] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 147.693004][ T28] audit: type=1400 audit(1717413850.673:1102): avc: denied { remove_name } for pid=5857 comm="syz-executor.3" name="#2f" dev="loop3" ino=460 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 147.712177][ T5855] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 147.733385][ T28] audit: type=1400 audit(1717413850.673:1103): avc: denied { unlink } for pid=5857 comm="syz-executor.3" name="#2f" dev="loop3" ino=461 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1 [ 147.770342][ T5858] syz-executor.4: attempt to access beyond end of device [ 147.770342][ T5858] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 147.790350][ T28] audit: type=1400 audit(1717413850.693:1104): avc: denied { rename } for pid=5860 comm="syz-executor.0" name="file0" dev="sda1" ino=1974 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=chr_file permissive=1 [ 147.803253][ T5858] syz-executor.4: attempt to access beyond end of device [ 147.803253][ T5858] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 147.816541][ T28] audit: type=1400 audit(1717413850.693:1105): avc: denied { setattr } for pid=5857 comm="syz-executor.3" name="#464" dev="loop3" ino=464 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 147.830785][ T5858] overlayfs: cleanup of 'file1/bus' failed (-5) [ 147.856539][ T43] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 147.877322][ T43] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 147.893855][ T10] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 147.903273][ T10] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 147.941429][ T5855] syz-executor.2: attempt to access beyond end of device [ 147.941429][ T5855] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 147.963670][ T5855] syz-executor.2: attempt to access beyond end of device [ 147.963670][ T5855] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 147.978013][ T5855] overlayfs: cleanup of 'file1/bus' failed (-5) [ 147.995815][ T43] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 148.009822][ T43] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 148.519729][ T5882] bridge0: port 1(bridge_slave_0) entered blocking state [ 148.535444][ T5882] bridge0: port 1(bridge_slave_0) entered disabled state [ 148.550020][ T5882] device bridge_slave_0 entered promiscuous mode [ 148.576270][ T5882] bridge0: port 2(bridge_slave_1) entered blocking state [ 148.591008][ T5882] bridge0: port 2(bridge_slave_1) entered disabled state [ 148.601907][ T5882] device bridge_slave_1 entered promiscuous mode [ 148.622081][ T10] device bridge_slave_1 left promiscuous mode [ 148.628284][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 148.635960][ T10] device bridge_slave_0 left promiscuous mode [ 148.642341][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 148.650630][ T10] device veth1_macvtap left promiscuous mode [ 148.656726][ T10] device veth0_vlan left promiscuous mode [ 148.807545][ T5899] netlink: 172 bytes leftover after parsing attributes in process `syz-executor.0'. [ 148.817436][ T5899] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.0'. [ 148.865978][ T5885] bridge0: port 1(bridge_slave_0) entered blocking state [ 148.873248][ T5885] bridge0: port 1(bridge_slave_0) entered disabled state [ 148.880676][ T5885] device bridge_slave_0 entered promiscuous mode [ 148.891881][ T5888] bridge0: port 1(bridge_slave_0) entered blocking state [ 148.899124][ T5888] bridge0: port 1(bridge_slave_0) entered disabled state [ 148.906808][ T5888] device bridge_slave_0 entered promiscuous mode [ 148.913612][ T5885] bridge0: port 2(bridge_slave_1) entered blocking state [ 148.921128][ T5885] bridge0: port 2(bridge_slave_1) entered disabled state [ 148.928473][ T5885] device bridge_slave_1 entered promiscuous mode [ 148.943317][ T5888] bridge0: port 2(bridge_slave_1) entered blocking state [ 148.950788][ T5888] bridge0: port 2(bridge_slave_1) entered disabled state [ 148.958186][ T5888] device bridge_slave_1 entered promiscuous mode [ 149.106375][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 149.114417][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 149.139597][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 149.147784][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 149.155810][ T1414] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.162782][ T1414] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.171155][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 149.179580][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 149.187595][ T1414] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.194442][ T1414] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.201625][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 149.209615][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 149.217560][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 149.225551][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 149.243261][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 149.261440][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 149.270661][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 149.289087][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 149.296977][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 149.305571][ T5882] device veth0_vlan entered promiscuous mode [ 149.314718][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 149.322221][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 149.340371][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 149.348600][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 149.356242][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 149.363592][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 149.371757][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 149.379891][ T318] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.386824][ T318] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.394153][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 149.402438][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 149.410687][ T318] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.417783][ T318] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.425706][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 149.438468][ T5882] device veth1_macvtap entered promiscuous mode [ 149.460536][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 149.468026][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 149.475446][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 149.484366][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 149.493110][ T1579] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.499963][ T1579] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.507205][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 149.515546][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 149.523573][ T1579] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.530521][ T1579] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.537671][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 149.545375][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 149.554195][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 149.570432][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 149.578546][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 149.587000][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 149.595560][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 149.604408][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 149.612203][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 149.631419][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 149.644816][ T5885] device veth0_vlan entered promiscuous mode [ 149.653758][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 149.661834][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 149.669107][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 149.687146][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 149.699640][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 149.707913][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 149.718488][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 149.726270][ T5888] device veth0_vlan entered promiscuous mode [ 149.741849][ T5915] loop4: detected capacity change from 0 to 1024 [ 149.744493][ T5885] device veth1_macvtap entered promiscuous mode [ 149.756071][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 149.757948][ T5915] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 149.773272][ T5915] EXT4-fs (loop4): unmounting filesystem. [ 149.789895][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 149.802744][ T5888] device veth1_macvtap entered promiscuous mode [ 149.810880][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 149.819075][ T1414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 149.872160][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 149.884047][ T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 149.899984][ T5927] loop3: detected capacity change from 0 to 128 [ 149.919257][ T5927] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 149.945696][ T5927] ext4 filesystem being mounted at /root/syzkaller-testdir4113017607/syzkaller.mrnXjI/0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff) [ 149.982860][ T10] device bridge_slave_1 left promiscuous mode [ 149.991077][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 150.012392][ T10] device bridge_slave_0 left promiscuous mode [ 150.018461][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 150.040946][ T10] device bridge_slave_1 left promiscuous mode [ 150.047197][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 150.055276][ T5885] EXT4-fs (loop3): unmounting filesystem. [ 150.069535][ T10] device bridge_slave_0 left promiscuous mode [ 150.079334][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 150.088316][ T10] device veth1_macvtap left promiscuous mode [ 150.098088][ T10] device veth0_vlan left promiscuous mode [ 150.110839][ T10] device veth1_macvtap left promiscuous mode [ 150.116938][ T10] device veth0_vlan left promiscuous mode [ 150.374223][ T5956] loop3: detected capacity change from 0 to 512 [ 150.383026][ T5956] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #15: comm syz-executor.3: casefold flag without casefold feature [ 150.396690][ T5956] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.3: casefold flag without casefold feature [ 150.410181][ T5956] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.3: ea_inode with extended attributes [ 150.428649][ T5956] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz-executor.3: error while reading EA inode 12 err=-117 [ 150.441684][ T5956] EXT4-fs (loop3): 1 orphan inode deleted [ 150.447343][ T5956] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 150.466767][ T5885] EXT4-fs (loop3): unmounting filesystem. [ 150.809524][ T318] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 150.919011][ T5982] mmap: syz-executor.2 (5982) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 151.026466][ T5989] xt_CT: You must specify a L4 protocol and not use inversions on it [ 151.069542][ T318] usb 4-1: Using ep0 maxpacket: 8 [ 151.083073][ T5995] loop2: detected capacity change from 0 to 512 [ 151.094166][ T5995] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz-executor.2: casefold flag without casefold feature [ 151.107700][ T5995] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.2: casefold flag without casefold feature [ 151.121513][ T5995] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.2: ea_inode with extended attributes [ 151.134816][ T5995] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz-executor.2: error while reading EA inode 12 err=-117 [ 151.148068][ T5995] EXT4-fs (loop2): 1 orphan inode deleted [ 151.153817][ T5995] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 151.177289][ T5888] EXT4-fs (loop2): unmounting filesystem. [ 151.199543][ T318] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 151.351942][ T6011] loop2: detected capacity change from 0 to 128 [ 151.363222][ T6011] FAT-fs (loop2): bogus number of FAT structure [ 151.370353][ T318] usb 4-1: New USB device found, idVendor=0421, idProduct=01d0, bcdDevice=98.e6 [ 151.379330][ T318] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 151.387565][ T6011] FAT-fs (loop2): Can't find a valid FAT filesystem [ 151.402952][ T318] usb 4-1: Product: syz [ 151.406964][ T318] usb 4-1: Manufacturer: syz [ 151.412959][ T318] usb 4-1: SerialNumber: syz [ 151.420997][ T318] usb 4-1: config 0 descriptor?? [ 151.470927][ T318] rndis_host: probe of 4-1:0.0 failed with error -22 [ 151.477573][ T318] cdc_acm 4-1:0.0: Control and data interfaces are not separated! [ 151.485512][ T318] cdc_acm 4-1:0.0: This needs exactly 3 endpoints [ 151.492046][ T318] cdc_acm: probe of 4-1:0.0 failed with error -22 [ 151.671503][ T24] usb 4-1: USB disconnect, device number 12 [ 151.679208][ T6043] loop4: detected capacity change from 0 to 128 [ 151.690863][ T6043] FAT-fs (loop4): bogus number of FAT structure [ 151.697202][ T6043] FAT-fs (loop4): Can't find a valid FAT filesystem [ 151.776339][ T6049] loop4: detected capacity change from 0 to 512 [ 151.793531][ T6049] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 151.801485][ T6049] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 151.809530][ T6049] System zones: 0-1, 15-15, 18-18, 34-34 [ 151.815584][ T6049] EXT4-fs (loop4): orphan cleanup on readonly fs [ 151.822213][ T6049] EXT4-fs warning (device loop4): ext4_enable_quotas:6987: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 151.836878][ T6049] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 151.844359][ T6049] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz-executor.4: bg 0: block 40: padding at end of block bitmap is not set [ 151.860129][ T6049] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6157: Corrupt filesystem [ 151.869910][ T6049] EXT4-fs (loop4): 1 truncate cleaned up [ 151.875690][ T6049] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 151.896249][ T5882] EXT4-fs (loop4): unmounting filesystem. [ 151.965933][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 151.965950][ T28] audit: type=1400 audit(1717413855.073:1111): avc: denied { relabelfrom } for pid=6071 comm="syz-executor.4" name="NETLINK" dev="sockfs" ino=40466 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 151.996473][ T28] audit: type=1400 audit(1717413855.073:1112): avc: denied { relabelto } for pid=6071 comm="syz-executor.4" name="NETLINK" dev="sockfs" ino=40466 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=netlink_netfilter_socket permissive=1 [ 152.044316][ T6078] loop4: detected capacity change from 0 to 128 [ 152.051222][ T6078] FAT-fs (loop4): bogus number of FAT structure [ 152.057356][ T6078] FAT-fs (loop4): Can't find a valid FAT filesystem [ 152.123431][ T6084] loop4: detected capacity change from 0 to 16 [ 152.130615][ T6084] erofs: (device loop4): mounted with root inode @ nid 36. [ 152.214783][ T6090] binder: 6089:6090 ioctl c0306201 20000380 returned -14 [ 152.216250][ T6100] loop4: detected capacity change from 0 to 512 [ 152.229557][ T6100] EXT4-fs: Ignoring removed mblk_io_submit option [ 152.239275][ T6100] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.4: inline data xattr refers to an external xattr inode [ 152.246548][ T6103] loop3: detected capacity change from 0 to 512 [ 152.255194][ T6100] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 12 (err -117) [ 152.273438][ T6100] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 152.283329][ T6103] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 152.299950][ T5882] EXT4-fs (loop4): unmounting filesystem. [ 152.335773][ T6103] loop3: detected capacity change from 0 to 512 [ 152.462321][ T6136] loop3: detected capacity change from 0 to 512 [ 152.469011][ T6136] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 152.514282][ T6136] loop3: detected capacity change from 0 to 512 [ 152.611727][ T6152] loop4: detected capacity change from 0 to 16 [ 152.618722][ T6152] erofs: Unknown parameter 'last insn is not an exit or jmp [ 152.618722][ T6152] verification time 65 usec [ 152.618722][ T6152] stack erofs' [ 152.672244][ T6152] loop4: detected capacity change from 0 to 16 [ 152.679093][ T6152] erofs: (device loop4): erofs_read_inode: unsupported chunk format 7fff of nid 36 [ 152.769632][ T6] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 152.821914][ T6173] loop2: detected capacity change from 0 to 16 [ 152.828947][ T6173] erofs: Unknown parameter 'last insn is not an exit or jmp [ 152.828947][ T6173] verification time 64 usec [ 152.828947][ T6173] stack erofs' [ 152.892934][ T6173] loop2: detected capacity change from 0 to 16 [ 152.899779][ T6173] erofs: (device loop2): erofs_read_inode: unsupported chunk format 7fff of nid 36 [ 153.169779][ T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 153.186082][ T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 153.218945][ T6] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 153.249331][ T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.267084][ T6192] loop2: detected capacity change from 0 to 16 [ 153.273930][ T6192] erofs: Unknown parameter 'last insn is not an exit or jmp [ 153.273930][ T6192] verification time 58 usec [ 153.273930][ T6192] stack erofs' [ 153.290113][ T6] usb 1-1: config 0 descriptor?? [ 153.322218][ T6192] loop2: detected capacity change from 0 to 16 [ 153.337182][ T6192] erofs: (device loop2): erofs_read_inode: unsupported chunk format 7fff of nid 36 [ 153.387910][ T6194] binder: 6193:6194 ioctl c0306201 20000380 returned -14 [ 153.463409][ T28] audit: type=1400 audit(1717413856.573:1113): avc: denied { create } for pid=6204 comm="syz-executor.2" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:fusefs_t tclass=blk_file permissive=1 [ 153.517477][ T6226] loop3: detected capacity change from 0 to 16 [ 153.524135][ T6226] erofs: Unknown parameter 'last insn is not an exit or jmp [ 153.524135][ T6226] verification time 42 usec [ 153.524135][ T6226] stack erofs' [ 153.591783][ T6226] loop3: detected capacity change from 0 to 16 [ 153.598198][ T6226] erofs: (device loop3): erofs_read_inode: unsupported chunk format 7fff of nid 36 [ 153.607955][ T6228] binder: 6227:6228 ioctl c0306201 20000380 returned -14 [ 153.639617][ T6] usbhid 1-1:0.0: can't add hid device: -71 [ 153.645451][ T6] usbhid: probe of 1-1:0.0 failed with error -71 [ 153.652490][ T6] usb 1-1: USB disconnect, device number 20 [ 153.674788][ T28] audit: type=1400 audit(1717413856.783:1114): avc: denied { name_bind } for pid=6233 comm="syz-executor.4" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 153.722100][ T6239] loop3: detected capacity change from 0 to 512 [ 153.728804][ T6239] EXT4-fs: Ignoring removed mblk_io_submit option [ 153.737627][ T6239] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.3: inline data xattr refers to an external xattr inode [ 153.747707][ T6235] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=6235 comm=syz-executor.4 [ 153.754268][ T6239] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz-executor.3: couldn't read orphan inode 12 (err -117) [ 153.766927][ T6235] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6235 comm=syz-executor.4 [ 153.778067][ T6239] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 153.821725][ T5885] EXT4-fs (loop3): unmounting filesystem. [ 154.042302][ T6267] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=6267 comm=syz-executor.4 [ 154.064332][ T6267] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6267 comm=syz-executor.4 [ 154.399643][ T1579] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 154.532690][ T6284] loop2: detected capacity change from 0 to 40427 [ 154.540794][ T6284] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 154.548411][ T6284] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 154.556623][ T6284] F2FS-fs (loop2): Unrecognized mount option "ÿÿÿÿ" or missing value [ 154.639555][ T1414] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 154.759629][ T1579] usb 1-1: config 0 has no interfaces? [ 154.796734][ T6294] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=6294 comm=syz-executor.2 [ 154.810173][ T6294] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6294 comm=syz-executor.2 [ 154.919627][ T1579] usb 1-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice=98.00 [ 154.928768][ T1579] usb 1-1: New USB device strings: Mfr=18, Product=255, SerialNumber=255 [ 154.939761][ T1579] usb 1-1: Product: syz [ 154.944006][ T1579] usb 1-1: Manufacturer: syz [ 154.948588][ T1579] usb 1-1: SerialNumber: syz [ 154.970424][ T1579] usb 1-1: config 0 descriptor?? [ 154.981267][ T6300] loop2: detected capacity change from 0 to 2048 [ 154.992257][ T6300] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 155.003696][ T6300] overlayfs: "xino" feature enabled using 32 upper inode bits. [ 155.019997][ T5888] EXT4-fs (loop2): unmounting filesystem. [ 155.029575][ T1414] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 155.040461][ T1414] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 155.050608][ T1414] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 155.055380][ T6308] loop2: detected capacity change from 0 to 512 [ 155.068007][ T1414] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 155.076011][ T6308] EXT4-fs: journaled quota format not specified [ 155.078466][ T1414] usb 5-1: config 0 descriptor?? [ 155.212116][ T6] usb 1-1: USB disconnect, device number 21 [ 155.307398][ T6315] loop2: detected capacity change from 0 to 40427 [ 155.314736][ T6315] F2FS-fs (loop2): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 155.322443][ T6315] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 155.331296][ T6315] F2FS-fs (loop2): invalid crc value [ 155.337939][ T6315] F2FS-fs (loop2): Found nat_bits in checkpoint [ 155.374254][ T6315] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 155.381351][ T6315] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 155.392795][ T6317] f2fs_ckpt-7:2: attempt to access beyond end of device [ 155.392795][ T6317] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 155.407496][ T6315] syz-executor.2: attempt to access beyond end of device [ 155.407496][ T6315] loop2: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 155.422515][ T6315] syz-executor.2: attempt to access beyond end of device [ 155.422515][ T6315] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 155.449543][ T1414] usbhid 5-1:0.0: can't add hid device: -71 [ 155.455330][ T1414] usbhid: probe of 5-1:0.0 failed with error -71 [ 155.462327][ T1414] usb 5-1: USB disconnect, device number 25 [ 155.837162][ T6326] loop2: detected capacity change from 0 to 40427 [ 155.849170][ T6326] F2FS-fs (loop2): Found nat_bits in checkpoint [ 155.894911][ T6326] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 155.917363][ T6326] syz-executor.2: attempt to access beyond end of device [ 155.917363][ T6326] loop2: rw=2049, sector=53248, nr_sectors = 16 limit=40427 [ 155.939233][ T5888] syz-executor.2: attempt to access beyond end of device [ 155.939233][ T5888] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 156.318991][ T28] audit: type=1400 audit(1717413859.423:1115): avc: denied { connect } for pid=6384 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 156.338963][ T6361] loop3: detected capacity change from 0 to 40427 [ 156.347186][ T6361] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 156.355243][ T6361] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 156.362398][ T28] audit: type=1400 audit(1717413859.463:1116): avc: denied { write } for pid=6384 comm="syz-executor.4" path="socket:[42144]" dev="sockfs" ino=42144 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 156.364859][ T6361] F2FS-fs (loop3): invalid crc value [ 156.394136][ T6361] F2FS-fs (loop3): Found nat_bits in checkpoint [ 156.435805][ T6361] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 156.442732][ T6361] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 159.388264][ T1871] bridge0: port 3(syz_tun) entered disabled state [ 159.395375][ T1871] device syz_tun left promiscuous mode [ 159.400680][ T1871] bridge0: port 3(syz_tun) entered disabled state [ 159.525685][ T6401] capability: warning: `syz-executor.0' uses 32-bit capabilities (legacy support in use) [ 159.572833][ T6411] tipc: Enabling of bearer rejected, failed to enable media [ 159.639228][ T28] audit: type=1400 audit(1717413862.743:1117): avc: denied { mounton } for pid=6419 comm="syz-executor.1" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 159.695095][ T6419] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.702097][ T6419] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.709656][ T6419] device bridge_slave_0 entered promiscuous mode [ 159.718960][ T6419] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.725932][ T6419] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.733741][ T6419] device bridge_slave_1 entered promiscuous mode [ 159.789511][ T24] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 159.823242][ T6419] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.830167][ T6419] bridge0: port 2(bridge_slave_1) entered forwarding state [ 159.837234][ T6419] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.844029][ T6419] bridge0: port 1(bridge_slave_0) entered forwarding state [ 159.873904][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 159.882414][ T1579] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.890606][ T1579] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.906352][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 159.915072][ T333] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.922067][ T333] bridge0: port 1(bridge_slave_0) entered forwarding state [ 159.929585][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 159.937563][ T333] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.944604][ T333] bridge0: port 2(bridge_slave_1) entered forwarding state [ 159.965992][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 159.974467][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 159.982492][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 159.998368][ T6419] device veth0_vlan entered promiscuous mode [ 160.005104][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 160.013531][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 160.021350][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 160.029695][ T43] device bridge_slave_1 left promiscuous mode [ 160.035679][ T43] bridge0: port 2(bridge_slave_1) entered disabled state [ 160.043521][ T43] device bridge_slave_0 left promiscuous mode [ 160.050323][ T43] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.058556][ T43] device veth1_macvtap left promiscuous mode [ 160.064541][ T43] device veth0_vlan left promiscuous mode [ 160.179727][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 160.200263][ T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 160.216367][ T24] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 160.225342][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 160.239941][ T24] usb 5-1: config 0 descriptor?? [ 160.307821][ T6419] device veth1_macvtap entered promiscuous mode [ 160.315148][ T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 160.329021][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 160.349626][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 160.635802][ T6470] syz-executor.1[6470] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 160.635860][ T6470] syz-executor.1[6470] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 160.649612][ T333] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 160.770309][ T24] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0 [ 160.777704][ T24] plantronics 0003:047F:FFFF.001E: No inputs registered, leaving [ 160.786239][ T24] plantronics 0003:047F:FFFF.001E: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 161.039568][ T333] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 161.040251][ T715] usb 5-1: USB disconnect, device number 26 [ 161.050542][ T333] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 161.065834][ T333] usb 3-1: New USB device found, idVendor=056a, idProduct=00d2, bcdDevice= 0.00 [ 161.074735][ T333] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 161.083313][ T333] usb 3-1: config 0 descriptor?? [ 161.542511][ T333] wacom 0003:056A:00D2.001F: unknown main item tag 0x0 [ 161.552505][ T28] audit: type=1326 audit(1717413864.663:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6483 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f71c8c7cee9 code=0x0 [ 161.553280][ T333] wacom 0003:056A:00D2.001F: Unknown device_type for 'HID 056a:00d2'. Assuming pen. [ 161.635172][ T333] input: Wacom Bamboo Craft Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:00D2.001F/input/input13 [ 161.720580][ T333] wacom 0003:056A:00D2.001F: hidraw0: USB HID v0.00 Device [HID 056a:00d2] on usb-dummy_hcd.2-1/input0 [ 161.748043][ T333] usb 3-1: USB disconnect, device number 17 [ 161.887731][ C1] TCP: request_sock_TCP: Possible SYN flooding on port 2. Dropping request. Check SNMP counters. [ 161.921747][ T6503] syz-executor.3[6503] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.921815][ T6503] syz-executor.3[6503] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 162.291588][ T6515] loop2: detected capacity change from 0 to 512 [ 162.321636][ T6515] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 162.330546][ T6515] ext4 filesystem being mounted at /root/syzkaller-testdir863629031/syzkaller.YUunIy/57/file0 supports timestamps until 2038 (0x7fffffff) [ 162.347466][ T6515] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 162.362151][ T6515] Quota error (device loop2): write_blk: dquota write failed [ 162.369571][ T6515] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 162.384759][ T5888] EXT4-fs (loop2): unmounting filesystem. [ 162.609055][ C0] TCP: request_sock_TCP: Possible SYN flooding on port 2. Dropping request. Check SNMP counters. [ 162.767344][ T6545] 9pnet: p9_errstr2errno: server reported unknown error áoŽ [ 162.792327][ T28] audit: type=1326 audit(1717413865.903:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6548 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc58127cee9 code=0x0 [ 162.819020][ T6551] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.3'. [ 162.852331][ T6559] tap0: tun_chr_ioctl cmd 1074025692 [ 162.860342][ T6557] input: syz1 as /devices/virtual/input/input16 [ 162.929532][ T6] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 162.970190][ T6572] 9pnet: p9_errstr2errno: server reported unknown error áoŽ [ 163.015898][ T6582] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.0'. [ 163.040545][ T6584] tap0: tun_chr_ioctl cmd 1074025692 [ 163.046390][ T6586] netlink: 66 bytes leftover after parsing attributes in process `syz-executor.3'. [ 163.071001][ T28] audit: type=1400 audit(1717413866.183:1120): avc: denied { setcurrent } for pid=6588 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 163.121012][ T6597] 9pnet: p9_errstr2errno: server reported unknown error áoŽ [ 163.140960][ T6599] loop3: detected capacity change from 0 to 512 [ 163.152238][ T6599] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 163.161241][ T6599] ext4 filesystem being mounted at /root/syzkaller-testdir4113017607/syzkaller.mrnXjI/80/bus supports timestamps until 2038 (0x7fffffff) [ 163.176114][ T6599] EXT4-fs (loop3): unmounting filesystem. [ 163.245859][ T6610] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.3'. [ 163.274666][ T6616] tap0: tun_chr_ioctl cmd 1074025692 [ 163.329693][ T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 163.340491][ T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 163.350099][ T6] usb 3-1: New USB device found, idVendor=056a, idProduct=00d2, bcdDevice= 0.00 [ 163.359286][ T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 163.367788][ T6] usb 3-1: config 0 descriptor?? [ 163.432120][ T28] audit: type=1400 audit(1717413866.543:1121): avc: denied { read } for pid=6628 comm="syz-executor.3" name="/" dev="configfs" ino=7074 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 163.461052][ T28] audit: type=1400 audit(1717413866.543:1122): avc: denied { open } for pid=6628 comm="syz-executor.3" path="/sys/kernel/config" dev="configfs" ino=7074 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 163.469877][ T6632] loop3: detected capacity change from 0 to 512 [ 163.502444][ T6632] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 163.511330][ T6632] ext4 filesystem being mounted at /root/syzkaller-testdir4113017607/syzkaller.mrnXjI/88/bus supports timestamps until 2038 (0x7fffffff) [ 163.511752][ T6640] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'. [ 163.526056][ T6632] EXT4-fs (loop3): unmounting filesystem. [ 163.562693][ T6644] tap0: tun_chr_ioctl cmd 1074025692 [ 163.643565][ C0] TCP: request_sock_TCP: Possible SYN flooding on port 2. Dropping request. Check SNMP counters. [ 163.666037][ T6664] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 163.667038][ T28] audit: type=1326 audit(1717413866.773:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6663 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc58127cee9 code=0x0 [ 163.738086][ T6674] loop3: detected capacity change from 0 to 512 [ 163.751992][ T6674] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 163.760851][ T6674] ext4 filesystem being mounted at /root/syzkaller-testdir4113017607/syzkaller.mrnXjI/93/bus supports timestamps until 2038 (0x7fffffff) [ 163.776694][ T6674] EXT4-fs (loop3): unmounting filesystem. [ 163.834398][ T28] audit: type=1326 audit(1717413866.943:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6685 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f43a147cee9 code=0x0 [ 163.859292][ T6] wacom 0003:056A:00D2.0020: unknown main item tag 0x0 [ 163.868157][ T6] wacom 0003:056A:00D2.0020: Unknown device_type for 'HID 056a:00d2'. Assuming pen. [ 163.878124][ T6] input: Wacom Bamboo Craft Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:00D2.0020/input/input17 [ 163.960174][ T6] wacom 0003:056A:00D2.0020: hidraw0: USB HID v0.00 Device [HID 056a:00d2] on usb-dummy_hcd.2-1/input0 [ 164.063454][ T6] usb 3-1: USB disconnect, device number 18 [ 164.615817][ T6708] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 164.625408][ T6708] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 164.727909][ T6727] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=273 sclass=netlink_route_socket pid=6727 comm=syz-executor.0 [ 164.761962][ T6733] loop2: detected capacity change from 0 to 16 [ 164.768785][ T6733] erofs: (device loop2): mounted with root inode @ nid 36. [ 164.771429][ T6732] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=273 sclass=netlink_route_socket pid=6732 comm=syz-executor.0 [ 164.791582][ T6733] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop2 ino=46 [ 164.800675][ T6733] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop2 ino=46 [ 164.809932][ T6733] incfs_lookup_dentry err:-117 [ 164.814594][ T6733] incfs: Can't find or create .index dir in ./file0 [ 164.821129][ T6] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 164.828762][ T6733] incfs: mount failed -117 [ 164.859749][ T6743] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 164.869375][ T6743] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 164.940130][ T6759] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 165.209563][ T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 165.224187][ T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 165.239498][ T6] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 165.248868][ T6] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 165.257491][ T6] usb 5-1: config 0 descriptor?? [ 165.750049][ T6] keytouch 0003:0926:3333.0021: fixing up Keytouch IEC report descriptor [ 165.759996][ T6] input: HID 0926:3333 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:0926:3333.0021/input/input20 [ 165.848568][ T6] keytouch 0003:0926:3333.0021: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.4-1/input0 [ 165.942810][ T6815] netlink: 'syz-executor.2': attribute type 2 has an invalid length. [ 165.956736][ T6] usb 5-1: USB disconnect, device number 27 [ 165.967473][ T28] audit: type=1400 audit(1717413869.073:1125): avc: denied { append } for pid=83 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 165.995819][ T28] audit: type=1400 audit(1717413869.073:1126): avc: denied { open } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 166.025050][ T28] audit: type=1400 audit(1717413869.073:1127): avc: denied { getattr } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 166.109207][ T6829] incfs_lookup_dentry err:-13 [ 166.113841][ T6829] incfs: Can't find or create .index dir in ./file0 [ 166.120997][ T6829] incfs: mount failed -13 [ 166.143082][ T6831] loop2: detected capacity change from 0 to 512 [ 166.153239][ T6831] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz-executor.2: casefold flag without casefold feature [ 166.166479][ T6831] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.2: missing EA_INODE flag [ 166.187633][ T6831] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz-executor.2: error while reading EA inode 12 err=-117 [ 166.206936][ T6831] EXT4-fs (loop2): 1 orphan inode deleted [ 166.214904][ T6831] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 166.443627][ T5888] EXT4-fs (loop2): unmounting filesystem. [ 166.549947][ T6878] loop4: detected capacity change from 0 to 512 [ 166.558896][ T6878] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz-executor.4: casefold flag without casefold feature [ 166.572415][ T6878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.4: missing EA_INODE flag [ 166.586236][ T6878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz-executor.4: error while reading EA inode 12 err=-117 [ 166.599131][ T6878] EXT4-fs (loop4): 1 orphan inode deleted [ 166.604899][ T6878] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 166.618286][ T6884] loop2: detected capacity change from 0 to 512 [ 166.626948][ T6884] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz-executor.2: casefold flag without casefold feature [ 166.640568][ T6884] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.2: missing EA_INODE flag [ 166.652637][ T6884] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz-executor.2: error while reading EA inode 12 err=-117 [ 166.665572][ T6884] EXT4-fs (loop2): 1 orphan inode deleted [ 166.671381][ T6884] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 166.713315][ T28] audit: type=1400 audit(1717413869.823:1128): avc: denied { accept } for pid=6887 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 166.778942][ T6892] incfs_lookup_dentry err:-13 [ 166.783585][ T6892] incfs: Can't find or create .index dir in ./file0 [ 166.790197][ T6892] incfs: mount failed -13 [ 166.884683][ T5882] EXT4-fs (loop4): unmounting filesystem. [ 166.951395][ T5888] EXT4-fs (loop2): unmounting filesystem. [ 167.003486][ T6917] incfs_lookup_dentry err:-13 [ 167.019553][ T715] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 167.027311][ T6917] incfs: Can't find or create .index dir in ./file0 [ 167.050167][ T6917] incfs: mount failed -13 [ 167.074519][ T6922] syz-executor.4[6922] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.074598][ T6922] syz-executor.4[6922] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.097818][ T6922] syz-executor.4[6922] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.109995][ T6922] syz-executor.4[6922] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.156954][ T6924] loop1: detected capacity change from 0 to 512 [ 167.175092][ T28] audit: type=1400 audit(1717413870.283:1129): avc: denied { create } for pid=6925 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 167.210807][ T6924] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #15: comm syz-executor.1: casefold flag without casefold feature [ 167.230972][ T6924] EXT4-fs error (device loop1): __ext4_iget:5046: inode #12: block 2: comm syz-executor.1: invalid block [ 167.242234][ T6924] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 12 err=-117 [ 167.255002][ T6924] EXT4-fs (loop1): 1 orphan inode deleted [ 167.260672][ T6924] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 167.299369][ T6419] EXT4-fs (loop1): unmounting filesystem. [ 167.358319][ T6932] loop1: detected capacity change from 0 to 512 [ 167.384545][ T6932] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #15: comm syz-executor.1: casefold flag without casefold feature [ 167.411849][ T6932] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.1: missing EA_INODE flag [ 167.429546][ T715] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 167.440417][ T6932] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 12 err=-117 [ 167.448010][ T715] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 167.462553][ T6932] EXT4-fs (loop1): 1 orphan inode deleted [ 167.470379][ T6932] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 167.476530][ T715] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 167.513319][ T715] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 167.531091][ T715] usb 4-1: config 0 descriptor?? [ 167.870760][ T6911] loop2: detected capacity change from 0 to 131072 [ 167.877868][ T6911] F2FS-fs (loop2): Test dummy encryption mode enabled [ 167.904147][ T6911] F2FS-fs (loop2): Found nat_bits in checkpoint [ 167.915045][ T6419] EXT4-fs (loop1): unmounting filesystem. [ 167.990531][ T6911] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 168.010250][ T715] keytouch 0003:0926:3333.0022: fixing up Keytouch IEC report descriptor [ 168.031020][ T715] input: HID 0926:3333 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0926:3333.0022/input/input21 [ 168.037269][ T6911] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 168.059631][ T6911] overlayfs: './file1' not a directory [ 168.107388][ T28] audit: type=1400 audit(1717413871.213:1130): avc: denied { create } for pid=6909 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_generic_socket permissive=1 [ 168.132450][ T715] keytouch 0003:0926:3333.0022: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.3-1/input0 [ 168.224463][ T715] usb 4-1: USB disconnect, device number 13 [ 168.885508][ T6988] loop4: detected capacity change from 0 to 131072 [ 168.892773][ T6988] F2FS-fs (loop4): Test dummy encryption mode enabled [ 168.901972][ T6988] F2FS-fs (loop4): Found nat_bits in checkpoint [ 168.949899][ T6988] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 168.970709][ T6988] overlayfs: './file1' not a directory [ 169.009621][ T715] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 169.104965][ T7029] loop3: detected capacity change from 0 to 2048 [ 169.141154][ T7029] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 169.154493][ T7029] ext4 filesystem being mounted at /root/syzkaller-testdir4113017607/syzkaller.mrnXjI/138/bus supports timestamps until 2038 (0x7fffffff) [ 169.200043][ T7039] device veth0_vlan left promiscuous mode [ 169.220382][ T28] audit: type=1400 audit(1717413872.333:1131): avc: denied { ioctl } for pid=7028 comm="syz-executor.3" path="/root/syzkaller-testdir4113017607/syzkaller.mrnXjI/138/bus/file0/file0" dev="loop3" ino=13 ioctlcmd=0x6685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 169.220448][ T7029] fs-verity: sha512 using implementation "sha512-avx2" [ 169.250937][ T7039] device veth0_vlan entered promiscuous mode [ 169.319003][ T7044] tipc: Failed to remove unknown binding: 66,1,1/0:3017187091/3017187093 [ 169.328518][ T7041] tipc: Failed to remove unknown binding: 66,1,1/0:3017187091/3017187093 [ 169.337590][ T7041] tipc: Failed to remove unknown binding: 66,1,1/0:3017187091/3017187093 [ 169.346986][ T5885] EXT4-fs (loop3): unmounting filesystem. [ 169.379955][ T715] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 169.393556][ T715] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 169.405142][ T6] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 169.412790][ T715] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 169.421772][ T715] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 169.430836][ T715] usb 3-1: config 0 descriptor?? [ 169.799570][ T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 169.810356][ T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 169.819865][ T6] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 169.828663][ T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 169.837087][ T6] usb 2-1: config 0 descriptor?? [ 169.899881][ T715] hid (null): bogus close delimiter [ 170.286118][ T7065] input: syz0 as /devices/virtual/input/input22 [ 170.300200][ T6] keytouch 0003:0926:3333.0024: fixing up Keytouch IEC report descriptor [ 170.310604][ T6] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0024/input/input23 [ 170.339530][ T715] usb 3-1: string descriptor 0 read error: -71 [ 170.340926][ T7069] tipc: Failed to remove unknown binding: 66,1,1/0:2457655123/2457655125 [ 170.356401][ T7068] tipc: Failed to remove unknown binding: 66,1,1/0:2457655123/2457655125 [ 170.365965][ T7068] tipc: Failed to remove unknown binding: 66,1,1/0:2457655123/2457655125 [ 170.369623][ T715] uclogic 0003:256C:006D.0023: failed retrieving string descriptor #200: -71 [ 170.384634][ T715] uclogic 0003:256C:006D.0023: failed retrieving pen parameters: -71 [ 170.393372][ T715] uclogic 0003:256C:006D.0023: failed probing pen v2 parameters: -71 [ 170.403750][ T6] keytouch 0003:0926:3333.0024: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0 [ 170.419058][ T715] uclogic 0003:256C:006D.0023: failed probing parameters: -71 [ 170.426486][ T715] uclogic: probe of 0003:256C:006D.0023 failed with error -71 [ 170.435748][ T715] usb 3-1: USB disconnect, device number 19 [ 170.450127][ T7077] device veth0_vlan left promiscuous mode [ 170.458389][ T7077] device veth0_vlan entered promiscuous mode [ 170.469541][ T28] audit: type=1400 audit(1717413873.583:1132): avc: denied { bind } for pid=7080 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 170.491353][ T7081] __nla_validate_parse: 1 callbacks suppressed [ 170.491374][ T7081] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 170.513167][ T1414] usb 2-1: USB disconnect, device number 17 [ 170.542530][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 170.550823][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 170.558137][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 170.723326][ T7088] loop4: detected capacity change from 0 to 40427 [ 170.733133][ T7088] F2FS-fs (loop4): Found nat_bits in checkpoint [ 170.770091][ T7088] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 170.792576][ T5882] syz-executor.4: attempt to access beyond end of device [ 170.792576][ T5882] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 170.985437][ T7102] input: syz0 as /devices/virtual/input/input24 [ 171.036065][ T7108] xt_nat: multiple ranges no longer supported [ 171.037041][ T7098] loop4: detected capacity change from 0 to 40427 [ 171.053442][ T7098] F2FS-fs (loop4): Found nat_bits in checkpoint [ 171.071420][ T28] audit: type=1326 audit(1717413874.183:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3b9c7cee9 code=0x7ffc0000 [ 171.102282][ T28] audit: type=1326 audit(1717413874.203:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3b9c7cee9 code=0x7ffc0000 [ 171.122132][ T7098] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 171.134804][ T28] audit: type=1326 audit(1717413874.203:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3b9c7cee9 code=0x7ffc0000 [ 171.158867][ T28] audit: type=1326 audit(1717413874.203:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3b9c7cee9 code=0x7ffc0000 [ 171.183149][ T28] audit: type=1326 audit(1717413874.203:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3b9c7cee9 code=0x7ffc0000 [ 171.183476][ T5882] syz-executor.4: attempt to access beyond end of device [ 171.183476][ T5882] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 171.207144][ T28] audit: type=1326 audit(1717413874.203:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc3b9c7a667 code=0x7ffc0000 [ 171.207179][ T28] audit: type=1326 audit(1717413874.203:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc3b9c40329 code=0x7ffc0000 [ 171.207206][ T28] audit: type=1326 audit(1717413874.203:1140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3b9c7cee9 code=0x7ffc0000 [ 171.207232][ T28] audit: type=1326 audit(1717413874.203:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc3b9c7a667 code=0x7ffc0000 [ 171.317304][ T28] audit: type=1326 audit(1717413874.203:1142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7114 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc3b9c40329 code=0x7ffc0000 [ 171.410997][ T7129] input: syz0 as /devices/virtual/input/input25 [ 171.463781][ T7131] loop3: detected capacity change from 0 to 512 [ 171.509259][ T7131] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz-executor.3: Invalid inode bitmap blk 4 in block_group 0 [ 171.533747][ T7131] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 171.558110][ T7134] device bridge1 entered promiscuous mode [ 171.574465][ T7131] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters [ 171.640283][ T7131] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz-executor.3: Invalid inode bitmap blk 4 in block_group 0 [ 171.649732][ T7148] EXT4-fs error (device loop3): __ext4_remount:6412: comm syz-executor.3: Abort forced by user [ 171.663810][ T7148] EXT4-fs (loop3): Remounting filesystem read-only [ 171.718330][ T7131] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem [ 171.773178][ T5885] EXT4-fs (loop3): unmounting filesystem. [ 171.823807][ T7157] device veth0_vlan left promiscuous mode [ 171.849856][ T7157] device veth0_vlan entered promiscuous mode [ 171.932486][ T363] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 171.941466][ T363] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 171.951577][ T363] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 171.953522][ T7170] overlayfs: missing 'lowerdir' [ 172.063816][ T7181] loop1: detected capacity change from 0 to 512 [ 172.092681][ T7181] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz-executor.1: Invalid inode bitmap blk 4 in block_group 0 [ 172.119483][ T715] usb 5-1: new high-speed USB device number 28 using dummy_hcd [ 172.124181][ T7181] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 172.161224][ T7181] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters [ 172.209565][ T7181] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz-executor.1: Invalid inode bitmap blk 4 in block_group 0 [ 172.229565][ T7181] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem [ 172.230885][ T7193] EXT4-fs error (device loop1): __ext4_remount:6412: comm syz-executor.1: Abort forced by user [ 172.300299][ T7193] EXT4-fs (loop1): Remounting filesystem read-only [ 172.348282][ T7202] syz-executor.3[7202] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 172.348366][ T7202] syz-executor.3[7202] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 172.362421][ T6419] EXT4-fs (loop1): unmounting filesystem. [ 172.379661][ T715] usb 5-1: Using ep0 maxpacket: 32 [ 172.384702][ T7190] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.392946][ T7190] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.408654][ T7202] overlayfs: missing 'lowerdir' [ 172.421408][ T7190] device bridge_slave_0 entered promiscuous mode [ 172.430632][ T7190] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.437764][ T7190] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.445411][ T7190] device bridge_slave_1 entered promiscuous mode [ 172.475762][ T7189] loop2: detected capacity change from 0 to 40427 [ 172.486600][ T7189] F2FS-fs (loop2): invalid crc value [ 172.492173][ T7189] F2FS-fs (loop2): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root [ 172.507634][ T7189] F2FS-fs (loop2): Found nat_bits in checkpoint [ 172.581111][ T7189] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 172.581242][ T7190] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.595485][ T7190] bridge0: port 2(bridge_slave_1) entered forwarding state [ 172.602602][ T7190] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.609479][ T7190] bridge0: port 1(bridge_slave_0) entered forwarding state [ 172.661792][ T8] device bridge_slave_1 left promiscuous mode [ 172.669611][ T715] usb 5-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=91.c5 [ 172.687825][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.687898][ T715] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 172.710532][ T8] device bridge_slave_0 left promiscuous mode [ 172.716521][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.718534][ T715] usb 5-1: Product: syz [ 172.729788][ T715] usb 5-1: Manufacturer: syz [ 172.734452][ T8] device veth1_macvtap left promiscuous mode [ 172.735218][ T715] usb 5-1: SerialNumber: syz [ 172.740409][ T8] device veth0_vlan left promiscuous mode [ 172.746128][ T715] usb 5-1: config 0 descriptor?? [ 172.972650][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 172.980794][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.988005][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.012966][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 173.037916][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 173.056131][ T333] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.063043][ T333] bridge0: port 1(bridge_slave_0) entered forwarding state [ 173.089270][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 173.114265][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 173.139713][ T333] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.146764][ T333] bridge0: port 2(bridge_slave_1) entered forwarding state [ 173.166526][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 173.185872][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 173.203235][ T6] usb 5-1: USB disconnect, device number 28 [ 173.226224][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 173.238256][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 173.253392][ T7190] device veth0_vlan entered promiscuous mode [ 173.260812][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 173.269167][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 173.278380][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 173.287472][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 173.303495][ T7190] device veth1_macvtap entered promiscuous mode [ 173.312096][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 173.319763][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 173.327411][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 173.335917][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 173.348608][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 173.380420][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 173.389806][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 173.398056][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 173.399035][ T7250] loop1: detected capacity change from 0 to 512 [ 173.406594][ T1579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 173.414824][ T7250] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz-executor.1: Invalid inode bitmap blk 4 in block_group 0 [ 173.440034][ T7250] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 173.462631][ T7250] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters [ 173.482942][ T7250] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz-executor.1: Invalid inode bitmap blk 4 in block_group 0 [ 173.502826][ T7250] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem [ 173.518751][ T7250] EXT4-fs error (device loop1): __ext4_remount:6412: comm syz-executor.1: Abort forced by user [ 173.534894][ T7250] EXT4-fs (loop1): Remounting filesystem read-only [ 173.548094][ T6419] EXT4-fs (loop1): unmounting filesystem. [ 173.572759][ T7262] input input26: cannot allocate more than FF_MAX_EFFECTS effects [ 173.630484][ T7260] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.637359][ T7260] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.644977][ T7260] device bridge_slave_0 entered promiscuous mode [ 173.654627][ T7260] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.661527][ T7260] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.668700][ T7260] device bridge_slave_1 entered promiscuous mode [ 173.739389][ T7260] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.746301][ T7260] bridge0: port 2(bridge_slave_1) entered forwarding state [ 173.753448][ T7260] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.760334][ T7260] bridge0: port 1(bridge_slave_0) entered forwarding state [ 173.806145][ T715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 173.814206][ T715] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.821932][ T715] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.840507][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 173.848574][ T24] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.855458][ T24] bridge0: port 1(bridge_slave_0) entered forwarding state [ 173.862993][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 173.871177][ T24] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.878042][ T24] bridge0: port 2(bridge_slave_1) entered forwarding state [ 173.903380][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 173.911900][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 173.920933][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 173.933321][ T7260] device veth0_vlan entered promiscuous mode [ 173.944523][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 173.952803][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 173.960182][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 173.975458][ T7260] device veth1_macvtap entered promiscuous mode [ 173.985705][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 174.001018][ T8] device bridge_slave_1 left promiscuous mode [ 174.007004][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.015959][ T8] device bridge_slave_0 left promiscuous mode [ 174.022537][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 174.030724][ T8] device veth1_macvtap left promiscuous mode [ 174.036604][ T8] device veth0_vlan left promiscuous mode [ 174.130021][ T1579] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 174.213619][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 174.221873][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 174.230148][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 174.238322][ T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 174.449935][ T7305] syz-executor.2[7305] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 174.450020][ T7305] syz-executor.2[7305] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 174.463108][ T7305] overlayfs: missing 'lowerdir' [ 174.489615][ T1579] usb 2-1: config 0 has no interfaces? [ 174.649524][ T6] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 174.650164][ T1579] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 174.666504][ T1579] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 174.674337][ T1579] usb 2-1: Product: syz [ 174.678309][ T1579] usb 2-1: Manufacturer: syz [ 174.682787][ T1579] usb 2-1: SerialNumber: syz [ 174.688929][ T1579] r8152-cfgselector 2-1: config 0 descriptor?? [ 174.719518][ T1414] usb 5-1: new high-speed USB device number 29 using dummy_hcd [ 174.855468][ T7328] loop2: detected capacity change from 0 to 128 [ 174.903451][ T7330] loop2: detected capacity change from 0 to 128 [ 174.949567][ T1579] r8152-cfgselector 2-1: Unknown version 0x0000 [ 174.969520][ T1414] usb 5-1: Using ep0 maxpacket: 32 [ 175.039563][ T6] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 175.050764][ T6] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 175.060897][ T6] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 175.073739][ T6] usb 4-1: New USB device found, idVendor=11c2, idProduct=2208, bcdDevice= 0.00 [ 175.082746][ T6] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 175.091287][ T6] usb 4-1: config 0 descriptor?? [ 175.151347][ T24] r8152-cfgselector 2-1: USB disconnect, device number 18 [ 175.269554][ T1414] usb 5-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=91.c5 [ 175.278490][ T1414] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 175.286405][ T1414] usb 5-1: Product: syz [ 175.290435][ T318] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 175.297792][ T1414] usb 5-1: Manufacturer: syz [ 175.302244][ T1414] usb 5-1: SerialNumber: syz [ 175.307106][ T1414] usb 5-1: config 0 descriptor?? [ 175.330427][ T1579] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 175.529502][ T318] usb 1-1: Using ep0 maxpacket: 32 [ 175.552361][ T1414] usb 5-1: USB disconnect, device number 29 [ 175.569535][ T1579] usb 3-1: Using ep0 maxpacket: 8 [ 175.570547][ T6] betop 0003:11C2:2208.0025: item fetching failed at offset 4/5 [ 175.582719][ T6] betop 0003:11C2:2208.0025: parse failed [ 175.588261][ T6] betop: probe of 0003:11C2:2208.0025 failed with error -22 [ 175.669573][ T318] usb 1-1: config 0 has an invalid interface number: 40 but max is 1 [ 175.677592][ T318] usb 1-1: config 0 has no interface number 1 [ 175.683510][ T318] usb 1-1: config 0 interface 40 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 175.689553][ T1579] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 175.693159][ T318] usb 1-1: config 0 interface 40 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 175.703474][ T1579] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 175.723775][ T318] usb 1-1: config 0 interface 40 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 0 [ 175.723902][ T1579] usb 3-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 175.748674][ T318] usb 1-1: config 0 interface 40 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0 [ 175.773668][ T24] usb 4-1: USB disconnect, device number 14 [ 175.899583][ T1579] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 175.908798][ T1579] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 175.917616][ T1579] usb 3-1: Product: syz [ 175.921901][ T1579] usb 3-1: Manufacturer: syz [ 175.926393][ T1579] usb 3-1: SerialNumber: syz [ 175.929592][ T318] usb 1-1: New USB device found, idVendor=1b3d, idProduct=931e, bcdDevice=d1.78 [ 175.939822][ T318] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 175.947695][ T318] usb 1-1: Product: syz [ 175.951672][ T318] usb 1-1: Manufacturer: syz [ 175.956054][ T318] usb 1-1: SerialNumber: syz [ 175.961135][ T318] usb 1-1: config 0 descriptor?? [ 176.000236][ T318] ftdi_sio 1-1:0.40: FTDI USB Serial Device converter detected [ 176.008936][ T318] ftdi_sio ttyUSB0: unknown device type: 0xd178 [ 176.016687][ T318] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 176.024561][ T318] ftdi_sio ttyUSB1: unknown device type: 0xd178 [ 176.035478][ T7366] loop1: detected capacity change from 0 to 512 [ 176.042532][ T7366] EXT4-fs error (device loop1): ext4_get_journal_inode:5720: comm syz-executor.1: inode #196608: comm syz-executor.1: iget: illegal inode # [ 176.056916][ T7366] EXT4-fs (loop1): Remounting filesystem read-only [ 176.063320][ T7366] EXT4-fs (loop1): no journal found [ 176.068514][ T7366] EXT4-fs (loop1): can't get journal size [ 176.075615][ T7366] EXT4-fs (loop1): failed to initialize system zone (-22) [ 176.082832][ T7366] EXT4-fs (loop1): mount failed [ 176.163563][ T28] kauditd_printk_skb: 4788 callbacks suppressed [ 176.163584][ T28] audit: type=1400 audit(1717413879.273:5931): avc: denied { map } for pid=7373 comm="syz-executor.4" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 176.203218][ T28] audit: type=1400 audit(1717413879.273:5932): avc: denied { execute } for pid=7373 comm="syz-executor.4" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 176.217340][ T333] usb 1-1: USB disconnect, device number 22 [ 176.237970][ T28] audit: type=1326 audit(1717413879.353:5933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7377 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc58127cee9 code=0x7ffc0000 [ 176.246667][ T333] ftdi_sio 1-1:0.40: device disconnected [ 176.275413][ T28] audit: type=1326 audit(1717413879.383:5934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7377 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc58127cee9 code=0x7ffc0000 [ 176.280031][ T333] ftdi_sio 1-1:0.0: device disconnected [ 176.317543][ T28] audit: type=1326 audit(1717413879.383:5935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7377 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc58127cee9 code=0x7ffc0000 [ 176.345211][ T28] audit: type=1326 audit(1717413879.383:5936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7377 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc58127cee9 code=0x7ffc0000 [ 176.369308][ T28] audit: type=1326 audit(1717413879.383:5937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7377 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc58127cee9 code=0x7ffc0000 [ 176.393613][ T28] audit: type=1326 audit(1717413879.383:5938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7377 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fc58127cee9 code=0x7ffc0000 [ 176.426613][ T28] audit: type=1326 audit(1717413879.383:5939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7377 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc58127a667 code=0x7ffc0000 [ 176.451438][ T28] audit: type=1326 audit(1717413879.383:5940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7377 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc581240329 code=0x7ffc0000 [ 176.839534][ T318] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 176.870838][ T333] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 177.099629][ T318] usb 4-1: Using ep0 maxpacket: 16 [ 177.109649][ T1579] cdc_ncm 3-1:1.0: bind() failure [ 177.120807][ T1579] usb 3-1: USB disconnect, device number 20 [ 177.181210][ T7444] incfs: Options parsing error. -22 [ 177.186965][ T7444] incfs: mount failed -22 [ 177.229559][ T333] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 177.242494][ T333] usb 5-1: New USB device found, idVendor=0eef, idProduct=72d0, bcdDevice= 0.00 [ 177.251422][ T333] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 177.259852][ T333] usb 5-1: config 0 descriptor?? [ 177.300398][ T333] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 177.322131][ T7455] loop1: detected capacity change from 0 to 512 [ 177.330166][ T7455] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 177.344243][ T6419] EXT4-fs (loop1): unmounting filesystem. [ 177.446718][ T7470] loop1: detected capacity change from 0 to 2048 [ 177.453210][ T318] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00 [ 177.462226][ T318] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 177.470042][ T318] usb 4-1: Product: syz [ 177.474008][ T318] usb 4-1: Manufacturer: syz [ 177.478439][ T318] usb 4-1: SerialNumber: syz [ 177.483527][ T318] usb 4-1: config 0 descriptor?? [ 177.490025][ T7470] loop1: p2 < > [ 177.520343][ T1414] usb 5-1: USB disconnect, device number 30 [ 177.527106][ T318] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected [ 177.535319][ T318] usb 4-1: Detected FT232H [ 177.642633][ T7476] input: syz0 as /devices/virtual/input/input28 [ 177.692296][ T7480] loop1: detected capacity change from 0 to 512 [ 177.700929][ T7480] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 177.716663][ T6419] EXT4-fs (loop1): unmounting filesystem. [ 177.722368][ T318] ftdi_sio ttyUSB0: Unable to read latency timer: -32 [ 177.753335][ T7490] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.1'. [ 177.895290][ T7505] input: syz0 as /devices/virtual/input/input29 [ 177.903738][ T7507] input: syz0 as /devices/virtual/input/input30 [ 177.971074][ T7511] input: syz0 as /devices/virtual/input/input31 [ 178.069682][ T7521] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 178.149402][ T7535] loop4: detected capacity change from 0 to 512 [ 178.161674][ T7535] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 178.170688][ T7535] EXT4-fs (loop4): 1 truncate cleaned up [ 178.176528][ T7535] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 178.199009][ T5882] EXT4-fs (loop4): unmounting filesystem. [ 178.210706][ T318] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 178.232399][ T7546] input: syz1 as /devices/virtual/input/input32 [ 178.246084][ T7549] input: syz0 as /devices/virtual/input/input33 [ 178.268131][ T7555] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 178.286349][ T7557] loop2: detected capacity change from 0 to 2048 [ 178.293234][ T7559] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.4'. [ 178.314560][ T7561] input: syz0 as /devices/virtual/input/input34 [ 178.323639][ T7557] loop2: p2 < > [ 178.413122][ T318] usb 4-1: USB disconnect, device number 15 [ 178.423634][ T318] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 178.435085][ T318] ftdi_sio 4-1:0.0: device disconnected [ 178.440601][ T7576] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 178.463639][ T7578] input: syz1 as /devices/virtual/input/input35 [ 178.477766][ T7582] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.485564][ T7582] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.492478][ T7582] bridge0: port 2(bridge_slave_1) entered forwarding state [ 178.500885][ T7580] tmpfs: Unknown parameter 'f' [ 178.567265][ T7591] loop4: detected capacity change from 0 to 2048 [ 178.610078][ T7591] loop4: p2 < > [ 178.766173][ T7607] tmpfs: Unknown parameter 'f' [ 178.796933][ T7609] loop4: detected capacity change from 0 to 512 [ 178.799603][ T24] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 178.828157][ T7609] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 178.844720][ T7609] ext4 filesystem being mounted at /root/syzkaller-testdir2910906942/syzkaller.cxmYfR/138/file0 supports timestamps until 2038 (0x7fffffff) [ 178.882668][ T7609] EXT4-fs error (device loop4): ext4_do_update_inode:5212: inode #2: comm syz-executor.4: corrupted inode contents [ 178.912139][ T7609] EXT4-fs error (device loop4): ext4_dirty_inode:6074: inode #2: comm syz-executor.4: mark_inode_dirty error [ 178.955299][ T7609] EXT4-fs error (device loop4): ext4_do_update_inode:5212: inode #2: comm syz-executor.4: corrupted inode contents [ 178.989743][ T7609] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz-executor.4: mark_inode_dirty error [ 179.030075][ T5882] EXT4-fs (loop4): unmounting filesystem. [ 179.146187][ T7564] loop1: detected capacity change from 0 to 131072 [ 179.155404][ T7564] F2FS-fs (loop1): invalid crc value [ 179.162143][ T7564] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387) [ 179.199575][ T7564] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b [ 179.209534][ T24] usb 1-1: unable to get BOS descriptor or descriptor too short [ 179.449576][ T24] usb 1-1: New USB device found, idVendor=0499, idProduct=1003, bcdDevice=a0.fc [ 179.471195][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 179.502021][ T24] usb 1-1: Product: syz [ 179.514990][ T24] usb 1-1: Manufacturer: syz [ 179.529319][ T24] usb 1-1: SerialNumber: syz [ 179.546110][ T24] usb 1-1: config 0 descriptor?? [ 179.601978][ T24] snd-usb-audio: probe of 1-1:0.0 failed with error -2 [ 179.764185][ T7637] loop2: detected capacity change from 0 to 40427 [ 179.779606][ T7637] F2FS-fs (loop2): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 179.794829][ T7637] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 179.812836][ T7637] F2FS-fs (loop2): extra_attr or flexible_inline_xattr feature is off [ 179.821586][ T24] usb 1-1: USB disconnect, device number 23 [ 179.941066][ T7648] loop1: detected capacity change from 0 to 512 [ 179.979794][ T7648] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 179.998209][ T7648] ext4 filesystem being mounted at /root/syzkaller-testdir3275340947/syzkaller.QbQOrz/114/file0 supports timestamps until 2038 (0x7fffffff) [ 180.101442][ T7648] EXT4-fs error (device loop1): ext4_do_update_inode:5212: inode #2: comm syz-executor.1: corrupted inode contents [ 180.149713][ T7648] EXT4-fs error (device loop1): ext4_dirty_inode:6074: inode #2: comm syz-executor.1: mark_inode_dirty error [ 180.186191][ T7658] netlink: 'syz-executor.2': attribute type 1 has an invalid length. [ 180.187549][ T7648] EXT4-fs error (device loop1): ext4_do_update_inode:5212: inode #2: comm syz-executor.1: corrupted inode contents [ 180.229765][ T7648] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz-executor.1: mark_inode_dirty error [ 180.277629][ T6419] EXT4-fs (loop1): unmounting filesystem. [ 180.359265][ T7670] loop2: detected capacity change from 0 to 512 [ 180.385186][ T7670] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 180.403994][ T7670] EXT4-fs (loop2): 1 truncate cleaned up [ 180.416773][ T7670] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 180.480039][ T7683] loop1: detected capacity change from 0 to 256 [ 180.492957][ T7260] EXT4-fs (loop2): unmounting filesystem. [ 180.518324][ T7683] FAT-fs (loop1): Directory bread(block 64) failed [ 180.549483][ T7683] FAT-fs (loop1): Directory bread(block 65) failed [ 180.555973][ T7683] FAT-fs (loop1): Directory bread(block 66) failed [ 180.579791][ T7683] FAT-fs (loop1): Directory bread(block 67) failed [ 180.590542][ T7683] FAT-fs (loop1): Directory bread(block 68) failed [ 180.606510][ T7683] FAT-fs (loop1): Directory bread(block 69) failed [ 180.622254][ T7683] FAT-fs (loop1): Directory bread(block 70) failed [ 180.636296][ T7683] FAT-fs (loop1): Directory bread(block 71) failed [ 180.651699][ T7683] FAT-fs (loop1): Directory bread(block 72) failed [ 180.664570][ T7683] FAT-fs (loop1): Directory bread(block 73) failed [ 180.674129][ T7694] loop2: detected capacity change from 0 to 512 [ 180.691784][ T7694] EXT4-fs: Can't set or change test_dummy_encryption on remount [ 181.019502][ T333] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 181.419665][ T333] usb 2-1: unable to get BOS descriptor or descriptor too short [ 181.479488][ C1] softirq: huh, entered softirq 9 RCU ffffffff8160d190 with preempt_count 00000103, exited with 00000102? [ 181.490959][ T7640] BUG: scheduling while atomic: syz-executor.3/7640/0x00000002 [ 181.498361][ T7640] Modules linked in: [ 181.502093][ T7640] Preemption disabled at: [ 181.502105][ T7640] [] __skb_try_recv_datagram+0x198/0x6a0 [ 181.513383][ T7640] CPU: 1 PID: 7640 Comm: syz-executor.3 Not tainted 6.1.78-syzkaller-00134-g997e6b3f6a21 #0 [ 181.523291][ T7640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 181.533277][ T7640] Call Trace: [ 181.536382][ T7640] [ 181.539157][ T7640] dump_stack_lvl+0x151/0x1b7 [ 181.544314][ T7640] ? __skb_try_recv_datagram+0x198/0x6a0 [ 181.549958][ T7640] ? __skb_try_recv_datagram+0x198/0x6a0 [ 181.555540][ T7640] ? nf_tcp_handle_invalid+0x3f1/0x3f1 [ 181.560835][ T7640] ? __skb_try_recv_datagram+0x198/0x6a0 [ 181.566303][ T7640] dump_stack+0x15/0x1b [ 181.570296][ T7640] __schedule_bug+0x195/0x260 [ 181.574808][ T7640] ? cpu_util_update_eff+0x10e0/0x10e0 [ 181.580102][ T7640] ? bpf_trace_run2+0x138/0x290 [ 181.584792][ T7640] __schedule+0xcf7/0x1550 [ 181.589138][ T7640] ? kcov_ioctl+0x1f9/0x630 [ 181.593478][ T7640] ? __bpf_trace_kfree+0x6f/0x90 [ 181.598256][ T7640] ? __sched_text_start+0x8/0x8 [ 181.602943][ T7640] schedule+0xc3/0x180 [ 181.606844][ T7640] exit_to_user_mode_loop+0x4e/0xa0 [ 181.611879][ T7640] exit_to_user_mode_prepare+0x5a/0xa0 [ 181.617179][ T7640] syscall_exit_to_user_mode+0x26/0x140 [ 181.622553][ T7640] do_syscall_64+0x49/0xb0 [ 181.626816][ T7640] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 181.632621][ T7640] RIP: 0033:0x7f43a147cee9 [ 181.636915][ T7640] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 181.656499][ T7640] RSP: 002b:00007f43a07d60c8 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 181.664737][ T7640] RAX: 00000000000356a3 RBX: 00007f43a15b4070 RCX: 00007f43a147cee9 [ 181.672550][ T7640] RDX: 00000000040002db RSI: 0000000020000740 RDI: 0000000000000007 2024/06/03 11:24:44 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 181.680442][ T7640] RBP: 00007f43a14c947f R08: 0000000000000000 R09: 0000000000000000 [ 181.688261][ T7640] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 181.696067][ T7640] R13: 000000000000006e R14: 00007f43a15b4070 R15: 00007ffee916a798 [ 181.703891][ T7640]