last executing test programs: 7.602635497s ago: executing program 4 (id=5629): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1004400, &(0x7f0000001940), 0x6, 0x588, &(0x7f0000000300)="$eJzs3U1sHFcdAPD/TOzsOnGaFHooCGgohYCirmOnjapeWi5IUFUgFU49pNZ6Y0VeZyPvutTGB+fEgSsSlTjBhQsnDpU4IPWEuHKDG5dyQCooAtVICE014914d7ObbOOPiePfTxrte/P1f2/kfeN5szMvgBPrYkRsR8TpiHgnIs5HUsxPulO8vjvl631yd6u+c3ernkSWvfWvqe4etuq99XvORsRPR8Sq9KXbG5sri81mY62bn+us3p5rb2y+eHN1cbmx3Li1sHBt/tqVV66+vHBgdX1u9Xcff+fmGz/6w++//NGft7/1k7zMr3WX5XXrWzXJsmz/AV/rHZfpmO3OSiMiP3Jv7H/vj4VT3fqcLrsgPJL87/FzEfF8N31PtbwyAQCHK8vOR3a+P78nHchlWTJiHQDg+Mmv+WcjSWvd6//ZSNNarejDqz4TZ9Jmq925fKO1fivpdfFNpzduNhtXir7CiEpMJ3l+PiIuFNNufmEofzUino6In1dminyt3moulfIfDwBwduj8/59Kfv6vTLKpOwQAcJw5kwPAyXP/+X+6lHIAAEfH9T8AnDx95/+J7vwDAMdfdejZ/5Gy5EjKAgAcjZH9/2+f20s/mwy94gsAOO7c/weAE+UHb76ZT9lOlhTvv156d2N9pfXui0uN9kptdb1eq7fWbteWW63l4p09qyN2cac/02y1bs+/FOvvzXUa7c5ce2Pz+mpr/VbnevFe7+sNDxYAQPmefu7DvyYRsf3qTDFFbyyHh/8gADjm0oiZsssAlONU2QUASjNVdgGA0uiPBx72496RPxGaiYj3x2+jYwEeb5e+MKb/f/h/g8H7Af8/gNGxgZJ1v9a6AeAE2l//v94DOM4efOL3YBA8ybIsMZ4/AJwwE1zB+4kgPOEe6f4/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnHCzxZSkte5Y4LORprVaxLmIuBDTyY2bzcaViHgqIv5Sma7k+fmyCw0A7FP6j6Q7/tel8y/MDi89nfy3UnxGxI9/+dYv3lvs9IYOvDe/834xv7O2MDJA5fDrAAD0mRqe0TtPF599F/Kf3N2q96ajLODH396Lv3N3q743HvFUt/DVyOed+XcyUJnkgAYm3r4TEc8O1z+9t/xCd+TT4fh57HOHFj+KGs4OxB/8Nyotlu1+5sfi8zMTxjuAMsOT4sO8/Xl91PcvjYvFZ/f7NzXYmFbjZ/c3ro+gaP+qETvZbvu30xc/3//3z1WLtmZU+3dx0hgv/fG7Y5fdOZV9cSqiF3unr/3ZVS1So+K/MGH8v33pK8+PO1jZryIuxYPi76bmOqu359obm7/93gd/Wm4sN24tLFybv3bllasvL8wVfdRzvZ7q+/3z1ctPja9/xJkx8asPqf/XJ6z/r//3zttffUD8b35tVPw0nnlA/Pyc+I1Ymyj+4pkPxg7fncdfGlP/qYH4pwe2y+ddHt7ZmD/Ij/6+uTRRQQGAI9He2FxZbDYba5Mk0thcWexdaE681UBi5pG2mjARh7bn0YnpgYNQPaxYZ8cs+s1n3uF0HOnxObDEnc+wcqWcop6KZq8/6qErd9fb3k/QLNtHmS9OsE5JDRJwZPa+9GWXBAAAAAAAAAAAAAAAGKf9w+4r/w74oaj+h+HKriMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABPrk8DAAD//xa4xxY=") r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) mkdir(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) mkdir(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="010000000000000000007e"], 0x14}}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x5, 0x3, 0x40, 0x6, 0x40, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x2}, 0x48) write$binfmt_script(r7, &(0x7f0000000080), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r7, 0x0) 7.145593965s ago: executing program 4 (id=5630): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x4}}}]}, 0x34}}, 0x0) 7.132161776s ago: executing program 4 (id=5631): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r4, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0) write$FUSE_INIT(r4, &(0x7f0000000380)={0x50}, 0x50) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) creat(&(0x7f00000003c0)='./file0/../file0/file0\x00', 0x0) 6.653458745s ago: executing program 0 (id=5634): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(0x0, &(0x7f00000003c0)='./file0\x00', 0x3b00050, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r4, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298) write$FUSE_DIRENTPLUS(r4, &(0x7f0000000580)=ANY=[@ANYBLOB="b0"], 0xb0) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 6.642900706s ago: executing program 4 (id=5636): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) signalfd4(0xffffffffffffffff, &(0x7f0000000300)={[0x8]}, 0x8, 0x81000) syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a7, &(0x7f0000000500)="$eJzs3F1IU3EYx/HHl9QM3YgICqqnvKmIg9t1oCM0ooFRGpYQHPOsxk7b2BmrSeiCwJsuuuntuoIIQYgugkDsoqtQwrsuuvPOi+wqiejEaZqbTS1TJ/n9XHgefP6/w/+87LD9B5s+fvdaLOIYETMtlXUVUtkqOZmtEL9UyrycHLk+8n7fuQsXT4fC4bazqu2hzkBQVRsPjPbcHD40lt5x/mXj61oZ91+anglOje8e3zP9vfNq1NGoo/FEWk3tTSTSZq9tad99J2aonrEt07E0GnesVFE/YieSyaya8b6G+mTKchw141mNWVlNJzSdyqp5xYzG1TAMbagXLG848yi0dLfr+azrykz6nevW5sR1Xe+fdRs4PZTZrCsy47oF1/9OuaeEDVTwUK8TsYcyXZm5bb4fikhUbLGkWXzyTbx7xH084v68Vby/N4Ij4cmjb9+oql8G7MFMl5f0tlXF+YD4xJ/P5OXr9lPhtoDmFee3SX1hPig+2VU6HyyZr5HDTQV5Q3wyeVkSYsvE6MEvUx1DD+bzAwHVEx3hRfnt0rdwmp59LtP1AQAAAAAAAABgNQz9peT6veENuN2vqg2L+vl8qe8HFq/PN5dcn6+WvdXlPXYAAAAAALYKJ9sfM23bSv1j4X2UX4v9/H/Fk1t/Pnh/+/JjmlqqJlo/5JKb4bj+ovjavSmmUVzI3OrTSoOr1viVslB8WpP9VMzNb+kxJ3s+vlhxPzW/nZ+ljK3/UwkAAADAelh4098ig5FXmcHuY/fKPScAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALaaVfzk2MTDUi31ip1PS7XKfYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADL+REAAP//zp3Ovg==") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000), 0xfea7) 6.498273598s ago: executing program 0 (id=5641): mkdir(&(0x7f0000000340)='./file0\x00', 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe4, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000180018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000a850000000f000000c50000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r4, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0) write$FUSE_INIT(r4, &(0x7f0000000380)={0x50}, 0x50) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) creat(&(0x7f00000003c0)='./file0/../file0/file0\x00', 0x0) 6.410548765s ago: executing program 0 (id=5644): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2f, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000178500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x10) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0xf, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0x4, 0x9, 0x0, 0x1, 0xe7030000}, {0x16, 0x0, 0x0, 0x6}}, [], {{0x4, 0x1, 0x5, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r1}, 0x10) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r7}, 0x10) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) 4.871015311s ago: executing program 0 (id=5648): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r4, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0) write$FUSE_INIT(r4, &(0x7f0000000380)={0x50}, 0x50) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) creat(&(0x7f00000003c0)='./file0/../file0/file0\x00', 0x0) 4.860384882s ago: executing program 4 (id=5650): syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4}, 0x48) bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) readv(r0, &(0x7f0000002140)=[{&(0x7f00000010c0)=""/29, 0x1d}], 0x1) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = syz_usb_connect$printer(0x2, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0x40, 0x6, [{{0x9, 0x4, 0x0, 0x9, 0x2, 0x7, 0x1, 0x3, 0xfd, "", {{{0x9, 0x5, 0x1, 0x2, 0xa08, 0x8, 0x8, 0x80}}, [{{0x9, 0x5, 0x82, 0x2, 0x400, 0x6, 0x80, 0xe7}}]}}}]}}]}}, &(0x7f0000000580)={0xa, &(0x7f00000002c0)={0xa, 0x6, 0x0, 0x89, 0x10, 0x3, 0x8, 0x9}, 0x50, &(0x7f0000000300)={0x5, 0xf, 0x50, 0x4, [@ssp_cap={0x1c, 0x10, 0xa, 0x7, 0x4, 0x435a54f, 0xf1e, 0x2, [0xf, 0xf, 0xffc0ff, 0xff00c0]}, @wireless={0xb, 0x10, 0x1, 0x8, 0x80, 0x3, 0xfa, 0x800, 0x8}, @ss_container_id={0x14, 0x10, 0x4, 0x3, "46542d1b99228ae16c5c0a0f6787369e"}, @ssp_cap={0x10, 0x10, 0xa, 0x5, 0x1, 0x9, 0xff00, 0x4, [0xff000f]}]}, 0x3, [{0x61, &(0x7f0000000380)=@string={0x61, 0x3, "664949d68602849763bf06a06cf1450b0008c73cf5dafd70facefcbd1be247f3b8cd40890de47e3b91871248b75114338f4da875b7f2b7f71da9418272de81e5761f8c082509c36748ae5f649c11723fdaa6c9ecde1cf05153ce64eb2cb8ff"}}, {0xc, &(0x7f0000000400)=@string={0xc, 0x3, "827be459c0b9995d3043"}}, {0x4d, &(0x7f00000004c0)=@string={0x4d, 0x3, "a04342866140a4c023ccb847bc0e3f27d60cab8f3ef8c119a341033f43a30ac461bd87a76b43716f7977df12fba01082f14f84d14e9d1dfddeb1dfea5a40a73ddffd38b697d69658784ea5"}}]}) syz_usb_control_io$printer(r4, &(0x7f00000006c0)={0x14, &(0x7f00000005c0)={0x0, 0xb, 0x24, {0x24, 0x9, "e64b253a91d25972bfefbc0c466825f70e9e847e0850408bcd9f0742522a9783b3cc"}}, &(0x7f0000000600)={0x0, 0x3, 0x92, @string={0x92, 0x3, "ea890c02ae1c02075d8c40e7191d6298792760f4ac41cbb99bdf5019b43c1b7d539caa40e3e5fbac56899aeffde239ec3fc1ea127c23db422266f8405e52aebc1e4a4f2119e3a35e088172a464ad02cc525233e0c519780f0be0a282284509fa9971a890deacbd8221c9c50847efcdce06a201e1803a08ddef7136d6abf508b3bc5905ead1e3a8af759065776ed61aa8"}}}, &(0x7f0000000b00)={0x34, &(0x7f0000000700)={0x20, 0x8, 0x5e, "428e1122db0abccdd32940546c3958b9deaeb260f4082b62dc27ccdc48bd61305f6a946736c6c03339a933646c871b52bd7941891051ac2c427dbe81d87ca9b72334a93ee61ee988db02fcb8a906030dce4072351f2fb7c22c903145d2a3"}, &(0x7f0000000780)={0x0, 0xa, 0x1, 0x3}, &(0x7f00000007c0)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000000800)={0x20, 0x0, 0x102, {0x100, "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"}}, &(0x7f0000000940)={0x20, 0x1, 0x1, 0xd}, &(0x7f0000000980)={0x20, 0x0, 0x1, 0x9}}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) 4.847276644s ago: executing program 0 (id=5651): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x63, 0x7f}) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000540)={'syztnl0\x00', &(0x7f0000000480)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @empty}}}}) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000280)) ioctl$KVM_RUN(r3, 0xae80, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0x0, &(0x7f0000000340)={0x8, 0x8a}, 0x0) sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000680)=ANY=[@ANYBLOB="ec000000020101030000000000000000010000050800154000000003540018800800024000000007080001400000000408000340fffffff20800024000000006080001400000b6e808000140ffffff7f08000140000000070800014000005ce5080001400000000508000240ffffffff06001240000200004400029b93248d43aea6ae4d87802c00018014000300ff020000000000000000000000000001140004000000000000000000000000000000000006000340000400000c00028005000100010000000c0005800500010000000000240016400000000000000004000000060000000800000005000000000000000100000001"], 0xec}, 0x1, 0x0, 0x0, 0x20000855}, 0x4000004) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000580)={[{@block_validity}, {@grpjquota}, {@sysvgroups}, {@norecovery}, {@errors_remount}, {@orlov}, {@nogrpid}, {@nomblk_io_submit}, {@orlov}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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") bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00') sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r5 = getpid() sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 4.594878404s ago: executing program 1 (id=5658): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1004400, &(0x7f0000001940), 0x6, 0x588, &(0x7f0000000300)="$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") r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) mkdir(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) mkdir(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="010000000000000000007e"], 0x14}}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x5, 0x3, 0x40, 0x6, 0x40, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x2}, 0x48) write$binfmt_script(r6, &(0x7f0000000080), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r6, 0x0) 3.831860347s ago: executing program 1 (id=5661): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r4, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0) write$FUSE_INIT(r4, &(0x7f0000000380)={0x50}, 0x50) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) creat(&(0x7f00000003c0)='./file0/../file0/file0\x00', 0x0) 3.830528877s ago: executing program 1 (id=5662): r0 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x10) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8}, 0x0) r3 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000002c0)={[{@errors_remount}, {@grpjquota}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@orlov}]}, 0x3, 0x56a, &(0x7f00000015c0)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68BKZzWy7TbL5uXW3zucD0743M5s3b998335nZ5cNoLBGsn9KEa9GxDdJxOG2bYORbxxZ2W/p8Y3JbEliefmzP5NI8nWt/ZP8/4N55ZWI+PWriJOlte3WFxZnKtVqOpfXRxuzV0frC4unLs9WptPp9Mr4xMSZdybG33/v3a719c0Lf3//6f2Pznx9fOm7nx8euZvEuTiUb2vvxy7caq+MxEj+nAzFuVU7jnWhsX6S9PoA2JGBPM6HIpsDDsdAHvXA/9/NiFgGCioR/1BQrTygdW3fpevgF8ajD1cugNb2f3DlvZHY17w2OrCUPHNllF3vDneh/ayNX/64dzdbYpP3IW52oT2Allu3I+L04ODa+S/J57+dO91883hjq9so2usP9NL9LP95a738p/Qk/4l18p+D68TuTmwe/6WHXWimoyz/+2Dd/PfJ1DU8kNdeauZ8Q8mly9X0dES8HBEnYmhvVt/ofs6ZpQfLnba153/ZkrXfygXz43g4uPfZx0xVGpXd9Lndo9sRrz3Nf5NYM//va+a6q8c/ez4ubLGNY+m91ztt27z/7bqfAS//FPHGuuP/9I5WsvH9ydHm+TDaOivW+uvOsd86tb+9/ndfNv4HNu7/cNJ+v7a+/TZ+3PdP2mnbTs//PcnnzfKefN31SqMxNxaxJ/lk7frxp49t1Vv7Z/0/cXzj+W+9839/RHyxxf7fOXqn4679MP5T2xr/7RcefPzlD53a39r4v90sncjXbGX+2+oB7ua5AwAAAAAAgH5TiohDkZTKT8qlUrm88vmOo3GgVK3VGycv1eavTEXzu7LDMVRq3ek+3PZ5iLH887Ct+viq+kREHImIbwf2N+vlyVp1qtedBwAAAAAAAAAAAAAAAAAAgD5xsMP3/zO/D/T66IDnzk9+Q3FtGv/d+KUnoC95/YfiEv9QXOIfikv8Q3GJfygu8Q/FJf6huMQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNWF8+ezZXnp8Y3JrD51bWF+pnbt1FRanynPzk+WJ2tzV8vTtdp0NS1P1mY3+3vVWu3q2HjMXx9tpPXGaH1h8eJsbf5K4+Ll2cp0ejEd+k96BQAAAAAAAAAAAAAAAAAAAC+W+sLiTKVaTecUOhbORl8cxo4LyWajfDY/GXbUxGDvO6jwHAo9npgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoM2/AQAA///fKTPH") r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f00000012c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xfd, 0x0, 0x1}, 0x48) r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x804}, 0x90) r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r9 = bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r10 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r10, 0x5, &(0x7f0000000200)=0x7f) r11 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000b40)=ANY=[], 0x0}, 0x90) r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000940)='fscache_resize\x00', r1}, 0x10) bpf$MAP_CREATE(0xe4ffffff00000000, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x2010, r4, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000980)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r13, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e) sendmmsg$unix(r14, &(0x7f0000008400)=[{{&(0x7f0000000540)=@file={0x1, './file1\x00'}, 0x6e, &(0x7f0000001140)=[{&(0x7f0000003b40)="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", 0x1000}, {&(0x7f00000005c0)="058b22182280a9b3fb4c9b9a4521038987c3286d915b62161c4e03ebbdba188e792713457253b4cc9af2e5f3436229bec8c281354533b3dfb52fdf8e41ec96e24b90c099602d9b82b39bfa0dfb87baa782ffdbb04b950602e5658c1159841c08b8f5bccdcf23c60217", 0x69}, {&(0x7f0000000f80)="26fb27affc23b3325258e2be3c8e46a0c6f9cc33a762b48dfd87f872dc8f672e758258846b22c9f63c196d7ba6df28bd3dcd6a4e43d382c05e57c9c8453e9fe5ef69996fd7d35a65059c6a68fa046c920b065876f65998598b1b49f61e9632fb00d19a8750e6108d4b407ab18d8d088b69a5531c2a12dc6a567eda338f5c874ca188aadb816896426a78e994d761be216fc2802edc90d167042a9fa58e", 0x9d}, {&(0x7f00000009c0)="16bc304211894fb20ceb3f08bcc9128e924c8f9ec90d1ce3840f93e4f811933763fe02c6a27aa33b981bdb7447638a508173080192002db1dc6c82e4e17d2941e7fc2e77e1735832caf0b373395e", 0x4e}, {&(0x7f0000001040)="ae7d221b630ae25d2bad0a7b5650bde3fc0d5df7aef4aa4c417ce02d7e53c75f14b3787a56ec480502af656e22cae12be085391a18d5cc2092cd21d73246c10446fd61851d748c96aa375853c5e0aea116838d9c1136cd32afa66906d571e185f8fcced599cc1a512f5d9a0d30d9a7203e6708b6b3fde53c6a3005d0c560ab28269a6a7e0f448d55ac773fc51d4b996601cf82f3a92db03b40bc960ba702d1634bade86d0a8f58c454c31baf3a9a830056494694c8dc28c6a237108a50fe0892519bf02238dc95373d7275fb", 0xcc}, {&(0x7f0000000240)="ecf92153fa4975b76899c0cd36592e10047fdfba4cd57b20940a15f3ed2c18db7875e231db20d97bc00faf7e", 0x2c}], 0x6, &(0x7f00000011c0)=[@cred={{0x1c, 0x1, 0x2, {r10, 0xee01}}}], 0x20, 0x4000}}, {{&(0x7f0000001200)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f0000001280)=[{&(0x7f0000001340)="d20c61deed60d5a8d4d50af54469f3825415196e426d0e895e4d7ce619cfc16993f916c770b063069e9eeb340b02ccdc6337927a52302ea32bcedfea0b5107fe11f10a60255f3f1153a17a8dcdf4d07bd0660ed907d08387b09446f1066eb96eea8a04c3c5d23bb5d5a85754bfb6c862d364fd8a2c68e2380734596492ae6399e1dea535c4e6a2cd071c28ad9152f0c888afe5a428edeb58576a20726948a299d618ea4197a9b314e77c4bf61f09c6beca190b3dff3c16fce7441a4d80ee9c8ef2dc77a776d3f09caa4049f798aba9cf9691f7760c60110b0a21ec46", 0xdc}], 0x1, 0x0, 0x0, 0x8004}}, {{0x0, 0x0, &(0x7f0000004c40)=[{&(0x7f0000001440)="5795930748a0566f570003f26108800c222523c1bd83b223ee235db7d6303af7999eaadf0a2fd2be88cfd063723eeacf99a9a11103305405e9f4b9f7bd3b179b8f418bcffddef8e8b8ed8844c88bb1e3edbe5286284f7e0410ac6e24c77eb2d415e544d5b64fd49d99a835b29194f30969d9ba50fd00fd617423f579b4c36e898a57275461c1a11e22f176a28189e52d58dfa9a0f6f2ad032b5763b8637b58", 0x9f}, {&(0x7f0000001500)="ee096f7fea983e2084d096c113df54e66165f4c59b94d55cac7354f89795e32deec4ee8fe5ce91de4bd69b581f91ffb99fed26f24672cea97cb4728721394c0e48af51eaafd7b089ec3122cfbae33fb5d20644defd2dcc9554d14d7c3f25c28f09e29d3c1051115217f68810fa5e2d46038612a38a854ddc7de7a81f527003621d472aa8c670b51d05a77ba6e19f8f5f98ed514cd535ad7aa588b5c051811693", 0xa0}, {&(0x7f0000004b40)="2939f27c3069a580f2251f3ba3e68b000000906e2f3a08fe1de005a6f70be74e4c75d977b86e0a5c86a03bb690c216e2172dc1fe6f500a879b8938735d5c0fc1ba4e778812ce85f714406dbdf02f24bb0dd8886c00335afb8e86436663d90b9efffb7ae00ff77e31d872104ee0d3246131cc029f816558e45c079bea9e049c9cd84ff252aaa0cd94217ff2addf", 0x8d}, {&(0x7f0000004c00)="7351237d72dbb1e284e8cbebb4e8afa72a8ef71f74bd5356f34d4a7c", 0x1c}], 0x4, 0x0, 0x0, 0x20000000}}, {{&(0x7f0000004c80)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000005f00)=[{&(0x7f0000004d00)="fac466fe72d4061a68f305cea01ee18ac263d9642bc26cd25ea0f00f23a24f3c44a6baafe8c59d794a382f2e7e48c2e196be86afaaa1076cc04da35b412dca276507b6a1c264927db4cfaa2f2b2582cf6572229c117e2a032bcab9c96b016f4dfdd56f453a967d39d9606fcc46b5d6b691ced2c248726a23e1146e5f40ba1b5935887b6a8fddcc39c9e41bbf99465f400057c9bfa0f250abaf81aae35d578c7daca27fc20c3917", 0xa7}, {&(0x7f0000004dc0)="e0554fcf187ab72d31c26c651ab8ba8e755f31ca6414c65ad29820762575", 0x1e}, {&(0x7f0000004e00)="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", 0x1000}, {&(0x7f0000005e00)="d0b6be708129c2bffc4e0609af186c28c465c45dbac5ce1e2e2eda43151dc4ffca65c2f36c9b2623775dbc981a3d7b5b8f35cab0e38da3e02019babe47ea499f4b1e2728e463910ab7b635cfca3ec28b242ec06a0ff839ba1c25333f10d82aaedf557cd8b4a4246ee5687879cb8182afed83d7979ef1c6368321a18a475679ac5c44a7052eae301f5443ddad7fd8f7b94feaf725d434864a51ae73cf62d6524b761dd847faaec3e04df20a40a37e93e964902fdc867fa9429c25375916b20686999bc6c057bdb38c0b49839f1d3d6839a7eb0bae8924a9e39704091d3dccb50fcc8a048f51c60b4ede4e7a83b441d707c5090a827ef668f7", 0xf8}], 0x4, &(0x7f0000006240)=ANY=[@ANYBLOB="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", @ANYRES32=r4, @ANYRES32, @ANYBLOB="14000000000000000100000001000000", @ANYRES32=r12, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r10, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x50, 0x200c1}}, {{&(0x7f0000005fc0)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000006200)=[{&(0x7f0000006040)="e3bf9bfcdb3c0ecc4c1af025e362b18517c6eb9197b69c9ce2ebbc5a0d36080564706ceb14ca779ca6fd5867788e6d80b671a1e87b41d14c90a929a623ac4f25aa0c574a62dd", 0x46}, {&(0x7f00000060c0)="5c54c54f74f21b56e4cfe292e20120805db3d65920c304abe0a242678dbd5055214d16abd743ad44ef09854bac93a45f8cbe34a368d6a61a2b", 0x39}, {&(0x7f0000006100)="a46d6ab7e2f9c3fd5194981f07c0dd8db46bc7b0dbb71a64e766babd3773897a8d16afae3b0d937e733a27c6908de47022d3591ae432923f5c3c6b2184d02c2e33cc0d805db4b4576622b191871bc59ba57396285c459ac58ed042ff9b0a2d0c2f0bf523fc57bd822bfd27fb206a9911d290d0e6dacaf3c42c3e6adc4eb7350d68bae45556c86163f317b7f7687dc9d9797ea0b0788d789618e7bcc2c26cf23c213bbd16e498b92255cc77f6b912213d3e35039226a274ae8577dc3e18d6b054e9b5e0867470b829c29fb6b3af3891316fe685bdbacdf8ae5ed2e65ed8376f1889", 0xe1}], 0x3, &(0x7f00000082c0)=ANY=[@ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32=r2, @ANYRES32=r11, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32=r5, @ANYRES32=r5, @ANYRES32, @ANYRES32, @ANYRES32=r14, @ANYRES32, @ANYRES32, @ANYBLOB="fd763cf0dd06ed5c01000000d1040000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r5, @ANYRES32=r13, @ANYRES32=r14, @ANYRES32, @ANYRES32=r9, @ANYRES32, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32=r8, @ANYRES32=r3, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r10, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32=r13, @ANYRES32, @ANYRES32=r13, @ANYRES32=r2, @ANYRES32=r7, @ANYRES32=r13, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32=r8, @ANYRES32=r4, @ANYRES32=r2], 0x128, 0x1}}], 0x5, 0x0) recvmmsg(r13, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prlimit64(0x0, 0x0, 0x0, 0x0) r15 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r15, &(0x7f0000000c80)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x8000000, @empty, 0x6}, 0x1c, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRESOCT], 0x590}}, {{&(0x7f0000000380)={0xa, 0x4e24, 0x10000, @local, 0x7f}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000001b40)="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", 0x1000}, {&(0x7f0000000e80)="1ff0707c51fc8881d9885de2047b40411edfae03e6e1d1a9b6d15ce580efb80e02bf0fb9ca8eb7d1de8b6914f8dd9c54700f38e7c4aa80bf3afe66648e0536c82cf9bed9160a6cbdd63a63123b2e9427ae25ee68744f7403bc4a93c401925b3e276c6ebae2905296536ddbc33dbc3e4408f0ab2e3e09710941698d8a7e3be0decf7854bcbb3d4b6ef0c0c17410e716e3040e27f33dfbc53090c8dd2b2adc7fb7c92a1bd991ecfcd63e7c18197bd71d1931d5b12f11b070ab0b5117f7431d899b1fe51b70b972d3c3c4fea016ce07a3964d1230416a02", 0xd6}], 0x2, &(0x7f00000006c0)=ANY=[@ANYBLOB="280000000000000029000000390000003c02019800000000fc010000000000000000000000000000280000000000000029000000390000002f020000000000000114000000000000002900000008000000020000000000000048000000000000002900000039000000000600f0000000000000000000000000000000000000000100000000000000000000ffff6401010020010000000000000000000000000002b800000000000000290000003900009974c9ebba8200881400af00000000fe880000000000000000000000000101fe80000000000000000000000000001ffe8000000000000000000000000000aafe8000000000000000000000000000aa00000000000000000000000000000001fc02000000000000000000000000000000000000000000000000000000000001fc01000000000000000000000000000100000000000000000000ffffe000000200000000000000000000ffffac14143300"/366], 0x168}}, {{&(0x7f0000000400)={0xa, 0x4e21, 0x561, @empty, 0xffffff48}, 0x1c, &(0x7f00000004c0)=[{&(0x7f0000002b40)="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", 0x1000}, {&(0x7f0000000840)="13520fdff12645e0617c6173d4b715b723d34cb93b972c5e4eaaa3ce5bf100cd7e86a1953d06beaa5a798bc5d096de18fc64a53126b1872010ca99bfa98f1a198064b8af310de0173b370f57a097abf9ccca3074e48505f3117caa4c80e4c0d5980f7f408a7c440d81d5e2061ce9c464f2d54d3b340f195338bfd7930a813131e20608335003bbb95cf75f62731c1a8c624bc42ca386c0ef3035566a938f148bacc6e7d74dec0af28aa66c08e63b92226d100e333b6e11cf8a1d3d0355fa019d942330ac24dbc2de", 0xc8}], 0x2, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0xd8}}], 0x3, 0x8008801) 3.816288278s ago: executing program 0 (id=5663): r0 = syz_usb_connect$uac1(0x0, 0x81, &(0x7f00000003c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6f, 0x3, 0x1, 0x4, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x9}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x0, 0x0, 0x8}]}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x60, 0x0, {0x7, 0x25, 0x1, 0x0, 0x0, 0x2}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0x8}]}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, 0x0) syz_usb_control_io$uac1(r0, &(0x7f0000000a00)={0x14, 0x0, &(0x7f00000009c0)={0x0, 0x3, 0x4, @lang_id={0x4}}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000fc0)={0x2c, 0x0, &(0x7f0000000e40)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000006740)={0x2c, 0x0, &(0x7f0000006640)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x20}}, 0x0, 0x0, &(0x7f0000006700)={0x20, 0x2a, 0xc, {0xc}}}, &(0x7f0000006b80)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006880)={0x20, 0x0, 0x4}, 0x0, 0x0, &(0x7f0000006940)={0x40, 0xb, 0x2, "8ce1"}, 0x0, &(0x7f00000069c0)={0x40, 0x13, 0x6, @remote}, 0x0, 0x0, &(0x7f0000006a80)={0x40, 0x1a, 0x2}, 0x0, 0x0, 0x0}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000)=0x80000000001, 0x4) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d) sendto$inet6(r1, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = dup3(r1, r5, 0x0) r7 = accept$nfc_llcp(r6, &(0x7f00000000c0), &(0x7f0000000300)=0x60) ioctl$sock_SIOCGPGRP(r7, 0x8904, &(0x7f0000000340)) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000380)=""/4096, 0xfffffffffffffeea, 0x0, 0x0}, &(0x7f0000000280)=0x40) 3.260993613s ago: executing program 2 (id=5670): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x4e, &(0x7f0000000040)=0x5) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0x0, &(0x7f0000000180)="4915c082e4035fcc4aefced5f391cd4f58d4b15fb8beb0c5902a553d6c2c439291d33c508919bb4dbdeba0e0a17579ee9f98abbe71b6fb0fd39dfddefbc235cbabac61b6e1cac739b36594987d9ed87ab4cf8a176ea510be13d6f662e81d95f8d621c3233dacbcf43278820e6ef732ba662d5d9696e7672db9784e711b8eac3dc4db3f33701b776ee0", 0x89, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000240)="929e08a993f0b6f73ecfd07e734f8cfff84819f7495409cc5a1d09348adff1b1050f724ba2dea1e10c180bd7feb58805f3891f50277845469bf927421c57ab3e6dabd74439533a5ba28ab5d7db5ac3280cd1ed94eff145a4809eb286942640d4596c32b54c12") 2.842706977s ago: executing program 1 (id=5671): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1004400, &(0x7f0000001940), 0x6, 0x588, &(0x7f0000000300)="$eJzs3U1sHFcdAPD/TOzsOnGaFHooCGgohYCirmOnjapeWi5IUFUgFU49pNZ6Y0VeZyPvutTGB+fEgSsSlTjBhQsnDpU4IPWEuHKDG5dyQCooAtVICE014914d7ObbOOPiePfTxrte/P1f2/kfeN5szMvgBPrYkRsR8TpiHgnIs5HUsxPulO8vjvl631yd6u+c3ernkSWvfWvqe4etuq99XvORsRPR8Sq9KXbG5sri81mY62bn+us3p5rb2y+eHN1cbmx3Li1sHBt/tqVV66+vHBgdX1u9Xcff+fmGz/6w++//NGft7/1k7zMr3WX5XXrWzXJsmz/AV/rHZfpmO3OSiMiP3Jv7H/vj4VT3fqcLrsgPJL87/FzEfF8N31PtbwyAQCHK8vOR3a+P78nHchlWTJiHQDg+Mmv+WcjSWvd6//ZSNNarejDqz4TZ9Jmq925fKO1fivpdfFNpzduNhtXir7CiEpMJ3l+PiIuFNNufmEofzUino6In1dminyt3moulfIfDwBwduj8/59Kfv6vTLKpOwQAcJw5kwPAyXP/+X+6lHIAAEfH9T8AnDx95/+J7vwDAMdfdejZ/5Gy5EjKAgAcjZH9/2+f20s/mwy94gsAOO7c/weAE+UHb76ZT9lOlhTvv156d2N9pfXui0uN9kptdb1eq7fWbteWW63l4p09qyN2cac/02y1bs+/FOvvzXUa7c5ce2Pz+mpr/VbnevFe7+sNDxYAQPmefu7DvyYRsf3qTDFFbyyHh/8gADjm0oiZsssAlONU2QUASjNVdgGA0uiPBx72496RPxGaiYj3x2+jYwEeb5e+MKb/f/h/g8H7Af8/gNGxgZJ1v9a6AeAE2l//v94DOM4efOL3YBA8ybIsMZ4/AJwwE1zB+4kgPOEe6f4/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnHCzxZSkte5Y4LORprVaxLmIuBDTyY2bzcaViHgqIv5Sma7k+fmyCw0A7FP6j6Q7/tel8y/MDi89nfy3UnxGxI9/+dYv3lvs9IYOvDe/834xv7O2MDJA5fDrAAD0mRqe0TtPF599F/Kf3N2q96ajLODH396Lv3N3q743HvFUt/DVyOed+XcyUJnkgAYm3r4TEc8O1z+9t/xCd+TT4fh57HOHFj+KGs4OxB/8Nyotlu1+5sfi8zMTxjuAMsOT4sO8/Xl91PcvjYvFZ/f7NzXYmFbjZ/c3ro+gaP+qETvZbvu30xc/3//3z1WLtmZU+3dx0hgv/fG7Y5fdOZV9cSqiF3unr/3ZVS1So+K/MGH8v33pK8+PO1jZryIuxYPi76bmOqu359obm7/93gd/Wm4sN24tLFybv3bllasvL8wVfdRzvZ7q+/3z1ctPja9/xJkx8asPqf/XJ6z/r//3zttffUD8b35tVPw0nnlA/Pyc+I1Ymyj+4pkPxg7fncdfGlP/qYH4pwe2y+ddHt7ZmD/Ij/6+uTRRQQGAI9He2FxZbDYba5Mk0thcWexdaE681UBi5pG2mjARh7bn0YnpgYNQPaxYZ8cs+s1n3uF0HOnxObDEnc+wcqWcop6KZq8/6qErd9fb3k/QLNtHmS9OsE5JDRJwZPa+9GWXBAAAAAAAAAAAAAAAGKf9w+4r/w74oaj+h+HKriMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABPrk8DAAD//xa4xxY=") r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) mkdir(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) mkdir(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="010000000000000000007e"], 0x14}}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x5, 0x3, 0x40, 0x6, 0x40, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x2}, 0x48) write$binfmt_script(r6, &(0x7f0000000080), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r6, 0x0) 2.734284856s ago: executing program 3 (id=5673): open(&(0x7f0000000100)='.\x00', 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000006c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@nombcache}, {@noload}]}, 0x3, 0x440, &(0x7f0000000280)="$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") socket$unix(0x1, 0x5, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe2, 0x1}, 0x48) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800003f0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x0, 0x0, 0xffffffff, 0x1, 0x1}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00'}, 0x56) bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x1}, 0x48) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) getsockopt$bt_l2cap_L2CAP_OPTIONS(r5, 0x6, 0x1, 0x0, &(0x7f0000000100)) openat(r5, &(0x7f0000000180)='./bus\x00', 0x4080, 0x18) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10) socket$tipc(0x1e, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700) write$cgroup_int(r6, &(0x7f0000000200), 0x43400) 2.343650488s ago: executing program 2 (id=5674): syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x60000, 0x0, 0x1, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x5, 0x2}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) faccessat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0\x00', 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r5}, &(0x7f0000000a00), &(0x7f0000000a40)=r4}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r5}, &(0x7f0000000880), &(0x7f00000008c0)=r4}, 0x60) 2.167742212s ago: executing program 3 (id=5675): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000092ba271a359d2783000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000020000,user_id', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) umount2(&(0x7f0000000000)='./file0\x00', 0x2) 2.115746587s ago: executing program 3 (id=5676): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r2 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r2, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, 0x0, 0x0) syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d13"], 0x0) recvmsg(r2, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r3, &(0x7f0000001800)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0) 2.058924062s ago: executing program 2 (id=5677): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10) faccessat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x4, 0x300) 2.054990152s ago: executing program 2 (id=5678): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x0, 0x8, 0x8, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(0x0, &(0x7f00000003c0)='./file0\x00', 0x3b00050, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) 2.042161143s ago: executing program 3 (id=5679): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$ext4(0x0, &(0x7f00000003c0)='./file0\x00', 0x3b00050, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r3 = dup(r2) write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r3, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298) write$FUSE_DIRENTPLUS(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="b0"], 0xb0) write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3]) mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 1.994256437s ago: executing program 2 (id=5680): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb0e3a939e13ee5efb388bb0010018000000000000002c0000002c00000007000000020000000000000203000000010000000000000e03000000010000000b0000000000000e0100000001000000001761002e30005cdce3224980261ad36df2ee04099485525a4eb8a5c3ceb1460f8985a6ec044fe1d7fce91c2b132b18dda63ccd9d5b578a131a9d00c69ac1d2ec2d5e1a4ee7ea0e99ea5206a9259c7fbe7ef9496eb9c7cb3918c0ab76da4b0b27a4fc13b5f50555cd56514190f7653721635111bf937106c7d2a515719d6e7c4535c04dcf16f30e0164db1bfb01ab05b2f889cf8802c8e4bfcd145cfe7cb23dcb9babf497ecf423f1a0c66b6061a7c201423e7e11fbc78cef4c661d186e673e9d469ca37c8be3f7a0e44269b8d432e57f5f1653628d5149e3055af59f3cb4a54800"/315], &(0x7f0000000200)=""/137, 0x4b, 0x89, 0x0, 0x6}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f00000003c0)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='xen_mc_flush_reason\x00', r2}, 0x10) r3 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) socket$inet_icmp_raw(0x2, 0x3, 0x1) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) syz_mount_image$ext4(0x0, &(0x7f00000003c0)='./file0\x00', 0x3b00050, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r6 = dup(r5) write$FUSE_BMAP(r6, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r6, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r6]) mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) 1.95856766s ago: executing program 3 (id=5681): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r3}, &(0x7f0000000a00), &(0x7f0000000a40)=r2}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r3}, &(0x7f0000000880), &(0x7f00000008c0)=r2}, 0x60) (fail_nth: 1) 1.910074104s ago: executing program 2 (id=5682): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) connect$inet6(0xffffffffffffffff, &(0x7f0000000340)={0xa, 0x4e23, 0x4, @mcast2, 0x8b}, 0x1c) syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a7, &(0x7f0000000500)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000), 0xfea7) 1.626712707s ago: executing program 3 (id=5683): bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000080), 0x8) socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r5) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r6 = inotify_init1(0x0) syz_open_procfs(r0, &(0x7f0000000340)='net/protocols\x00') fcntl$setown(r6, 0x8, 0xffffffffffffffff) fcntl$getownex(r6, 0x10, &(0x7f0000000140)={0x0, 0x0}) r8 = syz_open_procfs(r7, &(0x7f0000000600)='fd/4\x00') ioctl$SIOCGETSGCNT(r5, 0x89e1, &(0x7f0000000040)={@remote, @remote}) write$P9_RXATTRCREATE(r8, &(0x7f0000000300)={0x7, 0x21, 0x1}, 0x7) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r8, 0x40086610, &(0x7f0000000180)={@desc={0x1, 0x2000000, @desc3}}) 1.626028557s ago: executing program 4 (id=5684): bind$unix(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x0, 0x20000008b}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x2, 0xc}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x578410eb) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000380)=[r3, r1, r0], 0x3) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000200)='tlb_flush\x00', r4}, 0x10) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000200)='tlb_flush\x00', r5}, 0x10) r6 = syz_open_dev$vcsn(&(0x7f00000002c0), 0xaa, 0x70d200) setsockopt$inet_tcp_TCP_CONGESTION(r6, 0x6, 0xd, &(0x7f0000000300)='dctcp-reno\x00', 0xb) r7 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') writev(r7, &(0x7f0000000480)=[{&(0x7f0000000080)='4', 0x1}], 0x1) (fail_nth: 1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000000340)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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") quotactl$Q_GETINFO(0xffffffff80000501, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0x80, {0x0, 0x4}}, "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", "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"}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x3) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000180)="660f388084000072baf80c66b860b4498c66efbafc0c66b80e00000066ef64f30fc7b000100f850100f30fc7b1030066b9800000c00f326635000400000f30d2bc0a000f23c80f21f86635040040000f23f8b8f4008ee0", 0x57}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket$packet(0x11, 0x0, 0x300) socket$unix(0x1, 0x5, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) syz_usb_connect(0x0, 0x24, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000cfc5b610560400f07ff3010203010902120001000000"], 0x0) 1.554646143s ago: executing program 1 (id=5685): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x4e, &(0x7f0000000040)=0x5) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0x0, &(0x7f0000000180)="4915c082e4035fcc4aefced5f391cd4f58d4b15fb8beb0c5902a553d6c2c439291d33c508919bb4dbdeba0e0a17579ee9f98abbe71b6fb0fd39dfddefbc235cbabac61b6e1cac739b36594987d9ed87ab4cf8a176ea510be13d6f662e81d95f8d621c3233dacbcf43278820e6ef732ba662d5d9696e7672db9784e711b8eac3dc4db3f33701b776ee0", 0x89, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000240)="929e08a993f0b6f73ecfd07e734f8cfff84819f7495409cc5a1d09348adff1b1050f724ba2dea1e10c180bd7feb58805f3891f50277845469bf927421c57ab3e6dabd74439533a5ba28ab5d7db5ac3280cd1ed94eff145a4809eb286942640d4596c32b54c125e34cf1cf2ae3d") 0s ago: executing program 1 (id=5686): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000092ba271a359d2783000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000020000,user_id', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) umount2(&(0x7f0000000000)='./file0\x00', 0x2) kernel console output (not intermixed with test programs): [ 1486.037643][T24557] RSP: 002b:00007f32dcbbe048 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1486.045887][T24557] RAX: ffffffffffffffda RBX: 00007f32de0ccf80 RCX: 00007f32ddf3e9f9 [ 1486.053699][T24557] RDX: 0000000000000001 RSI: 00000000200002c0 RDI: 0000000000000003 [ 1486.061512][T24557] RBP: 00007f32dcbbe0a0 R08: 0000000000000000 R09: 0000000000000000 [ 1486.069321][T24557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1486.077132][T24557] R13: 000000000000000b R14: 00007f32de0ccf80 R15: 00007ffc8ac4f1a8 [ 1486.085035][T24557] [ 1486.125391][T24562] loop4: detected capacity change from 0 to 1024 [ 1486.196777][T24562] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1486.258660][ T312] usb 1-1: 0:2 : does not exist [ 1486.448454][T20644] usb 3-1: new high-speed USB device number 31 using dummy_hcd [ 1486.555769][T20643] usb 4-1: 0:2 : does not exist [ 1486.719984][T24574] incfs_lookup_dentry err:-5 [ 1486.724470][T24574] incfs: Can't find or create .index dir in ./file0 [ 1486.731360][T24574] incfs: mount failed -5 [ 1486.845667][T20644] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 1486.855272][T20644] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 1486.865067][T20644] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1487.102223][T20644] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 1487.175460][T24583] incfs: Can't find or create .index dir in ./file0 [ 1487.182079][T24583] incfs: mount failed -14 [ 1487.187675][T24580] loop1: detected capacity change from 0 to 40427 [ 1487.216595][T24585] loop4: detected capacity change from 0 to 512 [ 1487.236673][T24585] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 1487.248377][T24585] EXT4-fs (loop4): invalid journal inode [ 1487.249861][T24580] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1487.253898][T24585] EXT4-fs (loop4): can't get journal size [ 1487.265687][T20644] usb 3-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 1487.276144][T24585] EXT4-fs (loop4): 1 truncate cleaned up [ 1487.277675][T20644] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1487.281655][T24585] EXT4-fs (loop4): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1487.308457][T20644] usb 3-1: Product: syz [ 1487.312576][T20644] usb 3-1: Manufacturer: syz [ 1487.312598][T24580] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1487.317525][T20644] usb 3-1: SerialNumber: syz [ 1487.338793][T24580] attempt to access beyond end of device [ 1487.338793][T24580] loop1: rw=0, want=45072, limit=40427 [ 1487.350524][T20644] usb 3-1: config 0 descriptor?? [ 1487.396161][T20644] ums-isd200 3-1:0.0: USB Mass Storage device detected [ 1487.600870][T24560] UDC core: couldn't find an available UDC or it's busy: -16 [ 1487.608767][T24560] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 1487.655987][T20644] scsi host1: usb-storage 3-1:0.0 [ 1487.665751][T20644] usb 3-1: USB disconnect, device number 31 [ 1487.850814][T20643] usb 1-1: USB disconnect, device number 125 [ 1487.929069][T24599] netlink: 112 bytes leftover after parsing attributes in process `syz.0.5307'. [ 1488.029493][T24601] loop1: detected capacity change from 0 to 2048 [ 1488.090466][T24601] Alternate GPT is invalid, using primary GPT. [ 1488.096656][T24601] loop1: p2 p3 p7 [ 1488.138603][T20643] usb 4-1: USB disconnect, device number 12 [ 1488.168049][T24605] loop3: detected capacity change from 0 to 512 [ 1488.204235][T24608] loop2: detected capacity change from 0 to 512 [ 1488.256606][T24605] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 1488.269170][T24608] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 1488.272551][ T314] udevd[314]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 1488.277478][T24605] EXT4-fs (loop3): invalid journal inode [ 1488.288843][T24611] syz.1.5310[24611] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1488.292149][T24611] syz.1.5310[24611] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1488.293990][T23613] udevd[23613]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 1488.324713][T24605] EXT4-fs (loop3): can't get journal size [ 1488.325839][ T324] udevd[324]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory [ 1488.354852][T24608] EXT4-fs (loop2): invalid journal inode [ 1488.362033][T24608] EXT4-fs (loop2): can't get journal size [ 1488.363846][T24605] EXT4-fs (loop3): 1 truncate cleaned up [ 1488.370116][T24608] EXT4-fs (loop2): 1 truncate cleaned up [ 1488.379673][T24608] EXT4-fs (loop2): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1488.381917][T24605] EXT4-fs (loop3): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1488.485867][T24621] netlink: 112 bytes leftover after parsing attributes in process `syz.1.5315'. [ 1489.560307][T24637] loop2: detected capacity change from 0 to 512 [ 1489.615777][T24643] loop0: detected capacity change from 0 to 1024 [ 1489.626578][T24637] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 1489.635108][T24637] EXT4-fs (loop2): invalid journal inode [ 1489.640616][T24637] EXT4-fs (loop2): can't get journal size [ 1489.647257][T24637] EXT4-fs (loop2): 1 truncate cleaned up [ 1489.652696][T24637] EXT4-fs (loop2): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1490.550216][T24643] EXT4-fs (loop0): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,noblock_validity,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,,errors=continue. Quota mode: writeback. [ 1490.573679][ T26] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 1490.681725][T24659] syz.0.5325[24659] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1490.681803][T24659] syz.0.5325[24659] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1490.720958][T24661] FAULT_INJECTION: forcing a failure. [ 1490.720958][T24661] name failslab, interval 1, probability 0, space 0, times 0 [ 1490.735569][T20643] usb 2-1: new high-speed USB device number 56 using dummy_hcd [ 1490.747801][T24661] CPU: 1 PID: 24661 Comm: syz.0.5327 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1490.763145][T24661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1490.773035][T24661] Call Trace: [ 1490.776159][T24661] [ 1490.778944][T24661] dump_stack_lvl+0x151/0x1b7 [ 1490.783449][T24661] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1490.788916][T24661] ? cap_capable+0x1d2/0x270 [ 1490.793344][T24661] dump_stack+0x15/0x17 [ 1490.797336][T24661] should_fail+0x3c6/0x510 [ 1490.801590][T24661] __should_failslab+0xa4/0xe0 [ 1490.806208][T24661] should_failslab+0x9/0x20 [ 1490.810528][T24661] slab_pre_alloc_hook+0x37/0xd0 [ 1490.815302][T24661] __kmalloc+0x6d/0x270 [ 1490.819296][T24661] ? hci_alloc_dev_priv+0x27/0x1bd0 [ 1490.824328][T24661] hci_alloc_dev_priv+0x27/0x1bd0 [ 1490.829191][T24661] hci_uart_tty_ioctl+0x3c8/0xa10 [ 1490.834049][T24661] ? tty_jobctrl_ioctl+0x268/0xb10 [ 1490.838998][T24661] ? hci_uart_tty_write+0x10/0x10 [ 1490.843857][T24661] tty_ioctl+0x93b/0xc90 [ 1490.847939][T24661] ? tty_get_icount+0xa0/0xa0 [ 1490.852537][T24661] __se_sys_ioctl+0x114/0x190 [ 1490.857050][T24661] __x64_sys_ioctl+0x7b/0x90 [ 1490.861477][T24661] do_syscall_64+0x3d/0xb0 [ 1490.865729][T24661] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1490.871458][T24661] RIP: 0033:0x7f3996eea9f9 [ 1490.875713][T24661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1490.895156][T24661] RSP: 002b:00007f3995b6a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1490.903399][T24661] RAX: ffffffffffffffda RBX: 00007f3997078f80 RCX: 00007f3996eea9f9 [ 1490.911209][T24661] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003 [ 1490.919024][T24661] RBP: 00007f3995b6a0a0 R08: 0000000000000000 R09: 0000000000000000 [ 1490.926832][T24661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1490.934648][T24661] R13: 000000000000000b R14: 00007f3997078f80 R15: 00007fff4ba23bd8 [ 1490.942483][T24661] [ 1490.955842][T24661] Bluetooth: Can't allocate HCI device [ 1490.962783][T24664] loop2: detected capacity change from 0 to 2048 [ 1490.995599][ T26] usb 5-1: Using ep0 maxpacket: 8 [ 1491.008417][T24664] Alternate GPT is invalid, using primary GPT. [ 1491.015016][T24666] loop0: detected capacity change from 0 to 512 [ 1491.021308][T24664] loop2: p2 p3 p7 [ 1491.038352][T24658] loop3: detected capacity change from 0 to 40427 [ 1491.048054][ T100] Alternate GPT is invalid, using primary GPT. [ 1491.054118][ T100] loop2: p2 p3 p7 [ 1491.061671][T24663] 9pnet: Insufficient options for proto=fd [ 1491.068580][T24666] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 1491.078513][T24666] EXT4-fs (loop0): invalid journal inode [ 1491.082314][T24658] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1491.084182][T24666] EXT4-fs (loop0): can't get journal size [ 1491.117834][T24658] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1491.117961][T24666] EXT4-fs (loop0): 1 truncate cleaned up [ 1491.130845][ T26] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1491.140055][ T26] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1491.144290][T23613] udevd[23613]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 1491.155500][ T324] udevd[324]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory [ 1491.162366][T24666] EXT4-fs (loop0): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1491.176383][ T314] udevd[314]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 1491.190488][ T26] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1491.225606][T20643] usb 2-1: Using ep0 maxpacket: 8 [ 1491.425997][ T26] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1491.447586][ T26] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1491.479926][ T26] usb 5-1: Product: syz [ 1491.484055][ T26] usb 5-1: Manufacturer: syz [ 1491.490331][ T26] usb 5-1: SerialNumber: syz [ 1491.522871][T20643] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1491.531515][T20643] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1491.533957][T24680] loop3: detected capacity change from 0 to 256 [ 1491.541560][T20643] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1491.695682][T20643] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1491.705780][T20643] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1491.709140][T24680] incfs: Options parsing error. -22 [ 1491.713657][T20643] usb 2-1: Product: syz [ 1491.719072][T24680] incfs: mount failed -22 [ 1491.722717][T20643] usb 2-1: Manufacturer: syz [ 1491.731266][T20643] usb 2-1: SerialNumber: syz [ 1491.918807][T24684] loop0: detected capacity change from 0 to 1024 [ 1491.987920][T24684] EXT4-fs (loop0): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1492.074298][T24690] loop2: detected capacity change from 0 to 256 [ 1492.286110][ T26] usb 5-1: 0:2 : does not exist [ 1493.708864][T24711] loop2: detected capacity change from 0 to 512 [ 1493.761335][T24711] EXT4-fs (loop2): corrupt root inode, run e2fsck [ 1493.769745][T24711] EXT4-fs (loop2): mount failed [ 1493.810053][T24716] incfs: Can't find or create .index dir in ./file0 [ 1493.821710][T24716] incfs: mount failed -14 [ 1493.859633][T20643] usb 2-1: 0:2 : does not exist [ 1493.959806][T24719] incfs_lookup_dentry err:-5 [ 1493.964790][T24719] incfs: Can't find or create .index dir in ./file0 [ 1493.967306][T24713] loop3: detected capacity change from 0 to 40427 [ 1493.971930][T24719] incfs: mount failed -5 [ 1494.059937][T24721] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1494.635021][T20642] usb 5-1: USB disconnect, device number 23 [ 1494.641357][T20643] usb 2-1: USB disconnect, device number 56 [ 1494.666124][T24727] loop2: detected capacity change from 0 to 1024 [ 1494.695973][T24713] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1494.698069][T24735] incfs_lookup_dentry err:-14 [ 1494.710278][T24735] incfs: Can't find or create .incomplete dir in ./file0 [ 1494.711269][T24739] loop4: detected capacity change from 0 to 128 [ 1494.724624][T24735] incfs: mount failed -14 [ 1494.748726][T24727] EXT4-fs (loop2): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1494.776944][T24739] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1494.788649][T24713] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1494.821621][T24747] loop0: detected capacity change from 0 to 1024 [ 1494.837273][T24739] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none. [ 1494.867467][T24739] ext4 filesystem being mounted at /255/mnt supports timestamps until 2038 (0x7fffffff) [ 1494.885398][ T30] audit: type=1400 audit(1722869149.841:20521): avc: denied { mount } for pid=24738 comm="syz.4.5348" name="/" dev="configfs" ino=13921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 1494.908949][ T30] audit: type=1400 audit(1722869149.841:20522): avc: denied { setattr } for pid=24738 comm="syz.4.5348" name="/" dev="configfs" ino=13921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 1495.452868][T24751] overlayfs: upper fs does not support tmpfile. [ 1495.748566][ T30] audit: type=1400 audit(1722869150.701:20523): avc: denied { unmount } for pid=20520 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 1495.772327][T24747] EXT4-fs (loop0): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1495.808957][T24760] incfs: Can't find or create .index dir in ./file0 [ 1495.815475][T24760] incfs: mount failed -14 [ 1495.839392][T24763] loop4: detected capacity change from 0 to 256 [ 1495.903721][T24766] loop2: detected capacity change from 0 to 512 [ 1496.468221][T24766] EXT4-fs (loop2): corrupt root inode, run e2fsck [ 1496.475066][T24766] EXT4-fs (loop2): mount failed [ 1496.705598][ T415] usb 2-1: new high-speed USB device number 57 using dummy_hcd [ 1496.829727][T24784] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1497.008488][T24789] incfs_lookup_dentry err:-14 [ 1497.013094][T24789] incfs: Can't find or create .incomplete dir in ./file0 [ 1497.020205][T24789] incfs: mount failed -14 [ 1497.045609][T20642] usb 1-1: new high-speed USB device number 126 using dummy_hcd [ 1497.053159][T20644] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 1497.065947][T24791] incfs_lookup_dentry err:-5 [ 1497.070368][T24791] incfs: Can't find or create .index dir in ./file0 [ 1497.077070][T24791] incfs: mount failed -5 [ 1497.108283][T24795] loop2: detected capacity change from 0 to 128 [ 1497.155654][ T415] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1497.168084][ T415] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1497.275781][ T415] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00 [ 1497.284757][ T415] usb 2-1: New USB device strings: Mfr=0, Product=9, SerialNumber=0 [ 1497.292531][ T415] usb 2-1: Product: syz [ 1497.297301][ T415] usb 2-1: config 0 descriptor?? [ 1497.325624][T20644] usb 5-1: Using ep0 maxpacket: 8 [ 1497.330545][T20642] usb 1-1: Using ep0 maxpacket: 8 [ 1497.345645][ T513] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 1497.445699][T20642] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1497.454279][T20644] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1497.462739][T20644] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1497.472891][T20642] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1497.482899][T20644] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1497.491596][T20642] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1497.655678][T20644] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1497.664599][T20642] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1497.673420][T20644] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1497.681407][T20642] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1497.689246][T20644] usb 5-1: Product: syz [ 1497.693197][T20644] usb 5-1: Manufacturer: syz [ 1497.697650][T20642] usb 1-1: Product: syz [ 1497.701614][T20642] usb 1-1: Manufacturer: syz [ 1497.706071][T20644] usb 5-1: SerialNumber: syz [ 1497.710736][T20642] usb 1-1: SerialNumber: syz [ 1497.766421][ T415] konepure 0003:1E7D:2DB4.0068: item fetching failed at offset 10/11 [ 1497.774411][ T513] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1497.785248][ T415] konepure 0003:1E7D:2DB4.0068: parse failed [ 1497.791089][ T415] konepure: probe of 0003:1E7D:2DB4.0068 failed with error -22 [ 1497.798466][ T513] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1497.808002][ T513] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 1497.817730][ T513] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1497.826096][ T513] usb 4-1: config 0 descriptor?? [ 1498.297868][T24793] loop3: detected capacity change from 0 to 1024 [ 1498.336753][T24793] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1498.343477][T24793] EXT4-fs (loop3): Ignoring removed orlov option [ 1498.351645][T24793] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 1498.415690][T20642] usb 1-1: 0:2 : does not exist [ 1498.457716][ T513] hid-steam 0003:28DE:1142.0069: : USB HID v0.40 Device [HID 28de:1142] on usb-dummy_hcd.3-1/input0 [ 1498.471483][ T513] hid-steam 0003:28DE:1142.006A: hidraw0: USB HID v0.40 Device [HID 28de:1142] on usb-dummy_hcd.3-1/input0 [ 1498.535692][T20644] usb 5-1: 0:2 : does not exist [ 1498.547775][ T513] hid-steam 0003:28DE:1142.0069: Steam wireless receiver connected [ 1498.671384][T20644] usb 4-1: USB disconnect, device number 13 [ 1498.683720][T20644] hid-steam 0003:28DE:1142.0069: Steam wireless receiver disconnected [ 1498.931528][T24808] loop2: detected capacity change from 0 to 1024 [ 1498.988981][T20643] usb 2-1: USB disconnect, device number 57 [ 1499.023441][T24808] EXT4-fs (loop2): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1499.415578][T20643] usb 2-1: new high-speed USB device number 58 using dummy_hcd [ 1499.675615][T20640] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 1499.775664][T20643] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1499.786576][T20643] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 1499.795499][T20643] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1499.804360][T20643] usb 2-1: config 0 descriptor?? [ 1499.854118][ T30] audit: type=1326 audit(1722869154.811:20524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.2.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1499.877789][ T30] audit: type=1326 audit(1722869154.811:20525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.2.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1499.901391][ T30] audit: type=1326 audit(1722869154.811:20526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.2.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1499.955899][ T513] usb 1-1: USB disconnect, device number 126 [ 1499.963315][ T30] audit: type=1326 audit(1722869154.811:20527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.2.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1499.988124][ T30] audit: type=1326 audit(1722869154.811:20528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24819 comm="syz.2.5368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1500.010079][T24826] loop0: detected capacity change from 0 to 512 [ 1500.014912][T24828] loop2: detected capacity change from 0 to 512 [ 1500.024606][T24826] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 1500.033107][T24826] EXT4-fs (loop0): invalid journal inode [ 1500.038784][T24826] EXT4-fs (loop0): can't get journal size [ 1500.046317][T24826] EXT4-fs (loop0): 1 truncate cleaned up [ 1500.046578][T20640] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 1500.051775][T24826] EXT4-fs (loop0): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1500.085438][T20640] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 1500.095228][T20640] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1500.105831][T20640] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 1500.109109][T24828] EXT4-fs (loop2): corrupt root inode, run e2fsck [ 1500.121979][T24828] EXT4-fs (loop2): mount failed [ 1500.453606][T24836] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1500.538691][ T513] usb 5-1: USB disconnect, device number 24 [ 1500.626563][T20643] usbhid 2-1:0.0: can't add hid device: -71 [ 1500.632385][T20643] usbhid: probe of 2-1:0.0 failed with error -71 [ 1500.645634][T20640] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 1500.664740][T20640] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1500.684892][T20643] usb 2-1: USB disconnect, device number 58 [ 1500.692531][T20640] usb 4-1: Product: syz [ 1500.697752][T20640] usb 4-1: Manufacturer: syz [ 1500.704652][T20640] usb 4-1: SerialNumber: syz [ 1500.708803][T24842] loop4: detected capacity change from 0 to 512 [ 1500.709787][T20640] usb 4-1: config 0 descriptor?? [ 1500.750345][T24842] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 1500.756052][T20640] ums-isd200 4-1:0.0: USB Mass Storage device detected [ 1500.765889][T24842] EXT4-fs (loop4): invalid journal inode [ 1500.771444][T24842] EXT4-fs (loop4): can't get journal size [ 1500.785350][ T323] Bluetooth: hci0: Frame reassembly failed (-84) [ 1500.795356][T24842] EXT4-fs (loop4): 1 truncate cleaned up [ 1500.801020][T24842] EXT4-fs (loop4): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1500.910420][T24851] incfs_lookup_dentry err:-5 [ 1500.916031][T24851] incfs: Can't find or create .index dir in ./file0 [ 1500.929481][T24851] incfs: mount failed -5 [ 1500.959150][T24817] UDC core: couldn't find an available UDC or it's busy: -16 [ 1500.969574][T24817] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 1500.977843][T24853] loop2: detected capacity change from 0 to 256 [ 1501.031073][T24855] loop1: detected capacity change from 0 to 512 [ 1501.061078][T20640] scsi host1: usb-storage 4-1:0.0 [ 1501.066675][T24853] FAT-fs (loop2): Unrecognized mount option "" or missing value [ 1501.079096][T20640] usb 4-1: USB disconnect, device number 14 [ 1501.106324][T24855] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 1501.119462][T24855] EXT4-fs (loop1): invalid journal inode [ 1501.134707][T24855] EXT4-fs (loop1): can't get journal size [ 1501.159093][T24855] EXT4-fs (loop1): 1 truncate cleaned up [ 1501.165696][T24855] EXT4-fs (loop1): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1501.513932][ T30] audit: type=1400 audit(1722869156.471:20529): avc: denied { search } for pid=24852 comm="syz.2.5377" name="/" dev="configfs" ino=13921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 1501.543434][ T30] audit: type=1326 audit(1722869156.501:20530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24861 comm="syz.2.5379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1501.569062][ T30] audit: type=1326 audit(1722869156.531:20531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24861 comm="syz.2.5379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1501.599058][ T30] audit: type=1326 audit(1722869156.561:20532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24861 comm="syz.2.5379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1501.622656][ T30] audit: type=1326 audit(1722869156.561:20533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24861 comm="syz.2.5379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1501.636749][T24866] loop2: detected capacity change from 0 to 256 [ 1501.666655][ T30] audit: type=1326 audit(1722869156.561:20534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24861 comm="syz.2.5379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f296366c9f9 code=0x7ffc0000 [ 1501.705926][T24869] loop3: detected capacity change from 0 to 256 [ 1501.823270][T24879] loop2: detected capacity change from 0 to 2048 [ 1501.885873][T24881] FAULT_INJECTION: forcing a failure. [ 1501.885873][T24881] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1501.907445][T24881] CPU: 1 PID: 24881 Comm: syz.4.5386 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1501.918640][T24881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1501.928530][T24881] Call Trace: [ 1501.931656][T24881] [ 1501.934434][T24881] dump_stack_lvl+0x151/0x1b7 [ 1501.938947][T24881] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1501.944414][T24881] ? kmem_cache_free+0x116/0x2e0 [ 1501.949188][T24881] dump_stack+0x15/0x17 [ 1501.953182][T24881] should_fail+0x3c6/0x510 [ 1501.957440][T24881] should_fail_usercopy+0x1a/0x20 [ 1501.962302][T24881] _copy_from_user+0x20/0xd0 [ 1501.966721][T24881] __copy_msghdr_from_user+0xaf/0x7c0 [ 1501.971930][T24881] ? __ia32_sys_shutdown+0x70/0x70 [ 1501.976877][T24881] ___sys_sendmsg+0x166/0x2e0 [ 1501.981390][T24881] ? __sys_sendmsg+0x260/0x260 [ 1501.985993][T24881] ? __fdget+0x1bc/0x240 [ 1501.990070][T24881] __se_sys_sendmsg+0x19a/0x260 [ 1501.994755][T24881] ? __x64_sys_sendmsg+0x90/0x90 [ 1501.999528][T24881] ? ksys_write+0x260/0x2c0 [ 1502.003869][T24881] ? debug_smp_processor_id+0x17/0x20 [ 1502.009075][T24881] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1502.014978][T24881] __x64_sys_sendmsg+0x7b/0x90 [ 1502.019580][T24881] do_syscall_64+0x3d/0xb0 [ 1502.023832][T24881] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1502.029562][T24881] RIP: 0033:0x7f32ddf3e9f9 [ 1502.033813][T24881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1502.053255][T24881] RSP: 002b:00007f32dcb9d048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1502.061500][T24881] RAX: ffffffffffffffda RBX: 00007f32de0cd058 RCX: 00007f32ddf3e9f9 [ 1502.069321][T24881] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000008 [ 1502.077128][T24881] RBP: 00007f32dcb9d0a0 R08: 0000000000000000 R09: 0000000000000000 [ 1502.084937][T24881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1502.092747][T24881] R13: 000000000000006e R14: 00007f32de0cd058 R15: 00007ffc8ac4f1a8 [ 1502.100567][T24881] [ 1502.541878][T24879] Alternate GPT is invalid, using primary GPT. [ 1502.547955][T24879] loop2: p2 p3 p7 [ 1502.648385][T24893] incfs_lookup_dentry err:-14 [ 1502.657700][T24893] incfs: Can't find or create .incomplete dir in ./file0 [ 1502.664865][T24893] incfs: mount failed -14 [ 1502.705801][T24891] loop2: detected capacity change from 0 to 256 [ 1502.739150][T23613] udevd[23613]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 1502.758885][ T314] udevd[314]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 1502.876851][ T324] udevd[324]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory [ 1502.923939][T20640] Bluetooth: hci0: command 0x1003 tx timeout [ 1502.929838][ T724] Bluetooth: hci0: sending frame failed (-49) [ 1502.943420][T24900] loop4: detected capacity change from 0 to 256 [ 1503.003546][T24904] loop2: detected capacity change from 0 to 256 [ 1503.046452][ T30] audit: type=1326 audit(1722869158.011:20535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24907 comm="syz.3.5392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3387c579f9 code=0x7ffc0000 [ 1503.147566][T24919] loop2: detected capacity change from 0 to 512 [ 1503.187429][T24919] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 1503.196346][T24919] EXT4-fs (loop2): invalid journal inode [ 1503.201918][T24919] EXT4-fs (loop2): can't get journal size [ 1503.216681][T24919] EXT4-fs (loop2): 1 truncate cleaned up [ 1503.222337][T24919] EXT4-fs (loop2): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1503.249000][T24915] loop4: detected capacity change from 0 to 40427 [ 1503.329061][T24915] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1503.370861][T24915] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1503.480810][T24930] loop1: detected capacity change from 0 to 512 [ 1503.547164][T24930] EXT4-fs (loop1): corrupt root inode, run e2fsck [ 1503.553536][T24930] EXT4-fs (loop1): mount failed [ 1503.612047][T24932] loop4: detected capacity change from 0 to 40427 [ 1503.692981][T24932] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1503.716355][T24932] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1503.729509][T24932] attempt to access beyond end of device [ 1503.729509][T24932] loop4: rw=0, want=45072, limit=40427 [ 1503.791153][T24939] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1503.971311][T24942] incfs: Can't find or create .index dir in ./file0 [ 1503.977815][T24942] incfs: mount failed -14 [ 1504.084558][T24952] loop3: detected capacity change from 0 to 256 [ 1504.173161][T24948] loop2: detected capacity change from 0 to 40427 [ 1504.199618][T24948] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1504.225150][T24948] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1504.294752][T24965] loop2: detected capacity change from 0 to 128 [ 1504.375687][T24969] loop1: detected capacity change from 0 to 512 [ 1504.427136][T24969] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1504.584410][T24969] EXT4-fs (loop1): 1 truncate cleaned up [ 1504.589989][T24969] EXT4-fs (loop1): mounted filesystem without journal. Opts: nogrpid,resuid=0x000000000000ee01,resgid=0x0000000000000000,data=journal,nombcache,block_validity,,errors=continue. Quota mode: none. [ 1504.641467][T20643] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 1504.641778][T22791] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000074f) [ 1504.655439][T24976] loop4: detected capacity change from 0 to 512 [ 1504.657123][T22791] FAT-fs (loop2): Filesystem has been set read-only [ 1504.669233][T22791] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000074f) [ 1504.725967][T24976] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 1504.734104][T24976] EXT4-fs (loop4): invalid journal inode [ 1504.739928][T24976] EXT4-fs (loop4): can't get journal size [ 1504.751171][T24976] EXT4-fs (loop4): 1 truncate cleaned up [ 1504.756715][T24976] EXT4-fs (loop4): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1504.841474][T24979] bridge0: port 1(bridge_slave_0) entered blocking state [ 1504.848405][T24979] bridge0: port 1(bridge_slave_0) entered disabled state [ 1504.855471][T24979] device bridge_slave_0 entered promiscuous mode [ 1504.864099][T24979] bridge0: port 2(bridge_slave_1) entered blocking state [ 1504.870966][T24979] bridge0: port 2(bridge_slave_1) entered disabled state [ 1504.878126][T24979] device bridge_slave_1 entered promiscuous mode [ 1504.925608][T20644] usb 2-1: new high-speed USB device number 59 using dummy_hcd [ 1504.962846][T24979] bridge0: port 2(bridge_slave_1) entered blocking state [ 1504.969751][T24979] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1504.976867][T24979] bridge0: port 1(bridge_slave_0) entered blocking state [ 1504.983612][T24979] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1504.995643][T20640] Bluetooth: hci0: command 0x1001 tx timeout [ 1505.001508][ T724] Bluetooth: hci0: sending frame failed (-49) [ 1505.015653][T20643] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1505.016846][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1505.035518][ T26] bridge0: port 1(bridge_slave_0) entered disabled state [ 1505.035702][T20643] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1505.052013][T20643] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1505.052099][ T26] bridge0: port 2(bridge_slave_1) entered disabled state [ 1505.064587][T20643] usb 4-1: New USB device found, idVendor=5543, idProduct=0003, bcdDevice= 0.00 [ 1505.080451][T20643] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1505.092123][T20643] usb 4-1: config 0 descriptor?? [ 1505.098841][T17983] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1505.107224][T17983] bridge0: port 1(bridge_slave_0) entered blocking state [ 1505.114059][T17983] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1505.121557][T17983] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1505.129558][T17983] bridge0: port 2(bridge_slave_1) entered blocking state [ 1505.136426][T17983] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1505.156857][T20641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1505.165012][T20641] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1505.173494][T20641] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1505.186133][T17983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1505.193927][T17983] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1505.201213][T17983] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1505.205603][T20644] usb 2-1: Using ep0 maxpacket: 16 [ 1505.213952][T24979] device veth0_vlan entered promiscuous mode [ 1505.220591][ T399] device bridge_slave_1 left promiscuous mode [ 1505.226596][ T399] bridge0: port 2(bridge_slave_1) entered disabled state [ 1505.233848][ T399] device bridge_slave_0 left promiscuous mode [ 1505.240201][ T399] bridge0: port 1(bridge_slave_0) entered disabled state [ 1505.248021][ T399] device veth1_macvtap left promiscuous mode [ 1505.253848][ T399] device veth0_vlan left promiscuous mode [ 1505.332359][T24979] device veth1_macvtap entered promiscuous mode [ 1505.341173][T20642] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1505.349064][T20644] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1505.360128][T20644] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1505.373085][T17983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1505.373133][T20644] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 1505.385728][T17983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1505.389887][T20644] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1505.406998][T20644] usb 2-1: config 0 descriptor?? [ 1505.426369][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 1505.426385][ T30] audit: type=1326 audit(1722869160.391:20541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24986 comm="syz.2.5417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5a9ac39f9 code=0x7ffc0000 [ 1505.455846][ T30] audit: type=1326 audit(1722869160.391:20542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24986 comm="syz.2.5417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5a9ac39f9 code=0x7ffc0000 [ 1505.487972][T24989] loop2: detected capacity change from 0 to 256 [ 1505.499480][ T30] audit: type=1326 audit(1722869160.391:20543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24986 comm="syz.2.5417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7fa5a9ac39f9 code=0x7ffc0000 [ 1505.523590][ T30] audit: type=1326 audit(1722869160.391:20544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24986 comm="syz.2.5417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5a9ac39f9 code=0x7ffc0000 [ 1505.548206][ T30] audit: type=1326 audit(1722869160.391:20545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24986 comm="syz.2.5417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5a9ac39f9 code=0x7ffc0000 [ 1505.635631][T20643] usbhid 4-1:0.0: can't add hid device: -71 [ 1505.641409][T20643] usbhid: probe of 4-1:0.0 failed with error -71 [ 1505.662930][T20643] usb 4-1: USB disconnect, device number 15 [ 1505.765054][T24996] loop4: detected capacity change from 0 to 40427 [ 1505.838874][T24998] FAULT_INJECTION: forcing a failure. [ 1505.838874][T24998] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1505.851772][T24998] CPU: 1 PID: 24998 Comm: syz.2.5422 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1505.862908][T24998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1505.872798][T24998] Call Trace: [ 1505.875917][T24998] [ 1505.878697][T24998] dump_stack_lvl+0x151/0x1b7 [ 1505.883210][T24998] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1505.888678][T24998] dump_stack+0x15/0x17 [ 1505.892669][T24998] should_fail+0x3c6/0x510 [ 1505.896923][T24998] should_fail_usercopy+0x1a/0x20 [ 1505.901782][T24998] _copy_from_user+0x20/0xd0 [ 1505.906210][T24998] __sys_bpf+0x1e9/0x760 [ 1505.910287][T24998] ? fput_many+0x160/0x1b0 [ 1505.914540][T24998] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 1505.919749][T24998] ? debug_smp_processor_id+0x17/0x20 [ 1505.924956][T24998] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1505.930859][T24998] __x64_sys_bpf+0x7c/0x90 [ 1505.935111][T24998] do_syscall_64+0x3d/0xb0 [ 1505.939363][T24998] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1505.945091][T24998] RIP: 0033:0x7fa5a9ac39f9 [ 1505.949349][T24998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1505.968786][T24998] RSP: 002b:00007fa5a8743048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1505.977033][T24998] RAX: ffffffffffffffda RBX: 00007fa5a9c51f80 RCX: 00007fa5a9ac39f9 [ 1505.984844][T24998] RDX: 0000000000000020 RSI: 00000000200000c0 RDI: 0000000000000012 [ 1505.992656][T24998] RBP: 00007fa5a87430a0 R08: 0000000000000000 R09: 0000000000000000 [ 1506.000474][T24998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1506.008278][T24998] R13: 000000000000000b R14: 00007fa5a9c51f80 R15: 00007ffde03fe6b8 [ 1506.016094][T24998] [ 1506.029720][T20644] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.006B/input/input28 [ 1506.058401][T24996] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1506.080237][T24996] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1506.117586][T20644] microsoft 0003:045E:07DA.006B: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 1506.161948][T25006] loop4: detected capacity change from 0 to 512 [ 1506.237730][T25006] EXT4-fs (loop4): corrupt root inode, run e2fsck [ 1506.244126][T25006] EXT4-fs (loop4): mount failed [ 1506.359197][T25009] loop3: detected capacity change from 0 to 40427 [ 1506.379643][T25009] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1506.403499][T25009] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1506.414689][T25009] attempt to access beyond end of device [ 1506.414689][T25009] loop3: rw=0, want=45072, limit=40427 [ 1506.440789][T25013] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1506.526430][T25016] loop2: detected capacity change from 0 to 2048 [ 1506.548475][T25016] Alternate GPT is invalid, using primary GPT. [ 1506.554584][T25016] loop2: p2 p3 p7 [ 1506.617225][T25016] 9pnet: Insufficient options for proto=fd [ 1506.619393][ T100] Alternate GPT is invalid, using primary GPT. [ 1506.629398][ T100] loop2: p2 p3 p7 [ 1506.710773][ T314] udevd[314]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 1506.715481][T23613] udevd[23613]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 1506.721740][ T324] udevd[324]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory [ 1507.116361][T25024] loop4: detected capacity change from 0 to 128 [ 1507.287393][T20640] Bluetooth: hci0: command 0x1009 tx timeout [ 1507.489318][ T26] usb 2-1: USB disconnect, device number 59 [ 1507.765663][T20640] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 1507.915612][T20644] usb 3-1: new high-speed USB device number 32 using dummy_hcd [ 1507.935590][ T26] usb 2-1: new high-speed USB device number 60 using dummy_hcd [ 1507.994422][T25033] incfs: Can't find or create .index dir in ./file0 [ 1508.000927][T25033] incfs: mount failed -14 [ 1508.005726][T20640] usb 4-1: Using ep0 maxpacket: 8 [ 1508.041411][T25035] loop4: detected capacity change from 0 to 256 [ 1508.125719][T20640] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1508.134523][T20640] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1508.144524][T20640] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1508.156861][T20644] usb 3-1: Using ep0 maxpacket: 32 [ 1508.195645][ T26] usb 2-1: Using ep0 maxpacket: 8 [ 1508.395640][ T26] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1508.404207][ T26] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1508.405697][T20644] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 1508.414396][ T26] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1508.425164][T20644] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 1508.444730][T20644] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1508.453579][T20644] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1508.461458][T20640] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1508.470478][T20640] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1508.478853][T20644] usb 3-1: config 0 descriptor?? [ 1508.483672][T20640] usb 4-1: Product: syz [ 1508.487622][T20640] usb 4-1: Manufacturer: syz [ 1508.492027][T20640] usb 4-1: SerialNumber: syz [ 1508.496539][T25031] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 1508.516128][T20644] hub 3-1:0.0: USB hub found [ 1508.625678][ T26] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1508.634604][ T26] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1508.642392][ T26] usb 2-1: Product: syz [ 1508.646388][ T26] usb 2-1: Manufacturer: syz [ 1508.650785][ T26] usb 2-1: SerialNumber: syz [ 1508.735683][T20644] hub 3-1:0.0: 2 ports detected [ 1508.936553][T25040] loop4: detected capacity change from 0 to 1024 [ 1509.016736][T25040] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1509.294728][T20640] usb 4-1: 0:2 : does not exist [ 1509.475671][ T26] usb 2-1: 0:2 : does not exist [ 1509.709855][T25031] device pim6reg1 entered promiscuous mode [ 1509.876623][T25051] loop4: detected capacity change from 0 to 256 [ 1510.445719][T20644] hub 3-1:0.0: hub_ext_port_status failed (err = 0) [ 1510.635801][T20644] usb 3-1: reset high-speed USB device number 32 using dummy_hcd [ 1510.735853][T20643] usb 4-1: USB disconnect, device number 16 [ 1510.754914][T25064] loop3: detected capacity change from 0 to 128 [ 1510.813208][T25065] bridge0: port 1(bridge_slave_0) entered blocking state [ 1510.820257][T25065] bridge0: port 1(bridge_slave_0) entered disabled state [ 1510.827779][T25065] device bridge_slave_0 entered promiscuous mode [ 1510.834718][T25065] bridge0: port 2(bridge_slave_1) entered blocking state [ 1510.842286][T25065] bridge0: port 2(bridge_slave_1) entered disabled state [ 1510.849836][T25065] device bridge_slave_1 entered promiscuous mode [ 1510.890396][T25065] bridge0: port 2(bridge_slave_1) entered blocking state [ 1510.897280][T25065] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1510.904368][T25065] bridge0: port 1(bridge_slave_0) entered blocking state [ 1510.911148][T25065] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1510.937209][T20641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1510.944969][T20641] bridge0: port 1(bridge_slave_0) entered disabled state [ 1510.953669][T20641] bridge0: port 2(bridge_slave_1) entered disabled state [ 1510.962837][T25071] FAULT_INJECTION: forcing a failure. [ 1510.962837][T25071] name failslab, interval 1, probability 0, space 0, times 0 [ 1510.975464][T25071] CPU: 1 PID: 25071 Comm: syz.3.5439 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1510.986641][T25071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1510.996537][T25071] Call Trace: [ 1510.999661][T25071] [ 1511.002440][T25071] dump_stack_lvl+0x151/0x1b7 [ 1511.006952][T25071] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1511.012416][T25071] ? do_vfs_ioctl+0xbc1/0x2a80 [ 1511.017016][T25071] dump_stack+0x15/0x17 [ 1511.021008][T25071] should_fail+0x3c6/0x510 [ 1511.025265][T25071] __should_failslab+0xa4/0xe0 [ 1511.029867][T25071] should_failslab+0x9/0x20 [ 1511.034211][T25071] slab_pre_alloc_hook+0x37/0xd0 [ 1511.038980][T25071] kmem_cache_alloc_trace+0x48/0x210 [ 1511.044098][T25071] ? __get_vm_area_node+0x117/0x360 [ 1511.049130][T25071] __get_vm_area_node+0x117/0x360 [ 1511.054006][T25071] __vmalloc_node_range+0xe2/0x8d0 [ 1511.058939][T25071] ? kvm_dev_ioctl+0x164/0x1b20 [ 1511.063623][T25071] ? file_end_write+0x1c0/0x1c0 [ 1511.068309][T25071] ? kvm_dev_ioctl+0x164/0x1b20 [ 1511.072998][T25071] __vmalloc+0x7a/0x90 [ 1511.076906][T25071] ? kvm_dev_ioctl+0x164/0x1b20 [ 1511.081589][T25071] kvm_dev_ioctl+0x164/0x1b20 [ 1511.086101][T25071] ? selinux_file_alloc_security+0x120/0x120 [ 1511.091917][T25071] ? __fget_files+0x31e/0x380 [ 1511.096433][T25071] ? kvm_reboot+0x40/0x40 [ 1511.100599][T25071] ? security_file_ioctl+0x84/0xb0 [ 1511.105546][T25071] ? kvm_reboot+0x40/0x40 [ 1511.109711][T25071] __se_sys_ioctl+0x114/0x190 [ 1511.114225][T25071] __x64_sys_ioctl+0x7b/0x90 [ 1511.118652][T25071] do_syscall_64+0x3d/0xb0 [ 1511.122903][T25071] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1511.128632][T25071] RIP: 0033:0x7f3387c579f9 [ 1511.132888][T25071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1511.152329][T25071] RSP: 002b:00007f3386895048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1511.160571][T25071] RAX: ffffffffffffffda RBX: 00007f3387de6130 RCX: 00007f3387c579f9 [ 1511.168386][T25071] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 000000000000000a [ 1511.176197][T25071] RBP: 00007f33868950a0 R08: 0000000000000000 R09: 0000000000000000 [ 1511.184014][T25071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1511.191825][T25071] R13: 000000000000006e R14: 00007f3387de6130 R15: 00007ffc0370cc98 [ 1511.199640][T25071] [ 1511.204101][T25071] syz.3.5439: vmalloc error: size 44480, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0 [ 1511.220058][T25071] CPU: 1 PID: 25071 Comm: syz.3.5439 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1511.231239][T25071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1511.241177][T25071] Call Trace: [ 1511.244258][T25071] [ 1511.247036][T25071] dump_stack_lvl+0x151/0x1b7 [ 1511.251547][T25071] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1511.257016][T25071] ? pr_cont_kernfs_name+0xf0/0x100 [ 1511.262049][T25071] dump_stack+0x15/0x17 [ 1511.263653][T20641] usb 2-1: USB disconnect, device number 60 [ 1511.266041][T25071] warn_alloc+0x21a/0x390 [ 1511.266064][T25071] ? should_failslab+0x9/0x20 [ 1511.280451][T25071] ? zone_watermark_ok_safe+0x270/0x270 [ 1511.285831][T25071] ? __get_vm_area_node+0x347/0x360 [ 1511.290873][T25071] __vmalloc_node_range+0x2c1/0x8d0 [ 1511.295911][T25071] ? file_end_write+0x1c0/0x1c0 [ 1511.300589][T25071] ? kvm_dev_ioctl+0x164/0x1b20 [ 1511.305272][T25071] __vmalloc+0x7a/0x90 [ 1511.309177][T25071] ? kvm_dev_ioctl+0x164/0x1b20 [ 1511.313867][T25071] kvm_dev_ioctl+0x164/0x1b20 [ 1511.318379][T25071] ? selinux_file_alloc_security+0x120/0x120 [ 1511.324193][T25071] ? __fget_files+0x31e/0x380 [ 1511.328708][T25071] ? kvm_reboot+0x40/0x40 [ 1511.332876][T25071] ? security_file_ioctl+0x84/0xb0 [ 1511.337821][T25071] ? kvm_reboot+0x40/0x40 [ 1511.341987][T25071] __se_sys_ioctl+0x114/0x190 [ 1511.346503][T25071] __x64_sys_ioctl+0x7b/0x90 [ 1511.350929][T25071] do_syscall_64+0x3d/0xb0 [ 1511.355182][T25071] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1511.360915][T25071] RIP: 0033:0x7f3387c579f9 [ 1511.365161][T25071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1511.384603][T25071] RSP: 002b:00007f3386895048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1511.392849][T25071] RAX: ffffffffffffffda RBX: 00007f3387de6130 RCX: 00007f3387c579f9 [ 1511.400660][T25071] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 000000000000000a [ 1511.408474][T25071] RBP: 00007f33868950a0 R08: 0000000000000000 R09: 0000000000000000 [ 1511.416290][T25071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1511.424094][T25071] R13: 000000000000006e R14: 00007f3387de6130 R15: 00007ffc0370cc98 [ 1511.430716][T25074] loop2: detected capacity change from 0 to 40427 [ 1511.431910][T25071] [ 1511.447142][T20642] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1511.468462][T20642] bridge0: port 1(bridge_slave_0) entered blocking state [ 1511.475317][T20642] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1511.482648][T25071] Mem-Info: [ 1511.488637][T25071] active_anon:3016 inactive_anon:23923 isolated_anon:0 [ 1511.488637][T25071] active_file:26266 inactive_file:2619 isolated_file:0 [ 1511.488637][T25071] unevictable:0 dirty:347 writeback:0 [ 1511.488637][T25071] slab_reclaimable:8856 slab_unreclaimable:67175 [ 1511.488637][T25071] mapped:25082 shmem:22799 pagetables:583 bounce:0 [ 1511.488637][T25071] kernel_misc_reclaimable:0 [ 1511.488637][T25071] free:1533609 free_pcp:13488 free_cma:0 [ 1511.505674][T20642] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1511.532741][T25071] Node 0 active_anon:12064kB inactive_anon:85692kB active_file:105064kB inactive_file:10476kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:100328kB dirty:1388kB writeback:0kB shmem:81296kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:6700kB pagetables:2332kB all_unreclaimable? no [ 1511.570655][T25071] DMA32 free:2974676kB min:62568kB low:78208kB high:93848kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2978980kB mlocked:0kB bounce:0kB free_pcp:4304kB local_pcp:1828kB free_cma:0kB [ 1511.571282][T20642] bridge0: port 2(bridge_slave_1) entered blocking state [ 1511.604625][T20642] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1511.613894][T25071] lowmem_reserve[]: 0 3941 3941 [ 1511.614921][T20644] hub 3-1:0.0: set hub depth failed [ 1511.624606][T20640] usb 3-1: USB disconnect, device number 32 [ 1511.630555][T25071] Normal free:3175416kB min:84884kB low:106104kB high:127324kB reserved_highatomic:0KB active_anon:12064kB inactive_anon:67992kB active_file:105064kB inactive_file:10476kB unevictable:0kB writepending:1388kB present:5242880kB managed:4035584kB mlocked:0kB bounce:0kB free_pcp:61812kB local_pcp:16244kB free_cma:0kB [ 1511.673869][T25074] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1511.674422][T20642] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1511.687969][T25080] loop1: detected capacity change from 0 to 2048 [ 1511.688054][T20642] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1511.709581][T25085] loop4: detected capacity change from 0 to 128 [ 1511.712155][T20646] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1511.724568][T25071] lowmem_reserve[]: 0 0 0 [ 1511.724734][T20646] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1511.741101][T25080] Alternate GPT is invalid, using primary GPT. [ 1511.754218][T25065] device veth0_vlan entered promiscuous mode [ 1511.762547][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1511.762645][T25071] DMA32: [ 1511.771885][T25080] loop1: p2 p3 p7 [ 1511.779433][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1511.786162][T25071] 3*4kB (M) 1*8kB (M) 2*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (UM) 3*2048kB (UM) 723*4096kB (M) = 2974676kB [ 1511.793874][T25065] device veth1_macvtap entered promiscuous mode [ 1511.818921][T25074] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1511.841629][T25071] Normal: 864*4kB (UME) 1472*8kB (UME) 1638*16kB (UME) 1672*32kB (UME) 232*64kB (UME) 75*128kB (UM) 32*256kB (UM) 20*512kB (UM) 11*1024kB (UME) 6*2048kB (UME) 739*4096kB (UM) = 3188320kB [ 1511.854123][ T100] Alternate GPT is invalid, using primary GPT. [ 1511.871466][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1511.875738][T25071] 39678 total pagecache pages [ 1511.881144][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1511.885933][T25071] 23 pages in swap cache [ 1511.894110][T25071] Swap cache stats: add 35, delete 12, find 11/11 [ 1511.899553][ T100] loop1: p2 p3 p7 [ 1511.907003][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1511.909648][T25071] Free swap = 124472kB [ 1511.915272][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1511.921577][T25071] Total swap = 124996kB [ 1511.926859][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 1511.930783][T25071] 2097051 pages RAM [ 1511.941468][T25071] 0 pages HighMem/MovableOnly [ 1511.951600][ T415] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1511.960998][T25071] 343410 pages reserved [ 1511.965365][ T415] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1511.980637][T25071] 0 pages cma reserved [ 1511.987977][ T415] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1512.004445][ T415] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1512.047815][T25090] loop2: detected capacity change from 0 to 256 [ 1512.075654][T25094] loop0: detected capacity change from 0 to 512 [ 1512.119420][T25094] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 1512.120336][T25100] loop3: detected capacity change from 0 to 256 [ 1512.132932][T25094] EXT4-fs (loop0): invalid journal inode [ 1512.139519][T25094] EXT4-fs (loop0): can't get journal size [ 1512.177831][T25094] EXT4-fs (loop0): 1 truncate cleaned up [ 1512.184755][T25094] EXT4-fs (loop0): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1512.792043][T20640] usb 2-1: new high-speed USB device number 61 using dummy_hcd [ 1512.809178][T25109] loop3: detected capacity change from 0 to 40427 [ 1512.843110][T25109] F2FS-fs (loop3): invalid crc value [ 1512.863419][T25109] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1512.920348][T25109] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1513.666342][T25122] syz.3.5451[25122] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1513.666567][T25122] syz.3.5451[25122] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1513.919708][T25121] overlayfs: failed to resolve './file0': -2 [ 1514.095840][T22954] attempt to access beyond end of device [ 1514.095840][T22954] loop3: rw=2049, want=45104, limit=40427 [ 1514.176863][ T399] device bridge_slave_1 left promiscuous mode [ 1514.193012][ T399] bridge0: port 2(bridge_slave_1) entered disabled state [ 1514.216036][ T399] device bridge_slave_0 left promiscuous mode [ 1514.245646][ T399] bridge0: port 1(bridge_slave_0) entered disabled state [ 1514.257179][ T399] device veth1_macvtap left promiscuous mode [ 1514.263016][ T399] device veth0_vlan left promiscuous mode [ 1514.355642][T20640] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1514.383413][T20640] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1514.404056][T25131] loop3: detected capacity change from 0 to 1024 [ 1514.411055][T20640] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1514.422938][T25125] loop4: detected capacity change from 0 to 40427 [ 1514.424641][T20640] usb 2-1: New USB device found, idVendor=5543, idProduct=0003, bcdDevice= 0.00 [ 1514.439709][T20640] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1514.450215][T20640] usb 2-1: config 0 descriptor?? [ 1514.471781][T25131] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1514.578032][T25128] netlink: 112 bytes leftover after parsing attributes in process `syz.2.5453'. [ 1514.601579][T25125] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1514.677223][T25125] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1514.735661][ T415] usb 1-1: new high-speed USB device number 127 using dummy_hcd [ 1515.021332][T25147] loop4: detected capacity change from 0 to 512 [ 1515.086931][T25147] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1515.099446][T25147] EXT4-fs (loop4): 1 truncate cleaned up [ 1515.104970][T25147] EXT4-fs (loop4): mounted filesystem without journal. Opts: resuid=0x0000000000000000,init_itable,stripe=0x0000000000000000,noblock_validity,,errors=continue. Quota mode: none. [ 1515.105627][T20640] usbhid 2-1:0.0: can't add hid device: -71 [ 1515.130899][T20640] usbhid: probe of 2-1:0.0 failed with error -71 [ 1515.139248][T20640] usb 2-1: USB disconnect, device number 61 [ 1515.153766][T25151] loop2: detected capacity change from 0 to 256 [ 1515.155647][ T415] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1515.171052][ T415] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1515.180728][ T415] usb 1-1: New USB device found, idVendor=05ac, idProduct=027c, bcdDevice= 0.00 [ 1515.189571][ T415] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1515.198020][ T415] usb 1-1: config 0 descriptor?? [ 1515.329809][T25153] loop3: detected capacity change from 0 to 512 [ 1515.425634][ T513] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 1515.514285][T25153] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1515.665706][ T513] usb 5-1: Using ep0 maxpacket: 16 [ 1515.680029][T25153] EXT4-fs (loop3): 1 truncate cleaned up [ 1515.685884][T25153] EXT4-fs (loop3): mounted filesystem without journal. Opts: resuid=0x0000000000000000,init_itable,stripe=0x0000000000000000,noblock_validity,,errors=continue. Quota mode: none. [ 1515.690090][T25159] loop1: detected capacity change from 0 to 256 [ 1515.709978][T25153] FAULT_INJECTION: forcing a failure. [ 1515.709978][T25153] name failslab, interval 1, probability 0, space 0, times 0 [ 1515.723097][T25153] CPU: 1 PID: 25153 Comm: syz.3.5459 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1515.734274][T25153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1515.744168][T25153] Call Trace: [ 1515.747290][T25153] [ 1515.750067][T25153] dump_stack_lvl+0x151/0x1b7 [ 1515.754580][T25153] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1515.760049][T25153] ? __kasan_check_write+0x14/0x20 [ 1515.764997][T25153] ? proc_fail_nth_write+0x20b/0x290 [ 1515.770116][T25153] dump_stack+0x15/0x17 [ 1515.774108][T25153] should_fail+0x3c6/0x510 [ 1515.778360][T25153] __should_failslab+0xa4/0xe0 [ 1515.782960][T25153] ? getname_flags+0xba/0x520 [ 1515.787473][T25153] should_failslab+0x9/0x20 [ 1515.791812][T25153] slab_pre_alloc_hook+0x37/0xd0 [ 1515.796592][T25153] ? getname_flags+0xba/0x520 [ 1515.801102][T25153] kmem_cache_alloc+0x44/0x200 [ 1515.805700][T25153] getname_flags+0xba/0x520 [ 1515.810041][T25153] getname+0x19/0x20 [ 1515.813771][T25153] __se_sys_quotactl+0x1f9/0x760 [ 1515.818547][T25153] ? __kasan_check_write+0x14/0x20 [ 1515.823493][T25153] ? fput_many+0x160/0x1b0 [ 1515.827747][T25153] ? __x64_sys_quotactl+0xb0/0xb0 [ 1515.832606][T25153] ? fput+0x1a/0x20 [ 1515.836250][T25153] ? ksys_write+0x260/0x2c0 [ 1515.840594][T25153] ? debug_smp_processor_id+0x17/0x20 [ 1515.845801][T25153] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1515.851703][T25153] __x64_sys_quotactl+0x9b/0xb0 [ 1515.856388][T25153] do_syscall_64+0x3d/0xb0 [ 1515.860640][T25153] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1515.866370][T25153] RIP: 0033:0x7f3387c579f9 [ 1515.870712][T25153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1515.890151][T25153] RSP: 002b:00007f33868d7048 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3 [ 1515.898395][T25153] RAX: ffffffffffffffda RBX: 00007f3387de5f80 RCX: 00007f3387c579f9 [ 1515.906206][T25153] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffff80000501 [ 1515.914127][T25153] RBP: 00007f33868d70a0 R08: 0000000000000000 R09: 0000000000000000 [ 1515.921920][T25153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1515.929729][T25153] R13: 000000000000000b R14: 00007f3387de5f80 R15: 00007ffc0370cc98 [ 1515.937548][T25153] [ 1516.014397][ T513] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1516.024818][ T513] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 1516.092506][T25168] FAULT_INJECTION: forcing a failure. [ 1516.092506][T25168] name failslab, interval 1, probability 0, space 0, times 0 [ 1516.105213][T25168] CPU: 0 PID: 25168 Comm: syz.1.5463 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1516.116396][T25168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1516.126290][T25168] Call Trace: [ 1516.129419][T25168] [ 1516.132190][T25168] dump_stack_lvl+0x151/0x1b7 [ 1516.136706][T25168] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1516.142258][T25168] ? proc_fail_nth_read+0x210/0x210 [ 1516.147291][T25168] ? fsnotify_perm+0x6a/0x5d0 [ 1516.151895][T25168] dump_stack+0x15/0x17 [ 1516.155972][T25168] should_fail+0x3c6/0x510 [ 1516.160662][T25168] __should_failslab+0xa4/0xe0 [ 1516.165257][T25168] ? getname_flags+0xba/0x520 [ 1516.169772][T25168] should_failslab+0x9/0x20 [ 1516.173438][T25166] loop2: detected capacity change from 0 to 40427 [ 1516.174107][T25168] slab_pre_alloc_hook+0x37/0xd0 [ 1516.185136][T25168] ? getname_flags+0xba/0x520 [ 1516.189649][T25168] kmem_cache_alloc+0x44/0x200 [ 1516.190946][ T513] usb 5-1: New USB device found, idVendor=0456, idProduct=f000, bcdDevice=f3.7f [ 1516.194245][T25168] ? __kasan_check_write+0x14/0x20 [ 1516.208052][T25168] getname_flags+0xba/0x520 [ 1516.212388][T25168] user_path_at_empty+0x2d/0x1a0 [ 1516.217162][T25168] path_setxattr+0xae/0x2a0 [ 1516.221498][T25168] ? fput+0x1a/0x20 [ 1516.225143][T25168] ? ksys_write+0x260/0x2c0 [ 1516.229483][T25168] ? simple_xattr_list_add+0x120/0x120 [ 1516.234780][T25168] ? debug_smp_processor_id+0x17/0x20 [ 1516.240074][T25168] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1516.245974][T25168] __x64_sys_setxattr+0xc5/0xe0 [ 1516.250662][T25168] do_syscall_64+0x3d/0xb0 [ 1516.254914][T25168] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1516.260643][T25168] RIP: 0033:0x7f179d8989f9 [ 1516.264897][T25168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1516.284422][T25168] RSP: 002b:00007f179c518048 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 1516.292678][T25168] RAX: ffffffffffffffda RBX: 00007f179da26f80 RCX: 00007f179d8989f9 [ 1516.300481][T25168] RDX: 0000000000000000 RSI: 0000000020002240 RDI: 0000000020000040 [ 1516.308293][T25168] RBP: 00007f179c5180a0 R08: 0000000000000000 R09: 0000000000000000 [ 1516.316102][T25168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1516.323915][T25168] R13: 000000000000000b R14: 00007f179da26f80 R15: 00007ffd2f31f1d8 [ 1516.331735][T25168] [ 1516.334678][ T26] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 1516.343960][ T513] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1516.351907][ T513] usb 5-1: Product: syz [ 1516.356136][ T513] usb 5-1: Manufacturer: syz [ 1516.360531][ T513] usb 5-1: SerialNumber: syz [ 1516.365741][ T513] usb 5-1: config 0 descriptor?? [ 1516.375682][ T415] usbhid 1-1:0.0: can't add hid device: -71 [ 1516.379458][T25166] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1516.381497][ T415] usbhid: probe of 1-1:0.0 failed with error -71 [ 1516.395376][ T415] usb 1-1: USB disconnect, device number 127 [ 1516.430264][T25166] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1516.453463][T25166] attempt to access beyond end of device [ 1516.453463][T25166] loop2: rw=0, want=45072, limit=40427 [ 1516.516039][T25174] loop1: detected capacity change from 0 to 40427 [ 1516.585633][ T26] usb 4-1: Using ep0 maxpacket: 16 [ 1516.607576][T20644] usb 5-1: USB disconnect, device number 25 [ 1516.616358][T25174] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 1516.622596][T25174] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 1516.632880][T25174] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 1516.654655][T25174] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0 [ 1516.661598][T25174] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1516.705700][ T26] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1516.718420][ T26] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 1516.747660][T23237] attempt to access beyond end of device [ 1516.747660][T23237] loop1: rw=524288, want=45072, limit=40427 [ 1516.759030][T23237] attempt to access beyond end of device [ 1516.759030][T23237] loop1: rw=0, want=45072, limit=40427 [ 1516.797130][T23237] attempt to access beyond end of device [ 1516.797130][T23237] loop1: rw=2049, want=45104, limit=40427 [ 1516.885674][ T26] usb 4-1: New USB device found, idVendor=0456, idProduct=f000, bcdDevice=f3.7f [ 1516.894553][ T26] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1516.908222][T25187] loop0: detected capacity change from 0 to 128 [ 1516.914798][ T26] usb 4-1: Product: syz [ 1516.918800][ T26] usb 4-1: Manufacturer: syz [ 1516.923198][ T26] usb 4-1: SerialNumber: syz [ 1516.928479][ T26] usb 4-1: config 0 descriptor?? [ 1517.091724][T25190] bridge0: port 1(bridge_slave_0) entered blocking state [ 1517.098665][T25190] bridge0: port 1(bridge_slave_0) entered disabled state [ 1517.107637][T25190] device bridge_slave_0 entered promiscuous mode [ 1517.115038][T25190] bridge0: port 2(bridge_slave_1) entered blocking state [ 1517.121963][T25190] bridge0: port 2(bridge_slave_1) entered disabled state [ 1517.130551][T25190] device bridge_slave_1 entered promiscuous mode [ 1517.166846][T20641] usb 4-1: USB disconnect, device number 17 [ 1517.222156][T25190] bridge0: port 2(bridge_slave_1) entered blocking state [ 1517.229045][T25190] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1517.236160][T25190] bridge0: port 1(bridge_slave_0) entered blocking state [ 1517.243000][T25190] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1517.255214][T25202] FAULT_INJECTION: forcing a failure. [ 1517.255214][T25202] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1517.281096][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1517.289340][ T26] bridge0: port 1(bridge_slave_0) entered disabled state [ 1517.296655][ T26] bridge0: port 2(bridge_slave_1) entered disabled state [ 1517.298383][T25202] CPU: 0 PID: 25202 Comm: syz.4.5475 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1517.314774][T25202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1517.324686][T25202] Call Trace: [ 1517.327792][T25202] [ 1517.330567][T25202] dump_stack_lvl+0x151/0x1b7 [ 1517.335081][T25202] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1517.340553][T25202] ? rdmsr_safe_on_cpu+0x162/0x300 [ 1517.345495][T25202] ? wrmsr_on_cpus+0x40/0x40 [ 1517.349935][T25202] ? rdmsr_safe_on_cpu+0x300/0x300 [ 1517.354871][T25202] dump_stack+0x15/0x17 [ 1517.358864][T25202] should_fail+0x3c6/0x510 [ 1517.363116][T25202] should_fail_usercopy+0x1a/0x20 [ 1517.367975][T25202] _copy_to_user+0x20/0x90 [ 1517.372229][T25202] msr_read+0x182/0x1f0 [ 1517.376222][T25202] ? msr_device_destroy+0x20/0x20 [ 1517.381081][T25202] ? fsnotify_perm+0x4ba/0x5d0 [ 1517.385683][T25202] ? security_file_permission+0x86/0xb0 [ 1517.391063][T25202] ? msr_device_destroy+0x20/0x20 [ 1517.395924][T25202] vfs_read+0x27d/0xd40 [ 1517.399929][T25202] ? kernel_read+0x1f0/0x1f0 [ 1517.404430][T25202] ? __fget_files+0x31e/0x380 [ 1517.408952][T25202] ? __fdget_pos+0x209/0x3a0 [ 1517.413369][T25202] ? ksys_read+0x77/0x2c0 [ 1517.417539][T25202] ksys_read+0x199/0x2c0 [ 1517.421614][T25202] ? vfs_write+0x1110/0x1110 [ 1517.426040][T25202] ? debug_smp_processor_id+0x17/0x20 [ 1517.431248][T25202] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1517.437150][T25202] __x64_sys_read+0x7b/0x90 [ 1517.441490][T25202] do_syscall_64+0x3d/0xb0 [ 1517.445741][T25202] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1517.451475][T25202] RIP: 0033:0x7f32ddf3e9f9 [ 1517.455724][T25202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1517.475165][T25202] RSP: 002b:00007f32dcbbe048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1517.483412][T25202] RAX: ffffffffffffffda RBX: 00007f32de0ccf80 RCX: 00007f32ddf3e9f9 [ 1517.491245][T25202] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000003 [ 1517.499033][T25202] RBP: 00007f32dcbbe0a0 R08: 0000000000000000 R09: 0000000000000000 [ 1517.506849][T25202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1517.514659][T25202] R13: 000000000000000b R14: 00007f32de0ccf80 R15: 00007ffc8ac4f1a8 [ 1517.522478][T25202] [ 1517.549546][ T415] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1517.561214][ T415] bridge0: port 1(bridge_slave_0) entered blocking state [ 1517.568142][ T415] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1517.575454][ T415] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1517.583738][ T415] bridge0: port 2(bridge_slave_1) entered blocking state [ 1517.590616][ T415] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1517.598410][T15069] device bridge_slave_0 left promiscuous mode [ 1517.606025][T15069] bridge0: port 1(bridge_slave_0) entered disabled state [ 1517.631174][T15069] device veth1_macvtap left promiscuous mode [ 1517.637340][T15069] device veth0_vlan left promiscuous mode [ 1517.640119][T25216] incfs_lookup_dentry err:-14 [ 1517.647528][T25216] incfs: Can't find or create .incomplete dir in ./file0 [ 1517.654641][T25216] incfs: mount failed -14 [ 1517.700840][T25219] loop2: detected capacity change from 0 to 512 [ 1517.729228][T25219] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 1517.740345][T25219] EXT4-fs (loop2): invalid journal inode [ 1517.746140][T25219] EXT4-fs (loop2): can't get journal size [ 1517.753396][T25219] EXT4-fs (loop2): 1 truncate cleaned up [ 1517.758916][T25219] EXT4-fs (loop2): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1517.783016][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1517.794527][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1517.821155][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1517.835882][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1517.858217][T25190] device veth0_vlan entered promiscuous mode [ 1517.865768][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1517.895486][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1517.905778][T20641] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 1517.920339][T25190] device veth1_macvtap entered promiscuous mode [ 1517.930262][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1517.938516][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1517.947006][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1517.955110][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1517.963496][T20644] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 1517.986332][T20640] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1517.996886][T20640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1518.011891][T25237] loop0: detected capacity change from 0 to 256 [ 1518.019403][T20640] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1518.027937][T20640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1518.051431][T25239] loop1: detected capacity change from 0 to 256 [ 1518.765665][T20641] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1518.776582][T20641] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1518.787616][T20641] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1518.801412][T20641] usb 5-1: New USB device found, idVendor=5543, idProduct=0003, bcdDevice= 0.00 [ 1518.811159][T20641] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1519.144673][T25255] incfs_lookup_dentry err:-14 [ 1519.159511][T25255] incfs: Can't find or create .incomplete dir in ./file0 [ 1519.182123][T25255] incfs: mount failed -14 [ 1519.220158][T25257] loop3: detected capacity change from 0 to 512 [ 1519.262374][T20641] usb 5-1: config 0 descriptor?? [ 1519.292544][T25260] loop0: detected capacity change from 0 to 128 [ 1519.299465][T25257] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 1519.309292][T25257] EXT4-fs (loop3): invalid journal inode [ 1519.314825][T25257] EXT4-fs (loop3): can't get journal size [ 1519.322323][T25257] EXT4-fs (loop3): 1 truncate cleaned up [ 1519.328002][T25257] EXT4-fs (loop3): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1519.582533][T25272] fuse: Unknown parameter 'grou' [ 1519.787910][T25274] incfs: Can't find or create .index dir in ./file0 [ 1519.794441][T25274] incfs: mount failed -14 [ 1519.835619][T20641] usbhid 5-1:0.0: can't add hid device: -71 [ 1519.845130][T20641] usbhid: probe of 5-1:0.0 failed with error -71 [ 1519.846726][T25276] loop1: detected capacity change from 0 to 256 [ 1519.854339][T20641] usb 5-1: USB disconnect, device number 26 [ 1519.985265][T25279] loop1: detected capacity change from 0 to 2048 [ 1520.028490][T25279] Alternate GPT is invalid, using primary GPT. [ 1520.034590][T25279] loop1: p2 p3 p7 [ 1520.127516][T25287] xt_bpf: check failed: parse error [ 1520.136443][T25287] loop1: detected capacity change from 0 to 512 [ 1520.149363][T25293] loop3: detected capacity change from 0 to 128 [ 1520.275650][T20642] usb 3-1: new high-speed USB device number 33 using dummy_hcd [ 1521.267298][T25309] loop1: detected capacity change from 0 to 512 [ 1521.284101][T25306] incfs_lookup_dentry err:-14 [ 1521.294368][T25306] incfs: Can't find or create .incomplete dir in ./file0 [ 1521.316173][T25306] incfs: mount failed -14 [ 1521.351717][T25312] loop3: detected capacity change from 0 to 128 [ 1521.359809][T25314] loop0: detected capacity change from 0 to 128 [ 1521.366828][T25309] EXT4-fs (loop1): corrupt root inode, run e2fsck [ 1521.373091][T25309] EXT4-fs (loop1): mount failed [ 1521.557101][T25319] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1521.575681][T20642] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1521.586149][T20642] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1521.599538][T20642] usb 3-1: New USB device found, idVendor=05ac, idProduct=8240, bcdDevice= 0.17 [ 1521.608483][T20642] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1521.617185][T20642] usb 3-1: config 0 descriptor?? [ 1521.655667][T20641] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 1521.856577][T25281] UDC core: couldn't find an available UDC or it's busy: -16 [ 1521.863836][T25281] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 1521.895599][T20641] usb 5-1: Using ep0 maxpacket: 8 [ 1521.925935][T25320] loop2: detected capacity change from 0 to 512 [ 1522.016019][T25320] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities [ 1522.017998][T20641] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1522.033112][T20641] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1522.043083][T20641] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1522.127790][T25324] fuse: Bad value for 'fd' [ 1522.205758][T20641] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1522.214936][T20641] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1522.224386][T20641] usb 5-1: Product: syz [ 1522.229257][T20641] usb 5-1: Manufacturer: syz [ 1522.234725][T20641] usb 5-1: SerialNumber: syz [ 1522.278077][T25335] loop3: detected capacity change from 0 to 512 [ 1522.307467][T25335] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1522.318383][T25335] ext4 filesystem being mounted at /143/file0 supports timestamps until 2038 (0x7fffffff) [ 1522.401133][T25345] fuse: Unknown parameter 'grou' [ 1522.495646][ T312] usb 2-1: new high-speed USB device number 62 using dummy_hcd [ 1522.755648][ T26] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 1522.865655][ T312] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1522.876510][ T312] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1522.886101][ T312] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1522.898662][ T312] usb 2-1: New USB device found, idVendor=5543, idProduct=0003, bcdDevice= 0.00 [ 1522.907506][ T312] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1522.915925][ T312] usb 2-1: config 0 descriptor?? [ 1522.945726][T20641] usb 5-1: 0:2 : does not exist [ 1523.125649][ T26] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1523.129713][T25355] loop2: detected capacity change from 0 to 512 [ 1523.142997][ T26] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 1523.146599][T25355] EXT4-fs (loop2): corrupt root inode, run e2fsck [ 1523.160460][T20642] usb 3-1: string descriptor 0 read error: -71 [ 1523.164703][ T26] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1523.167257][T20642] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 1523.181668][T25355] EXT4-fs (loop2): mount failed [ 1523.187775][T20642] usb 3-1: USB disconnect, device number 33 [ 1523.216040][ T26] usb 4-1: config 0 descriptor?? [ 1523.285777][ T312] usbhid 2-1:0.0: can't add hid device: -71 [ 1523.291884][ T312] usbhid: probe of 2-1:0.0 failed with error -71 [ 1523.305396][ T312] usb 2-1: USB disconnect, device number 62 [ 1523.375673][ T513] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 1523.623331][T25361] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1523.702541][T25364] fuse: Invalid rootmode [ 1523.735275][T25370] loop3: detected capacity change from 0 to 128 [ 1523.785666][ T26] usbhid 4-1:0.0: can't add hid device: -71 [ 1523.791517][ T26] usbhid: probe of 4-1:0.0 failed with error -71 [ 1523.814641][ T26] usb 4-1: USB disconnect, device number 18 [ 1523.873687][ T513] usb 1-1: config index 0 descriptor too short (expected 4141, got 45) [ 1523.885013][ T513] usb 1-1: config 122 has an invalid descriptor of length 159, skipping remainder of the config [ 1523.905605][ T513] usb 1-1: config 122 has 0 interfaces, different from the descriptor's value: 32 [ 1523.919314][ T513] usb 1-1: New USB device found, idVendor=056a, idProduct=0343, bcdDevice= 0.00 [ 1523.928370][ T513] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1524.334272][T25385] fuse: Unknown parameter 'grou' [ 1524.543908][ T30] audit: type=1400 audit(1722869179.501:20546): avc: denied { connect } for pid=25352 comm="syz.0.5523" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 1524.555237][T25391] loop4: detected capacity change from 0 to 256 [ 1524.797945][T20641] usb 5-1: USB disconnect, device number 27 [ 1524.822788][T25393] incfs: Can't find or create .index dir in ./file0 [ 1524.829493][T25393] incfs: mount failed -14 [ 1524.863401][T25395] fuse: Invalid rootmode [ 1524.911953][T25405] loop3: detected capacity change from 0 to 1024 [ 1524.917262][T25403] loop1: detected capacity change from 0 to 512 [ 1524.947535][T25403] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 1524.959749][T25403] EXT4-fs (loop1): invalid journal inode [ 1524.963681][T25405] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1524.965743][T25403] EXT4-fs (loop1): can't get journal size [ 1524.996238][T25410] loop4: detected capacity change from 0 to 512 [ 1525.006567][T25403] EXT4-fs (loop1): 1 truncate cleaned up [ 1525.012083][T25403] EXT4-fs (loop1): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1525.055999][T25410] EXT4-fs (loop4): corrupt root inode, run e2fsck [ 1525.065407][T25410] EXT4-fs (loop4): mount failed [ 1525.297973][T25420] FAULT_INJECTION: forcing a failure. [ 1525.297973][T25420] name failslab, interval 1, probability 0, space 0, times 0 [ 1525.310392][T25420] CPU: 1 PID: 25420 Comm: syz.1.5537 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1525.321590][T25420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1525.331478][T25420] Call Trace: [ 1525.334601][T25420] [ 1525.337384][T25420] dump_stack_lvl+0x151/0x1b7 [ 1525.341895][T25420] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1525.347362][T25420] ? __kasan_check_write+0x14/0x20 [ 1525.352323][T25420] ? push_rt_task+0x46e/0x5c0 [ 1525.356823][T25420] dump_stack+0x15/0x17 [ 1525.360813][T25420] should_fail+0x3c6/0x510 [ 1525.365066][T25420] __should_failslab+0xa4/0xe0 [ 1525.369667][T25420] ? __sigqueue_alloc+0x130/0x200 [ 1525.374529][T25420] should_failslab+0x9/0x20 [ 1525.378867][T25420] slab_pre_alloc_hook+0x37/0xd0 [ 1525.383637][T25420] ? __sigqueue_alloc+0x130/0x200 [ 1525.388501][T25420] kmem_cache_alloc+0x44/0x200 [ 1525.393098][T25420] __sigqueue_alloc+0x130/0x200 [ 1525.397793][T25420] __send_signal+0x1fd/0xcb0 [ 1525.402223][T25420] ? __cond_resched+0x20/0x20 [ 1525.406733][T25420] send_signal+0x43a/0x590 [ 1525.410981][T25420] force_sig_info_to_task+0x2fe/0x440 [ 1525.416188][T25420] force_sig_fault+0x127/0x1d0 [ 1525.420809][T25420] ? force_sig_fault_to_task+0x1c0/0x1c0 [ 1525.425076][T25421] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1525.426267][T25420] ? page_fault_oops+0xa90/0xa90 [ 1525.426291][T25420] ? sysvec_reschedule_ipi+0x7d/0x150 [ 1525.426309][T25420] __bad_area_nosemaphore+0x316/0x490 [ 1525.450744][T25420] bad_area+0x73/0x90 [ 1525.454550][T25420] exc_page_fault+0x58d/0x830 [ 1525.459067][T25420] asm_exc_page_fault+0x27/0x30 [ 1525.463750][T25420] RIP: 0033:0x7f7c60c656a7 [ 1525.468006][T25420] Code: c4 0f 85 83 03 00 00 48 8b 04 24 89 5c 24 14 c6 80 d0 00 00 00 01 80 3d 42 e0 de 00 00 74 12 48 8b 04 24 48 8b 80 a8 00 00 00 <48> c7 00 00 00 00 00 48 8b 1c 24 48 c7 83 88 00 00 00 ff ff ff ff [ 1525.487444][T25420] RSP: 002b:00007f7c5f9b2070 EFLAGS: 00010202 [ 1525.493365][T25420] RAX: 0000000000000000 RBX: 0000000000000007 RCX: 0000000000000000 [ 1525.501158][T25420] RDX: 00007f7c5f9b20a0 RSI: 00007f7c5f9b20a0 RDI: 00007f7c5f9b20a0 [ 1525.508974][T25420] RBP: 00007f7c5f9b20a0 R08: 0000000000000000 R09: 00007f7c5f9b1e07 [ 1525.515613][T20641] usb 3-1: new high-speed USB device number 34 using dummy_hcd [ 1525.516788][T25420] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1525.516804][T25420] R13: 000000000000006e R14: 00007f7c60f24208 R15: 00007ffebba5b398 [ 1525.539789][T25420] [ 1525.913532][T25429] loop3: detected capacity change from 0 to 256 [ 1526.025671][ T26] usb 5-1: new high-speed USB device number 28 using dummy_hcd [ 1526.152290][T25433] incfs: Can't find or create .index dir in ./file0 [ 1526.158847][T20641] usb 3-1: Using ep0 maxpacket: 8 [ 1526.158911][T25433] incfs: mount failed -14 [ 1526.167945][ T513] usb 1-1: string descriptor 0 read error: -71 [ 1526.176944][ T513] usb 1-1: USB disconnect, device number 2 [ 1526.238094][T25437] fuse: Invalid rootmode [ 1526.275686][T20641] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1526.284349][T20641] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1526.294522][T20641] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1526.305688][ T26] usb 5-1: Using ep0 maxpacket: 8 [ 1526.455719][T20641] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1526.464776][T20641] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1526.472942][T20641] usb 3-1: Product: syz [ 1526.477306][T20641] usb 3-1: Manufacturer: syz [ 1526.483652][T25448] fuse: Unknown parameter 'grou' [ 1526.489869][T20641] usb 3-1: SerialNumber: syz [ 1526.508422][ T26] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1526.518592][ T26] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1526.528540][ T26] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1526.715828][ T26] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1526.725019][ T26] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1526.732915][ T26] usb 5-1: Product: syz [ 1526.736955][ T26] usb 5-1: Manufacturer: syz [ 1526.741400][ T26] usb 5-1: SerialNumber: syz [ 1526.774799][T25450] loop1: detected capacity change from 0 to 40427 [ 1526.839329][T25450] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1526.861822][T25450] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1526.881103][T25450] attempt to access beyond end of device [ 1526.881103][T25450] loop1: rw=0, want=45072, limit=40427 [ 1527.067523][T25459] loop3: detected capacity change from 0 to 1024 [ 1527.136802][T25459] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1527.227799][T25463] incfs_lookup_dentry err:-14 [ 1527.232293][T25463] incfs: Can't find or create .incomplete dir in ./file0 [ 1527.239757][T25463] incfs: mount failed -14 [ 1527.240098][T20641] usb 3-1: 0:2 : does not exist [ 1527.505981][ T26] usb 5-1: 0:2 : does not exist [ 1527.641293][T25466] loop0: detected capacity change from 0 to 40427 [ 1527.871103][T25466] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1527.873729][T25473] loop1: detected capacity change from 0 to 2048 [ 1527.900973][T25466] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1527.934487][T25473] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsv0,errors=remount-ro,. Quota mode: none. [ 1527.949920][T25473] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 1527.964949][T25473] EXT4-fs (loop1): Remounting filesystem read-only [ 1527.995937][T25481] incfs: Can't find or create .index dir in ./file0 [ 1528.002445][T25481] incfs: mount failed -14 [ 1528.044401][T25484] loop3: detected capacity change from 0 to 256 [ 1528.058018][T25486] fuse: Bad value for 'rootmode' [ 1528.133248][T25493] loop0: detected capacity change from 0 to 512 [ 1528.155621][T25495] incfs_lookup_dentry err:-5 [ 1528.160151][T25495] incfs: Can't find or create .index dir in ./file0 [ 1528.166846][T25495] incfs: mount failed -5 [ 1528.558418][T25493] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #3: comm syz.0.5566: corrupted inode contents [ 1528.570449][T25493] EXT4-fs error (device loop0): ext4_dirty_inode:6024: inode #3: comm syz.0.5566: mark_inode_dirty error [ 1528.582258][T25493] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #3: comm syz.0.5566: corrupted inode contents [ 1528.594138][T25493] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.5566: mark_inode_dirty error [ 1528.605610][T25493] Quota error (device loop0): write_blk: dquota write failed [ 1528.612870][T25493] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1528.623692][T25493] EXT4-fs (loop0): 1 orphan inode deleted [ 1528.629303][T25493] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1528.640141][T25493] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038 (0x7fffffff) [ 1529.163773][T17983] usb 5-1: USB disconnect, device number 28 [ 1529.186774][T20641] usb 3-1: USB disconnect, device number 34 [ 1529.198590][T25512] loop1: detected capacity change from 0 to 1024 [ 1529.211225][T25509] incfs_lookup_dentry err:-14 [ 1529.217369][T25509] incfs: Can't find or create .incomplete dir in ./file0 [ 1529.230627][T25509] incfs: mount failed -14 [ 1529.258734][T25514] netlink: 112 bytes leftover after parsing attributes in process `syz.3.5571'. [ 1529.272228][T25513] fuse: Unknown parameter 'grou' [ 1529.317836][T25512] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1529.363722][T25521] loop0: detected capacity change from 0 to 128 [ 1529.371688][T25520] loop2: detected capacity change from 0 to 256 [ 1529.409261][T25522] fuse: Bad value for 'rootmode' [ 1529.462472][T25529] loop4: detected capacity change from 0 to 512 [ 1529.568376][ T30] audit: type=1400 audit(1722869184.531:20547): avc: denied { bind } for pid=25530 comm="syz.2.5577" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 1529.599151][T25529] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 1529.691277][T25529] EXT4-fs (loop4): invalid journal inode [ 1529.704286][T25529] EXT4-fs (loop4): can't get journal size [ 1529.713960][T25529] EXT4-fs (loop4): 1 truncate cleaned up [ 1529.719561][T25529] EXT4-fs (loop4): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1530.465587][T17983] usb 2-1: new high-speed USB device number 63 using dummy_hcd [ 1530.522054][T25558] FAULT_INJECTION: forcing a failure. [ 1530.522054][T25558] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1530.535106][T25558] CPU: 0 PID: 25558 Comm: syz.4.5586 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1530.546288][T25558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1530.556184][T25558] Call Trace: [ 1530.559305][T25558] [ 1530.562087][T25558] dump_stack_lvl+0x151/0x1b7 [ 1530.566598][T25558] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1530.572066][T25558] ? __kasan_check_write+0x14/0x20 [ 1530.577013][T25558] ? proc_fail_nth_write+0x20b/0x290 [ 1530.582137][T25558] ? selinux_file_permission+0x2c4/0x570 [ 1530.587604][T25558] dump_stack+0x15/0x17 [ 1530.590609][T25556] loop0: detected capacity change from 0 to 40427 [ 1530.591594][T25558] should_fail+0x3c6/0x510 [ 1530.602099][T25558] should_fail_usercopy+0x1a/0x20 [ 1530.606958][T25558] strncpy_from_user+0x24/0x2d0 [ 1530.611647][T25558] setxattr+0xca/0x2e0 [ 1530.615551][T25558] ? path_setxattr+0x2a0/0x2a0 [ 1530.620150][T25558] ? __mnt_want_write+0x1f6/0x270 [ 1530.625006][T25558] ? mnt_want_write_file+0x24b/0x440 [ 1530.630129][T25558] __se_sys_fsetxattr+0x18d/0x200 [ 1530.634988][T25558] __x64_sys_fsetxattr+0xbf/0xd0 [ 1530.639762][T25558] do_syscall_64+0x3d/0xb0 [ 1530.644022][T25558] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1530.649744][T25558] RIP: 0033:0x7f32ddf3e9f9 [ 1530.653997][T25558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1530.673436][T25558] RSP: 002b:00007f32dcbbe048 EFLAGS: 00000246 ORIG_RAX: 00000000000000be [ 1530.681683][T25558] RAX: ffffffffffffffda RBX: 00007f32de0ccf80 RCX: 00007f32ddf3e9f9 [ 1530.689505][T25558] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 1530.697306][T25558] RBP: 00007f32dcbbe0a0 R08: 0000000000000000 R09: 0000000000000000 [ 1530.705116][T25558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1530.712929][T25558] R13: 000000000000000b R14: 00007f32de0ccf80 R15: 00007ffc8ac4f1a8 [ 1530.720752][T25558] [ 1530.734025][T25560] fuse: Bad value for 'rootmode' [ 1530.750214][T25556] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1530.751104][T25562] loop4: detected capacity change from 0 to 256 [ 1530.766602][T17983] usb 2-1: Using ep0 maxpacket: 8 [ 1530.784449][T25556] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1530.800732][T25556] attempt to access beyond end of device [ 1530.800732][T25556] loop0: rw=0, want=45072, limit=40427 [ 1530.851431][T25569] fuse: Unknown parameter 'fd0x0000000000000003' [ 1530.905660][T17983] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1530.917294][T17983] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1530.940763][T17983] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1531.007132][T25582] loop3: detected capacity change from 0 to 1024 [ 1531.026999][T25582] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1531.215931][T17983] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1531.252648][T17983] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1531.264648][T17983] usb 2-1: Product: syz [ 1531.276647][T17983] usb 2-1: Manufacturer: syz [ 1531.314105][T17983] usb 2-1: SerialNumber: syz [ 1531.590295][T25592] FAULT_INJECTION: forcing a failure. [ 1531.590295][T25592] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1531.625598][T25592] CPU: 0 PID: 25592 Comm: syz.4.5596 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1531.636795][T25592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1531.646691][T25592] Call Trace: [ 1531.649814][T25592] [ 1531.652593][T25592] dump_stack_lvl+0x151/0x1b7 [ 1531.657107][T25592] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1531.662573][T25592] ? kmem_cache_free+0x116/0x2e0 [ 1531.667348][T25592] dump_stack+0x15/0x17 [ 1531.671354][T25592] should_fail+0x3c6/0x510 [ 1531.675592][T25592] should_fail_usercopy+0x1a/0x20 [ 1531.680454][T25592] _copy_from_user+0x20/0xd0 [ 1531.684881][T25592] __copy_msghdr_from_user+0xaf/0x7c0 [ 1531.690087][T25592] ? __ia32_sys_shutdown+0x70/0x70 [ 1531.695037][T25592] ___sys_sendmsg+0x166/0x2e0 [ 1531.699549][T25592] ? __sys_sendmsg+0x260/0x260 [ 1531.704157][T25592] ? __fdget+0x1bc/0x240 [ 1531.708228][T25592] __se_sys_sendmsg+0x19a/0x260 [ 1531.712913][T25592] ? __x64_sys_sendmsg+0x90/0x90 [ 1531.717686][T25592] ? ksys_write+0x260/0x2c0 [ 1531.722029][T25592] ? debug_smp_processor_id+0x17/0x20 [ 1531.727236][T25592] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1531.733152][T25592] __x64_sys_sendmsg+0x7b/0x90 [ 1531.737738][T25592] do_syscall_64+0x3d/0xb0 [ 1531.741990][T25592] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1531.747718][T25592] RIP: 0033:0x7f32ddf3e9f9 [ 1531.751989][T25592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1531.771416][T25592] RSP: 002b:00007f32dcbbe048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1531.779657][T25592] RAX: ffffffffffffffda RBX: 00007f32de0ccf80 RCX: 00007f32ddf3e9f9 [ 1531.787467][T25592] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003 [ 1531.795277][T25592] RBP: 00007f32dcbbe0a0 R08: 0000000000000000 R09: 0000000000000000 [ 1531.803091][T25592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1531.810900][T25592] R13: 000000000000000b R14: 00007f32de0ccf80 R15: 00007ffc8ac4f1a8 [ 1531.818715][T25592] [ 1531.871666][T25599] loop2: detected capacity change from 0 to 256 [ 1531.879131][T25600] fuse: Unknown parameter 'use00000000000000000000' [ 1531.965631][ T26] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 1532.033018][T25603] loop4: detected capacity change from 0 to 40427 [ 1533.142806][T17983] usb 2-1: 0:2 : does not exist [ 1533.172866][T25603] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 1533.195685][T25603] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 1533.225368][T25603] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1533.235620][ T26] usb 1-1: Using ep0 maxpacket: 8 [ 1533.297530][T25603] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 1533.308813][T25603] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1533.403452][ T26] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 1533.438573][ T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1533.453330][ T30] audit: type=1400 audit(1722869188.401:20548): avc: denied { compute_member } for pid=25602 comm="syz.4.5601" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 1533.480751][T25632] FAULT_INJECTION: forcing a failure. [ 1533.480751][T25632] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1533.498664][ T26] usb 1-1: config 0 descriptor?? [ 1533.504310][T25632] CPU: 1 PID: 25632 Comm: syz.2.5606 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1533.515501][T25632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1533.525394][T25632] Call Trace: [ 1533.528516][T25632] [ 1533.531330][T25632] dump_stack_lvl+0x151/0x1b7 [ 1533.535809][T25632] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1533.541279][T25632] dump_stack+0x15/0x17 [ 1533.545270][T25632] should_fail+0x3c6/0x510 [ 1533.549523][T25632] should_fail_usercopy+0x1a/0x20 [ 1533.554386][T25632] _copy_from_user+0x20/0xd0 [ 1533.556195][T25619] loop3: detected capacity change from 0 to 40427 [ 1533.558803][T25632] __sys_bpf+0x1e9/0x760 [ 1533.558825][T25632] ? fput_many+0x160/0x1b0 [ 1533.573512][T25632] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 1533.578719][T25632] ? debug_smp_processor_id+0x17/0x20 [ 1533.583943][T25632] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1533.589828][T25632] __x64_sys_bpf+0x7c/0x90 [ 1533.594082][T25632] do_syscall_64+0x3d/0xb0 [ 1533.598335][T25632] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1533.604062][T25632] RIP: 0033:0x7fa5a9ac39f9 [ 1533.608317][T25632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1533.627757][T25632] RSP: 002b:00007fa5a8743048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1533.636001][T25632] RAX: ffffffffffffffda RBX: 00007fa5a9c51f80 RCX: 00007fa5a9ac39f9 [ 1533.643812][T25632] RDX: 0000000000000060 RSI: 0000000020000900 RDI: 0000000000000002 [ 1533.651631][T25632] RBP: 00007fa5a87430a0 R08: 0000000000000000 R09: 0000000000000000 [ 1533.659437][T25632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1533.667269][T25632] R13: 000000000000000b R14: 00007fa5a9c51f80 R15: 00007ffde03fe6b8 [ 1533.675064][T25632] [ 1533.704606][T25619] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1533.762589][T25619] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1533.782523][T25619] attempt to access beyond end of device [ 1533.782523][T25619] loop3: rw=0, want=45072, limit=40427 [ 1533.821152][T25646] FAULT_INJECTION: forcing a failure. [ 1533.821152][T25646] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1533.834346][T25646] CPU: 0 PID: 25646 Comm: syz.2.5610 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1533.845525][T25646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1533.855421][T25646] Call Trace: [ 1533.858544][T25646] [ 1533.861320][T25646] dump_stack_lvl+0x151/0x1b7 [ 1533.865836][T25646] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1533.871321][T25646] dump_stack+0x15/0x17 [ 1533.875293][T25646] should_fail+0x3c6/0x510 [ 1533.879555][T25646] should_fail_usercopy+0x1a/0x20 [ 1533.884406][T25646] _copy_from_user+0x20/0xd0 [ 1533.888833][T25646] __sys_bpf+0x1e9/0x760 [ 1533.892911][T25646] ? fput_many+0x160/0x1b0 [ 1533.897164][T25646] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 1533.902375][T25646] ? debug_smp_processor_id+0x17/0x20 [ 1533.907580][T25646] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1533.913482][T25646] __x64_sys_bpf+0x7c/0x90 [ 1533.917749][T25646] do_syscall_64+0x3d/0xb0 [ 1533.921987][T25646] ? sysvec_call_function_single+0x52/0xb0 [ 1533.927636][T25646] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1533.933356][T25646] RIP: 0033:0x7fa5a9ac39f9 [ 1533.937612][T25646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1533.957052][T25646] RSP: 002b:00007fa5a8722048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1533.965299][T25646] RAX: ffffffffffffffda RBX: 00007fa5a9c52058 RCX: 00007fa5a9ac39f9 [ 1533.973108][T25646] RDX: 0000000000000048 RSI: 00000000200054c0 RDI: 0000000000000005 [ 1533.980919][T25646] RBP: 00007fa5a87220a0 R08: 0000000000000000 R09: 0000000000000000 [ 1533.988732][T25646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1533.996543][T25646] R13: 000000000000006e R14: 00007fa5a9c52058 R15: 00007ffde03fe6b8 [ 1534.004360][T25646] [ 1534.020970][T25648] fuse: Unknown parameter 'use00000000000000000000' [ 1534.045940][ T26] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 1534.056775][T25654] loop0: detected capacity change from 0 to 1024 [ 1534.057528][T25656] loop4: detected capacity change from 0 to 256 [ 1534.063107][ T26] asix: probe of 1-1:0.0 failed with error -71 [ 1534.078106][ T26] usb 1-1: USB disconnect, device number 3 [ 1534.118476][T25654] EXT4-fs (loop0): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1535.334439][T20641] usb 2-1: USB disconnect, device number 63 [ 1535.366974][T25674] loop4: detected capacity change from 0 to 1024 [ 1535.467270][T25674] EXT4-fs (loop4): Ignoring removed orlov option [ 1535.485861][T25674] EXT4-fs (loop4): Ignoring removed orlov option [ 1535.534044][T25678] loop1: detected capacity change from 0 to 1024 [ 1535.547633][T25674] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,grpjquota=,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,orlov,. Quota mode: none. [ 1535.708545][T25678] EXT4-fs (loop1): Ignoring removed orlov option [ 1535.715003][T25678] EXT4-fs (loop1): Ignoring removed orlov option [ 1535.729748][T25686] loop0: detected capacity change from 0 to 1024 [ 1535.745299][T25686] EXT4-fs (loop0): Ignoring removed orlov option [ 1535.754838][T25686] EXT4-fs (loop0): Ignoring removed orlov option [ 1535.754856][T25678] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,grpjquota=,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,orlov,. Quota mode: none. [ 1535.790914][T25686] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,grpjquota=,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,orlov,. Quota mode: none. [ 1535.840968][T25695] loop3: detected capacity change from 0 to 256 [ 1535.869863][T25696] FAULT_INJECTION: forcing a failure. [ 1535.869863][T25696] name failslab, interval 1, probability 0, space 0, times 0 [ 1535.905617][T25696] CPU: 0 PID: 25696 Comm: syz.4.5617 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1535.908152][T25698] loop2: detected capacity change from 0 to 512 [ 1535.916830][T25696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1535.916843][T25696] Call Trace: [ 1535.916847][T25696] [ 1535.916854][T25696] dump_stack_lvl+0x151/0x1b7 [ 1535.916877][T25696] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1535.916893][T25696] ? kmem_cache_free+0x116/0x2e0 [ 1535.953455][T25696] ? kmem_cache_free+0x116/0x2e0 [ 1535.958228][T25696] dump_stack+0x15/0x17 [ 1535.962222][T25696] should_fail+0x3c6/0x510 [ 1535.966473][T25696] __should_failslab+0xa4/0xe0 [ 1535.971073][T25696] should_failslab+0x9/0x20 [ 1535.975409][T25696] slab_pre_alloc_hook+0x37/0xd0 [ 1535.980182][T25696] __kmalloc+0x6d/0x270 [ 1535.984172][T25696] ? kvmalloc_node+0x1f0/0x4d0 [ 1535.988774][T25696] kvmalloc_node+0x1f0/0x4d0 [ 1535.993201][T25696] ? vm_mmap+0xb0/0xb0 [ 1535.997111][T25696] seq_read_iter+0x1ff/0xd00 [ 1536.001532][T25696] ? avc_policy_seqno+0x1b/0x70 [ 1536.006220][T25696] ? __kasan_check_read+0x11/0x20 [ 1536.011080][T25696] ? fsnotify_perm+0x470/0x5d0 [ 1536.015680][T25696] ? iov_iter_init+0x53/0x190 [ 1536.020202][T25696] vfs_read+0xa7e/0xd40 [ 1536.024188][T25696] ? kernel_read+0x1f0/0x1f0 [ 1536.028612][T25696] ? mutex_lock+0xb6/0x1e0 [ 1536.032866][T25696] ? wait_for_completion_killable_timeout+0x10/0x10 [ 1536.039289][T25696] ? __fdget_pos+0x2e7/0x3a0 [ 1536.043716][T25696] ? ksys_read+0x77/0x2c0 [ 1536.047881][T25696] ksys_read+0x199/0x2c0 [ 1536.051963][T25696] ? vfs_write+0x1110/0x1110 [ 1536.056388][T25696] ? debug_smp_processor_id+0x17/0x20 [ 1536.061603][T25696] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1536.067498][T25696] __x64_sys_read+0x7b/0x90 [ 1536.071837][T25696] do_syscall_64+0x3d/0xb0 [ 1536.076088][T25696] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1536.081818][T25696] RIP: 0033:0x7f32ddf3e9f9 [ 1536.086074][T25696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1536.105512][T25696] RSP: 002b:00007f32dcb7c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1536.113758][T25696] RAX: ffffffffffffffda RBX: 00007f32de0cd130 RCX: 00007f32ddf3e9f9 [ 1536.121569][T25696] RDX: 0000000000002020 RSI: 0000000020000200 RDI: 0000000000000006 [ 1536.129381][T25696] RBP: 00007f32dcb7c0a0 R08: 0000000000000000 R09: 0000000000000000 [ 1536.137192][T25696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1536.145004][T25696] R13: 000000000000006e R14: 00007f32de0cd130 R15: 00007ffc8ac4f1a8 [ 1536.152820][T25696] [ 1536.160466][ T30] audit: type=1400 audit(1722869191.121:20549): avc: denied { map } for pid=25677 comm="syz.1.5620" path="/dev/ashmem" dev="devtmpfs" ino=173 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 1536.487761][T25698] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1536.532001][T25706] loop1: detected capacity change from 0 to 256 [ 1536.761006][T25698] EXT4-fs (loop2): 1 truncate cleaned up [ 1536.778602][T25698] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none. [ 1536.916234][T25713] loop3: detected capacity change from 0 to 512 [ 1536.959821][T25718] loop4: detected capacity change from 0 to 512 [ 1536.966925][T25713] EXT4-fs (loop3): Ignoring removed mblk_io_submit option [ 1536.981243][T25719] loop0: detected capacity change from 0 to 1024 [ 1537.011276][T25713] EXT4-fs error (device loop3): __ext4_iget:4892: inode #11: block 1: comm syz.3.5626: invalid block [ 1537.022400][T25718] EXT4-fs (loop4): corrupt root inode, run e2fsck [ 1537.022585][T25713] EXT4-fs (loop3): Remounting filesystem read-only [ 1537.028778][T25718] EXT4-fs (loop4): mount failed [ 1537.035662][T25713] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.5626: couldn't read orphan inode 11 (err -117) [ 1537.053103][T25713] EXT4-fs (loop3): mounted filesystem without journal. Opts: noauto_da_alloc,errors=continue,max_dir_size_kb=0x0000000000000009,data_err=abort,errors=remount-ro,noinit_itable,mblk_io_submit,i_version,acl,. Quota mode: none. [ 1537.232911][T25719] EXT4-fs (loop0): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1537.388870][T25718] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1537.748527][T25728] EXT4-fs error (device loop3): make_indexed_dir:2262: inode #2: comm syz.3.5626: invalid rec_len for '..' [ 1537.795229][T25728] EXT4-fs (loop3): Remounting filesystem read-only [ 1537.905464][T25741] loop4: detected capacity change from 0 to 128 [ 1537.907726][T25739] incfs: Can't find or create .index dir in ./file0 [ 1537.918320][T25739] incfs: mount failed -14 [ 1537.986950][T25747] incfs_lookup_dentry err:-14 [ 1538.000461][T25747] incfs: Can't find or create .incomplete dir in ./file0 [ 1538.011200][T25750] loop2: detected capacity change from 0 to 256 [ 1538.028381][T25747] incfs: mount failed -14 [ 1538.037326][T25745] incfs: Can't find or create .index dir in ./file0 [ 1538.043939][T25745] incfs: mount failed -14 [ 1538.113604][T25756] loop3: detected capacity change from 0 to 512 [ 1538.121620][T25758] loop1: detected capacity change from 0 to 512 [ 1538.157320][T25758] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 1538.164666][T25756] EXT4-fs (loop3): corrupt root inode, run e2fsck [ 1538.172008][T25756] EXT4-fs (loop3): mount failed [ 1538.174852][T25758] EXT4-fs (loop1): invalid journal inode [ 1538.182499][T25758] EXT4-fs (loop1): can't get journal size [ 1538.199049][T25758] EXT4-fs (loop1): 1 truncate cleaned up [ 1538.205146][T25758] EXT4-fs (loop1): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none. [ 1538.249231][T25768] netlink: 112 bytes leftover after parsing attributes in process `syz.2.5643'. [ 1538.293929][T25756] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1538.489539][T25771] loop1: detected capacity change from 0 to 1024 [ 1538.577099][T25771] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1539.757808][T25787] loop0: detected capacity change from 0 to 1024 [ 1539.818687][T25799] loop2: detected capacity change from 0 to 256 [ 1539.833139][T25787] EXT4-fs (loop0): Ignoring removed orlov option [ 1539.843786][T25787] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 1539.851124][T25787] EXT4-fs (loop0): Ignoring removed orlov option [ 1539.896638][T25787] EXT4-fs (loop0): mounted filesystem without journal. Opts: block_validity,grpjquota=,sysvgroups,norecovery,errors=remount-ro,orlov,nogrpid,nomblk_io_submit,orlov,. Quota mode: none. [ 1539.934908][T25809] incfs_lookup_dentry err:-14 [ 1539.939492][T25809] incfs: Can't find or create .incomplete dir in ./file0 [ 1539.946625][T25809] incfs: mount failed -14 [ 1540.000302][T25813] loop1: detected capacity change from 0 to 512 [ 1540.030199][T25815] loop2: detected capacity change from 0 to 1024 [ 1540.047566][T25813] EXT4-fs (loop1): corrupt root inode, run e2fsck [ 1540.055672][T25813] EXT4-fs (loop1): mount failed [ 1540.065599][T20641] usb 5-1: new full-speed USB device number 29 using dummy_hcd [ 1540.077998][T25805] loop3: detected capacity change from 0 to 40427 [ 1540.097164][T25815] EXT4-fs (loop2): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback. [ 1540.174155][T25805] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1540.387222][T25826] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1540.401766][T25805] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1540.565645][T20641] usb 5-1: config 1 interface 0 altsetting 9 endpoint 0x1 has invalid maxpacket 2568, setting to 64 [ 1540.584577][T20641] usb 5-1: config 1 interface 0 altsetting 9 endpoint 0x82 has invalid maxpacket 1024, setting to 64 [ 1540.611796][T20641] usb 5-1: config 1 interface 0 has no altsetting 0 [ 1540.784680][T25837] netlink: 'syz.3.5660': attribute type 4 has an invalid length. [ 1540.845130][T25837] netlink: 'syz.3.5660': attribute type 4 has an invalid length. [ 1540.985932][T25836] loop1: detected capacity change from 0 to 1024 [ 1541.001505][T25836] EXT4-fs (loop1): Ignoring removed orlov option [ 1541.007697][T25836] EXT4-fs (loop1): Ignoring removed orlov option [ 1541.015656][T20641] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1541.017336][T25836] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,grpjquota=,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,orlov,. Quota mode: none. [ 1541.024663][T20641] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1541.053051][T20641] usb 5-1: Product: 䎠虂䁡삤찣䞸ຼ✿ೖ辫ᧁ䆣㼃ꍃ쐊뵡ꞇ䍫潱睹ዟꃻ舐俱톄鵎ﴝ뇞䁚㶧﷟똸횗墖乸 [ 1541.071093][T20641] usb 5-1: Manufacturer: 箂姤맀嶙䌰 [ 1541.078494][T20641] usb 5-1: SerialNumber: syz [ 1541.095649][T25795] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 1541.102532][T25795] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 1541.216720][T25853] incfs: Can't find or create .index dir in ./file0 [ 1541.223253][T25853] incfs: mount failed -14 [ 1541.253795][T25855] loop2: detected capacity change from 0 to 256 [ 1541.335646][ T513] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 1541.788935][T25837] syz.3.5660 (25837) used greatest stack depth: 19632 bytes left [ 1541.796678][ T513] usb 1-1: Using ep0 maxpacket: 8 [ 1541.824321][T25866] loop3: detected capacity change from 0 to 512 [ 1541.886112][T25866] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1541.903681][T25866] EXT4-fs (loop3): 1 truncate cleaned up [ 1541.905269][T25869] loop1: detected capacity change from 0 to 512 [ 1541.909507][T25866] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none. [ 1541.965634][ T513] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1541.977241][ T513] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1541.995342][ T513] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1542.015903][T25869] EXT4-fs (loop1): corrupt root inode, run e2fsck [ 1542.022257][T25869] EXT4-fs (loop1): mount failed [ 1542.154433][ T30] audit: type=1400 audit(1722869197.111:20550): avc: denied { getopt } for pid=25865 comm="syz.3.5673" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 1542.235673][ T513] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1542.254676][ T513] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1542.262773][ T513] usb 1-1: Product: syz [ 1542.273049][ T513] usb 1-1: Manufacturer: syz [ 1542.282679][ T513] usb 1-1: SerialNumber: syz [ 1542.323555][T25875] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1542.422275][T25878] fuse: Unknown parameter 'user_id00000000000000000000' [ 1542.547212][T25890] incfs: Can't find or create .index dir in ./file0 [ 1542.561952][T25890] incfs: mount failed -14 [ 1542.585637][T25892] incfs_lookup_dentry err:-5 [ 1542.598544][T25892] incfs: Can't find or create .index dir in ./file0 [ 1542.611950][T25892] incfs: mount failed -5 [ 1542.685198][T25898] loop2: detected capacity change from 0 to 128 [ 1542.691807][T25894] FAULT_INJECTION: forcing a failure. [ 1542.691807][T25894] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1542.706196][T25894] CPU: 1 PID: 25894 Comm: syz.3.5681 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1542.717383][T25894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1542.727272][T25894] Call Trace: [ 1542.730398][T25894] [ 1542.733177][T25894] dump_stack_lvl+0x151/0x1b7 [ 1542.737686][T25894] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1542.743158][T25894] dump_stack+0x15/0x17 [ 1542.747147][T25894] should_fail+0x3c6/0x510 [ 1542.751402][T25894] should_fail_usercopy+0x1a/0x20 [ 1542.756260][T25894] _copy_from_user+0x20/0xd0 [ 1542.760688][T25894] __sys_bpf+0x1e9/0x760 [ 1542.764766][T25894] ? fput_many+0x160/0x1b0 [ 1542.769021][T25894] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 1542.774230][T25894] ? debug_smp_processor_id+0x17/0x20 [ 1542.779446][T25894] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1542.785341][T25894] __x64_sys_bpf+0x7c/0x90 [ 1542.789594][T25894] do_syscall_64+0x3d/0xb0 [ 1542.793843][T25894] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1542.799570][T25894] RIP: 0033:0x7f3387c579f9 [ 1542.803826][T25894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1542.823266][T25894] RSP: 002b:00007f33868d7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1542.831511][T25894] RAX: ffffffffffffffda RBX: 00007f3387de5f80 RCX: 00007f3387c579f9 [ 1542.839322][T25894] RDX: 0000000000000060 RSI: 0000000020000900 RDI: 0000000000000002 [ 1542.847134][T25894] RBP: 00007f33868d70a0 R08: 0000000000000000 R09: 0000000000000000 [ 1542.854945][T25894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1542.862757][T25894] R13: 000000000000000b R14: 00007f3387de5f80 R15: 00007ffc0370cc98 [ 1542.870574][T25894] [ 1542.926550][T25902] FAULT_INJECTION: forcing a failure. [ 1542.926550][T25902] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1542.942511][T25902] CPU: 0 PID: 25902 Comm: syz.4.5684 Tainted: G W 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 1542.953707][T25902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 1542.963601][T25902] Call Trace: [ 1542.966728][T25902] [ 1542.969500][T25902] dump_stack_lvl+0x151/0x1b7 [ 1542.974019][T25902] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1542.979481][T25902] ? do_sys_openat2+0x71c/0x830 [ 1542.984172][T25902] dump_stack+0x15/0x17 [ 1542.988166][T25902] should_fail+0x3c6/0x510 [ 1542.992416][T25902] should_fail_usercopy+0x1a/0x20 [ 1542.997277][T25902] _copy_from_user+0x20/0xd0 [ 1543.001699][T25902] iovec_from_user+0xc7/0x330 [ 1543.006220][T25902] __import_iovec+0x6d/0x420 [ 1543.010641][T25902] ? proc_fail_nth_write+0x20b/0x290 [ 1543.015762][T25902] import_iovec+0xe5/0x120 [ 1543.020100][T25902] vfs_writev+0x114/0x560 [ 1543.024273][T25902] ? do_writev+0x340/0x340 [ 1543.028522][T25902] ? wait_for_completion_killable_timeout+0x10/0x10 [ 1543.034940][T25902] ? __fdget_pos+0x2e7/0x3a0 [ 1543.039364][T25902] ? do_writev+0x7b/0x340 [ 1543.043534][T25902] do_writev+0x1aa/0x340 [ 1543.047611][T25902] ? do_readv+0x460/0x460 [ 1543.051777][T25902] ? debug_smp_processor_id+0x17/0x20 [ 1543.056983][T25902] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1543.062892][T25902] __x64_sys_writev+0x7d/0x90 [ 1543.067400][T25902] do_syscall_64+0x3d/0xb0 [ 1543.071655][T25902] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1543.077388][T25902] RIP: 0033:0x7f32ddf3e9f9 [ 1543.081639][T25902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1543.101082][T25902] RSP: 002b:00007f32dcbbe048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1543.109325][T25902] RAX: ffffffffffffffda RBX: 00007f32de0ccf80 RCX: 00007f32ddf3e9f9 [ 1543.117135][T25902] RDX: 0000000000000001 RSI: 0000000020000480 RDI: 0000000000000007 [ 1543.124948][T25902] RBP: 00007f32dcbbe0a0 R08: 0000000000000000 R09: 0000000000000000 [ 1543.132764][T25902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1543.140571][T25902] R13: 000000000000000b R14: 00007f32de0ccf80 R15: 00007ffc8ac4f1a8 [ 1543.148389][T25902] [ 1543.162304][T25907] EXT4-fs warning (device sda1): ext4_resize_fs:1980: can't read last block, resize aborted [ 1543.318539][ T30] audit: type=1400 audit(1722869198.121:20551): avc: denied { mounton } for pid=25899 comm="syz.3.5683" path="/proc/522/task" dev="proc" ino=202324 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 1543.356082][ T513] usb 1-1: 0:2 : does not exist [ 1544.181735][T20641] usblp 5-1:1.0: usblp0: USB Bidirectional printer dev 29 if 0 alt 9 proto 3 vid 0x0525 pid 0xA4A8 [ 1544.447396][T25902] loop4: detected capacity change from 0 to 512 SYZFAIL: bad allocate request allocated=0 size=18446744073709551095/18446744073709551096 (errno 11: Resource temporarily unavailable) [ 1544.539349][T20641] usb 5-1: USB disconnect, device number 29 [ 1544.565724][ T513] usb 1-1: USB disconnect, device number 4 [ 1544.581048][T20641] usblp0: removed [ 1544.687428][ T314] udevd[314]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 1545.556699][ T9751] device bridge_slave_1 left promiscuous mode [ 1545.562655][ T9751] bridge0: port 2(bridge_slave_1) entered disabled state [ 1545.569973][ T9751] device bridge_slave_0 left promiscuous mode [ 1545.575998][ T9751] bridge0: port 1(bridge_slave_0) entered disabled state [ 1545.583643][ T9751] device veth1_macvtap left promiscuous mode [ 1545.589586][ T9751] device veth0_vlan left promiscuous mode [ 1546.077534][ T9751] tipc: Left network mode [ 1547.036403][ T9751] device bridge_slave_1 left promiscuous mode [ 1547.042322][ T9751] bridge0: port 2(bridge_slave_1) entered disabled state [ 1547.049740][ T9751] device bridge_slave_0 left promiscuous mode [ 1547.055720][ T9751] bridge0: port 1(bridge_slave_0) entered disabled state [ 1547.063326][ T9751] device bridge_slave_1 left promiscuous mode [ 1547.069332][ T9751] bridge0: port 2(bridge_slave_1) entered disabled state [ 1547.076638][ T9751] device bridge_slave_0 left promiscuous mode [ 1547.082566][ T9751] bridge0: port 1(bridge_slave_0) entered disabled state [ 1547.090420][ T9751] device bridge_slave_1 left promiscuous mode [ 1547.096393][ T9751] bridge0: port 2(bridge_slave_1) entered disabled state [ 1547.103596][ T9751] device bridge_slave_0 left promiscuous mode [ 1547.109640][ T9751] bridge0: port 1(bridge_slave_0) entered disabled state [ 1547.117371][ T9751] device bridge_slave_1 left promiscuous mode [ 1547.123275][ T9751] bridge0: port 2(bridge_slave_1) entered disabled state [ 1547.130680][ T9751] device bridge_slave_0 left promiscuous mode [ 1547.136657][ T9751] bridge0: port 1(bridge_slave_0) entered disabled state [ 1547.144699][ T9751] device veth1_macvtap left promiscuous mode [ 1547.150579][ T9751] device veth0_vlan left promiscuous mode [ 1547.156670][ T9751] device veth1_macvtap left promiscuous mode [ 1547.162464][ T9751] device veth0_vlan left promiscuous mode [ 1547.168372][ T9751] device veth1_macvtap left promiscuous mode [ 1547.174190][ T9751] device veth0_vlan left promiscuous mode [ 1547.180000][ T9751] device veth1_macvtap left promiscuous mode [ 1547.185941][ T9751] device veth0_vlan left promiscuous mode