last executing test programs: 10.036805578s ago: executing program 0 (id=540): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_dev$swradio(&(0x7f0000002440), 0x1, 0x2) r3 = syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=0x0, &(0x7f0000000200)=0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r6, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x7}, {{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000540)=""/216, 0xd8}, {&(0x7f0000000100)=""/119, 0x77}, {&(0x7f00000000c0)=""/23, 0x17}, {&(0x7f0000003c40)=""/4092, 0xffc}, {&(0x7f0000001840)=""/105, 0x69}, {&(0x7f0000000640)=""/4096, 0x1000}], 0x6}, 0x80000000}], 0x3, 0x40008062, 0x0) syz_emit_ethernet(0x86, &(0x7f0000000100)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "82d18160f7d8dda36479a6b179161b4bbff2d0508977b3928ebd2dee05607d17", "0194bd7b1b0303c5ba7f602606a285b3", {"30da2d58da817f8a5f77a23de36a2164", "3b33cff0001d9c000000000000001000"}}}}}}}, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc}) io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0) 9.548224745s ago: executing program 3 (id=541): r0 = socket$kcm(0x10, 0x400000002, 0x0) write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33) recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000001600)=""/4092, 0xffc}, {&(0x7f0000001140)=""/55, 0x37}, {&(0x7f0000004600)=""/4097, 0x1001}], 0x3}, 0x40012022) 9.165195161s ago: executing program 3 (id=544): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000002840)={@map=r1, 0x9, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) 8.654948099s ago: executing program 3 (id=546): bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000004a00)={@fallback, 0xffffffffffffffff, 0x4, 0x4, 0xffffffffffffffff, @void, @value}, 0x20) 7.242746341s ago: executing program 3 (id=548): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000e40)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="0200000002"], 0x10) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000001180)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0200000002"], 0x10) bpf$ENABLE_STATS(0x20, 0x0, 0x0) socket$kcm(0x2, 0x1000000000000002, 0x0) 7.150847642s ago: executing program 3 (id=550): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)="d8000000190081054e81f782db4cb9040220080000000000000000070a000a000900142603600e1208001e0000050401d559e0e0df7fc07963acc3038ebba8000400027c035c0461c1d67f6f94007134cf6efb8001a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c3f5aeb4edbb57a5025ccca9e008026f6e6ddba61f5fad95667e006dcdf639500bfeb789d00000000000000d5e1cace81ed6c117ab5d6d69bda4039e81f86f60f0bffece0b42a9ecbee5de6ccd40dd6e4ed", 0xd8}], 0x1}, 0x14) 6.368522044s ago: executing program 3 (id=555): mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r0 = socket$kcm(0x2, 0x5, 0x84) sendmsg$inet(r0, &(0x7f0000002700)={&(0x7f0000000080)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000180)="90", 0x1}], 0x1}, 0x8040) sendmsg$inet(r0, &(0x7f00000006c0)={&(0x7f0000000040)={0x2, 0x4e23, @private=0xa010101}, 0x10, &(0x7f0000000140)=[{&(0x7f00000000c0)="e0", 0x1}], 0x1}, 0xc000) setsockopt$sock_attach_bpf(r0, 0x84, 0xb, &(0x7f0000000000), 0xe) 5.461330227s ago: executing program 0 (id=561): bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000010000000000000000000062014b000000000895"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 5.112692602s ago: executing program 0 (id=566): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0e00000004000000080000000b"], 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='contention_end\x00', r0, 0xe4}, 0x18) bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xe, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1804"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6) ioctl$TUNGETVNETLE(r1, 0x4010744d, &(0x7f0000000180)) 4.663275459s ago: executing program 0 (id=571): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_dev$swradio(&(0x7f0000002440), 0x1, 0x2) r3 = syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=0x0, &(0x7f0000000200)=0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r6, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x7}, {{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000540)=""/216, 0xd8}, {&(0x7f0000000100)=""/119, 0x77}, {&(0x7f00000000c0)=""/23, 0x17}, {&(0x7f0000003c40)=""/4092, 0xffc}, {&(0x7f0000001840)=""/105, 0x69}, {&(0x7f0000000640)=""/4096, 0x1000}], 0x6}, 0x80000000}], 0x3, 0x40008062, 0x0) syz_emit_ethernet(0x86, &(0x7f0000000100)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "82d18160f7d8dda36479a6b179161b4bbff2d0508977b3928ebd2dee05607d17", "0194bd7b1b0303c5ba7f602606a285b3", {"30da2d58da817f8a5f77a23de36a2164", "3b33cff0001d9c000000000000001000"}}}}}}}, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc}) io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0) 4.292654485s ago: executing program 1 (id=575): getpid() socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="9f4000000400000008000000ffffff7f00000000", @ANYRES32, @ANYBLOB='\t\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000fbffffff00"/28], 0x50) setsockopt$sock_attach_bpf(r0, 0x1, 0x29, &(0x7f0000000100), 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000001000000000085000000610000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r1, 0x18000000000002a0, 0x4f, 0x0, &(0x7f00000002c0)="d2ff03076003008cb89e08f086dd", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000018c0)={0xffffffffffffffff, 0xd, 0x10}, 0xc) r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0f0000000400000004000000120000", @ANYRES32, @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="f6ff000000000000000000140000000000000040000000151320ea86"], 0x50) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000780)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='&'], 0x10) close(r3) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto, @ptr, @volatile={0x0, 0x0, 0x0, 0xb, 0x2}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) mkdir(&(0x7f0000000000)='./cgroup/../file0/file0\x00', 0x0) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_procs(r4, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r6 = openat$cgroup_ro(r5, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r6, &(0x7f0000000100)=0x1, 0x12) 4.266624695s ago: executing program 1 (id=576): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x52cc) 4.019317999s ago: executing program 2 (id=577): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x400}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 3.594977656s ago: executing program 2 (id=580): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) socket$unix(0x1, 0x5, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) read$FUSE(r2, &(0x7f0000003980)={0x2020, 0x0, 0x0}, 0x2020) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4) r5 = socket$kcm(0x10, 0x2, 0x0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r6, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000140)={0x14, r7, 0x1, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x24004040}, 0x20008044) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$inet(r5, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe) write$FUSE_ATTR(r2, &(0x7f0000000240)={0x78, 0x0, r3, {0x2000000007, 0x0, 0x0, {0x0, 0x0, 0x55, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x1ff, 0xa000}}}, 0x78) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$can_bcm(r1, &(0x7f00000003c0)={&(0x7f00000000c0), 0x10, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[], 0x80}, 0x1, 0x0, 0x0, 0x20008841}, 0x20004004) write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0) preadv(r1, &(0x7f0000001b00)=[{&(0x7f00000009c0)=""/239, 0xef}], 0x1, 0x2, 0x0) 2.512705442s ago: executing program 1 (id=581): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0e00000004000000080000000b"], 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='contention_end\x00', r0, 0xe4}, 0x18) bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xe, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1804"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6) ioctl$TUNGETVNETLE(r1, 0x4010744d, &(0x7f0000000180)) 2.488115612s ago: executing program 4 (id=582): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.284915585s ago: executing program 4 (id=583): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000003c0)="d800000018007b18e00212ba0d8105040a871100fe0f040b067c55a1bc0009001e0006990300000015000500fe8011e0000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b01602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e9cb5", 0xd2}, {&(0x7f00000004c0)="f80ec2e2badd", 0x6}], 0x2, 0x0, 0x0, 0x2663}, 0x0) 2.245976696s ago: executing program 2 (id=584): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000033bc0e00000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x5, 0x8, 0x40, 0x42, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000680), &(0x7f0000000580), 0x1000, r1}, 0x38) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r1}, 0x4) 1.9768617s ago: executing program 4 (id=585): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x102, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'pim6reg0\x00', 0x2}) ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x3) ioctl$TUNSETLINK(r0, 0x400454cd, 0x337) 1.948075231s ago: executing program 1 (id=586): getpid() socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="9f4000000400000008000000ffffff7f00000000", @ANYRES32, @ANYBLOB='\t\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000fbffffff00"/28], 0x50) setsockopt$sock_attach_bpf(r0, 0x1, 0x29, &(0x7f0000000100), 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000001000000000085000000610000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r1, 0x18000000000002a0, 0x4f, 0x0, &(0x7f00000002c0)="d2ff03076003008cb89e08f086dd", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000018c0)={0xffffffffffffffff, 0xd, 0x10}, 0xc) r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0f0000000400000004000000120000", @ANYRES32, @ANYBLOB='\x00'/19, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="f6ff000000000000000000140000000000000040000000151320ea86"], 0x50) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000780)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='&'], 0x10) close(r3) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto, @ptr, @volatile={0x0, 0x0, 0x0, 0xb, 0x2}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) mkdir(&(0x7f0000000000)='./cgroup/../file0/file0\x00', 0x0) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_procs(r4, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r6 = openat$cgroup_ro(r5, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r6, &(0x7f0000000100)=0x1, 0x12) 1.819968252s ago: executing program 2 (id=587): sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="280100"], 0x128}, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="02"], 0x10) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r2, 0x2, 0x0, 0x0, &(0x7f0000000280)=[0x0], 0x1, 0x0, &(0x7f00000014c0), 0x0, 0x0}, 0x40) 1.703910794s ago: executing program 1 (id=588): r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0) recvmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000004c0)=""/4122, 0x101a}], 0x1}, 0x42) r1 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f90724fc60040f030047000000053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 1.546939377s ago: executing program 2 (id=589): bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x12, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ba000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002e00000095"], &(0x7f0000000140)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @cgroup_sock_addr=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) 1.32390972s ago: executing program 4 (id=590): bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000780)={@ifindex, 0xffffffffffffffff, 0x1e, 0x0, 0xffffffffffffffff, @void, @value}, 0x20) 1.30873118s ago: executing program 1 (id=591): openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x1ff) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x9) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x4) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000280)) r1 = syz_open_dev$tty1(0xc, 0x4, 0x2) r2 = dup(r1) ioctl$KDFONTOP_SET_DEF(r2, 0x4b72, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f00000015c0)=' hash=', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r3, 0x0, r4, 0x0, 0x8000f28, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000080)=@bpf_lsm={0xd, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="b60a00009000000061113200000000001800000000000000000000000000000095000000000000004871dc46d00af3c33cad7aa2bb6c1a8ca4b2a656008bf2baba0b3cc9d99d00f70d4ab6e7c43379582a52a47f15079acfb1729324027f247c5c1b777a5fc8a09f2dd3437e97b06e52b464fce727d076"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffc42, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x58) r5 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) r6 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000005140)=@raw={'raw\x00', 0x3c1, 0x3, 0x1b40, 0x18e0, 0xffffff80, 0x178, 0x0, 0x178, 0x1a70, 0x22b, 0x258, 0x1a70, 0x258, 0x2034, 0x0, {[{{@uncond, 0x1d, 0x18b8, 0x18e0, 0x340, {0x1e0002a8, 0x7203000000000000}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup.cpu/syz0\x00'}}, @common=@unspec=@u32={{0x7e0}, {[], 0x70}}]}, @common=@unspec=@CLASSIFY={0x28}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1_to_bridge\x00', 'ip6gre0\x00'}, 0x0, 0x160, 0x190, 0x0, {}, [@common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @empty, @local, @private1}}, @common=@ipv6header={{0x28}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1ba0) ioctl$UDMABUF_CREATE(r5, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x8000}) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000600)={&(0x7f0000000340), 0x0, 0x0, 0x0, 0xc}, 0x38) syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='.\x00', 0x2000010, &(0x7f0000000400)=ANY=[@ANYBLOB="e880c74a10b872f89527524351e963594d3a387d2c2f966c3bb778dcc819487673ca7004552dc19b38c71cda35f66dc7a3cc723d4ad4d4816c648929ef70f1cd9dfa6ab0d25c4da720d6", @ANYRESHEX], 0x1, 0x6e2, &(0x7f0000001600)="$eJzs3c9vHGcZB/DvrNcbb6mC0yY0QkVYiVSQIhInVgrhgkEI5VChqhx6thKnsbpJqsRFaYWKAwhOSBz6BxQk3zggJO5B4cKl3Hr1sRISl4hDVAktmtlZe9e7/pXEdgKfTzSe9533nXeeffadmd11rA3wf+vymTTvp8jlM2/cLetrq3OdtdW5I3VzJ0lZbiTN3irFzaR4kMyX7cXAkoH1iI+XLr312cO1z3u1Zr1U/Se222+MMX1X6iUz9XgzY/ec3O0hVurw8mKSK/V6WGu3Yw11LJN2ul7DoeuOWNnL7ns5b4FnTP/uVPTumyOmkxeSTNWvA1JfHRoHF+H+2NNVDgAAAJ5Tn9467AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg+VN//39RL416nZkU/e//b/W31eVn0Pyue97f1zgAAAAAAAAA4GB8/VEe5W6O9uvdovqd/6mqcjxfdJMv5f3cyWJu52zuZiHLWc7tnE8yPTBQ6+7C8vLt8+t7lsbveWHsnhcO6hEDAAAAAAAAwP+kX6S98ft/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FhTJRG9VLcfrdabTaGajLSvJP5K0DjvePSjGbbx/8HEAAADAE5kas21yh32+/CiPcjdH+/VuUb3n/0r1fnkq7+dmlrOU5XSymKv1e+jyXX9jbXWus7Y6d6NcyvrwuN//155Cb9UjTFS1cUc+WfVo51qWqi1nc6UK5moavWOfTk724xmIa8C9Mqbie7VdRtas01oe7HdbfYrwVAx/FNHYpmd7I7hkPSOzdWzlnsd6GSiqD2qSzZnoPzuvbXWE5lBtuhp1cv1I59NY/+Tn+D7k/IV6XT6eX+9rzvdqPRONVJm40J995TmzfSaSb/zlj29f79x89/q1O2eenYe0g4kttm+eE3MDmXjluc5Ec4/9Z6tMnFivX86P8pOcyUzezO0s5adZyHIW063bF+r5XP6c3j5T80O1N3eKpFU/L73nbDcxzeSHVWkhp6p9j2YpRW7lahbzevXvQs7n27mYi7k08Ayf2DLu6rFVZ31j81nff6b/Ojb409+sC+XV7TcbV7n57R7xVrPzMY3cLXvX/jKvxwby2pv1D9d7HRs4D2YHsvRSPzvj78KPc21sfrUulMf45Q73iYM1XWeiPIH6d4l+dC/3MtGs7kWj8/z33Sr1nZvd7vWF97YYf6W3OtKv929e5bRa/doWvUfs9ILoaSjny0uZqq8kw7OjbHt5/Soz0NbdmMu9tuE7brnfiaqtKPpn6o9zq5oAo2dqq34Nt2mkoh/dK2OPMle1ney3/ac7/Hort9LJ1bGP+N4+ZxSAnf397fXidF5otf/Z/rT9SftX7evtN6Z+cOQ7R15tZfJvk99tzk681ni1+HM+yUcb7/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDHd+eDD99d6HQWb48vNLZuGiq0s3nLTiNvKhT1F/rsba9ntzCVZGhL9T1HBx5Ge3MYI4Xuz5OnffSPdurTqr8UbHyf35aF5siMGleYH9ryp9EB7+0x+GJ358U+Fho52INOZPwEONzrErD/zi3feO/cnQ8+/NbSjYV3Ft9ZvDl58eKl2UsXX587d22pszjb+3nYUQL7YeOmf9iRAAAAAAAAAAAAALs17g8DTr240x+N7KbQ8j8LAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgKfi8pk076fI+dmzs2V9bXWuUy798kbPZpJGIyl+lhQPkvn0lkwPDFfkDw/SHXOcj5cuvfXZw7XPN8Zq9vonjXq9te1bk6zUS2aSTNTrJzA03pUnHq/4d/8xlAn7otvtzj9ZfPB0/DcAAP//Sgn3QQ==") 1.182312852s ago: executing program 0 (id=592): socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={0x0, 0x0}) close(r0) setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x127) recvmsg(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000240)=""/142, 0x8e}], 0x1, &(0x7f0000000b00)=""/216, 0xd8}, 0x10020) 988.751055ms ago: executing program 4 (id=593): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x3, 0x8, &(0x7f0000000200)=@framed={{0x18, 0x2}, [@ringbuf_query, @call={0x85, 0x0, 0x0, 0xa0}]}, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 981.587025ms ago: executing program 2 (id=594): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0) socket$kcm(0x11, 0x200000000000002, 0x300) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2686dd4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 242.66µs ago: executing program 0 (id=595): syz_create_resource$binfmt(0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYRESHEX], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) syz_init_net_socket$ax25(0x3, 0x3, 0x1) syz_open_procfs$namespace(0x0, &(0x7f0000000440)='ns/mnt\x00') prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0x2) read$msr(r1, &(0x7f0000019680)=""/102384, 0x18ff0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xb, 0x7ffc0002}]}) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a5"], &(0x7f0000000000)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x71ba, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='mmap_lock_acquire_returned\x00', r2}, 0x10) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = io_uring_setup(0x6390, &(0x7f00000001c0)={0x0, 0x621d, 0x842, 0x3, 0x39c}) io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r3, 0x13, &(0x7f00000000c0)=[0x7, 0x80000000], 0x2) ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f0000002700)={0x0, 0x8, 0x1, [0x80000001, 0x401, 0x7, 0x5, 0xfffffffffffffff7], [0x4, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffa, 0xdd9, 0xfff, 0x3, 0xfffffffffffffffc, 0xffff, 0x8, 0x40, 0x3, 0xfffffffffffffffb, 0x4, 0x400, 0x1ff, 0xfffffffffffffffa, 0x7fffffff, 0x1, 0x3, 0x5, 0x1, 0x3, 0x7, 0x2, 0x5306, 0xffffffffffff64d0, 0x100, 0x3cc98dbb, 0x6, 0x4, 0x1, 0x80000000, 0x21, 0x101, 0x0, 0x7, 0x2, 0x9, 0x0, 0x0, 0x3, 0x9, 0x45d96b26, 0xffffffffffffffff, 0x6, 0x5, 0x7, 0x9, 0x7, 0x1d1, 0x0, 0x8, 0x7e, 0x3, 0x0, 0x1ff, 0x60e, 0x4, 0xffffffff, 0x10001, 0x4, 0x8, 0x7c1, 0x9, 0x8000000000000000, 0x8, 0x3, 0x1bf, 0x664, 0x2, 0x8b, 0x3ff, 0x3, 0x8, 0xfffffffffffffe01, 0x3, 0x1, 0x101, 0x380000000000000, 0x1, 0xfffffffffffffff8, 0xffffffffffff517d, 0x0, 0x9, 0x6, 0x1, 0xc400, 0x9, 0x9, 0x6, 0x0, 0xc1c, 0xa, 0x0, 0x5, 0x2, 0xffff, 0x0, 0x5, 0x5, 0x1, 0xffffffffffffffff, 0x10001, 0x0, 0x9, 0x2a55, 0x81, 0xb, 0x80, 0x7fffffff, 0x8, 0x6, 0x8, 0x6c, 0xaa59, 0x8, 0x0, 0x7, 0x7, 0xee2c]}) syz_open_dev$cec(&(0x7f0000000180), 0x0, 0x0) 0s ago: executing program 4 (id=596): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0e00000004000000080000000b"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='contention_end\x00', r1, 0xe4}, 0x18) bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xe, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1804"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r2) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r3, 0xc004743e, 0x110e22fff6) ioctl$TUNGETVNETLE(r2, 0x4010744d, &(0x7f0000000180)) kernel console output (not intermixed with test programs): al softirq work is pending, handler #20a!!! [ 78.420944][ T0] NOHZ tick-stop error: local softirq work is pending, handler #28a!!! [ 78.421745][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 78.429488][ T0] NOHZ tick-stop error: local softirq work is pending, handler #38a!!! [ 78.439780][ T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!! [ 79.311225][ T4381] process 'syz.3.17' launched './file0' with NULL argv: empty string added [ 79.453348][ T4383] loop4: detected capacity change from 0 to 736 [ 79.494099][ T4383] ======================================================= [ 79.494099][ T4383] WARNING: The mand mount option has been deprecated and [ 79.494099][ T4383] and is ignored by this kernel. Remove the mand [ 79.494099][ T4383] option from the mount to silence this warning. [ 79.494099][ T4383] ======================================================= [ 79.587398][ T4385] loop0: detected capacity change from 0 to 2048 [ 79.678943][ T4391] input: syz0 as /devices/virtual/input/input5 [ 79.697955][ T4385] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 79.749833][ T2184] kernel read not supported for file /vcs (pid: 2184 comm: kworker/0:3) [ 79.810457][ T4385] UDF-fs: error (device loop0): udf_fiiter_advance_blk: extent after position 232 not allocated in directory (ino 1376) [ 79.861243][ T4385] UDF-fs: error (device loop0): udf_verify_fi: directory (ino 1376) has entry past directory size at pos 232 [ 79.982770][ T4393] loop2: detected capacity change from 0 to 16 [ 80.110359][ T4393] erofs: (device loop2): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 125300) [ 80.261094][ T4400] loop3: detected capacity change from 0 to 256 [ 80.329693][ T4405] syz.4.25 uses obsolete (PF_INET,SOCK_PACKET) [ 80.380897][ T4400] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 80.419773][ T4409] loop1: detected capacity change from 0 to 1024 [ 80.428463][ T4405] loop4: detected capacity change from 0 to 256 [ 80.456346][ T4405] exfat: Bad value for 'uid' [ 80.477889][ T4413] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 80.489220][ T4409] EXT4-fs: Ignoring removed nobh option [ 80.565805][ T4409] EXT4-fs: Ignoring removed bh option [ 80.641835][ T4409] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 81.294016][ T4409] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 81.380179][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 81.431747][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 81.473015][ T27] audit: type=1326 audit(1744749587.305:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 81.612422][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 81.724088][ T27] audit: type=1326 audit(1744749587.405:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 81.808283][ T4428] mmap: syz.2.27 (4428) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 81.926567][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 81.943630][ T27] audit: type=1326 audit(1744749587.445:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 82.412221][ T27] audit: type=1326 audit(1744749587.655:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 82.443597][ T4441] loop1: detected capacity change from 0 to 16 [ 82.523404][ T27] audit: type=1326 audit(1744749587.655:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 82.537395][ T4441] erofs: (device loop1): mounted with root inode @ nid 36. [ 82.646683][ T27] audit: type=1326 audit(1744749587.845:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 82.760486][ T27] audit: type=1326 audit(1744749587.855:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 82.880043][ T27] audit: type=1326 audit(1744749587.855:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 82.993889][ T27] audit: type=1326 audit(1744749587.875:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 83.104938][ T27] audit: type=1326 audit(1744749587.905:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4416 comm="syz.2.27" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 83.110813][ T4456] loop0: detected capacity change from 0 to 512 [ 83.239339][ T4456] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 83.287262][ T4456] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.38: bad orphan inode 15 [ 83.321709][ T4456] ext4_test_bit(bit=14, block=4) = 1 [ 83.339965][ T4464] netlink: 24 bytes leftover after parsing attributes in process `syz.4.39'. [ 83.392829][ T4456] is_bad_inode(inode)=0 [ 83.409403][ T4456] NEXT_ORPHAN(inode)=0 [ 83.413580][ T4456] max_ino=32 [ 83.453057][ T4456] i_nlink=1 [ 83.462507][ T4456] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 83.724715][ T4468] loop1: detected capacity change from 0 to 2048 [ 83.821737][ T4468] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 83.835599][ T4456] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #2: block 4: comm syz.0.38: lblock 0 mapped to illegal pblock 4 (length 1) [ 84.380158][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 84.408227][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 84.592518][ T4488] loop4: detected capacity change from 0 to 256 [ 84.720709][ T4488] FAT-fs (loop4): Directory bread(block 64) failed [ 84.773949][ T4488] FAT-fs (loop4): Directory bread(block 65) failed [ 84.790338][ T4488] FAT-fs (loop4): Directory bread(block 66) failed [ 84.840725][ T4488] FAT-fs (loop4): Directory bread(block 67) failed [ 84.883181][ T4488] FAT-fs (loop4): Directory bread(block 68) failed [ 84.892297][ T4496] device ip6tnl1 entered promiscuous mode [ 84.918551][ T4488] FAT-fs (loop4): Directory bread(block 69) failed [ 84.958386][ T4488] FAT-fs (loop4): Directory bread(block 70) failed [ 85.009767][ T4488] FAT-fs (loop4): Directory bread(block 71) failed [ 85.031601][ T4488] FAT-fs (loop4): Directory bread(block 72) failed [ 85.041171][ T4496] team0: Device ip6tnl1 is of different type [ 85.052449][ T4488] FAT-fs (loop4): Directory bread(block 73) failed [ 85.069826][ T4502] loop2: detected capacity change from 0 to 1024 [ 85.325212][ T4427] hfsplus: b-tree write err: -5, ino 4 [ 85.688793][ T4518] loop1: detected capacity change from 0 to 1764 [ 85.774367][ T4518] ptrace attach of "./syz-executor exec"[4255] was attempted by "./syz-executor exec"[4518] [ 85.846207][ T4526] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 85.896551][ T4523] loop4: detected capacity change from 0 to 2048 [ 85.940567][ T4523] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 86.077897][ T4533] Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 86.517454][ T27] kauditd_printk_skb: 32 callbacks suppressed [ 86.517472][ T27] audit: type=1400 audit(1744749592.365:44): apparmor="DENIED" operation="change_hat" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=4537 comm="syz.0.61" [ 86.672409][ T7] cfg80211: failed to load regulatory.db [ 89.030589][ T27] audit: type=1326 audit(1744749594.875:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4558 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 89.124030][ T27] audit: type=1326 audit(1744749594.875:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4558 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 89.245941][ T27] audit: type=1326 audit(1744749594.875:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4558 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 89.329453][ T27] audit: type=1326 audit(1744749594.875:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4558 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 89.453142][ T27] audit: type=1326 audit(1744749594.875:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4558 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 89.511168][ T4565] input: syz0 as /devices/virtual/input/input8 [ 89.594114][ T4296] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 89.741688][ T27] audit: type=1326 audit(1744749594.875:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4558 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=301 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 90.133597][ T27] audit: type=1326 audit(1744749594.875:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4558 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 90.553838][ T27] audit: type=1326 audit(1744749594.875:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4558 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 90.584030][ T4296] usb 5-1: Using ep0 maxpacket: 8 [ 90.623905][ T27] audit: type=1326 audit(1744749594.875:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4558 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71aad8e169 code=0x7ffc0000 [ 90.624036][ T4296] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 90.761763][ T4571] loop3: detected capacity change from 0 to 8192 [ 90.800916][ T4296] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 90.855487][ T4571] loop3: p1 < > p2 p3 < p5 > p4 < > [ 90.861058][ T4571] loop3: partition table partially beyond EOD, truncated [ 90.867299][ T4296] usb 5-1: config 0 descriptor?? [ 90.883282][ T4580] netlink: 12 bytes leftover after parsing attributes in process `syz.1.69'. [ 90.923680][ T4571] loop3: p1 start 408832 is beyond EOD, truncated [ 90.933386][ T4571] loop3: p2 start 6684676 is beyond EOD, truncated [ 90.971354][ T4571] loop3: p4 start 1048576 is beyond EOD, truncated [ 90.981015][ T4571] loop3: p5 start 6684676 is beyond EOD, truncated [ 91.108248][ T4296] asix 5-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random [ 91.320528][ T4296] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 91.369884][ T4296] asix 5-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0 [ 91.434025][ T4296] asix: probe of 5-1:0.0 failed with error -32 [ 92.194602][ T4593] netlink: 'syz.4.65': attribute type 12 has an invalid length. [ 94.061412][ T4598] loop3: detected capacity change from 0 to 1024 [ 94.380867][ T7] usb 5-1: USB disconnect, device number 2 [ 95.790686][ T4611] input: syz0 as /devices/virtual/input/input9 [ 96.206548][ T4625] netlink: 12 bytes leftover after parsing attributes in process `syz.3.83'. [ 96.443848][ T4298] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 96.443908][ T4299] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 96.504390][ T126] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 96.643962][ T4299] usb 5-1: Using ep0 maxpacket: 32 [ 96.652470][ T4299] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 96.676615][ T4298] usb 1-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c [ 96.700737][ T4299] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 96.713971][ T126] usb 2-1: Using ep0 maxpacket: 8 [ 96.722407][ T126] usb 2-1: config index 0 descriptor too short (expected 5924, got 36) [ 96.743392][ T126] usb 2-1: config 250 has an invalid interface number: 228 but max is -1 [ 96.761018][ T4299] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 96.779633][ T126] usb 2-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 96.789770][ T4633] loop2: detected capacity change from 0 to 1024 [ 96.800992][ T4298] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.806820][ T4299] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.825305][ T4298] usb 1-1: config 0 descriptor?? [ 96.831340][ T126] usb 2-1: config 250 has no interface number 0 [ 96.866140][ T4299] usb 5-1: config 0 descriptor?? [ 96.878024][ T126] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 96.896181][ T4299] hub 5-1:0.0: USB hub found [ 96.902812][ T126] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 96.924289][ T126] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 96.948910][ T126] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 96.960457][ T126] usb 2-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 96.984181][ T126] usb 2-1: config 250 interface 228 has no altsetting 0 [ 96.996382][ T126] usb 2-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 97.005947][ T126] usb 2-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 97.017328][ T126] usb 2-1: Product: syz [ 97.021612][ T126] usb 2-1: SerialNumber: syz [ 97.059701][ T126] hub 2-1:250.228: bad descriptor, ignoring hub [ 97.069840][ T126] hub: probe of 2-1:250.228 failed with error -5 [ 97.089470][ T4299] hub 5-1:0.0: config failed, hub doesn't have any ports! (err -19) [ 97.117575][ T4481] hfsplus: b-tree write err: -5, ino 4 [ 97.125459][ T4635] capability: warning: `syz.3.90' uses deprecated v2 capabilities in a way that may be insecure [ 97.280310][ T126] usblp 2-1:250.228: usblp0: USB Bidirectional printer dev 2 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 97.443049][ T4644] loop2: detected capacity change from 0 to 512 [ 97.484724][ T4626] fuse: Bad value for 'fd' [ 97.515958][ T4299] hid-generic 0003:046D:C31C.0001: item fetching failed at offset 0/1 [ 97.533511][ T4644] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 97.545768][ T4299] hid-generic: probe of 0003:046D:C31C.0001 failed with error -22 [ 97.554401][ T4644] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 97.625106][ T4292] usb 2-1: USB disconnect, device number 2 [ 97.826601][ T4292] usblp0: removed [ 97.856072][ T126] usb 5-1: USB disconnect, device number 3 [ 98.554029][ T4298] pegasus: probe of 1-1:0.0 failed with error -71 [ 98.577135][ T4298] usb 1-1: USB disconnect, device number 2 [ 98.737928][ T4249] EXT4-fs (loop2): unmounting filesystem. [ 99.032443][ T27] kauditd_printk_skb: 12 callbacks suppressed [ 99.032482][ T27] audit: type=1326 audit(1744749604.875:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 99.150051][ T4659] loop2: detected capacity change from 0 to 128 [ 99.161978][ T4659] ext3: Unknown parameter 'dont_measure' [ 100.047871][ T27] audit: type=1326 audit(1744749605.445:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 100.047904][ T27] audit: type=1326 audit(1744749605.445:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 100.047929][ T27] audit: type=1326 audit(1744749605.445:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 100.047953][ T27] audit: type=1326 audit(1744749605.445:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 100.047977][ T27] audit: type=1326 audit(1744749605.445:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 100.048003][ T27] audit: type=1326 audit(1744749605.495:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 100.048029][ T27] audit: type=1326 audit(1744749605.515:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 100.048053][ T27] audit: type=1326 audit(1744749605.575:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 100.048077][ T27] audit: type=1326 audit(1744749605.575:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4651 comm="syz.3.93" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 101.196688][ T4298] usb 5-1: new full-speed USB device number 4 using dummy_hcd [ 101.309700][ T4678] loop3: detected capacity change from 0 to 256 [ 101.325842][ C1] vkms_vblank_simulate: vblank timer overrun [ 101.555670][ T4298] usb 5-1: not running at top speed; connect to a high speed hub [ 101.579839][ T4298] usb 5-1: config 95 has an invalid interface number: 1 but max is 0 [ 101.620532][ T4298] usb 5-1: config 95 has no interface number 0 [ 101.640643][ T4298] usb 5-1: config 95 interface 1 has no altsetting 0 [ 101.684904][ T4298] usb 5-1: New USB device found, idVendor=0763, idProduct=2030, bcdDevice=79.79 [ 101.707391][ T4678] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 101.731284][ T4298] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 101.742366][ T4298] usb 5-1: Product: syz [ 101.750177][ T4298] usb 5-1: Manufacturer: syz [ 101.759109][ T4298] usb 5-1: SerialNumber: syz [ 101.828490][ T4685] netlink: 'syz.2.101': attribute type 10 has an invalid length. [ 101.836483][ T4685] netlink: 40 bytes leftover after parsing attributes in process `syz.2.101'. [ 101.892197][ T4686] CUSE: unknown device info "ÿ" [ 101.897405][ T4686] CUSE: zero length info key specified [ 101.942427][ T4685] team0: Port device geneve0 added [ 102.691689][ T4298] usb 5-1: USB disconnect, device number 4 [ 102.861155][ T4685] syz.2.101 (4685) used greatest stack depth: 20088 bytes left [ 103.958529][ T4328] udevd[4328]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:95.1/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 104.613988][ T126] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 104.680012][ T4699] capability: warning: `syz.0.103' uses 32-bit capabilities (legacy support in use) [ 104.728466][ T4699] loop0: detected capacity change from 0 to 512 [ 104.781916][ T4701] ax25_connect(): syz.4.104 uses autobind, please contact jreuter@yaina.de [ 104.803852][ T126] usb 3-1: Using ep0 maxpacket: 8 [ 104.811501][ T126] usb 3-1: config index 0 descriptor too short (expected 5924, got 36) [ 104.891516][ T126] usb 3-1: config 250 has an invalid interface number: 228 but max is -1 [ 104.924125][ T4699] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 104.942980][ T4701] 8021q: adding VLAN 0 to HW filter on device bond0 [ 104.989555][ T4701] bond0: (slave rose0): Enslaving as an active interface with an up link [ 105.002706][ T126] usb 3-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 105.033183][ T4699] EXT4-fs (loop0): 1 truncate cleaned up [ 105.085377][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 105.088715][ T4699] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 105.126655][ T126] usb 3-1: config 250 has no interface number 0 [ 105.133507][ T126] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 105.191811][ T126] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 105.238337][ T126] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 105.352707][ T126] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 105.368845][ T4699] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 105.404008][ T126] usb 3-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 105.406773][ T4699] EXT4-fs (loop0): Remounting filesystem read-only [ 105.418088][ T126] usb 3-1: config 250 interface 228 has no altsetting 0 [ 105.438347][ T126] usb 3-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 105.462806][ T126] usb 3-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 105.484922][ T126] usb 3-1: Product: syz [ 105.502524][ T126] usb 3-1: SerialNumber: syz [ 105.557119][ T126] hub 3-1:250.228: bad descriptor, ignoring hub [ 105.574229][ T126] hub: probe of 3-1:250.228 failed with error -5 [ 105.713886][ T4344] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 105.754764][ T126] usblp 3-1:250.228: usblp0: USB Bidirectional printer dev 2 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 105.834010][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 105.874493][ T4718] loop1: detected capacity change from 0 to 1024 [ 105.907984][ T4344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 105.930407][ T4718] EXT4-fs: Ignoring removed nomblk_io_submit option [ 105.946769][ T4344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 105.975616][ T4344] usb 4-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00 [ 106.000672][ T4344] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 106.018761][ T4729] fuse: Bad value for 'fd' [ 106.027983][ T4718] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 106.206551][ T4733] loop0: detected capacity change from 0 to 1024 [ 106.218721][ T4733] hfsplus: unable to parse mount options [ 106.401485][ C1] usblp0: nonzero read bulk status received: -71 [ 106.420779][ T4344] usb 4-1: config 0 descriptor?? [ 106.737804][ T4294] usb 3-1: USB disconnect, device number 2 [ 106.959402][ T4294] usblp0: removed [ 106.965773][ T27] kauditd_printk_skb: 3 callbacks suppressed [ 106.965790][ T27] audit: type=1804 audit(1744749612.815:79): pid=4718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.109" name="/newroot/16/file1/file1" dev="loop1" ino=15 res=1 errno=0 [ 107.115703][ T27] audit: type=1804 audit(1744749612.855:80): pid=4737 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.109" name="/newroot/16/file1/file1" dev="loop1" ino=15 res=1 errno=0 [ 107.179967][ T27] audit: type=1804 audit(1744749612.865:81): pid=4718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.109" name="/newroot/16/file1/file1" dev="loop1" ino=15 res=1 errno=0 [ 107.202021][ T4742] device veth3 entered promiscuous mode [ 107.216116][ T4344] usbhid 4-1:0.0: can't add hid device: -71 [ 107.227857][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 107.244005][ T4344] usbhid: probe of 4-1:0.0 failed with error -71 [ 107.264562][ T4344] usb 4-1: USB disconnect, device number 2 [ 107.530098][ T4752] netlink: 'syz.4.115': attribute type 10 has an invalid length. [ 107.538087][ T4752] netlink: 40 bytes leftover after parsing attributes in process `syz.4.115'. [ 107.586706][ T4753] CUSE: unknown device info "ÿ" [ 107.591832][ T4753] CUSE: zero length info key specified [ 107.622238][ T4752] team0: Port device geneve0 added [ 108.343083][ T4752] syz.4.115 (4752) used greatest stack depth: 19800 bytes left [ 108.969002][ T4772] ax25_connect(): syz.4.119 uses autobind, please contact jreuter@yaina.de [ 108.978638][ T4772] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 109.139157][ T4776] loop2: detected capacity change from 0 to 512 [ 109.168142][ T4776] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 109.197875][ T4776] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 109.198579][ T4776] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.121: invalid indirect mapped block 2683928664 (level 1) [ 109.200571][ T4776] EXT4-fs (loop2): Remounting filesystem read-only [ 109.201064][ T4776] EXT4-fs (loop2): 1 truncate cleaned up [ 109.201088][ T4776] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 109.563443][ T4249] EXT4-fs (loop2): unmounting filesystem. [ 109.919574][ T4787] loop3: detected capacity change from 0 to 1024 [ 109.934666][ T4787] EXT4-fs: Ignoring removed nomblk_io_submit option [ 109.962026][ T4787] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 110.135166][ T4787] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 111.345947][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 112.792395][ T4813] CUSE: unknown device info "ÿ" [ 112.797517][ T4813] CUSE: zero length info key specified [ 112.819767][ T4821] netlink: 'syz.4.129': attribute type 10 has an invalid length. [ 112.827724][ T4821] netlink: 40 bytes leftover after parsing attributes in process `syz.4.129'. [ 113.193947][ T4298] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 113.343147][ T4829] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 113.384007][ T4298] usb 2-1: Using ep0 maxpacket: 8 [ 113.400330][ T4298] usb 2-1: config index 0 descriptor too short (expected 5924, got 36) [ 113.550076][ T4829] overlayfs: failed to set xattr on upper [ 113.568355][ T4829] overlayfs: ...falling back to index=off,metacopy=off. [ 113.574344][ T27] audit: type=1804 audit(1744749619.415:82): pid=4827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.131" name="/newroot/31/file0/bus/file1" dev="hugetlbfs" ino=35270 res=1 errno=0 [ 113.597496][ T4298] usb 2-1: config 250 has an invalid interface number: 228 but max is -1 [ 113.597641][ C1] vkms_vblank_simulate: vblank timer overrun [ 113.664204][ T4829] overlayfs: failed to resolve './file0': -2 [ 113.703471][ T4298] usb 2-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 113.741164][ T4298] usb 2-1: config 250 has no interface number 0 [ 113.761922][ T4298] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 113.787602][ T4298] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 113.810103][ T4298] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 113.828449][ T4845] ax25_connect(): syz.3.135 uses autobind, please contact jreuter@yaina.de [ 113.832463][ T4298] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 113.849349][ T4845] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 113.857943][ T4298] usb 2-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 113.872052][ T4298] usb 2-1: config 250 interface 228 has no altsetting 0 [ 113.887968][ T4298] usb 2-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 113.899038][ T4298] usb 2-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 113.912870][ T4298] usb 2-1: Product: syz [ 113.918704][ T4298] usb 2-1: SerialNumber: syz [ 113.954922][ T4298] hub 2-1:250.228: bad descriptor, ignoring hub [ 113.962787][ T4298] hub: probe of 2-1:250.228 failed with error -5 [ 114.216386][ T4298] usblp 2-1:250.228: usblp0: USB Bidirectional printer dev 3 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 114.370262][ T4819] fuse: Bad value for 'fd' [ 114.745945][ T4294] usb 2-1: USB disconnect, device number 3 [ 114.775542][ T4294] usblp0: removed [ 115.187590][ T4870] loop0: detected capacity change from 0 to 1764 [ 117.406540][ T4909] loop1: detected capacity change from 0 to 256 [ 117.468927][ T4909] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 117.706841][ T4912] ax25_connect(): syz.2.152 uses autobind, please contact jreuter@yaina.de [ 117.944162][ T4294] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 118.460205][ T4916] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 118.583895][ T4294] usb 1-1: Using ep0 maxpacket: 8 [ 118.599191][ T4294] usb 1-1: config index 0 descriptor too short (expected 5924, got 36) [ 118.628376][ T4294] usb 1-1: config 250 has an invalid interface number: 228 but max is -1 [ 118.643902][ T4294] usb 1-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 118.676386][ T4294] usb 1-1: config 250 has no interface number 0 [ 118.690480][ T4294] usb 1-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 118.711035][ T4294] usb 1-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 118.724142][ T4294] usb 1-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 118.742147][ T4294] usb 1-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 118.753283][ T4294] usb 1-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 118.778918][ T4294] usb 1-1: config 250 interface 228 has no altsetting 0 [ 118.825601][ T4294] usb 1-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 118.873921][ T4294] usb 1-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 118.911031][ T4928] loop2: detected capacity change from 0 to 1024 [ 118.951415][ T4294] usb 1-1: Product: syz [ 118.955710][ T4294] usb 1-1: SerialNumber: syz [ 118.976522][ T4930] netlink: 12 bytes leftover after parsing attributes in process `syz.4.158'. [ 119.012488][ T4294] hub 1-1:250.228: bad descriptor, ignoring hub [ 119.019150][ T4929] loop1: detected capacity change from 0 to 2048 [ 119.030052][ T4294] hub: probe of 1-1:250.228 failed with error -5 [ 119.097612][ T4929] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 119.130531][ T4928] hfsplus: xattr search failed [ 119.213455][ T4294] usblp 1-1:250.228: usblp0: USB Bidirectional printer dev 3 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 119.376835][ T4249] hfsplus: node 4:3 still has 1 user(s)! [ 120.798585][ T4953] loop3: detected capacity change from 0 to 256 [ 120.836413][ T4953] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 120.888233][ T4299] usb 1-1: USB disconnect, device number 3 [ 120.922200][ T4299] usblp0: removed [ 122.108480][ T4966] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 122.120418][ T4966] overlayfs: failed to set xattr on upper [ 122.150385][ T4966] overlayfs: ...falling back to index=off,metacopy=off. [ 122.161806][ T4966] overlayfs: maximum fs stacking depth exceeded [ 122.263602][ T4973] loop3: detected capacity change from 0 to 2048 [ 122.327082][ T27] audit: type=1804 audit(1744749628.175:83): pid=4961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.169" name="/newroot/37/file0/bus/file1" dev="hugetlbfs" ino=35683 res=1 errno=0 [ 122.369067][ T4980] binder: 4978:4980 ioctl c018620c 200000000340 returned -22 [ 122.404898][ T4973] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 122.431253][ T4979] ax25_connect(): syz.2.172 uses autobind, please contact jreuter@yaina.de [ 122.445524][ T4979] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 124.012362][ T4997] loop2: detected capacity change from 0 to 512 [ 124.194027][ T4997] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 124.199920][ T5004] loop3: detected capacity change from 0 to 128 [ 124.210840][ T5004] EXT4-fs: Ignoring removed nobh option [ 124.220319][ T4997] EXT4-fs (loop2): 1 truncate cleaned up [ 124.232725][ T5004] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 124.256450][ T5004] ext4 filesystem being mounted at /36/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 124.276491][ T4997] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 124.304209][ T4298] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 124.379466][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 124.504323][ T4992] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 124.552603][ T4298] usb 5-1: Using ep0 maxpacket: 8 [ 124.552734][ T4992] EXT4-fs (loop2): Remounting filesystem read-only [ 124.554467][ T4298] usb 5-1: config index 0 descriptor too short (expected 5924, got 36) [ 124.554495][ T4298] usb 5-1: config 250 has an invalid interface number: 228 but max is -1 [ 124.554518][ T4298] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 124.554541][ T4298] usb 5-1: config 250 has no interface number 0 [ 124.554570][ T4298] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 124.554591][ T4298] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 124.554610][ T4298] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 124.554629][ T4298] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 124.554647][ T4298] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 124.554667][ T4298] usb 5-1: config 250 interface 228 has no altsetting 0 [ 124.556453][ T4298] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 124.556476][ T4298] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 124.556492][ T4298] usb 5-1: Product: syz [ 124.556503][ T4298] usb 5-1: SerialNumber: syz [ 124.559647][ T4298] hub 5-1:250.228: bad descriptor, ignoring hub [ 124.559694][ T4298] hub: probe of 5-1:250.228 failed with error -5 [ 124.767872][ T4298] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 5 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 125.084226][ T7] usb 5-1: USB disconnect, device number 5 [ 125.100792][ T7] usblp0: removed [ 125.168858][ T5012] loop0: detected capacity change from 0 to 256 [ 125.188632][ T4249] EXT4-fs (loop2): unmounting filesystem. [ 125.240135][ T5012] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 125.332477][ T5014] loop3: detected capacity change from 0 to 512 [ 125.409716][ T5014] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 125.531033][ T5014] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 125.576600][ T5014] EXT4-fs (loop3): 1 truncate cleaned up [ 125.648743][ T5014] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 126.303441][ T27] audit: type=1800 audit(1744749632.145:84): pid=5014 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.185" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 126.832695][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 127.346675][ T5030] ax25_connect(): syz.0.188 uses autobind, please contact jreuter@yaina.de [ 127.403500][ T5036] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 127.549832][ T5041] loop2: detected capacity change from 0 to 1024 [ 127.665336][ T5041] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 127.734896][ T5041] EXT4-fs (loop2): orphan cleanup on readonly fs [ 127.761306][ T5041] EXT4-fs warning (device loop2): ext4_enable_quotas:7037: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 127.795327][ T5041] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 127.817805][ T5041] EXT4-fs error (device loop2): ext4_free_blocks:6210: comm syz.2.192: Freeing blocks not in datazone - block = 0, count = 4096 [ 127.880046][ T5041] EXT4-fs (loop2): Remounting filesystem read-only [ 127.909317][ T5041] EXT4-fs (loop2): 1 orphan inode deleted [ 127.923588][ T5041] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 128.009731][ T5055] loop4: detected capacity change from 0 to 512 [ 128.047498][ T4249] EXT4-fs (loop2): unmounting filesystem. [ 128.100625][ T5055] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 128.170724][ T27] audit: type=1326 audit(1744749634.015:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 128.171861][ T5057] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 128.200798][ T5057] IPv6: NLM_F_CREATE should be set when creating new route [ 128.208275][ T5057] IPv6: NLM_F_CREATE should be set when creating new route [ 128.416199][ T5055] EXT4-fs (loop4): 1 truncate cleaned up [ 128.749546][ T27] audit: type=1326 audit(1744749634.045:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 128.763882][ T5055] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 128.772101][ C1] vkms_vblank_simulate: vblank timer overrun [ 128.818257][ T5068] loop3: detected capacity change from 0 to 256 [ 128.855033][ T27] audit: type=1326 audit(1744749634.045:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 128.886823][ T5051] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 128.903353][ T5051] EXT4-fs (loop4): Remounting filesystem read-only [ 128.911840][ T27] audit: type=1326 audit(1744749634.045:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 128.949312][ T5068] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 128.983707][ T27] audit: type=1326 audit(1744749634.045:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 129.015514][ T27] audit: type=1326 audit(1744749634.045:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 129.113875][ T7] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 129.375749][ T27] audit: type=1326 audit(1744749634.045:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 129.624324][ T27] audit: type=1326 audit(1744749634.045:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 129.843886][ T7] usb 3-1: Using ep0 maxpacket: 8 [ 129.857556][ T7] usb 3-1: config index 0 descriptor too short (expected 5924, got 36) [ 129.870496][ T7] usb 3-1: config 250 has an invalid interface number: 228 but max is -1 [ 129.878999][ T7] usb 3-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 129.892523][ T7] usb 3-1: config 250 has no interface number 0 [ 129.898889][ T7] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 129.926163][ T7] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 129.981364][ T4259] EXT4-fs (loop4): unmounting filesystem. [ 130.009584][ T27] audit: type=1326 audit(1744749634.045:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 130.065140][ T27] audit: type=1326 audit(1744749634.045:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5060 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 130.065136][ T7] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 130.065174][ T7] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 130.226546][ T5078] loop0: detected capacity change from 0 to 1024 [ 130.257987][ T7] usb 3-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 130.284218][ T7] usb 3-1: config 250 interface 228 has no altsetting 0 [ 130.340261][ T7] usb 3-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 130.380326][ T7] usb 3-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 130.403979][ T7] usb 3-1: Product: syz [ 130.408205][ T7] usb 3-1: SerialNumber: syz [ 130.465500][ T7] hub 3-1:250.228: bad descriptor, ignoring hub [ 130.471873][ T7] hub: probe of 3-1:250.228 failed with error -5 [ 130.645014][ T7] usblp 3-1:250.228: usblp0: USB Bidirectional printer dev 3 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 131.128672][ C1] usblp0: nonzero read bulk status received: -71 [ 131.745196][ T5099] ax25_connect(): syz.3.206 uses autobind, please contact jreuter@yaina.de [ 131.759076][ T5099] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 131.834267][ T4299] usb 3-1: USB disconnect, device number 3 [ 131.859222][ T4299] usblp0: removed [ 131.863585][ T5106] netlink: 12 bytes leftover after parsing attributes in process `syz.1.209'. [ 132.030995][ T5108] loop3: detected capacity change from 0 to 512 [ 132.100662][ T5108] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 18)! [ 132.123911][ T5108] EXT4-fs (loop3): group descriptors corrupted! [ 132.216410][ T5110] loop1: detected capacity change from 0 to 136 [ 132.306717][ T4573] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 132.513901][ T4296] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 132.565715][ T5118] loop1: detected capacity change from 0 to 1024 [ 132.599503][ T5114] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 132.637029][ T5114] overlayfs: failed to set xattr on upper [ 132.669093][ T5114] overlayfs: ...falling back to index=off,metacopy=off. [ 132.735408][ T4296] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 132.746663][ T1274] aoe: packet could not be sent on bond0. consider increasing tx_queue_len [ 132.758091][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.764498][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.787799][ T5114] overlayfs: failed to resolve './file0': -2 [ 132.813135][ T4296] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 132.881437][ T4296] usb 4-1: config 0 descriptor?? [ 132.908140][ T4296] cp210x 4-1:0.0: cp210x converter detected [ 133.115574][ T4296] usb 4-1: cp210x converter now attached to ttyUSB0 [ 134.480886][ T4344] usb 4-1: USB disconnect, device number 3 [ 134.483826][ T7] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 134.506110][ T4344] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 134.551362][ T4344] cp210x 4-1:0.0: device disconnected [ 134.578909][ T5140] loop2: detected capacity change from 0 to 2048 [ 134.657937][ T5140] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 134.683945][ T7] usb 5-1: Using ep0 maxpacket: 32 [ 134.689929][ T7] usb 5-1: too many configurations: 31, using maximum allowed: 8 [ 134.736278][ T7] usb 5-1: unable to read config index 0 descriptor/start: -61 [ 134.743149][ T5144] ax25_connect(): syz.1.221 uses autobind, please contact jreuter@yaina.de [ 134.760392][ T5144] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 134.783438][ T7] usb 5-1: can't read configurations, error -61 [ 134.842392][ T5146] netlink: 12 bytes leftover after parsing attributes in process `syz.0.222'. [ 134.933865][ T7] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 135.153853][ T7] usb 5-1: Using ep0 maxpacket: 32 [ 135.161475][ T7] usb 5-1: too many configurations: 31, using maximum allowed: 8 [ 135.200467][ T7] usb 5-1: unable to read config index 0 descriptor/start: -61 [ 135.208191][ T7] usb 5-1: can't read configurations, error -61 [ 135.227395][ T7] usb usb5-port1: attempt power cycle [ 135.379774][ T5155] loop3: detected capacity change from 0 to 1024 [ 135.387280][ T4344] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 135.591521][ T5157] loop3: detected capacity change from 0 to 512 [ 135.593822][ T4344] usb 3-1: Using ep0 maxpacket: 8 [ 135.615381][ T4344] usb 3-1: config index 0 descriptor too short (expected 5924, got 36) [ 135.630517][ T4344] usb 3-1: config 250 has an invalid interface number: 228 but max is -1 [ 135.639885][ T4344] usb 3-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 135.649240][ T5159] loop1: detected capacity change from 0 to 2048 [ 135.656007][ T4344] usb 3-1: config 250 has no interface number 0 [ 135.656341][ T7] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 135.662714][ T4344] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 135.686050][ T5157] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 135.691984][ T4344] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 135.716399][ T4344] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 135.725071][ T7] usb 5-1: Using ep0 maxpacket: 32 [ 135.729161][ T4344] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 135.745556][ T4344] usb 3-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 135.749920][ T7] usb 5-1: too many configurations: 31, using maximum allowed: 8 [ 135.764786][ T5157] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128 [ 135.784275][ T5159] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 135.789417][ T7] usb 5-1: unable to read config index 0 descriptor/start: -61 [ 135.795100][ T5159] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 135.810855][ T7] usb 5-1: can't read configurations, error -61 [ 135.818513][ T4344] usb 3-1: config 250 interface 228 has no altsetting 0 [ 135.828186][ T4344] usb 3-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 135.848266][ T4344] usb 3-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 135.871659][ T4344] usb 3-1: Product: syz [ 135.883487][ T4344] usb 3-1: SerialNumber: syz [ 135.896487][ T4344] hub 3-1:250.228: bad descriptor, ignoring hub [ 135.902480][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 135.939986][ T4344] hub: probe of 3-1:250.228 failed with error -5 [ 135.953860][ T7] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 135.989925][ T7] usb 5-1: Using ep0 maxpacket: 32 [ 135.996164][ T7] usb 5-1: too many configurations: 31, using maximum allowed: 8 [ 136.017602][ T7] usb 5-1: unable to read config index 0 descriptor/start: -61 [ 136.031198][ T7] usb 5-1: can't read configurations, error -61 [ 136.042219][ T7] usb usb5-port1: unable to enumerate USB device [ 136.177480][ T4344] usblp 3-1:250.228: usblp0: USB Bidirectional printer dev 4 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 136.330090][ T5172] loop0: detected capacity change from 0 to 2048 [ 136.409730][ T5172] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 136.493337][ T5167] overlayfs: failed to resolve './file0': -2 [ 136.614234][ T7] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 136.806115][ T7] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024 [ 136.814556][ T5180] loop0: detected capacity change from 0 to 2048 [ 136.834399][ T7] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 136.844057][ T7] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 136.852140][ T7] usb 5-1: SerialNumber: syz [ 136.862824][ T5170] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 136.906133][ T4573] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 136.972814][ T5180] loop0: detected capacity change from 0 to 1024 [ 137.079155][ T5170] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 137.473073][ T5186] netlink: 12 bytes leftover after parsing attributes in process `syz.3.236'. [ 137.528517][ T7] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.4-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 137.608195][ T5188] loop0: detected capacity change from 0 to 256 [ 137.705687][ T5188] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 138.758773][ T5193] ax25_connect(): syz.1.239 uses autobind, please contact jreuter@yaina.de [ 138.775114][ T5193] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 138.804401][ T5197] loop0: detected capacity change from 0 to 512 [ 138.902289][ T5197] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 138.968849][ T5197] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 139.566646][ T4298] usb 5-1: USB disconnect, device number 10 [ 139.582782][ T4298] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.4-1, CDC Ethernet Device [ 140.583872][ T4298] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 141.771285][ T4344] usb 3-1: USB disconnect, device number 4 [ 141.794918][ T4344] usblp0: removed [ 141.973888][ T4298] usb 4-1: Using ep0 maxpacket: 32 [ 141.981220][ T4298] usb 4-1: too many configurations: 31, using maximum allowed: 8 [ 142.016027][ T5230] loop4: detected capacity change from 0 to 512 [ 142.031901][ T4298] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 142.070824][ T4298] usb 4-1: can't read configurations, error -61 [ 142.070920][ T5230] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 142.188034][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 142.209796][ T5230] EXT4-fs (loop4): 1 truncate cleaned up [ 142.228762][ T5230] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 142.273908][ T4298] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 142.407977][ T5230] EXT4-fs error (device loop4): ext4_check_dx_root:2266: inode #2: comm syz.4.245: Corrupt dir, invalid name for '.', running e2fsck is recommended [ 142.503874][ T4298] usb 4-1: Using ep0 maxpacket: 32 [ 142.509992][ T4298] usb 4-1: too many configurations: 31, using maximum allowed: 8 [ 142.547538][ T4298] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 142.561067][ T4298] usb 4-1: can't read configurations, error -61 [ 142.587934][ T4298] usb usb4-port1: attempt power cycle [ 142.748679][ T4259] EXT4-fs (loop4): unmounting filesystem. [ 142.767825][ T5244] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 142.777953][ T5233] loop2: detected capacity change from 0 to 1024 [ 143.023852][ T4298] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 143.093877][ T5244] overlayfs: failed to set xattr on upper [ 143.138095][ T5244] overlayfs: ...falling back to index=off,metacopy=off. [ 143.207869][ T5244] overlayfs: failed to resolve './file0': -2 [ 143.285571][ T27] kauditd_printk_skb: 13 callbacks suppressed [ 143.285589][ T27] audit: type=1804 audit(1744749649.135:108): pid=5245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.247" name="/newroot/54/file0/bus/file1" dev="hugetlbfs" ino=37241 res=1 errno=0 [ 143.315143][ T4298] usb 4-1: device not accepting address 6, error -71 [ 144.033265][ T5268] loop0: detected capacity change from 0 to 256 [ 144.112116][ T5269] netlink: 12 bytes leftover after parsing attributes in process `syz.4.250'. [ 144.159525][ T5268] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 145.120070][ T5275] input: syz0 as /devices/virtual/input/input10 [ 145.305768][ T5279] device ip6tnl1 entered promiscuous mode [ 145.328681][ T5279] team0: Device ip6tnl1 is of different type [ 145.554515][ T4298] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 145.634125][ T4292] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 145.753828][ T4298] usb 4-1: Using ep0 maxpacket: 32 [ 145.768271][ T4298] usb 4-1: config 0 has an invalid interface number: 6 but max is 0 [ 145.802161][ T4298] usb 4-1: config 0 has no interface number 0 [ 145.840268][ T4298] usb 4-1: New USB device found, idVendor=0421, idProduct=0108, bcdDevice=ca.6e [ 145.865316][ T4298] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 145.873832][ T4292] usb 2-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30 [ 145.903943][ T4292] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 145.925037][ T4298] usb 4-1: Product: syz [ 145.940926][ T4298] usb 4-1: Manufacturer: syz [ 145.967098][ T4292] usb 2-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255 [ 145.980400][ T4298] usb 4-1: SerialNumber: syz [ 146.005407][ T4298] usb 4-1: config 0 descriptor?? [ 146.028861][ T4292] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 146.042151][ T4298] usb 4-1: bad CDC descriptors [ 146.060021][ T4298] usb 4-1: bad CDC descriptors [ 146.067278][ T4292] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 146.086538][ T4298] cdc_acm 4-1:0.6: Zero length descriptor references [ 146.093293][ T4298] cdc_acm: probe of 4-1:0.6 failed with error -22 [ 146.110836][ T4292] usb 2-1: SerialNumber: syz [ 146.344721][ T5294] Bluetooth: MGMT ver 1.22 [ 146.640102][ T4292] cdc_acm 2-1:1.0: ttyACM0: USB ACM device [ 146.783979][ T4292] usb 2-1: USB disconnect, device number 4 [ 148.165211][ T5298] sched: RT throttling activated [ 148.212210][ T4297] usb 4-1: USB disconnect, device number 8 [ 148.620652][ T5312] loop0: detected capacity change from 0 to 256 [ 148.639706][ T5309] loop4: detected capacity change from 0 to 256 [ 148.647013][ T5309] exfat: Bad value for 'uid' [ 148.679560][ T5312] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 148.703886][ T4296] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 148.786453][ T5316] loop4: detected capacity change from 0 to 256 [ 148.958300][ T4296] usb 3-1: Using ep0 maxpacket: 32 [ 148.968481][ T4296] usb 3-1: too many configurations: 31, using maximum allowed: 8 [ 148.976371][ T27] audit: type=1800 audit(1744749654.815:109): pid=5312 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.264" name="file1" dev="loop0" ino=1048612 res=0 errno=0 [ 148.989331][ T5312] exFAT-fs (loop0): hint_cluster is invalid (17) [ 149.002576][ T5316] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 149.025783][ T4296] usb 3-1: unable to read config index 0 descriptor/start: -61 [ 149.044051][ T4296] usb 3-1: can't read configurations, error -61 [ 149.213836][ T4296] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 149.228283][ T27] audit: type=1800 audit(1744749655.075:110): pid=5320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.264" name="file1" dev="loop0" ino=1048612 res=0 errno=0 [ 150.544351][ T5340] netlink: 'syz.3.273': attribute type 12 has an invalid length. [ 150.601826][ T5343] loop0: detected capacity change from 0 to 128 [ 150.895462][ T5350] loop1: detected capacity change from 0 to 16 [ 150.940325][ T5350] erofs: (device loop1): mounted with root inode @ nid 36. [ 151.009915][ T5350] erofs: (device loop1): erofs_find_target_block: corrupted dir block 0 @ nid 36 [ 151.084442][ T5353] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 36 [ 151.202914][ T5357] netlink: 12 bytes leftover after parsing attributes in process `syz.2.280'. [ 151.222804][ T5360] loop0: detected capacity change from 0 to 128 [ 151.255568][ T5360] EXT4-fs: Ignoring removed nobh option [ 151.515092][ T5360] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 151.557895][ T5363] ax25_connect(): syz.3.279 uses autobind, please contact jreuter@yaina.de [ 151.568067][ T5363] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 151.598713][ T5360] ext4 filesystem being mounted at /62/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 152.877618][ T5381] loop4: detected capacity change from 0 to 512 [ 152.911678][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 152.945190][ T5381] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 153.056661][ T5381] EXT4-fs (loop4): 1 truncate cleaned up [ 153.190538][ T5381] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 153.257582][ T27] audit: type=1800 audit(1744749659.105:111): pid=5381 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.287" name="bus" dev="loop4" ino=18 res=0 errno=0 [ 153.713937][ T4329] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 153.739523][ T4259] EXT4-fs (loop4): unmounting filesystem. [ 153.785606][ T5398] netlink: 12 bytes leftover after parsing attributes in process `syz.0.293'. [ 153.923856][ T4329] usb 3-1: Using ep0 maxpacket: 8 [ 153.935802][ T4329] usb 3-1: config index 0 descriptor too short (expected 5924, got 36) [ 153.971304][ T4329] usb 3-1: config 250 has an invalid interface number: 228 but max is -1 [ 154.003473][ T4329] usb 3-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 154.030801][ T4329] usb 3-1: config 250 has no interface number 0 [ 154.052541][ T4329] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 154.085878][ T4329] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 154.111821][ T4329] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 154.160252][ T4329] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 154.188444][ T4329] usb 3-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 154.211309][ T4329] usb 3-1: config 250 interface 228 has no altsetting 0 [ 154.240863][ T4329] usb 3-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 154.279568][ T4329] usb 3-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 154.298361][ T4329] usb 3-1: Product: syz [ 154.308478][ T4329] usb 3-1: SerialNumber: syz [ 154.332438][ T4329] hub 3-1:250.228: bad descriptor, ignoring hub [ 154.342537][ T5403] loop1: detected capacity change from 0 to 2048 [ 154.353120][ T4329] hub: probe of 3-1:250.228 failed with error -5 [ 154.385510][ T5403] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found! [ 154.505563][ T5403] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 154.531282][ T4329] usblp 3-1:250.228: usblp0: USB Bidirectional printer dev 7 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 154.637199][ T5405] netlink: 12 bytes leftover after parsing attributes in process `syz.4.295'. [ 155.010157][ T5412] loop0: detected capacity change from 0 to 512 [ 155.051628][ T5412] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 18)! [ 155.078333][ T5412] EXT4-fs (loop0): group descriptors corrupted! [ 155.440374][ T4297] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 155.583326][ T5424] netlink: 12 bytes leftover after parsing attributes in process `syz.4.301'. [ 155.638948][ T4297] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 155.668610][ T4297] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 155.730078][ T4297] usb 1-1: config 0 descriptor?? [ 155.748290][ T4297] cp210x 1-1:0.0: cp210x converter detected [ 155.792887][ T5427] loop1: detected capacity change from 0 to 512 [ 155.849520][ T5427] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 155.866625][ T5427] EXT4-fs (loop1): 1 truncate cleaned up [ 155.877799][ T5427] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 155.952980][ T4297] usb 1-1: cp210x converter now attached to ttyUSB0 [ 155.988867][ T5427] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 156.068950][ T5427] EXT4-fs (loop1): Remounting filesystem read-only [ 156.259658][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 156.285695][ T7] usb 1-1: USB disconnect, device number 4 [ 156.353961][ T7] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 156.400751][ T7] cp210x 1-1:0.0: device disconnected [ 156.416279][ T5433] loop1: detected capacity change from 0 to 512 [ 156.514461][ T5433] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.304: corrupted inode contents [ 156.540307][ T5433] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #16: comm syz.1.304: mark_inode_dirty error [ 156.554637][ T5433] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.304: corrupted inode contents [ 156.605560][ T5433] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.304: mark_inode_dirty error [ 156.667551][ T5433] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.304: corrupted inode contents [ 156.690529][ T5433] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 156.701120][ T5433] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.304: corrupted inode contents [ 156.724827][ T5433] EXT4-fs error (device loop1): ext4_truncate:4311: inode #16: comm syz.1.304: mark_inode_dirty error [ 156.740570][ T5433] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 156.902028][ T5433] EXT4-fs (loop1): 1 truncate cleaned up [ 156.924636][ T4302] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 156.943959][ T5433] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 156.979419][ T4302] EXT4-fs error (device loop1): ext4_release_dquot:6825: comm kworker/u4:5: Failed to release dquot type 1 [ 156.992786][ T5433] ext4 filesystem being mounted at /59/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.041015][ T5433] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 157.173473][ T5433] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 157.211945][ T5433] EXT4-fs error (device loop1): ext4_acquire_dquot:6802: comm syz.1.304: Failed to acquire dquot type 1 [ 157.259186][ T5445] loop0: detected capacity change from 0 to 512 [ 157.280204][ T5445] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 157.291779][ T5446] netlink: 12 bytes leftover after parsing attributes in process `syz.3.308'. [ 157.321398][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 157.351308][ T5445] EXT4-fs (loop0): 1 truncate cleaned up [ 157.362618][ T5445] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 157.469159][ T5449] loop1: detected capacity change from 0 to 128 [ 157.484681][ T5449] EXT4-fs: Ignoring removed nobh option [ 157.516796][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 157.540022][ T5449] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 157.599329][ T5449] ext4 filesystem being mounted at /60/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 157.800782][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 158.299722][ T5457] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'. [ 158.339840][ T5462] loop3: detected capacity change from 0 to 512 [ 158.430521][ T5462] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 158.497814][ T5462] EXT4-fs (loop3): 1 truncate cleaned up [ 158.511430][ T5462] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 158.582132][ T5468] netlink: 12 bytes leftover after parsing attributes in process `syz.0.315'. [ 158.596647][ T5462] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 158.624326][ T5462] EXT4-fs (loop3): Remounting filesystem read-only [ 158.846702][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 159.166944][ T4296] usb 3-1: USB disconnect, device number 7 [ 159.184913][ T4296] usblp0: removed [ 159.212799][ T5476] loop1: detected capacity change from 0 to 512 [ 159.317851][ T5476] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 18)! [ 159.383491][ T5476] EXT4-fs (loop1): group descriptors corrupted! [ 159.613234][ T5475] mkiss: ax0: crc mode is auto. [ 159.665016][ T5484] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 159.672228][ T5484] overlayfs: failed to set xattr on upper [ 159.730222][ T5484] overlayfs: ...falling back to index=off,metacopy=off. [ 159.749749][ T5484] overlayfs: failed to resolve './file0': -2 [ 159.759364][ T27] audit: type=1804 audit(1744749665.605:112): pid=5489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.320" name="/newroot/62/file0/bus/file1" dev="hugetlbfs" ino=37786 res=1 errno=0 [ 159.783921][ T4296] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 159.961202][ T5496] netlink: 12 bytes leftover after parsing attributes in process `syz.4.324'. [ 159.975531][ T4296] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 160.007694][ T4296] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 160.067965][ T4296] usb 2-1: config 0 descriptor?? [ 160.108943][ T4296] cp210x 2-1:0.0: cp210x converter detected [ 160.302089][ T4296] usb 2-1: cp210x converter now attached to ttyUSB0 [ 160.607628][ T4298] usb 2-1: USB disconnect, device number 5 [ 160.633316][ T5505] loop0: detected capacity change from 0 to 128 [ 160.660698][ T4298] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 160.732891][ T5505] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 160.754397][ T5505] ext4 filesystem being mounted at /73/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 160.771879][ T4298] cp210x 2-1:0.0: device disconnected [ 160.783608][ T5510] netlink: 12 bytes leftover after parsing attributes in process `syz.3.327'. [ 160.952329][ T5512] netlink: 12 bytes leftover after parsing attributes in process `syz.4.328'. [ 161.004929][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 161.413846][ T4294] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 161.603939][ T4294] usb 4-1: Using ep0 maxpacket: 8 [ 161.611356][ T4294] usb 4-1: config index 0 descriptor too short (expected 5924, got 36) [ 161.624012][ T4294] usb 4-1: config 250 has an invalid interface number: 228 but max is -1 [ 161.632677][ T4294] usb 4-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 161.642263][ T4294] usb 4-1: config 250 has no interface number 0 [ 161.648997][ T4294] usb 4-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 161.751099][ T4294] usb 4-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 161.811016][ T4294] usb 4-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 161.888057][ T5533] mkiss: ax0: crc mode is auto. [ 161.909704][ T4294] usb 4-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 161.924646][ T4294] usb 4-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 161.938501][ T4294] usb 4-1: config 250 interface 228 has no altsetting 0 [ 161.957226][ T5538] netlink: 12 bytes leftover after parsing attributes in process `syz.2.338'. [ 161.970226][ T4294] usb 4-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 161.979984][ T4294] usb 4-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 161.994488][ T4294] usb 4-1: Product: syz [ 162.007437][ T4294] usb 4-1: SerialNumber: syz [ 162.071780][ T4294] hub 4-1:250.228: bad descriptor, ignoring hub [ 162.093964][ T4294] hub: probe of 4-1:250.228 failed with error -5 [ 162.255274][ T4294] usblp 4-1:250.228: usblp0: USB Bidirectional printer dev 9 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 162.511304][ T5542] fuse: Bad value for 'fd' [ 162.564808][ C0] usblp0: nonzero read bulk status received: -71 [ 162.615286][ T7] usb 4-1: USB disconnect, device number 9 [ 162.638834][ T7] usblp0: removed [ 162.945056][ T5549] loop0: detected capacity change from 0 to 512 [ 162.975933][ T5549] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 163.001859][ T5550] netlink: 12 bytes leftover after parsing attributes in process `syz.1.341'. [ 163.012389][ T5549] EXT4-fs (loop0): 1 truncate cleaned up [ 163.020974][ T5549] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 163.123853][ T4344] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 163.162278][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 163.313832][ T4344] usb 3-1: Using ep0 maxpacket: 16 [ 163.324938][ T4344] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 163.367776][ T4344] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 163.390927][ T5556] loop4: detected capacity change from 0 to 512 [ 163.422912][ T5556] EXT4-fs: Ignoring removed nobh option [ 163.428868][ T4344] usb 3-1: config 0 interface 0 has no altsetting 0 [ 163.447279][ T5557] loop0: detected capacity change from 0 to 2048 [ 163.454850][ T4344] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 163.482907][ T4344] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 163.497605][ T5556] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.346: invalid indirect mapped block 256 (level 2) [ 163.520249][ T4344] usb 3-1: config 0 descriptor?? [ 163.532515][ T5557] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 163.551161][ T5556] EXT4-fs (loop4): 2 truncates cleaned up [ 163.576718][ T5556] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 163.584316][ T5557] EXT4-fs error (device loop0): ext4_find_extent:936: inode #2: comm syz.0.345: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 163.602997][ T27] audit: type=1800 audit(1744749669.435:113): pid=5556 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.346" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 163.657490][ T5557] EXT4-fs (loop0): Remounting filesystem read-only [ 163.690846][ T5562] EXT4-fs error (device loop0): ext4_find_extent:936: inode #2: comm syz.0.345: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 163.763986][ T5562] EXT4-fs (loop0): Remounting filesystem read-only [ 163.825517][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 163.956943][ T4344] hid (null): unknown global tag 0xe [ 164.174206][ T4344] usb 3-1: USB disconnect, device number 8 [ 164.208787][ T5572] loop1: detected capacity change from 0 to 2048 [ 164.237115][ T5573] netlink: 12 bytes leftover after parsing attributes in process `syz.3.349'. [ 164.301036][ T5572] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 164.499440][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 166.314999][ T5584] netlink: 24 bytes leftover after parsing attributes in process `syz.1.353'. [ 166.414002][ T4296] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 166.431165][ T4259] EXT4-fs (loop4): unmounting filesystem. [ 166.623858][ T4296] usb 1-1: Using ep0 maxpacket: 32 [ 166.631340][ T4296] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 166.682783][ T4296] usb 1-1: config 0 has no interfaces? [ 166.702610][ T5592] mkiss: ax0: crc mode is auto. [ 166.713479][ T4296] usb 1-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=ac.b4 [ 166.723855][ T4296] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 166.731971][ T4296] usb 1-1: Product: syz [ 166.736459][ T4296] usb 1-1: Manufacturer: syz [ 166.741393][ T4296] usb 1-1: SerialNumber: syz [ 166.748037][ T4296] usb 1-1: config 0 descriptor?? [ 166.843837][ T4298] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 166.973442][ T5597] netlink: 12 bytes leftover after parsing attributes in process `syz.4.357'. [ 167.043880][ T4298] usb 4-1: Using ep0 maxpacket: 8 [ 167.053534][ T4298] usb 4-1: config index 0 descriptor too short (expected 5924, got 36) [ 167.110782][ T4298] usb 4-1: config 250 has an invalid interface number: 228 but max is -1 [ 167.150451][ T4298] usb 4-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 167.232197][ T4298] usb 4-1: config 250 has no interface number 0 [ 167.261458][ T4298] usb 4-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 167.327808][ T4298] usb 4-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 167.440502][ T4298] usb 4-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 167.521349][ T4298] usb 4-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 167.574869][ T5600] loop1: detected capacity change from 0 to 256 [ 167.611812][ T5600] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 167.653297][ T4298] usb 4-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 167.742741][ T4298] usb 4-1: config 250 interface 228 has no altsetting 0 [ 167.858356][ T4298] usb 4-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 167.932925][ T4298] usb 4-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 168.006315][ T4329] usb 1-1: USB disconnect, device number 5 [ 168.074233][ T4298] usb 4-1: Product: syz [ 168.078458][ T4298] usb 4-1: SerialNumber: syz [ 168.187318][ T4298] hub 4-1:250.228: bad descriptor, ignoring hub [ 168.193643][ T4298] hub: probe of 4-1:250.228 failed with error -5 [ 168.291791][ T5614] input: syz0 as /devices/virtual/input/input12 [ 168.313038][ T4298] usblp 4-1:250.228: usblp0: USB Bidirectional printer dev 10 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 168.333107][ T5615] loop4: detected capacity change from 0 to 128 [ 168.344913][ T5611] loop1: detected capacity change from 0 to 512 [ 168.414289][ T4296] kernel read not supported for file /vcs (pid: 4296 comm: kworker/0:6) [ 168.460618][ T5611] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 168.461288][ T5615] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 168.488209][ T5615] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 168.501432][ T5611] EXT4-fs (loop1): 1 truncate cleaned up [ 168.512052][ T5611] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 168.571201][ T5619] fuse: Bad value for 'fd' [ 168.583278][ T5611] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 168.604477][ C1] usblp0: nonzero read bulk status received: -71 [ 168.611344][ T4329] usb 4-1: USB disconnect, device number 10 [ 168.622997][ T5615] EXT4-fs (loop4): shut down requested (2) [ 168.648593][ T4329] usblp0: removed [ 168.661240][ T5621] loop0: detected capacity change from 0 to 1024 [ 168.668145][ T5611] EXT4-fs (loop1): Remounting filesystem read-only [ 168.753327][ T4259] EXT4-fs (loop4): unmounting filesystem. [ 168.800161][ T5621] hfsplus: xattr search failed [ 168.939343][ T5625] netlink: 12 bytes leftover after parsing attributes in process `syz.2.365'. [ 168.972036][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 169.394070][ T5636] netlink: 12 bytes leftover after parsing attributes in process `syz.0.369'. [ 170.753593][ T5653] loop2: detected capacity change from 0 to 512 [ 170.760779][ T5653] EXT4-fs: Ignoring removed mblk_io_submit option [ 171.133939][ T4294] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 171.470427][ T4294] usb 2-1: Using ep0 maxpacket: 32 [ 171.603581][ T5653] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 171.616176][ T4294] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 171.626616][ T4294] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 171.646573][ T4294] usb 2-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=ac.b4 [ 171.656182][ T4294] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 171.664316][ T4294] usb 2-1: Product: syz [ 171.668767][ T4294] usb 2-1: Manufacturer: syz [ 171.674117][ T4294] usb 2-1: SerialNumber: syz [ 171.679147][ T5651] mkiss: ax0: crc mode is auto. [ 171.700119][ T4294] usb 2-1: config 0 descriptor?? [ 171.902559][ T5662] loop3: detected capacity change from 0 to 512 [ 171.935591][ T4249] EXT4-fs (loop2): unmounting filesystem. [ 171.984508][ T5662] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 172.000276][ T5662] EXT4-fs (loop3): 1 truncate cleaned up [ 172.026818][ T5662] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 172.173939][ T5662] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 172.197066][ T5662] EXT4-fs (loop3): Remounting filesystem read-only [ 172.389315][ T5675] loop0: detected capacity change from 0 to 512 [ 172.428004][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 172.476873][ T5675] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #16: comm syz.0.383: corrupted inode contents [ 172.529518][ T5675] EXT4-fs error (device loop0): ext4_dirty_inode:6089: inode #16: comm syz.0.383: mark_inode_dirty error [ 172.563280][ T5675] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #16: comm syz.0.383: corrupted inode contents [ 172.582136][ T5675] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm syz.0.383: mark_inode_dirty error [ 172.584061][ T4296] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 172.611117][ T5675] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #16: comm syz.0.383: corrupted inode contents [ 172.629508][ T5675] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 172.640426][ T5675] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #16: comm syz.0.383: corrupted inode contents [ 172.657312][ T5675] EXT4-fs error (device loop0): ext4_truncate:4311: inode #16: comm syz.0.383: mark_inode_dirty error [ 172.670967][ T5675] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 172.698689][ T5675] EXT4-fs (loop0): 1 truncate cleaned up [ 172.707238][ T5675] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 172.719260][ T4603] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 172.732058][ T5675] ext4 filesystem being mounted at /88/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 172.748343][ T4603] EXT4-fs error (device loop0): ext4_release_dquot:6825: comm kworker/u4:12: Failed to release dquot type 1 [ 172.813838][ T4296] usb 5-1: Using ep0 maxpacket: 8 [ 172.816116][ T5675] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 172.831224][ T4296] usb 5-1: config index 0 descriptor too short (expected 5924, got 36) [ 172.840020][ T4296] usb 5-1: config 250 has an invalid interface number: 228 but max is -1 [ 172.849147][ T4296] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 172.858515][ T4296] usb 5-1: config 250 has no interface number 0 [ 172.865015][ T4296] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 172.876938][ T4296] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 172.887601][ T4296] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 172.899626][ T4296] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 172.910561][ T4296] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 172.924338][ T4296] usb 5-1: config 250 interface 228 has no altsetting 0 [ 172.932116][ T5675] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 172.942461][ T5675] EXT4-fs error (device loop0): ext4_acquire_dquot:6802: comm syz.0.383: Failed to acquire dquot type 1 [ 172.955100][ T4296] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 172.964351][ T4296] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 172.984090][ T4296] usb 5-1: Product: syz [ 172.988405][ T4296] usb 5-1: SerialNumber: syz [ 173.006971][ T4296] hub 5-1:250.228: bad descriptor, ignoring hub [ 173.022934][ T4296] hub: probe of 5-1:250.228 failed with error -5 [ 173.100215][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 173.129120][ T5679] overlayfs: missing 'lowerdir' [ 173.169462][ T5679] netlink: 24 bytes leftover after parsing attributes in process `syz.2.384'. [ 173.202429][ T4296] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 11 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 173.390912][ T5689] loop0: detected capacity change from 0 to 1024 [ 173.459193][ T27] audit: type=1800 audit(1744749679.305:114): pid=5689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.388" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 173.480105][ T5690] fuse: Bad value for 'fd' [ 173.494874][ C0] usblp0: nonzero read bulk status received: -71 [ 173.534363][ T4296] usb 5-1: USB disconnect, device number 11 [ 173.559698][ T4296] usblp0: removed [ 173.638742][ T4344] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 173.647660][ T4294] usb 2-1: USB disconnect, device number 6 [ 173.843845][ T4344] usb 4-1: Using ep0 maxpacket: 8 [ 173.851870][ T4344] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 3 [ 173.870841][ T5697] loop0: detected capacity change from 0 to 1024 [ 173.883485][ T5697] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only. [ 173.896179][ T4344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 173.928823][ T4344] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 173.940750][ T4344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11 [ 173.952870][ T4344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024 [ 173.987070][ T4344] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 174.004077][ T4344] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.042768][ T4344] usb 4-1: config 0 descriptor?? [ 174.049621][ T5686] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22 [ 174.108229][ T5686] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22 [ 174.139463][ T5703] mkiss: ax0: crc mode is auto. [ 174.365800][ T27] audit: type=1326 audit(1744749680.215:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5705 comm="syz.0.394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 174.551783][ T27] audit: type=1326 audit(1744749680.215:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5705 comm="syz.0.394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 174.868669][ T27] audit: type=1326 audit(1744749680.215:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5705 comm="syz.0.394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 174.965575][ T27] audit: type=1326 audit(1744749680.215:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5705 comm="syz.0.394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 175.018518][ T27] audit: type=1326 audit(1744749680.215:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5705 comm="syz.0.394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 175.098694][ T4329] usb 4-1: USB disconnect, device number 11 [ 175.125955][ T5713] loop4: detected capacity change from 0 to 512 [ 175.158914][ T27] audit: type=1326 audit(1744749680.215:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5705 comm="syz.0.394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc2b18e169 code=0x7ffc0000 [ 175.432392][ T5713] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 175.456062][ T5713] ext4 filesystem being mounted at /77/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.731071][ T4259] EXT4-fs (loop4): unmounting filesystem. [ 175.973946][ T4294] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 176.233518][ T4294] usb 1-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 176.273958][ T4251] Bluetooth: hci5: Opcode 0x0c03 failed: -110 [ 176.590613][ T4294] usb 1-1: config 7 has 1 interface, different from the descriptor's value: 2 [ 176.844387][ T4294] usb 1-1: New USB device found, idVendor=19d2, idProduct=1275, bcdDevice= 0.84 [ 176.853887][ T4329] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 176.870533][ T4294] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 176.894074][ T4294] usb 1-1: Product: syz [ 176.894858][ T5740] loop4: detected capacity change from 0 to 8 [ 176.898336][ T4294] usb 1-1: SerialNumber: syz [ 176.958118][ T4294] usb 1-1: bad CDC descriptors [ 176.973096][ T4294] usb 1-1: bad CDC descriptors [ 176.986842][ T4294] option 1-1:7.0: GSM modem (1-port) converter detected [ 177.043936][ T4329] usb 4-1: Using ep0 maxpacket: 32 [ 177.051096][ T4329] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 177.064498][ T5740] SQUASHFS error: Unable to read directory block [631:26] [ 177.083647][ T4329] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 177.107084][ T4329] usb 4-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=ac.b4 [ 177.121695][ T4329] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 177.137932][ T4329] usb 4-1: Product: syz [ 177.142936][ T4329] usb 4-1: Manufacturer: syz [ 177.149671][ T4329] usb 4-1: SerialNumber: syz [ 177.172982][ T4329] usb 4-1: config 0 descriptor?? [ 177.193323][ T4297] usb 1-1: USB disconnect, device number 6 [ 177.218641][ T4297] option 1-1:7.0: device disconnected [ 177.725057][ T27] kauditd_printk_skb: 27 callbacks suppressed [ 177.725107][ T27] audit: type=1326 audit(1744749683.575:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 177.903903][ T27] audit: type=1326 audit(1744749683.605:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 177.953997][ T27] audit: type=1326 audit(1744749683.605:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 178.053157][ T27] audit: type=1326 audit(1744749683.825:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 178.115653][ T27] audit: type=1326 audit(1744749683.875:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 178.171195][ T27] audit: type=1326 audit(1744749683.875:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 178.406781][ T27] audit: type=1326 audit(1744749683.925:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 178.471870][ T27] audit: type=1326 audit(1744749683.925:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 178.500001][ T27] audit: type=1326 audit(1744749683.935:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 178.525773][ T27] audit: type=1326 audit(1744749683.935:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 178.678452][ T5759] syz.4.410 (5759) used obsolete PPPIOCDETACH ioctl [ 178.705002][ T5759] loop4: detected capacity change from 0 to 512 [ 178.845926][ T4297] usb 4-1: USB disconnect, device number 12 [ 180.025433][ T5791] loop1: detected capacity change from 0 to 256 [ 180.034051][ T26] usb 1-1: new full-speed USB device number 7 using dummy_hcd [ 180.100646][ T5793] loop3: detected capacity change from 0 to 1024 [ 180.175809][ T5793] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 180.225715][ T26] usb 1-1: config 0 has an invalid interface number: 132 but max is 0 [ 180.248256][ T26] usb 1-1: config 0 has no interface number 0 [ 180.279637][ T5793] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 180.298634][ T26] usb 1-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 180.418657][ T26] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 180.452371][ T26] usb 1-1: Product: syz [ 180.479161][ T26] usb 1-1: Manufacturer: syz [ 180.499347][ T26] usb 1-1: SerialNumber: syz [ 180.551356][ T5800] loop4: detected capacity change from 0 to 1024 [ 180.632445][ T26] usb 1-1: config 0 descriptor?? [ 180.662243][ T26] hub 1-1:0.132: bad descriptor, ignoring hub [ 180.700672][ T26] hub: probe of 1-1:0.132 failed with error -5 [ 180.741168][ T26] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.132/input/input13 [ 180.927477][ T26] usb 1-1: USB disconnect, device number 7 [ 181.075421][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 181.662146][ T4344] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 182.208180][ T5808] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 182.215550][ T5808] overlayfs: failed to set xattr on upper [ 182.235800][ T5808] overlayfs: ...falling back to index=off,metacopy=off. [ 182.253161][ T5808] overlayfs: maximum fs stacking depth exceeded [ 182.313861][ T4344] usb 5-1: Using ep0 maxpacket: 32 [ 182.321710][ T4344] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 182.386645][ T4344] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 182.426435][ T4344] usb 5-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=ac.b4 [ 182.454153][ T4344] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 182.462374][ T4344] usb 5-1: Product: syz [ 182.484175][ T4344] usb 5-1: Manufacturer: syz [ 182.488980][ T4344] usb 5-1: SerialNumber: syz [ 182.531292][ T4344] usb 5-1: config 0 descriptor?? [ 182.613847][ T26] usb 1-1: new full-speed USB device number 8 using dummy_hcd [ 182.683296][ T5825] loop2: detected capacity change from 0 to 8 [ 182.694747][ T5825] squashfs: Unknown parameter '' [ 182.738654][ T4328] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 182.816537][ T26] usb 1-1: config 0 has an invalid interface number: 132 but max is 0 [ 182.856916][ T26] usb 1-1: config 0 has no interface number 0 [ 182.865768][ T5827] loop1: detected capacity change from 0 to 512 [ 182.929178][ T26] usb 1-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 183.010708][ T26] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 183.113196][ T26] usb 1-1: Product: syz [ 183.281895][ T26] usb 1-1: Manufacturer: syz [ 183.297194][ T26] usb 1-1: SerialNumber: syz [ 183.317064][ T26] usb 1-1: config 0 descriptor?? [ 183.385109][ T26] usb 1-1: can't set config #0, error -71 [ 183.412972][ T5827] EXT4-fs (loop1): Test dummy encryption mode enabled [ 183.469819][ T5827] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 183.491301][ T26] usb 1-1: USB disconnect, device number 8 [ 183.628938][ T5827] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.425: bad orphan inode 131083 [ 183.765678][ T5827] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 183.779610][ T5846] loop3: detected capacity change from 0 to 1024 [ 183.821980][ T5846] hfsplus: xattr searching failed [ 183.862105][ T5846] hfsplus: xattr searching failed [ 183.979532][ T5846] hfsplus: bad catalog file entry [ 184.069943][ T26] usb 5-1: USB disconnect, device number 12 [ 184.178908][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 184.459940][ T11] hfsplus: b-tree write err: -5, ino 3 [ 184.506829][ T5860] loop0: detected capacity change from 0 to 1024 [ 185.383879][ T5812] usb 2-1: new full-speed USB device number 7 using dummy_hcd [ 185.639617][ T5812] usb 2-1: config 0 has an invalid interface number: 11 but max is 0 [ 185.689640][ T5812] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 185.739246][ T5812] usb 2-1: config 0 has no interface number 0 [ 185.773683][ T5812] usb 2-1: config 0 interface 11 altsetting 253 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 185.995717][ T5812] usb 2-1: config 0 interface 11 has no altsetting 0 [ 186.998786][ T5812] usb 2-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b [ 187.033926][ T5812] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 187.141775][ T5896] loop0: detected capacity change from 0 to 256 [ 187.149855][ T5812] usb 2-1: config 0 descriptor?? [ 187.183915][ T5812] keyspan 2-1:0.11: Keyspan 2 port adapter converter detected [ 187.191690][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 87 [ 187.324174][ T5896] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 187.405261][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 7 [ 187.414465][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 81 [ 187.422278][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 82 [ 187.430410][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 1 [ 187.438606][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 2 [ 187.446525][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 85 [ 187.454406][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 5 [ 187.463257][ T5812] usb 2-1: Keyspan 2 port adapter converter now attached to ttyUSB0 [ 187.559238][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 83 [ 187.567445][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 84 [ 187.575570][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 3 [ 187.583860][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 4 [ 187.592309][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 86 [ 187.600557][ T5812] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 6 [ 187.609070][ T5896] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 188.225000][ T5812] usb 2-1: Keyspan 2 port adapter converter now attached to ttyUSB1 [ 188.240674][ T5896] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 188.297041][ T5812] usb 2-1: USB disconnect, device number 7 [ 188.324979][ T5902] loop2: detected capacity change from 0 to 1024 [ 188.345970][ T5812] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0 [ 188.346603][ T5896] exFAT-fs (loop0): hint_cluster is invalid (17) [ 188.374765][ T5902] EXT4-fs: Ignoring removed nomblk_io_submit option [ 188.398173][ T5896] exFAT-fs (loop0): error, invalid access to FAT (entry 0xffffffff) [ 188.421024][ T5812] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1 [ 188.442392][ T5902] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 188.469879][ T5812] keyspan 2-1:0.11: device disconnected [ 188.475755][ T5896] exFAT-fs (loop0): Filesystem has been set read-only [ 188.511024][ T5908] loop1: detected capacity change from 0 to 256 [ 188.546886][ T5908] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 188.792467][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 188.792484][ T27] audit: type=1804 audit(1744749694.635:162): pid=5909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.443" name="/newroot/81/file1/file1" dev="loop2" ino=15 res=1 errno=0 [ 189.913902][ T5913] netlink: 24 bytes leftover after parsing attributes in process `syz.1.444'. [ 190.502331][ T26] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 190.570014][ T4249] EXT4-fs (loop2): unmounting filesystem. [ 190.799711][ T5916] loop3: detected capacity change from 0 to 1024 [ 190.833942][ T4298] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 190.842962][ T5919] loop1: detected capacity change from 0 to 512 [ 190.962217][ T5919] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #16: comm syz.1.448: iget: bogus i_mode (755) [ 191.043841][ T4298] usb 1-1: Using ep0 maxpacket: 8 [ 191.051354][ T4298] usb 1-1: config index 0 descriptor too short (expected 5924, got 36) [ 191.070889][ T4298] usb 1-1: config 250 has an invalid interface number: 228 but max is -1 [ 191.091140][ T4298] usb 1-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 191.117001][ T5919] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.448: couldn't read orphan inode 16 (err -117) [ 191.121612][ T4298] usb 1-1: config 250 has no interface number 0 [ 191.153866][ T4298] usb 1-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 191.203869][ T4298] usb 1-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 191.214923][ T5919] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 191.250013][ T5919] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 191.261528][ T4298] usb 1-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 191.313865][ T4298] usb 1-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 191.357845][ T4298] usb 1-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 191.420127][ T4298] usb 1-1: config 250 interface 228 has no altsetting 0 [ 191.464634][ T4298] usb 1-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 191.479936][ T4255] EXT4-fs (loop1): unmounting filesystem. [ 191.500385][ T4298] usb 1-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 191.529828][ T4298] usb 1-1: Product: syz [ 191.535615][ T4298] usb 1-1: SerialNumber: syz [ 191.722559][ T4298] hub 1-1:250.228: bad descriptor, ignoring hub [ 191.752579][ T4298] hub: probe of 1-1:250.228 failed with error -5 [ 191.778196][ T4298] usblp 1-1:250.228: usblp0: USB Bidirectional printer dev 9 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 191.974996][ T5914] fuse: Bad value for 'fd' [ 192.135840][ T4298] usb 1-1: USB disconnect, device number 9 [ 192.171267][ T4298] usblp0: removed [ 193.027846][ T5939] loop1: detected capacity change from 0 to 2048 [ 193.196893][ T5947] loop4: detected capacity change from 0 to 128 [ 193.215931][ T5939] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 193.227123][ T5947] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 193.633954][ T26] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 193.718937][ T5947] ext4 filesystem being mounted at /87/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 194.023932][ T26] usb 3-1: Using ep0 maxpacket: 32 [ 194.042287][ T26] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 194.076943][ T26] usb 3-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=ac.b4 [ 194.099384][ T26] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 194.113938][ T26] usb 3-1: Product: syz [ 194.118264][ T26] usb 3-1: Manufacturer: syz [ 194.123198][ T26] usb 3-1: SerialNumber: syz [ 194.134907][ T26] usb 3-1: config 0 descriptor?? [ 194.194960][ T4259] EXT4-fs (loop4): unmounting filesystem. [ 194.200994][ T1274] aoe: packet could not be sent on bond0. consider increasing tx_queue_len [ 194.211281][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.218584][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.402217][ T5952] loop0: detected capacity change from 0 to 1024 [ 194.676689][ T5964] loop4: detected capacity change from 0 to 1024 [ 194.753936][ T4329] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 194.822887][ T5964] hfsplus: request for non-existent node 62977 in B*Tree [ 194.831714][ T5964] hfsplus: request for non-existent node 62977 in B*Tree [ 194.899001][ T4412] hfsplus: b-tree write err: -5, ino 3 [ 194.963961][ T4329] usb 2-1: Using ep0 maxpacket: 16 [ 194.971315][ T4329] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 195.128153][ T4329] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 195.209529][ T4329] usb 2-1: config 0 interface 0 has no altsetting 0 [ 195.229950][ T5971] binder: BINDER_SET_CONTEXT_MGR already set [ 195.249971][ T4329] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 195.267909][ T5971] binder: 5969:5971 ioctl 40046207 0 returned -16 [ 195.319082][ T4329] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 195.368708][ T4329] usb 2-1: config 0 descriptor?? [ 195.924060][ T26] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 196.028173][ T4329] usb 2-1: USB disconnect, device number 8 [ 196.143947][ T26] usb 1-1: Using ep0 maxpacket: 8 [ 196.151983][ T4344] usb 3-1: USB disconnect, device number 9 [ 196.161390][ T26] usb 1-1: config index 0 descriptor too short (expected 5924, got 36) [ 196.201219][ T26] usb 1-1: config 250 has an invalid interface number: 228 but max is -1 [ 196.227940][ T26] usb 1-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 196.306058][ T26] usb 1-1: config 250 has no interface number 0 [ 196.337636][ T5988] loop2: detected capacity change from 0 to 512 [ 196.342061][ T26] usb 1-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 196.376387][ T5989] ax25_connect(): syz.4.473 uses autobind, please contact jreuter@yaina.de [ 196.444392][ T26] usb 1-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 196.470971][ T5989] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 196.493319][ T26] usb 1-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 196.508349][ T26] usb 1-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 196.525823][ T26] usb 1-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 196.543001][ T26] usb 1-1: config 250 interface 228 has no altsetting 0 [ 196.543098][ T27] audit: type=1326 audit(1744749702.375:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.3.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 196.603819][ T26] usb 1-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 196.698681][ T26] usb 1-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 196.770718][ T26] usb 1-1: Product: syz [ 196.788823][ T26] usb 1-1: SerialNumber: syz [ 196.863322][ T26] hub 1-1:250.228: bad descriptor, ignoring hub [ 196.883255][ T26] hub: probe of 1-1:250.228 failed with error -5 [ 197.126455][ T26] usblp 1-1:250.228: usblp0: USB Bidirectional printer dev 10 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 197.170232][ T5988] EXT4-fs (loop2): 1 orphan inode deleted [ 197.179499][ T5988] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 197.191425][ T4412] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 197.204040][ T27] audit: type=1326 audit(1744749702.375:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.3.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 197.254399][ T5988] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.273686][ T4412] EXT4-fs error (device loop2): ext4_release_dquot:6825: comm kworker/u4:7: Failed to release dquot type 1 [ 197.341758][ T5980] fuse: Bad value for 'fd' [ 197.436873][ T27] audit: type=1326 audit(1744749702.375:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.3.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 197.520268][ T4298] usb 1-1: USB disconnect, device number 10 [ 198.133146][ T4298] usblp0: removed [ 198.166794][ T4249] EXT4-fs (loop2): unmounting filesystem. [ 198.323657][ T27] audit: type=1326 audit(1744749702.375:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.3.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 199.238046][ T27] audit: type=1326 audit(1744749702.375:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.3.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 199.265951][ T27] audit: type=1326 audit(1744749702.375:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.3.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 199.296638][ T27] audit: type=1326 audit(1744749702.385:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.3.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 199.343414][ T6013] loop0: detected capacity change from 0 to 512 [ 199.362591][ T27] audit: type=1326 audit(1744749702.385:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.3.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 199.412829][ T6013] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 199.433812][ T6013] EXT4-fs (loop0): 1 truncate cleaned up [ 199.440297][ T27] audit: type=1326 audit(1744749702.385:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.3.475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a9b18e169 code=0x7ffc0000 [ 199.475484][ T6012] loop2: detected capacity change from 0 to 512 [ 199.504000][ T6013] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 199.578827][ T6012] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 199.696958][ T6012] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.826547][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 199.847638][ T6012] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.480: Failed to acquire dquot type 1 [ 200.190970][ T4249] EXT4-fs (loop2): unmounting filesystem. [ 200.210799][ T7] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 200.413805][ T7] usb 4-1: Using ep0 maxpacket: 32 [ 201.303169][ T7] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 201.348203][ T7] usb 4-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=ac.b4 [ 201.378055][ T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 201.402208][ T7] usb 4-1: Product: syz [ 201.416329][ T7] usb 4-1: Manufacturer: syz [ 201.426701][ T7] usb 4-1: SerialNumber: syz [ 201.441804][ T7] usb 4-1: config 0 descriptor?? [ 201.648462][ T27] kauditd_printk_skb: 15 callbacks suppressed [ 201.648481][ T27] audit: type=1326 audit(1744749707.475:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 201.737601][ T6036] loop2: detected capacity change from 0 to 2048 [ 201.889129][ T6036] ext4: Unknown parameter 'noacl' [ 202.452106][ T27] audit: type=1326 audit(1744749707.475:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 202.531623][ T27] audit: type=1326 audit(1744749707.475:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 202.659615][ T27] audit: type=1326 audit(1744749707.485:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 203.411806][ T4344] usb 4-1: USB disconnect, device number 14 [ 203.498108][ T27] audit: type=1326 audit(1744749707.485:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 203.533815][ T27] audit: type=1326 audit(1744749707.495:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 203.629285][ T27] audit: type=1326 audit(1744749707.835:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 203.727979][ T6048] input: syz0 as /devices/virtual/input/input14 [ 203.816875][ T27] audit: type=1326 audit(1744749707.845:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 203.932592][ T27] audit: type=1326 audit(1744749707.925:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 204.019199][ T27] audit: type=1326 audit(1744749707.925:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.4.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 204.316019][ T6075] loop4: detected capacity change from 0 to 1024 [ 205.365932][ T6081] raw_sendmsg: syz.3.503 forgot to set AF_INET. Fix it! [ 207.265204][ T6114] netlink: 61211 bytes leftover after parsing attributes in process `syz.1.515'. [ 207.561285][ T6119] loop1: detected capacity change from 0 to 1024 [ 207.685212][ T6119] hfsplus: request for non-existent node 62977 in B*Tree [ 207.692396][ T6119] hfsplus: request for non-existent node 62977 in B*Tree [ 207.856031][ T6126] ax25_connect(): syz.3.519 uses autobind, please contact jreuter@yaina.de [ 207.871905][ T6126] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 207.976680][ T4655] hfsplus: b-tree write err: -5, ino 3 [ 209.212433][ T6148] netlink: 'syz.4.528': attribute type 10 has an invalid length. [ 209.244125][ T6148] netlink: 40 bytes leftover after parsing attributes in process `syz.4.528'. [ 209.275815][ T6148] device vlan1 entered promiscuous mode [ 209.289120][ T6148] bridge0: port 3(vlan1) entered blocking state [ 209.307167][ T6148] bridge0: port 3(vlan1) entered disabled state [ 209.332934][ T6148] bridge0: port 3(vlan1) entered blocking state [ 209.340030][ T6148] bridge0: port 3(vlan1) entered forwarding state [ 209.865046][ T6164] ax25_connect(): syz.1.533 uses autobind, please contact jreuter@yaina.de [ 210.045967][ T27] kauditd_printk_skb: 49 callbacks suppressed [ 210.045985][ T27] audit: type=1326 audit(1744749715.865:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 210.079500][ T6165] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 210.152160][ T4292] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 210.727760][ T4292] usb 3-1: Using ep0 maxpacket: 8 [ 210.735522][ T4292] usb 3-1: config index 0 descriptor too short (expected 5924, got 36) [ 210.763925][ T27] audit: type=1326 audit(1744749715.865:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 210.817199][ T4292] usb 3-1: config 250 has an invalid interface number: 228 but max is -1 [ 210.854898][ T4292] usb 3-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 210.923867][ T27] audit: type=1326 audit(1744749715.875:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 210.956696][ T4292] usb 3-1: config 250 has no interface number 0 [ 210.963010][ T4292] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 211.115525][ T4292] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 211.140197][ T27] audit: type=1326 audit(1744749715.875:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 211.142747][ T6193] loop1: detected capacity change from 0 to 256 [ 211.191919][ T4292] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 211.201966][ T27] audit: type=1326 audit(1744749715.875:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 211.226666][ T27] audit: type=1326 audit(1744749715.875:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 211.236866][ T4292] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 211.250401][ T27] audit: type=1326 audit(1744749715.875:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 211.283174][ T27] audit: type=1326 audit(1744749715.885:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 211.315224][ T6193] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 211.344685][ T4292] usb 3-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 211.387177][ T4292] usb 3-1: config 250 interface 228 has no altsetting 0 [ 211.405598][ T4292] usb 3-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 211.415748][ T4292] usb 3-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 211.444446][ T27] audit: type=1326 audit(1744749715.885:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 211.476027][ T4292] usb 3-1: Product: syz [ 211.490875][ T4292] usb 3-1: SerialNumber: syz [ 211.541895][ T4292] hub 3-1:250.228: bad descriptor, ignoring hub [ 211.595157][ T4292] hub: probe of 3-1:250.228 failed with error -5 [ 211.623552][ T27] audit: type=1326 audit(1744749715.955:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6172 comm="syz.4.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc63f8e169 code=0x7ffc0000 [ 211.732689][ T4292] usblp 3-1:250.228: usblp0: USB Bidirectional printer dev 10 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 211.959046][ T6171] fuse: Bad value for 'fd' [ 212.114304][ T4292] usb 3-1: USB disconnect, device number 10 [ 212.142678][ T4292] usblp0: removed [ 213.631896][ T6213] ax25_connect(): syz.2.553 uses autobind, please contact jreuter@yaina.de [ 213.738201][ T6218] netlink: 60 bytes leftover after parsing attributes in process `syz.4.551'. [ 213.828714][ T6213] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 213.842792][ T6218] netlink: 60 bytes leftover after parsing attributes in process `syz.4.551'. [ 213.865930][ T6214] netlink: 60 bytes leftover after parsing attributes in process `syz.4.551'. [ 214.221214][ T4655] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.377021][ T4655] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.506367][ T6226] netlink: 'syz.1.556': attribute type 12 has an invalid length. [ 214.551983][ T6226] netlink: 120 bytes leftover after parsing attributes in process `syz.1.556'. [ 214.699554][ T4655] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.927928][ T4655] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.341795][ T4262] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 215.352955][ T4262] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 215.363062][ T4262] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 215.371150][ T4262] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 215.382136][ T4262] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 215.392936][ T4262] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 215.412957][ T4251] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 215.424025][ T4251] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 215.431433][ T4251] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 215.439477][ T4251] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 215.445914][ T6251] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.567'. [ 215.454564][ T4251] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 215.463237][ T4251] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 216.006710][ T6270] device pim6reg1 entered promiscuous mode [ 216.455590][ T6285] Illegal XDP return value 4294967274 on prog (id 49) dev N/A, expect packet loss! [ 216.664781][ T6247] chnl_net:caif_netlink_parms(): no params data found [ 216.869893][ T6294] CUSE: unknown device info "ÿ" [ 216.875088][ T6294] CUSE: zero length info key specified [ 217.543945][ T4251] Bluetooth: hci2: command 0x0409 tx timeout [ 217.609372][ T6291] netlink: 'syz.4.579': attribute type 2 has an invalid length. [ 217.712855][ T6293] netlink: 'syz.2.580': attribute type 10 has an invalid length. [ 217.739211][ T6293] netlink: 40 bytes leftover after parsing attributes in process `syz.2.580'. [ 218.614077][ T6318] pim6reg0: tun_chr_ioctl cmd 1074025677 [ 218.620151][ T6318] pim6reg0: linktype set to 823 [ 218.760471][ T6247] bridge0: port 1(bridge_slave_0) entered blocking state [ 218.791875][ T6247] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.821119][ T6247] device bridge_slave_0 entered promiscuous mode [ 219.176255][ T6247] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.183419][ T6247] bridge0: port 2(bridge_slave_1) entered disabled state [ 219.251385][ T6247] device bridge_slave_1 entered promiscuous mode [ 219.493201][ T4655] device hsr_slave_0 left promiscuous mode [ 219.532909][ T4655] device hsr_slave_1 left promiscuous mode [ 219.572799][ T4655] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 219.612915][ T4655] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 219.623921][ T4251] Bluetooth: hci2: command 0x041b tx timeout [ 219.688262][ T4655] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 219.723374][ T4655] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 219.757828][ T4655] device bridge_slave_1 left promiscuous mode [ 219.791250][ T4655] bridge0: port 2(bridge_slave_1) entered disabled state [ 219.853375][ T4655] device bridge_slave_0 left promiscuous mode [ 219.885051][ T4655] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.105600][ T4655] device veth1_macvtap left promiscuous mode [ 220.140355][ T4655] device veth0_macvtap left promiscuous mode [ 220.182239][ T4655] device veth1_vlan left promiscuous mode [ 220.211298][ T4655] device veth0_vlan left promiscuous mode [ 221.703903][ T4262] Bluetooth: hci2: command 0x040f tx timeout [ 223.783868][ T4262] Bluetooth: hci2: command 0x0419 tx timeout [ 326.733685][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 326.740686][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P4315/1:b..l [ 326.749100][ C1] (detected by 1, t=10502 jiffies, g=24413, q=208 ncpus=2) [ 326.756384][ C1] task:kworker/u4:6 state:R running task stack:23904 pid:4315 ppid:2 flags:0x00004000 [ 326.768080][ C1] Workqueue: bat_events batadv_nc_worker [ 326.773760][ C1] Call Trace: [ 326.777140][ C1] [ 326.780248][ C1] __schedule+0x143f/0x4570 [ 326.784796][ C1] ? release_firmware_map_entry+0x18b/0x18b [ 326.790726][ C1] ? print_irqtrace_events+0x210/0x210 [ 326.796200][ C1] ? preempt_schedule_irq+0xec/0x1c0 [ 326.801493][ C1] preempt_schedule_irq+0xf7/0x1c0 [ 326.806618][ C1] ? preempt_schedule_notrace+0x140/0x140 [ 326.812359][ C1] irqentry_exit+0x53/0x80 [ 326.816795][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 326.822793][ C1] RIP: 0010:lock_acquire+0x26f/0x5a0 [ 326.828124][ C1] Code: 2b 00 74 08 4c 89 f7 e8 4f 55 77 00 f6 44 24 61 02 0f 85 84 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25 [ 326.847733][ C1] RSP: 0018:ffffc90004447a80 EFLAGS: 00000206 [ 326.854152][ C1] RAX: 0000000000000001 RBX: 1ffff92000888f5c RCX: 1ffff92000888efc [ 326.862139][ C1] RDX: dffffc0000000000 RSI: ffffffff8b0c3040 RDI: ffffffff8b5f7360 [ 326.870111][ C1] RBP: ffffc90004447be0 R08: dffffc0000000000 R09: fffffbfff225784d [ 326.878169][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff92000888f58 [ 326.886137][ C1] R13: dffffc0000000000 R14: ffffc90004447ae0 R15: 0000000000000246 [ 326.894129][ C1] ? read_lock_is_recursive+0x10/0x10 [ 326.899523][ C1] ? batadv_nc_worker+0xc7/0x610 [ 326.904466][ C1] ? __lock_acquire+0x1f80/0x1f80 [ 326.909498][ C1] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 326.915488][ C1] batadv_nc_worker+0xe8/0x610 [ 326.920285][ C1] ? batadv_nc_worker+0xc7/0x610 [ 326.925229][ C1] ? batadv_nc_worker+0xc7/0x610 [ 326.930175][ C1] ? process_one_work+0x806/0x1260 [ 326.935289][ C1] process_one_work+0x917/0x1260 [ 326.940239][ C1] ? worker_detach_from_pool+0x260/0x260 [ 326.945874][ C1] ? _raw_spin_lock_irqsave+0x120/0x120 [ 326.951415][ C1] ? kthread_data+0x4e/0xc0 [ 326.955927][ C1] ? wq_worker_running+0x97/0x190 [ 326.960949][ C1] worker_thread+0xa47/0x1200 [ 326.965626][ C1] ? _raw_spin_unlock+0x40/0x40 [ 326.970478][ C1] ? release_firmware_map_entry+0x18b/0x18b [ 326.976378][ C1] ? _raw_spin_unlock+0x40/0x40 [ 326.981235][ C1] kthread+0x28d/0x320 [ 326.985300][ C1] ? worker_clr_flags+0x190/0x190 [ 326.990340][ C1] ? kthread_blkcg+0xd0/0xd0 [ 326.994930][ C1] ret_from_fork+0x1f/0x30 [ 326.999371][ C1] [ 327.002398][ C1] rcu: rcu_preempt kthread starved for 9765 jiffies! g24413 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 327.013497][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 327.023458][ C1] rcu: RCU grace-period kthread stack dump: [ 327.029342][ C1] task:rcu_preempt state:R running task stack:25592 pid:16 ppid:2 flags:0x00004000 [ 327.040123][ C1] Call Trace: [ 327.043413][ C1] [ 327.046361][ C1] __schedule+0x143f/0x4570 [ 327.050868][ C1] ? _raw_spin_unlock+0x40/0x40 [ 327.055734][ C1] ? release_firmware_map_entry+0x18b/0x18b [ 327.061630][ C1] ? lockdep_softirqs_off+0x420/0x420 [ 327.067011][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 327.072915][ C1] ? _raw_spin_unlock+0x40/0x40 [ 327.077780][ C1] schedule+0xbf/0x180 [ 327.081849][ C1] schedule_timeout+0x1b9/0x300 [ 327.086701][ C1] ? console_conditional_schedule+0x40/0x40 [ 327.092609][ C1] ? update_process_times+0x1b0/0x1b0 [ 327.098003][ C1] ? prepare_to_swait_event+0x329/0x350 [ 327.103651][ C1] rcu_gp_fqs_loop+0x2d2/0x1150 [ 327.108561][ C1] ? dyntick_save_progress_counter+0x2b0/0x2b0 [ 327.114719][ C1] ? lockdep_hardirqs_on+0x94/0x130 [ 327.119932][ C1] ? rcu_gp_init+0x15f0/0x15f0 [ 327.124710][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 327.130607][ C1] ? finish_swait+0xcf/0x1e0 [ 327.135211][ C1] rcu_gp_kthread+0xa3/0x3b0 [ 327.139804][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 327.144915][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 327.150819][ C1] ? __kthread_parkme+0x168/0x1c0 [ 327.155861][ C1] kthread+0x28d/0x320 [ 327.159928][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 327.165037][ C1] ? kthread_blkcg+0xd0/0xd0 [ 327.169626][ C1] ret_from_fork+0x1f/0x30 [ 327.174059][ C1] [ 327.177071][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 327.183401][ C1] Sending NMI from CPU 1 to CPUs 0: [ 327.188672][ C0] NMI backtrace for cpu 0 skipped: idling at default_idle+0xb/0x10