last executing test programs: 6.47798881s ago: executing program 1 (id=1464): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e) 6.463834491s ago: executing program 1 (id=1465): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480), 0x48) mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r3 = dup(r2) write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r3, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_9p2000}]}}) 6.343818891s ago: executing program 1 (id=1466): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000401e04012810000000000109022400010000000009040000020300000009210000000122050009058103"], 0x0) syz_usb_control_io$hid(r1, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0) ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x714a}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101}) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) close(r5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast}) write$cgroup_devices(r4, &(0x7f0000000640)=ANY=[@ANYBLOB="0100000000000000288563"], 0xffdd) write$cgroup_devices(r3, &(0x7f0000000640)=ANY=[], 0xffdd) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f00000000c0)=""/87, 0x0}) ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000900)={0x1, 0x0, [{0x0, 0xffffffffffffff22, &(0x7f00000006c0)=""/140}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10) syz_usb_control_io(r1, &(0x7f0000000540)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="0000f0"], 0x0, 0x0, 0x0, 0x0}, 0x0) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB='shortname=winnt,shortname=lower,iocharset=maccenteuro,utf8=0,iocharset=macgreek,codepage=1255,flush,shortname=mixed,tz=UTC,check=strict,rodir,nonumtail=0,uid=', @ANYRESDEC=0x0, @ANYBLOB="490db441c1bf634f820b0a294c64811324d7270cfbb0dab7a02f9349d194b04c11cfc28433700365330139f7a483c53ce6ea0e57b7e01c901b8ac0adec6a900605c7868f9c20ee7df53808d722b35ce1756b58b190fa7d8985f972942d83e4093500e335aacb7e030000000000000032371b38ecd1560c31e7e92f1828760abd57180ca3eafdbffe3ccdd1c2b601a19bd75ad9ec6a1bc6b3020a19ef06a84dca25a86a3bd0da4708d95220f04aaca5eac9072cbc985f98ae47d89f00abce1fdbabe89d08f8daf75542e6df"], 0xfd, 0x289, &(0x7f0000000c40)="$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") mknod(&(0x7f00000005c0)='./file0\x00', 0x0, 0x0) listen(r0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x20004813, &(0x7f00000000c0)={0xa, 0x3, 0x0, @loopback, 0x200}, 0x1c) 3.268713603s ago: executing program 1 (id=1498): sendmmsg(0xffffffffffffffff, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)="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", 0x293}], 0x1}}], 0x1, 0x0) (async) sendmmsg(0xffffffffffffffff, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)="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", 0x293}], 0x1}}], 0x1, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) openat$cgroup_ro(r2, &(0x7f00000000c0)='cpuacct.usage_percpu\x00', 0x275a, 0x0) (async) r3 = openat$cgroup_ro(r2, &(0x7f00000000c0)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0) (async) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0) open(0x0, 0x0, 0x0) r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0) syz_usb_control_io$hid(r4, 0x0, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000f8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_usb_control_io$hid(r4, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_4={0x3, 0x1, 0x0, "f7940ef7"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @global=@item_012={0x2, 0x1, 0x1, "b8ef"}, @local=@item_012={0x2, 0x2, 0x0, "1a70"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0) (async) syz_usb_control_io$hid(r4, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_4={0x3, 0x1, 0x0, "f7940ef7"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @global=@item_012={0x2, 0x1, 0x1, "b8ef"}, @local=@item_012={0x2, 0x2, 0x0, "1a70"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0) syz_usb_ep_write(r4, 0x81, 0x1, &(0x7f0000000000)='B') r6 = dup(r1) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) (async) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001300)=[{{&(0x7f0000000000)={0x2, 0x0, @empty}, 0x10, 0x0}}], 0x1, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000}) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0x20008, [{0xe, 0x0, 0x3}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, 0x0, 0x3a}, 0x20) ioctl$KVM_NMI(r7, 0xae9a) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0xac, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @private0}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}]}, 0xac}}, 0x0) (async) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0xac, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @private0}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}]}, 0xac}}, 0x0) r9 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0xac, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}]}, 0xac}}, 0x0) 3.099344086s ago: executing program 2 (id=1499): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x10) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdir(&(0x7f0000000340)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e"], 0x15) r5 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10) sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="180000005200010001000000000000000a00000000000000"], 0x18}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x200000000000013f, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000800)='./file2\x00', 0x404a, &(0x7f0000000300), 0x1, 0x751, &(0x7f0000002880)="$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") rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8) r6 = gettid() timer_settime(0x0, 0x5, &(0x7f00000001c0)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) signalfd4(0xffffffffffffffff, &(0x7f0000000080), 0x8, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x2, 0x4, @tid=r6}, &(0x7f0000000140)) r7 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_TX_RING(r7, 0x11b, 0x3, &(0x7f00000001c0)=0x20000, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'lo\x00'}) 2.612040006s ago: executing program 4 (id=1501): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r2 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd) keyctl$read(0xb, r2, &(0x7f0000001480)=""/4102, 0x1006) 2.543434022s ago: executing program 4 (id=1502): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10) utimensat(0xffffffffffffffff, &(0x7f0000000380)='./file0/file0\x00', 0x0, 0x0) 2.543229791s ago: executing program 4 (id=1503): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000540)='task_rename\x00', r0}, 0x11) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000080), &(0x7f0000000240)=r1}, 0x20) 2.543068711s ago: executing program 4 (id=1504): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000940), 0xfc, 0x564, &(0x7f00000003c0)="$eJzs3V1rHFUYAOB3Nkm/tSmUol5IoRdWajdN4kcFwXopWizofV2SaSjZdEt2U5pYsL2wN95IEUQsiD/Aey+Lf8BfUdBCkRL0QoTIbGbTbbMfSbp1t93ngUnOmZnNmXdn3pNzdnbZAIbW0exHIeLliPgmiTjYtG008o1H1/dbfXBtJluSWFv79M8kknxdY/8k/70/r7wUEb9+FXGisLnd6vLKfKlcThfz+kRt4fJEdXnl5MWF0lw6l16amp4+/db01LvvvN2zWF8/9/f3n9z58PTXx1a/+/neoVtJnIkD+bbmOJ7A9ebK0dK/eWkszjy242QPGhskSb8PgB0ZyfN8LLI+4GCM5FkPPP++jIg1YEgl8h+GVGMc0Jjb92ge/My4/8H6BGhz/KPrr43EnvrcaN9q8sjMKJvvjveg/ayNX/64fStbovPrEHu71AG25fqNiDg1Orq5/0vy/m/nTtVfPO7s8TaG7f8P9NOdbPzzRqvxT2Fj/BMtxj/7W+TuTnTP/8K9HjTTVjb+e6/l+Hej6xofyWsv1Md8Y8mFi+X0VES8GBHHY2x3Vu90P+f06t21dtuax3/ZkrXfGAvmx3FvdPejj5kt1UpPEnOz+zciXmk5/k02zn/S4vxnz8e5LbZxJL39artt3eN/utZ+init5fl/eEcr6Xx/cqJ+PUw0rorN/rp55Ld27fc7/uz87+sc/3jSfL+2uv02ftzzT9pu206v/13JZ/Xyrnzd1VKttjgZsSv5ePP6qYePbdQb+2fxHz/Wuf9rdf1nk6/Ptxj/zcM32+46COd/dlvnf/uFux998UO79rd2/t+sl47na7bS/231AJ/kuQMAAAAAAIBBU4iIA5EUihvlQqFYXH9/x+HYVyhXqrUTFypLl2aj/lnZ8RgrNO50H2x6P8Rk/n7YRn3qsfp0RByKiG9H9tbrxZlKebbfwQMAAAAAAAAAAAAAAAAAAMCA2N/m8/+Z30f6fXTAU1f/YoPd/T4KoB+6fuV/L77pCRhIXfMfeG7Jfxhe8h+Gl/yH4SX/YXjJfxhe8h+Gl/wHAAAAAAAAAAAAAAAAAAAAAAAAAACAnjp39my2rK0+uDaT1WevLC/NV66cnE2r88WFpZniTGXxcnGuUpkrp8WZykK3v1euVC5PTsXS1YlaWq1NVJdXzi9Uli7Vzl9cKM2l59Ox/yUqAAAAAAAAAAAAAAAAAAAAeLZUl1fmS+VyuqjQtvB+DMRhPM0A1+3o4aODEoVCTwt97pgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoMl/AQAA//9k/TZJ") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000bc0)={@ifindex, r0, 0x12, 0x2, r1, @prog_fd}, 0x20) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) ioctl$HIDIOCGFEATURE(r0, 0xc0404807, &(0x7f0000000300)={0x3, "fa7d5deb4fa71ee137e2c30fc4a2609d5aa63d04428a4d4702bb844b5e5fff5c8e8fcfc900260a1351d5171d78acb8081cd91173bf30c7b597961aea6b76ac58"}) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_type(r6, &(0x7f0000000000), 0x248800) socket$nl_route(0x10, 0x3, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{}, {0x81}, {0x6}]}) 1.69762133s ago: executing program 2 (id=1506): r0 = socket$xdp(0x2c, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) 1.567177782s ago: executing program 2 (id=1507): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) mount$incfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000400)=ANY=[@ANYRES8=r0, @ANYRES64=r0]) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000500)=0x0) r2 = socket$key(0xf, 0x3, 0x2) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe888}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e"], 0x70}}, 0x0) sendmmsg(r2, &(0x7f0000000180), 0x3ef, 0x0) prlimit64(r1, 0xe, &(0x7f0000000540)={0xc, 0x100008a}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = getpid() sched_setscheduler(r4, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r6, &(0x7f00000004c0)={&(0x7f0000000300)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000b00)=""/268, 0x10c}, {&(0x7f00000005c0)=""/124, 0x7c}, {&(0x7f00000007c0)=""/198, 0xc6}], 0x3, &(0x7f00000008c0)=""/194, 0xc2}, 0x101) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r7}, 0x10) execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0) openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000005fc0), 0x4200, 0x0) r8 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r8, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10) r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffffffff, 0x10000}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) 1.143913246s ago: executing program 3 (id=1509): r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r0, 0x5) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) flock(r1, 0x1) flock(r1, 0x2) dup3(r1, r0, 0x0) 1.09141301s ago: executing program 4 (id=1510): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00'}, 0x10) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) r4 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) ioctl$ASHMEM_SET_SIZE(r4, 0x40087703, 0xfffffffe) mmap(&(0x7f0000701000/0x2000)=nil, 0x2000, 0x0, 0x12, r4, 0x0) ioctl$ASHMEM_SET_NAME(r4, 0x40087708, &(0x7f0000000cc0)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe01\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&\x05J\x0ea\xa4\xd5\x8fn\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84x\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x004PH-\x1c/X_\xb0\x11H\xecAP\x99\xbd\t~\xfc4\x0eb\xdf\xa0,c\xb6\xfa\xaa\xc2\xb6\xe37\x1f\xbe\xa9[\x0f^\x8b`\xff\xc8e+f\\\xbd\v\xdc2\x93\xf7\x9d\xba\x0f\xb3\xf26\x97\xd6 \xaf\th\x96\xf3\x99\xfe\x16\xc7\x9a\xa8\xb4\xdc\xc2H\x8a\xa2q\x02@\xf0\xa7\x8eD/\x1f\x99=\v\xf8\xb8-\x97\xe1f\xe6\xffL\xdf\x0f!\x89\xbf0B \x81*\xcdT\x95\xedJ\xc7_\x00\xb3\xab@\x87\xe6LW\xaf\xee\xcd\xea\x0f6\xcc$u\xec\x19\x06\xf3;l6av\xef=\xce\xa4a\xbc\xdd\x17CX\x85\x92-N\xd1\x17\xca{\x91\xe5\xfd\xc2CxL\x8e\xeb\xb9s9\xc8\xf1\x16\x94A\xa6D\x1e6,B#\x80\x12c\xb9\x15\x95F\x9bg\xae*\xbe\x1e\x00\x80\xb7\xe1\x1f\x99\xd3|\x9e\xaa\xfd\xf34\x80\xb0\xf0\xed\x0f\xa5/(e\xa7H g*6\xfcL\xf4\x7f\xdc\xc2\x88G\xe09\xe6\xb3\xca\xa6\xbc\x9a\x8b\xc7\xb4JB\x94$\xba\x9c\xce\xa7\x8a\x90\xdcX\xde{\xa8\\\x88\xd1@\xb6\"(\x18oP:\xed\x9eW\xde\xb2$\x95V\xd7\xae\xf7\x83$\xc9o\x90z)\xc9\xac\xc7\xfa\xaaG\xb7\xce\x01\xe4\xba\xf4=%\xb4\xeb/9J\xd2f\xeb\x1a\x9e\xf1\x8d\x86\xafh\xb16\x15?\xee\xf6\x9d\x91,G\xf1\x86\x05\xeb\xcd%\xb4q\xbc\xebrUK\xc6\xc0\xbc\x10\xa0\xc1\xba\xb4?3\xaa\x898\x0e\x8d\x93\xa0\x8e\xd6\xab\xbf\x89&R[\xa9|\xf7\xa2^&X\x03\xfe\f\x05\xdan;\xbe\x12\xdf)<\x9fs\x81_\xa1\vT/`\xce\xc8\xa3v\xef\x84/<\t\x95\x90\x99yW\xb7 \xa2\xd2ZN\x80\xdf\x94F\xbcKS\xae\xf8{\xda\xd9\x00'/1257) ioctl$ASHMEM_SET_NAME(r4, 0x40087708, &(0x7f0000000300)='\x00\x00\x03\v\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00') close_range(r3, 0xffffffffffffffff, 0x0) 1.039430275s ago: executing program 3 (id=1511): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008040000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e) 995.272458ms ago: executing program 3 (id=1512): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r2 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd) keyctl$read(0xb, r2, &(0x7f0000001480)=""/4102, 0x1006) 962.734231ms ago: executing program 3 (id=1513): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000010000000000000000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) socket$inet_tcp(0x2, 0x1, 0x0) unshare(0x62040216) 827.341172ms ago: executing program 3 (id=1514): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10) utimensat(0xffffffffffffffff, &(0x7f0000000380)='./file0/file0\x00', 0x0, 0x0) 820.418882ms ago: executing program 3 (id=1515): r0 = socket$vsock_stream(0x28, 0x1, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000024c0)=ANY=[@ANYRESDEC=r0], &(0x7f0000002480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000d379)={0x0}}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) syz_mount_image$fuse(0x0, &(0x7f00000001c0)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000006100)='cmdline\x00') read$FUSE(r5, &(0x7f0000000000)={0x2020}, 0x2020) readv(r5, &(0x7f0000000180)=[{&(0x7f0000000100)=""/39, 0x27}], 0x1) setxattr(&(0x7f0000000480)='./file1\x00', &(0x7f00000004c0)=@known='trusted.syz\x00', &(0x7f0000000500)='\x00', 0x1, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) (fail_nth: 1) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) pwritev(r1, &(0x7f00000023c0)=[{&(0x7f0000002040)="fee84b024ae6463f97953748d50915bebf06fc845fed6483bd4999078644ebd8457cd64d64aca2dd80449126a15099b7dd18598f60317992779cf1cee40cca3e1a2450831a3f9ea25b", 0x49}, {&(0x7f00000020c0)="8c6e71997dca355b29896e35bd260eca0bcb09987252942d751389f9711d0d958cca0b0d07ccb93c07f827cee6e8c6b106b1cfcd63b7c820788c185b1dec6231", 0x40}, {&(0x7f0000002140)="698eecb8d6cc1e5e3aa903c37ee11cd8105bcd27c5866082641acfa10a88d233d36906291d07b376abce83646eaf448917ae7c43d63d08c64aab787413f763071173230e720bbf53aeea0652811df21790e2d10ab3691525391e6da950117616f423b4f2c10784a3af4e7d0b5e8b7ccd23aa6c77658db43fd10a5b", 0x7b}, {&(0x7f00000021c0)="e53e7df5f22a303196fc5baa4287a9b0777a30a3981de8b30ed8bf855d0e1dde928192c86520a89aff802c89e95eef36332301e02e1e00a46eb2479f50485644ba79e4a6f80720a30635bf8703176a40072400bf6b146f7fd70082d9e360466ed4c6f696e9266a8aba9cfdc251583d4b388d7ca33256e61209cf5686771a1adb826f96e260f99c5ad532b5f187953b", 0x8f}, {&(0x7f0000002280)="fe8367db1f8e700f4f150e72413659c83bad044593f429fc4a683540a0d232b29ec5ac928e1055acecd10115612497a6ae9377eaf0c035eb7815a5156ae784b3603a3d12e46b0480e6bf97094376fd2a6e923a49abd5a0bdc184021349eebf09540227180732a570f07aec777d4b6b037471c602813ddadf5555a0aecf8e8dce89803fd9716fc92b33a4804c9d68707e77b50285816c", 0x96}, {0x0}], 0x6, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x28, r6, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x28}}, 0x0) setxattr$security_capability(&(0x7f0000000280)='./file1\x00', &(0x7f00000002c0), &(0x7f0000000300)=@v2, 0x14, 0x0) 712.134081ms ago: executing program 2 (id=1516): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000010000000000000000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) socket$inet_tcp(0x2, 0x1, 0x0) r1 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(r1, 0x540a, 0x1) unshare(0x62040200) 643.445997ms ago: executing program 2 (id=1517): r0 = socket$xdp(0x2c, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) 642.881297ms ago: executing program 2 (id=1518): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_usb_connect(0x5, 0xbd7, &(0x7f0000000a80)={{0x12, 0x1, 0x250, 0x23, 0x95, 0x3a, 0x8, 0x1bc7, 0x1207, 0x2233, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xbc5, 0x2, 0x20, 0x92, 0x40, 0x7f, [{{0x9, 0x4, 0x4d, 0x40, 0xc, 0xa5, 0xfa, 0x26, 0x9e, [@cdc_ecm={{0x7, 0x24, 0x6, 0x0, 0x0, "0e99"}, {0x5, 0x24, 0x0, 0x7ff}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x5dd5, 0x2, 0x81}, [@obex={0x5}, @mdlm={0x15, 0x24, 0x12, 0x4d35}, @network_terminal={0x7, 0x24, 0xa, 0x5, 0x8, 0x2, 0x1}]}], [{{0x9, 0x5, 0xd, 0x4, 0x200, 0x40, 0x7d, 0x1f, [@generic={0xe, 0x24, "2006701111d062a981f3bfa2"}, @generic={0xb5, 0x9, "e64f00b3ca0c28e566d09e3b0d1522c1333f222f8e5fb275af51dfd593dd1a461b74edfb618bb102c2c43a1ce4ec2a0fbbc2cca6009c6dae6c8d0d158826bc2838296063c924874b65e7be368a259379a5fb8c678934a0a1e4d4fae02397533bb82daa4e73d08a96f5cdb5d3569bc6ad8d10bfb66308d9859f6e773b98887d97179c748700c9197056524c7f00d66e66b0f5e90b3ded8018d408e2845afb2bdb7d1d2f8e12684e8415a11f7c14b908f75aa722"}]}}, {{0x9, 0x5, 0x1, 0x10, 0x200, 0x7c, 0x0, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0xc6, 0xfffd}, @uac_iso={0x7, 0x25, 0x1, 0x40, 0x6, 0x9}]}}, {{0x9, 0x5, 0xb, 0x0, 0x3ff, 0x56, 0x6, 0x1f, [@generic={0xd1, 0xd, "716614785f29ea9897fcaab240d09400f95b8fabdb8f1edf0b12c8086aae12ac9c068ed46293264a7abef59f3393ea4ba7fcc8962901ec2f7b48cf6e500aacd558364458cafbbb737cbc816fd6ca14dcb5b91803e0aa8b3af1a4bbebd00b4ab5043df85fb4eb0e418ffa3452c5ed81a55cb486291e338178952f80d705eec3f97d5fe1aadd3999f143862ffb74e9b531aa332510f39a2541bb97b7688af68d0f2e244859f3dc9d6d15b5b8452e1ed51184bae7d79308c7bfa467cf9c579ea87bfa64ca6fcf1353853e5d6edba0c83d"}]}}, {{0x9, 0x5, 0xf, 0x8, 0x200, 0x0, 0x7, 0xff, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x4, 0x1}]}}, {{0x9, 0x5, 0x0, 0x0, 0x10, 0x0, 0x4f, 0x6, [@generic={0x7f, 0x30, "29dec15f4a179c3401cd46072a9a3d725f12b6dfb437260365c1da6a8d2ef476fca9bf8dd146e6d9598b04923af70a494206a2d166e083e12fa4f4abcf3a933964001e00c11734b0cd6a4ab67838947f55a522cc5a950fa694cab262fd14615130f3a953def18a1d3e42bc9196bb52cbd303ff4f2219d2216fdb9dcc70"}]}}, {{0x9, 0x5, 0x1, 0x4, 0x20, 0x3, 0x1, 0xca, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x72, 0x5}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x5, 0x1}]}}, {{0x9, 0x5, 0xa, 0x4, 0x400, 0xd5, 0x8, 0x3, [@generic={0x37, 0x6, "2e0ae1adbc76145206118fb7b1edab298dc9c0da115f4f739a39e4aa7e0ad9c328aa64a33c5431450b5affa7d298e78a5a63bdbad1"}]}}, {{0x9, 0x5, 0xe, 0x8, 0x400, 0x1, 0x40, 0x81, [@generic={0x16, 0x21, "e0f63fc39573b4658be53186e37a845f80df8a65"}]}}, {{0x9, 0x5, 0x2, 0x8, 0x400, 0xc9, 0xf7, 0x5, [@generic={0x1c, 0x1, "9f38621e6a22e8ac8ba06b0d18b89d4b38b787a7ae3c4ab9c593"}]}}, {{0x9, 0x5, 0x6, 0xc, 0x3ff, 0x9, 0x4, 0x9, [@generic={0x102, 0x2, "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"}]}}, {{0x9, 0x5, 0xb, 0x10, 0x20, 0x7, 0x2, 0x4, [@generic={0xf, 0x6, "9cab973e0cd63797de3ba50061"}, @generic={0x4c, 0x23, "0c5643084eb23871007146acb54626f7149445dc4e32cabd6bc8eecc6377b610a69be1b963a59edca7de4cc08db41e7998fad0798bd443806ad8eb048ad4232210d72c50401a4c888999"}]}}, {{0x9, 0x5, 0x7, 0x3, 0x3ff, 0x8, 0xff, 0x80, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x3, 0x6}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x6, 0x6}]}}]}}, {{0x9, 0x4, 0x5, 0x20, 0xc, 0x66, 0x30, 0x9c, 0x8, [@cdc_ncm={{0xb, 0x24, 0x6, 0x0, 0x1, "187ee9b75330"}, {0x5, 0x24, 0x0, 0x7ff}, {0xd, 0x24, 0xf, 0x1, 0xffffff49, 0x7fff, 0x5, 0x40}, {0x6, 0x24, 0x1a, 0x8, 0x38}, [@mdlm={0x15, 0x24, 0x12, 0x7}]}], [{{0x9, 0x5, 0x0, 0x1, 0x8, 0x94, 0x81, 0x81, [@generic={0xa0, 0x31, "ef221049d04039f0fcbd9fb8cfb4359898b5240d0649ac4d62704a19c6359067e6b98c8578ec289bfcf23b137adba0dc174a39a98564f2bc20436000bdbac70e8e7cd3b75db760b2c957af1e2208c5edb1b9f521adfaa0aa80daded9463a82f41bb63053568222a035336a8f20f04c480e3f7d22d848cc071f3bf353d555e2a8523c62fd69f5dc88edc158164293ecc0e6e61bac623cd7437866d0ea599b"}]}}, {{0x9, 0x5, 0x4, 0x3, 0x8, 0x2, 0x9, 0x4, [@generic={0xe2, 0x8, "0e7ac1df4787193b05682197ccf0411088c7dfa2126889c9817ddd667591801cdbe713f53348281c87bca73a22ab1c4489fb0f6bad42c4b37646a63823a0fe533e41c207aa298e34d34661b0351ce422e3f671be4a5ab186cfb6f12b79c3516c84cbc26826f779b035e2a869cd5eac066d4f2a90c7799710d53109868998cf8616aa98e6e540c470c9f4b8229ca5bd1cf738a55e5679c5026d080d5ffdd15a79c65ff765ab68d3f1b53ec5b72c0b10f8eebd0a8293ca0d93c93b17edce34becdf3265a000bd7f7c26502efb57e2719d64d803d40ecd18d17ed5f1a1198318e1b"}]}}, {{0x9, 0x5, 0x4, 0x0, 0x20, 0xfa, 0x9, 0xff, [@generic={0x97, 0x7, "9cf5500decc67ceb49280b67d7b5f340302647683ed1fba8895f37fd2dfa82ff5f03cc4bbf556736fa3f1813439a165b4c062453f0443b2905fcdd2c5cbc9f033d49d3560fd7abb134d1e2c61b655fabb20a2a1f5bdc5c464f4e78827e2ed836b3d3cb8b97a6ef1165cfd51548e673be79649c6939d7e7296a75829a8dd3255762bf2332243390ba706a4300c131cd23bc4233f994"}, @generic={0xc8, 0xc, "2e97b3b6ff2aa8c52fb206f3117b83056bf51421542589df7d619c78dea7498ffb7ff2a98fbb772a67a9d59be53e6003866fcab4e3a862ef7239ee2764c953f59da3313fe1440e3934a0f77ccd2f4faf4d3faeaad024afa195069c186adbbfe24d14038189afca895b6ed81804c1ea80e7547b03bb314360c11c5f939b646d6441abcfc81ee79f7f8065e8686f4652a990365a43d76a9c3619f1e90922f408c437d0e135ed9082bc43776bad542088af9e1fbed9afec3b0317c6d6bfaf93c20ea27e9bb11a2b"}]}}, {{0x9, 0x5, 0xb, 0x0, 0x3ff, 0x3, 0x3, 0x7, [@generic={0xc7, 0x6, "8ce4f32bb36685ee47cf97d8cda8655b56c531e3f9b22c4aabeabf02f703a4e32fb1debc23177dd99248e01d826cf0552188801f8abed4e4aafce5a54903fc8f563e2a6709c709381109928fc8da984201c3372feb467d2545444adf93a89ccbfe943055e65f0a27aa6e63a59e47eea40c0a8e19bddcc594fa17213164e995dcdbada5fe8ad5755e53ad5aa8cdbda09c98be1a3ccc3f5fc1f558df17e006aae7c288dbf2ac13d9a55935cec3bc2838f937b00f815ec3fde697b89086a414a0b968503d400f"}, @generic={0xf0, 0x3, "95e7cb0048136eed1ab22f935e9bbbb429bcd90280020fffca166a7701e3afc1f8836a93e8f4a6cd05155c1618e617a5837c7087685f214b056026655fec5a966a89fc1bc70ef9279093e1abe7d3d522a1fe7533027666b5db7947af0b96710c2223ffbf8bf72e0b9c9afb086b7f93f04ef888fc1199e6ee60d41cca1dba5e0ae56d35673e6794dd8c62960b3660f44feb0dbc75917da8992f473e5613680722c6a230c599d5506101a8f856412119a4c9f0b3d3bf10822b3960ca00f02c42858a72755a3d491edd321f045ad29f03378835cb044194b5220a9f6347642293fa8968995afb7602577566ce42fc67"}]}}, {{0x9, 0x5, 0xe, 0x8, 0x13e43f4e801cf167, 0x73, 0x1, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x9, 0x8001}, @generic={0x2e, 0x15, "ef0f20b289785269443f0d255d3541214826ed463f9233bc4d47194280cba5ac840fdc028cf9d93615499d87"}]}}, {{0x9, 0x5, 0x5, 0x0, 0x10, 0x3f, 0x6, 0x20, [@generic={0x45, 0xa, "15bdf91a5a691afb637ba965a20f2e9db5466482a775775bc67af22916155f0bc7a9d1e1a355f968deda3a41365fa486951f113b54de9b41ff1d0ac6e59576468119c9"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x9, 0x7}]}}, {{0x9, 0x5, 0x7, 0x3, 0x8, 0x1, 0x5, 0x8e, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x3f}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x2, 0xfff7}]}}, {{0x9, 0x5, 0x5, 0x0, 0x200, 0x2, 0x4, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x2, 0x3}]}}, {{0x9, 0x5, 0x8, 0x18, 0x20, 0x75, 0xda, 0x7f, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x6, 0xe860}]}}, {{0x9, 0x5, 0x6, 0x10, 0x20, 0x5, 0x92, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x2, 0x340}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x8, 0x7fff}]}}, {{0x9, 0x5, 0x0, 0x8, 0x3ff, 0x2, 0x3, 0x8, [@generic={0x26, 0x37, "f1e218779c7e679a500ee73d833fd12a35089c0e70a52e26afa9bf56fd439138459b29b1"}]}}, {{0x9, 0x5, 0xb, 0x0, 0x0, 0xb0, 0x6, 0x6, [@generic={0xed, 0x11, "df4ba362c5909a76eab17b78dbca9f208ef22f1ddd1d354ff38b99c1efdce0418784cea9da1684a1c20c636847849604cdf7b1ec69555210d358099eea463fd5bd82943761200d7202fa0ff0cc3747ca57da1ee84eb1b1a8c688eaf8bdacd4149100efd030558b63f6633a167b7fd44285cd1f5c73ad5b45f4a36c14bba14e7273e17891bb3d2a8b22477c19314f2805e4c5370b4725fcdd3753c81c6c72301c7a857965b2ce047cdbdf85a9e70298b6b063f618ecf8c7f16dfa2f01e2a32a82821b90a96c1b9214b707f468d613df5433c72430f2d3f68f0d8391b793456c1beb5cf301f4c5f90c7a5709"}]}}]}}]}}]}}, &(0x7f0000001880)={0xa, &(0x7f0000001740)={0xa, 0x6, 0x310, 0x2, 0x6, 0x7, 0x40}, 0xa3, &(0x7f0000001780)=ANY=[@ANYBLOB="050fa3000383100ae6249272ecb276ee2263af5180cab760b8ba033f791c5bfe7078837ffb1fad1193a93a81af8f41ecf76eff4b984ed897f57df8346b0c8e7c6fdc349d1e7377f2dc8994576e73a9775928814f210fb3b6f06e02db6fb719af3227a35ae67f9f62d40b389cfbde26078a5074a2a422dfe397d4db08ef9d76d1ff9bae88866b2f5714100a20c23e1300000f99003000ff0000c0000007100200570100"], 0x1, [{0x4, &(0x7f0000001840)=@lang_id={0x4, 0x3, 0x200a}}]}) syz_usb_ep_write(r1, 0x6, 0x3c, &(0x7f00000018c0)="23a851e17829be9f5481f3683dc84cbab3774e4ac80466d0a826e8de3e98cbd767b1eac8328ea15b3ef0fa38b3fbf1c9380a881f6a554bf7618a3905") r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r3}, 0x10) socket$inet6_udp(0xa, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000f70000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b700000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x9362, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b7030000ddffffff850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000019c0)=0x0) r6 = fcntl$getown(r0, 0x9) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r7, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r7, 0x0) syz_clone3(&(0x7f0000001a40)={0x880200, &(0x7f0000001680), &(0x7f00000016c0), &(0x7f0000001700), {0x3f}, &(0x7f0000001900)=""/67, 0x43, &(0x7f0000001980)=""/1, &(0x7f0000001a00)=[r5, r6], 0x2, {r7}}, 0x58) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x50, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}, @IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x3}]}}}]}, 0x50}}, 0x0) 368.357839ms ago: executing program 1 (id=1519): sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000002280)=ANY=[@ANYRES32, @ANYRESDEC=r0, @ANYRES64=r1], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000000c0), 0x48) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000002380)='./file2\x00', 0x0, &(0x7f0000002300)={[{@nomblk_io_submit}, {@init_itable_val={'init_itable', 0x3d, 0x3}}, {@jqfmt_vfsold}, {@test_dummy_encryption}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x8}}]}, 0xfe, 0x483, &(0x7f0000001d00)="$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") chdir(&(0x7f0000000000)='./file0\x00') creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r2, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2}}, {@stripe={'stripe', 0x3d, 0x2004000}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@max_batch_time={'max_batch_time', 0x3d, 0x1000000000204}}]}, 0x3, 0x442, &(0x7f0000000e40)="$eJzs3MtvG0UYAPBv13FKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWlVQECpHVIk74ojEX8AJLgg4IXGFO6pUoV5aOBmtvZs4rp3Gwa5D/PtJm8zsjjXzeXbs2Z1sAhhYY9mPJGJXRPweESP17OoCY/VfN69fnP37+sXZJKrVt/5KauVuXL84WxQtXrczz4ynEelnSRxoUe/i+QunZyqV+XN5fnLpzPuTi+cvPHvqzMzJ+ZPzZ6ePHTt6ZOqF56ef60qcWZtu7P9o4eC+19658sbs8Svv/vxtUsTfFEeXjK118IlqNcpdrrCfdjekk6E+NoSOlCIi665ybfyPRClWOm8kXv20r40DeqparVZ3tj98qQpsYUmst+Tp/PMC2BqKL/rs+rfY7tDUY1O49lL9AiiL+2a+1Y8MRZqXKTdd33bTWEQcv/TPV9kWvbkPAQCwyvfZ/OeZVvO/NO5vKHd3vjY0GhH3RMSeiLg3IvZGxH0RtbIPRMSDHdbfvEhy6/wnvbqhwNYpm/+9mK9trZ7/FbO/GC3lud21+MvJiVOV+cP5ezIe5W1ZfmqNOn545bcv2h1rnP9lW1Z/MRfM23F1aNvq18zNLM38l5gbXfskYv9Qq/iT5ZWAJCL2RcT+DdZx6qlvDrY71i7+da2NdWGdqfp1xJP1/r8UTfEXkrXXJyfvisr84cnirLjVL79efrNd/bfv/97K+n9Hy/N/Of7RpHG9drHzOi7/8Xnba5qNnv/Dydu19HC+78OZpaVzUxHDyev1Rjfun155bZEvymfxjx9qPf73xMo7cSAispP4oYh4OCIeydv+aEQ8FhGH1oj/p5cff2/j8fdWFv9cR/2/khiO5j2tE6XTP363qtLRTuLP+v9oLTWe71nP59962rWxsxkAAAD+f9KI2BVJOrGcTtOJifrfy++NHWllYXHp6RMLH5ydqz8jMBrltLjTNdJwP3Qqv6wv8tNN+SP5feMvS9tr+YnZhcpcv4OHAbezzfjP/Fnqd+uAnvO8Fgwu4x8Gl/EPg8v4h8HVYvxv70c7gDuv1ff/x1vq31MB7TSNf8t+MEBc/8PgMv5hcBn/MJAWt8ftH5KX6HkijU3RjA4SkW6KZkj0KNHvTyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDu+DcAAP//2nPidw==") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='pids.events\x00', 0x275a, 0x0) mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, 0x0, &(0x7f0000000040)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000021c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x2b, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r6, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r7 = dup(r6) write$FUSE_BMAP(r7, &(0x7f0000000100)={0x18}, 0x18) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r7}}) syz_open_dev$usbmon(&(0x7f0000000140), 0x0, 0x0) syz_open_procfs(0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020}, 0x2020) dup(0xffffffffffffffff) 248.250859ms ago: executing program 0 (id=1521): r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r0, 0x5) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) flock(r1, 0x1) flock(r1, 0x2) dup3(r1, r0, 0x0) 160.321146ms ago: executing program 0 (id=1522): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008040000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e) 159.980546ms ago: executing program 0 (id=1523): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r2 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd) keyctl$read(0xb, r2, &(0x7f0000001480)=""/4102, 0x1006) 141.565727ms ago: executing program 4 (id=1524): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000400000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r0}, 0x10) r1 = gettid() process_vm_writev(r1, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socketpair$unix(0x1, 0x1, 0x0, 0x0) openat$sysfs(0xffffff9c, &(0x7f00000000c0)='/sys/power/wake_unlock', 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c08a, &(0x7f0000000200)=ANY=[@ANYBLOB="73686f72746e616d653d6d697865642c696f636861727365743d69736f383835392d312c666d61736b3d30303030303030303030303030303030303030303036362c6e6f6e756d7461696c3d302c756e695f786c6174653d302c666d61736b3d30303030303030303030303030303030303030303030332c73686f72746e616d653d6c6f7765722c756e695f786c6174653d302c757466383d312c636865636b3d7374726963742c757466383d302c756e695f786c6174653d312c756e695f786c6174653d302c666c7573682c757466383d302c726f6469722c747a3d5554432c00e696e27e745267d0e7f7d60cf64c4d116172285e0a94b37c3f04b4e454913b1615b6c103a4be033c3f79c81a7a0dc9f3282eb2b984b8df829f11f7b15ceaa2ddb341548691e92d41d923144fa5f6aa8b37c7698e74a04d87cb16f3c338160646d1719f9aa1097cb78032fa4c9c60c14840662537510c0ac9f95a646f5231c0c9eb096b898803099b3050797137354ed2fb2a3dd97ad790f0758b4561eb7180b4b366c9ac840ca3d57727827ab961af0bb24ac6b14796d3bedfa4addb1c2f59217a563ca0a3729d45669905a6f0f3dbf3fd22ab36dfe7cf80913ecb4656ca"], 0x6, 0x2c8, &(0x7f0000002500)="$eJzs3b+LHHUUAPA3d7O74w/YLaxEcEALq5BLa7NBEhCvMmyhFnqYBOR2ERI48AeOqcTOxtK/QBD8H2xt7CwF/wA7IwRGZnbmdtZM9u7k9sTc59PkZb7vzffN7HA3V9y7D15aHN7O4+6Dz3+LLEtiZxrTeJjEJHai9WWsmX4TAMD/2cOyjD/KpZ7lX79+Ql0SEdmWewMAtuOE7/+NdBX+eCFtAQBbdOudd9+6vr9/4+08z+Lm4qujWfWTffXvcv363fgo5nEnrsY4HkXULwqDqN8WqvBmWZZFmlcm8eqiOJpVlYv3f27O/9PzTbAX45jU0fHbRl3/5v6NvXypU19UfTzb7D+t9r8W43jhuHit/lpPfcyG8dornf6vxDh++TA+jnncrptY1X+xl+dvlN/++dl7VXtVfVIczUZ13kq5225eXODnAwAAAAAAAAAAAAAAAAAAAADA0+lKMztnFPX8nupQM39n91H1n0Hkrcn6fJ5lfdKeqDsfqCzLoozv2vk6V/M8L5vEVX0aL6bdwYIAAAAAAAAAAAAAAAAAAABwed3/5NPDg/n8zr1zCdppAGlE/HUr4t+eZ9o58nJsTh41ex7M5ztNuJ6Tdo/EbpuTRGxso7qIc7otJwXPPNZzE3z/Q29VuvbBpdFZyk7edNC/13kG7dN1eJD038PRcc/Z8iGpB0GscoZxyr2GT1oq4yyP37B3aXzmax8+VwfFhpxINjX2+u/LO9ccSf55FcP6rvaWD5qgU76ek53qeY5sWf7414rEtA4AAAAAAAAAAAAAAAAAANiq1W//9iw+2Fi6U4621hYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXKjV3/8/Q1A0xadIHsa9+//xJQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHAJ/B0AAP//eWdglQ==") openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket(0x10, 0x3, 0x0) symlink(&(0x7f0000000080)='./file0\x00', 0x0) 71.491464ms ago: executing program 0 (id=1525): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10) utimensat(0xffffffffffffffff, &(0x7f0000000380)='./file0/file0\x00', 0x0, 0x0) 59.072185ms ago: executing program 0 (id=1526): getpgid(0x0) prlimit64(0x0, 0x6, &(0x7f0000000000)={0xfffffffffffffffa, 0x4}, 0x0) socket(0x11, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x8}, @mcast2={0xff, 0x5}}}) 44.159046ms ago: executing program 1 (id=1527): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000807b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2000082, &(0x7f0000000240)={[{@utf8no}, {@utf8no}, {@shortname_win95}, {@numtail}, {@fat=@codepage={'codepage', 0x3d, '869'}}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@fat=@sys_immutable}, {@shortname_mixed}, {@fat=@check_strict}, {@uni_xlateno}, {@numtail}, {@uni_xlate}, {@shortname_win95}, {@shortname_mixed}, {@shortname_mixed}]}, 0x25, 0x358, &(0x7f0000000480)="$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") creat(&(0x7f0000000400)='.\x02\x00', 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000080)=@generic={&(0x7f0000000040)='.\x02\x00', r0}, 0x18) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000010000807b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b708000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000380)='sys_enter\x00', r3}, 0x10) mincore(&(0x7f0000ff0000/0x4000)=nil, 0x4000, &(0x7f00000002c0)=""/15) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10) listxattr(&(0x7f0000001e80)='./file0\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000000100)={0x0, 0x101, 0x1000, 0xa, 0x1, 0x2, 0x1, 0x400}, &(0x7f0000000140)={0x7, 0x5, 0x101, 0x0, 0x5, 0xce0b, 0x81, 0x8}, &(0x7f00000003c0)={0xff, 0x6, 0x1, 0x1, 0x0, 0x0, 0x2, 0x3}, &(0x7f0000000800), &(0x7f0000000900)={&(0x7f00000008c0)={[0x2]}, 0x8}) 0s ago: executing program 0 (id=1528): r0 = socket$xdp(0x2c, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x12, &(0x7f0000000400)=@framed={{}, [@map_idx_val, @tail_call, @printk={@ld}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) kernel console output (not intermixed with test programs): ][ T5519] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 252.210332][ T5519] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038 (0x7fffffff) [ 252.219708][ T2613] usb 5-1: new high-speed USB device number 39 using dummy_hcd [ 252.349151][ T5526] device pim6reg1 entered promiscuous mode [ 252.360893][ T24] kauditd_printk_skb: 111 callbacks suppressed [ 252.360906][ T24] audit: type=1326 audit(1721096944.238:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.390765][ T24] audit: type=1326 audit(1721096944.248:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.414622][ T24] audit: type=1326 audit(1721096944.268:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.439756][ T24] audit: type=1326 audit(1721096944.268:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.463412][ T24] audit: type=1326 audit(1721096944.268:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.487943][ T24] audit: type=1326 audit(1721096944.268:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.511508][ T24] audit: type=1326 audit(1721096944.268:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.535076][ T24] audit: type=1326 audit(1721096944.268:1888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.558424][ T24] audit: type=1326 audit(1721096944.268:1889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.581637][ T24] audit: type=1326 audit(1721096944.268:1890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5523 comm="syz.2.1232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 252.629718][ T2613] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 252.640595][ T2613] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 252.650886][ T320] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 252.658540][ T2613] usb 5-1: New USB device found, idVendor=056a, idProduct=0016, bcdDevice= 0.00 [ 252.673389][ T2613] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 252.684438][ T2613] usb 5-1: config 0 descriptor?? [ 252.899673][ T320] usb 4-1: Using ep0 maxpacket: 32 [ 252.954921][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 252.973495][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 252.985732][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 253.001380][ T485] udevd[485]: inotify_add_watch(7, /dev/loop0p18, 10) failed: No such file or directory [ 253.018098][ T485] udevd[485]: inotify_add_watch(7, /dev/loop0p18, 10) failed: No such file or directory [ 253.032351][ T485] udevd[485]: inotify_add_watch(7, /dev/loop0p18, 10) failed: No such file or directory [ 253.049828][ T320] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 253.061473][ T320] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 253.071462][ T320] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 253.080591][ T320] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 253.093379][ T320] usb 4-1: config 0 descriptor?? [ 253.130343][ T320] hub 4-1:0.0: USB hub found [ 253.221194][ T2613] wacom 0003:056A:0016.001A: Unknown device_type for 'HID 056a:0016'. Assuming pen. [ 253.239803][ T2613] wacom 0003:056A:0016.001A: hidraw0: USB HID v0.00 Device [HID 056a:0016] on usb-dummy_hcd.4-1/input0 [ 253.251741][ T2613] input: Wacom Graphire4 6x8 Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:056A:0016.001A/input/input39 [ 253.349718][ T320] hub 4-1:0.0: 1 port detected [ 253.643388][ T502] usb 2-1: USB disconnect, device number 52 [ 253.694994][ T5555] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 253.710925][ T5555] ext4 filesystem being mounted at /225/file0 supports timestamps until 2038 (0x7fffffff) [ 253.786202][ T5562] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 253.795052][ T5562] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038 (0x7fffffff) [ 253.850597][ T5567] EXT4-fs (loop1): Ignoring removed orlov option [ 253.857100][ T5567] EXT4-fs (loop1): Test dummy encryption mode enabled [ 253.864381][ T5567] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a014e09c, mo2=0002] [ 253.875928][ T5567] System zones: 1-12 [ 253.881241][ T5567] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.1245: casefold flag without casefold feature [ 253.894201][ T5567] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #12: comm syz.1.1245: missing EA_INODE flag [ 253.905783][ T5567] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1245: error while reading EA inode 12 err=-117 [ 253.918131][ T5567] EXT4-fs (loop1): 1 orphan inode deleted [ 253.923969][ T5567] EXT4-fs (loop1): mounted filesystem without journal. Opts: orlov,minixdf,max_dir_size_kb=0x0000000000009c7c,debug,grpquota,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue [ 254.011569][ T387] hub 4-1:0.0: activate --> -90 [ 254.052968][ T2613] usb 5-1: USB disconnect, device number 39 [ 254.247873][ T502] usb 4-1: USB disconnect, device number 39 [ 254.296231][ T387] hub 4-1:0.0: hub_ext_port_status failed (err = -71) [ 254.351240][ T5597] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 254.362777][ T5597] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038 (0x7fffffff) [ 254.438289][ T5604] EXT4-fs (loop1): Test dummy encryption mode enabled [ 254.510779][ T5604] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:163: inode #12: comm syz.1.1258: inline data xattr refers to an external xattr inode [ 254.525754][ T5604] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.1258: couldn't read orphan inode 12 (err -117) [ 254.537881][ T5604] EXT4-fs (loop1): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000040000,init_itable=0x0000000000000000,nolazytime,grpid,prjquota,usrjquota=,lazytime,errors=continue,errors=continue,test_dummy_encryption,,errors=continue [ 254.649731][ T2613] usb 5-1: new high-speed USB device number 40 using dummy_hcd [ 254.727638][ T5614] EXT4-fs (loop0): Ignoring removed orlov option [ 254.751959][ T5614] EXT4-fs (loop0): Test dummy encryption mode enabled [ 254.759767][ T5614] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a014e09c, mo2=0002] [ 254.767914][ T5614] System zones: 1-12 [ 254.775002][ T5614] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.1261: casefold flag without casefold feature [ 254.788490][ T5614] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.1261: missing EA_INODE flag [ 254.800260][ T5614] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1261: error while reading EA inode 12 err=-117 [ 254.812489][ T5614] EXT4-fs (loop0): 1 orphan inode deleted [ 254.818046][ T5614] EXT4-fs (loop0): mounted filesystem without journal. Opts: orlov,minixdf,max_dir_size_kb=0x0000000000009c7c,debug,grpquota,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue [ 254.999668][ T502] usb 3-1: new high-speed USB device number 48 using dummy_hcd [ 255.009710][ T2613] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 255.020525][ T2613] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 255.030371][ T2613] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 255.043462][ T2613] usb 5-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10 [ 255.052853][ T2613] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 255.061421][ T2613] usb 5-1: config 0 descriptor?? [ 255.271136][ T5640] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 255.280353][ T5640] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038 (0x7fffffff) [ 255.302516][ T5644] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 255.311288][ T5644] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038 (0x7fffffff) [ 255.340044][ T5650] exfat: Deprecated parameter 'namecase' [ 255.345753][ T5650] exfat: Deprecated parameter 'utf8' [ 255.379724][ T502] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 255.390550][ T502] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 255.400361][ T502] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 255.413040][ T502] usb 3-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10 [ 255.421856][ T502] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 255.431754][ T502] usb 3-1: config 0 descriptor?? [ 255.438695][ T5655] device pim6reg1 entered promiscuous mode [ 255.452617][ T5650] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x43dffc04, utbl_chksum : 0xe619d30d) [ 255.535195][ T5596] device syzkaller0 entered promiscuous mode [ 255.552711][ T5657] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 255.561581][ T5657] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038 (0x7fffffff) [ 255.562075][ T5596] FAT-fs (loop4): Unrecognized mount option "uid=00000000000000000000IAcO [ 255.562075][ T5596] )Ld$' ڷ/IєL„3pe39" or missing value [ 255.573694][ T5657] EXT4-fs error (device loop0) in ext4_do_update_inode:5275: error 27 [ 255.595962][ T5657] EXT4-fs error (device loop0): ext4_dirty_inode:6079: inode #2: comm syz.0.1274: mark_inode_dirty error [ 255.609419][ T5657] EXT4-fs error (device loop0) in ext4_do_update_inode:5275: error 27 [ 255.618978][ T5657] EXT4-fs error (device loop0): __ext4_ext_dirty:182: inode #2: comm syz.0.1274: mark_inode_dirty error [ 255.936219][ T5618] device syzkaller0 entered promiscuous mode [ 255.990111][ T5618] FAT-fs (loop2): Unrecognized mount option "uid=00000000000000000000IAcO [ 255.990111][ T5618] )Ld$' ڷ/IєL„3pe39" or missing value [ 255.999702][ T768] usb 4-1: new high-speed USB device number 40 using dummy_hcd [ 256.006204][ T2613] usbhid 5-1:0.0: can't add hid device: -71 [ 256.018975][ T2613] usbhid: probe of 5-1:0.0 failed with error -71 [ 256.026310][ T2613] usb 5-1: USB disconnect, device number 40 [ 256.229727][ T502] usbhid 3-1:0.0: can't add hid device: -71 [ 256.235536][ T502] usbhid: probe of 3-1:0.0 failed with error -71 [ 256.242390][ T502] usb 3-1: USB disconnect, device number 48 [ 256.249681][ T768] usb 4-1: Using ep0 maxpacket: 32 [ 256.369815][ T768] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 256.380613][ T768] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 256.390680][ T768] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 256.399805][ T768] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 256.408572][ T768] usb 4-1: config 0 descriptor?? [ 256.450104][ T768] hub 4-1:0.0: USB hub found [ 256.487666][ T5688] EXT4-fs (loop1): Test dummy encryption mode enabled [ 256.497946][ T5688] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:163: inode #12: comm syz.1.1281: inline data xattr refers to an external xattr inode [ 256.512789][ T5688] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.1281: couldn't read orphan inode 12 (err -117) [ 256.524590][ T5688] EXT4-fs (loop1): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000040000,init_itable=0x0000000000000000,nolazytime,grpid,prjquota,usrjquota=,lazytime,errors=continue,errors=continue,test_dummy_encryption,,errors=continue [ 256.571507][ T5691] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 256.580389][ T5691] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038 (0x7fffffff) [ 256.670166][ T768] hub 4-1:0.0: 1 port detected [ 256.691217][ T5700] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 256.700089][ T5700] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038 (0x7fffffff) [ 256.726122][ T5700] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 256.734426][ T5700] EXT4-fs error (device loop4): ext4_dirty_inode:6079: inode #2: comm syz.4.1285: mark_inode_dirty error [ 256.745942][ T5700] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 256.754196][ T5700] EXT4-fs error (device loop4): __ext4_ext_dirty:182: inode #2: comm syz.4.1285: mark_inode_dirty error [ 257.021922][ T5719] device syzkaller0 entered promiscuous mode [ 257.199801][ T5728] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 257.208719][ T5728] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038 (0x7fffffff) [ 257.278751][ T5741] FAULT_INJECTION: forcing a failure. [ 257.278751][ T5741] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 257.291779][ T5741] CPU: 1 PID: 5741 Comm: syz.0.1298 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 257.301409][ T5741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 257.311299][ T5741] Call Trace: [ 257.314436][ T5741] dump_stack_lvl+0x1e2/0x24b [ 257.318948][ T5741] ? bfq_pos_tree_add_move+0x43b/0x43b [ 257.324243][ T5741] ? shmem_getpage_gfp+0x2230/0x2480 [ 257.329355][ T5741] dump_stack+0x15/0x17 [ 257.333345][ T5741] should_fail+0x3c6/0x510 [ 257.337601][ T5741] should_fail_usercopy+0x1a/0x20 [ 257.342462][ T5741] iov_iter_copy_from_user_atomic+0x391/0xd80 [ 257.348362][ T5741] ? shmem_getpage+0xa0/0xa0 [ 257.352792][ T5741] ? iov_iter_fault_in_readable+0x31f/0x4f0 [ 257.358516][ T5741] ? memzero_page+0x100/0x100 [ 257.363034][ T5741] generic_perform_write+0x34c/0x570 [ 257.368153][ T5741] ? grab_cache_page_write_begin+0xa0/0xa0 [ 257.373794][ T5741] ? file_remove_privs+0x570/0x570 [ 257.378742][ T5741] ? __kasan_check_write+0x14/0x20 [ 257.383690][ T5741] __generic_file_write_iter+0x23c/0x560 [ 257.389157][ T5741] ? generic_write_checks+0x3b9/0x470 [ 257.394364][ T5741] generic_file_write_iter+0xaf/0x1c0 [ 257.399571][ T5741] vfs_write+0xb55/0xe70 [ 257.403650][ T5741] ? kernel_write+0x3d0/0x3d0 [ 257.408162][ T5741] ? mutex_trylock+0xa0/0xa0 [ 257.412595][ T5741] ? __fdget_pos+0x2e7/0x3a0 [ 257.417014][ T5741] ? ksys_write+0x77/0x2c0 [ 257.421266][ T5741] ksys_write+0x199/0x2c0 [ 257.425432][ T5741] ? __ia32_sys_read+0x90/0x90 [ 257.430037][ T5741] ? debug_smp_processor_id+0x17/0x20 [ 257.435240][ T5741] __x64_sys_write+0x7b/0x90 [ 257.439670][ T5741] do_syscall_64+0x34/0x70 [ 257.443926][ T5741] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 257.449648][ T5741] RIP: 0033:0x7f9b1d2c4bd9 [ 257.453901][ T5741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 257.473362][ T5741] RSP: 002b:00007f9b1c546048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 257.481590][ T5741] RAX: ffffffffffffffda RBX: 00007f9b1d452f60 RCX: 00007f9b1d2c4bd9 [ 257.489483][ T5741] RDX: 0000000000040010 RSI: 0000000020000180 RDI: 0000000000000009 [ 257.497294][ T5741] RBP: 00007f9b1c5460a0 R08: 0000000000000000 R09: 0000000000000000 [ 257.505105][ T5741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 257.512919][ T5741] R13: 000000000000000b R14: 00007f9b1d452f60 R15: 00007ffe5b8a0ad8 [ 257.604626][ T24] kauditd_printk_skb: 109 callbacks suppressed [ 257.604647][ T24] audit: type=1400 audit(1721096949.398:2000): avc: denied { create } for pid=5730 comm="syz.4.1296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 257.635535][ T24] audit: type=1400 audit(1721096949.398:2001): avc: denied { write } for pid=5730 comm="syz.4.1296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 257.656538][ T24] audit: type=1400 audit(1721096949.398:2002): avc: denied { nlmsg_read } for pid=5730 comm="syz.4.1296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 257.748835][ T289] hub 4-1:0.0: activate --> -90 [ 257.761140][ T24] audit: type=1326 audit(1721096949.628:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5745 comm="syz.0.1300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 257.788191][ T24] audit: type=1326 audit(1721096949.628:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5745 comm="syz.0.1300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 257.811587][ T24] audit: type=1326 audit(1721096949.628:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5745 comm="syz.0.1300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 257.847435][ T5748] overlayfs: missing 'lowerdir' [ 257.859595][ T5753] FAULT_INJECTION: forcing a failure. [ 257.859595][ T5753] name failslab, interval 1, probability 0, space 0, times 0 [ 257.872088][ T5753] CPU: 1 PID: 5753 Comm: syz.1.1302 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 257.881715][ T5753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 257.891608][ T5753] Call Trace: [ 257.894742][ T5753] dump_stack_lvl+0x1e2/0x24b [ 257.899254][ T5753] ? panic+0x812/0x812 [ 257.903168][ T5753] ? bfq_pos_tree_add_move+0x43b/0x43b [ 257.908454][ T5753] dump_stack+0x15/0x17 [ 257.912461][ T5753] should_fail+0x3c6/0x510 [ 257.916697][ T5753] ? security_inode_alloc+0x29/0x120 [ 257.921819][ T5753] __should_failslab+0xa4/0xe0 [ 257.926420][ T5753] should_failslab+0x9/0x20 [ 257.930768][ T5753] kmem_cache_alloc+0x3d/0x2e0 [ 257.935357][ T5753] security_inode_alloc+0x29/0x120 [ 257.940304][ T5753] inode_init_always+0x767/0x9f0 [ 257.945077][ T5753] ? shmem_match+0x180/0x180 [ 257.949592][ T5753] new_inode_pseudo+0x93/0x220 [ 257.954195][ T5753] new_inode+0x28/0x1c0 [ 257.958183][ T5753] shmem_get_inode+0x328/0x9e0 [ 257.962786][ T5753] __shmem_file_setup+0x111/0x2a0 [ 257.967645][ T5753] shmem_file_setup+0x2f/0x40 [ 257.972159][ T5753] __se_sys_memfd_create+0x1e1/0x3c0 [ 257.977281][ T5753] __x64_sys_memfd_create+0x5b/0x70 [ 257.982309][ T5753] do_syscall_64+0x34/0x70 [ 257.986586][ T5753] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 257.992289][ T5753] RIP: 0033:0x7fa4f9f1ebd9 [ 257.996549][ T5753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.016074][ T5753] RSP: 002b:00007fa4f919fe28 EFLAGS: 00000206 ORIG_RAX: 000000000000013f [ 258.024321][ T5753] RAX: ffffffffffffffda RBX: 00000000000014fb RCX: 00007fa4f9f1ebd9 [ 258.032133][ T5753] RDX: 00007fa4f919ff00 RSI: 0000000000000000 RDI: 00007fa4f9f8cd24 [ 258.039945][ T5753] RBP: 0000000020003f40 R08: 00007fa4f919fbc7 R09: 00007fa4f919fe50 [ 258.047753][ T5753] R10: 000000000000000a R11: 0000000000000206 R12: 0000000020000040 [ 258.055565][ T5753] R13: 00007fa4f919ff00 R14: 00007fa4f919fec0 R15: 0000000020000500 [ 258.089873][ T290] usb 4-1: USB disconnect, device number 40 [ 258.456173][ T5757] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 258.465037][ T5757] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038 (0x7fffffff) [ 258.700262][ T5782] fuse: Unknown parameter 'user`v+id' [ 258.790753][ T5778] EXT4-fs (loop4): Test dummy encryption mode enabled [ 258.808029][ T5778] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:163: inode #12: comm syz.4.1309: inline data xattr refers to an external xattr inode [ 258.823315][ T5778] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1309: couldn't read orphan inode 12 (err -117) [ 258.835098][ T5778] EXT4-fs (loop4): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000040000,init_itable=0x0000000000000000,nolazytime,grpid,prjquota,usrjquota=,lazytime,errors=continue,errors=continue,test_dummy_encryption,,errors=continue [ 258.973805][ T5794] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.1315: casefold flag without casefold feature [ 258.986880][ T5794] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.1315: missing EA_INODE flag [ 259.001874][ T5794] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1315: error while reading EA inode 12 err=-117 [ 259.014264][ T5794] EXT4-fs (loop0): 1 orphan inode deleted [ 259.019849][ T5794] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable,journal_dev=0x0000000000000007,quota,noinit_itable,errors=continue,errors=continue,errors=remount-ro,delalloc,auto_da_alloc,norecovery,errors=continue,journal_ioprio=0x0000000000000001, [ 259.239785][ T290] usb 3-1: new high-speed USB device number 49 using dummy_hcd [ 259.499661][ T53] usb 1-1: new high-speed USB device number 49 using dummy_hcd [ 259.538527][ T5821] EXT4-fs (loop1): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro, [ 259.659746][ T290] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 259.670650][ T290] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 259.681305][ T290] usb 3-1: New USB device found, idVendor=056a, idProduct=0016, bcdDevice= 0.00 [ 259.690936][ T290] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 260.093308][ T290] usb 3-1: config 0 descriptor?? [ 260.139720][ T53] usb 1-1: Using ep0 maxpacket: 16 [ 260.365375][ T24] audit: type=1400 audit(1721096952.078:2006): avc: denied { mount } for pid=5832 comm="syz.3.1323" name="/" dev="ramfs" ino=35444 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 260.392984][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 260.405691][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 260.418075][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 260.430332][ T53] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 260.539795][ T1357] usb 5-1: new high-speed USB device number 41 using dummy_hcd [ 260.629752][ T53] usb 1-1: New USB device found, idVendor=0b57, idProduct=2bbd, bcdDevice=e7.cc [ 260.638623][ T53] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 260.646444][ T53] usb 1-1: Product: syz [ 260.650412][ T53] usb 1-1: Manufacturer: syz [ 260.654821][ T53] usb 1-1: SerialNumber: syz [ 260.659870][ T53] usb 1-1: config 0 descriptor?? [ 260.691191][ T290] wacom 0003:056A:0016.001B: Unknown device_type for 'HID 056a:0016'. Assuming pen. [ 260.700958][ T53] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 260.709168][ T290] wacom 0003:056A:0016.001B: hidraw0: USB HID v0.00 Device [HID 056a:0016] on usb-dummy_hcd.2-1/input0 [ 260.719689][ T768] usb 2-1: new high-speed USB device number 53 using dummy_hcd [ 260.720699][ T290] input: Wacom Graphire4 6x8 Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:0016.001B/input/input42 [ 260.759789][ T320] usb 4-1: new high-speed USB device number 41 using dummy_hcd [ 260.799662][ T1357] usb 5-1: Using ep0 maxpacket: 16 [ 260.929759][ T1357] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 261.089700][ T768] usb 2-1: config index 0 descriptor too short (expected 146, got 18) [ 261.089722][ T1357] usb 5-1: New USB device found, idVendor=0b57, idProduct=2bbd, bcdDevice=e7.cc [ 261.106695][ T1357] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 261.114807][ T1357] usb 5-1: Product: syz [ 261.118766][ T1357] usb 5-1: Manufacturer: syz [ 261.123276][ T1357] usb 5-1: SerialNumber: syz [ 261.128174][ T1357] usb 5-1: config 0 descriptor?? [ 261.139720][ T320] usb 4-1: config index 0 descriptor too short (expected 64575, got 68) [ 261.147848][ T320] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 261.157916][ T320] usb 4-1: config 1 interface 0 altsetting 0 has an invalid endpoint descriptor of length 3, skipping [ 261.168724][ T320] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 6 [ 261.181910][ T1357] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 261.259724][ T768] usb 2-1: New USB device found, idVendor=066b, idProduct=20f9, bcdDevice=ff.94 [ 261.268735][ T768] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 261.276527][ T768] usb 2-1: Product: syz [ 261.279733][ T320] usb 4-1: config index 1 descriptor too short (expected 64575, got 68) [ 261.280534][ T768] usb 2-1: Manufacturer: syz [ 261.288679][ T320] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 261.293111][ T768] usb 2-1: SerialNumber: syz [ 261.303371][ T320] usb 4-1: config 1 interface 0 altsetting 0 has an invalid endpoint descriptor of length 3, skipping [ 261.312441][ T768] usb 2-1: config 0 descriptor?? [ 261.318437][ T320] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 6 [ 261.389698][ T320] usb 4-1: string descriptor 0 read error: -71 [ 261.395808][ T320] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 261.405116][ T320] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 261.439764][ T320] usb 4-1: can't set config #1, error -71 [ 261.446680][ T320] usb 4-1: USB disconnect, device number 41 [ 261.465443][ T1357] usb 3-1: USB disconnect, device number 49 [ 261.869367][ T24] audit: type=1400 audit(1721096953.738:2007): avc: denied { unmount } for pid=4072 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 261.889661][ T1357] usb 3-1: new high-speed USB device number 50 using dummy_hcd [ 261.952884][ T24] audit: type=1400 audit(1721096953.828:2008): avc: denied { read } for pid=5848 comm="syz.3.1328" name="loop-control" dev="devtmpfs" ino=110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 261.977700][ T24] audit: type=1400 audit(1721096953.828:2009): avc: denied { open } for pid=5848 comm="syz.3.1328" path="/dev/loop-control" dev="devtmpfs" ino=110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 262.002454][ T5850] FAULT_INJECTION: forcing a failure. [ 262.002454][ T5850] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 262.015329][ T5850] CPU: 0 PID: 5850 Comm: syz.3.1328 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 262.024986][ T5850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 262.034883][ T5850] Call Trace: [ 262.038019][ T5850] dump_stack_lvl+0x1e2/0x24b [ 262.042531][ T5850] ? bfq_pos_tree_add_move+0x43b/0x43b [ 262.047833][ T5850] dump_stack+0x15/0x17 [ 262.051810][ T5850] should_fail+0x3c6/0x510 [ 262.056066][ T5850] should_fail_usercopy+0x1a/0x20 [ 262.060930][ T5850] _copy_from_user+0x20/0xd0 [ 262.065366][ T5850] ipv6_setsockopt+0x35d/0x3ea0 [ 262.070041][ T5850] ? is_bpf_text_address+0x172/0x190 [ 262.075171][ T5850] ? stack_trace_save+0x1c0/0x1c0 [ 262.080022][ T5850] ? unwind_get_return_address+0x4d/0x90 [ 262.085488][ T5850] ? ipv6_update_options+0x390/0x390 [ 262.090660][ T5850] ? stack_trace_save+0x113/0x1c0 [ 262.095469][ T5850] ? terminate_walk+0x407/0x4f0 [ 262.100162][ T5850] ? stack_trace_snprint+0xf0/0xf0 [ 262.105107][ T5850] ? kmem_cache_free+0xa9/0x1e0 [ 262.109791][ T5850] ? kmem_cache_free+0xa9/0x1e0 [ 262.114474][ T5850] ? kasan_set_track+0x5d/0x70 [ 262.119078][ T5850] ? kasan_set_track+0x4b/0x70 [ 262.123672][ T5850] ? kasan_set_free_info+0x23/0x40 [ 262.128626][ T5850] ? ____kasan_slab_free+0x121/0x160 [ 262.133741][ T5850] ? __kasan_slab_free+0x11/0x20 [ 262.138513][ T5850] ? slab_free_freelist_hook+0xc0/0x190 [ 262.143907][ T5850] ? kmem_cache_free+0xa9/0x1e0 [ 262.148588][ T5850] ? putname+0xe7/0x140 [ 262.152575][ T5850] ? do_sys_openat2+0x5e1/0x6f0 [ 262.157265][ T5850] ? __x64_sys_openat+0x243/0x290 [ 262.162127][ T5850] ? do_syscall_64+0x34/0x70 [ 262.166564][ T5850] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 262.172455][ T5850] ? _kstrtoull+0x3a0/0x4a0 [ 262.176811][ T5850] ? kstrtouint_from_user+0x20a/0x2a0 [ 262.182006][ T5850] ? avc_has_perm+0x14d/0x400 [ 262.186523][ T5850] ? avc_has_perm+0x275/0x400 [ 262.191030][ T5850] ? memset+0x35/0x40 [ 262.194852][ T5850] ? avc_has_perm_noaudit+0x240/0x240 [ 262.200055][ T5850] ? proc_fail_nth_write+0x20b/0x290 [ 262.205181][ T5850] ? security_file_permission+0x86/0xb0 [ 262.210561][ T5850] ? selinux_socket_setsockopt+0x260/0x360 [ 262.216218][ T5850] ? selinux_socket_getsockopt+0x340/0x340 [ 262.221845][ T5850] udpv6_setsockopt+0x8c/0xa0 [ 262.226354][ T5850] sock_common_setsockopt+0xa2/0xc0 [ 262.231387][ T5850] ? sock_common_recvmsg+0x240/0x240 [ 262.236509][ T5850] __sys_setsockopt+0x502/0x870 [ 262.241205][ T5850] ? __ia32_sys_recv+0xb0/0xb0 [ 262.245800][ T5850] __x64_sys_setsockopt+0xbf/0xd0 [ 262.250676][ T5850] do_syscall_64+0x34/0x70 [ 262.255008][ T5850] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 262.260724][ T5850] RIP: 0033:0x7f97f906dbd9 [ 262.264976][ T5850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 262.269676][ T1357] usb 3-1: Using ep0 maxpacket: 8 [ 262.284419][ T5850] RSP: 002b:00007f97f82ce048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 262.284435][ T5850] RAX: ffffffffffffffda RBX: 00007f97f91fc038 RCX: 00007f97f906dbd9 [ 262.284442][ T5850] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000008 [ 262.284450][ T5850] RBP: 00007f97f82ce0a0 R08: 0000000000000350 R09: 0000000000000000 [ 262.284457][ T5850] R10: 00000000200005c0 R11: 0000000000000246 R12: 0000000000000001 [ 262.284464][ T5850] R13: 000000000000006e R14: 00007f97f91fc038 R15: 00007ffccb95cc18 [ 262.308895][ T502] usb 1-1: USB disconnect, device number 49 [ 262.387385][ T5851] EXT4-fs (loop3): Test dummy encryption mode enabled [ 262.394785][ T340] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 262.395761][ T5851] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:163: inode #12: comm syz.3.1328: inline data xattr refers to an external xattr inode [ 262.407912][ T340] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.422046][ T5851] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1328: couldn't read orphan inode 12 (err -117) [ 262.434207][ T340] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 262.445517][ T5851] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000040000,init_itable=0x0000000000000000,nolazytime,grpid,prjquota,usrjquota=,lazytime,errors=continue,errors=continue,test_dummy_encryption,,errors=continue [ 262.492320][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 262.504670][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.516550][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 262.589730][ T1357] usb 3-1: config 32 has an invalid interface number: 77 but max is 1 [ 262.597880][ T1357] usb 3-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 262.606481][ T1357] usb 3-1: config 32 contains an unexpected descriptor of type 0x2, skipping [ 262.615020][ T1357] usb 3-1: config 32 has an invalid interface association descriptor of length 5, skipping [ 262.624844][ T1357] usb 3-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config [ 262.635007][ T1357] usb 3-1: config 32 has 1 interface, different from the descriptor's value: 2 [ 262.643767][ T1357] usb 3-1: config 32 has no interface number 0 [ 262.649769][ T1357] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 262.660660][ T1357] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 262.671460][ T1357] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 262.672993][ T289] usb 5-1: USB disconnect, device number 41 [ 262.682569][ T1357] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 262.699473][ T1357] usb 3-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 262.715727][ T1357] usb 3-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 262.726497][ T1357] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 262.738488][ T1357] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 262.749379][ T1357] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 262.760321][ T1357] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 262.771722][ T1357] usb 3-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12 [ 262.784850][ T1357] usb 3-1: config 32 interface 77 has no altsetting 0 [ 262.849663][ T502] usb 1-1: new high-speed USB device number 50 using dummy_hcd [ 262.911066][ T5869] EXT4-fs (loop3): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro, [ 262.972459][ T1357] usb 3-1: Dual-Role OTG device on HNP port [ 262.989681][ T1357] usb 3-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 262.998533][ T1357] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 263.006487][ T1357] usb 3-1: Product: syz [ 263.010428][ T1357] usb 3-1: Manufacturer: syz [ 263.014839][ T1357] usb 3-1: SerialNumber: syz [ 263.289671][ T502] usb 1-1: Using ep0 maxpacket: 8 [ 263.459705][ T768] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 263.469500][ T768] asix: probe of 2-1:0.0 failed with error -71 [ 263.477221][ T768] usb 2-1: USB disconnect, device number 53 [ 263.483318][ T24] kauditd_printk_skb: 1 callbacks suppressed [ 263.483333][ T24] audit: type=1326 audit(1721096955.358:2011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.489727][ T502] usb 1-1: config 32 has an invalid interface number: 77 but max is 1 [ 263.521136][ T24] audit: type=1326 audit(1721096955.358:2012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.526844][ T502] usb 1-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 263.550630][ T1357] usb 3-1: USB disconnect, device number 50 [ 263.561525][ T502] usb 1-1: config 32 contains an unexpected descriptor of type 0x2, skipping [ 263.571062][ T502] usb 1-1: config 32 has an invalid interface association descriptor of length 5, skipping [ 263.577245][ T24] audit: type=1326 audit(1721096955.358:2013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.581769][ T502] usb 1-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config [ 263.612175][ T24] audit: type=1326 audit(1721096955.358:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.617275][ T502] usb 1-1: config 32 has 1 interface, different from the descriptor's value: 2 [ 263.642936][ T24] audit: type=1326 audit(1721096955.358:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.649027][ T502] usb 1-1: config 32 has no interface number 0 [ 263.675456][ T24] audit: type=1326 audit(1721096955.358:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.675474][ T24] audit: type=1326 audit(1721096955.358:2017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.675492][ T24] audit: type=1326 audit(1721096955.358:2018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.675509][ T24] audit: type=1326 audit(1721096955.358:2019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.675527][ T24] audit: type=1326 audit(1721096955.358:2020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5880 comm="syz.1.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4f9f1ebd9 code=0x7ffc0000 [ 263.793858][ T502] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 263.804642][ T502] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 263.815391][ T502] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 263.826244][ T502] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 263.837003][ T502] usb 1-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 263.847782][ T502] usb 1-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 263.858580][ T502] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 263.869524][ T502] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 263.880275][ T502] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 263.891219][ T502] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 263.902007][ T502] usb 1-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12 [ 263.915575][ T502] usb 1-1: config 32 interface 77 has no altsetting 0 [ 264.311398][ T5897] FAULT_INJECTION: forcing a failure. [ 264.311398][ T5897] name failslab, interval 1, probability 0, space 0, times 0 [ 264.339723][ T5897] CPU: 1 PID: 5897 Comm: syz.3.1338 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 264.349526][ T5897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 264.359422][ T5897] Call Trace: [ 264.359716][ T502] usb 1-1: Dual-Role OTG device on HNP port [ 264.362556][ T5897] dump_stack_lvl+0x1e2/0x24b [ 264.372880][ T5897] ? panic+0x812/0x812 [ 264.376904][ T5897] ? tracing_record_taskinfo_sched_switch+0x84/0x390 [ 264.379693][ T502] usb 1-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 264.383591][ T5897] ? bfq_pos_tree_add_move+0x43b/0x43b [ 264.392578][ T768] usb 2-1: new high-speed USB device number 54 using dummy_hcd [ 264.397735][ T5897] ? __kasan_check_read+0x11/0x20 [ 264.409967][ T5897] ? preempt_schedule_irq+0xe7/0x140 [ 264.413460][ T502] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 264.415105][ T5897] dump_stack+0x15/0x17 [ 264.426891][ T5897] should_fail+0x3c6/0x510 [ 264.427089][ T502] usb 1-1: Product: syz [ 264.431139][ T5897] ? proc_self_get_link+0xe6/0x180 [ 264.431151][ T5897] __should_failslab+0xa4/0xe0 [ 264.431161][ T5897] should_failslab+0x9/0x20 [ 264.431173][ T5897] kmem_cache_alloc_trace+0x3a/0x2e0 [ 264.431184][ T5897] proc_self_get_link+0xe6/0x180 [ 264.431194][ T5897] ? proc_setup_self+0x2f0/0x2f0 [ 264.431207][ T5897] pick_link+0x5fd/0xcb0 [ 264.431227][ T5897] step_into+0xbbb/0xec0 [ 264.443098][ T502] usb 1-1: Manufacturer: syz [ 264.444687][ T5897] ? set_root+0x3d0/0x3d0 [ 264.449020][ T502] usb 1-1: SerialNumber: syz [ 264.454139][ T5897] ? selinux_inode_permission+0x449/0x690 [ 264.454151][ T5897] walk_component+0x359/0x610 [ 264.454163][ T5897] ? nd_alloc_stack+0xf0/0xf0 [ 264.454175][ T5897] ? security_inode_permission+0xb0/0xf0 [ 264.454187][ T5897] ? inode_permission+0xf1/0x500 [ 264.454198][ T5897] link_path_walk+0x5c7/0xbd0 [ 264.454219][ T5897] ? handle_lookup_down+0x130/0x130 [ 264.519248][ T5897] path_openat+0x26a/0x3000 [ 264.523591][ T5897] ? tracing_record_taskinfo_sched_switch+0x84/0x390 [ 264.530099][ T5897] ? _raw_spin_unlock_irq+0x4e/0x70 [ 264.535129][ T5897] ? switch_mm_irqs_off+0x71b/0x9a0 [ 264.540172][ T5897] ? do_filp_open+0x460/0x460 [ 264.544672][ T5897] ? release_firmware_map_entry+0x192/0x192 [ 264.550411][ T5897] ? __kasan_check_read+0x11/0x20 [ 264.555257][ T5897] do_filp_open+0x21c/0x460 [ 264.559595][ T5897] ? vfs_tmpfile+0x2b0/0x2b0 [ 264.564029][ T5897] ? get_unused_fd_flags+0x94/0xa0 [ 264.568972][ T5897] do_sys_openat2+0x13f/0x6f0 [ 264.573481][ T5897] ? __kasan_check_write+0x14/0x20 [ 264.578427][ T5897] ? mutex_lock+0xa5/0x110 [ 264.582683][ T5897] ? mutex_trylock+0xa0/0xa0 [ 264.587113][ T5897] ? do_sys_open+0x220/0x220 [ 264.591540][ T5897] ? __kasan_check_write+0x14/0x20 [ 264.596486][ T5897] ? ksys_write+0x260/0x2c0 [ 264.600823][ T5897] __x64_sys_openat+0x243/0x290 [ 264.605511][ T5897] ? __ia32_sys_open+0x270/0x270 [ 264.610285][ T5897] ? debug_smp_processor_id+0x17/0x20 [ 264.615491][ T5897] do_syscall_64+0x34/0x70 [ 264.619748][ T5897] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 264.625473][ T5897] RIP: 0033:0x7f97f906c610 [ 264.629746][ T5897] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 79 8d 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 cc 8d 02 00 8b 44 [ 264.649171][ T5897] RSP: 002b:00007f97f82acf70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 264.657412][ T5897] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f97f906c610 [ 264.665224][ T5897] RDX: 0000000000000000 RSI: 00007f97f90db609 RDI: 00000000ffffff9c [ 264.673033][ T5897] RBP: 00007f97f90db609 R08: 0000000000000000 R09: 0000000000000000 [ 264.680845][ T5897] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 264.688672][ T5897] R13: 000000000000006e R14: 00007f97f91fc110 R15: 00007ffccb95cc18 [ 264.697009][ T320] usb 5-1: new high-speed USB device number 42 using dummy_hcd [ 264.769769][ T768] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 264.781096][ T768] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 264.792139][ T5902] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 264.800951][ T5902] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038 (0x7fffffff) [ 264.811718][ T768] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 264.839506][ T5902] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 264.849374][ T768] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 264.858685][ T5902] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.1342: mark_inode_dirty error [ 264.870123][ T768] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 264.878564][ T5902] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 264.890437][ T768] usb 2-1: config 0 descriptor?? [ 264.895631][ T5902] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.1342: mark_inode_dirty error [ 264.918949][ T502] usb 1-1: USB disconnect, device number 50 [ 264.959704][ T320] usb 5-1: Using ep0 maxpacket: 16 [ 265.027285][ T5913] SELinux: Context system_u:object_r:devicekit_exec_t:s0 is not valid (left unmapped). [ 265.045375][ T5915] bridge0: port 2(bridge_slave_1) entered disabled state [ 265.052406][ T5915] bridge0: port 1(bridge_slave_0) entered disabled state [ 265.075297][ T5915] syz.3.1345[5915] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 265.075355][ T5915] syz.3.1345[5915] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 265.087895][ T5915] bridge0: port 2(bridge_slave_1) entered blocking state [ 265.105855][ T5915] bridge0: port 2(bridge_slave_1) entered forwarding state [ 265.112979][ T5915] bridge0: port 1(bridge_slave_0) entered blocking state [ 265.119836][ T5915] bridge0: port 1(bridge_slave_0) entered forwarding state [ 265.126969][ T5915] FAULT_INJECTION: forcing a failure. [ 265.126969][ T5915] name failslab, interval 1, probability 0, space 0, times 0 [ 265.139450][ T5915] CPU: 1 PID: 5915 Comm: syz.3.1345 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 265.149075][ T5915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 265.158951][ T5915] Call Trace: [ 265.162092][ T5915] dump_stack_lvl+0x1e2/0x24b [ 265.166624][ T5915] ? bfq_pos_tree_add_move+0x43b/0x43b [ 265.171887][ T5915] dump_stack+0x15/0x17 [ 265.175981][ T5915] should_fail+0x3c6/0x510 [ 265.180237][ T5915] ? br_ifinfo_notify+0x123/0x2b0 [ 265.185089][ T5915] __should_failslab+0xa4/0xe0 [ 265.189708][ T5915] should_failslab+0x9/0x20 [ 265.194183][ T5915] __kmalloc_track_caller+0x5f/0x320 [ 265.199291][ T5915] ? kmem_cache_alloc+0x168/0x2e0 [ 265.204358][ T5915] ? __alloc_skb+0x80/0x510 [ 265.208719][ T5915] ? br_ifinfo_notify+0x123/0x2b0 [ 265.213562][ T5915] __alloc_skb+0xbc/0x510 [ 265.217730][ T5915] br_ifinfo_notify+0x123/0x2b0 [ 265.222413][ T5915] br_stp_enable_port+0x19d/0x260 [ 265.227277][ T5915] br_stp_enable_bridge+0x22b/0x2c0 [ 265.232335][ T5915] br_dev_open+0x71/0xe0 [ 265.236386][ T5915] __dev_open+0x353/0x4e0 [ 265.240551][ T5915] ? dev_open+0x260/0x260 [ 265.244724][ T5915] ? _raw_spin_unlock_bh+0x51/0x60 [ 265.249671][ T5915] ? dev_set_rx_mode+0x245/0x2e0 [ 265.254441][ T5915] ? __kasan_check_read+0x11/0x20 [ 265.259312][ T5915] __dev_change_flags+0x1db/0x6e0 [ 265.264171][ T5915] ? dev_get_flags+0x1e0/0x1e0 [ 265.268778][ T5915] ? selinux_capable+0x2f1/0x430 [ 265.273535][ T5915] ? selinux_capset+0xf0/0xf0 [ 265.278051][ T5915] dev_change_flags+0x8c/0x1a0 [ 265.282646][ T5915] dev_ifsioc+0x115/0xae0 [ 265.286817][ T5915] ? dev_ioctl+0xb40/0xb40 [ 265.291071][ T5915] ? dev_get_by_name_rcu+0xc5/0xf0 [ 265.296014][ T5915] dev_ioctl+0x526/0xb40 [ 265.300105][ T5915] sock_do_ioctl+0x295/0x3a0 [ 265.304521][ T5915] ? sock_show_fdinfo+0xa0/0xa0 [ 265.309219][ T5915] ? kernel_write+0x3d0/0x3d0 [ 265.313854][ T5915] ? selinux_file_ioctl+0x3cc/0x540 [ 265.318871][ T5915] sock_ioctl+0x4a6/0x760 [ 265.323040][ T5915] ? sock_poll+0x340/0x340 [ 265.327298][ T5915] ? security_file_ioctl+0x84/0xb0 [ 265.332230][ T5915] ? sock_poll+0x340/0x340 [ 265.336567][ T5915] __se_sys_ioctl+0x114/0x190 [ 265.341088][ T5915] __x64_sys_ioctl+0x7b/0x90 [ 265.345512][ T5915] do_syscall_64+0x34/0x70 [ 265.349763][ T5915] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 265.355487][ T5915] RIP: 0033:0x7f97f906dbd9 [ 265.359741][ T5915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 265.379192][ T5915] RSP: 002b:00007f97f82ef048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 265.387438][ T5915] RAX: ffffffffffffffda RBX: 00007f97f91fbf60 RCX: 00007f97f906dbd9 [ 265.395336][ T5915] RDX: 0000000020000900 RSI: 0000000000008914 RDI: 0000000000000009 [ 265.403226][ T5915] RBP: 00007f97f82ef0a0 R08: 0000000000000000 R09: 0000000000000000 [ 265.411045][ T5915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 265.419036][ T5915] R13: 000000000000000b R14: 00007f97f91fbf60 R15: 00007ffccb95cc18 [ 265.427428][ T5915] device bridge0 entered promiscuous mode [ 265.471304][ T768] plantronics 0003:047F:FFFF.001C: No inputs registered, leaving [ 265.484219][ T768] plantronics 0003:047F:FFFF.001C: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 265.517015][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 265.538924][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 265.547406][ T320] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 265.560714][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 265.597707][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 265.610084][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 265.622121][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 265.660919][ T5927] EXT4-fs (loop2): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro, [ 265.940892][ T320] usb 5-1: New USB device found, idVendor=0b57, idProduct=2bbd, bcdDevice=e7.cc [ 265.969971][ T320] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 265.977933][ T320] usb 5-1: Product: syz [ 266.029304][ T320] usb 5-1: Manufacturer: syz [ 266.034033][ T320] usb 5-1: SerialNumber: syz [ 266.046429][ T320] usb 5-1: config 0 descriptor?? [ 266.079690][ T290] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 266.090527][ T320] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 266.397039][ T5935] udc-core: couldn't find an available UDC or it's busy [ 266.403990][ T5935] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 266.563420][ T5946] sit: Dst spoofed 0.0.0.0/2002:: -> 0.0.0.0/2002:0:800::12:0:0 [ 266.572803][ T5946] FAULT_INJECTION: forcing a failure. [ 266.572803][ T5946] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 266.585860][ T5946] CPU: 1 PID: 5946 Comm: syz.0.1353 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 266.595583][ T5946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 266.605470][ T5946] Call Trace: [ 266.608599][ T5946] dump_stack_lvl+0x1e2/0x24b [ 266.613113][ T5946] ? bfq_pos_tree_add_move+0x43b/0x43b [ 266.618417][ T5946] dump_stack+0x15/0x17 [ 266.622397][ T5946] should_fail+0x3c6/0x510 [ 266.626655][ T5946] should_fail_usercopy+0x1a/0x20 [ 266.631523][ T5946] _copy_to_user+0x20/0x90 [ 266.635769][ T5946] simple_read_from_buffer+0xc7/0x150 [ 266.640977][ T5946] proc_fail_nth_read+0x1a3/0x210 [ 266.645847][ T5946] ? security_file_permission+0x7b/0xb0 [ 266.651309][ T5946] ? proc_fault_inject_write+0x390/0x390 [ 266.656768][ T5946] ? security_file_permission+0x86/0xb0 [ 266.662156][ T5946] ? rw_verify_area+0x1c3/0x360 [ 266.666840][ T5946] ? proc_fault_inject_write+0x390/0x390 [ 266.672307][ T5946] vfs_read+0x204/0xbb0 [ 266.676303][ T5946] ? kernel_read+0x70/0x70 [ 266.680550][ T5946] ? __kasan_check_write+0x14/0x20 [ 266.685495][ T5946] ? mutex_lock+0xa5/0x110 [ 266.689758][ T5946] ? mutex_trylock+0xa0/0xa0 [ 266.694179][ T5946] ? __fdget_pos+0x2e7/0x3a0 [ 266.698618][ T5946] ? ksys_read+0x77/0x2c0 [ 266.702768][ T5946] ksys_read+0x199/0x2c0 [ 266.706854][ T5946] ? vfs_write+0xe70/0xe70 [ 266.711104][ T5946] ? fpu__clear_all+0x20/0x20 [ 266.715618][ T5946] ? __kasan_check_read+0x11/0x20 [ 266.720478][ T5946] __x64_sys_read+0x7b/0x90 [ 266.724835][ T5946] do_syscall_64+0x34/0x70 [ 266.729070][ T5946] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 266.734796][ T5946] RIP: 0033:0x7f9b1d2c36bc [ 266.739051][ T5946] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 266.758665][ T5946] RSP: 002b:00007f9b1c546040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 266.766923][ T5946] RAX: ffffffffffffffda RBX: 00007f9b1d452f60 RCX: 00007f9b1d2c36bc [ 266.774722][ T5946] RDX: 000000000000000f RSI: 00007f9b1c5460b0 RDI: 0000000000000006 [ 266.782529][ T5946] RBP: 00007f9b1c5460a0 R08: 0000000000000000 R09: 0000000000000000 [ 266.790358][ T5946] R10: 000000000000004a R11: 0000000000000246 R12: 0000000000000001 [ 266.798156][ T5946] R13: 000000000000000b R14: 00007f9b1d452f60 R15: 00007ffe5b8a0ad8 [ 266.822406][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 266.836294][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 266.848536][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 266.869862][ T320] usb 4-1: new high-speed USB device number 42 using dummy_hcd [ 266.923791][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 266.936312][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 266.948361][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 266.964926][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 266.981306][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 266.998911][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 267.022341][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 267.186910][ T5965] syz.2.1359[5965] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 267.187194][ T5965] syz.2.1359[5965] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 267.229736][ T320] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 267.251665][ T320] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 267.261297][ T320] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 267.280220][ T320] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 267.289167][ T320] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.298677][ T320] usb 4-1: config 0 descriptor?? [ 267.318801][ T290] usb 5-1: USB disconnect, device number 42 [ 267.361273][ T5967] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 267.370165][ T5967] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038 (0x7fffffff) [ 267.386437][ T5967] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 267.394740][ T5967] EXT4-fs error (device loop4): ext4_dirty_inode:6079: inode #2: comm syz.4.1360: mark_inode_dirty error [ 267.406452][ T5967] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 267.414820][ T5967] EXT4-fs error (device loop4): __ext4_ext_dirty:182: inode #2: comm syz.4.1360: mark_inode_dirty error [ 267.479665][ T2613] usb 3-1: new high-speed USB device number 51 using dummy_hcd [ 267.834487][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 267.874285][ T5975] EXT4-fs (loop1): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro, [ 267.904067][ T2613] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 267.965703][ T320] plantronics 0003:047F:FFFF.001D: No inputs registered, leaving [ 267.973785][ T2613] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 267.983786][ T2613] usb 3-1: New USB device found, idVendor=056a, idProduct=003f, bcdDevice= 0.00 [ 267.992796][ T320] plantronics 0003:047F:FFFF.001D: hiddev97,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 268.005927][ T2613] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 268.014482][ T2613] usb 3-1: config 0 descriptor?? [ 268.638273][ T604] usb 2-1: USB disconnect, device number 54 [ 268.795555][ T24] kauditd_printk_skb: 27 callbacks suppressed [ 268.795565][ T24] audit: type=1107 audit(1721096960.668:2048): pid=5992 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='ξR\4M' [ 268.795676][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 268.831807][ T24] audit: type=1326 audit(1721096960.708:2049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5998 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 268.855773][ T24] audit: type=1326 audit(1721096960.708:2050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5998 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 268.886847][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 268.897465][ T24] audit: type=1326 audit(1721096960.708:2051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5998 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 268.917411][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 268.921551][ T24] audit: type=1326 audit(1721096960.708:2052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5998 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 268.953091][ T24] audit: type=1326 audit(1721096960.708:2053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5998 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 268.956572][ T5997] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 268.976585][ T24] audit: type=1326 audit(1721096960.708:2054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5998 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 268.985589][ T5997] ext4 filesystem being mounted at /110/file0 supports timestamps until 2038 (0x7fffffff) [ 269.009140][ T6007] udc-core: couldn't find an available UDC or it's busy [ 269.018188][ T24] audit: type=1326 audit(1721096960.708:2055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5998 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 269.048464][ T24] audit: type=1326 audit(1721096960.708:2056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5998 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b1d2c4bd9 code=0x7ffc0000 [ 269.071924][ T6007] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 269.414458][ T6017] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 269.414525][ T6013] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 269.432051][ T6013] ext4 filesystem being mounted at /111/file0 supports timestamps until 2038 (0x7fffffff) [ 269.433349][ T6017] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038 (0x7fffffff) [ 269.474240][ T6017] EXT4-fs error (device loop0) in ext4_do_update_inode:5275: error 27 [ 269.483053][ T6017] EXT4-fs error (device loop0): ext4_dirty_inode:6079: inode #2: comm syz.0.1373: mark_inode_dirty error [ 269.494582][ T6017] EXT4-fs error (device loop0) in ext4_do_update_inode:5275: error 27 [ 269.502941][ T6017] EXT4-fs error (device loop0): __ext4_ext_dirty:182: inode #2: comm syz.0.1373: mark_inode_dirty error [ 269.607437][ T6028] EXT4-fs (loop4): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro, [ 270.450059][ T320] usb 4-1: USB disconnect, device number 42 [ 270.520332][ T24] audit: type=1326 audit(1721096962.398:2057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6047 comm="syz.3.1379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97f906dbd9 code=0x7ffc0000 [ 270.559735][ T2613] usbhid 3-1:0.0: can't add hid device: -71 [ 270.566636][ T2613] usbhid: probe of 3-1:0.0 failed with error -71 [ 270.570409][ T6053] input: syz0 as /devices/virtual/input/input50 [ 270.581587][ T308] print_req_error: 12 callbacks suppressed [ 270.581604][ T308] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 270.593861][ T2613] usb 3-1: USB disconnect, device number 51 [ 270.613140][ T308] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 270.640369][ T308] buffer_io_error: 1 callbacks suppressed [ 270.640380][ T308] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 270.761716][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 270.796585][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 270.808899][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 270.823385][ T6060] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 270.833245][ T6063] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 270.843019][ T6063] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038 (0x7fffffff) [ 270.853464][ T6060] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038 (0x7fffffff) [ 270.877835][ T6063] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 270.891169][ T6063] EXT4-fs error (device loop4): ext4_dirty_inode:6079: inode #2: comm syz.4.1386: mark_inode_dirty error [ 270.902542][ T6078] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 270.904156][ T6063] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 270.912808][ T6078] ext4 filesystem being mounted at /114/file0 supports timestamps until 2038 (0x7fffffff) [ 270.920626][ T6063] EXT4-fs error (device loop4): __ext4_ext_dirty:182: inode #2: comm syz.4.1386: mark_inode_dirty error [ 270.957652][ T6078] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 270.988301][ T6078] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.1388: mark_inode_dirty error [ 271.012633][ T6078] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 271.029741][ T6078] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.1388: mark_inode_dirty error [ 271.155566][ T6083] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 271.163424][ T6083] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 271.172425][ T6083] F2FS-fs (loop3): invalid crc value [ 271.178866][ T6083] F2FS-fs (loop3): Found nat_bits in checkpoint [ 271.435376][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 271.448875][ T6083] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 271.455893][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 271.477164][ T6083] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 271.499655][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 271.532997][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 271.555761][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 271.590866][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 271.654717][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 272.080996][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 272.103309][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 272.144890][ T6112] bridge0: port 1(bridge_slave_0) entered blocking state [ 272.151788][ T6112] bridge0: port 1(bridge_slave_0) entered disabled state [ 272.158944][ T6112] device bridge_slave_0 entered promiscuous mode [ 272.165709][ T6112] bridge0: port 2(bridge_slave_1) entered blocking state [ 272.172556][ T6112] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.179726][ T6112] device bridge_slave_1 entered promiscuous mode [ 272.264531][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 272.273901][ T6112] bridge0: port 2(bridge_slave_1) entered blocking state [ 272.280768][ T6112] bridge0: port 2(bridge_slave_1) entered forwarding state [ 272.287996][ T6112] bridge0: port 1(bridge_slave_0) entered blocking state [ 272.294805][ T6112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 272.307361][ T6120] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 272.327450][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 272.331836][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 272.348930][ T320] bridge0: port 1(bridge_slave_0) entered disabled state [ 272.377368][ T320] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.414309][ T2613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 272.423141][ T2613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 272.431146][ T2613] bridge0: port 1(bridge_slave_0) entered blocking state [ 272.437989][ T2613] bridge0: port 1(bridge_slave_0) entered forwarding state [ 272.446466][ T2613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 272.454576][ T2613] bridge0: port 2(bridge_slave_1) entered blocking state [ 272.461441][ T2613] bridge0: port 2(bridge_slave_1) entered forwarding state [ 272.479675][ T604] usb 2-1: new high-speed USB device number 55 using dummy_hcd [ 272.479741][ T2613] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 272.496136][ T2613] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 272.508575][ T6112] device veth0_vlan entered promiscuous mode [ 272.515634][ T6125] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 272.526087][ T6125] ext4 filesystem being mounted at /100/file0 supports timestamps until 2038 (0x7fffffff) [ 272.538432][ T289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 272.549108][ T6118] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 272.553693][ T289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 272.567149][ T289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 272.568264][ T6118] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 272.581602][ T6112] device veth1_macvtap entered promiscuous mode [ 272.591157][ T6118] F2FS-fs (loop2): invalid crc value [ 272.600605][ T768] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 272.608801][ T6118] F2FS-fs (loop2): Found nat_bits in checkpoint [ 272.616528][ T289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 272.624775][ T289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 272.663539][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 272.675005][ T6139] input: syz0 as /devices/virtual/input/input51 [ 272.682157][ T6118] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 272.707008][ T6118] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 272.840010][ T604] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 272.997880][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 273.111790][ T6145] bridge0: port 1(bridge_slave_0) entered blocking state [ 273.119257][ T6145] bridge0: port 1(bridge_slave_0) entered disabled state [ 273.126760][ T6145] device bridge_slave_0 entered promiscuous mode [ 273.131059][ T604] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 273.135405][ T6151] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 273.142667][ T604] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 273.152498][ T2515] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 273.164284][ T6151] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038 (0x7fffffff) [ 273.173451][ T2515] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 273.182565][ T604] usb 2-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10 [ 273.200674][ T586] device bridge_slave_1 left promiscuous mode [ 273.201255][ T604] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 273.206647][ T586] bridge0: port 2(bridge_slave_1) entered disabled state [ 273.215216][ T604] usb 2-1: config 0 descriptor?? [ 273.235388][ T6151] EXT4-fs error (device loop0) in ext4_do_update_inode:5275: error 27 [ 273.243765][ T586] device bridge_slave_0 left promiscuous mode [ 273.249991][ T586] bridge0: port 1(bridge_slave_0) entered disabled state [ 273.257217][ T6151] EXT4-fs error (device loop0): ext4_dirty_inode:6079: inode #2: comm syz.0.1406: mark_inode_dirty error [ 273.270351][ T586] device veth1_macvtap left promiscuous mode [ 273.272879][ T6151] EXT4-fs error (device loop0) in ext4_do_update_inode:5275: error 27 [ 273.276351][ T586] device veth0_vlan left promiscuous mode [ 273.286922][ T6151] EXT4-fs error (device loop0): __ext4_ext_dirty:182: inode #2: comm syz.0.1406: mark_inode_dirty error [ 273.395152][ T6145] bridge0: port 2(bridge_slave_1) entered blocking state [ 273.404757][ T6145] bridge0: port 2(bridge_slave_1) entered disabled state [ 273.418323][ T6145] device bridge_slave_1 entered promiscuous mode [ 273.743211][ T769] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 273.744097][ T6160] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 273.750931][ T769] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 273.767828][ T6160] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038 (0x7fffffff) [ 273.813992][ T6121] device syzkaller0 entered promiscuous mode [ 273.821775][ T6160] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 273.834066][ T6160] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.1407: mark_inode_dirty error [ 273.846170][ T502] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 273.852481][ T6160] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 273.862779][ T6160] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.1407: mark_inode_dirty error [ 273.864910][ T502] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 273.886668][ T502] bridge0: port 1(bridge_slave_0) entered blocking state [ 273.893548][ T502] bridge0: port 1(bridge_slave_0) entered forwarding state [ 273.911124][ T502] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 273.920676][ T604] prodikeys 0003:041E:2801.001E: unknown main item tag 0x0 [ 273.936578][ T604] prodikeys 0003:041E:2801.001E: unknown main item tag 0x0 [ 273.943893][ T502] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 273.953555][ T604] prodikeys 0003:041E:2801.001E: unknown main item tag 0x0 [ 273.964076][ T502] bridge0: port 2(bridge_slave_1) entered blocking state [ 273.970936][ T502] bridge0: port 2(bridge_slave_1) entered forwarding state [ 273.978293][ T604] prodikeys 0003:041E:2801.001E: unknown main item tag 0x0 [ 273.985477][ T604] prodikeys 0003:041E:2801.001E: unknown main item tag 0x0 [ 273.992854][ T502] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 274.003741][ T604] prodikeys 0003:041E:2801.001E: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.1-1/input0 [ 274.030050][ T502] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 274.068593][ T604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 274.078069][ T604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 274.106811][ T604] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 274.128513][ T604] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 274.146095][ T604] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 274.160153][ T6145] device veth0_vlan entered promiscuous mode [ 274.184166][ T289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 274.193579][ T6145] device veth1_macvtap entered promiscuous mode [ 274.205835][ T289] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 274.214178][ T6121] FAT-fs (loop1): Unrecognized mount option "uid=00000000000000000000IAcO [ 274.214178][ T6121] )Ld$' ڷ/IєL„3pe39" or missing value [ 274.260307][ T289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 274.294486][ T2613] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 274.310074][ T2613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 274.340772][ T6167] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 274.357940][ T6167] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 274.382295][ T6167] F2FS-fs (loop3): invalid crc value [ 274.392167][ T290] usb 2-1: USB disconnect, device number 55 [ 274.410458][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 274.421088][ T6177] device pim6reg1 entered promiscuous mode [ 274.450540][ T6167] F2FS-fs (loop3): Found nat_bits in checkpoint [ 274.495795][ T6167] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 274.502897][ T6167] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 274.631495][ T6185] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 274.640355][ T6185] ext4 filesystem being mounted at /117/bus supports timestamps until 2038 (0x7fffffff) [ 274.659730][ T2613] usb 1-1: new high-speed USB device number 51 using dummy_hcd [ 274.721325][ T6185] FAULT_INJECTION: forcing a failure. [ 274.721325][ T6185] name failslab, interval 1, probability 0, space 0, times 0 [ 274.734211][ T1357] usb 5-1: new high-speed USB device number 43 using dummy_hcd [ 274.749682][ T6185] CPU: 1 PID: 6185 Comm: syz.2.1411 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 274.759403][ T6185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 274.769286][ T6185] Call Trace: [ 274.772417][ T6185] dump_stack_lvl+0x1e2/0x24b [ 274.776925][ T6185] ? bfq_pos_tree_add_move+0x43b/0x43b [ 274.782221][ T6185] dump_stack+0x15/0x17 [ 274.786212][ T6185] should_fail+0x3c6/0x510 [ 274.790474][ T6185] ? ext4_find_extent+0x370/0xdb0 [ 274.795322][ T6185] __should_failslab+0xa4/0xe0 [ 274.799924][ T6185] should_failslab+0x9/0x20 [ 274.804262][ T6185] __kmalloc+0x60/0x330 [ 274.808277][ T6185] ext4_find_extent+0x370/0xdb0 [ 274.813042][ T6185] ext4_ext_map_blocks+0x26a/0x6ee0 [ 274.818066][ T6185] ? _raw_spin_unlock_irq+0x4e/0x70 [ 274.823101][ T6185] ? switch_mm_irqs_off+0x71b/0x9a0 [ 274.828241][ T6185] ? __switch_to_asm+0x34/0x60 [ 274.832842][ T6185] ? __schedule+0xbee/0x1330 [ 274.837404][ T6185] ? release_firmware_map_entry+0x192/0x192 [ 274.843131][ T6185] ? ext4_ext_release+0x10/0x10 [ 274.847814][ T6185] ? __kasan_check_read+0x11/0x20 [ 274.852677][ T6185] ? preempt_schedule_common+0xbe/0xf0 [ 274.857967][ T6185] ? preempt_schedule+0xd9/0xe0 [ 274.862655][ T6185] ? schedule_preempt_disabled+0x20/0x20 [ 274.868130][ T6185] ? __kasan_check_write+0x14/0x20 [ 274.873160][ T6185] ? down_read+0xf0/0x210 [ 274.877321][ T6185] ? _raw_read_unlock+0x38/0x40 [ 274.882007][ T6185] ? ext4_es_lookup_extent+0x33b/0x940 [ 274.887317][ T6185] ext4_map_blocks+0x40b/0x1d10 [ 274.891992][ T6185] ? __switch_to_asm+0x34/0x60 [ 274.896590][ T6185] ? ext4_issue_zeroout+0x1b0/0x1b0 [ 274.901624][ T6185] ? plist_check_list+0x254/0x270 [ 274.906502][ T6185] ext4_bread_batch+0x165/0x880 [ 274.911178][ T6185] ? _raw_spin_unlock_irq+0x4e/0x70 [ 274.916219][ T6185] ? ext4_buffer_uptodate+0x120/0x120 [ 274.921424][ T6185] __ext4_find_entry+0xee7/0x1990 [ 274.926274][ T6185] ? __kasan_check_read+0x11/0x20 [ 274.931132][ T6185] ? preempt_schedule_irq+0xe7/0x140 [ 274.936276][ T6185] ? ext4_ci_compare+0x660/0x660 [ 274.941041][ T6185] ? sysvec_reschedule_ipi+0x83/0x160 [ 274.946239][ T6185] ? asm_sysvec_reschedule_ipi+0x12/0x20 [ 274.951714][ T6185] ? ext4_fname_setup_ci_filename+0x70/0x480 [ 274.957517][ T6185] ? generic_set_encrypted_ci_d_ops+0x91/0xf0 [ 274.963446][ T6185] ext4_lookup+0x3c6/0xaa0 [ 274.967673][ T6185] ? sysvec_reschedule_ipi+0x83/0x160 [ 274.972881][ T6185] ? ext4_add_entry+0x1280/0x1280 [ 274.977741][ T6185] ? __kasan_check_write+0x14/0x20 [ 274.982690][ T6185] ? _raw_spin_lock+0xa4/0x1b0 [ 274.987293][ T6185] ? __d_alloc+0x4dd/0x6c0 [ 274.991539][ T6185] ? _raw_spin_unlock+0x4d/0x70 [ 274.996227][ T6185] ? d_alloc+0x199/0x1d0 [ 275.000325][ T6185] __lookup_hash+0x143/0x290 [ 275.004746][ T6185] filename_create+0x202/0x750 [ 275.009334][ T6185] ? __check_object_size+0x2e6/0x3c0 [ 275.014542][ T6185] ? kern_path_create+0x40/0x40 [ 275.019234][ T6185] do_mknodat+0x187/0x450 [ 275.023407][ T6185] ? switch_fpu_return+0x1e4/0x3c0 [ 275.028355][ T6185] ? may_open+0x3f0/0x3f0 [ 275.032515][ T6185] ? fpu__clear_all+0x20/0x20 [ 275.037023][ T6185] ? __kasan_check_read+0x11/0x20 [ 275.042017][ T6185] __x64_sys_mknod+0x80/0x90 [ 275.046463][ T6185] do_syscall_64+0x34/0x70 [ 275.050702][ T6185] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 275.056419][ T6185] RIP: 0033:0x7f8ec8986bd9 [ 275.060668][ T6185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.080107][ T6185] RSP: 002b:00007f8ec7c08048 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 275.088355][ T6185] RAX: ffffffffffffffda RBX: 00007f8ec8b14f60 RCX: 00007f8ec8986bd9 [ 275.096168][ T6185] RDX: 0000000000000000 RSI: 000000000000c000 RDI: 0000000020000180 [ 275.103973][ T6185] RBP: 00007f8ec7c080a0 R08: 0000000000000000 R09: 0000000000000000 [ 275.111786][ T6185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 275.119597][ T6185] R13: 000000000000000b R14: 00007f8ec8b14f60 R15: 00007ffde5dadc48 [ 275.216895][ T586] device bridge_slave_1 left promiscuous mode [ 275.217458][ T6197] input: syz0 as /devices/virtual/input/input52 [ 275.229312][ T586] bridge0: port 2(bridge_slave_1) entered disabled state [ 275.238415][ T24] kauditd_printk_skb: 16 callbacks suppressed [ 275.238440][ T24] audit: type=1326 audit(1721096967.108:2074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6198 comm="syz.2.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 275.250150][ T6199] FAULT_INJECTION: forcing a failure. [ 275.250150][ T6199] name failslab, interval 1, probability 0, space 0, times 0 [ 275.271141][ T24] audit: type=1326 audit(1721096967.118:2075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6198 comm="syz.2.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8ec8985610 code=0x7ffc0000 [ 275.280122][ T2613] usb 1-1: Using ep0 maxpacket: 8 [ 275.303278][ T24] audit: type=1326 audit(1721096967.118:2076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6198 comm="syz.2.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8ec898575f code=0x7ffc0000 [ 275.331468][ T24] audit: type=1326 audit(1721096967.118:2077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6198 comm="syz.2.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 275.354884][ T6199] CPU: 0 PID: 6199 Comm: syz.2.1417 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 275.355155][ T586] device bridge_slave_0 left promiscuous mode [ 275.364586][ T6199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 275.364591][ T6199] Call Trace: [ 275.364609][ T6199] dump_stack_lvl+0x1e2/0x24b [ 275.364625][ T6199] ? bfq_pos_tree_add_move+0x43b/0x43b [ 275.364638][ T6199] dump_stack+0x15/0x17 [ 275.364649][ T6199] should_fail+0x3c6/0x510 [ 275.364661][ T6199] ? fat_parse_long+0x91/0x7b0 [ 275.364681][ T6199] __should_failslab+0xa4/0xe0 [ 275.410774][ T6199] should_failslab+0x9/0x20 [ 275.415103][ T6199] kmem_cache_alloc+0x3d/0x2e0 [ 275.419701][ T6199] fat_parse_long+0x91/0x7b0 [ 275.424139][ T6199] fat_search_long+0x37d/0x1340 [ 275.428817][ T6199] ? slab_post_alloc_hook+0x80/0x2f0 [ 275.433936][ T6199] ? fat_bmap+0x480/0x480 [ 275.438104][ T6199] ? mutex_lock+0x60/0x110 [ 275.442356][ T6199] ? mutex_trylock+0xa0/0xa0 [ 275.446785][ T6199] vfat_lookup+0x1a9/0x5c0 [ 275.451062][ T6199] ? setup+0xf0/0xf0 [ 275.454766][ T6199] ? __kasan_check_write+0x14/0x20 [ 275.459721][ T6199] __lookup_slow+0x2b9/0x400 [ 275.464142][ T6199] ? lookup_one_len+0x2c0/0x2c0 [ 275.468829][ T6199] ? lookup_fast+0x340/0x7d0 [ 275.473273][ T6199] ? security_inode_permission+0xb0/0xf0 [ 275.478719][ T6199] ? handle_dots+0x1030/0x1030 [ 275.483338][ T6199] lookup_slow+0x5a/0x80 [ 275.487402][ T6199] walk_component+0x48c/0x610 [ 275.491912][ T6199] ? nd_alloc_stack+0xf0/0xf0 [ 275.496424][ T6199] ? handle_lookup_down+0x130/0x130 [ 275.501461][ T6199] path_lookupat+0x16d/0x450 [ 275.505889][ T6199] filename_lookup+0x26a/0x6f0 [ 275.510486][ T6199] ? hashlen_string+0x120/0x120 [ 275.515189][ T6199] ? getname_flags+0x1fd/0x520 [ 275.519774][ T6199] user_path_at_empty+0x40/0x50 [ 275.524459][ T6199] __se_sys_utimes+0x128/0x380 [ 275.529060][ T6199] ? __x64_sys_utimes+0x70/0x70 [ 275.533747][ T6199] ? ksys_write+0x260/0x2c0 [ 275.538087][ T6199] ? __ia32_sys_read+0x90/0x90 [ 275.542690][ T6199] ? __secure_computing+0xf0/0x300 [ 275.547634][ T6199] __x64_sys_utimes+0x5b/0x70 [ 275.552146][ T6199] do_syscall_64+0x34/0x70 [ 275.556401][ T6199] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 275.562127][ T6199] RIP: 0033:0x7f8ec8986bd9 [ 275.566471][ T6199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.585908][ T6199] RSP: 002b:00007f8ec7c08048 EFLAGS: 00000246 ORIG_RAX: 00000000000000eb [ 275.594257][ T6199] RAX: ffffffffffffffda RBX: 00007f8ec8b14f60 RCX: 00007f8ec8986bd9 [ 275.602058][ T6199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000280 [ 275.609863][ T6199] RBP: 00007f8ec7c080a0 R08: 0000000000000000 R09: 0000000000000000 [ 275.617673][ T6199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 275.625488][ T6199] R13: 000000000000000b R14: 00007f8ec8b14f60 R15: 00007ffde5dadc48 [ 275.636412][ T24] audit: type=1326 audit(1721096967.508:2078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6198 comm="syz.2.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f8ec89856bc code=0x7ffc0000 [ 275.659830][ T586] bridge0: port 1(bridge_slave_0) entered disabled state [ 275.667241][ T24] audit: type=1326 audit(1721096967.508:2079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6198 comm="syz.2.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8ec898575f code=0x7ffc0000 [ 275.690795][ T1357] usb 5-1: Using ep0 maxpacket: 32 [ 275.695819][ T24] audit: type=1326 audit(1721096967.508:2080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6198 comm="syz.2.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8ec898590a code=0x7ffc0000 [ 275.719731][ T586] device veth1_macvtap left promiscuous mode [ 275.726021][ T24] audit: type=1326 audit(1721096967.508:2081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6198 comm="syz.2.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 275.728909][ T586] device veth0_vlan left promiscuous mode [ 275.750745][ T24] audit: type=1326 audit(1721096967.508:2082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6198 comm="syz.2.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ec8986bd9 code=0x7ffc0000 [ 275.778522][ T2613] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 238, changing to 11 [ 275.789968][ T2613] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16 [ 275.799738][ T2613] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 275.807408][ T24] audit: type=1326 audit(1721096967.598:2083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6206 comm="syz.3.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97f906dbd9 code=0x7ffc0000 [ 275.839835][ T1357] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 275.860079][ T1357] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 275.877513][ T1357] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 275.890975][ T1357] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.900331][ T1357] usb 5-1: config 0 descriptor?? [ 275.949770][ T2613] usb 1-1: New USB device found, idVendor=0001, idProduct=8000, bcdDevice= 0.00 [ 275.958642][ T2613] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 275.970156][ T1357] hub 5-1:0.0: bad descriptor, ignoring hub [ 275.976718][ T1357] hub: probe of 5-1:0.0 failed with error -5 [ 275.991592][ T1357] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 275.998712][ T2613] usb 1-1: SerialNumber: syz [ 276.008522][ T6213] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1421'. [ 276.019739][ T6179] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 276.040508][ T2613] hub 1-1:1.0: bad descriptor, ignoring hub [ 276.049305][ T2613] hub: probe of 1-1:1.0 failed with error -5 [ 276.055436][ T2613] cdc_ether: probe of 1-1:1.0 failed with error -22 [ 276.174912][ T6218] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 276.183772][ T6218] ext4 filesystem being mounted at /121/file0 supports timestamps until 2038 (0x7fffffff) [ 276.210202][ T6218] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 276.218479][ T6218] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.1422: mark_inode_dirty error [ 276.230219][ T6218] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 276.238353][ T6218] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.1422: mark_inode_dirty error [ 276.414371][ T6224] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 276.444826][ T6224] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 276.476827][ T6224] F2FS-fs (loop1): invalid crc value [ 276.512996][ T6224] F2FS-fs (loop1): Found nat_bits in checkpoint [ 276.591693][ T6224] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 276.598745][ T6224] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 277.115492][ T6253] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6253 comm=syz.3.1431 [ 277.141747][ T6255] 9pnet: Could not find request transport: rdma [ 277.181786][ T6260] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1432'. [ 277.241227][ T6263] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 277.250374][ T6263] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038 (0x7fffffff) [ 277.266332][ T6263] EXT4-fs error (device loop3) in ext4_do_update_inode:5275: error 27 [ 277.274523][ T6263] EXT4-fs error (device loop3): ext4_dirty_inode:6079: inode #2: comm syz.3.1435: mark_inode_dirty error [ 277.285862][ T6263] EXT4-fs error (device loop3) in ext4_do_update_inode:5275: error 27 [ 277.294078][ T6263] EXT4-fs error (device loop3): __ext4_ext_dirty:182: inode #2: comm syz.3.1435: mark_inode_dirty error [ 277.355349][ T53] usb 3-1: new high-speed USB device number 52 using dummy_hcd [ 277.469967][ T502] usb 5-1: USB disconnect, device number 43 [ 277.526608][ T6283] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 277.599650][ T53] usb 3-1: Using ep0 maxpacket: 32 [ 277.719881][ T53] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 277.739656][ T53] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 277.759550][ T53] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 277.779690][ T53] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 277.789987][ T53] usb 3-1: config 0 descriptor?? [ 277.830488][ T53] hub 3-1:0.0: USB hub found [ 278.049713][ T53] hub 3-1:0.0: 1 port detected [ 278.389791][ T1357] usb 2-1: new high-speed USB device number 56 using dummy_hcd [ 278.399754][ T320] usb 4-1: new high-speed USB device number 43 using dummy_hcd [ 278.460629][ T485] print_req_error: 10 callbacks suppressed [ 278.460642][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 278.479170][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 278.491131][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 278.572050][ T387] usb 1-1: USB disconnect, device number 51 [ 278.629831][ T1357] usb 2-1: Using ep0 maxpacket: 16 [ 278.639829][ T320] usb 4-1: Using ep0 maxpacket: 16 [ 278.698726][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 278.699807][ T53] hub 3-1:0.0: activate --> -90 [ 278.711050][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 278.711061][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 278.769745][ T1357] usb 2-1: config 0 has too many interfaces: 251, using maximum allowed: 32 [ 278.778366][ T320] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 278.789079][ T1357] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 278.798990][ T320] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 278.811561][ T1357] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 251 [ 278.820509][ T320] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 278.829302][ T320] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 278.837863][ T320] usb 4-1: config 0 descriptor?? [ 278.937527][ T289] usb 3-1: USB disconnect, device number 52 [ 278.949718][ T53] hub 3-1:0.0: hub_ext_port_status failed (err = -71) [ 278.989745][ T502] usb 1-1: new high-speed USB device number 52 using dummy_hcd [ 278.989804][ T1357] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00 [ 279.006388][ T1357] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 279.014226][ T1357] usb 2-1: Product: syz [ 279.018172][ T1357] usb 2-1: Manufacturer: syz [ 279.022636][ T1357] usb 2-1: SerialNumber: syz [ 279.027727][ T1357] usb 2-1: config 0 descriptor?? [ 279.321052][ T6293] syz.1.1444[6293] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 279.321110][ T6293] syz.1.1444[6293] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 279.335375][ T320] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.001F/input/input53 [ 279.380176][ T502] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 279.391948][ T502] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 279.392808][ T1357] usb 2-1: USB disconnect, device number 56 [ 279.401513][ T502] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 279.401539][ T502] usb 1-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10 [ 279.421495][ T320] microsoft 0003:045E:07DA.001F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 279.428981][ T502] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 279.451306][ T502] usb 1-1: config 0 descriptor?? [ 279.749856][ T289] usb 3-1: new high-speed USB device number 53 using dummy_hcd [ 279.768804][ T604] usb 4-1: USB disconnect, device number 43 [ 279.879532][ T6313] bridge0: port 1(bridge_slave_0) entered blocking state [ 279.886549][ T6313] bridge0: port 1(bridge_slave_0) entered disabled state [ 279.893904][ T6313] device bridge_slave_0 entered promiscuous mode [ 279.903377][ T6313] bridge0: port 2(bridge_slave_1) entered blocking state [ 279.910349][ T6313] bridge0: port 2(bridge_slave_1) entered disabled state [ 279.917521][ T6313] device bridge_slave_1 entered promiscuous mode [ 279.942946][ T6306] device syzkaller0 entered promiscuous mode [ 279.980546][ T502] prodikeys 0003:041E:2801.0020: unknown main item tag 0x0 [ 279.984253][ T6313] bridge0: port 2(bridge_slave_1) entered blocking state [ 279.987682][ T502] prodikeys 0003:041E:2801.0020: unknown main item tag 0x0 [ 279.987700][ T502] prodikeys 0003:041E:2801.0020: unknown main item tag 0x0 [ 279.994544][ T6313] bridge0: port 2(bridge_slave_1) entered forwarding state [ 279.994644][ T6313] bridge0: port 1(bridge_slave_0) entered blocking state [ 279.994655][ T6313] bridge0: port 1(bridge_slave_0) entered forwarding state [ 280.029999][ T289] usb 3-1: Using ep0 maxpacket: 32 [ 280.035147][ T502] prodikeys 0003:041E:2801.0020: unknown main item tag 0x0 [ 280.042239][ T502] prodikeys 0003:041E:2801.0020: unknown main item tag 0x0 [ 280.050403][ T502] prodikeys 0003:041E:2801.0020: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.0-1/input0 [ 280.064019][ T1357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 280.072530][ T1357] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 280.081051][ T1357] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 280.090164][ T1357] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 280.101340][ T502] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 280.117281][ T6313] device veth0_vlan entered promiscuous mode [ 280.123682][ T604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 280.132176][ T604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 280.140028][ T604] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 280.147176][ T604] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 280.154434][ T289] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 280.165192][ T289] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 280.178150][ T289] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 280.187047][ T289] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 280.200515][ T289] usb 3-1: config 0 descriptor?? [ 280.201982][ T6313] device veth1_macvtap entered promiscuous mode [ 280.212889][ T502] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 280.223944][ T1357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 280.236560][ T502] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 280.245412][ T6306] FAT-fs (loop0): Unrecognized mount option "uid=00000000000000000000IAcO [ 280.245412][ T6306] )Ld$' ڷ/IєL„3pe39" or missing value [ 280.245601][ T289] hub 3-1:0.0: bad descriptor, ignoring hub [ 280.267494][ T289] hub: probe of 3-1:0.0 failed with error -5 [ 280.273826][ T289] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 280.323968][ T437] device bridge_slave_1 left promiscuous mode [ 280.330051][ T437] bridge0: port 2(bridge_slave_1) entered disabled state [ 280.337539][ T437] device bridge_slave_0 left promiscuous mode [ 280.343825][ T437] bridge0: port 1(bridge_slave_0) entered disabled state [ 280.351513][ T437] device veth1_macvtap left promiscuous mode [ 280.387529][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 280.412241][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 280.431907][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 280.467875][ T6329] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 280.474191][ T387] usb 1-1: USB disconnect, device number 52 [ 280.482598][ T6329] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038 (0x7fffffff) [ 280.523553][ T6329] EXT4-fs error (device loop1) in ext4_do_update_inode:5275: error 27 [ 280.532034][ T6329] EXT4-fs error (device loop1): ext4_dirty_inode:6079: inode #2: comm syz.1.1453: mark_inode_dirty error [ 280.543887][ T6329] EXT4-fs error (device loop1) in ext4_do_update_inode:5275: error 27 [ 280.552255][ T6329] EXT4-fs error (device loop1): __ext4_ext_dirty:182: inode #2: comm syz.1.1453: mark_inode_dirty error [ 281.049735][ T24] kauditd_printk_skb: 37 callbacks suppressed [ 281.049750][ T24] audit: type=1326 audit(1721096972.918:2121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.070939][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 281.091983][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 281.093371][ T24] audit: type=1326 audit(1721096972.928:2122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.104441][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 281.129459][ T24] audit: type=1326 audit(1721096972.928:2123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.160235][ T24] audit: type=1326 audit(1721096972.928:2124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.166429][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 281.183780][ T24] audit: type=1326 audit(1721096972.928:2125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.196349][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 281.219938][ T24] audit: type=1326 audit(1721096972.928:2126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.231500][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 281.264855][ T24] audit: type=1326 audit(1721096972.928:2127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.288445][ T24] audit: type=1326 audit(1721096972.928:2128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.311973][ T24] audit: type=1326 audit(1721096972.928:2129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.335281][ T24] audit: type=1326 audit(1721096972.928:2130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6340 comm="syz.0.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 281.379706][ T387] usb 1-1: new high-speed USB device number 53 using dummy_hcd [ 281.524135][ T6355] FAULT_INJECTION: forcing a failure. [ 281.524135][ T6355] name failslab, interval 1, probability 0, space 0, times 0 [ 281.580001][ T6355] CPU: 1 PID: 6355 Comm: syz.4.1461 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 281.589745][ T6355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 281.599639][ T6355] Call Trace: [ 281.602771][ T6355] dump_stack_lvl+0x1e2/0x24b [ 281.607370][ T6355] ? bfq_pos_tree_add_move+0x43b/0x43b [ 281.612665][ T6355] dump_stack+0x15/0x17 [ 281.616658][ T6355] should_fail+0x3c6/0x510 [ 281.620909][ T6355] ? security_file_alloc+0x29/0x120 [ 281.625945][ T6355] __should_failslab+0xa4/0xe0 [ 281.630547][ T6355] should_failslab+0x9/0x20 [ 281.634886][ T6355] kmem_cache_alloc+0x3d/0x2e0 [ 281.639483][ T6355] ? __alloc_file+0x29/0x330 [ 281.643935][ T6355] security_file_alloc+0x29/0x120 [ 281.648771][ T6355] __alloc_file+0xbf/0x330 [ 281.653024][ T6355] alloc_empty_file+0x95/0x180 [ 281.657624][ T6355] path_openat+0x105/0x3000 [ 281.661961][ T6355] ? send_signal+0x4c1/0x5e0 [ 281.666398][ T6355] ? __kasan_slab_alloc+0xc3/0xe0 [ 281.671283][ T6355] ? __kasan_slab_alloc+0xb1/0xe0 [ 281.676129][ T6355] ? slab_post_alloc_hook+0x61/0x2f0 [ 281.681230][ T6355] ? kmem_cache_alloc+0x168/0x2e0 [ 281.686092][ T6355] ? getname_flags+0xba/0x520 [ 281.690613][ T6355] ? getname+0x19/0x20 [ 281.694508][ T6355] ? __x64_sys_openat+0x243/0x290 [ 281.699370][ T6355] ? do_syscall_64+0x34/0x70 [ 281.703796][ T6355] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 281.709703][ T6355] ? do_filp_open+0x460/0x460 [ 281.714214][ T6355] do_filp_open+0x21c/0x460 [ 281.718552][ T6355] ? vfs_tmpfile+0x2b0/0x2b0 [ 281.722986][ T6355] ? get_unused_fd_flags+0x94/0xa0 [ 281.727927][ T6355] do_sys_openat2+0x13f/0x6f0 [ 281.732440][ T6355] ? __kasan_check_write+0x14/0x20 [ 281.737393][ T6355] ? mutex_lock+0xa5/0x110 [ 281.741636][ T6355] ? mutex_trylock+0xa0/0xa0 [ 281.746063][ T6355] ? do_sys_open+0x220/0x220 [ 281.750507][ T6355] ? __kasan_check_write+0x14/0x20 [ 281.755440][ T6355] ? ksys_write+0x260/0x2c0 [ 281.759779][ T6355] __x64_sys_openat+0x243/0x290 [ 281.764551][ T6355] ? __ia32_sys_open+0x270/0x270 [ 281.769332][ T6355] ? debug_smp_processor_id+0x17/0x20 [ 281.774532][ T6355] do_syscall_64+0x34/0x70 [ 281.778786][ T6355] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 281.784515][ T6355] RIP: 0033:0x7f8190aebbd9 [ 281.788767][ T6355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 281.808210][ T6355] RSP: 002b:00007f818fd6d048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 281.816455][ T6355] RAX: ffffffffffffffda RBX: 00007f8190c79f60 RCX: 00007f8190aebbd9 [ 281.824266][ T6355] RDX: 000000000000275a RSI: 0000000020000000 RDI: ffffffffffffff9c [ 281.832077][ T6355] RBP: 00007f818fd6d0a0 R08: 0000000000000000 R09: 0000000000000000 [ 281.839886][ T6355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 281.847702][ T6355] R13: 000000000000000b R14: 00007f8190c79f60 R15: 00007fff81ac5c78 [ 281.864024][ T6360] syz.3.1458[6360] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 281.864082][ T6360] syz.3.1458[6360] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 281.879649][ T387] usb 1-1: Using ep0 maxpacket: 8 [ 282.021170][ T387] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 238, changing to 11 [ 282.039740][ T387] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16 [ 282.058154][ T387] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 282.159902][ T387] usb 1-1: New USB device found, idVendor=0001, idProduct=8000, bcdDevice= 0.00 [ 282.179194][ T387] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 282.209461][ T387] usb 1-1: SerialNumber: syz [ 282.239749][ T6343] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 282.260032][ T387] hub 1-1:1.0: bad descriptor, ignoring hub [ 282.265811][ T387] hub: probe of 1-1:1.0 failed with error -5 [ 282.271990][ T387] cdc_ether: probe of 1-1:1.0 failed with error -22 [ 282.342686][ T6377] EXT4-fs (loop4): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro, [ 282.429050][ T320] usb 2-1: new high-speed USB device number 57 using dummy_hcd [ 282.489571][ T6378] F2FS-fs (loop3): invalid crc value [ 282.496044][ T6378] F2FS-fs (loop3): Found nat_bits in checkpoint [ 282.722213][ T289] usb 3-1: USB disconnect, device number 53 [ 282.740225][ T6378] F2FS-fs (loop3): Cannot turn on quotas: -2 on 1 [ 282.745365][ T6385] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 282.750461][ T6378] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 282.799775][ T320] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 282.815866][ T320] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 282.844215][ T320] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 282.865063][ T6398] EXT4-fs (loop3): Ignoring removed orlov option [ 282.872082][ T6398] EXT4-fs (loop3): Test dummy encryption mode enabled [ 282.874533][ T320] usb 2-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10 [ 282.882339][ T6398] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a014e09c, mo2=0002] [ 282.895657][ T6398] System zones: 1-12 [ 282.899784][ T320] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 282.900238][ T6398] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.1471: casefold flag without casefold feature [ 282.920597][ T6398] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.1471: missing EA_INODE flag [ 282.923960][ T320] usb 2-1: config 0 descriptor?? [ 282.932564][ T6398] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1471: error while reading EA inode 12 err=-117 [ 282.948989][ T6398] EXT4-fs (loop3): 1 orphan inode deleted [ 282.954589][ T6398] EXT4-fs (loop3): mounted filesystem without journal. Opts: orlov,minixdf,max_dir_size_kb=0x0000000000009c7c,debug,grpquota,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue [ 283.172740][ T190] EXT4-fs error (device loop4): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 283.189366][ T190] EXT4-fs (loop4): Remounting filesystem read-only [ 283.380275][ T53] usb 1-1: USB disconnect, device number 53 [ 283.388563][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 283.432648][ T6373] device syzkaller0 entered promiscuous mode [ 283.449673][ T387] usb 4-1: new high-speed USB device number 44 using dummy_hcd [ 283.468391][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 283.483470][ T320] prodikeys 0003:041E:2801.0021: unknown main item tag 0x0 [ 283.495165][ T320] prodikeys 0003:041E:2801.0021: unknown main item tag 0x0 [ 283.502831][ T320] prodikeys 0003:041E:2801.0021: unknown main item tag 0x0 [ 283.510049][ T320] prodikeys 0003:041E:2801.0021: unknown main item tag 0x0 [ 283.517124][ T320] prodikeys 0003:041E:2801.0021: unknown main item tag 0x0 [ 283.524562][ T6426] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 283.526587][ T320] prodikeys 0003:041E:2801.0021: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.1-1/input0 [ 283.534043][ T6426] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038 (0x7fffffff) [ 283.561404][ T6430] EXT4-fs (loop2): Ignoring removed orlov option [ 283.566458][ T6426] EXT4-fs error (device loop0) in ext4_do_update_inode:5275: error 27 [ 283.569104][ T6430] EXT4-fs (loop2): Test dummy encryption mode enabled [ 283.576731][ T6426] EXT4-fs error (device loop0): ext4_dirty_inode:6079: inode #2: comm syz.0.1479: mark_inode_dirty error [ 283.586549][ T6430] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a014e09c, mo2=0002] [ 283.593944][ T6426] EXT4-fs error (device loop0) in ext4_do_update_inode:5275: error 27 [ 283.601516][ T6430] System zones: 1-12 [ 283.609058][ T6426] EXT4-fs error (device loop0): __ext4_ext_dirty:182: inode #2: comm syz.0.1479: mark_inode_dirty error [ 283.613774][ T6430] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.1482: casefold flag without casefold feature [ 283.637463][ T6430] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.1482: missing EA_INODE flag [ 283.649230][ T6430] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1482: error while reading EA inode 12 err=-117 [ 283.661731][ T6430] EXT4-fs (loop2): 1 orphan inode deleted [ 283.667513][ T6430] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,minixdf,max_dir_size_kb=0x0000000000009c7c,debug,grpquota,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue [ 283.753346][ T6373] FAT-fs (loop1): Unrecognized mount option "uid=00000000000000000000IAcO [ 283.753346][ T6373] )Ld$' ڷ/IєL„3pe39" or missing value [ 283.829865][ T387] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 283.849034][ T387] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 283.871517][ T387] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 283.886564][ T387] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 283.910034][ T387] usb 4-1: config 0 descriptor?? [ 283.926523][ T6441] EXT4-fs (loop4): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro, [ 284.029074][ T502] usb 2-1: USB disconnect, device number 57 [ 284.529885][ T387] usbhid 4-1:0.0: can't add hid device: -71 [ 284.537443][ T387] usbhid: probe of 4-1:0.0 failed with error -71 [ 284.632263][ T387] usb 4-1: USB disconnect, device number 44 [ 284.658523][ T2515] EXT4-fs error (device loop4): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 284.689941][ T2515] EXT4-fs (loop4): Remounting filesystem read-only [ 284.697576][ T6464] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 284.820864][ T308] print_req_error: 4 callbacks suppressed [ 284.820881][ T308] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 284.876313][ T308] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 284.888758][ T308] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 284.973387][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 284.997843][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.010669][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 285.061642][ T6487] netlink: 'syz.2.1496': attribute type 15 has an invalid length. [ 285.097785][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 285.171717][ T6487] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1496'. [ 285.185715][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.200258][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 285.231929][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 285.244397][ T387] usb 1-1: new high-speed USB device number 54 using dummy_hcd [ 285.252409][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.264373][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 285.530327][ T6504] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1499'. [ 285.689994][ T387] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 285.713123][ T502] usb 2-1: new high-speed USB device number 58 using dummy_hcd [ 285.727671][ T6504] EXT4-fs error (device loop2): ext4_fill_super:4955: inode #2: comm syz.2.1499: casefold flag without casefold feature [ 285.740262][ T6504] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 285.750436][ T6504] EXT4-fs (loop2): Errors on filesystem, clearing orphan list. [ 285.750436][ T6504] [ 285.760459][ T6504] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 285.769447][ T387] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 285.779192][ T387] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 285.794200][ T387] usb 1-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10 [ 285.803335][ T387] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.812035][ T387] usb 1-1: config 0 descriptor?? [ 285.931754][ T6516] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 285.959698][ T502] usb 2-1: Using ep0 maxpacket: 16 [ 286.079832][ T502] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 286.094746][ T502] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 286.127977][ T24] kauditd_printk_skb: 61 callbacks suppressed [ 286.128033][ T24] audit: type=1326 audit(1721096977.998:2192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="syz.4.1504" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8190aebbd9 code=0x0 [ 286.129710][ T502] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 286.165613][ T502] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 286.750175][ T502] usb 2-1: config 0 descriptor?? [ 286.779523][ T6489] device syzkaller0 entered promiscuous mode [ 286.840532][ T387] prodikeys 0003:041E:2801.0022: unknown main item tag 0x0 [ 286.849072][ T387] prodikeys 0003:041E:2801.0022: unknown main item tag 0x0 [ 286.856546][ T387] prodikeys 0003:041E:2801.0022: unknown main item tag 0x0 [ 286.863779][ T387] prodikeys 0003:041E:2801.0022: unknown main item tag 0x0 [ 286.870959][ T387] prodikeys 0003:041E:2801.0022: unknown main item tag 0x0 [ 286.882758][ T387] prodikeys 0003:041E:2801.0022: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.0-1/input0 [ 287.269252][ T6489] FAT-fs (loop0): Unrecognized mount option "uid=00000000000000000000IAcO [ 287.269252][ T6489] )Ld$' ڷ/IєL„3pe39" or missing value [ 287.405034][ T502] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0023/input/input54 [ 287.424234][ T320] usb 1-1: USB disconnect, device number 54 [ 287.447362][ T24] audit: type=1326 audit(1721096979.318:2193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6544 comm="syz.3.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97f906dbd9 code=0x7ffc0000 [ 287.470805][ T24] audit: type=1326 audit(1721096979.318:2194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6544 comm="syz.3.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f97f906dbd9 code=0x7ffc0000 [ 287.497268][ T24] audit: type=1326 audit(1721096979.318:2195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6544 comm="syz.3.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97f906dbd9 code=0x7ffc0000 [ 287.498303][ T502] microsoft 0003:045E:07DA.0023: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 287.523997][ T24] audit: type=1326 audit(1721096979.318:2196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6544 comm="syz.3.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f97f906dbd9 code=0x7ffc0000 [ 287.585445][ T24] audit: type=1326 audit(1721096979.318:2197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6544 comm="syz.3.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97f906dbd9 code=0x7ffc0000 [ 287.828308][ T6562] FAULT_INJECTION: forcing a failure. [ 287.828308][ T6562] name failslab, interval 1, probability 0, space 0, times 0 [ 287.840890][ T6562] CPU: 1 PID: 6562 Comm: syz.3.1515 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 287.850551][ T6562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 287.860421][ T6562] Call Trace: [ 287.863570][ T6562] dump_stack_lvl+0x1e2/0x24b [ 287.868067][ T6562] ? bfq_pos_tree_add_move+0x43b/0x43b [ 287.873362][ T6562] ? strndup_user+0x3e/0x150 [ 287.877787][ T6562] dump_stack+0x15/0x17 [ 287.881780][ T6562] should_fail+0x3c6/0x510 [ 287.886036][ T6562] ? __se_sys_mount+0x9b/0x3b0 [ 287.890633][ T6562] __should_failslab+0xa4/0xe0 [ 287.895231][ T6562] should_failslab+0x9/0x20 [ 287.899575][ T6562] __kmalloc_track_caller+0x5f/0x320 [ 287.904701][ T6562] ? strnlen_user+0xea/0x1f0 [ 287.909122][ T6562] strndup_user+0x76/0x150 [ 287.913389][ T6562] __se_sys_mount+0x9b/0x3b0 [ 287.917798][ T6562] ? __kasan_check_write+0x14/0x20 [ 287.922745][ T6562] ? __x64_sys_mount+0xd0/0xd0 [ 287.927347][ T6562] ? fpu__clear_all+0x20/0x20 [ 287.931860][ T6562] __x64_sys_mount+0xbf/0xd0 [ 287.936286][ T6562] do_syscall_64+0x34/0x70 [ 287.940536][ T6562] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 287.946263][ T6562] RIP: 0033:0x7f97f906dbd9 [ 287.950520][ T6562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 287.969954][ T6562] RSP: 002b:00007f97f82ad048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 287.978200][ T6562] RAX: ffffffffffffffda RBX: 00007f97f91fc110 RCX: 00007f97f906dbd9 [ 287.986010][ T6562] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000 [ 287.993824][ T6562] RBP: 00007f97f82ad0a0 R08: 0000000020000140 R09: 0000000000000000 [ 288.001635][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 288.009448][ T6562] R13: 000000000000006e R14: 00007f97f91fc110 R15: 00007ffccb95cc18 [ 288.069264][ T502] usb 2-1: USB disconnect, device number 58 [ 288.100270][ T6565] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 288.107684][ T6565] EXT4-fs (loop1): Test dummy encryption mode enabled [ 288.115714][ T6565] EXT4-fs (loop1): 1 truncate cleaned up [ 288.121320][ T6565] EXT4-fs (loop1): mounted filesystem without journal. Opts: nomblk_io_submit,init_itable=0x0000000000000003,jqfmt=vfsold,test_dummy_encryption,auto_da_alloc=0x0000000000000008,,errors=continue [ 288.150709][ T24] audit: type=1400 audit(1721096980.028:2198): avc: denied { mounton } for pid=6564 comm="syz.1.1519" path="/11/file2/file0/bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 288.158518][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 288.185778][ T24] audit: type=1400 audit(1721096980.048:2199): avc: denied { map } for pid=6564 comm="syz.1.1519" path="/11/file2/file0/bus" dev="devtmpfs" ino=112 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 288.187114][ T485] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 288.222501][ T15] usb 3-1: new high-speed USB device number 54 using dummy_hcd [ 288.230271][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 288.231560][ T6565] EXT4-fs error (device loop1): __ext4_new_inode:1069: comm syz.1.1519: reserved inode found cleared - inode=1 [ 288.260238][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 288.279437][ T24] audit: type=1400 audit(1721096980.148:2200): avc: denied { mounton } for pid=6564 comm="syz.1.1519" path="/11/file2/file0/file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 288.308124][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 288.309986][ T24] audit: type=1326 audit(1721096980.178:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6575 comm="syz.0.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0555cccbd9 code=0x7ffc0000 [ 288.391483][ T6313] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 13: comm syz-executor: path /11/file2: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=196608, rec_len=0, size=1024 fake=0 [ 288.396254][ T485] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 288.421948][ T6313] ------------[ cut here ]------------ [ 288.427231][ T6313] kernel BUG at fs/ext4/inode.c:5246! [ 288.432592][ T6313] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 288.438599][ T6313] CPU: 1 PID: 6313 Comm: syz-executor Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 288.448460][ T6313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 288.458363][ T6313] RIP: 0010:ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 288.464351][ T6313] Code: 6f ca ff e9 0f f1 ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 21 f1 ff ff 48 89 df e8 49 70 ca ff e9 14 f1 ff ff e8 0f dc 8c ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 55 48 89 e5 41 57 41 [ 288.483874][ T6313] RSP: 0018:ffffc900012079a0 EFLAGS: 00010293 [ 288.489772][ T6313] RAX: ffffffff81ddce71 RBX: 0000000000000000 RCX: ffff888113783b40 [ 288.497581][ T6313] RDX: 0000000000000000 RSI: 0000000000020000 RDI: 0000000000000000 [ 288.505392][ T6313] RBP: ffffc90001207ab0 R08: ffffffff81ddaa8d R09: ffffed1024cc1c30 [ 288.513202][ T6313] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 288.521017][ T6313] R13: 0000000000020000 R14: 0000000000000000 R15: ffff88812180f000 [ 288.528830][ T6313] FS: 00005555568e2500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 288.537594][ T6313] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 288.544016][ T6313] CR2: 0000555556b044a8 CR3: 000000010fd04000 CR4: 00000000003506a0 [ 288.551831][ T6313] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 288.559639][ T6313] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 288.567449][ T6313] Call Trace: [ 288.570580][ T6313] ? __die_body+0x62/0xb0 [ 288.574743][ T6313] ? die+0x88/0xb0 [ 288.578305][ T6313] ? do_trap+0x1a4/0x310 [ 288.582383][ T6313] ? ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 288.587762][ T6313] ? handle_invalid_op+0x95/0xc0 [ 288.592537][ T6313] ? ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 288.597917][ T6313] ? exc_invalid_op+0x32/0x50 [ 288.602431][ T6313] ? asm_exc_invalid_op+0x12/0x20 [ 288.607292][ T6313] ? ext4_mark_iloc_dirty+0x1a6d/0x3e60 [ 288.612675][ T6313] ? ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 288.618053][ T6313] ? ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 288.623440][ T6313] __ext4_mark_inode_dirty+0x4fc/0x7b0 [ 288.628731][ T6313] ? sb_end_intwrite+0x110/0x110 [ 288.633506][ T6313] ? memset+0x35/0x40 [ 288.637322][ T6313] ? ktime_get_coarse_real_ts64+0xe1/0xf0 [ 288.642882][ T6313] ? __kasan_check_read+0x11/0x20 [ 288.647737][ T6313] ? __ext4_journal_start_sb+0x2e1/0x4a0 [ 288.653207][ T6313] ext4_dirty_inode+0xdd/0x120 [ 288.657806][ T6313] ? __ext4_expand_extra_isize+0x3f0/0x3f0 [ 288.663446][ T6313] __mark_inode_dirty+0xd0/0x9d0 [ 288.668221][ T6313] ? memcpy+0x56/0x70 [ 288.672041][ T6313] touch_atime+0x2ff/0x4c0 [ 288.676293][ T6313] ? current_time+0x2f0/0x2f0 [ 288.680807][ T6313] iterate_dir+0x4a1/0x580 [ 288.685060][ T6313] ? ext4_dir_llseek+0x4c0/0x4c0 [ 288.689831][ T6313] __se_sys_getdents64+0x1c1/0x460 [ 288.694780][ T6313] ? __x64_sys_getdents64+0x90/0x90 [ 288.699810][ T6313] ? filldir+0x680/0x680 [ 288.703891][ T6313] ? debug_smp_processor_id+0x17/0x20 [ 288.709101][ T6313] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 288.715002][ T6313] ? __bpf_trace_sys_enter+0x62/0x70 [ 288.720122][ T6313] __x64_sys_getdents64+0x7b/0x90 [ 288.724984][ T6313] do_syscall_64+0x34/0x70 [ 288.729235][ T6313] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 288.734962][ T6313] RIP: 0033:0x7f6645b2cc73 [ 288.739219][ T6313] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 e2 44 f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8 [ 288.758661][ T6313] RSP: 002b:00007fff0b1a25a8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9 [ 288.766902][ T6313] RAX: ffffffffffffffda RBX: 00005555568fd4e0 RCX: 00007f6645b2cc73 [ 288.774711][ T6313] RDX: 0000000000008000 RSI: 00005555568fd4e0 RDI: 0000000000000005 [ 288.782526][ T6313] RBP: 00005555568fd4b4 R08: 0000000000000000 R09: 0000000000000000 [ 288.790335][ T6313] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8 [ 288.798147][ T6313] R13: 0000000000000010 R14: 00005555568fd4b0 R15: 0000000000046531 [ 288.805960][ T6313] Modules linked in: [ 288.810018][ T6313] ---[ end trace c25cfde4571be570 ]--- [ 288.815492][ T6313] RIP: 0010:ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 288.821537][ T6313] Code: 6f ca ff e9 0f f1 ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 21 f1 ff ff 48 89 df e8 49 70 ca ff e9 14 f1 ff ff e8 0f dc 8c ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 55 48 89 e5 41 57 41 [ 288.840969][ T6313] RSP: 0018:ffffc900012079a0 EFLAGS: 00010293 [ 288.841312][ T15] usb 3-1: Using ep0 maxpacket: 8 [ 288.846802][ T6313] RAX: ffffffff81ddce71 RBX: 0000000000000000 RCX: ffff888113783b40 [ 288.859532][ T6313] RDX: 0000000000000000 RSI: 0000000000020000 RDI: 0000000000000000 [ 288.867311][ T6313] RBP: ffffc90001207ab0 R08: ffffffff81ddaa8d R09: ffffed1024cc1c30 [ 288.875138][ T6313] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 288.882918][ T6313] R13: 0000000000020000 R14: 0000000000000000 R15: ffff88812180f000 [ 288.890747][ T6313] FS: 00005555568e2500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 288.899481][ T6313] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 288.905922][ T6313] CR2: 0000555556b044a8 CR3: 000000010fd04000 CR4: 00000000003506a0 [ 288.913739][ T6313] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 288.921542][ T6313] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 288.929346][ T6313] Kernel panic - not syncing: Fatal exception [ 288.935491][ T6313] Kernel Offset: disabled [ 288.939619][ T6313] Rebooting in 86400 seconds..