last executing test programs: 4.561796776s ago: executing program 2 (id=1280): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000005000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x0) 4.549869076s ago: executing program 2 (id=1281): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000005600)='sys_enter\x00', r0}, 0x10) process_mrelease(0xffffffffffffffff, 0x0) 4.524463476s ago: executing program 2 (id=1283): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040)) ioctl$PPPIOCSACTIVE(r0, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0}) read(r0, 0x0, 0x0) write$ppp(r0, &(0x7f0000000540)="bcf38a", 0x3) 4.435775507s ago: executing program 2 (id=1288): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x0, 0x0, 0x0, 0xfffffa84, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_open_procfs(0xffffffffffffffff, &(0x7f00000006c0)='net/route\x00') bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r3}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) madvise(&(0x7f0000612000/0x3000)=nil, 0x3000, 0x15) ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc020aa00, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f00000002c0)}, 0x20) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x4e) socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)) 3.702926351s ago: executing program 3 (id=1289): epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_io_uring_setup(0x6778, &(0x7f0000000000), &(0x7f0000000080), &(0x7f00000000c0)) r1 = eventfd(0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000100)=r1, 0x1) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) 3.425323842s ago: executing program 2 (id=1293): syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000200)='./file0\x00', 0x2, &(0x7f0000000a80)=ANY=[], 0x1, 0x24a, &(0x7f0000001140)="$eJzs2s9rXFUUB/DzkkjHlHQi/qIB8aIb3TyarFwINkgLYkCpjaCC9NW86DCTmTBvCIxIm51b/wTX4tKdIMV9Nv4FXbjLJssuxCfODHUSItRWbdJ8Pps5cOfLuTN3ZjgDd//Nb7bam1W+WQxiJsti7nLsxr0sFmMmZmNsN16/9cbdlz746ON3V9fWrlxL6erq9eWVlNKFl3/65KvvX7kzOP/hDxd+PBd7i5/uH6z8uvfC3sX9369/0apSq0rd3iAV6WavNyhudsq00araeUrvd8qiKlOrW5X9Q+ubnd729jAV3Y2F+e1+WVWp6A5TuxymQS8N+sNUfF60uinP87QwH0RE42GD69/dq+s4qJ+6EXVdP/1tnL8TC3ejGdkzKXv2cvb8jezF3eziQV03jyRnH33XnAAPe/48GZz/2eb8z7apoa4RsfX1zvrO+vhxvL66Ga3oRBmXohm/xZ8fk4lxffWdtSuX0shipK3bk/ztnfXZw/nlWJq0rOvG/WqUXx7n0+H8uZifzq9EM547vv/KsflGvPbqVD6PZvzyWfSiExuj1n/lby2n9PZ7a0fyS6PnAQA8afJ037HzW57/3fo4/w/mwyPz1VwszT3e105ENfyyXXQ6Zf9sFNcm/2NPyn5OT/FzRPzHLRr/RouYiTgZ79gpLx73LxP/h6kvDgAAAAAAAAAAAKfIg94HfOtRrmQCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADyAPwIAAP//7Lnhxg==") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) ftruncate(r0, 0xc17a) 3.301759573s ago: executing program 3 (id=1294): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), r0) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000000)={0x30, r1, 0x1, 0x70bd26, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4084}, 0x20000010) 3.198877053s ago: executing program 2 (id=1296): r0 = syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000000)=ANY=[@ANYBLOB="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", @ANYRESOCT], 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) 3.185542543s ago: executing program 3 (id=1297): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = socket(0x1e, 0x2, 0x0) setsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f0000000480), 0x4) sendmsg$tipc(r1, &(0x7f0000000200)={&(0x7f0000000000)=@id={0x1e, 0x3, 0x0, {0x4e24}}, 0x10, 0x0}, 0x0) 3.169649744s ago: executing program 3 (id=1299): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) rt_sigaction(0x19, 0x0, 0x0, 0x8, &(0x7f0000000400)) syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f00000069c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5511, &(0x7f0000006b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0) syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f00000000c0)='./bus\x00', 0x4002, &(0x7f0000000380)=ANY=[@ANYBLOB="696f636861727365743d69736f383835392d322c6e6f6e756d7461696c3d302c636f6465706167653d3835322c73686f72653d6d697865642c756e695f786c6174653d312c756e695f786c6174653d312c726f6469722c696f636861727365743d69736f383835392d372c73682f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c005b2070278cb78a329ff2a704857daf07aeb603080dca73ce50a8f0630c274fc26f463bbdef9211d83b28bff1f44a5b8b8f0906e8dcb65fa3dd3c4396e2278ab09b3d95a169c8916fc2f4dbb6024553a5b2deefdf77b57200000000"], 0x1, 0x227, &(0x7f0000001980)="$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") r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='cmdline\x00') ioctl$NS_GET_OWNER_UID(r3, 0x5421, &(0x7f0000000040)=0x0) setuid(r4) fstat(r2, &(0x7f0000000180)) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) read$FUSE(0xffffffffffffffff, 0x0, 0x0) 2.878104025s ago: executing program 3 (id=1301): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x20, 0x29, 0xf, {0xf, 0x29, 0xff, 0x0, 0x3, 0x48, "458fe73f", "c18c2aaf"}}, 0x0}, 0x0) 2.862602715s ago: executing program 4 (id=1303): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x0, 0x0, 0x0, 0xfffffa84, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_open_procfs(0xffffffffffffffff, &(0x7f00000006c0)='net/route\x00') ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r3}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) madvise(&(0x7f0000612000/0x3000)=nil, 0x3000, 0x15) ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc020aa00, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f00000002c0)}, 0x20) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x4e) socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)) 2.04027489s ago: executing program 1 (id=1305): epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_io_uring_setup(0x6778, &(0x7f0000000000), &(0x7f0000000080), &(0x7f00000000c0)) r1 = eventfd(0x0) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000100)=r1, 0x1) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1) 2.00115778s ago: executing program 4 (id=1306): syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000200)='./file0\x00', 0x2, &(0x7f0000000a80)=ANY=[], 0x1, 0x24a, &(0x7f0000001140)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) ftruncate(r0, 0xc17a) 1.93748117s ago: executing program 1 (id=1307): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), r0) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000000)={0x30, r1, 0x1, 0x70bd26, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4084}, 0x20000010) 1.93700308s ago: executing program 0 (id=1308): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000b00), 0x381, 0x0) io_setup(0xbf, &(0x7f0000000100)=0x0) io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f0000000480)={0x20000000, 0x0, 0x7, 0x8, 0x0, r0, 0x0}]) 1.92868682s ago: executing program 4 (id=1309): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fdf, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = dup2(r1, r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10) process_vm_readv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 1.92599054s ago: executing program 1 (id=1310): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = socket(0x1e, 0x2, 0x0) setsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f0000000480), 0x4) sendmsg$tipc(r1, &(0x7f0000000200)={&(0x7f0000000000)=@id={0x1e, 0x3, 0x0, {0x4e24}}, 0x10, 0x0}, 0x0) 1.91570672s ago: executing program 1 (id=1311): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r3, 0x0, 0x7, 0x0) close(r2) writev(r1, &(0x7f0000000540)=[{&(0x7f0000000140)='Y', 0x1}], 0x1) 1.88050866s ago: executing program 0 (id=1312): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff60, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x1, 0x56a, &(0x7f00000015c0)="$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") mount$incfs(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 1.88029952s ago: executing program 4 (id=1313): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) fcntl$lock(r2, 0x5, &(0x7f0000000400)={0x2, 0x0, 0x36, 0x1}) 1.816713741s ago: executing program 4 (id=1314): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x0, 0x0, 0x0, 0xfffffa84, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r3}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) madvise(&(0x7f0000612000/0x3000)=nil, 0x3000, 0x15) ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc020aa00, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f00000002c0)}, 0x20) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x4e) socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)) 1.816528191s ago: executing program 0 (id=1315): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00') r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='kmem_cache_free\x00', r1}, 0x18) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) 1.815589981s ago: executing program 0 (id=1316): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x0, 0x0, 0x0, 0xfffffa84, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_open_procfs(0xffffffffffffffff, &(0x7f00000006c0)='net/route\x00') ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r3}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) madvise(&(0x7f0000612000/0x3000)=nil, 0x3000, 0x15) ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc020aa00, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f00000002c0)}, 0x20) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x4e) socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)) 1.805308531s ago: executing program 1 (id=1317): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={0x0}, 0x18) syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f00000006c0)=ANY=[@ANYBLOB="12010000020100102505a1a4400000000001090244000101000000090400001602020000052406000005240000000d240f01060000000000000000090581032000000000090582020800000000090503020002"], 0x0) sendmsg$NLBL_MGMT_C_LISTALL(0xffffffffffffffff, 0x0, 0xc0110) 1.011116715s ago: executing program 4 (id=1318): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1fd2, 0x6007, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) syz_usb_control_io(r0, &(0x7f0000000e00)={0x2c, &(0x7f0000000240)=ANY=[@ANYBLOB="0000c8000000c808a0"], 0x0, 0x0, 0x0, 0x0}, 0x0) 966.694915ms ago: executing program 0 (id=1319): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) close(r0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000800"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000280)='tlb_flush\x00', r0}, 0x10) mremap(&(0x7f0000000000/0x9000)=nil, 0xa00000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil) 47.08342ms ago: executing program 3 (id=1320): syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000200)='./file0\x00', 0x2, &(0x7f0000000a80)=ANY=[], 0x1, 0x24a, &(0x7f0000001140)="$eJzs2s9rXFUUB/DzkkjHlHQi/qIB8aIb3TyarFwINkgLYkCpjaCC9NW86DCTmTBvCIxIm51b/wTX4tKdIMV9Nv4FXbjLJssuxCfODHUSItRWbdJ8Pps5cOfLuTN3ZjgDd//Nb7bam1W+WQxiJsti7nLsxr0sFmMmZmNsN16/9cbdlz746ON3V9fWrlxL6erq9eWVlNKFl3/65KvvX7kzOP/hDxd+PBd7i5/uH6z8uvfC3sX9369/0apSq0rd3iAV6WavNyhudsq00araeUrvd8qiKlOrW5X9Q+ubnd729jAV3Y2F+e1+WVWp6A5TuxymQS8N+sNUfF60uinP87QwH0RE42GD69/dq+s4qJ+6EXVdP/1tnL8TC3ejGdkzKXv2cvb8jezF3eziQV03jyRnH33XnAAPe/48GZz/2eb8z7apoa4RsfX1zvrO+vhxvL66Ga3oRBmXohm/xZ8fk4lxffWdtSuX0shipK3bk/ztnfXZw/nlWJq0rOvG/WqUXx7n0+H8uZifzq9EM547vv/KsflGvPbqVD6PZvzyWfSiExuj1n/lby2n9PZ7a0fyS6PnAQA8afJ037HzW57/3fo4/w/mwyPz1VwszT3e105ENfyyXXQ6Zf9sFNcm/2NPyn5OT/FzRPzHLRr/RouYiTgZ79gpLx73LxP/h6kvDgAAAAAAAAAAAKfIg94HfOtRrmQCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADyAPwIAAP//7Lnhxg==") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) ftruncate(r0, 0xc17a) 44.33432ms ago: executing program 0 (id=1330): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x0, 0x0, 0x0, 0xfffffa84, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_open_procfs(0xffffffffffffffff, &(0x7f00000006c0)='net/route\x00') ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r3}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) madvise(&(0x7f0000612000/0x3000)=nil, 0x3000, 0x15) ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc020aa00, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f00000002c0)}, 0x20) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x4e) socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)) 0s ago: executing program 1 (id=1321): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) writev(r1, &(0x7f0000002800)=[{&(0x7f0000002500)='\f7', 0x2}], 0x1) kernel console output (not intermixed with test programs): rw=2049, want=45104, limit=40427 [ 129.800616][ T289] attempt to access beyond end of device [ 129.800616][ T289] loop0: rw=2049, want=45104, limit=40427 [ 129.917900][ T1981] loop3: detected capacity change from 0 to 40427 [ 129.970672][ T1981] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 130.085745][ T1981] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 130.389226][ T1979] loop4: detected capacity change from 0 to 40427 [ 130.405077][ T1995] loop1: detected capacity change from 0 to 256 [ 130.431611][ T26] usbhid 3-1:0.0: can't add hid device: -71 [ 130.437400][ T26] usbhid: probe of 3-1:0.0 failed with error -71 [ 130.534683][ T1979] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 130.544474][ T1995] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x59378cac, utbl_chksum : 0xe619d30d) [ 130.562235][ T1979] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 130.578595][ T1981] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 130.864666][ T26] usb 3-1: USB disconnect, device number 4 [ 130.956562][ T1979] F2FS-fs (loop4): invalid crc value [ 130.982976][ T1979] F2FS-fs (loop4): Found nat_bits in checkpoint [ 130.992177][ T1981] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 130.999101][ T1981] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 131.071045][ T2014] loop2: detected capacity change from 0 to 128 [ 131.237479][ T2016] netlink: 56 bytes leftover after parsing attributes in process `syz.1.436'. [ 131.416277][ T1979] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 131.441516][ T1979] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 131.969302][ T311] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 131.989677][ T311] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 133.141300][ T2021] loop1: detected capacity change from 0 to 40427 [ 133.506229][ T2021] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 133.550154][ T2021] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 133.648163][ T2019] loop0: detected capacity change from 0 to 40427 [ 133.686391][ T2021] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 133.719817][ T2021] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0 [ 133.728542][ T2019] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 133.734777][ T2019] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 133.741624][ T2021] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 133.769562][ T2019] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 133.813988][ T2019] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 133.820857][ T2019] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 134.088292][ T2071] loop2: detected capacity change from 0 to 256 [ 134.111568][ T578] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 134.418137][ T292] attempt to access beyond end of device [ 134.418137][ T292] loop1: rw=2049, want=45104, limit=40427 [ 134.448363][ T289] attempt to access beyond end of device [ 134.448363][ T289] loop0: rw=2049, want=45104, limit=40427 [ 134.471842][ T30] kauditd_printk_skb: 185 callbacks suppressed [ 134.471858][ T30] audit: type=1326 audit(1731793463.662:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2052 comm="syz.4.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4d3dfee31b code=0x7ffc0000 [ 134.500968][ T2066] loop3: detected capacity change from 0 to 40427 [ 134.501839][ T30] audit: type=1326 audit(1731793463.662:2316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2065 comm="syz.3.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fca8890f7a7 code=0x7ffc0000 [ 134.530699][ T30] audit: type=1326 audit(1731793463.662:2317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2065 comm="syz.3.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fca8890e0b0 code=0x7ffc0000 [ 134.554453][ T30] audit: type=1326 audit(1731793463.662:2318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2065 comm="syz.3.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fca8890f31b code=0x7ffc0000 [ 134.578091][ T30] audit: type=1326 audit(1731793463.692:2319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2052 comm="syz.4.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4d3dfee31b code=0x7ffc0000 [ 134.589606][ T2066] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 134.603132][ T578] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 134.620912][ T578] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 134.630979][ T30] audit: type=1326 audit(1731793463.692:2320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2065 comm="syz.3.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fca8890e3aa code=0x7ffc0000 [ 134.654084][ T2066] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 134.656814][ T578] usb 5-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 134.672241][ T2073] netlink: 'syz.1.451': attribute type 1 has an invalid length. [ 134.681304][ T578] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.689734][ T30] audit: type=1326 audit(1731793463.692:2321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2065 comm="syz.3.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fca8890e3aa code=0x7ffc0000 [ 134.716566][ T578] usb 5-1: config 0 descriptor?? [ 134.722563][ T30] audit: type=1326 audit(1731793463.722:2322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2052 comm="syz.4.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4d3dfee31b code=0x7ffc0000 [ 134.747990][ T2066] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 134.748498][ T30] audit: type=1326 audit(1731793463.742:2323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2052 comm="syz.4.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4d3dfee31b code=0x7ffc0000 [ 134.785358][ T30] audit: type=1326 audit(1731793463.772:2324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2052 comm="syz.4.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4d3dfee31b code=0x7ffc0000 [ 134.824066][ T2066] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 134.830932][ T2066] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 135.071983][ T20] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 135.238097][ T2096] netlink: 8 bytes leftover after parsing attributes in process `syz.2.460'. [ 135.256561][ T2053] loop4: detected capacity change from 0 to 512 [ 135.299324][ T2101] loop2: detected capacity change from 0 to 4096 [ 135.344091][ T2101] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 135.364068][ T2053] EXT4-fs (loop4): 1 truncate cleaned up [ 135.369557][ T2053] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 135.521579][ T20] usb 2-1: config 0 has an invalid interface number: 74 but max is 0 [ 135.534755][ T20] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 135.573910][ T20] usb 2-1: config 0 has no interface number 0 [ 135.578332][ T2106] loop2: detected capacity change from 0 to 40427 [ 135.582711][ T20] usb 2-1: too many endpoints for config 0 interface 74 altsetting 116: 122, using maximum allowed: 30 [ 135.597299][ T20] usb 2-1: config 0 interface 74 altsetting 116 has 0 endpoint descriptors, different from the interface descriptor's value: 122 [ 135.597741][ T291] attempt to access beyond end of device [ 135.597741][ T291] loop3: rw=2049, want=45104, limit=40427 [ 135.614272][ T20] usb 2-1: config 0 interface 74 has no altsetting 0 [ 135.676563][ T2106] F2FS-fs (loop2): Invalid SB checksum offset: 0 [ 135.762326][ T2106] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 135.949741][ T2106] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 136.063816][ T20] usb 2-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53 [ 136.072728][ T20] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 136.082817][ T20] usb 2-1: config 0 descriptor?? [ 136.112800][ T2106] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0 [ 136.119760][ T2106] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 136.329530][ T2112] loop0: detected capacity change from 0 to 40427 [ 136.357798][ T2119] loop2: detected capacity change from 0 to 512 [ 136.371574][ T20] usb 2-1: string descriptor 0 read error: -71 [ 136.378849][ T20] usb 2-1: selecting invalid altsetting 0 [ 136.385714][ T2119] EXT4-fs (loop2): orphan cleanup on readonly fs [ 136.394606][ T2112] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 136.400840][ T2112] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 136.402937][ T20] usb 2-1: USB disconnect, device number 5 [ 136.412152][ T2119] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #4: comm syz.2.466: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 2048(2048) [ 136.433968][ T2119] EXT4-fs error (device loop2): ext4_quota_enable:6381: comm syz.2.466: Bad quota inode: 4, type: 1 [ 136.447006][ T2119] EXT4-fs warning (device loop2): ext4_enable_quotas:6422: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 136.463507][ T2119] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 136.471099][ T2119] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 136.483629][ T2112] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 136.488831][ T2117] loop3: detected capacity change from 0 to 40427 [ 136.525246][ T2112] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 136.532265][ T2112] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 136.591959][ T2117] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 136.600276][ T2117] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 136.614380][ T2117] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 137.008700][ T2117] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 137.015762][ T2117] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 137.190686][ T2136] loop1: detected capacity change from 0 to 256 [ 137.282631][ T578] usbhid 5-1:0.0: can't add hid device: -71 [ 137.289061][ T578] usbhid: probe of 5-1:0.0 failed with error -71 [ 137.401416][ T578] usb 5-1: USB disconnect, device number 4 [ 137.595676][ T2149] netlink: 8 bytes leftover after parsing attributes in process `syz.2.468'. [ 137.636155][ T289] attempt to access beyond end of device [ 137.636155][ T289] loop0: rw=2049, want=45104, limit=40427 [ 137.692746][ T2158] loop2: detected capacity change from 0 to 256 [ 137.789253][ T2158] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d) [ 137.812698][ T2152] loop4: detected capacity change from 0 to 40427 [ 137.832922][ T2160] netlink: 8 bytes leftover after parsing attributes in process `syz.0.476'. [ 137.861544][ T2160] netlink: 8 bytes leftover after parsing attributes in process `syz.0.476'. [ 137.904742][ T2160] netlink: 8 bytes leftover after parsing attributes in process `syz.0.476'. [ 137.905159][ T2152] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 137.913503][ T2160] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check. [ 137.937394][ T2160] syz.0.476 (2160) used greatest stack depth: 19616 bytes left [ 137.945242][ T291] attempt to access beyond end of device [ 137.945242][ T291] loop3: rw=2049, want=45104, limit=40427 [ 137.951519][ T2152] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 138.012130][ T2152] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 138.032283][ T2170] netlink: 80 bytes leftover after parsing attributes in process `syz.1.479'. [ 138.093842][ T2152] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 138.100903][ T2152] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 138.577403][ T293] attempt to access beyond end of device [ 138.577403][ T293] loop4: rw=2049, want=45104, limit=40427 [ 138.579071][ T2176] loop1: detected capacity change from 0 to 40427 [ 138.984009][ T2182] loop0: detected capacity change from 0 to 40427 [ 139.042209][ T2176] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 139.042367][ T2182] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 139.051593][ T2176] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 139.069312][ T2188] loop3: detected capacity change from 0 to 40427 [ 139.080163][ T2182] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 139.109099][ T2176] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 139.123288][ T2188] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 139.139871][ T2188] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 139.162899][ T2182] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 139.215740][ T2188] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 139.225453][ T2176] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0 [ 139.240095][ T2220] loop4: detected capacity change from 0 to 256 [ 139.242613][ T2176] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 139.254523][ T2182] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 139.261396][ T2182] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 139.297466][ T2188] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 139.305364][ T2188] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 139.324348][ T2220] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 139.486166][ T30] kauditd_printk_skb: 389 callbacks suppressed [ 139.486182][ T30] audit: type=1326 audit(1731793468.672:2714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2181 comm="syz.0.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 139.541551][ T30] audit: type=1326 audit(1731793468.672:2715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2181 comm="syz.0.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 139.602782][ T30] audit: type=1326 audit(1731793468.672:2716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2175 comm="syz.1.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fee51514719 code=0x7ffc0000 [ 139.618827][ T2236] loop3: detected capacity change from 0 to 512 [ 139.638460][ T30] audit: type=1326 audit(1731793468.672:2717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2175 comm="syz.1.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee51514719 code=0x7ffc0000 [ 139.638579][ T2236] EXT4-fs (loop3): Ignoring removed nobh option [ 139.662788][ T30] audit: type=1326 audit(1731793468.672:2718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2175 comm="syz.1.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee51514719 code=0x7ffc0000 [ 139.695066][ T2217] loop2: detected capacity change from 0 to 40427 [ 139.704530][ T2236] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 139.742101][ T2217] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 139.749665][ T2217] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 139.766686][ T2217] F2FS-fs (loop2): invalid crc value [ 139.773402][ T30] audit: type=1326 audit(1731793468.672:2719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2175 comm="syz.1.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fee51514719 code=0x7ffc0000 [ 139.798425][ T30] audit: type=1326 audit(1731793468.672:2720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2181 comm="syz.0.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 139.821697][ T30] audit: type=1326 audit(1731793468.672:2721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2181 comm="syz.0.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 139.823069][ T2236] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback. [ 139.856558][ T30] audit: type=1326 audit(1731793468.672:2722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2181 comm="syz.0.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 139.869661][ T2217] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 139.887611][ T30] audit: type=1326 audit(1731793468.672:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2181 comm="syz.0.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 139.920622][ T292] attempt to access beyond end of device [ 139.920622][ T292] loop1: rw=2049, want=45104, limit=40427 [ 139.941823][ T2236] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 140.023632][ T2217] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 140.030502][ T2217] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 140.507792][ T2258] loop0: detected capacity change from 0 to 512 [ 140.672670][ T2258] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 140.836706][ T2258] EXT4-fs (loop0): 1 truncate cleaned up [ 140.842384][ T2258] EXT4-fs (loop0): mounted filesystem without journal. Opts: nogrpid,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,jqfmt=vfsv0,nombcache,quota,,errors=continue. Quota mode: writeback. [ 141.367988][ T2275] IPv6: NLM_F_REPLACE set, but no existing node found! [ 141.901103][ T2250] loop4: detected capacity change from 0 to 40427 [ 141.953191][ T2250] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 141.971542][ T2250] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 142.009861][ T2250] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 142.063034][ T2250] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 142.070010][ T2250] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 142.611070][ T578] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 142.670696][ T2289] loop3: detected capacity change from 0 to 40427 [ 142.712499][ T2289] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 142.723966][ T2289] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 142.910846][ T2289] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 143.053761][ T2289] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 143.058318][ T2334] netlink: 40 bytes leftover after parsing attributes in process `syz.4.536'. [ 143.060712][ T2289] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 143.069826][ T2334] netlink: 40 bytes leftover after parsing attributes in process `syz.4.536'. [ 143.791589][ T578] usb 2-1: New USB device found, idVendor=18ec, idProduct=3290, bcdDevice=c4.47 [ 143.800499][ T578] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 143.809454][ T578] usb 2-1: config 0 descriptor?? [ 143.867095][ T2343] loop0: detected capacity change from 0 to 40427 [ 143.877629][ T2343] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 143.891424][ T2343] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 143.911512][ T2343] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 143.974305][ T2343] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 143.981371][ T2343] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 143.982236][ T291] attempt to access beyond end of device [ 143.982236][ T291] loop3: rw=2049, want=45104, limit=40427 [ 144.091572][ T578] usb 2-1: string descriptor 0 read error: -71 [ 144.097612][ T578] usb 2-1: Found UVC 0.00 device (18ec:3290) [ 144.114781][ T578] usb 2-1: No valid video chain found. [ 144.460488][ T578] usb 2-1: USB disconnect, device number 6 [ 144.544642][ T30] kauditd_printk_skb: 121 callbacks suppressed [ 144.544659][ T30] audit: type=1326 audit(1731793473.732:2845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2378 comm="syz.2.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 144.600969][ T30] audit: type=1326 audit(1731793473.732:2846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2378 comm="syz.2.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 144.735536][ T2383] loop0: detected capacity change from 0 to 256 [ 144.990665][ T30] audit: type=1326 audit(1731793473.762:2847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2378 comm="syz.2.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 145.013886][ T30] audit: type=1326 audit(1731793473.762:2848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2378 comm="syz.2.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 145.045163][ T2389] netlink: 276 bytes leftover after parsing attributes in process `syz.1.555'. [ 145.055150][ T30] audit: type=1326 audit(1731793473.762:2849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2378 comm="syz.2.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 145.096556][ T30] audit: type=1326 audit(1731793473.762:2850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2378 comm="syz.2.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 145.149197][ T30] audit: type=1326 audit(1731793473.762:2851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2378 comm="syz.2.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe54239a753 code=0x7ffc0000 [ 145.197916][ T30] audit: type=1326 audit(1731793473.782:2852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2374 comm="syz.3.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fca8890e1ff code=0x7ffc0000 [ 145.274177][ T2398] bridge0: port 3(gretap0) entered blocking state [ 145.280512][ T2398] bridge0: port 3(gretap0) entered disabled state [ 145.287940][ T2398] device gretap0 entered promiscuous mode [ 145.293917][ T2398] bridge0: port 3(gretap0) entered blocking state [ 145.300190][ T2398] bridge0: port 3(gretap0) entered forwarding state [ 145.310588][ T2398] device gretap0 left promiscuous mode [ 145.316157][ T2398] bridge0: port 3(gretap0) entered disabled state [ 146.288541][ T30] audit: type=1326 audit(1731793475.472:2853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2374 comm="syz.3.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fca8890f7a7 code=0x7ffc0000 [ 146.353198][ T2375] loop3: detected capacity change from 0 to 40427 [ 146.367707][ T30] audit: type=1326 audit(1731793475.542:2854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2374 comm="syz.3.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fca8890e0b0 code=0x7ffc0000 [ 146.520875][ T2375] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 146.527341][ T2375] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 146.548851][ T2379] loop2: detected capacity change from 0 to 40427 [ 146.562453][ T2379] F2FS-fs (loop2): Invalid SB checksum offset: 0 [ 146.566367][ T2375] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 146.568688][ T2379] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 146.795487][ T2379] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 147.051781][ T2375] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 147.054277][ T2379] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0 [ 147.058647][ T2375] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 147.108068][ T2379] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 147.171958][ T2409] loop1: detected capacity change from 0 to 40427 [ 147.187037][ T2409] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 147.196241][ T2409] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 147.211182][ T2409] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 147.243681][ T2409] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0 [ 147.250553][ T2409] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 147.327061][ T2434] cgroup: Invalid name [ 148.129866][ T2445] netlink: 8 bytes leftover after parsing attributes in process `syz.4.569'. [ 148.261694][ T291] attempt to access beyond end of device [ 148.261694][ T291] loop3: rw=2049, want=45104, limit=40427 [ 148.341271][ T290] attempt to access beyond end of device [ 148.341271][ T290] loop2: rw=2049, want=45104, limit=40427 [ 148.924912][ T292] attempt to access beyond end of device [ 148.924912][ T292] loop1: rw=2049, want=45104, limit=40427 [ 149.121639][ T2469] loop4: detected capacity change from 0 to 40427 [ 149.135204][ T2469] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 149.141486][ T2469] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 149.192163][ T2469] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 149.696320][ T2469] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 149.699933][ T30] kauditd_printk_skb: 180 callbacks suppressed [ 149.699951][ T30] audit: type=1326 audit(1731793478.882:3035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2474 comm="syz.3.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fca8890f7a7 code=0x7ffc0000 [ 149.706374][ T2469] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 149.711016][ T30] audit: type=1326 audit(1731793478.892:3036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2474 comm="syz.3.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fca8890e0b0 code=0x7ffc0000 [ 149.732684][ T2475] loop3: detected capacity change from 0 to 40427 [ 149.770598][ T30] audit: type=1326 audit(1731793478.922:3037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2474 comm="syz.3.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fca8890f31b code=0x7ffc0000 [ 149.791904][ T2482] loop2: detected capacity change from 0 to 40427 [ 149.794984][ T30] audit: type=1326 audit(1731793478.952:3038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2468 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4d3dfed0b0 code=0x7ffc0000 [ 149.823213][ T30] audit: type=1326 audit(1731793478.952:3039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2468 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f4d3dfed497 code=0x7ffc0000 [ 149.846759][ T30] audit: type=1326 audit(1731793478.952:3040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2468 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4d3dfed0b0 code=0x7ffc0000 [ 149.870583][ T30] audit: type=1326 audit(1731793478.952:3041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2468 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4d3dfee31b code=0x7ffc0000 [ 149.893774][ T30] audit: type=1326 audit(1731793478.952:3042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2468 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4d3dfed3aa code=0x7ffc0000 [ 149.902480][ T2482] F2FS-fs (loop2): Invalid SB checksum offset: 0 [ 149.916898][ T30] audit: type=1326 audit(1731793478.952:3043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2468 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 149.922928][ T2482] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 149.946366][ T30] audit: type=1326 audit(1731793478.952:3044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2468 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 149.981429][ T2482] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 150.009638][ T2482] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0 [ 150.017285][ T2482] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 150.027229][ T2475] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 150.039209][ T2475] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 150.079506][ T2475] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 150.247320][ T2507] hub 5-0:1.0: USB hub found [ 150.252253][ T2507] hub 5-0:1.0: 1 port detected [ 150.314622][ T2475] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 150.336926][ T2475] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 150.521761][ T293] attempt to access beyond end of device [ 150.521761][ T293] loop4: rw=2049, want=45104, limit=40427 [ 150.743787][ T2522] IPv6: ADDRCONF(NETDEV_CHANGE): wg0: link becomes ready [ 150.763278][ T290] attempt to access beyond end of device [ 150.763278][ T290] loop2: rw=2049, want=45104, limit=40427 [ 150.813892][ T291] attempt to access beyond end of device [ 150.813892][ T291] loop3: rw=2049, want=45104, limit=40427 [ 150.944450][ T2532] netlink: 40 bytes leftover after parsing attributes in process `syz.4.601'. [ 151.034300][ T2544] A link change request failed with some changes committed already. Interface veth0_to_bond may have been left with an inconsistent configuration, please check. [ 151.251569][ T658] usb 3-1: new full-speed USB device number 5 using dummy_hcd [ 151.724238][ T2570] hub 5-0:1.0: USB hub found [ 151.729883][ T2570] hub 5-0:1.0: 1 port detected [ 152.141703][ T2585] mip6: mip6_destopt_init_state: state's mode is not 2: 1 [ 152.146194][ T2552] loop4: detected capacity change from 0 to 40427 [ 152.177470][ T2590] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 152.178734][ T2591] netlink: 8 bytes leftover after parsing attributes in process `syz.3.627'. [ 152.185782][ T2590] overlayfs: missing 'lowerdir' [ 152.194663][ T2591] netlink: 44 bytes leftover after parsing attributes in process `syz.3.627'. [ 152.207992][ T2552] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 152.212902][ T2591] device bridge1 entered promiscuous mode [ 152.227534][ T2552] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 152.261710][ T658] usb 3-1: not running at top speed; connect to a high speed hub [ 152.350238][ T2606] mmap: syz.0.631 (2606): VmData 29077504 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 152.365519][ T2552] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 152.618786][ T2552] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 152.626035][ T2552] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 152.645728][ T658] usb 3-1: config 5 has an invalid interface number: 148 but max is 0 [ 152.653943][ T658] usb 3-1: config 5 has no interface number 0 [ 152.659858][ T658] usb 3-1: config 5 interface 148 altsetting 1 endpoint 0xC has an invalid bInterval 250, changing to 4 [ 152.670840][ T658] usb 3-1: config 5 interface 148 altsetting 1 endpoint 0xD has invalid maxpacket 1024, setting to 64 [ 152.691485][ T658] usb 3-1: config 5 interface 148 has no altsetting 0 [ 152.881662][ T658] usb 3-1: New USB device found, idVendor=05ac, idProduct=d181, bcdDevice=b4.a2 [ 152.894982][ T658] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 152.910525][ T658] usb 3-1: Product: syz [ 152.919069][ T658] usb 3-1: Manufacturer: syz [ 152.927870][ T658] usb 3-1: SerialNumber: syz [ 154.091974][ T293] attempt to access beyond end of device [ 154.091974][ T293] loop4: rw=2049, want=45104, limit=40427 [ 154.111886][ T658] ipheth 3-1:5.148: Unable to find endpoints [ 154.128228][ T658] usb 3-1: USB disconnect, device number 5 [ 154.262621][ T2649] netlink: 20 bytes leftover after parsing attributes in process `syz.2.651'. [ 154.983547][ T30] kauditd_printk_skb: 233 callbacks suppressed [ 154.983564][ T30] audit: type=1326 audit(1731793484.172:3278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2636 comm="syz.3.642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fca8890e1ff code=0x7ffc0000 [ 155.080151][ T30] audit: type=1326 audit(1731793484.172:3279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2616 comm="syz.0.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 155.132199][ T2654] hub 5-0:1.0: USB hub found [ 155.136798][ T2637] loop3: detected capacity change from 0 to 40427 [ 155.143184][ T30] audit: type=1326 audit(1731793484.202:3280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2616 comm="syz.0.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 155.167126][ T2654] hub 5-0:1.0: 1 port detected [ 155.233973][ T30] audit: type=1326 audit(1731793484.212:3281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2646 comm="syz.1.650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fee515131ff code=0x7ffc0000 [ 155.257641][ T30] audit: type=1326 audit(1731793484.252:3282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2616 comm="syz.0.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 155.283252][ T30] audit: type=1326 audit(1731793484.252:3283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2616 comm="syz.0.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 155.306487][ T2637] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 155.324522][ T2637] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 155.360818][ T30] audit: type=1326 audit(1731793484.252:3284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2616 comm="syz.0.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 155.412922][ T2637] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 155.433347][ T30] audit: type=1326 audit(1731793484.252:3285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2616 comm="syz.0.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 155.494062][ T30] audit: type=1326 audit(1731793484.252:3286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2616 comm="syz.0.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 155.530414][ T30] audit: type=1326 audit(1731793484.312:3287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2636 comm="syz.3.642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fca8890f7a7 code=0x7ffc0000 [ 155.586906][ T2637] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 155.597655][ T2637] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 156.946136][ T291] attempt to access beyond end of device [ 156.946136][ T291] loop3: rw=2049, want=45104, limit=40427 [ 156.960762][ T2723] loop4: detected capacity change from 0 to 512 [ 157.090969][ T2723] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 157.126416][ T2723] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 157.152123][ T2723] EXT4-fs (loop4): 1 truncate cleaned up [ 157.157613][ T2723] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 157.312462][ T2759] netlink: 20 bytes leftover after parsing attributes in process `syz.3.692'. [ 157.321289][ T2759] netlink: 8 bytes leftover after parsing attributes in process `syz.3.692'. [ 157.571038][ T2779] netlink: 'syz.1.702': attribute type 4 has an invalid length. [ 157.601581][ T2779] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.702'. [ 157.735593][ T2757] loop4: detected capacity change from 0 to 40427 [ 157.772500][ T2785] netlink: 1 bytes leftover after parsing attributes in process `syz.1.705'. [ 157.822060][ T2757] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 157.828595][ T2757] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 157.848594][ T2771] loop3: detected capacity change from 0 to 40427 [ 157.865023][ T2757] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 157.922305][ T2771] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 157.928720][ T2757] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 157.931934][ T2771] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 157.937695][ T2757] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 157.998615][ T2771] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 158.110453][ T2771] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 158.121500][ T2771] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 158.451601][ T293] attempt to access beyond end of device [ 158.451601][ T293] loop4: rw=2049, want=45104, limit=40427 [ 158.531859][ T291] attempt to access beyond end of device [ 158.531859][ T291] loop3: rw=2049, want=45104, limit=40427 [ 158.561568][ T63] usb 2-1: new full-speed USB device number 7 using dummy_hcd [ 158.931573][ T63] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 158.950236][ T63] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 159.061615][ T63] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00 [ 159.077101][ T63] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 159.101319][ T63] usb 2-1: SerialNumber: syz [ 159.162359][ T63] usb 2-1: 0:2 : does not exist [ 159.165779][ T2854] loop4: detected capacity change from 0 to 40427 [ 159.242064][ T2854] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 159.248366][ T2854] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 159.301056][ T2854] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 159.422043][ T2854] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 159.432311][ T2854] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 159.594942][ T658] usb 2-1: USB disconnect, device number 7 [ 160.207905][ T30] kauditd_printk_skb: 409 callbacks suppressed [ 160.207922][ T30] audit: type=1326 audit(1731793489.392:3697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fe54239a7a7 code=0x7ffc0000 [ 160.245507][ T293] attempt to access beyond end of device [ 160.245507][ T293] loop4: rw=2049, want=45104, limit=40427 [ 160.256864][ T30] audit: type=1326 audit(1731793489.422:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe5423990b0 code=0x7ffc0000 [ 160.315972][ T30] audit: type=1326 audit(1731793489.422:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe5423993aa code=0x7ffc0000 [ 160.358728][ T30] audit: type=1326 audit(1731793489.542:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 160.397112][ T30] audit: type=1326 audit(1731793489.542:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 160.422874][ T30] audit: type=1326 audit(1731793489.572:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 160.453401][ T2899] 9pnet_virtio: no channels available for device syz [ 160.492747][ T30] audit: type=1326 audit(1731793489.572:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 160.560590][ T30] audit: type=1326 audit(1731793489.572:3704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 160.580522][ T2909] loop3: detected capacity change from 0 to 4096 [ 160.611911][ T30] audit: type=1326 audit(1731793489.572:3705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 160.637469][ T30] audit: type=1326 audit(1731793489.582:3706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2862 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe54239a753 code=0x7ffc0000 [ 161.155684][ T2909] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 161.944194][ T2952] loop4: detected capacity change from 0 to 1024 [ 161.959687][ T2956] netlink: 79 bytes leftover after parsing attributes in process `syz.0.774'. [ 161.991632][ T2952] EXT4-fs (loop4): Ignoring removed orlov option [ 161.997929][ T2952] EXT4-fs (loop4): Ignoring removed bh option [ 162.045352][ T2968] overlayfs: conflicting options: userxattr,redirect_dir=follow [ 162.047795][ T2952] EXT4-fs (loop4): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier,max_dir_size_kb=0x0000000000000008,jqfmt=vfsv0,max_dir_size_kb=0x00000000004007b3,orlov,grpquota,max_batch_time=0x0000000000000002,user_xattr,bh,nodelalloc,noload,,errors=continue. Quota mode: writeback. [ 163.073631][ T2997] netlink: 'syz.3.790': attribute type 322 has an invalid length. [ 163.141983][ T2999] netlink: 16 bytes leftover after parsing attributes in process `syz.3.792'. [ 163.175684][ T2978] loop4: detected capacity change from 0 to 40427 [ 163.221282][ T2978] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 163.233088][ T2978] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 163.292618][ T2978] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 163.376785][ T2978] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 163.386562][ T2978] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 164.561634][ T658] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 164.581898][ T293] attempt to access beyond end of device [ 164.581898][ T293] loop4: rw=2049, want=45104, limit=40427 [ 164.635216][ T3032] loop3: detected capacity change from 0 to 40427 [ 164.829152][ T3032] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 164.847195][ T3032] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 164.921791][ T658] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 164.985422][ T3032] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 165.010470][ T658] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 165.033583][ T658] usb 2-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00 [ 165.052286][ T658] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 165.062591][ T658] usb 2-1: config 0 descriptor?? [ 165.084367][ T3032] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 165.093024][ T3032] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 165.116260][ T3063] tipc: Started in network mode [ 165.128244][ T3063] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 165.137672][ T3063] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 165.147303][ T3063] tipc: Enabled bearer , priority 10 [ 165.526125][ T3071] syz.2.816 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 165.540185][ T30] kauditd_printk_skb: 222 callbacks suppressed [ 165.540202][ T30] audit: type=1326 audit(1731793494.722:3929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3072 comm="syz.0.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 165.570661][ T658] petalynx 0003:18B1:0037.0003: collection stack underflow [ 165.581282][ T658] petalynx 0003:18B1:0037.0003: item 0 1 0 12 parsing failed [ 165.590950][ T658] petalynx 0003:18B1:0037.0003: parse failed [ 165.601521][ T658] petalynx: probe of 0003:18B1:0037.0003 failed with error -22 [ 165.613965][ T30] audit: type=1326 audit(1731793494.752:3930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3031 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 165.654131][ T30] audit: type=1326 audit(1731793494.752:3931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3031 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 165.689032][ T30] audit: type=1326 audit(1731793494.752:3932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3072 comm="syz.0.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 165.724300][ T30] audit: type=1326 audit(1731793494.752:3933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3031 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 165.748782][ T30] audit: type=1326 audit(1731793494.752:3934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3031 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 165.775685][ T658] usb 2-1: USB disconnect, device number 8 [ 165.797420][ T30] audit: type=1326 audit(1731793494.752:3935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3031 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 165.821309][ T30] audit: type=1326 audit(1731793494.752:3936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3031 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 165.853364][ T30] audit: type=1326 audit(1731793494.762:3937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3072 comm="syz.0.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 165.876787][ T30] audit: type=1326 audit(1731793494.762:3938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3072 comm="syz.0.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 165.919301][ T291] attempt to access beyond end of device [ 165.919301][ T291] loop3: rw=2049, want=45104, limit=40427 [ 166.271604][ T658] tipc: Node number set to 1 [ 166.716048][ T3110] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 167.248677][ T864] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 167.256083][ T1273] usb 4-1: new full-speed USB device number 4 using dummy_hcd [ 168.561579][ T1273] usb 4-1: not running at top speed; connect to a high speed hub [ 169.510015][ T864] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 169.543069][ T864] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 169.561914][ T3182] tipc: Enabling of bearer rejected, already enabled [ 169.580868][ T864] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 169.591609][ T3186] 9pnet: p9_fd_create_tcp (3186): problem connecting socket to 127.0.0.1 [ 169.598919][ T864] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 169.625042][ T1273] usb 4-1: unable to read config index 0 descriptor/all [ 169.636586][ T3188] overlayfs: failed to resolve './file1': -2 [ 169.640425][ T1273] usb 4-1: can't read configurations, error -71 [ 169.671878][ T864] usb 3-1: New USB device found, idVendor=057e, idProduct=2009, bcdDevice= 0.00 [ 169.687446][ T864] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 169.722957][ T864] usb 3-1: config 0 descriptor?? [ 170.562205][ T864] usb 3-1: can't set config #0, error -71 [ 170.601257][ T30] kauditd_printk_skb: 84 callbacks suppressed [ 170.601279][ T30] audit: type=1326 audit(1731793499.752:4023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3165 comm="syz.0.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd02f2bd7a7 code=0x7ffc0000 [ 170.638882][ T3211] usb usb8: usbfs: process 3211 (syz.4.872) did not claim interface 0 before use [ 170.648630][ T864] usb 3-1: USB disconnect, device number 6 [ 170.748456][ T30] audit: type=1326 audit(1731793499.752:4024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3165 comm="syz.0.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd02f2bc0b0 code=0x7ffc0000 [ 170.819061][ T30] audit: type=1326 audit(1731793499.752:4025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3165 comm="syz.0.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd02f2bc3aa code=0x7ffc0000 [ 170.869635][ T30] audit: type=1326 audit(1731793499.802:4026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3165 comm="syz.0.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 170.913249][ T30] audit: type=1326 audit(1731793499.802:4027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3165 comm="syz.0.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 170.936715][ T30] audit: type=1400 audit(1731793499.822:4028): avc: denied { write } for pid=3210 comm="syz.4.872" name="001" dev="devtmpfs" ino=177 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 170.961023][ T30] audit: type=1326 audit(1731793499.822:4029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3165 comm="syz.0.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 170.984581][ T30] audit: type=1326 audit(1731793499.822:4030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3165 comm="syz.0.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 171.008687][ T30] audit: type=1326 audit(1731793499.832:4031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3165 comm="syz.0.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 171.032376][ T30] audit: type=1326 audit(1731793499.832:4032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3165 comm="syz.0.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd02f2bd753 code=0x7ffc0000 [ 171.949235][ T3221] loop3: detected capacity change from 0 to 40427 [ 172.136629][ T3221] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 172.168263][ T3221] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 172.400106][ T3221] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 172.437028][ T3264] netlink: 12 bytes leftover after parsing attributes in process `syz.4.891'. [ 172.464641][ T3264] netlink: 12 bytes leftover after parsing attributes in process `syz.4.891'. [ 172.514177][ T3221] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 172.522564][ T3221] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 172.771493][ T818] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 172.781523][ T864] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 172.864108][ T291] attempt to access beyond end of device [ 172.864108][ T291] loop3: rw=2049, want=45104, limit=40427 [ 173.214842][ T818] usb 5-1: Using ep0 maxpacket: 8 [ 173.241527][ T864] usb 2-1: Using ep0 maxpacket: 16 [ 173.331580][ T818] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 173.342470][ T818] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 173.352097][ T818] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 173.364841][ T864] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 8 [ 173.373560][ T1273] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 173.390971][ T818] usb 5-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00 [ 173.411564][ T818] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 173.428358][ T818] usb 5-1: config 0 descriptor?? [ 173.520857][ T3293] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 173.551618][ T864] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 173.560743][ T864] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 173.568794][ T864] usb 2-1: Product: syz [ 173.572880][ T864] usb 2-1: Manufacturer: syz [ 173.577294][ T864] usb 2-1: SerialNumber: syz [ 173.595625][ T864] usb 2-1: config 0 descriptor?? [ 173.632307][ T864] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected [ 173.639651][ T1273] usb 4-1: Using ep0 maxpacket: 8 [ 173.648266][ T864] usb 2-1: Detected FT232RL [ 173.761537][ T1273] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 173.770418][ T1273] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 173.792173][ T1273] usb 4-1: config 0 descriptor?? [ 173.851578][ T864] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 173.871651][ T864] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 173.891595][ T864] ftdi_sio 2-1:0.0: GPIO initialisation failed: -71 [ 173.902765][ T864] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 173.917180][ T864] usb 2-1: USB disconnect, device number 9 [ 173.923544][ T864] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 173.933297][ T864] ftdi_sio 2-1:0.0: device disconnected [ 173.981541][ T818] hid-picolcd 0003:04D8:C002.0004: No report with id 0x11 found [ 174.051515][ T3148] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 174.114967][ T818] usb 5-1: USB disconnect, device number 5 [ 174.291585][ T3148] usb 1-1: Using ep0 maxpacket: 16 [ 174.421643][ T3148] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 174.432449][ T3148] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 174.441982][ T3148] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 174.454532][ T3148] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 174.463353][ T3148] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.473214][ T3148] usb 1-1: config 0 descriptor?? [ 174.491569][ T1273] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 174.501421][ T1273] asix: probe of 4-1:0.0 failed with error -71 [ 174.508451][ T1273] usb 4-1: USB disconnect, device number 6 [ 174.622958][ T818] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 174.691558][ T426] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 174.861480][ T818] usb 2-1: Using ep0 maxpacket: 16 [ 174.901566][ T359] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 174.942861][ T3148] microsoft 0003:045E:07DA.0005: unbalanced collection at end of report description [ 174.952331][ T426] usb 3-1: Using ep0 maxpacket: 16 [ 174.957481][ T3148] microsoft 0003:045E:07DA.0005: parse failed [ 174.963421][ T3148] microsoft: probe of 0003:045E:07DA.0005 failed with error -22 [ 174.982588][ T818] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 174.993414][ T818] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 175.003202][ T818] usb 2-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00 [ 175.012128][ T818] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 175.020700][ T818] usb 2-1: config 0 descriptor?? [ 175.071764][ T426] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 175.083044][ T426] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 175.094337][ T426] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 175.121552][ T426] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 175.130711][ T426] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 175.161572][ T359] usb 5-1: Using ep0 maxpacket: 32 [ 175.182050][ T3307] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 175.221965][ T426] cdc_acm 3-1:1.0: Control and data interfaces are not separated! [ 175.243030][ T3148] usb 1-1: USB disconnect, device number 5 [ 175.291736][ T359] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 175.302672][ T359] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 175.312584][ T359] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 175.321736][ T359] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 175.330129][ T359] usb 5-1: config 0 descriptor?? [ 175.372124][ T359] hub 5-1:0.0: USB hub found [ 175.452044][ T426] cdc_acm 3-1:1.0: ttyACM0: USB ACM device [ 175.459373][ T426] usb 3-1: USB disconnect, device number 7 [ 175.562388][ T818] chicony 0003:04F2:1421.0006: item fetching failed at offset 2/5 [ 175.570264][ T818] chicony 0003:04F2:1421.0006: Chicony hid parse failed: -22 [ 175.577567][ T818] chicony: probe of 0003:04F2:1421.0006 failed with error -22 [ 175.621631][ T359] hub 5-1:0.0: config failed, can't read hub descriptor (err -90) [ 175.759808][ T30] kauditd_printk_skb: 220 callbacks suppressed [ 175.759825][ T30] audit: type=1400 audit(1731793504.942:4253): avc: denied { setopt } for pid=3318 comm="syz.0.912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 175.771530][ T818] usb 2-1: USB disconnect, device number 10 [ 175.794200][ T30] audit: type=1326 audit(1731793504.982:4254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3320 comm="syz.0.913" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x0 [ 175.881240][ T3329] syz.3.917[3329] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 175.881243][ T30] audit: type=1400 audit(1731793505.062:4255): avc: denied { integrity } for pid=3328 comm="syz.3.917" lockdown_reason="use of bpf to write user RAM" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1 [ 175.916635][ T3329] syz.3.917[3329] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 175.922343][ T359] usbhid 5-1:0.0: can't add hid device: -71 [ 175.939396][ T359] usbhid: probe of 5-1:0.0 failed with error -71 [ 175.950471][ T30] audit: type=1326 audit(1731793505.132:4256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3331 comm="syz.3.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 175.981805][ T359] usb 5-1: USB disconnect, device number 6 [ 175.995582][ T30] audit: type=1326 audit(1731793505.162:4257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3331 comm="syz.3.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 176.047052][ T30] audit: type=1326 audit(1731793505.162:4258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3331 comm="syz.3.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 176.079553][ T30] audit: type=1326 audit(1731793505.162:4259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3331 comm="syz.3.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 176.111146][ T30] audit: type=1326 audit(1731793505.162:4260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3331 comm="syz.3.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fca8890f753 code=0x7ffc0000 [ 176.136351][ T30] audit: type=1400 audit(1731793505.232:4261): avc: denied { lock } for pid=3339 comm="syz.2.922" path="socket:[24948]" dev="sockfs" ino=24948 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1 [ 176.160339][ T30] audit: type=1326 audit(1731793505.332:4262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3331 comm="syz.3.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fca8890e1ff code=0x7ffc0000 [ 176.211956][ T3332] loop3: detected capacity change from 0 to 40427 [ 176.221996][ T3332] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 176.228219][ T3332] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 176.238895][ T3332] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 176.264449][ T3332] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 176.271326][ T3332] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 176.834174][ T291] attempt to access beyond end of device [ 176.834174][ T291] loop3: rw=2049, want=45104, limit=40427 [ 176.994855][ T3356] loop4: detected capacity change from 0 to 40427 [ 177.026905][ T3356] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 177.036812][ T3356] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 177.072155][ T3356] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 177.127628][ T3356] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 177.141466][ T3356] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 177.271524][ T818] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 177.395814][ T3382] loop3: detected capacity change from 0 to 40427 [ 177.442891][ T3382] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 177.449055][ T3382] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 177.460460][ T3382] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 177.495027][ T3382] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 177.502016][ T3382] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 177.521531][ T818] usb 3-1: Using ep0 maxpacket: 8 [ 177.564226][ T293] attempt to access beyond end of device [ 177.564226][ T293] loop4: rw=2049, want=45104, limit=40427 [ 177.641574][ T818] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 177.650447][ T818] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 177.660914][ T818] usb 3-1: config 0 descriptor?? [ 177.711553][ T658] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 177.981599][ T658] usb 2-1: Using ep0 maxpacket: 16 [ 178.006950][ T818] asix 3-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random [ 178.078227][ T291] attempt to access beyond end of device [ 178.078227][ T291] loop3: rw=2049, want=45104, limit=40427 [ 178.094246][ T3431] overlayfs: missing 'workdir' [ 178.131607][ T658] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 178.142463][ T658] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 178.152575][ T658] usb 2-1: New USB device found, idVendor=056a, idProduct=0013, bcdDevice= 0.00 [ 178.165396][ T658] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 178.179897][ T658] usb 2-1: config 0 descriptor?? [ 178.361574][ T818] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 178.381575][ T818] asix: probe of 3-1:0.0 failed with error -71 [ 178.391676][ T818] usb 3-1: USB disconnect, device number 8 [ 178.503470][ T3451] loop3: detected capacity change from 0 to 40427 [ 178.530076][ T3451] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 178.536598][ T3451] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 178.549046][ T3451] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 178.584873][ T3451] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 178.591827][ T3451] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 178.673445][ T658] wacom 0003:056A:0013.0007: Unknown device_type for 'HID 056a:0013'. Assuming pen. [ 178.694306][ T658] wacom 0003:056A:0013.0007: hidraw0: USB HID v0.00 Device [HID 056a:0013] on usb-dummy_hcd.1-1/input0 [ 178.713383][ T658] input: Wacom Graphire3 Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:0013.0007/input/input6 [ 178.771083][ T3457] loop4: detected capacity change from 0 to 40427 [ 178.873402][ T818] usb 2-1: USB disconnect, device number 11 [ 178.879647][ T3457] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 178.889134][ T3457] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 178.900958][ T3457] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 178.946504][ T3457] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 178.953556][ T3457] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 179.192935][ T291] attempt to access beyond end of device [ 179.192935][ T291] loop3: rw=2049, want=45104, limit=40427 [ 179.467497][ T293] attempt to access beyond end of device [ 179.467497][ T293] loop4: rw=2049, want=45104, limit=40427 [ 179.661525][ T658] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 179.711905][ T3502] netlink: 20 bytes leftover after parsing attributes in process `syz.4.982'. [ 179.850912][ T3513] netlink: 436 bytes leftover after parsing attributes in process `syz.2.987'. [ 180.041658][ T658] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 180.075963][ T658] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 180.109082][ T658] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 180.132822][ T658] usb 4-1: New USB device found, idVendor=044e, idProduct=120b, bcdDevice= 0.00 [ 180.151679][ T658] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 180.170848][ T658] usb 4-1: config 0 descriptor?? [ 180.338422][ T3511] loop4: detected capacity change from 0 to 40427 [ 180.421958][ T3511] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 180.429496][ T3511] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 180.466057][ T3511] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 180.512576][ T3511] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 180.519608][ T3511] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 180.662842][ T658] hid-generic 0003:044E:120B.0008: unknown main item tag 0x0 [ 180.673121][ T658] hid-generic 0003:044E:120B.0008: unbalanced collection at end of report description [ 180.683412][ T658] hid-generic: probe of 0003:044E:120B.0008 failed with error -22 [ 180.710155][ T3544] device dummy0 entered promiscuous mode [ 180.718678][ T3543] device dummy0 left promiscuous mode [ 180.812864][ T30] kauditd_printk_skb: 594 callbacks suppressed [ 180.812897][ T30] audit: type=1326 audit(1731793510.002:4857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd02f2bc1ff code=0x7ffc0000 [ 180.969012][ T658] usb 4-1: USB disconnect, device number 7 [ 181.304462][ T30] audit: type=1326 audit(1731793510.492:4858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd02f2bd7a7 code=0x7ffc0000 [ 181.348314][ T30] audit: type=1326 audit(1731793510.512:4859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd02f2bc0b0 code=0x7ffc0000 [ 181.372647][ T30] audit: type=1326 audit(1731793510.512:4860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd02f2bc3aa code=0x7ffc0000 [ 181.391522][ T281] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 181.396052][ T293] attempt to access beyond end of device [ 181.396052][ T293] loop4: rw=2049, want=45104, limit=40427 [ 181.416616][ T30] audit: type=1326 audit(1731793510.602:4861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 181.445164][ T30] audit: type=1326 audit(1731793510.602:4862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 181.469038][ T30] audit: type=1326 audit(1731793510.602:4863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 181.492847][ T30] audit: type=1326 audit(1731793510.602:4864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 181.531567][ T30] audit: type=1326 audit(1731793510.602:4865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd02f2bd753 code=0x7ffc0000 [ 181.558874][ T30] audit: type=1326 audit(1731793510.612:4866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3545 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd02f2bc1ff code=0x7ffc0000 [ 181.562121][ T3554] loop3: detected capacity change from 0 to 512 [ 181.628452][ T3560] loop4: detected capacity change from 0 to 512 [ 181.643636][ T3554] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 181.654688][ T3554] ext4 filesystem being mounted at /165/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 181.667013][ T3554] EXT4-fs error (device loop3): ext4_map_blocks:629: inode #2: block 18: comm syz.3.1003: lblock 23 mapped to illegal pblock 18 (length 1) [ 181.687949][ T3560] EXT4-fs error (device loop4): __ext4_iget:4903: inode #15: block 1803188595: comm syz.4.1004: invalid block [ 181.710618][ T3560] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1004: couldn't read orphan inode 15 (err -117) [ 181.723224][ T3560] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000000967,debug_want_extra_isize=0x000000000000005c,usrquota,nombcache,stripe=0x0000000000000008,usrjquota=,,errors=continue. Quota mode: writeback. [ 181.762333][ T281] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 181.773540][ T281] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 181.784104][ T281] usb 2-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00 [ 181.794790][ T281] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 181.813273][ T281] usb 2-1: config 0 descriptor?? [ 181.882436][ T3583] loop4: detected capacity change from 0 to 256 [ 182.363556][ T281] uclogic 0003:5543:0042.0009: item fetching failed at offset 5/7 [ 182.381698][ T281] uclogic 0003:5543:0042.0009: parse failed [ 182.387445][ T281] uclogic: probe of 0003:5543:0042.0009 failed with error -22 [ 182.851176][ T281] usb 2-1: USB disconnect, device number 12 [ 182.887643][ T3578] loop3: detected capacity change from 0 to 40427 [ 182.933350][ T3578] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 182.933373][ T3578] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 182.962563][ T3578] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 183.005116][ T3578] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 183.007389][ T3599] loop4: detected capacity change from 0 to 40427 [ 183.012361][ T3578] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 183.083011][ T3599] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 183.089191][ T3599] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 183.104129][ T3599] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 183.136023][ T3599] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 183.142981][ T3599] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 183.825819][ T818] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 183.891770][ T291] attempt to access beyond end of device [ 183.891770][ T291] loop3: rw=2049, want=45104, limit=40427 [ 183.921918][ T293] attempt to access beyond end of device [ 183.921918][ T293] loop4: rw=2049, want=45104, limit=40427 [ 184.158606][ T3657] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1040'. [ 184.211643][ T818] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 184.223147][ T818] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 184.721912][ T818] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 184.730793][ T818] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 184.751499][ T281] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 184.758868][ T818] usb 3-1: SerialNumber: syz [ 184.813816][ T3663] loop3: detected capacity change from 0 to 40427 [ 184.855472][ T3663] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 184.863463][ T3663] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 184.876318][ T3663] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 184.910370][ T3663] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 184.917376][ T3663] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 184.991508][ T281] usb 1-1: Using ep0 maxpacket: 8 [ 185.052347][ T818] usb 3-1: 0:2 : does not exist [ 185.072058][ T818] usb 3-1: USB disconnect, device number 9 [ 185.087637][ T1751] udevd[1751]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 185.111733][ T281] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 185.122666][ T281] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 185.133218][ T281] usb 1-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00 [ 185.146502][ T281] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 185.156576][ T281] usb 1-1: config 0 descriptor?? [ 185.303119][ T291] attempt to access beyond end of device [ 185.303119][ T291] loop3: rw=2049, want=45104, limit=40427 [ 185.642807][ T281] lenovo 0003:17EF:6062.000A: unknown main item tag 0x0 [ 185.659750][ T281] lenovo 0003:17EF:6062.000A: unknown main item tag 0x0 [ 185.667139][ T281] lenovo 0003:17EF:6062.000A: unknown main item tag 0x0 [ 185.668424][ T3692] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1055'. [ 185.676204][ T281] lenovo 0003:17EF:6062.000A: unknown main item tag 0x0 [ 185.689662][ T281] lenovo 0003:17EF:6062.000A: unknown main item tag 0x0 [ 185.705686][ T3692] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1055'. [ 185.718995][ T281] lenovo 0003:17EF:6062.000A: hidraw0: USB HID v0.00 Device [HID 17ef:6062] on usb-dummy_hcd.0-1/input0 [ 185.785493][ T3702] bridge0: port 3(vlan2) entered blocking state [ 185.791731][ T3702] bridge0: port 3(vlan2) entered disabled state [ 185.829966][ T30] kauditd_printk_skb: 318 callbacks suppressed [ 185.829982][ T30] audit: type=1326 audit(1731793515.012:5185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fee515131ff code=0x7ffc0000 [ 185.872040][ T281] usb 1-1: USB disconnect, device number 6 [ 185.904280][ T3707] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1060'. [ 185.913277][ T30] audit: type=1400 audit(1731793515.092:5186): avc: denied { nlmsg_read } for pid=3706 comm="syz.4.1060" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 185.938921][ T30] audit: type=1326 audit(1731793515.102:5187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fee515147a7 code=0x7ffc0000 [ 185.962333][ T30] audit: type=1326 audit(1731793515.102:5188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fee515130b0 code=0x7ffc0000 [ 186.000197][ T30] audit: type=1326 audit(1731793515.102:5189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fee5151431b code=0x7ffc0000 [ 186.027894][ T30] audit: type=1326 audit(1731793515.102:5190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fee515133aa code=0x7ffc0000 [ 186.057694][ T63] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 186.065038][ T3602] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 186.075922][ T3713] loop4: detected capacity change from 0 to 512 [ 186.090060][ T30] audit: type=1326 audit(1731793515.102:5191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fee515133aa code=0x7ffc0000 [ 186.114077][ T30] audit: type=1326 audit(1731793515.182:5192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee51514719 code=0x7ffc0000 [ 186.137514][ T30] audit: type=1326 audit(1731793515.212:5193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fee51514719 code=0x7ffc0000 [ 186.161097][ T30] audit: type=1326 audit(1731793515.212:5194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee51514719 code=0x7ffc0000 [ 186.193533][ T3713] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #16: comm syz.4.1063: iget: bad extended attribute block 128 [ 186.206505][ T3713] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1063: couldn't read orphan inode 16 (err -117) [ 186.219836][ T3713] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 186.230928][ T3713] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 186.244617][ T3713] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1063: bg 0: block 352: padding at end of block bitmap is not set [ 186.259005][ T3713] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6185: Corrupt filesystem [ 186.435645][ T3719] loop4: detected capacity change from 0 to 40427 [ 186.449529][ T3719] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 186.456751][ T3719] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 186.469943][ T3719] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 186.493329][ T3730] syz.0.1068[3730] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 186.493408][ T3730] syz.0.1068[3730] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 186.504739][ T63] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 186.526692][ T3602] usb 3-1: config 0 has no interfaces? [ 186.527261][ T3719] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 186.532673][ T3602] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 186.552783][ T3602] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 186.561142][ T63] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 186.570810][ T3719] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 186.575029][ T3602] usb 3-1: config 0 descriptor?? [ 186.583021][ T63] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 186.595997][ T63] usb 4-1: New USB device found, idVendor=054c, idProduct=0ba0, bcdDevice= 0.00 [ 186.605086][ T63] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 186.640564][ T63] usb 4-1: config 0 descriptor?? [ 187.251259][ T3602] usb 3-1: USB disconnect, device number 10 [ 187.416872][ T63] sony 0003:054C:0BA0.000B: hidraw0: USB HID v80.00 Device [HID 054c:0ba0] on usb-dummy_hcd.3-1/input0 [ 187.451802][ T63] sony 0003:054C:0BA0.000B: failed to claim input [ 187.483844][ T293] attempt to access beyond end of device [ 187.483844][ T293] loop4: rw=2049, want=45104, limit=40427 [ 187.596778][ T3758] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1079'. [ 187.617040][ T3602] usb 4-1: USB disconnect, device number 8 [ 187.628127][ T3758] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1079'. [ 188.628152][ T864] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 188.655625][ T3762] loop4: detected capacity change from 0 to 40427 [ 188.750167][ T3762] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 188.766307][ T3762] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 188.809175][ T3762] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 188.871498][ T864] usb 2-1: Using ep0 maxpacket: 32 [ 188.876806][ T3762] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 188.891550][ T3762] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 188.991567][ T864] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 189.021516][ T864] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 189.053276][ T864] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 189.075031][ T864] usb 2-1: config 0 descriptor?? [ 189.112140][ T864] hub 2-1:0.0: USB hub found [ 189.421581][ T658] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 189.561553][ T864] hub 2-1:0.0: config failed, can't read hub descriptor (err -22) [ 189.574795][ T293] attempt to access beyond end of device [ 189.574795][ T293] loop4: rw=2049, want=45104, limit=40427 [ 189.661605][ T864] usbhid 2-1:0.0: can't add hid device: -71 [ 189.667386][ T864] usbhid: probe of 2-1:0.0 failed with error -71 [ 189.711741][ T864] usb 2-1: USB disconnect, device number 13 [ 189.745630][ T3824] loop4: detected capacity change from 0 to 16 [ 189.801975][ T658] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 189.812917][ T658] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 189.822637][ T658] usb 3-1: New USB device found, idVendor=0eef, idProduct=72d0, bcdDevice= 0.00 [ 189.831675][ T658] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 189.914041][ T658] usb 3-1: config 0 descriptor?? [ 189.942661][ T3824] erofs: (device loop4): mounted with root inode @ nid 36. [ 190.471548][ T6] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 190.594010][ T658] hid-multitouch 0003:0EEF:72D0.000C: hidraw0: USB HID v0.00 Device [HID 0eef:72d0] on usb-dummy_hcd.2-1/input0 [ 190.606967][ T3847] Unrecognized hibernate image header format! [ 190.614345][ T3847] PM: hibernation: Image mismatch: architecture specific data [ 190.783525][ T3854] loop4: detected capacity change from 0 to 40427 [ 190.795219][ T658] usb 3-1: USB disconnect, device number 11 [ 190.851594][ T6] usb 4-1: config 0 has no interfaces? [ 190.858479][ T3854] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 190.864723][ T3854] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 190.875419][ T3854] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 190.901109][ T3854] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 190.901525][ T864] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 190.908102][ T3854] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 190.923079][ T30] kauditd_printk_skb: 237 callbacks suppressed [ 190.923092][ T30] audit: type=1326 audit(1731793520.112:5432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4d3dfed0b0 code=0x7ffc0000 [ 190.952538][ T30] audit: type=1326 audit(1731793520.112:5433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f4d3dfed497 code=0x7ffc0000 [ 190.975950][ T30] audit: type=1326 audit(1731793520.112:5434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4d3dfed0b0 code=0x7ffc0000 [ 190.999445][ T30] audit: type=1326 audit(1731793520.112:5435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4d3dfee31b code=0x7ffc0000 [ 191.023027][ T30] audit: type=1326 audit(1731793520.112:5436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4d3dfed3aa code=0x7ffc0000 [ 191.046264][ T6] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 191.055173][ T30] audit: type=1326 audit(1731793520.112:5437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 191.078586][ T6] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 191.090103][ T6] usb 4-1: Product: syz [ 191.094201][ T6] usb 4-1: Manufacturer: syz [ 191.098518][ T6] usb 4-1: SerialNumber: syz [ 191.105332][ T30] audit: type=1326 audit(1731793520.122:5438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 191.128822][ T30] audit: type=1326 audit(1731793520.122:5439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 191.130597][ T6] r8152-cfgselector 4-1: config 0 descriptor?? [ 191.158182][ T30] audit: type=1326 audit(1731793520.122:5440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 191.182851][ T30] audit: type=1326 audit(1731793520.122:5441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3853 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4d3dfee753 code=0x7ffc0000 [ 191.301592][ T864] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 191.321085][ T864] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 191.341504][ T864] usb 1-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00 [ 191.350392][ T864] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 191.371861][ T864] usb 1-1: config 0 descriptor?? [ 191.421596][ T6] r8152-cfgselector 4-1: Unknown version 0x0000 [ 191.562923][ T293] attempt to access beyond end of device [ 191.562923][ T293] loop4: rw=2049, want=45104, limit=40427 [ 191.581811][ T658] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 191.641089][ T6] r8152-cfgselector 4-1: USB disconnect, device number 9 [ 191.831557][ T658] usb 3-1: Using ep0 maxpacket: 32 [ 191.852688][ T864] uclogic 0003:5543:0042.000D: item fetching failed at offset 5/7 [ 191.861169][ T864] uclogic 0003:5543:0042.000D: parse failed [ 191.867177][ T864] uclogic: probe of 0003:5543:0042.000D failed with error -22 [ 191.971586][ T658] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 191.982382][ T658] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 191.991246][ T658] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 191.999852][ T658] usb 3-1: config 0 descriptor?? [ 192.052098][ T658] hub 3-1:0.0: USB hub found [ 192.064796][ T359] usb 1-1: USB disconnect, device number 7 [ 192.331674][ T658] hub 3-1:0.0: config failed, can't read hub descriptor (err -22) [ 192.491852][ T658] usbhid 3-1:0.0: can't add hid device: -71 [ 192.497908][ T658] usbhid: probe of 3-1:0.0 failed with error -71 [ 192.622262][ T658] usb 3-1: USB disconnect, device number 12 [ 192.716348][ T3887] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1126'. [ 192.760623][ T3880] loop3: detected capacity change from 0 to 40427 [ 192.815885][ T3880] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 192.822831][ T3880] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 193.025202][ T3880] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 193.180595][ T3904] netlink: 79 bytes leftover after parsing attributes in process `syz.2.1132'. [ 193.220166][ T3880] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 193.241994][ T3880] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 193.541488][ T658] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 193.699555][ T291] attempt to access beyond end of device [ 193.699555][ T291] loop3: rw=2049, want=45104, limit=40427 [ 193.961813][ T658] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 193.973314][ T658] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 193.984677][ T658] usb 3-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00 [ 193.994605][ T658] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 194.078259][ T658] usb 3-1: config 0 descriptor?? [ 194.165575][ T3936] loop4: detected capacity change from 0 to 4096 [ 194.222697][ T3936] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 194.371651][ T6] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 194.526391][ T3946] loop4: detected capacity change from 0 to 40427 [ 194.592690][ T658] uclogic 0003:5543:0042.000E: item fetching failed at offset 5/7 [ 194.600477][ T658] uclogic 0003:5543:0042.000E: parse failed [ 194.606275][ T658] uclogic: probe of 0003:5543:0042.000E failed with error -22 [ 194.614892][ T3946] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 194.630694][ T3946] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 194.644528][ T3946] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 194.670446][ T3946] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 194.677585][ T3946] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 194.771617][ T6] usb 4-1: config 0 has no interfaces? [ 194.777342][ T6] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 194.786788][ T6] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 194.860063][ T6] usb 4-1: config 0 descriptor?? [ 194.885024][ T3956] usb 3-1: USB disconnect, device number 13 [ 195.136693][ T864] usb 4-1: USB disconnect, device number 10 [ 195.257886][ T293] attempt to access beyond end of device [ 195.257886][ T293] loop4: rw=2049, want=45104, limit=40427 [ 195.554106][ T3969] loop4: detected capacity change from 0 to 40427 [ 195.652060][ T3969] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 195.671488][ T3969] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 195.682324][ T3969] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 195.707552][ T3969] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 195.714555][ T3969] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 196.061271][ T30] kauditd_printk_skb: 411 callbacks suppressed [ 196.061288][ T30] audit: type=1326 audit(1731793525.242:5853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3977 comm="syz.2.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 196.148306][ T30] audit: type=1326 audit(1731793525.242:5854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3977 comm="syz.2.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 196.217815][ T30] audit: type=1326 audit(1731793525.252:5855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3977 comm="syz.2.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 196.311497][ T30] audit: type=1326 audit(1731793525.252:5856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3977 comm="syz.2.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe54239a719 code=0x7ffc0000 [ 196.357257][ T293] attempt to access beyond end of device [ 196.357257][ T293] loop4: rw=2049, want=45104, limit=40427 [ 196.378639][ T30] audit: type=1326 audit(1731793525.252:5857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3977 comm="syz.2.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe54239a753 code=0x7ffc0000 [ 196.441543][ T30] audit: type=1326 audit(1731793525.272:5858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.0.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 196.491575][ T30] audit: type=1326 audit(1731793525.282:5859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.0.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 196.547907][ T30] audit: type=1326 audit(1731793525.282:5860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.0.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 196.622338][ T30] audit: type=1326 audit(1731793525.282:5861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.0.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd02f2bd719 code=0x7ffc0000 [ 196.700352][ T30] audit: type=1326 audit(1731793525.282:5862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.0.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd02f2bd753 code=0x7ffc0000 [ 196.808489][ T3992] loop3: detected capacity change from 0 to 40427 [ 196.906226][ T3992] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 196.913182][ T3992] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 196.950501][ T3992] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 197.026208][ T3992] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 197.034916][ T3992] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 197.145315][ T3999] loop4: detected capacity change from 0 to 40427 [ 197.203364][ T3999] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 197.209678][ T3999] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 197.219966][ T4024] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4024 comm=syz.2.1172 [ 197.244959][ T3999] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 197.286698][ T3999] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 197.301487][ T3999] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 197.341941][ T4041] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 197.401510][ T4041] syz.1.1178 (4041) used greatest stack depth: 19520 bytes left [ 197.522694][ T291] attempt to access beyond end of device [ 197.522694][ T291] loop3: rw=2049, want=45104, limit=40427 [ 197.591566][ T3956] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 197.753231][ T293] attempt to access beyond end of device [ 197.753231][ T293] loop4: rw=2049, want=45104, limit=40427 [ 197.831548][ T3956] usb 1-1: Using ep0 maxpacket: 32 [ 197.951887][ T3956] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 197.958493][ T4064] loop4: detected capacity change from 0 to 1024 [ 197.971157][ T3956] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 197.987677][ T3956] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 198.010063][ T3956] usb 1-1: config 0 descriptor?? [ 198.064103][ T3956] hub 1-1:0.0: USB hub found [ 198.243094][ T4064] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 198.331843][ T3956] hub 1-1:0.0: config failed, can't read hub descriptor (err -22) [ 198.511545][ T3956] usbhid 1-1:0.0: can't add hid device: -71 [ 198.517476][ T3956] usbhid: probe of 1-1:0.0 failed with error -71 [ 198.571867][ T3956] usb 1-1: USB disconnect, device number 8 [ 198.677195][ T4072] loop4: detected capacity change from 0 to 40427 [ 198.752398][ T4072] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 198.761855][ T4072] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 198.825393][ T4072] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 198.901824][ T4072] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 198.908706][ T4072] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 199.141598][ T3956] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 199.571734][ T3956] usb 2-1: config 0 has no interfaces? [ 199.791615][ T3956] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 199.810851][ T3956] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 199.831075][ T3956] usb 2-1: Product: syz [ 199.839199][ T3956] usb 2-1: Manufacturer: syz [ 199.861464][ T3956] usb 2-1: SerialNumber: syz [ 199.891561][ T3956] r8152-cfgselector 2-1: config 0 descriptor?? [ 200.161631][ T3956] r8152-cfgselector 2-1: Unknown version 0x0000 [ 200.181830][ T293] attempt to access beyond end of device [ 200.181830][ T293] loop4: rw=2049, want=45104, limit=40427 [ 200.290519][ T4105] loop3: detected capacity change from 0 to 40427 [ 200.344626][ T4105] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 200.350813][ T4105] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 200.371801][ T3956] r8152-cfgselector 2-1: USB disconnect, device number 14 [ 200.388353][ T4105] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 200.431687][ T4105] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 200.439077][ T4105] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 200.691518][ T3148] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 200.905376][ T291] attempt to access beyond end of device [ 200.905376][ T291] loop3: rw=2049, want=45104, limit=40427 [ 200.941528][ T3148] usb 5-1: Using ep0 maxpacket: 32 [ 201.076335][ T30] kauditd_printk_skb: 579 callbacks suppressed [ 201.076362][ T30] audit: type=1400 audit(1731793530.262:6442): avc: denied { create } for pid=4130 comm="syz.1.1207" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 201.151962][ T3148] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 201.180717][ T3148] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 201.224563][ T3148] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 201.299695][ T3148] usb 5-1: config 0 descriptor?? [ 201.352495][ T3148] hub 5-1:0.0: USB hub found [ 201.372822][ T30] audit: type=1400 audit(1731793530.562:6443): avc: denied { mount } for pid=4140 comm="syz.3.1210" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 201.398216][ T30] audit: type=1400 audit(1731793530.562:6444): avc: denied { unmount } for pid=4140 comm="syz.3.1210" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 201.425791][ T30] audit: type=1326 audit(1731793530.602:6445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.3.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 201.450034][ T30] audit: type=1326 audit(1731793530.602:6446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.3.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 201.474113][ T30] audit: type=1326 audit(1731793530.602:6447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.3.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 201.505296][ T30] audit: type=1326 audit(1731793530.602:6448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.3.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fca8890f719 code=0x7ffc0000 [ 201.529170][ T30] audit: type=1326 audit(1731793530.602:6449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.3.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fca8890f753 code=0x7ffc0000 [ 201.557049][ T30] audit: type=1400 audit(1731793530.632:6450): avc: denied { create } for pid=4142 comm="syz.0.1211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 201.576873][ T30] audit: type=1400 audit(1731793530.662:6451): avc: denied { write } for pid=4142 comm="syz.0.1211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 201.611563][ T3148] hub 5-1:0.0: config failed, can't read hub descriptor (err -22) [ 201.673486][ T4144] loop3: detected capacity change from 0 to 40427 [ 201.731594][ T3148] usbhid 5-1:0.0: can't add hid device: -71 [ 201.737552][ T3148] usbhid: probe of 5-1:0.0 failed with error -71 [ 201.744976][ T4144] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 201.751269][ T4144] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 201.774480][ T4144] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 201.791857][ T3148] usb 5-1: USB disconnect, device number 7 [ 201.829533][ T4144] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 201.836512][ T4144] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 201.971539][ T3956] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 202.351808][ T3148] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 202.422233][ T3956] usb 1-1: config 0 has no interfaces? [ 202.601645][ T3956] usb 1-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 202.610691][ T3956] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 202.618833][ T3956] usb 1-1: Product: syz [ 202.623146][ T3956] usb 1-1: Manufacturer: syz [ 202.627613][ T3956] usb 1-1: SerialNumber: syz [ 202.637895][ T3956] r8152-cfgselector 1-1: config 0 descriptor?? [ 202.657030][ T291] attempt to access beyond end of device [ 202.657030][ T291] loop3: rw=2049, want=45104, limit=40427 [ 202.761669][ T3148] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 202.777643][ T3148] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 202.789600][ T3148] usb 5-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00 [ 202.798717][ T3148] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 202.811274][ T3148] usb 5-1: config 0 descriptor?? [ 202.860328][ T4179] loop3: detected capacity change from 0 to 128 [ 202.901720][ T3956] r8152-cfgselector 1-1: Unknown version 0x0000 [ 203.115378][ T6] r8152-cfgselector 1-1: USB disconnect, device number 9 [ 203.282868][ T3148] petalynx 0003:18B1:0037.000F: collection stack underflow [ 203.298572][ T4185] loop3: detected capacity change from 0 to 40427 [ 203.300236][ T3148] petalynx 0003:18B1:0037.000F: item 0 1 0 12 parsing failed [ 203.314805][ T3148] petalynx 0003:18B1:0037.000F: parse failed [ 203.320636][ T3148] petalynx: probe of 0003:18B1:0037.000F failed with error -22 [ 203.395935][ T4185] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 203.402888][ T4185] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 203.414173][ T4185] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 203.441922][ T4185] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 203.448856][ T4185] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 203.476287][ T291] attempt to access beyond end of device [ 203.476287][ T291] loop3: rw=2049, want=45104, limit=40427 [ 203.495002][ T3148] usb 5-1: USB disconnect, device number 8 [ 203.584595][ T4193] raw_sendmsg: syz.3.1226 forgot to set AF_INET. Fix it! [ 203.638801][ T4195] overlayfs: failed to resolve './file1': -2 [ 204.286897][ T4206] loop3: detected capacity change from 0 to 40427 [ 204.333666][ T4206] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 204.351794][ T4206] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 204.370422][ T4206] F2FS-fs (loop3): invalid crc value [ 204.384200][ T4206] F2FS-fs (loop3): Found nat_bits in checkpoint [ 204.430531][ T4206] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 204.437708][ T4206] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 204.551578][ T3956] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 204.769486][ T4249] loop3: detected capacity change from 0 to 512 [ 204.823456][ T4249] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 204.931602][ T3956] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 204.942354][ T3956] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 204.953155][ T3956] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 204.962789][ T3956] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 204.975754][ T3956] usb 5-1: New USB device found, idVendor=057e, idProduct=2009, bcdDevice= 0.00 [ 204.984995][ T3956] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 204.997050][ T3956] usb 5-1: config 0 descriptor?? [ 205.406713][ T1273] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 205.573315][ T3956] nintendo 0003:057E:2009.0010: hidraw0: USB HID v0.00 Device [HID 057e:2009] on usb-dummy_hcd.4-1/input0 [ 205.651658][ T3956] nintendo 0003:057E:2009.0010: Failed to read stick cal, using defaults; ret=-38 [ 205.660858][ T3956] nintendo 0003:057E:2009.0010: Analog stick positions may be inaccurate [ 205.669590][ T3956] nintendo 0003:057E:2009.0010: Failed to set report mode; ret=-38 [ 205.679662][ T3956] nintendo 0003:057E:2009.0010: probe - fail = -38 [ 205.688153][ T3956] nintendo: probe of 0003:057E:2009.0010 failed with error -38 [ 205.772439][ T3148] usb 5-1: USB disconnect, device number 9 [ 205.871557][ T1273] usb 1-1: Using ep0 maxpacket: 16 [ 205.991724][ T1273] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 206.002503][ T1273] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 206.012049][ T1273] usb 1-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 206.024781][ T1273] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 206.033611][ T1273] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 206.041512][ T3956] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 206.061602][ T4264] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 206.082532][ T1273] cdc_acm 1-1:1.0: Control and data interfaces are not separated! [ 206.294012][ T3956] usb 3-1: Using ep0 maxpacket: 16 [ 206.302031][ T1273] cdc_acm 1-1:1.0: ttyACM0: USB ACM device [ 206.321746][ T1273] usb 1-1: USB disconnect, device number 10 [ 206.411525][ T3956] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 206.422412][ T3956] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 206.432156][ T3148] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 206.439771][ T3956] usb 3-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00 [ 206.448917][ T3956] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 206.460957][ T3956] usb 3-1: config 0 descriptor?? [ 206.681555][ T3148] usb 4-1: Using ep0 maxpacket: 16 [ 206.811544][ T3148] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 8 [ 206.883073][ T30] kauditd_printk_skb: 415 callbacks suppressed [ 206.883091][ T30] audit: type=1326 audit(1731793536.072:6867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4294 comm="syz.4.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 206.913602][ T30] audit: type=1326 audit(1731793536.082:6868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4294 comm="syz.4.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 206.937734][ T30] audit: type=1326 audit(1731793536.082:6869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4294 comm="syz.4.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 206.962587][ T3956] chicony 0003:04F2:1421.0011: item fetching failed at offset 2/5 [ 206.970394][ T3956] chicony 0003:04F2:1421.0011: Chicony hid parse failed: -22 [ 206.980311][ T30] audit: type=1326 audit(1731793536.082:6870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4294 comm="syz.4.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 207.011963][ T3956] chicony: probe of 0003:04F2:1421.0011 failed with error -22 [ 207.021643][ T3148] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 207.030653][ T3148] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 207.046519][ T3148] usb 4-1: Product: syz [ 207.050626][ T3148] usb 4-1: Manufacturer: syz [ 207.055999][ T3148] usb 4-1: SerialNumber: syz [ 207.062414][ T3148] usb 4-1: config 0 descriptor?? [ 207.071174][ T30] audit: type=1326 audit(1731793536.082:6871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4294 comm="syz.4.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 207.101947][ T30] audit: type=1326 audit(1731793536.082:6872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4294 comm="syz.4.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 207.127750][ T30] audit: type=1400 audit(1731793536.082:6873): avc: denied { watch } for pid=4294 comm="syz.4.1268" path="/245" dev="tmpfs" ino=1319 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 207.132492][ T3148] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected [ 207.157311][ T6] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 207.164952][ T30] audit: type=1326 audit(1731793536.082:6874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4294 comm="syz.4.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 207.164988][ T30] audit: type=1326 audit(1731793536.082:6875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4294 comm="syz.4.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 207.189611][ T3148] usb 4-1: Detected FT232RL [ 207.222756][ T3956] usb 3-1: USB disconnect, device number 14 [ 207.234579][ T30] audit: type=1326 audit(1731793536.322:6876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4302 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d3dfee719 code=0x7ffc0000 [ 207.342085][ T3148] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 207.391910][ T3148] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 207.421996][ T3148] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71 [ 207.438140][ T3148] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 207.481538][ T6] usb 1-1: Using ep0 maxpacket: 32 [ 207.525985][ T3148] usb 4-1: USB disconnect, device number 11 [ 207.611011][ T3148] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 207.633554][ T3148] ftdi_sio 4-1:0.0: device disconnected [ 207.651681][ T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 207.667473][ T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 207.677509][ T6] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 207.686596][ T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 207.699006][ T6] usb 1-1: config 0 descriptor?? [ 207.709201][ T4303] loop4: detected capacity change from 0 to 40427 [ 207.719250][ T4303] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 207.725593][ T4303] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 207.740211][ T4303] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 207.752300][ T6] hub 1-1:0.0: USB hub found [ 207.775502][ T4303] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 207.782504][ T4303] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 208.111575][ T6] hub 1-1:0.0: config failed, can't read hub descriptor (err -90) [ 208.401479][ T3148] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 208.452029][ T6] usbhid 1-1:0.0: can't add hid device: -71 [ 208.462747][ T6] usbhid: probe of 1-1:0.0 failed with error -71 [ 208.512245][ T6] usb 1-1: USB disconnect, device number 11 [ 208.534399][ T293] attempt to access beyond end of device [ 208.534399][ T293] loop4: rw=2049, want=45104, limit=40427 [ 208.691760][ T3148] usb 2-1: Using ep0 maxpacket: 16 [ 209.471535][ T3148] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 209.487209][ T3148] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 209.497142][ T3148] usb 2-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 209.506230][ T3148] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 209.515731][ T3148] usb 2-1: config 0 descriptor?? [ 210.012279][ T3148] hid-multitouch 0003:1FD2:6007.0012: unknown main item tag 0x0 [ 210.019873][ T3148] hid-multitouch 0003:1FD2:6007.0012: unknown main item tag 0x0 [ 210.027421][ T3148] hid-multitouch 0003:1FD2:6007.0012: unbalanced collection at end of report description [ 210.037315][ T3148] hid-multitouch: probe of 0003:1FD2:6007.0012 failed with error -22 [ 210.189757][ T4376] loop3: detected capacity change from 0 to 40427 [ 210.199525][ T4376] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 210.205860][ T4376] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 210.218013][ T1273] usb 2-1: USB disconnect, device number 15 [ 210.229615][ T4376] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 210.255121][ T4376] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 210.262101][ T6] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 210.263674][ T4376] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 210.295618][ T291] attempt to access beyond end of device [ 210.295618][ T291] loop3: rw=2049, want=45104, limit=40427 [ 211.091706][ T6] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 211.100965][ T6] usb 3-1: config 1 has no interface number 0 [ 211.108909][ T6] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 211.121621][ T6] usb 3-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping [ 211.131155][ T6] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x8 has invalid wMaxPacketSize 0 [ 211.141075][ T6] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 10007, setting to 1024 [ 211.151992][ T6] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024 [ 211.177318][ T4400] loop4: detected capacity change from 0 to 128 [ 211.321570][ T3956] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 211.329391][ T6] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 211.338923][ T6] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 211.347127][ T6] usb 3-1: Product: syz [ 211.351112][ T6] usb 3-1: Manufacturer: syz [ 211.356447][ T6] usb 3-1: SerialNumber: syz [ 211.931728][ T3956] usb 4-1: Using ep0 maxpacket: 32 [ 211.951805][ T3148] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 212.019141][ T4374] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 212.071581][ T3956] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 212.082456][ T3956] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 212.092274][ T3956] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 212.101266][ T3956] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 212.110019][ T3956] usb 4-1: config 0 descriptor?? [ 212.168411][ T3956] hub 4-1:0.0: USB hub found [ 212.221517][ T3148] usb 2-1: Using ep0 maxpacket: 16 [ 212.372032][ T3148] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 212.382881][ T3148] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 212.392605][ T3148] usb 2-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 212.405333][ T3148] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 212.414226][ T3956] hub 4-1:0.0: config failed, can't read hub descriptor (err -90) [ 212.421788][ T3148] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 212.441588][ T312] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 212.441594][ T4425] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 212.462303][ T3148] cdc_acm 2-1:1.0: Control and data interfaces are not separated! [ 212.661911][ T4374] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 212.682205][ T6] cdc_ncm 3-1:1.1: bind() failure [ 212.690132][ T3148] cdc_acm 2-1:1.0: ttyACM0: USB ACM device [ 212.696017][ T312] usb 5-1: Using ep0 maxpacket: 16 [ 212.703007][ T3148] usb 2-1: USB disconnect, device number 16 [ 212.741642][ T3956] usbhid 4-1:0.0: can't add hid device: -71 [ 212.747468][ T3956] usbhid: probe of 4-1:0.0 failed with error -71 [ 212.781741][ T3956] usb 4-1: USB disconnect, device number 12 [ 212.831689][ T312] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 212.842487][ T312] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 212.852149][ T312] usb 5-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 212.861028][ T312] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 212.869926][ T312] usb 5-1: config 0 descriptor?? [ 212.885416][ T1273] usb 3-1: USB disconnect, device number 15 [ 213.132748][ T4439] loop3: detected capacity change from 0 to 128 [ 213.179329][ T30] kauditd_printk_skb: 117 callbacks suppressed [ 213.179344][ T30] audit: type=1400 audit(1731793542.362:6994): avc: denied { integrity } for pid=4440 comm="syz.1.1321" lockdown_reason="use of bpf to write user RAM" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1 [ 213.194278][ T4441] syz.1.1321[4441] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 213.256344][ T30] audit: type=1404 audit(1731793542.442:6995): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1 [ 213.320082][ T4441] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 213.331643][ T4441] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 213.339883][ T4441] CPU: 0 PID: 4441 Comm: syz.1.1321 Not tainted 5.15.167-syzkaller-00202-g42bb395d8907 #0 [ 213.349729][ T4441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 213.359620][ T4441] RIP: 0010:bpf_check+0x9514/0x12bf0 [ 213.364802][ T4441] Code: 24 70 80 3c 08 00 74 08 4c 89 ef e8 d6 c8 30 00 49 8b 75 00 89 df 41 ff d6 48 89 c3 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 48 89 df e8 ae c8 30 00 48 8b 1b 48 85 db 0f 84 [ 213.384181][ T4441] RSP: 0018:ffffc90000d074e0 EFLAGS: 00010246 [ 213.390082][ T4441] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000 [ 213.397890][ T4441] RDX: ffffc90000f3b000 RSI: 0000000000032f6d RDI: 0000000000032f6e [ 213.405704][ T4441] RBP: ffffc90000d07bb0 R08: ffffffff817c223d R09: 0000000000000003 [ 213.413517][ T4441] R10: fffff520001a0d68 R11: dffffc0000000001 R12: 1ffff9200003a413 [ 213.421322][ T4441] R13: ffff88810ee44008 R14: ffffffff817bdc60 R15: ffffc900001d209c [ 213.429136][ T4441] FS: 00007fee5018d6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 213.437914][ T4441] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 213.444327][ T4441] CR2: 000055558b9624a8 CR3: 000000013af82000 CR4: 00000000003506b0 [ 213.452136][ T4441] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 213.459948][ T4441] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 213.467760][ T4441] Call Trace: [ 213.470884][ T4441] [ 213.473662][ T4441] ? __die_body+0x62/0xb0 [ 213.477825][ T4441] ? die_addr+0x9f/0xd0 [ 213.481817][ T4441] ? exc_general_protection+0x311/0x4b0 [ 213.487211][ T4441] ? asm_exc_general_protection+0x27/0x30 [ 213.492753][ T4441] ? tracing_prog_func_proto+0x300/0x300 [ 213.498223][ T4441] ? bpf_tracing_func_proto+0x15d/0x4a0 [ 213.503611][ T4441] ? bpf_check+0x9514/0x12bf0 [ 213.508132][ T4441] ? bpf_get_btf_vmlinux+0x60/0x60 [ 213.513063][ T4441] ? arch_stack_walk+0xf3/0x140 [ 213.517754][ T4441] ? stack_trace_save+0x113/0x1c0 [ 213.522614][ T4441] ? stack_trace_snprint+0xf0/0xf0 [ 213.527561][ T4441] ? ____kasan_kmalloc+0xed/0x110 [ 213.532417][ T4441] ? ____kasan_kmalloc+0xdb/0x110 [ 213.537278][ T4441] ? __kasan_kmalloc+0x9/0x10 [ 213.541800][ T4441] ? kmem_cache_alloc_trace+0x115/0x210 [ 213.547172][ T4441] ? selinux_bpf_prog_alloc+0x51/0x140 [ 213.552473][ T4441] ? security_bpf_prog_alloc+0x62/0x90 [ 213.557769][ T4441] ? bpf_prog_load+0x9ee/0x1b50 [ 213.562479][ T4441] ? __sys_bpf+0x4bc/0x760 [ 213.566703][ T4441] ? __x64_sys_bpf+0x7c/0x90 [ 213.571127][ T4441] ? x64_sys_call+0x87f/0x9a0 [ 213.575642][ T4441] ? do_syscall_64+0x3b/0xb0 [ 213.580067][ T4441] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 213.586000][ T4441] ? __kasan_kmalloc+0x9/0x10 [ 213.590482][ T4441] ? memset+0x35/0x40 [ 213.594301][ T4441] ? bpf_obj_name_cpy+0x196/0x1e0 [ 213.599165][ T4441] bpf_prog_load+0x12ac/0x1b50 [ 213.603798][ T4441] ? map_freeze+0x370/0x370 [ 213.608106][ T4441] ? selinux_bpf+0xcb/0x100 [ 213.612442][ T4441] ? security_bpf+0x82/0xb0 [ 213.616782][ T4441] __sys_bpf+0x4bc/0x760 [ 213.620871][ T4441] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 213.626077][ T4441] __x64_sys_bpf+0x7c/0x90 [ 213.630326][ T4441] x64_sys_call+0x87f/0x9a0 [ 213.634676][ T4441] do_syscall_64+0x3b/0xb0 [ 213.638998][ T4441] ? clear_bhb_loop+0x35/0x90 [ 213.643513][ T4441] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 213.649241][ T4441] RIP: 0033:0x7fee51514719 [ 213.653494][ T4441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 213.673038][ T4441] RSP: 002b:00007fee5018d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 213.681368][ T4441] RAX: ffffffffffffffda RBX: 00007fee516cbf80 RCX: 00007fee51514719 [ 213.689181][ T4441] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005 [ 213.696998][ T4441] RBP: 00007fee5158775e R08: 0000000000000000 R09: 0000000000000000 [ 213.704799][ T4441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 213.712625][ T4441] R13: 0000000000000001 R14: 00007fee516cbf80 R15: 00007fff07b36b08 [ 213.720433][ T4441] [ 213.723304][ T4441] Modules linked in: [ 213.730477][ T30] audit: type=1400 audit(1731793542.502:6996): avc: denied { integrity } for pid=4440 comm="syz.1.1321" lockdown_reason="use of bpf to write user RAM" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=0 [ 213.754695][ T30] audit: type=1400 audit(1731793542.912:6997): avc: denied { prog_load } for pid=4431 comm="syz.4.1318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 213.774054][ T4441] ---[ end trace 1af451fab175fa98 ]--- [ 213.778831][ T30] audit: type=1400 audit(1731793542.912:6998): avc: denied { unmount } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=0 [ 213.779594][ T4441] RIP: 0010:bpf_check+0x9514/0x12bf0 [ 213.799221][ T30] audit: type=1400 audit(1731793542.912:6999): avc: denied { unmount } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=0 [ 213.804849][ T4441] Code: 24 70 80 3c 08 00 74 08 4c 89 ef e8 d6 c8 30 00 49 8b 75 00 89 df 41 ff d6 48 89 c3 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 48 89 df e8 ae c8 30 00 48 8b 1b 48 85 db 0f 84 [ 213.824539][ T30] audit: type=1400 audit(1731793542.912:7000): avc: denied { unmount } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=0 [ 213.846952][ T4441] RSP: 0018:ffffc90000d074e0 EFLAGS: 00010246 [ 213.867653][ T30] audit: type=1400 audit(1731793542.962:7001): avc: denied { ioctl } for pid=4431 comm="syz.4.1318" path="/dev/raw-gadget" dev="devtmpfs" ino=250 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=0 [ 213.867723][ T4441] [ 213.874177][ T4441] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000 [ 213.898483][ T30] audit: type=1400 audit(1731793543.032:7002): avc: denied { read } for pid=83 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0 [ 213.901570][ T312] usbhid 5-1:0.0: can't add hid device: -71 [ 213.930062][ T30] audit: type=1400 audit(1731793543.052:7003): avc: denied { read } for pid=83 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0 [ 213.935916][ T4441] RDX: ffffc90000f3b000 RSI: 0000000000032f6d RDI: 0000000000032f6e [ 213.969865][ T312] usbhid: probe of 5-1:0.0 failed with error -71 [ 213.977006][ T312] usb 5-1: USB disconnect, device number 10 [ 213.983603][ T4441] RBP: ffffc90000d07bb0 R08: ffffffff817c223d R09: 0000000000000003 [ 213.993252][ T4441] R10: fffff520001a0d68 R11: dffffc0000000001 R12: 1ffff9200003a413 [ 214.001074][ T4441] R13: ffff88810ee44008 R14: ffffffff817bdc60 R15: ffffc900001d209c [ 214.009111][ T4441] FS: 00007fee5018d6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 214.018773][ T4441] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 214.025418][ T4441] CR2: 00007fd02f448178 CR3: 000000013af82000 CR4: 00000000003506a0 [ 214.025442][ T4441] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 214.025455][ T4441] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 214.025473][ T4441] Kernel panic - not syncing: Fatal exception [ 214.025565][ T4441] Kernel Offset: disabled [ 214.059032][ T4441] Rebooting in 86400 seconds..