last executing test programs: 1.926047241s ago: executing program 4 (id=3669): r0 = syz_open_procfs(0x0, &(0x7f0000000100)='attr\x00') mknodat$null(r0, &(0x7f0000000140)='./file0\x00', 0xc000, 0x103) 1.870618692s ago: executing program 4 (id=3672): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000001000)={&(0x7f00002ab000/0x2000)=nil, &(0x7f00003f0000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00006a7000/0x1000)=nil, &(0x7f000065c000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000638000/0x3000)=nil, &(0x7f0000116000/0x2000)=nil, &(0x7f00007ca000/0x3000)=nil, &(0x7f000041d000/0x4000)=nil, &(0x7f0000178000/0xf000)=nil, 0x0}, 0x68) 1.800964483s ago: executing program 4 (id=3674): r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x22800, 0x0) ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000300)={0x3, 0x1, {0x1, 0xb, 0x1, 0x14, 0x7, 0x60, 0x0, 0x800800}}) 1.762016154s ago: executing program 4 (id=3675): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f3, &(0x7f0000001040)={'gre0\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x0, 0xab00, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @empty, @empty}}}}) 1.717051145s ago: executing program 4 (id=3678): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='oom_adj\x00') write$cgroup_int(r0, &(0x7f00000008c0)=0x200000000000000, 0x12) 1.652531536s ago: executing program 4 (id=3683): syz_usb_connect$cdc_ncm(0x6, 0x76, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a44000010203010902640002010000000904000001020d000008240600010d4bb505240000000d240f0100000000000000000006241a000000052401000009058103000000fb00090401"], 0x0) syz_usb_connect(0x2, 0x8c6, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201500236e47e2082055c2955d4010203010902b408048006a00309047f0e01ff2dde700a24010100800201020824050503"], &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x2f, &(0x7f0000000100)=ANY=[@ANYBLOB="2f03bac6c75bef54b57901ce9c63dae3933f2b25"]}]}) 886.821597ms ago: executing program 2 (id=3715): r0 = socket(0x10, 0x3, 0x0) sendto$inet6(r0, &(0x7f00000007c0)="7800000018002507b9199b02ffff48000203be04020406050a02040c5c000900580006080a0000000d0085a168d0bf46d32345653600648d270015000a00000849935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000407160016000a0000000000e000e218d1dd3b6ed538f2523250", 0x78, 0x0, 0x0, 0x0) 783.886498ms ago: executing program 2 (id=3717): r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000880), 0x1, 0x0) write$selinux_validatetrans(r0, &(0x7f0000000940)={'system_u:object_r:systemd_notify_exec_t:s0', 0x20, 'system_u:object_r:init_var_run_t:s0', 0x20, 0x2, 0x20, '/usr/sbin/cupsd\x00'}, 0x74) 767.385559ms ago: executing program 2 (id=3718): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000002540)={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc) 705.685199ms ago: executing program 2 (id=3719): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_int(r0, 0x88, 0x1, &(0x7f0000000140), 0x4) 606.147391ms ago: executing program 2 (id=3720): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@ipv6_getaddr={0x40, 0x15, 0x1, 0x0, 0x0, {}, [@IFA_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @loopback}}, @IFA_LOCAL={0x14, 0x2, @mcast1}]}, 0x40}}, 0x0) 605.759621ms ago: executing program 2 (id=3721): read$msr(0xffffffffffffffff, 0x0, 0x0) syz_usb_connect(0x2, 0x62, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000095e7d086d04c308166b0102030109025000010000000009041f0000ff0100000a24010400050201020724070500000508240805040004960d240601010302000100060006092403050503060581092403060103"], 0x0) 425.056104ms ago: executing program 0 (id=3733): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a888e55", 0x0, 0x1ff, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 254.908877ms ago: executing program 0 (id=3737): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x13c, 0x19, 0x1, 0x0, 0x10, {{@in6=@dev={0xfe, 0x80, '\x00', 0xc}, @in=@remote, 0x0, 0x0, 0x4e21, 0x0, 0xa, 0x20, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0xffffffff}, {0x1, 0x0, 0x80}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@tmpl={0x84, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@local, 0x1, 0x3}, {{@in6=@mcast1, 0x0, 0x33}, 0x0, @in=@private=0xa010101, 0x3500, 0x2, 0x0, 0x1, 0x0, 0xabf}]}]}, 0x13c}}, 0x44) 232.150677ms ago: executing program 0 (id=3740): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x3, 0x0, 0x2, 0xf, 0x0, 0xfffffffd, 0x25dfdbff, [@sadb_address={0x3, 0x6, 0x0, 0x20, 0x0, @in={0x2, 0x0, @rand_addr=0x64010100}}, @sadb_sa={0x2, 0x1, 0x0, 0x7, 0x0, 0xfb, 0x3}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_key={0x1, 0x8}, @sadb_lifetime={0x4, 0x3, 0x7fffffff, 0x9, 0x2, 0x1}]}, 0x78}, 0x1, 0x7}, 0x0) 160.255028ms ago: executing program 3 (id=3743): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f00000001c0)={'filter\x00', 0x5, 0x4, 0x3f0, 0x110, 0x0, 0x220, 0x3f0, 0x308, 0x308, 0x4, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @private, @empty}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @local, @private}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440) 159.858508ms ago: executing program 0 (id=3744): unshare(0x2040400) getdents64(0xffffffffffffffff, 0x0, 0x0) 140.814798ms ago: executing program 3 (id=3745): bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c0000000a000000000000000000000b02000000000000000300000d000000000000000003000000030000000300000004000000030000000000000000000002000000000000005f4f"], &(0x7f0000000b80)=""/4090, 0x5e, 0xffa, 0x1, 0x0, 0x0, @void, @value}, 0x20) 140.334858ms ago: executing program 1 (id=3746): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newlink={0x64, 0x10, 0x439, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x3202, 0x110d1}, [@IFLA_IFNAME={0x14, 0x3, 'wg0\x00'}, @IFLA_VFINFO_LIST={0x30, 0x16, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@IFLA_VF_MAC={0x28, 0x1, {0xf, @multicast}}]}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x80c5}, 0x40008880) 124.170718ms ago: executing program 0 (id=3747): r0 = socket$inet_udp(0x2, 0x2, 0x0) recvmsg(r0, &(0x7f0000000400)={&(0x7f0000000140)=@hci, 0xfffffe0b, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/164, 0xa4}, {&(0x7f0000000200)=""/6, 0x6}, {&(0x7f0000000580)=""/132, 0x84}], 0x2c, &(0x7f0000000640)=""/217, 0xd9}, 0x22) 123.701309ms ago: executing program 1 (id=3748): r0 = gettid() setpgid(r0, 0x0) 86.169859ms ago: executing program 1 (id=3749): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000340)={0x400000100002f, {0x0, 0x0, 0x6300}}) 85.993109ms ago: executing program 0 (id=3750): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000480)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) 85.838429ms ago: executing program 3 (id=3751): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="05000000080000000a00000008"], 0x50) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000002c0)={r0, &(0x7f0000000200), 0x0}, 0x20) 85.740909ms ago: executing program 1 (id=3752): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) getsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f00000000c0)=0x5aa, &(0x7f0000000180)=0x4) 84.410149ms ago: executing program 3 (id=3753): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000006a00010500000000fddbdf25000000000000000008000500", @ANYBLOB="f47129a6", @ANYBLOB='\b\x00\n'], 0x28}}, 0x0) 42.30907ms ago: executing program 3 (id=3754): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000000c0)="170000000200010000ffbe8c5ee17688a20032000301000a000002a257fc5ad90200bb6a880000d6c8db000000df018002000000fc0607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dfc060115003901000000000000ea000000000000000062068f5ee50ce5af9b1c568302ffff02ff030000ba000840024f0298e9e90539062a80e605007f71174aa951f3c63e5a1b47b63a6323ded2231454668492f9c681a6a9fc", 0xb8) 41.74281ms ago: executing program 1 (id=3755): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2400000018000909000000000010000002180000ff0000060000000008000100ac1414"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x4000) 411.951µs ago: executing program 3 (id=3756): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000003c0)={'veth1_to_bridge\x00', &(0x7f00000002c0)=@ethtool_rxnfc={0x30, 0x4, 0x1, {0x7, @usr_ip6_spec={@loopback, @private2={0xfc, 0x2, '\x00', 0x1}, 0x5, 0x7f, 0x40}, {0x0, @broadcast, 0x1, 0x3ff, [0x8, 0x7]}, @tcp_ip6_spec={@private2={0xfc, 0x2, '\x00', 0x1}, @private2, 0x4e23, 0x4e23}, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x15}, 0xf4e2, 0x0, [0x7e, 0xf]}, 0x48, 0x6}}}) 0s ago: executing program 1 (id=3757): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000e86000)="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", 0x118) kernel console output (not intermixed with test programs): descriptor, different from the interface descriptor's value: 2 [ 124.702201][ T366] usb 4-1: config 1 interface 0 has no altsetting 0 [ 124.779817][ T4075] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal [ 124.864581][ T15] usb 5-1: New USB device found, idVendor=0403, idProduct=f06a, bcdDevice= 1.ef [ 124.874179][ T374] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 124.883372][ T5] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 124.886689][ T366] usb 4-1: New USB device found, idVendor=6253, idProduct=0100, bcdDevice= 0.40 [ 124.893347][ T374] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 124.911113][ T15] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 124.918655][ T366] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 124.923168][ T5] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 124.936279][ T15] usb 5-1: Product: syz [ 124.940765][ T15] usb 5-1: Manufacturer: syz [ 124.946426][ T15] usb 5-1: SerialNumber: syz [ 124.951464][ T366] usb 4-1: Manufacturer: ᰊ [ 124.951906][ T5] usb 1-1: Product: syz [ 124.956615][ T366] usb 4-1: SerialNumber: syz [ 124.960861][ T5] usb 1-1: Manufacturer: syz [ 124.960871][ T5] usb 1-1: SerialNumber: syz [ 124.961438][ T374] usb 2-1: Product: syz [ 124.982532][ T15] usb 5-1: config 0 descriptor?? [ 124.988126][ T374] usb 2-1: Manufacturer: syz [ 124.993674][ T374] usb 2-1: SerialNumber: syz [ 124.999722][ T374] usb 2-1: config 0 descriptor?? [ 125.028455][ T15] ftdi_sio 5-1:0.121: FTDI USB Serial Device converter detected [ 125.037775][ T15] usb 5-1: Detected SIO [ 125.044367][ T15] ftdi_sio ttyUSB0: Overriding wMaxPacketSize on endpoint 3 [ 125.055614][ T15] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 125.308912][ T289] usb 3-1: new high-speed USB device number 38 using dummy_hcd [ 125.315966][ T374] usb 5-1: USB disconnect, device number 38 [ 125.330529][ T5] usb 1-1: 2:1 : unknown format tag 0x4 is detected. processed as MPEG. [ 125.391216][ T374] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 125.421264][ T5] usb 1-1: found format II with max.bitrate = 48941, frame size=2047 [ 125.429039][ T885] usb 2-1: USB disconnect, device number 36 [ 125.434610][ T5] usb 1-1: 2:1 : unknown format tag 0x4 is detected. processed as MPEG. [ 125.504159][ T366] usbhid 4-1:1.0: can't add hid device: -71 [ 125.506941][ T374] ftdi_sio 5-1:0.121: device disconnected [ 125.511089][ T366] usbhid: probe of 4-1:1.0 failed with error -71 [ 125.521965][ T5] usb 1-1: found format II with max.bitrate = 48941, frame size=2047 [ 125.580180][ T366] usb 4-1: USB disconnect, device number 38 [ 125.604488][ T289] usb 3-1: Using ep0 maxpacket: 16 [ 125.612699][ T5] usb 1-1: 2:130: cannot set enable PITCH [ 125.659661][ T5] usb 1-1: 2:1: cannot set freq 15081733 to ep 0x82 [ 125.730642][ T5] usb 1-1: USB disconnect, device number 36 [ 125.743140][ T289] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 125.770304][ T289] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 22 [ 125.905014][ T289] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 125.936102][ T289] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 125.945290][ T289] usb 3-1: SerialNumber: syz [ 126.123494][ T4110] syz.4.1654 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 126.134617][ T4112] tmpfs: Bad value for 'nr_blocks' [ 126.231141][ T4124] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 126.255050][ T289] usb 3-1: USB disconnect, device number 38 [ 126.263041][ T4124] EXT4-fs error (device loop3): ext4_quota_enable:6443: comm syz.3.1660: Bad quota inum: 28, type: 0 [ 126.276478][ T4124] EXT4-fs (loop3): Remounting filesystem read-only [ 126.285489][ T4124] EXT4-fs warning (device loop3): ext4_enable_quotas:6491: Failed to enable quota tracking (type=0, err=-117, ino=28). Please run e2fsck to fix. [ 126.313862][ T4124] EXT4-fs (loop3): mount failed [ 126.338415][ T5] usb 1-1: new high-speed USB device number 37 using dummy_hcd [ 126.371002][ T366] usb 2-1: new high-speed USB device number 37 using dummy_hcd [ 126.533522][ T374] usb 5-1: new high-speed USB device number 39 using dummy_hcd [ 126.592779][ T4135] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 126.603956][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 126.618966][ T4135] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2219: inode #15: comm syz.3.1665: corrupted in-inode xattr [ 126.631301][ T366] usb 2-1: Using ep0 maxpacket: 16 [ 126.639863][ T4135] EXT4-fs (loop3): Remounting filesystem read-only [ 126.649025][ T4135] EXT4-fs (loop3): 1 truncate cleaned up [ 126.657903][ T4135] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,quota,errors=remount-ro,barrier, [ 126.739524][ T5] usb 1-1: config index 0 descriptor too short (expected 1051, got 27) [ 126.756108][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7 [ 126.761218][ T366] usb 2-1: config 0 has an invalid interface number: 41 but max is 0 [ 126.768634][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 126.817531][ T366] usb 2-1: config 0 has no interface number 0 [ 126.838610][ T374] usb 5-1: Using ep0 maxpacket: 32 [ 126.852819][ T366] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 126.872812][ T366] usb 2-1: config 0 interface 41 has no altsetting 0 [ 126.999624][ T5] usb 1-1: New USB device found, idVendor=06f8, idProduct=b000, bcdDevice=7d.f9 [ 127.012290][ T374] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 127.025628][ T5] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 127.056096][ T5] usb 1-1: Product: syz [ 127.061705][ T5] usb 1-1: Manufacturer: syz [ 127.074134][ T5] usb 1-1: SerialNumber: syz [ 127.075501][ T366] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 127.080975][ T5] usb 1-1: config 0 descriptor?? [ 127.145218][ T366] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 127.166565][ T366] usb 2-1: Product: syz [ 127.205564][ T374] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=91.69 [ 127.208450][ T366] usb 2-1: Manufacturer: syz [ 127.220014][ T374] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 127.238888][ T885] usb 4-1: new full-speed USB device number 39 using dummy_hcd [ 127.248972][ T374] usb 5-1: Product: syz [ 127.254581][ T374] usb 5-1: Manufacturer: syz [ 127.281908][ T374] usb 5-1: SerialNumber: syz [ 127.282194][ T366] usb 2-1: SerialNumber: syz [ 127.293019][ T374] usb 5-1: config 0 descriptor?? [ 127.308043][ T4161] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 127.346751][ T366] usb 2-1: config 0 descriptor?? [ 127.346875][ T374] asix: probe of 5-1:0.0 failed with error -22 [ 127.378933][ T4098] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 127.391511][ T4161] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=8001e119, mo2=0000] [ 127.483041][ T374] usb 1-1: USB disconnect, device number 37 [ 127.491637][ T366] CoreChips: probe of 2-1:0.41 failed with error -22 [ 127.491885][ T4161] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3342: comm syz.2.1677: Allocating blocks 42-43 which overlap fs metadata [ 127.552470][ T4161] Quota error (device loop2): write_blk: dquota write failed [ 127.567165][ T5] usb 5-1: USB disconnect, device number 39 [ 127.583231][ T4161] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 127.600120][ T4161] EXT4-fs error (device loop2): ext4_acquire_dquot:6226: comm syz.2.1677: Failed to acquire dquot type 0 [ 127.642797][ T4161] EXT4-fs (loop2): 1 truncate cleaned up [ 127.648831][ T4161] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,norecovery,acl,resgid=0x000000000000ee01,norecovery,noauto_da_alloc,resgid=0x000000000000ee002,errors=continue [ 127.652029][ T885] usb 4-1: config 0 has an invalid interface number: 20 but max is 0 [ 127.796022][ T885] usb 4-1: config 0 has no interface number 0 [ 127.807388][ T5] usb 2-1: USB disconnect, device number 37 [ 128.019139][ T885] usb 4-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 128.047918][ T885] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 128.071028][ T885] usb 4-1: Product: syz [ 128.076497][ T885] usb 4-1: Manufacturer: syz [ 128.089746][ T885] usb 4-1: SerialNumber: syz [ 128.096685][ T885] usb 4-1: config 0 descriptor?? [ 128.148902][ T885] usb-storage 4-1:0.20: USB Mass Storage device detected [ 128.180838][ T374] usb 3-1: new full-speed USB device number 39 using dummy_hcd [ 128.201097][ T885] usb-storage 4-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 128.342511][ T4182] EXT4-fs (loop0): Test dummy encryption mode enabled [ 128.364344][ T4182] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal [ 128.370771][ T289] usb 4-1: USB disconnect, device number 39 [ 128.592761][ T374] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 128.618903][ T374] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 128.635880][ T374] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 128.672416][ T4189] Alternate GPT is invalid, using primary GPT. [ 128.678928][ T4189] loop1: p1 p2 p3 [ 128.699805][ T344] udevd[344]: inotify_add_watch(7, /dev/loop1p130, 10) failed: No such file or directory [ 128.710937][ T348] udevd[348]: inotify_add_watch(7, /dev/loop1p135, 10) failed: No such file or directory [ 128.710998][ T303] udevd[303]: inotify_add_watch(7, /dev/loop1p132, 10) failed: No such file or directory [ 128.732455][ T346] udevd[346]: inotify_add_watch(7, /dev/loop1p133, 10) failed: No such file or directory [ 128.733912][ T347] udevd[347]: inotify_add_watch(7, /dev/loop1p139, 10) failed: No such file or directory [ 128.744773][ T954] udevd[954]: inotify_add_watch(7, /dev/loop1p136, 10) failed: No such file or directory [ 128.755957][ T345] udevd[345]: inotify_add_watch(7, /dev/loop1p141, 10) failed: No such file or directory [ 128.765264][ T962] udevd[962]: inotify_add_watch(7, /dev/loop1p138, 10) failed: No such file or directory [ 128.781010][ T957] udevd[957]: inotify_add_watch(7, /dev/loop1p142, 10) failed: No such file or directory [ 128.796648][ T291] udevd[291]: inotify_add_watch(7, /dev/loop1p144, 10) failed: No such file or directory [ 128.852808][ T374] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 128.862230][ T374] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 128.870685][ T5] usb 5-1: new high-speed USB device number 40 using dummy_hcd [ 128.908681][ T374] usb 3-1: Product: syz [ 128.912940][ T374] usb 3-1: Manufacturer: syz [ 128.917545][ T374] usb 3-1: SerialNumber: syz [ 128.961622][ T374] cdc_ncm 3-1:1.0: invalid descriptor buffer length [ 128.968496][ T374] cdc_ncm 3-1:1.0: bind() failure [ 129.069921][ T4198] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5 [ 129.069921][ T4198] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 129.069921][ T4198] [ 129.089356][ T4198] EXT4-fs (loop3): external journal device major/minor numbers have changed [ 129.099804][ T4198] EXT4-fs (loop3): failed to open journal device unknown-block(0,14) -6 [ 129.186231][ T15] usb 3-1: USB disconnect, device number 39 [ 129.251923][ T24] audit: type=1326 audit(2000000009.476:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4202 comm="syz.1.1694" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f38b8ad9969 code=0x0 [ 129.329718][ T5] usb 5-1: config 255 has an invalid descriptor of length 0, skipping remainder of the config [ 129.395462][ T5] usb 5-1: config 255 has 1 interface, different from the descriptor's value: 3 [ 129.452648][ T5] usb 5-1: config 255 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 6 [ 129.492602][ T4215] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 129.524853][ T4215] EXT4-fs error (device loop3): ext4_get_journal_inode:5243: comm syz.3.1700: inode #16777216: comm syz.3.1700: iget: illegal inode # [ 129.557348][ T4215] EXT4-fs (loop3): Remounting filesystem read-only [ 129.564163][ T4215] EXT4-fs (loop3): no journal found [ 129.569511][ T4215] EXT4-fs (loop3): can't get journal size [ 129.589819][ T4215] EXT4-fs (loop3): failed to initialize system zone (-22) [ 129.597009][ T4215] EXT4-fs (loop3): mount failed [ 129.676510][ T5] usb 5-1: New USB device found, idVendor=19d2, idProduct=0414, bcdDevice=1c.6f [ 129.685867][ T5] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 129.694604][ T5] usb 5-1: Product: syz [ 129.699715][ T5] usb 5-1: Manufacturer: syz [ 129.704413][ T5] usb 5-1: SerialNumber: syz [ 129.820323][ T4194] F2FS-fs (loop0): Found nat_bits in checkpoint [ 129.839008][ T15] usb 2-1: new high-speed USB device number 38 using dummy_hcd [ 129.967393][ T4194] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 130.023676][ T5] cdc_ether 5-1:255.0: skipping garbage [ 130.034046][ T5] cdc_ether 5-1:255.0: skipping garbage [ 130.040126][ T5] cdc_ether 5-1:255.0: skipping garbage [ 130.047959][ T4250] EXT4-fs (loop2): Ignoring removed nobh option [ 130.059326][ T4250] EXT4-fs (loop2): Invalid want_extra_isize 257 [ 130.109945][ T15] usb 2-1: Using ep0 maxpacket: 8 [ 130.137717][ T5] cdc_ether 5-1:255.0: skipping garbage [ 130.183553][ T5] cdc_ether 5-1:255.0: skipping garbage [ 130.241144][ T15] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 130.256176][ T5] cdc_ether 5-1:255.0: skipping garbage [ 130.284980][ T15] usb 2-1: config 2 interface 0 altsetting 8 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 130.320928][ T5] cdc_ether 5-1:255.0: skipping garbage [ 130.327697][ T5] cdc_ether 5-1:255.0: skipping garbage [ 130.338591][ T5] usb 5-1: bad CDC descriptors [ 130.351017][ T15] usb 2-1: config 2 interface 0 has no altsetting 0 [ 130.361184][ T5] usb 5-1: USB disconnect, device number 40 [ 130.545001][ T15] usb 2-1: New USB device found, idVendor=04e2, idProduct=1412, bcdDevice=ca.21 [ 130.588734][ T15] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 130.643685][ T15] usb 2-1: Product: syz [ 130.679495][ T15] usb 2-1: Manufacturer: syz [ 130.710443][ T15] usb 2-1: SerialNumber: syz [ 130.836089][ T289] usb 3-1: new high-speed USB device number 40 using dummy_hcd [ 130.966089][ T5] usb 5-1: new full-speed USB device number 41 using dummy_hcd [ 131.045255][ T15] usb 2-1: USB disconnect, device number 38 [ 131.269663][ T289] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 131.302722][ T289] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 131.312976][ T5] usb 5-1: not running at top speed; connect to a high speed hub [ 131.332313][ T289] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 131.395003][ T289] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 131.412210][ T5] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 131.450311][ T5] usb 5-1: config 1 has no interface number 1 [ 131.466209][ T5] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 131.594788][ T289] usb 3-1: New USB device found, idVendor=0738, idProduct=a2c5, bcdDevice=1e.ce [ 131.607166][ T4259] EXT4-fs (loop3): Invalid commit interval 880060142, must be smaller than 21474836 [ 131.611864][ T289] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 131.627925][ T289] usb 3-1: Product: syz [ 131.632125][ T289] usb 3-1: Manufacturer: syz [ 131.639865][ T289] usb 3-1: SerialNumber: syz [ 131.648379][ T289] usb 3-1: config 0 descriptor?? [ 131.681472][ T5] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 131.691408][ T5] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 131.693320][ T289] xpad 3-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 131.706091][ T5] usb 5-1: Product: syz [ 131.760682][ T289] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input9 [ 131.764653][ T5] usb 5-1: Manufacturer: syz [ 131.789178][ T5] usb 5-1: SerialNumber: syz [ 131.948829][ T289] usb 3-1: USB disconnect, device number 40 [ 131.961177][ T289] xpad 3-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 131.995719][ T366] usb 2-1: new high-speed USB device number 39 using dummy_hcd [ 131.995729][ T295] usb 1-1: new full-speed USB device number 38 using dummy_hcd [ 132.257528][ T5] usb 5-1: 2:130: cannot set enable PITCH [ 132.287477][ T5] usb 5-1: USB disconnect, device number 41 [ 132.310006][ T366] usb 2-1: Using ep0 maxpacket: 16 [ 132.385878][ T295] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 132.429248][ T294] usb 4-1: new high-speed USB device number 40 using dummy_hcd [ 132.440089][ T366] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 63, changing to 7 [ 132.465421][ T366] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 132.592373][ T295] usb 1-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae [ 132.616615][ T295] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 132.632629][ T295] usb 1-1: Product: syz [ 132.639235][ T295] usb 1-1: Manufacturer: syz [ 132.646967][ T366] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 132.650353][ T295] usb 1-1: SerialNumber: syz [ 132.668670][ T295] usb 1-1: config 0 descriptor?? [ 132.675569][ T366] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 132.695356][ T366] usb 2-1: Product: syz [ 132.721837][ T366] usb 2-1: Manufacturer: syz [ 132.726567][ T366] usb 2-1: SerialNumber: syz [ 132.851935][ T294] usb 4-1: config 160 has an invalid interface number: 92 but max is 1 [ 132.870560][ T294] usb 4-1: config 160 has an invalid interface number: 92 but max is 1 [ 132.898447][ T294] usb 4-1: config 160 has an invalid interface number: 250 but max is 1 [ 132.921574][ T294] usb 4-1: config 160 has no interface number 0 [ 132.938117][ T294] usb 4-1: config 160 has no interface number 1 [ 132.948043][ T294] usb 4-1: config 160 interface 92 altsetting 138 endpoint 0x2 has an invalid bInterval 161, changing to 11 [ 132.948862][ T295] usb 1-1: USB disconnect, device number 38 [ 132.960487][ T294] usb 4-1: config 160 interface 92 altsetting 138 endpoint 0x2 has invalid maxpacket 1040, setting to 1024 [ 133.010469][ T294] usb 4-1: too many endpoints for config 160 interface 92 altsetting 238: 88, using maximum allowed: 30 [ 133.028492][ T294] usb 4-1: config 160 interface 92 altsetting 238 has 0 endpoint descriptors, different from the interface descriptor's value: 88 [ 133.056174][ T294] usb 4-1: config 160 interface 250 altsetting 5 endpoint 0x8 has invalid maxpacket 512, setting to 64 [ 133.075783][ T294] usb 4-1: config 160 interface 250 altsetting 5 has a duplicate endpoint with address 0x2, skipping [ 133.095288][ T294] usb 4-1: config 160 interface 92 has no altsetting 0 [ 133.111000][ T294] usb 4-1: config 160 interface 92 has no altsetting 1 [ 133.122287][ T366] usb 2-1: 2:1: invalid format type 0x1001 is detected, processed as PCM [ 133.141027][ T366] usb 2-1: 2:1 : sample bitwidth 170 in over sample bytes 0 [ 133.152983][ T294] usb 4-1: config 160 interface 250 has no altsetting 0 [ 133.163128][ T366] usb 2-1: 2:1 : unsupported sample bitwidth 170 in 0 bytes [ 133.198578][ T366] usb 2-1: USB disconnect, device number 39 [ 133.341268][ T294] usb 4-1: New USB device found, idVendor=12d1, idProduct=14c6, bcdDevice=4a.45 [ 133.372650][ T294] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 133.382221][ T294] usb 4-1: Product: syz [ 133.387369][ T294] usb 4-1: Manufacturer: syz [ 133.392368][ T294] usb 4-1: SerialNumber: syz [ 133.402427][ T4295] F2FS-fs (loop2): Found nat_bits in checkpoint [ 133.408949][ T374] usb 5-1: new high-speed USB device number 42 using dummy_hcd [ 133.416992][ T4289] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 133.581073][ T4295] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 133.598684][ T4311] EXT4-fs (loop0): Ignoring removed oldalloc option [ 133.635439][ T4311] EXT4-fs error (device loop0): ext4_xattr_inode_iget:400: comm syz.0.1741: Parent and EA inode have the same ino 15 [ 133.654987][ T4311] EXT4-fs (loop0): Remounting filesystem read-only [ 133.675623][ T374] usb 5-1: Using ep0 maxpacket: 32 [ 133.677895][ T4311] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.1741: inode #261888: comm syz.0.1741: iget: illegal inode # [ 133.696914][ T4311] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1741: error while reading EA inode 261888 err=-117 [ 133.710856][ T4311] EXT4-fs (loop0): 1 orphan inode deleted [ 133.716739][ T4311] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,bsdgroups,nolazytime,noauto_da_alloc,jqfmt=vfsv1,oldalloc,init_itable, [ 133.816501][ T374] usb 5-1: config 0 has an invalid interface number: 250 but max is 2 [ 133.823169][ T294] usb 4-1: USB disconnect, device number 40 [ 133.846963][ T4322] EXT4-fs (loop1): Ignoring removed oldalloc option [ 133.853944][ T374] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 133.864555][ T374] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 133.874898][ T374] usb 5-1: config 0 has no interface number 0 [ 133.894495][ T4322] ------------[ cut here ]------------ [ 134.003766][ T4322] WARNING: CPU: 1 PID: 4322 at mm/page_alloc.c:5333 __alloc_pages_nodemask+0x313/0x5f0 [ 134.044142][ T374] usb 5-1: New USB device found, idVendor=0408, idProduct=3090, bcdDevice=a6.3f [ 134.054956][ T4322] Modules linked in: [ 134.060609][ T4322] CPU: 0 PID: 4322 Comm: syz.1.1747 Not tainted 5.10.237-syzkaller-00309-g7e2543346ff7 #0 [ 134.082991][ T374] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 134.099370][ T374] usb 5-1: Product: syz [ 134.107101][ T374] usb 5-1: Manufacturer: syz [ 134.114600][ T4322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 134.125421][ T374] usb 5-1: SerialNumber: syz [ 134.127566][ T303] udevd[303]: inotify_add_watch(7, /dev/loop1p130, 10) failed: No such file or directory [ 134.132472][ T344] udevd[344]: inotify_add_watch(7, /dev/loop1p13, 10) failed: No such file or directory [ 134.143534][ T346] udevd[346]: inotify_add_watch(7, /dev/loop1p132, 10) failed: No such file or directory [ 134.162865][ T4322] RIP: 0010:__alloc_pages_nodemask+0x313/0x5f0 [ 134.163739][ T374] usb 5-1: config 0 descriptor?? [ 134.172785][ T348] udevd[348]: inotify_add_watch(7, /dev/loop1p133, 10) failed: No such file or directory [ 134.178129][ T4322] Code: 48 3b 8c 24 e0 00 00 00 0f 85 a0 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 41 f7 c6 00 20 00 00 0f 85 fa fd ff ff <0f> 0b 31 c0 eb 9f 31 c0 e9 c8 fd ff ff 4c 89 ff e8 d8 8f f5 ff 49 [ 134.188353][ T962] udevd[962]: inotify_add_watch(7, /dev/loop1p135, 10) failed: No such file or directory [ 134.207754][ T4322] RSP: 0018:ffffc900010471e0 EFLAGS: 00010246 [ 134.220177][ T347] udevd[347]: inotify_add_watch(7, /dev/loop1p136, 10) failed: No such file or directory [ 134.224582][ T4322] RAX: ffffc90001047270 RBX: 0000000000000000 RCX: 0000000000000000 [ 134.236651][ T345] udevd[345]: inotify_add_watch(7, /dev/loop1p138, 10) failed: No such file or directory [ 134.247027][ T954] udevd[954]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 134.256263][ T957] udevd[957]: inotify_add_watch(7, /dev/loop1p139, 10) failed: No such file or directory [ 134.272941][ T4322] RDX: 0000000000000018 RSI: 0000000000000000 RDI: ffffc90001047288 [ 134.285703][ T291] udevd[291]: inotify_add_watch(7, /dev/loop1p141, 10) failed: No such file or directory [ 134.293735][ T4322] RBP: ffffc90001047310 R08: dffffc0000000000 R09: ffffc90001047270 [ 134.316541][ T4322] R10: fffff52000208e51 R11: 1ffff92000208e4e R12: 1ffff92000208e44 [ 134.327244][ T4322] R13: dffffc0000000000 R14: 0000000000040c40 R15: 000000000000000c [ 134.338096][ T4322] FS: 00007f38b71426c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 134.349400][ T4322] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 134.358549][ T366] usb 3-1: new high-speed USB device number 41 using dummy_hcd [ 134.361963][ T4322] CR2: 00005609ba5c6018 CR3: 000000010f08f000 CR4: 00000000003506a0 [ 134.438109][ T4322] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 134.477529][ T295] usb 1-1: new high-speed USB device number 39 using dummy_hcd [ 134.486574][ T885] usb 5-1: USB disconnect, device number 42 [ 134.502013][ T4322] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 134.524584][ T4322] Call Trace: [ 134.540101][ T4322] ? ext4_orphan_cleanup+0x96c/0xd30 [ 134.561998][ T4322] ? ext4_fill_super+0x845b/0x8b60 [ 134.577190][ T4322] ? mount_bdev+0x28b/0x3a0 [ 134.587922][ T4322] ? ext4_mount+0x34/0x40 [ 134.595300][ T4322] ? legacy_get_tree+0xed/0x190 [ 134.610045][ T4322] ? vfs_get_tree+0x89/0x260 [ 134.621154][ T4322] ? do_new_mount+0x25a/0xa20 [ 134.635406][ T4322] ? path_mount+0x572/0xc80 [ 134.646733][ T4322] ? gfp_pfmemalloc_allowed+0x130/0x130 [ 134.662233][ T4322] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 134.675669][ T4322] kmalloc_order+0x4c/0x160 [ 134.682633][ T4322] kmalloc_order_trace+0x16/0x80 [ 134.689369][ T4322] __kmalloc+0x1ee/0x330 [ 134.701273][ T4322] kvmalloc_node+0xe8/0x130 [ 134.707364][ T4322] ext4_expand_extra_isize_ea+0xdda/0x1a10 [ 134.722220][ T4322] __ext4_expand_extra_isize+0x2fe/0x3e0 [ 134.736455][ T4322] __ext4_mark_inode_dirty+0x3cf/0x610 [ 134.744912][ T4322] ext4_evict_inode+0xe31/0x16e0 [ 134.751604][ T295] usb 1-1: Using ep0 maxpacket: 8 [ 134.759394][ T366] usb 3-1: config 0 has an invalid interface number: 95 but max is 0 [ 134.766378][ T4322] ? _raw_spin_unlock+0x4d/0x70 [ 134.775859][ T4322] ? ext4_inode_is_fast_symlink+0x340/0x340 [ 134.783682][ T4322] ? ext4_inode_is_fast_symlink+0x340/0x340 [ 134.799705][ T15] usb 4-1: new high-speed USB device number 41 using dummy_hcd [ 134.816195][ T4322] evict+0x478/0x910 [ 134.831330][ T4322] ? mode_strip_sgid+0x160/0x160 [ 134.838809][ T366] usb 3-1: config 0 has no interface number 0 [ 134.844944][ T4322] ? __kasan_check_write+0x14/0x20 [ 134.845075][ T366] usb 3-1: config 0 interface 95 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 8 [ 134.851380][ T4322] iput+0x638/0x7c0 [ 134.865365][ T4322] ext4_orphan_cleanup+0x96c/0xd30 [ 134.872183][ T4322] ext4_fill_super+0x845b/0x8b60 [ 134.879139][ T4322] ? ext4_mount+0x40/0x40 [ 134.891303][ T295] usb 1-1: config 0 has an invalid interface number: 255 but max is 0 [ 134.901217][ T295] usb 1-1: config 0 has no interface number 0 [ 134.915663][ T295] usb 1-1: New USB device found, idVendor=0403, idProduct=da73, bcdDevice= 8.d0 [ 134.936230][ T4322] ? set_blocksize+0x1fe/0x3c0 [ 134.944931][ T4322] ? sb_set_blocksize+0xaa/0xf0 [ 134.956614][ T295] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.979031][ T4322] mount_bdev+0x28b/0x3a0 [ 134.983596][ T4322] ? ext4_mount+0x40/0x40 [ 135.002015][ T295] usb 1-1: config 0 descriptor?? [ 135.018630][ T4322] ext4_mount+0x34/0x40 [ 135.029681][ T4322] legacy_get_tree+0xed/0x190 [ 135.039606][ T4322] ? ext4_chksum+0x160/0x160 [ 135.046745][ T4322] vfs_get_tree+0x89/0x260 [ 135.051805][ T4322] do_new_mount+0x25a/0xa20 [ 135.057692][ T295] usb 1-1: NDI device with a latency value of 1 [ 135.073697][ T4322] path_mount+0x572/0xc80 [ 135.078680][ T4322] __se_sys_mount+0x318/0x380 [ 135.084011][ T4322] ? __x64_sys_mount+0xd0/0xd0 [ 135.097293][ T4322] __x64_sys_mount+0xbf/0xd0 [ 135.102916][ T4322] do_syscall_64+0x31/0x40 [ 135.114633][ T4322] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 135.125769][ T4322] RIP: 0033:0x7f38b8adb10a [ 135.136838][ T4322] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 135.138773][ T366] usb 3-1: New USB device found, idVendor=7725, idProduct=b0a8, bcdDevice= 7.46 [ 135.158000][ T4322] RSP: 002b:00007f38b7141e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 135.192252][ T4322] RAX: ffffffffffffffda RBX: 00007f38b7141ef0 RCX: 00007f38b8adb10a [ 135.217755][ T4322] RDX: 00002000000002c0 RSI: 00002000000001c0 RDI: 00007f38b7141eb0 [ 135.232657][ T4322] RBP: 00002000000002c0 R08: 00007f38b7141ef0 R09: 0000000000800700 [ 135.248402][ T15] usb 4-1: config 0 has an invalid interface number: 156 but max is 0 [ 135.269544][ T15] usb 4-1: config 0 has no interface number 0 [ 135.296233][ T4322] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 135.306888][ T366] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 135.313541][ T295] ftdi_sio 1-1:0.255: FTDI USB Serial Device converter detected [ 135.332851][ T15] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x5 has an invalid bInterval 0, changing to 7 [ 135.360283][ T295] usb 1-1: Detected FT232RL [ 135.367669][ T4322] R13: 00007f38b7141eb0 R14: 000000000000044b R15: 0000200000000200 [ 135.368709][ T366] usb 3-1: Product: syz [ 135.377250][ T4322] ---[ end trace a78f1027f6873d19 ]--- [ 135.391705][ T295] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 135.407350][ T15] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 135.424944][ T295] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 135.443287][ T4322] EXT4-fs error (device loop1): ext4_xattr_inode_iget:400: comm syz.1.1747: Parent and EA inode have the same ino 15 [ 135.465624][ T15] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 135.468213][ T366] usb 3-1: Manufacturer: syz [ 135.479161][ T4322] EXT4-fs (loop1): 1 orphan inode deleted [ 135.494854][ T295] ftdi_sio 1-1:0.255: GPIO initialisation failed: -71 [ 135.520438][ T366] usb 3-1: SerialNumber: syz [ 135.521812][ T295] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 135.548233][ T4322] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,bsdgroups,debug_want_extra_isize=0x000000000000005c,noauto_da_alloc,bsdgroups,oldalloc,errors=continue,,errors=continue [ 135.572456][ T366] usb 3-1: config 0 descriptor?? [ 135.590973][ T295] usb 1-1: USB disconnect, device number 39 [ 135.598198][ T295] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 135.635760][ T295] ftdi_sio 1-1:0.255: device disconnected [ 135.691465][ T4334] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 135.702393][ T15] usb 4-1: New USB device found, idVendor=0738, idProduct=0ad5, bcdDevice=2e.f6 [ 135.729638][ T15] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 135.756434][ T15] usb 4-1: Product: syz [ 135.769713][ T15] usb 4-1: Manufacturer: syz [ 135.774478][ T15] usb 4-1: SerialNumber: syz [ 135.782290][ T15] usb 4-1: config 0 descriptor?? [ 135.832340][ T294] usb 5-1: new high-speed USB device number 43 using dummy_hcd [ 135.833526][ T15] xpad 4-1:0.156: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 135.857263][ T15] xpad: probe of 4-1:0.156 failed with error -5 [ 136.016536][ T366] usb 3-1: MIDIStreaming interface descriptor not found [ 136.060560][ T366] usb 3-1: USB disconnect, device number 41 [ 136.100218][ T295] usb 4-1: USB disconnect, device number 41 [ 136.103234][ T294] usb 5-1: Using ep0 maxpacket: 8 [ 136.276668][ T294] usb 5-1: unable to get BOS descriptor or descriptor too short [ 136.285447][ T289] usb 1-1: new full-speed USB device number 40 using dummy_hcd [ 136.293552][ T885] usb 2-1: new high-speed USB device number 40 using dummy_hcd [ 136.395881][ T294] usb 5-1: config 4 has an invalid interface number: 147 but max is 0 [ 136.404563][ T294] usb 5-1: config 4 contains an unexpected descriptor of type 0x2, skipping [ 136.432544][ T294] usb 5-1: config 4 has no interface number 0 [ 136.612700][ T294] usb 5-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e [ 136.629829][ T294] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 136.638290][ T294] usb 5-1: Product: syz [ 136.649774][ T294] usb 5-1: Manufacturer: syz [ 136.654507][ T294] usb 5-1: SerialNumber: syz [ 136.699917][ T885] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 136.710877][ T289] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 136.730858][ T885] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 136.741909][ T289] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 136.752316][ T885] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 136.841130][ T4368] loop2: p3 p4 < > [ 136.845514][ T4368] loop2: p3 size 16744448 extends beyond EOD, truncated [ 136.861945][ T289] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 136.875103][ T289] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 136.886689][ T289] usb 1-1: SerialNumber: syz [ 136.901118][ T96] loop2: p3 p4 < > [ 136.907050][ T96] loop2: p3 size 16744448 extends beyond EOD, truncated [ 136.948938][ T289] cdc_acm 1-1:1.0: Control and data interfaces are not separated! [ 136.959542][ T885] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 137.000817][ T289] cdc_acm: probe of 1-1:1.0 failed with error -12 [ 137.017257][ T885] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 137.049339][ T885] usb 2-1: Product: syz [ 137.062136][ T885] usb 2-1: Manufacturer: syz [ 137.082357][ T885] usb 2-1: SerialNumber: syz [ 137.121969][ T294] uvcvideo: Found UVC 0.02 device syz (04f2:b746) [ 137.140368][ T885] cdc_ncm 2-1:1.0: bind() failure [ 137.146575][ T294] uvcvideo: No valid video chain found. [ 137.185502][ T294] usb 5-1: USB disconnect, device number 43 [ 137.200065][ T885] usb 1-1: USB disconnect, device number 40 [ 137.324172][ T4394] EXT4-fs (loop2): blocks per group (131072) and clusters per group (8192) inconsistent [ 137.364356][ T367] usb 2-1: USB disconnect, device number 40 [ 137.434091][ T4396] F2FS-fs (loop3): invalid crc value [ 137.452899][ T4396] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109) [ 137.808365][ T4417] FAT-fs (loop2): bogus logical sector size 0 [ 137.945998][ T4417] FAT-fs (loop2): Can't find a valid FAT filesystem [ 138.102427][ T4428] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm syz.1.1793: bg 0: block 16: invalid block bitmap [ 138.185563][ T4428] EXT4-fs error (device loop1) in ext4_mb_clear_bb:5645: Corrupt filesystem [ 138.200168][ T4428] EXT4-fs error (device loop1): ext4_clear_blocks:880: inode #13: comm syz.1.1793: attempt to clear invalid blocks 1669132790 len 1 [ 138.219079][ T4428] EXT4-fs error (device loop1): ext4_free_branches:1026: inode #13: comm syz.1.1793: invalid indirect mapped block 4294967295 (level 1) [ 138.239224][ T4428] EXT4-fs error (device loop1): ext4_free_branches:1026: inode #13: comm syz.1.1793: invalid indirect mapped block 4294967295 (level 2) [ 138.259593][ T4428] EXT4-fs (loop1): 1 truncate cleaned up [ 138.267335][ T4428] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000000,jqfmt=vfsv1,,errors=continue [ 138.268063][ T885] usb 5-1: new high-speed USB device number 44 using dummy_hcd [ 138.325973][ T4437] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 138.338415][ T4437] ext4 filesystem being mounted at /382/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.552526][ T885] usb 5-1: Using ep0 maxpacket: 16 [ 138.726440][ T295] usb 4-1: new full-speed USB device number 42 using dummy_hcd [ 138.747692][ T885] usb 5-1: unable to get BOS descriptor or descriptor too short [ 138.785128][ T4465] erofs: (device loop2): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 66300) [ 138.798266][ T24] audit: type=1400 audit(2000000018.287:200): avc: denied { create } for pid=4467 comm="syz.0.1809" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=iucv_socket permissive=1 [ 138.966873][ T4475] erofs: (device loop1): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 122700) [ 139.029656][ T885] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 139.043408][ T885] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 139.066147][ T885] usb 5-1: Product: syz [ 139.080539][ T885] usb 5-1: Manufacturer: syz [ 139.094194][ T885] usb 5-1: SerialNumber: syz [ 139.159543][ T295] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 10 [ 139.181086][ T295] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0 [ 139.289553][ T367] usb 1-1: new high-speed USB device number 41 using dummy_hcd [ 139.376313][ T295] usb 4-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f [ 139.387107][ T294] usb 2-1: new high-speed USB device number 41 using dummy_hcd [ 139.391396][ T295] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 139.395416][ T289] usb 3-1: new low-speed USB device number 42 using dummy_hcd [ 139.403881][ T295] usb 4-1: Product: syz [ 139.417510][ T295] usb 4-1: Manufacturer: syz [ 139.425967][ T295] usb 4-1: SerialNumber: syz [ 139.436159][ T295] usb 4-1: config 0 descriptor?? [ 139.486053][ T295] hub 4-1:0.0: bad descriptor, ignoring hub [ 139.495529][ T885] usb 5-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 139.519085][ T295] hub: probe of 4-1:0.0 failed with error -5 [ 139.560499][ T367] usb 1-1: Using ep0 maxpacket: 16 [ 139.615787][ T295] snd-usb-audio: probe of 4-1:0.0 failed with error -12 [ 139.619925][ T885] usb 5-1: USB disconnect, device number 44 [ 139.690672][ T367] usb 1-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30 [ 139.711825][ T367] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 139.730657][ T367] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 139.740959][ T367] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8 [ 139.752226][ T367] usb 1-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255 [ 139.809819][ T294] usb 2-1: config 0 has too many interfaces: 160, using maximum allowed: 32 [ 139.819283][ T294] usb 2-1: config 0 has an invalid interface descriptor of length 8, skipping [ 139.829293][ T289] usb 3-1: config index 0 descriptor too short (expected 1307, got 27) [ 139.838481][ T289] usb 3-1: config 0 has an invalid interface number: 0 but max is -1 [ 139.847053][ T289] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 139.856987][ T294] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 139.864023][ T295] usb 4-1: USB disconnect, device number 42 [ 139.867654][ T289] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 139.885115][ T367] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 139.895877][ T294] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 160 [ 139.896202][ T303] udevd[303]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 139.905723][ T367] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 139.905752][ T367] usb 1-1: SerialNumber: syz [ 139.936463][ T294] usb 2-1: New USB device found, idVendor=056a, idProduct=0315, bcdDevice= 0.00 [ 139.946666][ T294] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 139.956121][ T294] usb 2-1: config 0 descriptor?? [ 139.983448][ T4480] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 139.994899][ T303] udevd[303]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 140.014379][ T367] cdc_acm 1-1:1.0: Control and data interfaces are not separated! [ 140.024896][ T367] cdc_acm: probe of 1-1:1.0 failed with error -12 [ 140.150636][ T4503] EXT4-fs (loop4): external journal device major/minor numbers have changed [ 140.162500][ T4503] EXT4-fs (loop4): failed to open journal device unknown-block(8,3) -6 [ 140.199953][ T289] usb 3-1: string descriptor 0 read error: -22 [ 140.207463][ T289] usb 3-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de [ 140.217106][ T295] usb 2-1: USB disconnect, device number 41 [ 140.218168][ T289] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 140.243688][ T289] usb 3-1: config 0 descriptor?? [ 140.245555][ T374] usb 1-1: USB disconnect, device number 41 [ 140.286957][ T289] hub 3-1:0.0: bad descriptor, ignoring hub [ 140.299696][ T289] hub: probe of 3-1:0.0 failed with error -5 [ 140.363857][ T303] udevd[303]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.95/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 140.402108][ T4516] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (3832!=33349) [ 140.429196][ T303] udevd[303]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 140.460186][ T4516] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e01c, mo2=0002] [ 140.470796][ T4516] System zones: 1-12 [ 140.475599][ T4516] EXT4-fs (loop4): orphan cleanup on readonly fs [ 140.483091][ T4516] EXT4-fs error (device loop4): ext4_read_inode_bitmap:168: comm syz.4.1831: Inode bitmap for bg 0 marked uninitialized [ 140.496751][ T4516] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 140.520016][ T4510] F2FS-fs (loop3): Fix alignment : done, start(4096) end(16896) block(12288) [ 140.532894][ T4510] F2FS-fs (loop3): Invalid segment/section count (31, 24 x 1) [ 140.542092][ T4510] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 140.554365][ T4510] F2FS-fs (loop3): invalid crc value [ 140.561096][ T4510] F2FS-fs (loop3): Ignore s_resuid=0, s_resgid=60928 w/o reserve_root [ 140.572618][ T4510] F2FS-fs (loop3): Found nat_bits in checkpoint [ 140.633729][ T289] usb 3-1: USB disconnect, device number 42 [ 140.645733][ T4510] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0 [ 140.653814][ T4510] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 140.661518][ T4510] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 140.988954][ T24] audit: type=1326 audit(2000000020.299:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4572 comm="syz.1.1856" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f38b8ad9969 code=0x0 [ 141.058735][ T4565] loop3: p1 < > p2 p3 [ 141.069219][ T4565] loop3: p2 start 14848 is beyond EOD, truncated [ 141.083309][ T4582] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x1 [ 141.091603][ T4565] loop3: p3 size 196608 extends beyond EOD, truncated [ 141.198493][ T344] udevd[344]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 141.212682][ T303] udevd[303]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 141.341500][ T4612] FAT-fs (loop1): bogus number of FAT sectors [ 141.354302][ T4612] FAT-fs (loop1): Can't find a valid FAT filesystem [ 141.489590][ T367] usb 1-1: new high-speed USB device number 42 using dummy_hcd [ 141.527143][ T4600] F2FS-fs (loop4): Wrong segment_count / block_count (33 > 16384) [ 141.543776][ T4621] EXT4-fs (loop2): invalid first ino: 0 [ 141.552900][ T4600] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 141.562705][ T4600] F2FS-fs (loop4): fault_injection options not supported [ 141.572764][ T4600] F2FS-fs (loop4): invalid crc value [ 141.591611][ T4600] F2FS-fs (loop4): Found nat_bits in checkpoint [ 141.645152][ T4600] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 141.654961][ T4600] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 141.760494][ T367] usb 1-1: Using ep0 maxpacket: 32 [ 141.762444][ T4642] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 141.784740][ T4642] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 141.800667][ T4642] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 141.813590][ T4642] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 141.822735][ T4642] [EXT4 FS bs=4096, gc=2, bpg=35, ipg=32, mo=e054e01c, mo2=0000] [ 141.832285][ T4642] EXT4-fs (loop2): failed to initialize system zone (-117) [ 141.840713][ T4642] EXT4-fs (loop2): mount failed [ 141.859547][ T4648] erofs: (device loop3): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 127766) [ 141.933928][ T295] usb 2-1: new high-speed USB device number 42 using dummy_hcd [ 141.944827][ T367] usb 1-1: unable to get BOS descriptor or descriptor too short [ 142.031507][ T367] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 142.041035][ T367] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 142.051811][ T367] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 142.237418][ T367] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 142.247046][ T367] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 142.255621][ T367] usb 1-1: Product: syz [ 142.260499][ T367] usb 1-1: SerialNumber: syz [ 142.264910][ T4660] erofs: (device loop2): mounted with root inode @ nid 36. [ 142.268239][ T4662] erofs: (device loop4): mounted with root inode @ nid 36. [ 142.324142][ T295] usb 2-1: config index 0 descriptor too short (expected 3133, got 61) [ 142.334339][ T295] usb 2-1: config 0 has an invalid interface number: 156 but max is 1 [ 142.343120][ T295] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 142.353449][ T295] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 142.362611][ T295] usb 2-1: config 0 has no interface number 0 [ 142.368999][ T295] usb 2-1: config 0 interface 156 altsetting 0 bulk endpoint 0xA has invalid maxpacket 248 [ 142.379966][ T295] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 142.390434][ T295] usb 2-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 142.404162][ T295] usb 2-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9 [ 142.412237][ T4656] F2FS-fs (loop3): invalid crc value [ 142.426215][ T4656] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109) [ 142.427255][ T295] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 142.448985][ T295] usb 2-1: config 0 descriptor?? [ 142.459526][ T4656] F2FS-fs (loop3): recover fsync data on readonly fs [ 142.466963][ T4656] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0 [ 142.474364][ T4656] F2FS-fs (loop3): checkpoint=disable on readonly fs [ 142.481451][ T4638] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 142.498309][ T295] usb 2-1: MIDIStreaming interface descriptor not found [ 142.645634][ T4667] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 142.670930][ T367] usb 1-1: 0:2 : does not exist [ 142.682990][ T367] usb 1-1: USB disconnect, device number 42 [ 142.745412][ T295] usb 2-1: USB disconnect, device number 42 [ 142.800061][ T4685] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 142.800070][ T4677] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 142.840646][ T4687] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 142.933623][ T346] udevd[346]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card1/controlC1/../uevent} for writing: No such file or directory [ 142.984884][ T4696] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 142.987991][ T4694] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 143.000672][ T4696] ext4 filesystem being mounted at /412/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 143.239522][ T4709] FAT-fs (loop0): bogus logical sector size 65535 [ 143.257028][ T4709] FAT-fs (loop0): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 143.268025][ T4709] FAT-fs (loop0): Can't find a valid FAT filesystem [ 143.277860][ T295] usb 4-1: new high-speed USB device number 43 using dummy_hcd [ 143.294565][ T4714] EXT4-fs (loop4): orphan cleanup on readonly fs [ 143.301423][ T4714] EXT4-fs error (device loop4): ext4_ext_check_inode:500: inode #4: comm syz.4.1912: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 2048(2048) [ 143.321643][ T4714] EXT4-fs error (device loop4): ext4_quota_enable:6450: comm syz.4.1912: Bad quota inode: 4, type: 1 [ 143.333411][ T4714] EXT4-fs warning (device loop4): ext4_enable_quotas:6491: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 143.348468][ T4714] EXT4-fs (loop4): Cannot turn on quotas: error -117 [ 143.355269][ T4714] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 143.431248][ T4721] erofs: (device loop1): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 66300) [ 143.506351][ T4727] erofs: (device loop4): mounted with root inode @ nid 36. [ 143.537924][ T295] usb 4-1: Using ep0 maxpacket: 8 [ 143.635510][ T295] usb 4-1: unable to get BOS descriptor or descriptor too short [ 143.722154][ T295] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 143.740594][ T295] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 143.760753][ T295] usb 4-1: too many endpoints for config 1 interface 0 altsetting 0: 113, using maximum allowed: 30 [ 143.782963][ T295] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 143.805659][ T295] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 113 [ 144.014813][ T294] usb 3-1: new high-speed USB device number 43 using dummy_hcd [ 144.015036][ T295] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 144.055241][ T295] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 144.072351][ T295] usb 4-1: Product: syz [ 144.078690][ T295] usb 4-1: Manufacturer: syz [ 144.097267][ T295] usb 4-1: SerialNumber: syz [ 144.285845][ T294] usb 3-1: Using ep0 maxpacket: 32 [ 144.295178][ T4736] F2FS-fs (loop1): Found nat_bits in checkpoint [ 144.326352][ T4736] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 144.361143][ T4738] F2FS-fs (loop4): Found nat_bits in checkpoint [ 144.367601][ T289] usb 1-1: new high-speed USB device number 43 using dummy_hcd [ 144.399180][ T4738] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 144.415820][ T294] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 144.446149][ T294] usb 3-1: config 0 has no interface number 0 [ 144.502526][ T295] usb 4-1: 0:2 : does not exist [ 144.514083][ T295] usb 4-1: USB disconnect, device number 43 [ 144.621728][ T294] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 144.634903][ T294] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 144.645797][ T289] usb 1-1: Using ep0 maxpacket: 16 [ 144.651437][ T294] usb 3-1: Product: syz [ 144.655865][ T294] usb 3-1: Manufacturer: syz [ 144.661058][ T294] usb 3-1: SerialNumber: syz [ 144.667306][ T294] usb 3-1: config 0 descriptor?? [ 144.708826][ T294] smsc95xx v2.0.0 [ 144.712506][ T294] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 144.723097][ T294] smsc95xx: probe of 3-1:0.67 failed with error -22 [ 144.773474][ T289] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 144.785330][ T289] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.40 [ 144.796885][ T289] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 144.806227][ T289] usb 1-1: config 0 descriptor?? [ 144.849767][ T289] uvcvideo: Found UVC 0.00 device (10c4:ea90) [ 144.856789][ T289] uvcvideo: No valid video chain found. [ 144.932809][ T289] usb 3-1: USB disconnect, device number 43 [ 145.072606][ T374] usb 1-1: USB disconnect, device number 43 [ 145.604051][ T4799] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1940'. [ 145.808753][ T24] audit: type=1400 audit(2000000024.756:202): avc: denied { create } for pid=4811 comm="syz.2.1946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 145.859434][ T24] audit: type=1400 audit(2000000024.783:203): avc: denied { write } for pid=4811 comm="syz.2.1946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 145.965552][ T15] usb 4-1: new high-speed USB device number 44 using dummy_hcd [ 145.994623][ T4820] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 145.994694][ T4820] ext4 filesystem being mounted at /423/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 146.166069][ T24] audit: type=1400 audit(2000000025.078:204): avc: denied { connect } for pid=4834 comm="syz.2.1955" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 146.210372][ T4831] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 146.247350][ T15] usb 4-1: Using ep0 maxpacket: 8 [ 146.391962][ T24] audit: type=1400 audit(2000000025.291:205): avc: denied { create } for pid=4848 comm="syz.0.1962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 146.421746][ T15] usb 4-1: config 0 has an invalid interface number: 31 but max is 0 [ 146.429903][ T15] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 146.449443][ T15] usb 4-1: config 0 has no interface number 0 [ 146.456303][ T24] audit: type=1400 audit(2000000025.318:206): avc: denied { write } for pid=4848 comm="syz.0.1962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 146.478902][ T24] audit: type=1400 audit(2000000025.318:207): avc: denied { nlmsg_write } for pid=4848 comm="syz.0.1962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 146.547489][ T24] audit: type=1400 audit(2000000025.420:208): avc: denied { bind } for pid=4855 comm="syz.2.1964" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 146.632580][ T24] audit: type=1400 audit(2000000025.512:209): avc: denied { setopt } for pid=4857 comm="syz.2.1966" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 146.670237][ T15] usb 4-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 146.680242][ T15] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 146.689496][ T15] usb 4-1: Product: syz [ 146.694639][ T15] usb 4-1: Manufacturer: syz [ 146.703846][ T15] usb 4-1: SerialNumber: syz [ 146.709351][ T15] usb 4-1: config 0 descriptor?? [ 146.757499][ T15] uvcvideo: Found UVC 0.04 device syz (046d:08c3) [ 146.768341][ T15] uvcvideo: No streaming interface found for terminal 6. [ 146.894132][ T4880] x_tables: ip6_tables: icmp6 match: only valid for protocol 58 [ 146.937039][ T4885] xt_CT: No such helper "netbios-ns" [ 146.977485][ T24] audit: type=1400 audit(2000000025.835:210): avc: denied { getopt } for pid=4886 comm="syz.1.1979" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 146.981395][ T15] usb 4-1: USB disconnect, device number 44 [ 147.127453][ T24] audit: type=1400 audit(2000000025.974:211): avc: denied { accept } for pid=4900 comm="syz.0.1986" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 147.575610][ T4953] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2012'. [ 147.591248][ T289] usb 1-1: new high-speed USB device number 44 using dummy_hcd [ 147.623616][ T4959] xt_socket: unknown flags 0x40 [ 147.701184][ T4968] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,,errors=continue [ 147.711384][ T4968] ext4 filesystem being mounted at /453/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 147.744173][ T4973] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 147.766070][ T4973] EXT4-fs (loop1): orphan cleanup on readonly fs [ 147.773832][ T4973] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2022: bg 0: block 97: padding at end of block bitmap is not set [ 147.789401][ T4973] EXT4-fs error (device loop1): ext4_acquire_dquot:6226: comm syz.1.2022: Failed to acquire dquot type 0 [ 147.804079][ T4973] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 147.819646][ T4973] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2930: inode #15: comm syz.1.2022: corrupted xattr block 19 [ 147.833358][ T4973] EXT4-fs warning (device loop1): ext4_evict_inode:303: xattr delete (err -117) [ 147.843668][ T4973] EXT4-fs (loop1): 1 orphan inode deleted [ 147.850095][ T50] EXT4-fs error (device loop1): ext4_release_dquot:6262: comm kworker/u4:3: Failed to release dquot type 0 [ 147.862737][ T4973] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 147.873152][ T289] usb 1-1: Using ep0 maxpacket: 8 [ 148.003193][ T289] usb 1-1: New USB device found, idVendor=0403, idProduct=f0c8, bcdDevice= 2.56 [ 148.014813][ T289] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 148.025259][ T289] usb 1-1: config 0 descriptor?? [ 148.057998][ T5012] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2039'. [ 148.072036][ T5012] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2039'. [ 148.078999][ T289] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 148.082149][ T5012] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2039'. [ 148.105734][ T5005] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 148.181861][ T5030] xt_CT: No such helper "netbios-ns" [ 148.295736][ T289] usb 1-1: Detected FT8U232AM [ 148.296977][ T5041] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 148.301612][ T289] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 148.315935][ T5041] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2051: bg 0: block 384: padding at end of block bitmap is not set [ 148.323779][ T289] usb 1-1: USB disconnect, device number 44 [ 148.341994][ T5041] EXT4-fs (loop1): Remounting filesystem read-only [ 148.345301][ T289] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 148.351823][ T5041] EXT4-fs error (device loop1) in ext4_mb_clear_bb:5645: Corrupt filesystem [ 148.361061][ T289] ftdi_sio 1-1:0.0: device disconnected [ 148.370259][ T5041] EXT4-fs error (device loop1): ext4_clear_blocks:880: inode #11: comm syz.1.2051: attempt to clear invalid blocks 983260 len 1 [ 148.381896][ T5043] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 148.404844][ T5041] EXT4-fs error (device loop1): __ext4_get_inode_loc:4438: comm syz.1.2051: Invalid inode table block 0 in block_group 0 [ 148.430851][ T5041] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5932: Corrupt filesystem [ 148.441566][ T5041] EXT4-fs error (device loop1) in ext4_orphan_del:3292: Corrupt filesystem [ 148.446543][ T5045] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 148.453928][ T5043] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended [ 148.470021][ T5041] EXT4-fs error (device loop1): __ext4_get_inode_loc:4438: comm syz.1.2051: Invalid inode table block 0 in block_group 0 [ 148.474011][ T5045] ext4 filesystem being mounted at /461/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 148.488571][ T5060] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 148.512658][ T5043] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002] [ 148.515440][ T5045] EXT4-fs error (device loop2): ext4_mb_generate_buddy:808: group 0, [ 148.521271][ T5043] System zones: 0-2 [ 148.530720][ T5045] block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 148.540938][ T5062] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2058'. [ 148.555915][ T5041] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5932: Corrupt filesystem [ 148.565858][ T5041] EXT4-fs error (device loop1): ext4_truncate:4390: inode #11: comm syz.1.2051: mark_inode_dirty error [ 148.578377][ T5041] EXT4-fs error (device loop1) in ext4_orphan_cleanup:3108: Corrupt filesystem [ 148.588919][ T5041] EXT4-fs (loop1): 1 truncate cleaned up [ 148.595917][ T5041] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,resuid=0x0000000000000000,max_dir_size_kb=0x00000000000001ff,noblock_validity, [ 148.606842][ T5043] , 18-18, 34-34 [ 148.633052][ T5043] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 148.645415][ T5041] EXT4-fs error (device loop1): __ext4_get_inode_loc:4438: comm syz.1.2051: Invalid inode table block 0 in block_group 0 [ 148.649375][ T5043] EXT4-fs (loop4): 1 truncate cleaned up [ 148.661383][ T5041] EXT4-fs (loop1): Remounting filesystem read-only [ 148.667836][ T5043] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 148.701832][ T5066] usb usb8: usbfs: process 5066 (syz.2.2059) did not claim interface 0 before use [ 148.711920][ T5043] fscrypt (loop4, inode 15): Error -61 getting encryption context [ 148.822210][ T5080] xt_socket: unknown flags 0xc [ 148.891751][ T294] usb 4-1: new full-speed USB device number 45 using dummy_hcd [ 148.917494][ T5094] FAT-fs (loop2): Directory bread(block 64) failed [ 148.924690][ T5094] FAT-fs (loop2): Directory bread(block 65) failed [ 148.931424][ T5094] FAT-fs (loop2): Directory bread(block 66) failed [ 148.938242][ T5094] FAT-fs (loop2): Directory bread(block 67) failed [ 148.945325][ T5094] FAT-fs (loop2): Directory bread(block 68) failed [ 148.952581][ T5094] FAT-fs (loop2): Directory bread(block 69) failed [ 148.959946][ T5094] FAT-fs (loop2): Directory bread(block 70) failed [ 148.967223][ T5094] FAT-fs (loop2): Directory bread(block 71) failed [ 148.976092][ T5094] FAT-fs (loop2): Directory bread(block 72) failed [ 148.983288][ T5094] FAT-fs (loop2): Directory bread(block 73) failed [ 149.007368][ T5105] netlink: 'syz.4.2079': attribute type 15 has an invalid length. [ 149.292876][ T294] usb 4-1: config 8 has an invalid interface number: 223 but max is 0 [ 149.314406][ T294] usb 4-1: config 8 has no interface number 0 [ 149.321041][ T294] usb 4-1: config 8 interface 223 altsetting 0 endpoint 0x7 has invalid maxpacket 512, setting to 64 [ 149.333385][ T5163] xt_l2tp: invalid flags combination: 4 [ 149.467001][ T5182] netlink: 'syz.2.2114': attribute type 3 has an invalid length. [ 149.520407][ T294] usb 4-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d [ 149.520436][ T5] usb 1-1: new high-speed USB device number 45 using dummy_hcd [ 149.530493][ T294] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 149.530511][ T294] usb 4-1: Product: syz [ 149.552690][ T294] usb 4-1: Manufacturer: syz [ 149.565899][ T5191] overlayfs: bad mount option "redirect_dir=follow:/" [ 149.578741][ T294] usb 4-1: SerialNumber: syz [ 149.590563][ T5195] x_tables: duplicate underflow at hook 4 [ 149.696527][ T5211] binder: BC_ACQUIRE_RESULT not supported [ 149.704099][ T5211] binder: 5210:5211 ioctl c0306201 200000000780 returned -22 [ 149.754979][ T5217] netlink: 200 bytes leftover after parsing attributes in process `syz.1.2130'. [ 149.782533][ T5221] x_tables: ip_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0 [ 149.793539][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 149.894933][ T294] usb 4-1: USB disconnect, device number 45 [ 149.921448][ T5] usb 1-1: config 0 has an invalid interface number: 41 but max is 0 [ 149.930325][ T5] usb 1-1: config 0 has no interface number 0 [ 149.968235][ T5] usb 1-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 149.979797][ T5] usb 1-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 150.009053][ T5] usb 1-1: config 0 interface 41 has no altsetting 0 [ 150.045908][ T5261] capability: warning: `syz.1.2153' uses deprecated v2 capabilities in a way that may be insecure [ 150.203238][ T5] usb 1-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a [ 150.213529][ T5283] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2162'. [ 150.225567][ T5] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 150.234651][ T5] usb 1-1: Product: syz [ 150.239350][ T5] usb 1-1: Manufacturer: syz [ 150.244219][ T5] usb 1-1: SerialNumber: syz [ 150.250172][ T5] usb 1-1: config 0 descriptor?? [ 150.268205][ T5147] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 150.276190][ T5147] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 150.371314][ T5303] netlink: 'syz.1.2174': attribute type 32 has an invalid length. [ 150.464514][ T5317] binder: 5316:5317 ioctl c018620c 200000000040 returned -1 [ 150.528416][ T5] dm9601: probe of 1-1:0.41 failed with error -71 [ 150.560957][ T5] sr9700: probe of 1-1:0.41 failed with error -71 [ 150.587358][ T5] usb 1-1: USB disconnect, device number 45 [ 150.661400][ T5345] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2192'. [ 150.676927][ T5349] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2193'. [ 150.686574][ T5339] EXT4-fs error (device loop1): ext4_acquire_dquot:6226: comm syz.1.2191: Failed to acquire dquot type 0 [ 150.707413][ T5339] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2191: bg 0: block 64: padding at end of block bitmap is not set [ 150.723028][ T5339] EXT4-fs error (device loop1) in ext4_mb_clear_bb:5645: Corrupt filesystem [ 150.733980][ T5339] EXT4-fs (loop1): 1 truncate cleaned up [ 150.747704][ T5339] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 150.757193][ T5339] ext4 filesystem being mounted at /448/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 150.778046][ T5355] exfat: Deprecated parameter 'utf8' [ 150.799572][ T5355] exfat: Deprecated parameter 'namecase' [ 150.804174][ T5339] EXT4-fs error (device loop1): ext4_acquire_dquot:6226: comm syz.1.2191: Failed to acquire dquot type 0 [ 150.815259][ T5355] exfat: Deprecated parameter 'namecase' [ 150.827831][ T5355] exfat: Deprecated parameter 'utf8' [ 150.833837][ T5367] xt_CT: netfilter: NOTRACK target is deprecated, use CT instead or upgrade iptables [ 150.841319][ T5355] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d) [ 150.855331][ T5367] xt_CT: You must specify a L4 protocol and not use inversions on it [ 151.090805][ T5392] macsec0: mtu less than device minimum [ 151.215913][ T5418] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=4121 sclass=netlink_xfrm_socket pid=5418 comm=syz.2.2226 [ 151.230652][ T5397] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodelalloc,grpid,bsddf,,errors=continue [ 151.239965][ T24] kauditd_printk_skb: 71 callbacks suppressed [ 151.239981][ T24] audit: type=1400 audit(2000000029.766:276): avc: denied { ioctl } for pid=5420 comm="syz.4.2227" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 ioctlcmd=0x63a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 151.266376][ T5397] ext4 filesystem being mounted at /375/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 151.516089][ T5447] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option [ 151.551767][ T5447] EXT4-fs (loop2): 1 orphan inode deleted [ 151.558411][ T5447] EXT4-fs (loop2): mounted filesystem without journal. Opts: nomblk_io_submit,max_batch_time=0x0000000000005314,usrquota,jqfmt=vfsv1,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000000100,debug_want_extra_isize=0x000000000000005c,i_version,,errors=continue [ 151.590611][ T24] audit: type=1400 audit(2000000030.089:277): avc: denied { create } for pid=5446 comm="syz.2.2240" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 151.590880][ T5447] EXT4-fs error (device loop2): ext4_add_entry:2442: inode #2: comm syz.2.2240: Directory hole found for htree leaf block 0 [ 151.712618][ T24] audit: type=1326 audit(2000000030.199:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5470 comm="syz.4.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8bef50969 code=0x7ffc0000 [ 151.772102][ T24] audit: type=1326 audit(2000000030.199:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5470 comm="syz.4.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8bef50969 code=0x7ffc0000 [ 151.814407][ T24] audit: type=1326 audit(2000000030.218:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5470 comm="syz.4.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa8bef50969 code=0x7ffc0000 [ 151.851517][ T5496] netlink: 'syz.3.2261': attribute type 9 has an invalid length. [ 151.911826][ T24] audit: type=1326 audit(2000000030.218:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5470 comm="syz.4.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8bef50969 code=0x7ffc0000 [ 151.950859][ T24] audit: type=1326 audit(2000000030.218:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5470 comm="syz.4.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8bef50969 code=0x7ffc0000 [ 151.977286][ T5515] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2268'. [ 151.978191][ T24] audit: type=1326 audit(2000000030.319:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5484 comm="syz.4.2256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8bef50969 code=0x7ffc0000 [ 152.022481][ T24] audit: type=1326 audit(2000000030.319:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5484 comm="syz.4.2256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8bef50969 code=0x7ffc0000 [ 152.054804][ T24] audit: type=1326 audit(2000000030.329:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5484 comm="syz.4.2256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7fa8bef50969 code=0x7ffc0000 [ 152.181615][ T5530] EXT4-fs (loop3): mounted filesystem without journal. Opts: data_err=abort,noinit_itable,i_version,data_err=ignore,noload,bsddf,,errors=continue [ 152.206649][ T5530] ext4 filesystem being mounted at /444/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 152.263766][ T5564] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2293'. [ 152.275621][ T5564] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2293'. [ 152.285095][ T5564] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2293'. [ 152.351230][ T5579] netlink: 'syz.2.2301': attribute type 5 has an invalid length. [ 152.390483][ T5587] netlink: 1 bytes leftover after parsing attributes in process `syz.2.2304'. [ 152.415303][ T5577] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 152.425543][ T5592] binfmt_misc: register: failed to install interpreter file ./file0 [ 152.449052][ T5596] capability: warning: `syz.4.2307' uses 32-bit capabilities (legacy support in use) [ 152.459470][ T5577] EXT4-fs (loop0): 1 truncate cleaned up [ 152.465756][ T5577] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,usrjquota="errors=continue,noload,data_err=ignore,usrjquota="errors=continue,errors=remount-ro,noblock_validity, [ 152.563637][ T5615] rtc_cmos 00:00: Alarms can be up to one day in the future [ 152.573739][ T5577] EXT4-fs (loop0): re-mounted. Opts: jqfmt=vfsold,usrjquota="errors=continue,noload,data_err=ignore,usrjquota="errors=continue,errors=remount-ro,noblock_validity, [ 152.643990][ T5625] overlayfs: missing 'lowerdir' [ 152.815060][ T374] usb 2-1: new high-speed USB device number 43 using dummy_hcd [ 152.997798][ T5694] xt_l2tp: v2 tid > 0xffff: 262144 [ 153.075146][ T374] usb 2-1: Using ep0 maxpacket: 16 [ 153.205281][ T374] usb 2-1: config 0 has an invalid interface number: 105 but max is 0 [ 153.214682][ T374] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 153.225075][ T374] usb 2-1: config 0 has no interface number 0 [ 153.272734][ T5726] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option [ 153.308011][ T5726] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,noquota,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue [ 153.335289][ T5744] device veth1_virt_wifi entered promiscuous mode [ 153.342690][ T5744] netlink: 'syz.4.2378': attribute type 8 has an invalid length. [ 153.343922][ T5746] overlayfs: missing 'lowerdir' [ 153.351023][ T5744] A link change request failed with some changes committed already. Interface veth1_virt_wifi may have been left with an inconsistent configuration, please check. [ 153.443721][ T374] usb 2-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 153.453786][ T374] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 153.462201][ T374] usb 2-1: Product: syz [ 153.467032][ T374] usb 2-1: Manufacturer: syz [ 153.471630][ T374] usb 2-1: SerialNumber: syz [ 153.477543][ T374] usb 2-1: config 0 descriptor?? [ 153.531027][ T374] uvcvideo: Found UVC 0.00 device syz (046d:08f3) [ 153.538500][ T374] uvcvideo: No valid video chain found. [ 153.626903][ T5773] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2393'. [ 153.716368][ T5772] FAT-fs (loop4): Directory bread(block 64) failed [ 153.722937][ T5772] FAT-fs (loop4): Directory bread(block 65) failed [ 153.731264][ T5772] FAT-fs (loop4): Directory bread(block 66) failed [ 153.738109][ T5772] FAT-fs (loop4): Directory bread(block 67) failed [ 153.745219][ T5756] F2FS-fs (loop0): Wrong segment_count / block_count (64 > 16384) [ 153.745243][ T5772] FAT-fs (loop4): Directory bread(block 68) failed [ 153.753725][ T5772] FAT-fs (loop4): Directory bread(block 69) failed [ 153.767738][ T5772] FAT-fs (loop4): Directory bread(block 70) failed [ 153.773119][ T295] usb 2-1: USB disconnect, device number 43 [ 153.775241][ T5772] FAT-fs (loop4): Directory bread(block 71) failed [ 153.787977][ T5772] FAT-fs (loop4): Directory bread(block 72) failed [ 153.795136][ T5772] FAT-fs (loop4): Directory bread(block 73) failed [ 153.807250][ T5756] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 153.831737][ T5756] F2FS-fs (loop0): Found nat_bits in checkpoint [ 153.865242][ T5756] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 153.876146][ T5756] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 153.877732][ T5791] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5 [ 153.877732][ T5791] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 153.877732][ T5791] [ 153.956392][ T5791] EXT4-fs (loop3): mounted filesystem without journal. Opts: noacl,usrquota,grpjquota=,norecovery,nobarrier,,errors=continue [ 153.972514][ T5791] ext4 filesystem being mounted at /458/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 154.171155][ T5837] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2420'. [ 154.528569][ T5890] FAT-fs (loop2): Directory bread(block 64) failed [ 154.536476][ T5890] FAT-fs (loop2): Directory bread(block 65) failed [ 154.543330][ T5890] FAT-fs (loop2): Directory bread(block 66) failed [ 154.557832][ T5846] F2FS-fs (loop4): invalid crc value [ 154.567688][ T5890] FAT-fs (loop2): Directory bread(block 67) failed [ 154.587726][ T5890] FAT-fs (loop2): Directory bread(block 68) failed [ 154.595357][ T5846] F2FS-fs (loop4): Found nat_bits in checkpoint [ 154.600911][ T5890] FAT-fs (loop2): Directory bread(block 69) failed [ 154.610145][ T5890] FAT-fs (loop2): Directory bread(block 70) failed [ 154.617291][ T5890] FAT-fs (loop2): Directory bread(block 71) failed [ 154.624034][ T5890] FAT-fs (loop2): Directory bread(block 72) failed [ 154.631933][ T5890] FAT-fs (loop2): Directory bread(block 73) failed [ 154.662011][ T5846] F2FS-fs (loop4): recover fsync data on readonly fs [ 154.671096][ T5846] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 154.671634][ T5909] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2454'. [ 154.730368][ T5846] F2FS-fs (loop4): Corrupted max_depth of 3: 1025 [ 154.741152][ T5846] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 154.852329][ T5930] netlink: 'syz.1.2463': attribute type 1 has an invalid length. [ 154.865650][ T5916] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 154.875886][ T5930] netlink: 'syz.1.2463': attribute type 1 has an invalid length. [ 154.884465][ T5930] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2463'. [ 154.894449][ T5930] device vlan0 entered promiscuous mode [ 155.056823][ T5942] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 155.067417][ T5942] ext4 filesystem being mounted at /438/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 155.085360][ T5944] FAT-fs (loop4): Directory bread(block 64) failed [ 155.093796][ T5944] FAT-fs (loop4): Directory bread(block 65) failed [ 155.102023][ T5944] FAT-fs (loop4): Directory bread(block 66) failed [ 155.109767][ T5944] FAT-fs (loop4): Directory bread(block 67) failed [ 155.117322][ T5944] FAT-fs (loop4): Directory bread(block 68) failed [ 155.127373][ T5944] FAT-fs (loop4): Directory bread(block 69) failed [ 155.134919][ T5944] FAT-fs (loop4): Directory bread(block 70) failed [ 155.141783][ T5944] FAT-fs (loop4): Directory bread(block 71) failed [ 155.149159][ T5944] FAT-fs (loop4): Directory bread(block 72) failed [ 155.159263][ T5944] FAT-fs (loop4): Directory bread(block 73) failed [ 155.293622][ T5968] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2481'. [ 155.695629][ T6034] IPv6: NLM_F_REPLACE set, but no existing node found! [ 155.812348][ T6044] xt_l2tp: missing protocol rule (udp|l2tpip) [ 155.852694][ T6047] cgroup: Invalid name [ 155.864643][ T5984] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(15) root(3) [ 155.882225][ T5984] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 155.894646][ T5984] F2FS-fs (loop4): invalid crc value [ 155.902171][ T5984] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241045588246331391) [ 155.927916][ T5984] F2FS-fs (loop4): Cannot turn on quotas: -2 on 2 [ 155.944766][ T5984] F2FS-fs (loop4): Start checkpoint disabled! [ 155.980239][ T5984] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 155.989294][ T5984] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 156.038696][ T5984] F2FS-fs (loop4): switch discard_unit option is not allowed [ 156.084618][ T6071] FAT-fs (loop2): Directory bread(block 64) failed [ 156.091766][ T6071] FAT-fs (loop2): Directory bread(block 65) failed [ 156.099317][ T6071] FAT-fs (loop2): Directory bread(block 66) failed [ 156.106334][ T6071] FAT-fs (loop2): Directory bread(block 67) failed [ 156.114229][ T6071] FAT-fs (loop2): Directory bread(block 68) failed [ 156.121275][ T6071] FAT-fs (loop2): Directory bread(block 69) failed [ 156.128387][ T6071] FAT-fs (loop2): Directory bread(block 70) failed [ 156.135305][ T6071] FAT-fs (loop2): Directory bread(block 71) failed [ 156.142937][ T6071] FAT-fs (loop2): Directory bread(block 72) failed [ 156.149859][ T6071] FAT-fs (loop2): Directory bread(block 73) failed [ 156.391518][ T6105] ipt_REJECT: TCP_RESET invalid for non-tcp [ 156.976291][ T6180] device ip6gretap2 entered promiscuous mode [ 157.047604][ T6191] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 157.074787][ T6194] binder: 6193:6194 ioctl c018620c 2000000000c0 returned -22 [ 157.194306][ T24] kauditd_printk_skb: 21 callbacks suppressed [ 157.194322][ T24] audit: type=1400 audit(2000000001.070:307): avc: denied { execute } for pid=6209 comm="syz.0.2595" path="/proc/958/task/959/net/ip6_tables_matches" dev="proc" ino=4026532342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=file permissive=1 [ 157.402056][ T24] audit: type=1400 audit(2000000001.264:308): avc: denied { load_policy } for pid=6241 comm="syz.1.2612" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 157.509928][ T24] audit: type=1326 audit(2000000001.356:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6259 comm="syz.1.2624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38b8ad9969 code=0x7ffc0000 [ 157.538387][ T6265] xt_SECMARK: invalid mode: 2 [ 157.594676][ T24] audit: type=1400 audit(2000000001.384:310): avc: denied { getopt } for pid=6261 comm="syz.3.2621" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 157.654137][ T24] audit: type=1326 audit(2000000001.393:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6259 comm="syz.1.2624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38b8ad9969 code=0x7ffc0000 [ 157.705168][ T24] audit: type=1326 audit(2000000001.402:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6259 comm="syz.1.2624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f38b8ad9969 code=0x7ffc0000 [ 157.730284][ T24] audit: type=1326 audit(2000000001.402:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6259 comm="syz.1.2624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38b8ad9969 code=0x7ffc0000 [ 157.755393][ T24] audit: type=1326 audit(2000000001.402:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6259 comm="syz.1.2624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38b8ad9969 code=0x7ffc0000 [ 157.781789][ T24] audit: type=1400 audit(2000000001.448:315): avc: denied { bind } for pid=6277 comm="syz.0.2631" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 157.803521][ T24] audit: type=1326 audit(2000000001.448:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6278 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8bef50969 code=0x50000 [ 157.839325][ T6299] FAT-fs (loop2): Directory bread(block 64) failed [ 157.852072][ T6299] FAT-fs (loop2): Directory bread(block 65) failed [ 157.863945][ T6299] FAT-fs (loop2): Directory bread(block 66) failed [ 157.871764][ T6299] FAT-fs (loop2): Directory bread(block 67) failed [ 157.879410][ T6299] FAT-fs (loop2): Directory bread(block 68) failed [ 157.885966][ T6299] FAT-fs (loop2): Directory bread(block 69) failed [ 157.901582][ T6299] FAT-fs (loop2): Directory bread(block 70) failed [ 157.908923][ T6299] FAT-fs (loop2): Directory bread(block 71) failed [ 157.917028][ T6299] FAT-fs (loop2): Directory bread(block 72) failed [ 157.924030][ T6299] FAT-fs (loop2): Directory bread(block 73) failed [ 158.075759][ T6342] __nla_validate_parse: 4 callbacks suppressed [ 158.075779][ T6342] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2661'. [ 158.160470][ T6354] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.168330][ T6354] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.201481][ T6354] device bridge0 entered promiscuous mode [ 158.215392][ T6354] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 158.376509][ T6372] FAT-fs (loop2): Directory bread(block 64) failed [ 158.383934][ T6372] FAT-fs (loop2): Directory bread(block 65) failed [ 158.393151][ T6372] FAT-fs (loop2): Directory bread(block 66) failed [ 158.400520][ T6372] FAT-fs (loop2): Directory bread(block 67) failed [ 158.407812][ T6372] FAT-fs (loop2): Directory bread(block 68) failed [ 158.416628][ T6372] FAT-fs (loop2): Directory bread(block 69) failed [ 158.424702][ T6372] FAT-fs (loop2): Directory bread(block 70) failed [ 158.432148][ T6372] FAT-fs (loop2): Directory bread(block 71) failed [ 158.439442][ T6372] FAT-fs (loop2): Directory bread(block 72) failed [ 158.446442][ T6372] FAT-fs (loop2): Directory bread(block 73) failed [ 158.476172][ T6383] exfat: Deprecated parameter 'utf8' [ 158.481637][ T6383] exfat: Deprecated parameter 'namecase' [ 158.488474][ T6386] SELinux: policydb table sizes (0,0) do not match mine (6,7) [ 158.505015][ T6383] exfat: Deprecated parameter 'namecase' [ 158.511102][ T6383] exfat: Deprecated parameter 'utf8' [ 158.519506][ T6386] SELinux: failed to load policy [ 158.614142][ T6383] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d) [ 158.723610][ T6403] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2691'. [ 158.815600][ T6420] tc_dump_action: action bad kind [ 158.823980][ T6332] F2FS-fs (loop0): Found nat_bits in checkpoint [ 158.874558][ T6431] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2700'. [ 158.957577][ T6332] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 159.010841][ T6332] F2FS-fs (loop0): sanity_check_inode: inode (ino=4) has corrupted i_extra_isize: 6, max: 36 [ 159.274304][ T294] usb 4-1: new low-speed USB device number 46 using dummy_hcd [ 159.386669][ T6486] xt_NFQUEUE: number of total queues is 0 [ 159.478816][ T6505] xt_policy: input policy not valid in POSTROUTING and OUTPUT [ 159.505237][ T6509] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2739'. [ 159.518756][ T6511] cgroup: release_agent respecified [ 159.570002][ T6521] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2745'. [ 159.686221][ T294] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 159.714844][ T294] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 528, setting to 8 [ 159.753691][ T294] usb 4-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 159.789383][ T294] usb 4-1: config 1 interface 1 has no altsetting 0 [ 159.972621][ T6596] device bridge1 entered promiscuous mode [ 160.054666][ T294] usb 4-1: string descriptor 0 read error: -22 [ 160.061366][ T294] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 160.085582][ T294] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 160.096867][ T6618] netlink: 'syz.2.2792': attribute type 1 has an invalid length. [ 160.130618][ T6451] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 160.172823][ T6628] overlayfs: missing 'lowerdir' [ 160.193228][ T6632] xt_NFQUEUE: number of queues (65534) out of range (got 131068) [ 160.246391][ T6638] xt_l2tp: invalid flags combination: 8 [ 160.309932][ T6646] bridge_slave_0: mtu greater than device maximum [ 160.392725][ T294] usb 4-1: selecting invalid altsetting 0 [ 160.398731][ T294] usb 4-1: selecting invalid altsetting 0 [ 160.415446][ T294] cdc_ncm 4-1:1.0: bind() failure [ 160.429671][ T294] usb 4-1: selecting invalid altsetting 0 [ 160.450617][ T294] cdc_ncm: probe of 4-1:1.1 failed with error -22 [ 160.457556][ T6668] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2819'. [ 160.462659][ T294] usb 4-1: selecting invalid altsetting 0 [ 160.495564][ T6675] xt_bpf: check failed: parse error [ 160.504339][ T294] cdc_mbim: probe of 4-1:1.1 failed with error -22 [ 160.525342][ T294] usb 4-1: USB disconnect, device number 46 [ 160.628282][ T6697] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2832'. [ 160.639274][ T6697] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2832'. [ 160.736925][ T6720] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 160.744360][ T6720] IPv6: NLM_F_CREATE should be set when creating new route [ 160.751889][ T6720] IPv6: NLM_F_CREATE should be set when creating new route [ 161.199124][ T6797] netlink: 956 bytes leftover after parsing attributes in process `syz.0.2883'. [ 161.214273][ T6797] netlink: 956 bytes leftover after parsing attributes in process `syz.0.2883'. [ 161.362633][ T6819] xt_hashlimit: overflow, try lower: 0/0 [ 161.475453][ T6828] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 161.499055][ T6828] ext4 filesystem being mounted at /545/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 161.522694][ T6828] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:404: inode #2: comm syz.0.2897: No space for directory leaf checksum. Please run e2fsck -D. [ 161.586897][ T6828] EXT4-fs error (device loop0): __ext4_find_entry:1668: inode #2: comm syz.0.2897: checksumming directory block 0 [ 161.779925][ T6854] FAT-fs (loop1): Directory bread(block 64) failed [ 161.787801][ T6854] FAT-fs (loop1): Directory bread(block 65) failed [ 161.795106][ T6854] FAT-fs (loop1): Directory bread(block 66) failed [ 161.802337][ T6854] FAT-fs (loop1): Directory bread(block 67) failed [ 161.809704][ T6854] FAT-fs (loop1): Directory bread(block 68) failed [ 161.816772][ T6854] FAT-fs (loop1): Directory bread(block 69) failed [ 161.823896][ T6854] FAT-fs (loop1): Directory bread(block 70) failed [ 161.831021][ T6854] FAT-fs (loop1): Directory bread(block 71) failed [ 161.838761][ T6854] FAT-fs (loop1): Directory bread(block 72) failed [ 161.846856][ T6740] F2FS-fs (loop4): invalid crc value [ 161.871384][ T6854] FAT-fs (loop1): Directory bread(block 73) failed [ 161.888690][ T6740] F2FS-fs (loop4): Found nat_bits in checkpoint [ 161.930807][ T6740] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 162.438447][ T6921] FAT-fs (loop1): Directory bread(block 64) failed [ 162.470766][ T6921] FAT-fs (loop1): Directory bread(block 65) failed [ 162.493907][ T6921] FAT-fs (loop1): Directory bread(block 66) failed [ 162.501127][ T6921] FAT-fs (loop1): Directory bread(block 67) failed [ 162.511103][ T6921] FAT-fs (loop1): Directory bread(block 68) failed [ 162.527350][ T6921] FAT-fs (loop1): Directory bread(block 69) failed [ 162.534618][ T6921] FAT-fs (loop1): Directory bread(block 70) failed [ 162.566978][ T6921] FAT-fs (loop1): Directory bread(block 71) failed [ 162.590664][ T6921] FAT-fs (loop1): Directory bread(block 72) failed [ 162.597663][ T6921] FAT-fs (loop1): Directory bread(block 73) failed [ 162.974605][ T24] kauditd_printk_skb: 109 callbacks suppressed [ 162.974620][ T24] audit: type=1400 audit(2000000006.403:426): avc: denied { bind } for pid=7013 comm="syz.4.2983" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 163.202330][ T7017] FAT-fs (loop4): Directory bread(block 64) failed [ 163.209498][ T7017] FAT-fs (loop4): Directory bread(block 65) failed [ 163.216536][ T7017] FAT-fs (loop4): Directory bread(block 66) failed [ 163.224559][ T7017] FAT-fs (loop4): Directory bread(block 67) failed [ 163.231283][ T7017] FAT-fs (loop4): Directory bread(block 68) failed [ 163.238053][ T7017] FAT-fs (loop4): Directory bread(block 69) failed [ 163.245163][ T7017] FAT-fs (loop4): Directory bread(block 70) failed [ 163.262652][ T7017] FAT-fs (loop4): Directory bread(block 71) failed [ 163.269628][ T7017] FAT-fs (loop4): Directory bread(block 72) failed [ 163.298936][ T7017] FAT-fs (loop4): Directory bread(block 73) failed [ 163.334277][ T7038] netlink: 'syz.1.2993': attribute type 7 has an invalid length. [ 163.372476][ T7038] netlink: 'syz.1.2993': attribute type 8 has an invalid length. [ 163.380556][ T7044] netlink: 'syz.2.2997': attribute type 4 has an invalid length. [ 163.567688][ T7086] __nla_validate_parse: 7 callbacks suppressed [ 163.567698][ T7086] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3013'. [ 163.598664][ T24] audit: type=1400 audit(2000000006.984:427): avc: denied { connect } for pid=7087 comm="syz.2.3018" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 163.733015][ T24] audit: type=1400 audit(153.963:428): avc: denied { setopt } for pid=7109 comm="syz.0.3027" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 163.841877][ T7122] ipt_REJECT: TCP_RESET invalid for non-tcp [ 163.854475][ T7105] FAT-fs (loop1): Directory bread(block 64) failed [ 163.869580][ T7105] FAT-fs (loop1): Directory bread(block 65) failed [ 163.876409][ T7105] FAT-fs (loop1): Directory bread(block 66) failed [ 163.883881][ T7105] FAT-fs (loop1): Directory bread(block 67) failed [ 163.902088][ T7105] FAT-fs (loop1): Directory bread(block 68) failed [ 163.909290][ T7105] FAT-fs (loop1): Directory bread(block 69) failed [ 163.917805][ T7105] FAT-fs (loop1): Directory bread(block 70) failed [ 163.925397][ T7131] exfat: Deprecated parameter 'utf8' [ 163.926896][ T7105] FAT-fs (loop1): Directory bread(block 71) failed [ 163.940951][ T7105] FAT-fs (loop1): Directory bread(block 72) failed [ 163.947994][ T7105] FAT-fs (loop1): Directory bread(block 73) failed [ 163.949167][ T7131] exfat: Deprecated parameter 'utf8' [ 163.961240][ T7131] exfat: Deprecated parameter 'namecase' [ 163.987692][ T7131] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 164.028938][ T24] audit: type=1400 audit(154.230:429): avc: denied { rename } for pid=7129 comm="syz.0.3038" name="file0" dev="loop0" ino=1048624 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 164.151365][ T374] usb 5-1: new high-speed USB device number 45 using dummy_hcd [ 164.264480][ T7169] x_tables: unsorted entry at hook 2 [ 164.270551][ T24] audit: type=1400 audit(154.452:430): avc: denied { ioctl } for pid=7176 comm="syz.1.3061" path="socket:[34364]" dev="sockfs" ino=34364 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 164.357437][ T7185] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3064'. [ 164.457831][ T7200] mmap: syz.1.3072 (7200) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. [ 164.562567][ T7168] F2FS-fs (loop2): invalid crc value [ 164.596554][ T7168] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109) [ 164.649997][ T374] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 247, changing to 11 [ 164.654071][ T7168] F2FS-fs (loop2): Start checkpoint disabled! [ 164.669563][ T374] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1072, setting to 1024 [ 164.670657][ T7168] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 164.724150][ T374] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 164.855994][ T7237] FAT-fs (loop0): Directory bread(block 64) failed [ 164.866744][ T7238] EXT4-fs (loop1): mounted filesystem without journal. Opts: abort,nouid32,nombcache,,errors=continue [ 164.875154][ T7237] FAT-fs (loop0): Directory bread(block 65) failed [ 164.887909][ T24] audit: type=1400 audit(155.024:431): avc: denied { read } for pid=7235 comm="syz.1.3089" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 164.890066][ T7237] FAT-fs (loop0): Directory bread(block 66) failed [ 164.918813][ T24] audit: type=1400 audit(155.052:432): avc: denied { write } for pid=7247 comm="syz.3.3092" name="map_files" dev="proc" ino=35410 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 164.931757][ T374] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 164.946519][ T24] audit: type=1400 audit(155.052:433): avc: denied { add_name } for pid=7247 comm="syz.3.3092" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 164.949924][ T7237] FAT-fs (loop0): Directory bread(block 67) failed [ 164.970431][ T24] audit: type=1400 audit(155.052:434): avc: denied { create } for pid=7247 comm="syz.3.3092" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1 [ 164.985803][ T374] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 164.997082][ T24] audit: type=1400 audit(155.052:435): avc: denied { associate } for pid=7247 comm="syz.3.3092" name="file0" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 165.018315][ T374] usb 5-1: Product: syz [ 165.032571][ T7237] FAT-fs (loop0): Directory bread(block 68) failed [ 165.035366][ T374] usb 5-1: Manufacturer: syz [ 165.041116][ T294] usb 3-1: new full-speed USB device number 44 using dummy_hcd [ 165.046343][ T374] usb 5-1: SerialNumber: syz [ 165.054254][ T7237] FAT-fs (loop0): Directory bread(block 69) failed [ 165.066066][ T7237] FAT-fs (loop0): Directory bread(block 70) failed [ 165.072644][ T7128] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 165.074449][ T7237] FAT-fs (loop0): Directory bread(block 71) failed [ 165.096060][ T7237] FAT-fs (loop0): Directory bread(block 72) failed [ 165.112753][ T7237] FAT-fs (loop0): Directory bread(block 73) failed [ 165.380308][ T7297] erofs: (device loop1): mounted with root inode @ nid 36. [ 165.419356][ T374] cdc_ncm 5-1:1.0: bind() failure [ 165.424467][ T7297] erofs: (device loop1): z_erofs_fill_inode_lazy: unknown HEAD1 format 12 for nid 36, please upgrade kernel [ 165.425672][ T374] cdc_ncm 5-1:1.1: bind() failure [ 165.448237][ T374] usb 5-1: USB disconnect, device number 45 [ 165.463970][ T7297] erofs: (device loop1): z_erofs_readpage: failed to read, err [-95] [ 165.484632][ T294] usb 3-1: config 135 has an invalid interface number: 230 but max is 0 [ 165.504750][ T294] usb 3-1: config 135 has an invalid descriptor of length 43, skipping remainder of the config [ 165.522561][ T294] usb 3-1: config 135 has no interface number 0 [ 165.530172][ T294] usb 3-1: too many endpoints for config 135 interface 230 altsetting 126: 53, using maximum allowed: 30 [ 165.548054][ T294] usb 3-1: config 135 interface 230 altsetting 126 has 0 endpoint descriptors, different from the interface descriptor's value: 53 [ 165.567617][ T294] usb 3-1: config 135 interface 230 has no altsetting 0 [ 165.577218][ T7308] netlink: 'syz.0.3122': attribute type 13 has an invalid length. [ 165.620564][ T7312] netlink: 'syz.0.3124': attribute type 3 has an invalid length. [ 165.638104][ T7316] xt_CT: You must specify a L4 protocol and not use inversions on it [ 165.666359][ T7320] xt_hashlimit: max too large, truncated to 1048576 [ 165.675822][ T7320] xt_limit: Overflow, try lower: 0/0 [ 165.755369][ T294] usb 3-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a [ 165.770053][ T294] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 165.787817][ T294] usb 3-1: Product: syz [ 165.798249][ T294] usb 3-1: Manufacturer: syz [ 165.805056][ T294] usb 3-1: SerialNumber: syz [ 165.862473][ T7355] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3144'. [ 166.113057][ T294] uvcvideo: Found UVC 0.00 device syz (18ec:3288) [ 166.122049][ T294] uvcvideo: No valid video chain found. [ 166.135972][ T294] usb 3-1: USB disconnect, device number 44 [ 166.236983][ T7409] fuse: Bad value for 'user_id' [ 166.354715][ T7383] F2FS-fs (loop0): invalid crc value [ 166.371231][ T7383] F2FS-fs (loop0): Found nat_bits in checkpoint [ 166.419478][ T7383] F2FS-fs (loop0): Start checkpoint disabled! [ 166.427978][ T7383] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 166.475537][ T7432] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d) [ 166.488966][ T7432] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 166.636756][ T7450] bridge0: port 2(bridge_slave_1) entered disabled state [ 166.644482][ T7450] bridge0: port 1(bridge_slave_0) entered disabled state [ 166.719955][ T7459] xt_TCPMSS: Only works on TCP SYN packets [ 167.095108][ T7519] netlink: 108 bytes leftover after parsing attributes in process `syz.4.3220'. [ 167.110883][ T7518] netlink: 'syz.2.3223': attribute type 1 has an invalid length. [ 167.130006][ T7526] binfmt_misc: register: failed to install interpreter file ./file0 [ 167.208961][ T7543] binder: 7542:7543 ioctl c018620c 2000000000c0 returned -22 [ 167.274374][ T7559] netlink: 'syz.2.3241': attribute type 3 has an invalid length. [ 167.292189][ T7562] x_tables: duplicate underflow at hook 2 [ 167.586014][ T7609] netlink: 'syz.1.3265': attribute type 4 has an invalid length. [ 167.595775][ T7609] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.3265'. [ 167.829844][ T7638] netlink: 'syz.1.3280': attribute type 5 has an invalid length. [ 168.069730][ T7680] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 168.209776][ T7698] usb usb1: usbfs: process 7698 (syz.1.3306) did not claim interface 0 before use [ 168.444602][ T7740] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3329'. [ 168.458492][ T7739] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3331'. [ 168.468981][ T7739] tc_dump_action: action bad kind [ 168.546870][ T7764] cgroup: subsys name conflicts with all [ 168.731884][ T7782] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3348'. [ 168.802711][ T7792] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 168.826182][ T7792] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 168.838624][ T7792] overlayfs: missing 'lowerdir' [ 168.894623][ T7796] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 168.903795][ T7796] EXT4-fs (loop1): orphan cleanup on readonly fs [ 168.910877][ T7796] __quota_error: 13 callbacks suppressed [ 168.910889][ T7796] Quota error (device loop1): v2_read_file_info: Can't read info structure [ 168.930855][ T7796] EXT4-fs warning (device loop1): ext4_enable_quotas:6491: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix. [ 168.955505][ T7796] EXT4-fs (loop1): Cannot turn on quotas: error -5 [ 168.977967][ T7796] EXT4-fs (loop1): 1 truncate cleaned up [ 168.984054][ T7796] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 169.018215][ T24] audit: type=1400 audit(161.846:449): avc: denied { append } for pid=7811 comm="syz.2.3362" name="vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 169.024699][ T7796] EXT4-fs error (device loop1): ext4_search_dir:1521: inode #2: block 16: comm syz.1.3356: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 169.202712][ T7816] EXT4-fs (loop4): Ignoring removed bh option [ 169.235595][ T7816] EXT4-fs (loop4): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue [ 169.323374][ T7818] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 169.337032][ T7818] EXT4-fs (loop2): orphan cleanup on readonly fs [ 169.339318][ T7831] netlink: 'syz.1.3369': attribute type 3 has an invalid length. [ 169.344526][ T7818] EXT4-fs warning (device loop2): ext4_enable_quotas:6491: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 169.369811][ T7818] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 169.378661][ T7818] EXT4-fs error (device loop2): ext4_free_blocks:5685: comm syz.2.3365: Freeing blocks not in datazone - block = 0, count = 4096 [ 169.393213][ T7818] EXT4-fs (loop2): Remounting filesystem read-only [ 169.400193][ T7818] EXT4-fs (loop2): 1 orphan inode deleted [ 169.406116][ T7818] EXT4-fs (loop2): mounted filesystem without journal. Opts: min_batch_time=0x000000000000313b,init_itable,errors=remount-ro,grpid, [ 169.497190][ T7818] EXT4-fs error (device loop2): ext4_lookup:1830: inode #15: comm syz.2.3365: iget: bad extended attribute block 6 [ 169.550153][ T7770] F2FS-fs (loop0): invalid crc value [ 169.557334][ T7770] F2FS-fs (loop0): Found nat_bits in checkpoint [ 169.587788][ T7770] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 169.638894][ T7850] C: renamed from bond_slave_0 [ 169.660019][ T7770] F2FS-fs (loop0): lookup inode (7) has corrupted xattr [ 169.667521][ T7770] F2FS-fs (loop0): lookup inode (7) has corrupted xattr [ 169.799839][ T7864] EXT4-fs (loop1): mounted filesystem without journal. Opts: resgid=0x0000000000000000,errors=continue,noblock_validity,,errors=continue [ 169.820632][ T7872] xt_bpf: check failed: parse error [ 169.886720][ T7864] EXT4-fs warning (device loop1): dx_probe:836: inode #2: comm syz.1.3384: Unimplemented hash flags: 0x0001 [ 169.919555][ T7864] EXT4-fs warning (device loop1): dx_probe:946: inode #2: comm syz.1.3384: Corrupt directory, running e2fsck is recommended [ 170.015234][ T7878] FAT-fs (loop2): Directory bread(block 64) failed [ 170.034181][ T7878] FAT-fs (loop2): Directory bread(block 65) failed [ 170.079601][ T295] usb 5-1: new high-speed USB device number 46 using dummy_hcd [ 170.080943][ T7887] netlink: 'syz.1.3394': attribute type 9 has an invalid length. [ 170.102786][ T7878] FAT-fs (loop2): Directory bread(block 66) failed [ 170.109978][ T7887] netlink: 'syz.1.3394': attribute type 7 has an invalid length. [ 170.113615][ T7878] FAT-fs (loop2): Directory bread(block 67) failed [ 170.128378][ T7878] FAT-fs (loop2): Directory bread(block 68) failed [ 170.136959][ T7878] FAT-fs (loop2): Directory bread(block 69) failed [ 170.144838][ T7878] FAT-fs (loop2): Directory bread(block 70) failed [ 170.148177][ T7887] netlink: 'syz.1.3394': attribute type 8 has an invalid length. [ 170.154013][ T7878] FAT-fs (loop2): Directory bread(block 71) failed [ 170.184181][ T7878] FAT-fs (loop2): Directory bread(block 72) failed [ 170.220444][ T7878] FAT-fs (loop2): Directory bread(block 73) failed [ 170.339709][ T295] usb 5-1: Using ep0 maxpacket: 16 [ 170.483904][ T7930] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3414'. [ 170.543392][ T7942] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3420'. [ 170.590418][ T289] usb 2-1: new high-speed USB device number 44 using dummy_hcd [ 170.654183][ T295] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00 [ 170.665890][ T295] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 170.686348][ T295] usb 5-1: Product: syz [ 170.695479][ T295] usb 5-1: Manufacturer: syz [ 170.702194][ T295] usb 5-1: SerialNumber: syz [ 170.714496][ T295] usb 5-1: config 0 descriptor?? [ 170.729236][ T7975] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3436'. [ 170.763126][ T295] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected [ 170.782433][ T295] usb 5-1: Detected FT232H [ 170.825018][ T24] audit: type=1400 audit(163.507:450): avc: denied { map } for pid=7988 comm="syz.0.3444" path="socket:[37681]" dev="sockfs" ino=37681 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 170.851293][ T20] usb 3-1: new high-speed USB device number 45 using dummy_hcd [ 170.857951][ T24] audit: type=1400 audit(163.507:451): avc: denied { read } for pid=7988 comm="syz.0.3444" path="socket:[37681]" dev="sockfs" ino=37681 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 170.914051][ T289] usb 2-1: Using ep0 maxpacket: 16 [ 170.943361][ T24] audit: type=1400 audit(163.617:452): avc: denied { map } for pid=8006 comm="syz.3.3453" path="socket:[36635]" dev="sockfs" ino=36635 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 170.987589][ T24] audit: type=1400 audit(163.617:453): avc: denied { read } for pid=8009 comm="syz.3.3455" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 171.068301][ T8021] exfat: Deprecated parameter 'namecase' [ 171.075818][ T8021] exfat: Deprecated parameter 'namecase' [ 171.076694][ T289] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30 [ 171.076718][ T289] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 171.141817][ T20] usb 3-1: Using ep0 maxpacket: 16 [ 171.157561][ T8021] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 171.184533][ T24] audit: type=1400 audit(163.839:454): avc: denied { read } for pid=8020 comm="syz.0.3460" path="/686/file0/file2" dev="loop0" ino=1048633 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 171.250130][ T295] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 171.271927][ T295] ftdi_sio 5-1:0.0: GPIO initialisation failed: -71 [ 171.284428][ T289] usb 2-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90 [ 171.288432][ T295] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 171.298580][ T289] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 171.315161][ T20] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 171.319372][ T295] usb 5-1: USB disconnect, device number 46 [ 171.331891][ T20] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 171.343395][ T295] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 171.356943][ T295] ftdi_sio 5-1:0.0: device disconnected [ 171.359281][ T289] usb 2-1: Product: syz [ 171.367245][ T289] usb 2-1: Manufacturer: syz [ 171.377709][ T8038] netlink: 14 bytes leftover after parsing attributes in process `syz.3.3468'. [ 171.387466][ T20] usb 3-1: too many endpoints for config 1 interface 2 altsetting 0: 240, using maximum allowed: 30 [ 171.398904][ T289] usb 2-1: SerialNumber: syz [ 171.404750][ T20] usb 3-1: config 1 interface 2 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 240 [ 171.418607][ T289] usb 2-1: config 0 descriptor?? [ 171.431997][ T24] audit: type=1400 audit(164.060:455): avc: denied { getopt } for pid=8041 comm="syz.0.3470" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 171.467351][ T289] ums-onetouch 2-1:0.0: USB Mass Storage device detected [ 171.488336][ T8052] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks [ 171.564013][ T24] audit: type=1400 audit(164.180:456): avc: denied { create } for pid=8065 comm="syz.3.3481" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=key permissive=1 [ 171.626084][ T24] audit: type=1400 audit(164.245:457): avc: denied { setopt } for pid=8075 comm="syz.0.3486" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 171.647459][ T20] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 171.661431][ T20] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 171.671039][ T20] usb 3-1: Product: syz [ 171.681056][ T20] usb 3-1: Manufacturer: syz [ 171.688181][ T20] usb 3-1: SerialNumber: syz [ 171.704543][ T289] usb 2-1: USB disconnect, device number 44 [ 171.727284][ T8088] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 171.849869][ T8114] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3505'. [ 171.868879][ T8114] netlink: 'syz.4.3505': attribute type 1 has an invalid length. [ 172.007516][ T8148] xt_hashlimit: max too large, truncated to 1048576 [ 172.019674][ T8146] netlink: 'syz.3.3522': attribute type 3 has an invalid length. [ 172.049948][ T20] usb 3-1: USB disconnect, device number 45 [ 172.320333][ T8196] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3546'. [ 172.323066][ T295] usb 1-1: new high-speed USB device number 46 using dummy_hcd [ 172.352262][ T8196] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3546'. [ 172.362098][ T8196] netlink: 38 bytes leftover after parsing attributes in process `syz.1.3546'. [ 172.458248][ T8198] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_lock,noquota,errors=remount-ro,grpquota, [ 172.552033][ T8217] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 172.582974][ T8217] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 172.604792][ T295] usb 1-1: Using ep0 maxpacket: 16 [ 172.734921][ T295] usb 1-1: config 0 has an invalid interface number: 105 but max is 0 [ 172.750665][ T295] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 172.802758][ T295] usb 1-1: config 0 has no interface number 0 [ 172.893243][ T8272] IPv6: syztnl0: Disabled Multicast RS [ 172.969136][ T8269] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 172.989922][ T8269] EXT4-fs (loop4): orphan cleanup on readonly fs [ 172.998546][ T295] usb 1-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28 [ 173.023879][ T295] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 173.045999][ T8269] EXT4-fs warning (device loop4): ext4_enable_quotas:6491: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix. [ 173.077859][ T295] usb 1-1: Product: syz [ 173.099473][ T295] usb 1-1: Manufacturer: syz [ 173.119435][ T8269] EXT4-fs (loop4): Cannot turn on quotas: error -5 [ 173.129418][ T295] usb 1-1: SerialNumber: syz [ 173.148075][ T295] usb 1-1: config 0 descriptor?? [ 173.153861][ T8269] EXT4-fs (loop4): 1 truncate cleaned up [ 173.165237][ T8269] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 173.191179][ T8269] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2219: inode #15: comm syz.4.3580: corrupted in-inode xattr [ 173.253974][ T8285] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 173.269135][ T295] uvcvideo: Found UVC 0.00 device syz (046d:08d3) [ 173.291786][ T8285] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002] [ 173.300949][ T8285] System zones: 0-2, 18-18, 34-34 [ 173.307498][ T8285] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 173.324337][ T8285] EXT4-fs (loop3): 1 truncate cleaned up [ 173.330656][ T8285] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 173.373234][ T8285] EXT4-fs error (device loop3): ext4_generic_delete_entry:2683: inode #2: block 3: comm syz.3.3587: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 173.404307][ T8285] EXT4-fs error (device loop3) in ext4_delete_entry:2741: Corrupt filesystem [ 173.419002][ T8285] EXT4-fs warning (device loop3): ext4_rename_delete:3901: inode #2: comm syz.3.3587: Deleting old file: nlink 4, error=-117 [ 173.504465][ T295] uvcvideo: Failed to query (GET_INFO) UVC control 2 on unit 1: 0 (exp. 1). [ 173.732058][ T295] uvcvideo: Failed to query (GET_INFO) UVC control 3 on unit 1: -71 (exp. 1). [ 173.743263][ T8341] 9pnet: p9_fd_create_unix (8341): problem connecting socket: ./file0: -111 [ 173.786243][ T295] uvcvideo: Failed to query (GET_INFO) UVC control 6 on unit 1: -71 (exp. 1). [ 173.821189][ T295] uvcvideo: No valid video chain found. [ 173.872381][ T295] usb 1-1: USB disconnect, device number 46 [ 173.918475][ T8374] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3629'. [ 174.007933][ T8380] FAT-fs (loop4): Directory bread(block 64) failed [ 174.024549][ T8380] FAT-fs (loop4): Directory bread(block 65) failed [ 174.036105][ T8380] FAT-fs (loop4): Directory bread(block 66) failed [ 174.052646][ T8380] FAT-fs (loop4): Directory bread(block 67) failed [ 174.064937][ T8380] FAT-fs (loop4): Directory bread(block 68) failed [ 174.073289][ T8380] FAT-fs (loop4): Directory bread(block 69) failed [ 174.083988][ T8380] FAT-fs (loop4): Directory bread(block 70) failed [ 174.095367][ T8380] FAT-fs (loop4): Directory bread(block 71) failed [ 174.106873][ T8380] FAT-fs (loop4): Directory bread(block 72) failed [ 174.115711][ T8380] FAT-fs (loop4): Directory bread(block 73) failed [ 174.237249][ T8395] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3639'. [ 174.268328][ T8369] F2FS-fs (loop3): fault_injection options not supported [ 174.296757][ T8369] F2FS-fs (loop3): invalid crc value [ 174.318896][ T8369] F2FS-fs (loop3): Found nat_bits in checkpoint [ 174.365941][ T8369] F2FS-fs (loop3): Start checkpoint disabled! [ 174.411661][ T8369] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 174.470078][ T8425] device ip6gretap2 left promiscuous mode [ 174.757897][ T8420] F2FS-fs (loop2): invalid crc value [ 174.771885][ T24] kauditd_printk_skb: 12 callbacks suppressed [ 174.771900][ T24] audit: type=1326 audit(2000000000.545:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8465 comm="syz.3.3664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3efdb41969 code=0x7ffc0000 [ 174.800428][ T8420] F2FS-fs (loop2): Found nat_bits in checkpoint [ 174.859644][ T8420] F2FS-fs (loop2): Start checkpoint disabled! [ 174.865312][ T24] audit: type=1326 audit(2000000000.581:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8465 comm="syz.3.3664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3efdb41969 code=0x7ffc0000 [ 174.890054][ T8420] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 174.918276][ T24] audit: type=1326 audit(2000000000.591:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8465 comm="syz.3.3664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f3efdb41969 code=0x7ffc0000 [ 174.963395][ T24] audit: type=1326 audit(2000000000.591:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8465 comm="syz.3.3664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3efdb41969 code=0x7ffc0000 [ 174.998217][ T24] audit: type=1326 audit(2000000000.591:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8465 comm="syz.3.3664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3efdb41969 code=0x7ffc0000 [ 175.030800][ T24] audit: type=1400 audit(2000000000.794:474): avc: denied { create } for pid=8493 comm="syz.3.3685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 175.063311][ T24] audit: type=1400 audit(2000000000.794:475): avc: denied { write } for pid=8493 comm="syz.3.3685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 175.085796][ T24] audit: type=1400 audit(2000000000.794:476): avc: denied { nlmsg_read } for pid=8493 comm="syz.3.3685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 175.157498][ T8500] FAT-fs (loop3): Directory bread(block 64) failed [ 175.167121][ T8500] FAT-fs (loop3): Directory bread(block 65) failed [ 175.176143][ T8500] FAT-fs (loop3): Directory bread(block 66) failed [ 175.182888][ T8500] FAT-fs (loop3): Directory bread(block 67) failed [ 175.189680][ T8500] FAT-fs (loop3): Directory bread(block 68) failed [ 175.196875][ T8500] FAT-fs (loop3): Directory bread(block 69) failed [ 175.203862][ T8500] FAT-fs (loop3): Directory bread(block 70) failed [ 175.210787][ T8500] FAT-fs (loop3): Directory bread(block 71) failed [ 175.217516][ T8500] FAT-fs (loop3): Directory bread(block 72) failed [ 175.225331][ T8500] FAT-fs (loop3): Directory bread(block 73) failed [ 175.238975][ T295] usb 5-1: new full-speed USB device number 47 using dummy_hcd [ 175.271859][ T8513] bridge0: port 2(bridge_slave_1) entered disabled state [ 175.279834][ T8513] bridge0: port 1(bridge_slave_0) entered disabled state [ 175.302231][ T8515] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 175.311959][ T8515] ext4 filesystem being mounted at /811/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.347037][ T24] audit: type=1400 audit(2000000001.089:477): avc: denied { create } for pid=8514 comm="syz.2.3694" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1 [ 175.347342][ T8515] EXT4-fs error (device loop2): ext4_validate_block_bitmap:420: comm syz.2.3694: bg 0: bad block bitmap checksum [ 175.487479][ T8525] new mount options do not match the existing superblock, will be ignored [ 175.503677][ T8527] xt_NFQUEUE: number of total queues is 0 [ 175.598526][ T24] audit: type=1400 audit(2000000001.320:478): avc: denied { setopt } for pid=8536 comm="syz.2.3705" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 175.644739][ T8545] netlink: 'syz.0.3707': attribute type 1 has an invalid length. [ 175.687272][ T295] usb 5-1: unable to get BOS descriptor or descriptor too short [ 175.727104][ T8549] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 175.736932][ T295] usb 5-1: not running at top speed; connect to a high speed hub [ 175.778415][ T8549] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 175.788178][ T8549] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002] [ 175.817568][ T8549] System zones: 0-2, 18-18, 34-34 [ 175.848866][ T8549] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 175.856232][ T295] usb 5-1: config 128 has an invalid interface number: 127 but max is 3 [ 175.880326][ T295] usb 5-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 175.891130][ T295] usb 5-1: config 128 has 1 interface, different from the descriptor's value: 4 [ 175.901088][ T295] usb 5-1: config 128 has no interface number 0 [ 175.908646][ T295] usb 5-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid maxpacket 3876, setting to 64 [ 175.919940][ T8549] EXT4-fs (loop3): 1 truncate cleaned up [ 175.921949][ T295] usb 5-1: config 128 interface 127 has no altsetting 0 [ 175.936102][ T8549] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 175.997563][ T8549] fscrypt (loop3, inode 15): Error -61 getting encryption context [ 176.105548][ T295] usb 5-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55 [ 176.127026][ T295] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 176.143013][ T295] usb 5-1: Product: syz [ 176.155458][ T295] usb 5-1: Manufacturer: syz [ 176.163272][ T295] usb 5-1: SerialNumber: syz [ 176.192169][ T8488] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 176.221470][ T8593] FAT-fs (loop3): Directory bread(block 64) failed [ 176.229128][ T8593] FAT-fs (loop3): Directory bread(block 65) failed [ 176.236301][ T8593] FAT-fs (loop3): Directory bread(block 66) failed [ 176.243754][ T8593] FAT-fs (loop3): Directory bread(block 67) failed [ 176.250773][ T8593] FAT-fs (loop3): Directory bread(block 68) failed [ 176.260901][ T8593] FAT-fs (loop3): Directory bread(block 69) failed [ 176.267678][ T8593] FAT-fs (loop3): Directory bread(block 70) failed [ 176.275232][ T8593] FAT-fs (loop3): Directory bread(block 71) failed [ 176.282831][ T8593] FAT-fs (loop3): Directory bread(block 72) failed [ 176.290187][ T8593] FAT-fs (loop3): Directory bread(block 73) failed [ 176.333302][ T5] usb 3-1: new full-speed USB device number 46 using dummy_hcd [ 176.352192][ T8606] __nla_validate_parse: 3 callbacks suppressed [ 176.352214][ T8606] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3739'. [ 176.599849][ T8636] ================================================================== [ 176.608193][ T295] usb 5-1: USB disconnect, device number 47 [ 176.614284][ T8636] BUG: KASAN: use-after-free in __ext4_iget+0x36a/0x4030 [ 176.621536][ T8636] Read of size 8 at addr ffff88811c30cbf8 by task syz.0.3750/8636 [ 176.629520][ T8636] [ 176.631874][ T8636] CPU: 1 PID: 8636 Comm: syz.0.3750 Tainted: G W 5.10.237-syzkaller-00309-g7e2543346ff7 #0 [ 176.643692][ T8636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 176.654129][ T8636] Call Trace: [ 176.657622][ T8636] __dump_stack+0x21/0x24 [ 176.662148][ T8636] dump_stack_lvl+0x169/0x1d8 [ 176.667129][ T8636] ? show_regs_print_info+0x18/0x18 [ 176.672354][ T8636] ? thaw_kernel_threads+0x220/0x220 [ 176.677924][ T8636] ? _raw_spin_lock+0x8e/0xe0 [ 176.682786][ T8636] print_address_description+0x7f/0x2c0 [ 176.688450][ T8636] ? __ext4_iget+0x36a/0x4030 [ 176.693220][ T8636] kasan_report+0xe2/0x130 [ 176.697713][ T8636] ? __ext4_iget+0x36a/0x4030 [ 176.702582][ T8636] __asan_report_load8_noabort+0x14/0x20 [ 176.708204][ T8636] __ext4_iget+0x36a/0x4030 [ 176.712901][ T8636] ? __kasan_check_write+0x14/0x20 [ 176.718025][ T8636] ? _raw_write_lock+0x8e/0xe0 [ 176.723156][ T8636] ? _raw_write_trylock+0x140/0x140 [ 176.728428][ T8636] ? __proc_create+0x564/0x8d0 [ 176.733780][ T8636] ? __kasan_check_write+0x14/0x20 [ 176.739128][ T8636] ? ext4_get_projid+0x140/0x140 [ 176.744438][ T8636] ? _raw_write_unlock+0x2b/0x60 [ 176.749854][ T8636] ? proc_register+0x34d/0x4e0 [ 176.754709][ T8636] ext4_enable_quotas+0x33b/0x6d0 [ 176.759905][ T8636] ext4_fill_super+0x82a9/0x8b60 [ 176.764935][ T8636] ? ext4_mount+0x40/0x40 [ 176.769530][ T8636] ? set_blocksize+0x1fe/0x3c0 [ 176.774404][ T8636] ? sb_set_blocksize+0xaa/0xf0 [ 176.779357][ T8636] mount_bdev+0x28b/0x3a0 [ 176.783695][ T8636] ? ext4_mount+0x40/0x40 [ 176.788206][ T8636] ext4_mount+0x34/0x40 [ 176.792486][ T8636] legacy_get_tree+0xed/0x190 [ 176.797371][ T8636] ? ext4_chksum+0x160/0x160 [ 176.802140][ T8636] vfs_get_tree+0x89/0x260 [ 176.806772][ T8636] do_new_mount+0x25a/0xa20 [ 176.811802][ T8636] path_mount+0x572/0xc80 [ 176.816235][ T8636] __se_sys_mount+0x318/0x380 [ 176.821078][ T8636] ? __kasan_check_write+0x14/0x20 [ 176.827144][ T8636] ? __x64_sys_mount+0xd0/0xd0 [ 176.832772][ T8636] ? fpu__clear_all+0x20/0x20 [ 176.837798][ T8636] ? do_mkdirat+0x1e8/0x340 [ 176.842912][ T8636] __x64_sys_mount+0xbf/0xd0 [ 176.847705][ T8636] do_syscall_64+0x31/0x40 [ 176.852296][ T8636] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 176.859043][ T8636] RIP: 0033:0x7f370b7ba10a [ 176.863800][ T8636] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.885857][ T8636] RSP: 002b:00007f3709e20e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 176.895109][ T8636] RAX: ffffffffffffffda RBX: 00007f3709e20ef0 RCX: 00007f370b7ba10a [ 176.904275][ T8636] RDX: 0000200000000000 RSI: 0000200000000500 RDI: 00007f3709e20eb0 [ 176.912614][ T8636] RBP: 0000200000000000 R08: 00007f3709e20ef0 R09: 0000000000000000 [ 176.921208][ T8636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000500 [ 176.929680][ T8636] R13: 00007f3709e20eb0 R14: 00000000000004bc R15: 00002000000001c0 [ 176.938060][ T8636] [ 176.940541][ T8636] Allocated by task 7383: [ 176.945239][ T8636] __kasan_slab_alloc+0xbd/0xf0 [ 176.950507][ T8636] slab_post_alloc_hook+0x5d/0x2f0 [ 176.956470][ T8636] kmem_cache_alloc+0x165/0x2e0 [ 176.961770][ T8636] f2fs_alloc_inode+0x26/0x410 [ 176.967233][ T8636] iget_locked+0x146/0x7d0 [ 176.971754][ T8636] f2fs_iget+0x55/0x4dc0 [ 176.975993][ T8636] f2fs_fill_super+0x468e/0x6c70 [ 176.981192][ T8636] mount_bdev+0x28b/0x3a0 [ 176.986243][ T8636] f2fs_mount+0x34/0x40 [ 176.990705][ T8636] legacy_get_tree+0xed/0x190 [ 176.995703][ T8636] vfs_get_tree+0x89/0x260 [ 177.000855][ T8636] do_new_mount+0x25a/0xa20 [ 177.005576][ T8636] path_mount+0x572/0xc80 [ 177.010232][ T8636] __se_sys_mount+0x318/0x380 [ 177.015242][ T8636] __x64_sys_mount+0xbf/0xd0 [ 177.020108][ T8636] do_syscall_64+0x31/0x40 [ 177.024608][ T8636] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 177.031517][ T8636] [ 177.034293][ T8636] Last potentially related work creation: [ 177.041342][ T8636] kasan_save_stack+0x3a/0x60 [ 177.046467][ T8636] __kasan_record_aux_stack+0xd2/0x100 [ 177.053418][ T8636] kasan_record_aux_stack_noalloc+0xb/0x10 [ 177.060905][ T8636] call_rcu+0x105/0x1040 [ 177.065639][ T8636] evict+0x857/0x910 [ 177.069712][ T8636] evict_inodes+0x5d4/0x640 [ 177.075226][ T8636] generic_shutdown_super+0x96/0x320 [ 177.080956][ T8636] kill_block_super+0x7f/0xf0 [ 177.086239][ T8636] kill_f2fs_super+0x2e7/0x390 [ 177.091339][ T8636] deactivate_locked_super+0xa0/0x100 [ 177.097599][ T8636] deactivate_super+0xaf/0xe0 [ 177.102646][ T8636] cleanup_mnt+0x446/0x500 [ 177.107145][ T8636] __cleanup_mnt+0x19/0x20 [ 177.112300][ T8636] task_work_run+0x127/0x190 [ 177.117356][ T8636] exit_to_user_mode_loop+0xcb/0xe0 [ 177.122832][ T8636] syscall_exit_to_user_mode+0x68/0x90 [ 177.128466][ T8636] do_syscall_64+0x3d/0x40 [ 177.132975][ T8636] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 177.139527][ T8636] [ 177.142057][ T8636] Second to last potentially related work creation: [ 177.148650][ T8636] kasan_save_stack+0x3a/0x60 [ 177.153603][ T8636] __kasan_record_aux_stack+0xd2/0x100 [ 177.159195][ T8636] kasan_record_aux_stack_noalloc+0xb/0x10 [ 177.165100][ T8636] call_rcu+0x105/0x1040 [ 177.169730][ T8636] evict+0x857/0x910 [ 177.174190][ T8636] iput+0x638/0x7c0 [ 177.178263][ T8636] f2fs_put_super+0x68a/0xc00 [ 177.183239][ T8636] generic_shutdown_super+0x149/0x320 [ 177.188602][ T8636] kill_block_super+0x7f/0xf0 [ 177.193447][ T8636] kill_f2fs_super+0x2e7/0x390 [ 177.198528][ T8636] deactivate_locked_super+0xa0/0x100 [ 177.204401][ T8636] deactivate_super+0xaf/0xe0 [ 177.209480][ T8636] cleanup_mnt+0x446/0x500 [ 177.213888][ T8636] __cleanup_mnt+0x19/0x20 [ 177.218481][ T8636] task_work_run+0x127/0x190 [ 177.223169][ T8636] exit_to_user_mode_loop+0xcb/0xe0 [ 177.228469][ T8636] syscall_exit_to_user_mode+0x68/0x90 [ 177.234186][ T8636] do_syscall_64+0x3d/0x40 [ 177.238776][ T8636] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 177.244860][ T8636] [ 177.247282][ T8636] The buggy address belongs to the object at ffff88811c30c6d0 [ 177.247282][ T8636] which belongs to the cache f2fs_inode_cache of size 1520 [ 177.262453][ T8636] The buggy address is located 1320 bytes inside of [ 177.262453][ T8636] 1520-byte region [ffff88811c30c6d0, ffff88811c30ccc0) [ 177.277027][ T8636] The buggy address belongs to the page: [ 177.283560][ T8636] page:ffffea000470c200 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88811c30f3e0 pfn:0x11c308 [ 177.295835][ T8636] head:ffffea000470c200 order:3 compound_mapcount:0 compound_pincount:0 [ 177.304350][ T8636] flags: 0x4000000000010200(slab|head) [ 177.310200][ T8636] raw: 4000000000010200 dead000000000100 dead000000000122 ffff888102790180 [ 177.318967][ T8636] raw: ffff88811c30f3e0 0000000080130009 00000001ffffffff 0000000000000000 [ 177.327721][ T8636] page dumped because: kasan: bad access detected [ 177.334334][ T8636] page_owner tracks the page as allocated [ 177.340143][ T8636] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 298, ts 31161581131, free_ts 0 [ 177.361664][ T8636] prep_new_page+0x179/0x180 [ 177.366254][ T8636] get_page_from_freelist+0x2235/0x23d0 [ 177.372018][ T8636] __alloc_pages_nodemask+0x268/0x5f0 [ 177.377594][ T8636] new_slab+0x84/0x3f0 [ 177.381769][ T8636] ___slab_alloc+0x2a6/0x450 [ 177.386529][ T8636] __slab_alloc+0x63/0xa0 [ 177.390847][ T8636] kmem_cache_alloc+0x1af/0x2e0 [ 177.395732][ T8636] f2fs_alloc_inode+0x26/0x410 [ 177.400482][ T8636] iget_locked+0x146/0x7d0 [ 177.405150][ T8636] f2fs_iget+0x55/0x4dc0 [ 177.409523][ T8636] f2fs_fill_super+0x45ba/0x6c70 [ 177.414842][ T8636] mount_bdev+0x28b/0x3a0 [ 177.419251][ T8636] f2fs_mount+0x34/0x40 [ 177.423434][ T8636] legacy_get_tree+0xed/0x190 [ 177.428165][ T8636] vfs_get_tree+0x89/0x260 [ 177.432570][ T8636] do_new_mount+0x25a/0xa20 [ 177.437361][ T8636] page_owner free stack trace missing [ 177.442731][ T8636] [ 177.445137][ T8636] Memory state around the buggy address: [ 177.450864][ T8636] ffff88811c30ca80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 177.459350][ T8636] ffff88811c30cb00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 177.467777][ T8636] >ffff88811c30cb80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 177.476004][ T8636] ^ [ 177.484255][ T8636] ffff88811c30cc00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 177.493264][ T8636] ffff88811c30cc80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 177.501398][ T8636] ================================================================== [ 177.509734][ T8636] Disabling lock debugging due to kernel taint [ 177.517348][ T8636] EXT4-fs warning (device loop0): ext4_enable_quotas:6491: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix. [ 177.534809][ T8636] EXT4-fs (loop0): mount failed [ 177.611874][ T5] usb 3-1: config 0 has an invalid interface number: 31 but max is 0 [ 177.628082][ T5] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 177.638606][ T5] usb 3-1: config 0 has no interface number 0 [ 177.817841][ T5] usb 3-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 177.827541][ T5] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 177.836475][ T5] usb 3-1: Product: syz [ 177.841174][ T5] usb 3-1: Manufacturer: syz [ 177.846068][ T5] usb 3-1: SerialNumber: syz [ 177.851546][ T5] usb 3-1: config 0 descriptor?? [ 177.893993][ T5] hub 3-1:0.31: bad descriptor, ignoring hub [ 177.900417][ T5] hub: probe of 3-1:0.31 failed with error -5 [ 177.907349][ T5] uvcvideo: Found UVC 0.04 device syz (046d:08c3) [ 177.914012][ T5] uvcvideo 3-1:0.31: Entity type for entity Output 6 was not initialized! [ 177.923292][ T5] uvcvideo: Failed to create links for entity 6 [ 177.929666][ T5] uvcvideo: Failed to register entities (-22). [ 178.240468][ T5] usb 3-1: USB disconnect, device number 46