last executing test programs: 9.113329248s ago: executing program 0 (id=1112): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/nf_conntrack\x00') read$FUSE(r0, 0x0, 0x0) 8.910095001s ago: executing program 0 (id=1114): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x17, &(0x7f00000006c0)=0x400, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f) r4 = socket$inet(0x2, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet_mreqsrc(r4, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) 7.463454775s ago: executing program 3 (id=1119): r0 = syz_mount_image$exfat(&(0x7f0000000240), &(0x7f00000005c0)='./file2\x00', 0x3000cd0, &(0x7f0000000440)=ANY=[], 0x1, 0x151a, &(0x7f0000003f40)="$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") add_key$fscrypt_v1(0x0, &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000300)={0x0, "6035ae1e0fe721441705322025000000003e2a5b4377f7ad4bcf2b71d17e1ec0ef54e6773fd7264c39ea00c508ba607269613800"}, 0x48, 0xfffffffffffffffb) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r1 = getpid() syz_clone3(&(0x7f0000000700)={0x6110000, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000240), {0x2d}, &(0x7f0000000500)=""/228, 0xe4, &(0x7f0000000600)=""/195, &(0x7f0000000280)=[r1, r1], 0x2}, 0x58) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) ioctl$int_in(r4, 0x5452, 0x0) recvfrom(r4, 0x0, 0x0, 0x2, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(0x0, r4) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0/file1\x00', 0x101546, 0x0) fsetxattr(r5, &(0x7f0000000400)=@known='trusted.overlay.metacopy\x00', 0x0, 0x0, 0x0) linkat(0xffffffffffffff9c, &(0x7f0000000880)='./file2\x00', r0, 0x0, 0x1000) 7.036009576s ago: executing program 0 (id=1121): fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum64={0x81, 0x0, 0x0, 0x13, 0x0, 0x1, [{0xffffffff, 0x200, 0xf7000000}]}]}, {0x0, [0x61, 0x61, 0x0]}}, &(0x7f0000000500)=""/155, 0x26, 0x9b, 0x1}, 0x28) fsmount(0xffffffffffffffff, 0x0, 0x80) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) socketpair$unix(0x1, 0x3, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x380, 0xffffffff, 0x210, 0x210, 0x210, 0xffffffff, 0xffffffff, 0x2e8, 0x2e8, 0x2e8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xc0, 0xe8, 0x0, {0x100000000000000}, [@common=@inet=@socket2={{0x28}, 0x2}, @common=@ttl={{0x28}, {0x2, 0x4}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@uncond, 0x0, 0xc8, 0x128, 0x0, {}, [@common=@inet=@tcp={{0x30}, {[0x4e23, 0x4e20], [0x4e23, 0x4e21], 0x5, 0x10, 0x1a7, 0x1}}, @common=@icmp={{0x28}, {0x0, "54e9", 0x1}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x1, [0x2, 0x4, 0x6, 0x2, 0x4, 0x6], 0x6, 0x4}, {0x1, [0x1, 0x2, 0x1, 0x1, 0x2, 0x4], 0x3, 0x7}}}}, {{@uncond, 0x0, 0x98, 0xd8, 0x0, {}, [@common=@unspec=@cpu={{0x28}, {0xff}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x8, 0x5}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3e0) fsmount(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) utimensat(r2, 0x0, 0x0, 0x0) write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x8) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) getdents64(r3, &(0x7f0000000400)=""/4096, 0xc00) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xffa1, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r4, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYBLOB="35874207"], 0x44}, 0x1, 0x0, 0x0, 0x50}, 0x0) 6.947973179s ago: executing program 0 (id=1122): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x17, &(0x7f00000006c0)=0x400, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f) socket$inet(0x2, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) shutdown(r0, 0x1) 6.322905034s ago: executing program 2 (id=1123): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000002600)={'syzkaller0\x00', 0x7101}) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000080)={0x1, 0x0, 0x100801f9, 0x1, 0xb94}) close(0xffffffffffffffff) r0 = gettid() timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=0x0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r3, 0x400455c8, 0x0) ioctl$sock_bt_hci(r2, 0x400448dd, &(0x7f00000003c0)) syz_usb_connect(0x0, 0x24, 0x0, 0x0) timer_settime(r1, 0x0, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) 6.283022647s ago: executing program 3 (id=1124): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000002600)={'syzkaller0\x00', 0x7101}) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000080)={0x1, 0x0, 0x100801f9, 0x1, 0xb94}) close(0xffffffffffffffff) r0 = gettid() timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r1, 0x400455c8, 0x0) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) close_range(r2, 0xffffffffffffffff, 0x0) 6.161471695s ago: executing program 4 (id=1125): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x5}, 0x48) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockname(r0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() syz_open_dev$usbfs(0x0, 0x80, 0x309101) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'bridge0\x00'}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x701, 0x3, 0x258, 0x0, 0xb, 0x108, 0x0, 0x0, 0x1c0, 0x1c8, 0x1c8, 0x1c0, 0x1c8, 0x3, 0x0, {[{{@ip={@rand_addr, @broadcast, 0x0, 0x0, 'veth1_to_batadv\x00', '\x00', {}, {}, 0x32}, 0x0, 0xa0, 0x108, 0x0, {}, [@common=@inet=@esp={{0x30}, {[], 0x1}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x15, 0x1, 0x619, 0x6, 'snmp\x00', 'syz0\x00', {0x631}}}}, {{@ip={@loopback, @empty, 0x0, 0x0, 'veth1_to_batadv\x00', 'ip6erspan0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x5, 0x0, 0x0, 'snmp_trap\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2b8) setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x770, 0x0, 0xbabd}, 0x1c) syz_emit_ethernet(0x4a, &(0x7f0000000580)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a35f2", 0x14, 0x6, 0x0, @remote={0xfe, 0x50}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) ioctl$USBDEVFS_CLAIMINTERFACE(0xffffffffffffffff, 0x8004550f, 0x0) 5.779638824s ago: executing program 2 (id=1126): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000087}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x10) sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='.\x00\b\x00', @ANYRES16=0x0], 0x34}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="5000000020000103feffffff000000000a000000000000000400010008000a000008000005001e"], 0x50}, 0x1, 0x0, 0x0, 0x14}, 0x4000850) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c0c1}, 0x0) socket$nl_route(0x10, 0x3, 0x0) r5 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10) connect$inet(r5, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000300)='lp', 0x2) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @window={0x3, 0x0, 0x401}, @window], 0x5) setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0) recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25) r6 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FILTER(r6, 0x65, 0x1, &(0x7f0000000140), 0x0) bind$can_raw(r6, &(0x7f00000000c0), 0x10) 4.967091755s ago: executing program 4 (id=1127): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000280)='./bus\x00', 0x1200840, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x39a, &(0x7f00000002c0)="$eJzs3UFoW2UcAPB/+pKm1c32IIiC8PQm6NimIHqxZXQwzGVKmHoQg9t0NFVYMbgdltWLeBR21JM3D3rwsJsXUZHdPHh1gkzFg+42cOzJy3tpXprWDUc6h7/fIfz7ff//976XfG1e0+Tra0uxerwRJ69evRJzc7WoLx1aimu1WIwkhs7HpNlt2gCAu8O1LIs/s0LEl7dSUpv+rACAaRo8/7+xt9Ly3jej+OuJ/Kx49m/sxtwAgOkof/+fr7YlW3LmJqrmpz0tAGCK8uf/qFcaHp1Iqfypvz5xbQAA3H1efPmV55dbES+k6VzE2vu9dq8dz476l0/GqejGidgfC3E9onijQH5TG9wePtJa2Z+maT9+WYx2XtFrR6z1e+3iSmE5GdQ340AsxGJZX77bIMuy5PAXrZUD6UBEnO/3Gvkoa7VeuzF4lWF5Pk79eE+ciIORxv0T9RFHWiub1yTt/LiD4zciNkavW+Tz3xcL8f3r8XZ043jktcPLmtbKuQNpeihr7amN6vu9dnOQV5h8BQQAAAAAAAAAAAAAAAAAAAAAAG7HvmLvnb1pmi5u7p+Tjfbv2VcmlP33RkR7sF9gu6gv9wfaKPYHyppZZNkf7z7R/iCJsf2BBhv8jO2vU4+ZO3vqAAAAAAAAAAAAAAAAAAAA8J+xfmY2Ot3uidPrZ86uVoP+6fUzMxGRt7z13Wdfzcd4znw5wHjVWFAvUypd6agqS4bJWTKWUwZJfvBavWj59OLmjCs5lbMYlc+McppbusaCvY/8/NHZ1eEIDyfDqhujnCS2Pa+zyfg0xoK1+4oBhy0Xdr5/JoODN8m5nGXZTuXnXp2silpEfcep/ssgy4Nvr7z54JPrw0WQFR57fOHY5Quf/Lba6eZHznW7s6fXr2ernfLr7RfbRNAcLpuksn5q5WKrVVdCvfPUjaN7dhh5Y7ylk/zw+0sPfXipbJmpPEzbTCM7dmnU8s42OUlx0M+3ds0WQT7Nza7n8iC/jybGGX6X3PRueTpu64F74OOlzsVzP/16q1WVHxI26gAAAAAAAAAAAAAAAAAAgF1R+ax4qfywb+Ofqp45Ov2ZAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDuGf3//80gZja2tNxa8Fc/hi3HYtjVzAeM2coRF+/g2QIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8H/1dwAAAP//kp5N2g==") r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) io_submit(0x0, 0x0, &(0x7f0000001d00)) 4.955466482s ago: executing program 0 (id=1128): fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000580)={0x24, 0x0, 0x0, &(0x7f0000000500)=ANY=[], 0x0}, 0x0) syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084") mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0xe, 0x0, &(0x7f0000000100)) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) 4.654505977s ago: executing program 2 (id=1129): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02262478fe4ecc6e7083b93dbdc872fffa3668e120269d5877fd64e43ad3d48c82d158d0d9671cc94ec1d41d429a2e4c08d10af2b2bc3f815c59d50a891f56f793f5"], 0x0, 0x96}, 0x28) openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) close(r1) r2 = open(&(0x7f0000000000)='./file0\x00', 0x400, 0x1a1) fcntl$setlease(r2, 0x400, 0x1) r3 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0) write$binfmt_script(r3, &(0x7f0000000340)={'#! ', './file0'}, 0xb) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 4.583033194s ago: executing program 1 (id=1130): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f) socket$inet(0x2, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) shutdown(r0, 0x1) 4.044821765s ago: executing program 3 (id=1131): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000002600)={'syzkaller0\x00', 0x7101}) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000080)={0x1, 0x0, 0x100801f9, 0x1, 0xb94}) close(0xffffffffffffffff) r0 = gettid() timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=0x0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r3, 0x400455c8, 0x0) ioctl$sock_bt_hci(r2, 0x400448dd, &(0x7f00000003c0)) timer_settime(r1, 0x0, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) 3.920560322s ago: executing program 4 (id=1132): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) shutdown(r0, 0x1) 3.823060344s ago: executing program 4 (id=1133): openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x10b200, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000940)=@base={0x11, 0x4, 0x4, 0x2, 0x0, 0x1, 0x1}, 0x50) syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYBLOB='iocharset=cp850,fmask=00000000000000000064347,errors=remount-ro,iocharset=iso8859-7,fmask=00000000000000000000005,umask=00777777777777777777777,gid=', @ANYRESHEX=0x0, @ANYBLOB=',dmask=00000000000000000000001,errors=continue,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c686173682c6f626a5f726f6c653d2c7375626a5f726f6c653d637f5ccb912d6822372c6f626a5f747970653d3970002c6673636f6e7465788ce5d9947374656d5f752c00"], 0x1, 0x152f, &(0x7f00000037c0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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") ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f00000000c0)={0x9, 0x8, 0x7, 0x4, 0x4, 0x8}) socket$inet_udp(0x2, 0x2, 0x0) pipe(0x0) pidfd_send_signal(0xffffffffffffffff, 0x1a, 0x0, 0x0) 3.662199435s ago: executing program 2 (id=1134): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000002600)={'syzkaller0\x00', 0x7101}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r1, 0x400455c8, 0x0) ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f00000003c0)) syz_usb_connect(0x0, 0x24, 0x0, 0x0) 3.20094729s ago: executing program 1 (id=1135): r0 = syz_mount_image$exfat(&(0x7f0000000240), &(0x7f00000005c0)='./file2\x00', 0x3000cd0, &(0x7f0000000440)=ANY=[], 0x1, 0x151a, &(0x7f0000003f40)="$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") add_key$fscrypt_v1(0x0, &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000300)={0x0, "6035ae1e0fe721441705322025000000003e2a5b4377f7ad4bcf2b71d17e1ec0ef54e6773fd7264c39ea00c508ba607269613800"}, 0x48, 0xfffffffffffffffb) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() syz_clone3(0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) ioctl$int_in(r4, 0x5452, 0x0) recvfrom(r4, 0x0, 0x0, 0x2, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(0x0, r4) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0/file1\x00', 0x101546, 0x0) fsetxattr(r5, &(0x7f0000000400)=@known='trusted.overlay.metacopy\x00', 0x0, 0x0, 0x0) linkat(0xffffffffffffff9c, &(0x7f0000000880)='./file2\x00', r0, 0x0, 0x1000) 2.597043368s ago: executing program 4 (id=1136): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000002600)={'syzkaller0\x00', 0x7101}) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000080)={0x1, 0x0, 0x100801f9, 0x1, 0xb94}) close(0xffffffffffffffff) r0 = gettid() timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=0x0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r3, 0x400455c8, 0x0) ioctl$sock_bt_hci(r2, 0x400448dd, &(0x7f00000003c0)) syz_usb_connect(0x0, 0x24, 0x0, 0x0) timer_settime(r1, 0x0, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) 2.332393829s ago: executing program 1 (id=1137): openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r0 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa082, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) rt_sigprocmask(0x2, &(0x7f00000000c0)={[0x8001]}, 0x0, 0x8) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x7f, 0x8000000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0xfff, 0xb3, 0x39da], 0x30000, 0x2010d3}) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x4000001}, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.284683721s ago: executing program 1 (id=1138): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x17, &(0x7f00000006c0)=0x400, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f) socket$inet(0x2, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) shutdown(r0, 0x1) 1.934565236s ago: executing program 0 (id=1139): r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000a1121710950b2a17f4f7010203010902240001000000000904fb00026c5d650009050402100000fa000905"], 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) 1.934006476s ago: executing program 3 (id=1140): openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x10b200, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000940)=@base={0x11, 0x4, 0x4, 0x2, 0x0, 0x1, 0x1}, 0x50) syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYBLOB='iocharset=cp850,fmask=00000000000000000064347,errors=remount-ro,iocharset=iso8859-7,fmask=00000000000000000000005,umask=00777777777777777777777,gid=', @ANYRESHEX=0x0, @ANYBLOB=',dmask=00000000000000000000001,errors=continue,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c686173682c6f626a5f726f6c653d2c7375626a5f726f6c653d637f5ccb912d6822372c6f626a5f747970653d3970002c6673636f6e7465788ce5d9947374656d5f752c00"], 0x1, 0x152f, &(0x7f00000037c0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000240)={0xa, 0x10001}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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") r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x441, 0x104) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f00000000c0)={0x9, 0x8, 0x7, 0x4, 0x4, 0x8}) r4 = socket$inet_udp(0x2, 0x2, 0x0) socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r4, 0x0, 0xb, 0x0, 0x0) recvfrom$inet(r4, 0x0, 0x0, 0x2042, 0x0, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0) pipe(0x0) pidfd_send_signal(0xffffffffffffffff, 0x1a, 0x0, 0x0) 969.110639ms ago: executing program 3 (id=1141): fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum64={0x81, 0x0, 0x0, 0x13, 0x0, 0x1, [{0xffffffff, 0x200, 0xf7000000}]}]}, {0x0, [0x61, 0x61, 0x0]}}, &(0x7f0000000500)=""/155, 0x26, 0x9b, 0x1}, 0x28) fsmount(0xffffffffffffffff, 0x0, 0x80) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) socketpair$unix(0x1, 0x3, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x380, 0xffffffff, 0x210, 0x210, 0x210, 0xffffffff, 0xffffffff, 0x2e8, 0x2e8, 0x2e8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xc0, 0xe8, 0x0, {0x100000000000000}, [@common=@inet=@socket2={{0x28}, 0x2}, @common=@ttl={{0x28}, {0x2, 0x4}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@uncond, 0x0, 0xc8, 0x128, 0x0, {}, [@common=@inet=@tcp={{0x30}, {[0x4e23, 0x4e20], [0x4e23, 0x4e21], 0x5, 0x10, 0x1a7, 0x1}}, @common=@icmp={{0x28}, {0x0, "54e9", 0x1}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x1, [0x2, 0x4, 0x6, 0x2, 0x4, 0x6], 0x6, 0x4}, {0x1, [0x1, 0x2, 0x1, 0x1, 0x2, 0x4], 0x3, 0x7}}}}, {{@uncond, 0x0, 0x98, 0xd8, 0x0, {}, [@common=@unspec=@cpu={{0x28}, {0xff}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x8, 0x5}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3e0) fsmount(0xffffffffffffffff, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) utimensat(r4, 0x0, 0x0, 0x0) write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x8) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) getdents64(r5, &(0x7f0000000400)=""/4096, 0xc00) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xffa1, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r6, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYBLOB="35874207"], 0x44}, 0x1, 0x0, 0x0, 0x50}, 0x0) 868.67932ms ago: executing program 2 (id=1142): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000280)='./bus\x00', 0x1200840, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x39a, &(0x7f00000002c0)="$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") r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) io_submit(0x0, 0x0, &(0x7f0000001d00)) 864.534149ms ago: executing program 1 (id=1143): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) shutdown(r0, 0x1) 681.980276ms ago: executing program 1 (id=1144): socket$nl_netfilter(0x10, 0x3, 0xc) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6) sched_setscheduler(r4, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) splice(r3, 0x0, r1, 0x0, 0xf3a, 0x0) fcntl$setpipe(r0, 0x407, 0x9) io_submit(0x0, 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000380)=ANY=[], 0x18c6) ustat(0x4, &(0x7f0000000000)) 84.613526ms ago: executing program 3 (id=1145): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000200)=@file={0x0, './file1\x00'}, 0x6e) sendmmsg$unix(r3, 0x0, 0x0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42, 0x0) socket$packet(0x11, 0x3, 0x300) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000d00), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_LINK_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000700)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="030700000000000000000800000068000480040007801300010062726f6164636173742d6c696e6b0000190007800800030000000000080002000000000008000300000000000800020000000000080003000000000004"], 0x7c}}, 0x0) 55.61241ms ago: executing program 2 (id=1146): sched_setscheduler(0x0, 0x2, &(0x7f0000000300)=0x7) r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x309}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f000050a000/0x13000)=nil, 0x13000}, 0x1}) readv(r0, &(0x7f00000002c0)=[{0x0}], 0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x18) 0s ago: executing program 4 (id=1147): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02262478fe4ecc6e7083b93dbdc872fffa3668e120269d5877fd64e43ad3d48c82d158d0d9671cc94ec1d41d429a2e4c08d10af2b2bc3f815c59d50a891f56f793f5"], 0x0, 0x96}, 0x28) openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) close(r1) r2 = open(&(0x7f0000000000)='./file0\x00', 0x400, 0x1a1) fcntl$setlease(r2, 0x400, 0x1) r3 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0) write$binfmt_script(r3, &(0x7f0000000340)={'#! ', './file0'}, 0xb) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) kernel console output (not intermixed with test programs): onfig 63 has no interface number 0 [ 96.975298][ T1426] Zero length message leads to an empty skb [ 96.986276][ T852] usb 5-1: config 63 interface 66 has no altsetting 0 [ 96.999216][ T1421] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 97.011472][ T852] usb 5-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 97.989997][ T852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 97.998572][ T852] usb 5-1: Product: syz [ 98.003060][ T852] usb 5-1: Manufacturer: syz [ 98.007842][ T852] usb 5-1: SerialNumber: syz [ 98.161604][ T1432] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1432 comm=syz.2.271 [ 98.215202][ T286] EXT4-fs (loop3): unmounting filesystem. [ 98.310190][ T284] EXT4-fs (loop2): unmounting filesystem. [ 98.367343][ T1434] fuse: Unknown parameter 'group_id00000000000000000000' [ 98.386262][ T852] usb 5-1: Found UVC 0.07 device syz (174f:8acf) [ 98.393935][ T852] usb 5-1: Failed to query (GET_INFO) UVC control 6 on unit 1: -71 (exp. 1). [ 98.403922][ T852] usb 5-1: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 98.414347][ T852] usb 5-1: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 98.423593][ T852] usb 5-1: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 99.559138][ T1440] netlink: 36 bytes leftover after parsing attributes in process `syz.0.276'. [ 99.573427][ T852] usb 5-1: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 99.597441][ T852] usb 5-1: No streaming interface found for terminal 29. [ 99.611997][ T852] uvcvideo 5-1:63.66: Entity type for entity Output 5 was not initialized! [ 99.671000][ T852] usb 5-1: USB disconnect, device number 16 [ 99.956587][ T28] audit: type=1400 audit(1772633962.930:211): avc: denied { create } for pid=1465 comm="syz.0.280" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 100.050454][ T852] usb 5-1: new full-speed USB device number 17 using dummy_hcd [ 100.242382][ T852] usb 5-1: unable to get BOS descriptor or descriptor too short [ 100.251416][ T852] usb 5-1: not running at top speed; connect to a high speed hub [ 100.261526][ T852] usb 5-1: config 63 has an invalid interface number: 66 but max is 0 [ 100.270156][ T852] usb 5-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 100.290400][ T852] usb 5-1: config 63 has no interface number 0 [ 100.298725][ T1471] loop2: detected capacity change from 0 to 256 [ 100.300064][ T852] usb 5-1: config 63 interface 66 has no altsetting 0 [ 100.315087][ T1471] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 100.328490][ T852] usb 5-1: string descriptor 0 read error: -22 [ 100.370759][ T852] usb 5-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 100.380861][ T852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 100.390963][ T852] usb 5-1: Found UVC 0.07 device (174f:8acf) [ 100.679118][ T852] usb 5-1: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 100.684811][ T1476] fuse: Bad value for 'user_id' [ 100.692739][ T852] usb 5-1: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 100.709424][ T852] usb 5-1: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 100.718812][ T852] usb 5-1: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 100.728303][ T852] usb 5-1: No streaming interface found for terminal 29. [ 100.736140][ T852] uvcvideo 5-1:63.66: Entity type for entity Output 5 was not initialized! [ 100.747073][ T852] usb 5-1: USB disconnect, device number 17 [ 100.853743][ T500] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 101.038552][ T1479] netlink: 36 bytes leftover after parsing attributes in process `syz.4.287'. [ 102.824561][ T1495] netlink: 36 bytes leftover after parsing attributes in process `syz.2.290'. [ 102.902086][ T500] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 103.855659][ T1498] netlink: 36 bytes leftover after parsing attributes in process `syz.2.293'. [ 103.876848][ T500] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 103.887372][ T500] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 103.900194][ T500] usb 2-1: config 0 descriptor?? [ 104.336431][ T500] usbhid 2-1:0.0: can't add hid device: -71 [ 104.346255][ T500] usbhid: probe of 2-1:0.0 failed with error -71 [ 104.359839][ T500] usb 2-1: USB disconnect, device number 12 [ 105.042626][ T1519] loop4: detected capacity change from 0 to 512 [ 105.118618][ T1519] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.292: inode has both inline data and extents flags [ 105.135280][ T1519] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.292: couldn't read orphan inode 15 (err -117) [ 105.148038][ T1519] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 105.200486][ T1511] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 105.286241][ T282] EXT4-fs (loop4): unmounting filesystem. [ 105.381826][ T1511] usb 2-1: unable to get BOS descriptor or descriptor too short [ 105.393704][ T1511] usb 2-1: config 63 has an invalid interface number: 66 but max is 0 [ 105.402332][ T1511] usb 2-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 105.412926][ T1511] usb 2-1: config 63 has no interface number 0 [ 105.419254][ T1511] usb 2-1: config 63 interface 66 has no altsetting 0 [ 105.441823][ T1511] usb 2-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 105.453042][ T1511] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 105.465572][ T1511] usb 2-1: Product: syz [ 105.471777][ T1511] usb 2-1: Manufacturer: syz [ 105.482875][ T1511] usb 2-1: SerialNumber: syz [ 105.676139][ T1534] loop3: detected capacity change from 0 to 512 [ 105.700882][ T1534] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal [ 105.771016][ T1511] usb 2-1: Found UVC 0.07 device syz (174f:8acf) [ 105.777730][ T1511] usb 2-1: Failed to query (GET_INFO) UVC control 6 on unit 1: -71 (exp. 1). [ 105.791972][ T1511] usb 2-1: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 105.803160][ T1511] usb 2-1: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 105.812974][ T1511] usb 2-1: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 105.823424][ T1511] usb 2-1: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 105.832893][ T1511] usb 2-1: No streaming interface found for terminal 29. [ 105.840307][ T1511] uvcvideo 2-1:63.66: Entity type for entity Output 5 was not initialized! [ 105.852134][ T1511] usb 2-1: USB disconnect, device number 13 [ 105.875882][ T1539] loop3: detected capacity change from 0 to 256 [ 105.887327][ T1539] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 106.352591][ T1511] usb 2-1: new full-speed USB device number 14 using dummy_hcd [ 106.592173][ T1511] usb 2-1: unable to get BOS descriptor or descriptor too short [ 106.600592][ T1511] usb 2-1: not running at top speed; connect to a high speed hub [ 106.609341][ T1511] usb 2-1: config 63 has an invalid interface number: 66 but max is 0 [ 106.618059][ T1511] usb 2-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 106.628476][ T1511] usb 2-1: config 63 has no interface number 0 [ 106.635362][ T1511] usb 2-1: config 63 interface 66 has no altsetting 0 [ 106.644797][ T1511] usb 2-1: string descriptor 0 read error: -22 [ 106.651175][ T1511] usb 2-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 106.660911][ T1511] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.693392][ T1511] usb 2-1: Found UVC 0.07 device (174f:8acf) [ 106.804470][ T1548] loop3: detected capacity change from 0 to 256 [ 106.817255][ T1548] FAT-fs (loop3): Directory bread(block 64) failed [ 106.824760][ T1548] FAT-fs (loop3): Directory bread(block 65) failed [ 106.831779][ T1548] FAT-fs (loop3): Directory bread(block 66) failed [ 106.838494][ T1548] FAT-fs (loop3): Directory bread(block 67) failed [ 106.846178][ T1548] FAT-fs (loop3): Directory bread(block 68) failed [ 106.852881][ T1548] FAT-fs (loop3): Directory bread(block 69) failed [ 106.859757][ T1548] FAT-fs (loop3): Directory bread(block 70) failed [ 106.867290][ T1548] FAT-fs (loop3): Directory bread(block 71) failed [ 106.874164][ T1548] FAT-fs (loop3): Directory bread(block 72) failed [ 106.882297][ T1548] FAT-fs (loop3): Directory bread(block 73) failed [ 107.259744][ T1094] kworker/u4:6: attempt to access beyond end of device [ 107.259744][ T1094] loop3: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 107.274612][ T1094] kworker/u4:6: attempt to access beyond end of device [ 107.274612][ T1094] loop3: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 107.292152][ T1094] kworker/u4:6: attempt to access beyond end of device [ 107.292152][ T1094] loop3: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 107.446724][ T1555] loop2: detected capacity change from 0 to 40427 [ 107.456056][ T1511] usb 2-1: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 107.473345][ T1511] usb 2-1: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 107.483558][ T404] I/O error, dev loop2, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 107.494329][ T1511] usb 2-1: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 107.518222][ T1511] usb 2-1: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 107.589761][ T1566] loop3: detected capacity change from 0 to 128 [ 107.596935][ T1566] EXT4-fs (loop3): Test dummy encryption mode enabled [ 107.623860][ T1511] usb 2-1: No streaming interface found for terminal 29. [ 107.633916][ T1511] uvcvideo 2-1:63.66: Entity type for entity Output 5 was not initialized! [ 107.649760][ T1566] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 107.659255][ T1566] ext4 filesystem being mounted at /62/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 107.990506][ T1571] ipt_REJECT: TCP_RESET invalid for non-tcp [ 108.040398][ T1571] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 108.670376][ T1511] usb 2-1: USB disconnect, device number 14 [ 108.830694][ T1585] loop2: detected capacity change from 0 to 16 [ 108.891573][ T1586] netlink: 28 bytes leftover after parsing attributes in process `syz.0.314'. [ 108.901402][ T1585] erofs: (device loop2): mounted with root inode @ nid 36. [ 109.864463][ T286] EXT4-fs (loop3): unmounting filesystem. [ 109.905490][ T1599] loop3: detected capacity change from 0 to 1024 [ 109.920074][ T1599] EXT4-fs: Ignoring removed nomblk_io_submit option [ 109.932180][ T1599] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 110.040987][ T1603] loop4: detected capacity change from 0 to 256 [ 110.051888][ T1603] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 111.474032][ T286] EXT4-fs (loop3): unmounting filesystem. [ 111.541535][ T1614] overlayfs: workdir and upperdir must be separate subtrees [ 111.980629][ T1640] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 111.989035][ T1640] overlayfs: overlapping lowerdir path [ 113.336301][ T1652] loop1: detected capacity change from 0 to 256 [ 113.393511][ T1652] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 113.640289][ T1663] netlink: 28 bytes leftover after parsing attributes in process `syz.4.333'. [ 113.700068][ T291] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 113.860390][ T291] usb 4-1: device descriptor read/64, error -71 [ 114.130380][ T291] usb 4-1: device descriptor read/64, error -71 [ 114.277474][ T1494] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 114.433395][ T1674] loop2: detected capacity change from 0 to 1024 [ 114.441948][ T1674] EXT4-fs: Ignoring removed nomblk_io_submit option [ 114.472771][ T291] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 114.492234][ T1674] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 114.581135][ T1494] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 114.592981][ T1494] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 114.604775][ T1494] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 114.614178][ T1494] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 114.622489][ T1494] usb 1-1: Product: syz [ 114.626867][ T1494] usb 1-1: Manufacturer: syz [ 114.630385][ T291] usb 4-1: device descriptor read/64, error -71 [ 114.631692][ T1494] usb 1-1: SerialNumber: syz [ 114.688228][ T1494] cdc_mbim 1-1:1.0: skipping garbage [ 114.874599][ T1668] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 114.900473][ T291] usb 4-1: device descriptor read/64, error -71 [ 115.020445][ T291] usb usb4-port1: attempt power cycle [ 115.328783][ T284] EXT4-fs (loop2): unmounting filesystem. [ 115.460406][ T291] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 115.485916][ T1668] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 115.491532][ T291] usb 4-1: device descriptor read/8, error -71 [ 115.493657][ T1494] cdc_mbim 1-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048 [ 115.507347][ T1494] cdc_mbim 1-1:1.0: setting rx_max = 2048 [ 115.641525][ T291] usb 4-1: device descriptor read/8, error -71 [ 115.702416][ T28] audit: type=1400 audit(1772633978.680:212): avc: denied { remount } for pid=1667 comm="syz.0.336" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 115.722895][ T1494] cdc_mbim 1-1:1.0: setting tx_max = 184 [ 115.729985][ T1494] cdc_mbim 1-1:1.0: cdc-wdm0: USB WDM device [ 115.737918][ T1494] cdc_mbim 1-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.0-1, CDC MBIM, 46:70:50:9c:b7:f3 [ 115.751288][ T1494] usb 1-1: USB disconnect, device number 14 [ 115.757570][ T1494] cdc_mbim 1-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.0-1, CDC MBIM [ 115.910384][ T291] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 115.972827][ T291] usb 4-1: device descriptor read/8, error -71 [ 116.169145][ T1732] loop4: detected capacity change from 0 to 128 [ 116.180221][ T1732] EXT4-fs (loop4): Test dummy encryption mode enabled [ 116.291886][ T291] usb 4-1: device descriptor read/8, error -71 [ 116.294321][ T1732] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 116.309031][ T1732] ext4 filesystem being mounted at /62/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 116.510843][ T291] usb usb4-port1: unable to enumerate USB device [ 116.975874][ T1743] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 116.984465][ T1743] overlayfs: overlapping lowerdir path [ 118.201092][ T282] EXT4-fs (loop4): unmounting filesystem. [ 118.285132][ T1756] loop2: detected capacity change from 0 to 1024 [ 118.308880][ T1756] EXT4-fs: Ignoring removed nomblk_io_submit option [ 118.371913][ T1756] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 118.424917][ T1769] fuse: Bad value for 'fd' [ 118.669529][ T1775] loop3: detected capacity change from 0 to 256 [ 118.697737][ T1775] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 119.440591][ T1494] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 119.588101][ T1511] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 119.679732][ T284] EXT4-fs (loop2): unmounting filesystem. [ 119.781442][ T1511] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 119.795819][ T1511] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 119.810411][ T1494] usb 2-1: device descriptor read/64, error -71 [ 119.811101][ T1511] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 119.826157][ T1511] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 119.834712][ T1511] usb 1-1: Product: syz [ 119.839167][ T1511] usb 1-1: Manufacturer: syz [ 119.844369][ T1511] usb 1-1: SerialNumber: syz [ 119.856176][ T1511] cdc_mbim 1-1:1.0: skipping garbage [ 119.972424][ T1797] ipt_REJECT: TCP_RESET invalid for non-tcp [ 120.054963][ T1780] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 120.081905][ T1494] usb 2-1: device descriptor read/64, error -71 [ 120.350455][ T1494] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 120.500394][ T1494] usb 2-1: device descriptor read/64, error -71 [ 120.663697][ T1780] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 120.671609][ T1511] cdc_mbim 1-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048 [ 120.679152][ T1511] cdc_mbim 1-1:1.0: setting rx_max = 2048 [ 121.105050][ T1807] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 121.106200][ T1808] loop2: detected capacity change from 0 to 128 [ 121.113422][ T1807] overlayfs: overlapping lowerdir path [ 121.124534][ T1494] usb 2-1: device descriptor read/64, error -71 [ 121.163847][ T1808] EXT4-fs (loop2): Test dummy encryption mode enabled [ 121.187269][ T1511] cdc_mbim 1-1:1.0: setting tx_max = 184 [ 121.300695][ T1494] usb usb2-port1: attempt power cycle [ 121.324729][ T1808] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 121.334887][ T1808] ext4 filesystem being mounted at /80/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 121.428452][ T1511] cdc_mbim 1-1:1.0: cdc-wdm0: USB WDM device [ 122.100425][ T1494] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 122.106359][ T1511] cdc_mbim 1-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.0-1, CDC MBIM, 22:30:3d:85:1c:13 [ 122.118590][ T1819] netlink: 36 bytes leftover after parsing attributes in process `syz.4.370'. [ 122.119265][ T284] EXT4-fs (loop2): unmounting filesystem. [ 122.129382][ T1511] usb 1-1: USB disconnect, device number 15 [ 122.162035][ T1511] cdc_mbim 1-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.0-1, CDC MBIM [ 122.320414][ T1494] usb 2-1: device descriptor read/8, error -71 [ 122.434997][ T1826] loop1: detected capacity change from 0 to 512 [ 122.465763][ T1826] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal [ 122.481795][ T1494] usb 2-1: device descriptor read/8, error -71 [ 122.630645][ T1845] netlink: 28 bytes leftover after parsing attributes in process `syz.2.375'. [ 123.643689][ T1895] ipt_REJECT: TCP_RESET invalid for non-tcp [ 123.653260][ T1895] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 123.727153][ T1897] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 123.840463][ T852] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 123.904291][ T1903] loop4: detected capacity change from 0 to 256 [ 123.911571][ T1903] exfat: Bad value for 'umask' [ 123.975932][ T1494] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 124.051920][ T1494] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 124.064068][ T1494] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 124.076551][ T1494] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 124.086470][ T1494] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 124.095287][ T1494] usb 2-1: Product: syz [ 124.100402][ T1494] usb 2-1: Manufacturer: syz [ 124.105869][ T852] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 124.117233][ T1494] usb 2-1: SerialNumber: syz [ 124.124190][ T852] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 124.139638][ T1905] loop4: detected capacity change from 0 to 128 [ 124.148821][ T1905] EXT4-fs (loop4): Test dummy encryption mode enabled [ 124.179108][ T852] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 124.197809][ T1494] cdc_mbim 2-1:1.0: skipping garbage [ 124.242222][ T1905] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 124.252291][ T1905] ext4 filesystem being mounted at /70/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 124.392806][ T1883] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 125.171023][ T1905] fscrypt (loop4): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 125.244641][ T282] EXT4-fs (loop4): unmounting filesystem. [ 125.282883][ T1914] netlink: 36 bytes leftover after parsing attributes in process `syz.3.389'. [ 125.339865][ T852] usb 1-1: config 0 descriptor?? [ 125.569768][ T1917] loop3: detected capacity change from 0 to 512 [ 125.620830][ T1917] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal [ 125.665004][ T1883] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 125.680955][ T1494] cdc_mbim 2-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048 [ 125.690877][ T1494] cdc_mbim 2-1:1.0: setting rx_max = 2048 [ 125.762150][ T1920] loop2: detected capacity change from 0 to 256 [ 125.787394][ T1920] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 125.807934][ T852] keytouch 0003:0926:3333.000B: fixing up Keytouch IEC report descriptor [ 125.913360][ T1494] cdc_mbim 2-1:1.0: setting tx_max = 184 [ 125.924904][ T1494] cdc_mbim 2-1:1.0: cdc-wdm0: USB WDM device [ 125.932620][ T852] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.000B/input/input15 [ 125.958793][ T1494] cdc_mbim 2-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.1-1, CDC MBIM, 52:e5:3d:7b:85:2b [ 125.977939][ T1494] usb 2-1: USB disconnect, device number 18 [ 125.985375][ T1494] cdc_mbim 2-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.1-1, CDC MBIM [ 126.055686][ T1934] netlink: 28 bytes leftover after parsing attributes in process `syz.4.390'. [ 126.231021][ T852] keytouch 0003:0926:3333.000B: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0 [ 126.452694][ T291] usb 1-1: USB disconnect, device number 16 [ 126.887060][ T1972] loop4: detected capacity change from 0 to 256 [ 126.915329][ T1972] FAT-fs (loop4): Directory bread(block 64) failed [ 126.938311][ T1972] FAT-fs (loop4): Directory bread(block 65) failed [ 126.950760][ T1972] FAT-fs (loop4): Directory bread(block 66) failed [ 126.974492][ T1972] FAT-fs (loop4): Directory bread(block 67) failed [ 126.982191][ T1972] FAT-fs (loop4): Directory bread(block 68) failed [ 126.989139][ T1972] FAT-fs (loop4): Directory bread(block 69) failed [ 126.996179][ T1972] FAT-fs (loop4): Directory bread(block 70) failed [ 127.003426][ T1972] FAT-fs (loop4): Directory bread(block 71) failed [ 127.010271][ T1972] FAT-fs (loop4): Directory bread(block 72) failed [ 127.017492][ T1972] FAT-fs (loop4): Directory bread(block 73) failed [ 127.030219][ T1966] loop1: detected capacity change from 0 to 40427 [ 127.130930][ T1982] loop2: detected capacity change from 0 to 128 [ 127.224658][ T1984] loop3: detected capacity change from 0 to 512 [ 127.253652][ T1982] EXT4-fs (loop2): Test dummy encryption mode enabled [ 127.347533][ T405] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 127.456604][ T1982] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 127.466093][ T1982] ext4 filesystem being mounted at /89/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 127.553988][ T1984] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal [ 128.026180][ T1991] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 128.118701][ T284] EXT4-fs (loop2): unmounting filesystem. [ 128.141227][ T1094] kworker/u4:6: attempt to access beyond end of device [ 128.141227][ T1094] loop4: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 128.191416][ T1094] kworker/u4:6: attempt to access beyond end of device [ 128.191416][ T1094] loop4: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 128.214449][ T1094] kworker/u4:6: attempt to access beyond end of device [ 128.214449][ T1094] loop4: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 128.285530][ T2011] loop1: detected capacity change from 0 to 16 [ 128.292688][ T2011] erofs: (device loop1): mounted with root inode @ nid 36. [ 129.100666][ T2026] netlink: 28 bytes leftover after parsing attributes in process `syz.0.411'. [ 129.260387][ T1511] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 129.441573][ T1511] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 129.452884][ T1511] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 129.481077][ T1511] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 129.490472][ T1511] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 129.498833][ T1511] usb 2-1: Product: syz [ 129.503263][ T1511] usb 2-1: Manufacturer: syz [ 129.508219][ T1511] usb 2-1: SerialNumber: syz [ 129.520775][ T1511] cdc_mbim 2-1:1.0: skipping garbage [ 129.732831][ T2022] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 129.761825][ T2036] loop4: detected capacity change from 0 to 512 [ 129.802272][ T2036] EXT4-fs (loop4): can't mount with journal_checksum, fs mounted w/o journal [ 129.904654][ T2041] loop4: detected capacity change from 0 to 256 [ 129.930258][ T2041] FAT-fs (loop4): Directory bread(block 64) failed [ 129.943149][ T2041] FAT-fs (loop4): Directory bread(block 65) failed [ 129.950143][ T2041] FAT-fs (loop4): Directory bread(block 66) failed [ 129.958447][ T2041] FAT-fs (loop4): Directory bread(block 67) failed [ 129.966218][ T2041] FAT-fs (loop4): Directory bread(block 68) failed [ 129.973328][ T2041] FAT-fs (loop4): Directory bread(block 69) failed [ 129.980112][ T2041] FAT-fs (loop4): Directory bread(block 70) failed [ 129.986896][ T2041] FAT-fs (loop4): Directory bread(block 71) failed [ 129.993667][ T2041] FAT-fs (loop4): Directory bread(block 72) failed [ 130.000245][ T2041] FAT-fs (loop4): Directory bread(block 73) failed [ 131.261595][ T2047] loop3: detected capacity change from 0 to 128 [ 131.434272][ T2047] EXT4-fs (loop3): Test dummy encryption mode enabled [ 131.443900][ T388] kworker/u4:5: attempt to access beyond end of device [ 131.443900][ T388] loop4: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 131.464471][ T2048] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 131.589969][ T2047] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 131.599904][ T2047] ext4 filesystem being mounted at /89/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 131.694484][ T388] kworker/u4:5: attempt to access beyond end of device [ 131.694484][ T388] loop4: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 131.836803][ T388] kworker/u4:5: attempt to access beyond end of device [ 131.836803][ T388] loop4: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 132.305688][ T1511] cdc_mbim 2-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048 [ 132.325068][ T1511] cdc_mbim 2-1:1.0: setting rx_max = 2048 [ 132.471113][ T1511] cdc_mbim 2-1:1.0: setting tx_max = 184 [ 132.471955][ T286] EXT4-fs (loop3): unmounting filesystem. [ 132.478352][ T1511] cdc_mbim 2-1:1.0: cdc-wdm0: USB WDM device [ 132.720335][ C0] sched: RT throttling activated [ 132.722774][ T1511] cdc_mbim 2-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.1-1, CDC MBIM, 9a:cc:ae:a3:02:ae [ 132.861289][ T1511] usb 2-1: USB disconnect, device number 19 [ 132.869162][ T1511] cdc_mbim 2-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.1-1, CDC MBIM [ 133.352194][ T2109] ipt_REJECT: TCP_RESET invalid for non-tcp [ 133.358707][ T2109] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 133.367062][ T2109] overlayfs: overlapping lowerdir path [ 133.599130][ T2117] loop3: detected capacity change from 0 to 40427 [ 133.608380][ T2117] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 133.616244][ T2117] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 133.625090][ T2117] F2FS-fs (loop3): invalid crc value [ 133.632098][ T2117] F2FS-fs (loop3): Found nat_bits in checkpoint [ 133.655846][ T2117] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 133.663020][ T2117] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 133.691480][ T337] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 133.701167][ T337] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 134.196807][ T2128] netlink: 28 bytes leftover after parsing attributes in process `syz.4.430'. [ 134.813125][ T2143] netlink: 36 bytes leftover after parsing attributes in process `syz.3.435'. [ 134.914653][ T2145] fuse: Bad value for 'rootmode' [ 135.910624][ T2158] loop3: detected capacity change from 0 to 40427 [ 135.921218][ T2158] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 135.929542][ T2158] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 135.948734][ T2158] F2FS-fs (loop3): invalid crc value [ 135.955575][ T2158] F2FS-fs (loop3): Found nat_bits in checkpoint [ 136.002327][ T2158] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 136.009604][ T2158] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 136.076755][ T1094] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 136.086889][ T1094] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 137.138972][ T2191] fuse: Bad value for 'rootmode' [ 137.395850][ T2196] loop1: detected capacity change from 0 to 256 [ 137.412949][ T2196] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001) [ 137.412998][ T2196] FAT-fs (loop1): Filesystem has been set read-only [ 138.119795][ T2200] netlink: 36 bytes leftover after parsing attributes in process `syz.2.452'. [ 138.549626][ T2208] netlink: 36 bytes leftover after parsing attributes in process `syz.0.454'. [ 139.336361][ T2198] loop3: detected capacity change from 0 to 40427 [ 139.766723][ T2233] ipt_REJECT: TCP_RESET invalid for non-tcp [ 140.576221][ T2198] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 140.601297][ T2198] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 140.710634][ T2198] F2FS-fs (loop3): invalid crc value [ 140.716177][ T2198] F2FS-fs (loop3): Failed to start F2FS issue_checkpoint_thread (-4) [ 141.360522][ T2248] netlink: 28 bytes leftover after parsing attributes in process `syz.2.456'. [ 141.477725][ T1494] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 141.485687][ T2249] ipt_REJECT: TCP_RESET invalid for non-tcp [ 141.492445][ T2249] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 141.500865][ T2249] overlayfs: overlapping lowerdir path [ 141.942390][ T1494] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 141.977998][ T1494] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 142.068464][ T1494] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 142.082993][ T1494] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 142.092057][ T1494] usb 5-1: Product: syz [ 142.096284][ T1494] usb 5-1: Manufacturer: syz [ 142.101358][ T1494] usb 5-1: SerialNumber: syz [ 142.113523][ T1494] cdc_mbim 5-1:1.0: skipping garbage [ 142.316062][ T2242] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 142.663983][ T2275] fuse: Unknown parameter 'use00000000000000000000' [ 142.804113][ T2273] loop3: detected capacity change from 0 to 40427 [ 142.818664][ T2273] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 142.998023][ T2242] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 143.010637][ T2273] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 143.120915][ T1494] cdc_mbim 5-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048 [ 143.128967][ T2273] F2FS-fs (loop3): invalid crc value [ 143.132731][ T1494] cdc_mbim 5-1:1.0: setting rx_max = 2048 [ 143.150856][ T2273] F2FS-fs (loop3): Found nat_bits in checkpoint [ 143.206102][ T2273] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 143.213531][ T2273] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 143.288351][ T2287] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 143.349473][ T1494] cdc_mbim 5-1:1.0: setting tx_max = 184 [ 143.384406][ T1494] cdc_mbim 5-1:1.0: cdc-wdm0: USB WDM device [ 143.409648][ T1494] cdc_mbim 5-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.4-1, CDC MBIM, 2e:f7:e7:0a:69:6f [ 143.429443][ T337] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 143.439129][ T337] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 143.468069][ T1494] usb 5-1: USB disconnect, device number 18 [ 143.475981][ T1494] cdc_mbim 5-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.4-1, CDC MBIM [ 144.905659][ T2342] fuse: Unknown parameter 'use00000000000000000000' [ 145.188878][ T2356] ipt_REJECT: TCP_RESET invalid for non-tcp [ 145.905698][ T2345] loop1: detected capacity change from 0 to 40427 [ 145.931501][ T2345] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 145.950425][ T2345] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 145.969183][ T2345] F2FS-fs (loop1): invalid crc value [ 145.985631][ T2345] F2FS-fs (loop1): Found nat_bits in checkpoint [ 146.058555][ T2364] loop2: detected capacity change from 0 to 512 [ 146.093562][ T2345] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 146.142187][ T2345] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 146.248226][ T2364] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal [ 146.262756][ T337] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 146.272238][ T337] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 146.994387][ T2386] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 147.096621][ T2389] loop1: detected capacity change from 0 to 1024 [ 147.115770][ T2389] EXT4-fs: Ignoring removed nomblk_io_submit option [ 147.184576][ T2389] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 147.258330][ T2398] fuse: Unknown parameter 'use00000000000000000000' [ 148.632162][ T2405] netlink: 36 bytes leftover after parsing attributes in process `syz.0.503'. [ 148.670849][ T283] EXT4-fs (loop1): unmounting filesystem. [ 148.998474][ T2413] netlink: 28 bytes leftover after parsing attributes in process `syz.2.508'. [ 149.186240][ T2420] ipt_REJECT: TCP_RESET invalid for non-tcp [ 149.425039][ T2426] loop2: detected capacity change from 0 to 256 [ 149.444265][ T2426] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001) [ 149.452405][ T2426] FAT-fs (loop2): Filesystem has been set read-only [ 150.245777][ T2435] fuse: Unknown parameter 'user_i00000000000000000000' [ 150.469429][ T2441] loop3: detected capacity change from 0 to 1024 [ 150.486765][ T2441] EXT4-fs: Ignoring removed nomblk_io_submit option [ 150.745360][ T2441] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 151.379988][ T286] EXT4-fs (loop3): unmounting filesystem. [ 151.397268][ T2436] loop2: detected capacity change from 0 to 40427 [ 151.581649][ T2458] netlink: 36 bytes leftover after parsing attributes in process `syz.4.517'. [ 152.017874][ T2469] loop1: detected capacity change from 0 to 1024 [ 152.027961][ T2469] EXT4-fs: Ignoring removed nomblk_io_submit option [ 152.052734][ T2469] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 152.182200][ T2477] loop2: detected capacity change from 0 to 16 [ 152.203047][ T2477] erofs: (device loop2): mounted with root inode @ nid 36. [ 152.224318][ T2476] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2476 comm=syz.1.522 [ 152.730242][ T2482] fuse: Unknown parameter 'user_i00000000000000000000' [ 152.869629][ T283] EXT4-fs (loop1): unmounting filesystem. [ 152.942173][ T2492] loop2: detected capacity change from 0 to 1024 [ 152.949217][ T2495] ipt_REJECT: TCP_RESET invalid for non-tcp [ 152.958187][ T2492] EXT4-fs: Ignoring removed nomblk_io_submit option [ 153.334753][ T2492] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 153.460373][ T6] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 154.538855][ T6] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 155.288510][ T2514] netlink: 36 bytes leftover after parsing attributes in process `syz.0.534'. [ 155.391707][ T6] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 155.400974][ T6] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 155.410031][ T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 155.422649][ T6] usb 2-1: config 0 descriptor?? [ 155.733716][ T284] EXT4-fs (loop2): unmounting filesystem. [ 155.788364][ T2525] loop4: detected capacity change from 0 to 40427 [ 155.822361][ T2530] ipt_REJECT: TCP_RESET invalid for non-tcp [ 155.829053][ T2530] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 155.837516][ T2530] overlayfs: overlapping lowerdir path [ 156.039428][ T2535] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2535 comm=syz.0.539 [ 156.053720][ T2539] loop4: detected capacity change from 0 to 16 [ 156.062423][ T2539] erofs: (device loop4): mounted with root inode @ nid 36. [ 156.895474][ T2526] syz.3.537 (2526) used greatest stack depth: 21824 bytes left [ 156.956934][ T290] usb 2-1: USB disconnect, device number 20 [ 156.980750][ T2548] loop2: detected capacity change from 0 to 256 [ 158.883562][ T2548] FAT-fs (loop2): Directory bread(block 64) failed [ 159.019620][ T2548] FAT-fs (loop2): Directory bread(block 65) failed [ 159.059692][ T2548] FAT-fs (loop2): Directory bread(block 66) failed [ 159.358035][ T2567] ipt_REJECT: TCP_RESET invalid for non-tcp [ 159.431315][ T2564] netlink: 36 bytes leftover after parsing attributes in process `syz.1.545'. [ 159.464600][ T2548] FAT-fs (loop2): Directory bread(block 67) failed [ 159.509695][ T2548] FAT-fs (loop2): Directory bread(block 68) failed [ 159.586604][ T2572] ipt_REJECT: TCP_RESET invalid for non-tcp [ 159.593226][ T2572] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 159.600821][ T2548] FAT-fs (loop2): Directory bread(block 69) failed [ 159.601592][ T2572] overlayfs: overlapping lowerdir path [ 159.608104][ T2548] FAT-fs (loop2): Directory bread(block 70) failed [ 159.624825][ T2548] FAT-fs (loop2): Directory bread(block 71) failed [ 159.631790][ T2548] FAT-fs (loop2): Directory bread(block 72) failed [ 159.638390][ T2548] FAT-fs (loop2): Directory bread(block 73) failed [ 159.798827][ T2579] loop3: detected capacity change from 0 to 128 [ 159.822657][ T2580] netlink: 28 bytes leftover after parsing attributes in process `syz.4.550'. [ 160.236705][ T2579] EXT4-fs (loop3): Test dummy encryption mode enabled [ 160.400504][ T334] kworker/u4:3: attempt to access beyond end of device [ 160.400504][ T334] loop2: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 160.482794][ T2579] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 160.560431][ T2579] ext4 filesystem being mounted at /114/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 160.590767][ T334] kworker/u4:3: attempt to access beyond end of device [ 160.590767][ T334] loop2: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 161.641601][ T334] kworker/u4:3: attempt to access beyond end of device [ 161.641601][ T334] loop2: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 162.553292][ T2595] ipt_REJECT: TCP_RESET invalid for non-tcp [ 162.560018][ T2595] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 162.909470][ T286] EXT4-fs (loop3): unmounting filesystem. [ 162.914421][ T2602] loop1: detected capacity change from 0 to 1024 [ 162.923841][ T2602] EXT4-fs: Ignoring removed nomblk_io_submit option [ 163.004316][ T2602] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 165.793292][ T2616] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2616 comm=syz.1.551 [ 165.964099][ T2622] loop4: detected capacity change from 0 to 40427 [ 166.116280][ T283] EXT4-fs (loop1): unmounting filesystem. [ 166.469361][ T2627] ipt_REJECT: TCP_RESET invalid for non-tcp [ 166.575403][ T2631] loop4: detected capacity change from 0 to 16 [ 166.997056][ T2631] erofs: (device loop4): mounted with root inode @ nid 36. [ 167.359401][ T2629] netlink: 36 bytes leftover after parsing attributes in process `syz.1.561'. [ 167.419562][ T2635] loop3: detected capacity change from 0 to 256 [ 167.590060][ T2640] netlink: 28 bytes leftover after parsing attributes in process `syz.0.564'. [ 167.786619][ T2635] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 167.903110][ T2644] loop4: detected capacity change from 0 to 256 [ 168.264064][ T2643] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001) [ 168.272122][ T2643] FAT-fs (loop4): Filesystem has been set read-only [ 169.283235][ T2651] loop3: detected capacity change from 0 to 256 [ 169.402943][ T2653] netlink: 36 bytes leftover after parsing attributes in process `syz.0.568'. [ 169.491236][ T2651] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 171.125706][ T2666] loop4: detected capacity change from 0 to 1024 [ 171.134021][ T2666] EXT4-fs: Ignoring removed nomblk_io_submit option [ 171.187107][ T2666] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 171.775089][ T2676] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2676 comm=syz.4.572 [ 172.032032][ T2674] netlink: 52 bytes leftover after parsing attributes in process `syz.3.573'. [ 172.180289][ T282] EXT4-fs (loop4): unmounting filesystem. [ 172.345518][ T2686] ipt_REJECT: TCP_RESET invalid for non-tcp [ 172.355193][ T2686] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 172.654220][ T2688] netlink: 36 bytes leftover after parsing attributes in process `syz.2.574'. [ 173.434967][ T2694] netlink: 36 bytes leftover after parsing attributes in process `syz.2.577'. [ 173.652022][ T2699] netlink: 28 bytes leftover after parsing attributes in process `syz.1.579'. [ 175.543481][ T2709] loop1: detected capacity change from 0 to 256 [ 175.576824][ T2707] ipt_REJECT: TCP_RESET invalid for non-tcp [ 175.652015][ T2714] loop3: detected capacity change from 0 to 256 [ 175.659940][ T2714] exfat: Bad value for 'umask' [ 175.676118][ T2709] FAT-fs (loop1): Directory bread(block 64) failed [ 175.694392][ T405] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 176.213432][ T2709] FAT-fs (loop1): Directory bread(block 65) failed [ 176.230727][ T2709] FAT-fs (loop1): Directory bread(block 66) failed [ 176.239792][ T2709] FAT-fs (loop1): Directory bread(block 67) failed [ 176.276927][ T2709] FAT-fs (loop1): Directory bread(block 68) failed [ 176.283774][ T2709] FAT-fs (loop1): Directory bread(block 69) failed [ 176.291415][ T2709] FAT-fs (loop1): Directory bread(block 70) failed [ 176.298579][ T2709] FAT-fs (loop1): Directory bread(block 71) failed [ 176.307784][ T2709] FAT-fs (loop1): Directory bread(block 72) failed [ 176.314746][ T2709] FAT-fs (loop1): Directory bread(block 73) failed [ 176.380387][ T2722] loop3: detected capacity change from 0 to 128 [ 176.403859][ T2722] EXT4-fs (loop3): Test dummy encryption mode enabled [ 176.949029][ T2722] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 176.961192][ T2722] ext4 filesystem being mounted at /121/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 177.191349][ T2726] netlink: 52 bytes leftover after parsing attributes in process `syz.4.586'. [ 178.529745][ T2722] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 178.579765][ T286] EXT4-fs (loop3): unmounting filesystem. [ 180.559096][ T2754] loop4: detected capacity change from 0 to 256 [ 180.566187][ T2754] exfat: Bad value for 'umask' [ 180.794774][ T2759] netlink: 28 bytes leftover after parsing attributes in process `syz.2.593'. [ 181.315136][ T2766] ipt_REJECT: TCP_RESET invalid for non-tcp [ 181.541689][ T2768] loop4: detected capacity change from 0 to 128 [ 181.784539][ T2768] EXT4-fs (loop4): Test dummy encryption mode enabled [ 181.918088][ T2769] netlink: 36 bytes leftover after parsing attributes in process `syz.3.594'. [ 182.543769][ T2768] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 182.553477][ T2768] ext4 filesystem being mounted at /105/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 183.034690][ T2768] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 184.180098][ T2786] netlink: 52 bytes leftover after parsing attributes in process `syz.1.601'. [ 184.217451][ T282] EXT4-fs (loop4): unmounting filesystem. [ 184.310401][ T550] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 184.766215][ T2807] loop4: detected capacity change from 0 to 1024 [ 184.838619][ T2807] EXT4-fs: Ignoring removed nomblk_io_submit option [ 187.754191][ T2807] EXT4-fs warning (device loop4): ext4_multi_mount_protect:404: Unable to create kmmpd thread for loop4. [ 190.002022][ T2853] netlink: 44 bytes leftover after parsing attributes in process `syz.1.615'. [ 193.158664][ T2883] fuse: Unknown parameter '0x0000000000000003' [ 193.200846][ T2889] loop1: detected capacity change from 0 to 256 [ 193.207683][ T2889] exfat: Bad value for 'umask' [ 193.347004][ T2896] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2896 comm=syz.0.625 [ 194.590577][ T2904] loop1: detected capacity change from 0 to 128 [ 194.656874][ T2901] loop4: detected capacity change from 0 to 256 [ 194.663557][ T2901] exfat: Bad value for 'gid' [ 194.781440][ T2904] EXT4-fs (loop1): Test dummy encryption mode enabled [ 195.925116][ T2904] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 195.934751][ T2904] ext4 filesystem being mounted at /123/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 196.169696][ T2897] EXT4-fs warning (device loop1): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 196.170683][ T28] audit: type=1400 audit(1772634059.140:213): avc: denied { ioctl } for pid=2888 comm="syz.1.619" path="/123/mnt/file1" dev="loop1" ino=12 ioctlcmd=0x6608 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 198.319000][ T283] EXT4-fs (loop1): unmounting filesystem. [ 199.482228][ T2950] netlink: 36 bytes leftover after parsing attributes in process `syz.0.638'. [ 199.958750][ T2956] netlink: 28 bytes leftover after parsing attributes in process `syz.2.642'. [ 200.013071][ T2957] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 203.869550][ T2995] loop2: detected capacity change from 0 to 256 [ 203.904004][ T2995] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 204.633199][ T3005] ipt_REJECT: TCP_RESET invalid for non-tcp [ 205.456612][ T3005] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 206.209720][ T3017] loop2: detected capacity change from 0 to 1024 [ 206.400153][ T3022] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 206.414439][ T3017] EXT4-fs: Ignoring removed nomblk_io_submit option [ 206.440687][ T3020] netlink: 36 bytes leftover after parsing attributes in process `syz.1.654'. [ 206.883355][ T3017] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 206.945969][ T3029] loop1: detected capacity change from 0 to 256 [ 207.103222][ T3031] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3031 comm=syz.2.655 [ 207.129778][ T3029] FAT-fs (loop1): Directory bread(block 64) failed [ 207.176733][ T3029] FAT-fs (loop1): Directory bread(block 65) failed [ 207.310452][ T3029] FAT-fs (loop1): Directory bread(block 66) failed [ 207.328255][ T3029] FAT-fs (loop1): Directory bread(block 67) failed [ 207.337106][ T284] EXT4-fs (loop2): unmounting filesystem. [ 207.338777][ T3029] FAT-fs (loop1): Directory bread(block 68) failed [ 207.357910][ T3029] FAT-fs (loop1): Directory bread(block 69) failed [ 207.365581][ T3029] FAT-fs (loop1): Directory bread(block 70) failed [ 207.373131][ T3029] FAT-fs (loop1): Directory bread(block 71) failed [ 207.379909][ T3029] FAT-fs (loop1): Directory bread(block 72) failed [ 207.388532][ T3029] FAT-fs (loop1): Directory bread(block 73) failed [ 208.577125][ T3055] loop2: detected capacity change from 0 to 256 [ 208.586436][ T3055] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 210.134674][ T337] kworker/u4:4: attempt to access beyond end of device [ 210.134674][ T337] loop1: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 210.161809][ T337] kworker/u4:4: attempt to access beyond end of device [ 210.161809][ T337] loop1: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 210.177368][ T337] kworker/u4:4: attempt to access beyond end of device [ 210.177368][ T337] loop1: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 210.670798][ T3077] loop2: detected capacity change from 0 to 1024 [ 210.683446][ T3077] EXT4-fs: Ignoring removed nomblk_io_submit option [ 210.723581][ T3077] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 211.606244][ T3089] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3089 comm=syz.2.672 [ 212.003259][ T3095] netlink: 36 bytes leftover after parsing attributes in process `syz.3.668'. [ 212.035309][ T284] EXT4-fs (loop2): unmounting filesystem. [ 212.835712][ T3103] loop4: detected capacity change from 0 to 256 [ 212.845341][ T3103] exfat: Bad value for 'umask' [ 213.468768][ T3113] ipt_REJECT: TCP_RESET invalid for non-tcp [ 213.715822][ T3114] netlink: 36 bytes leftover after parsing attributes in process `syz.4.679'. [ 214.030407][ T410] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 214.484036][ T410] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 214.495017][ T410] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 214.513086][ T410] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 214.534199][ T410] usb 3-1: config 0 descriptor?? [ 214.541050][ T410] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 217.006866][ T1494] usb 3-1: USB disconnect, device number 8 [ 217.142145][ T3153] loop3: detected capacity change from 0 to 256 [ 217.149500][ T3153] exfat: Bad value for 'umask' [ 217.887281][ T3165] netlink: 36 bytes leftover after parsing attributes in process `syz.2.691'. [ 218.077087][ T405] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 218.466938][ T3171] netlink: 36 bytes leftover after parsing attributes in process `syz.4.692'. [ 219.063489][ T3179] netlink: 36 bytes leftover after parsing attributes in process `syz.0.687'. [ 219.503901][ T3191] loop1: detected capacity change from 0 to 128 [ 221.365190][ T3191] EXT4-fs (loop1): Test dummy encryption mode enabled [ 221.709998][ T3191] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 221.731536][ T3191] ext4 filesystem being mounted at /133/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 221.902824][ T3205] overlayfs: statfs failed on './file0' [ 222.258629][ T3211] netlink: 36 bytes leftover after parsing attributes in process `syz.0.699'. [ 222.321467][ T3214] loop3: detected capacity change from 0 to 256 [ 222.475431][ T3214] exfat: Bad value for 'umask' [ 224.047082][ T3228] loop4: detected capacity change from 0 to 256 [ 224.172842][ T3228] exfat: Bad value for 'umask' [ 224.493972][ T3234] ipt_REJECT: TCP_RESET invalid for non-tcp [ 224.616131][ T3238] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 224.650654][ T3238] overlayfs: overlapping lowerdir path [ 225.033731][ T3248] loop4: detected capacity change from 0 to 256 [ 225.507382][ T3248] exfat: Bad value for 'umask' [ 225.523358][ T3250] netlink: 36 bytes leftover after parsing attributes in process `syz.2.713'. [ 225.966477][ T3257] loop4: detected capacity change from 0 to 128 [ 225.982866][ T3257] EXT4-fs (loop4): Test dummy encryption mode enabled [ 226.040545][ T3257] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 226.050058][ T3257] ext4 filesystem being mounted at /131/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 227.109364][ T282] EXT4-fs (loop4): unmounting filesystem. [ 228.003590][ T283] EXT4-fs (loop1): unmounting filesystem. [ 228.767838][ T3278] netlink: 36 bytes leftover after parsing attributes in process `syz.4.718'. [ 228.949925][ T3279] loop3: detected capacity change from 0 to 256 [ 228.971735][ T3279] exfat: Bad value for 'umask' [ 230.048451][ T404] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 230.617564][ T3294] loop1: detected capacity change from 0 to 256 [ 230.681040][ T3296] loop3: detected capacity change from 0 to 128 [ 230.693443][ T3296] EXT4-fs (loop3): Test dummy encryption mode enabled [ 230.721392][ T3294] exfat: Bad value for 'umask' [ 230.757171][ T28] audit: type=1400 audit(1772634093.730:214): avc: denied { connect } for pid=3299 comm="syz.2.726" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 231.075978][ T3296] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 231.086168][ T3296] ext4 filesystem being mounted at /151/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 231.110187][ T3296] EXT4-fs warning (device loop3): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 231.535690][ T404] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 231.547379][ T3315] loop2: detected capacity change from 0 to 256 [ 231.722948][ T3315] exfat: Bad value for 'umask' [ 232.001111][ T286] EXT4-fs (loop3): unmounting filesystem. [ 232.147517][ T3323] loop2: detected capacity change from 0 to 128 [ 232.176374][ T3323] EXT4-fs (loop2): Test dummy encryption mode enabled [ 232.206678][ T3323] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 232.216276][ T3323] ext4 filesystem being mounted at /157/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 232.266033][ T3323] EXT4-fs warning (device loop2): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 233.270440][ T3331] ipt_REJECT: TCP_RESET invalid for non-tcp [ 233.770608][ T3331] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 235.095591][ T284] EXT4-fs (loop2): unmounting filesystem. [ 235.256656][ T3341] loop2: detected capacity change from 0 to 256 [ 235.266491][ T3341] exfat: Bad value for 'umask' [ 236.425142][ T3350] loop2: detected capacity change from 0 to 128 [ 236.434384][ T3350] EXT4-fs (loop2): Test dummy encryption mode enabled [ 236.888810][ T3350] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 236.901793][ T3350] ext4 filesystem being mounted at /158/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 236.928470][ T3350] EXT4-fs warning (device loop2): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 238.339805][ T284] EXT4-fs (loop2): unmounting filesystem. [ 238.417085][ T3361] loop4: detected capacity change from 0 to 256 [ 238.448174][ T3361] exfat: Bad value for 'umask' [ 242.077543][ T3382] loop4: detected capacity change from 0 to 128 [ 242.160811][ T3382] EXT4-fs (loop4): Test dummy encryption mode enabled [ 242.247361][ T3382] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 242.257877][ T3382] ext4 filesystem being mounted at /138/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 242.314106][ T3382] EXT4-fs warning (device loop4): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 242.898220][ T3387] loop1: detected capacity change from 0 to 1024 [ 242.941106][ T3387] EXT4-fs: Ignoring removed nomblk_io_submit option [ 242.980850][ T3387] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 243.079955][ T282] EXT4-fs (loop4): unmounting filesystem. [ 244.803795][ T3394] netlink: 36 bytes leftover after parsing attributes in process `syz.0.747'. [ 244.919343][ T283] EXT4-fs (loop1): unmounting filesystem. [ 246.090726][ T1494] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 246.280359][ T1494] usb 5-1: Using ep0 maxpacket: 16 [ 246.293362][ T1494] usb 5-1: config 0 has an invalid interface number: 251 but max is 0 [ 246.301946][ T1494] usb 5-1: config 0 has no interface number 0 [ 246.308145][ T1494] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 246.320308][ T1494] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 246.335527][ T1494] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 246.345568][ T1494] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 246.356984][ T1494] usb 5-1: Product: syz [ 246.361433][ T1494] usb 5-1: Manufacturer: syz [ 246.366082][ T1494] usb 5-1: SerialNumber: syz [ 246.372112][ T1494] usb 5-1: config 0 descriptor?? [ 246.377618][ T3413] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 246.385533][ T3413] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 246.596065][ T1494] asix: probe of 5-1:0.251 failed with error -71 [ 246.603538][ T1494] usb 5-1: USB disconnect, device number 19 [ 246.780355][ T527] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 247.373772][ T527] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 247.385381][ T527] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 247.395563][ T527] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 248.380438][ T527] usb 3-1: config 0 descriptor?? [ 248.388020][ T527] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 248.398200][ T3444] loop3: detected capacity change from 0 to 1024 [ 248.407276][ T3444] EXT4-fs: Ignoring removed nomblk_io_submit option [ 248.432710][ T3444] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 248.927488][ T3458] ipt_REJECT: TCP_RESET invalid for non-tcp [ 248.934091][ T3458] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 248.942598][ T3458] overlayfs: overlapping lowerdir path [ 249.573393][ T286] EXT4-fs (loop3): unmounting filesystem. [ 250.274590][ T3477] loop3: detected capacity change from 0 to 256 [ 250.301262][ T3477] FAT-fs (loop3): Directory bread(block 64) failed [ 250.308313][ T3477] FAT-fs (loop3): Directory bread(block 65) failed [ 250.440694][ T3477] FAT-fs (loop3): Directory bread(block 66) failed [ 250.452307][ T3477] FAT-fs (loop3): Directory bread(block 67) failed [ 250.487147][ T3477] FAT-fs (loop3): Directory bread(block 68) failed [ 250.523189][ T3477] FAT-fs (loop3): Directory bread(block 69) failed [ 250.540516][ T1494] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 250.569015][ T3477] FAT-fs (loop3): Directory bread(block 70) failed [ 250.603949][ T3477] FAT-fs (loop3): Directory bread(block 71) failed [ 250.613899][ T3477] FAT-fs (loop3): Directory bread(block 72) failed [ 250.620707][ T3477] FAT-fs (loop3): Directory bread(block 73) failed [ 250.761378][ T1494] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 250.774877][ T1494] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 250.788678][ T1494] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 250.797988][ T1494] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 250.807374][ T1494] usb 2-1: config 0 descriptor?? [ 250.831602][ T1494] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 251.482896][ T1494] usb 3-1: USB disconnect, device number 9 [ 251.915161][ T3487] loop4: detected capacity change from 0 to 256 [ 251.998659][ T3487] exfat: Bad value for 'umask' [ 252.354095][ T3496] loop4: detected capacity change from 0 to 128 [ 252.363551][ T3496] EXT4-fs (loop4): Test dummy encryption mode enabled [ 252.449464][ T3496] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 252.459085][ T3496] ext4 filesystem being mounted at /143/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 252.513431][ T3496] EXT4-fs warning (device loop4): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 252.600407][ T1494] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 253.331702][ T282] EXT4-fs (loop4): unmounting filesystem. [ 253.348741][ T934] usb 2-1: USB disconnect, device number 21 [ 253.355002][ T1494] usb 1-1: Using ep0 maxpacket: 16 [ 253.364164][ T1494] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 253.448661][ T1494] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 253.502094][ T1494] usb 1-1: config 1 has no interface number 1 [ 253.538227][ T1494] usb 1-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 253.601449][ T1494] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 253.728223][ T1494] usb 1-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 253.803254][ T1494] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 253.814512][ T3506] loop4: detected capacity change from 0 to 128 [ 253.822075][ T3506] EXT4-fs (loop4): Test dummy encryption mode enabled [ 253.835026][ T3506] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 253.844442][ T3506] ext4 filesystem being mounted at /144/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 253.874023][ T1494] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 253.890065][ T1494] usb 1-1: Product: syz [ 253.906747][ T282] EXT4-fs (loop4): unmounting filesystem. [ 253.917698][ T1494] usb 1-1: Manufacturer: syz [ 253.937720][ T1494] usb 1-1: SerialNumber: syz [ 254.046947][ T388] kworker/u4:5: attempt to access beyond end of device [ 254.046947][ T388] loop3: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 254.052783][ T3504] loop1: detected capacity change from 0 to 40427 [ 254.061805][ T388] kworker/u4:5: attempt to access beyond end of device [ 254.061805][ T388] loop3: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 254.094681][ T388] kworker/u4:5: attempt to access beyond end of device [ 254.094681][ T388] loop3: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 254.220462][ T3504] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 254.258210][ T1494] usb 1-1: USB disconnect, device number 17 [ 254.353199][ T3504] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 254.367707][ T3504] F2FS-fs (loop1): invalid crc value [ 254.384529][ T3504] F2FS-fs (loop1): Found nat_bits in checkpoint [ 254.413882][ T3504] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 254.421134][ T3504] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 254.448304][ T337] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 254.457798][ T337] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 254.500364][ T6] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 254.622972][ T3525] netlink: 52 bytes leftover after parsing attributes in process `syz.1.779'. [ 255.000328][ T6] usb 3-1: Using ep0 maxpacket: 16 [ 255.006793][ T6] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 255.027184][ T6] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 255.039673][ T3531] netlink: 28 bytes leftover after parsing attributes in process `syz.0.780'. [ 255.049190][ T6] usb 3-1: config 1 has no interface number 1 [ 255.055504][ T6] usb 3-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 255.067008][ T6] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 255.087841][ T6] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 255.097091][ T6] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 255.105363][ T6] usb 3-1: Product: syz [ 255.109886][ T6] usb 3-1: Manufacturer: syz [ 255.116813][ T6] usb 3-1: SerialNumber: syz [ 255.215106][ T3517] overlayfs: statfs failed on './file0' [ 255.324952][ T3533] loop3: detected capacity change from 0 to 256 [ 255.341899][ T6] usb 3-1: USB disconnect, device number 10 [ 255.342229][ T3533] exfat: Bad value for 'umask' [ 255.683418][ T3538] loop3: detected capacity change from 0 to 128 [ 255.692467][ T3538] EXT4-fs (loop3): Test dummy encryption mode enabled [ 255.801570][ T3538] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 255.811132][ T3538] ext4 filesystem being mounted at /159/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 255.836997][ T3538] EXT4-fs warning (device loop3): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 256.111199][ T3544] loop2: detected capacity change from 0 to 256 [ 258.031805][ T3544] exfat: Bad value for 'umask' [ 259.255588][ T405] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 259.266829][ T286] EXT4-fs (loop3): unmounting filesystem. [ 259.637733][ T550] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 260.161701][ T550] usb 4-1: unable to get BOS descriptor or descriptor too short [ 260.176550][ T550] usb 4-1: config 63 has an invalid interface number: 66 but max is 0 [ 260.192275][ T550] usb 4-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 260.217761][ T550] usb 4-1: config 63 has no interface number 0 [ 261.151849][ T3578] netlink: 52 bytes leftover after parsing attributes in process `syz.0.793'. [ 261.451568][ T3570] overlayfs: statfs failed on './file0' [ 261.453278][ T550] usb 4-1: config 63 interface 66 has no altsetting 0 [ 261.480933][ T3582] loop1: detected capacity change from 0 to 256 [ 261.489145][ T550] usb 4-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 261.489541][ T3582] exfat: Bad value for 'umask' [ 261.498472][ T550] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 261.540379][ T550] usb 4-1: Product: syz [ 261.544851][ T550] usb 4-1: Manufacturer: syz [ 261.549574][ T550] usb 4-1: SerialNumber: syz [ 261.901864][ T550] usb 4-1: Found UVC 0.07 device syz (174f:8acf) [ 261.920360][ T550] usb 4-1: Failed to query (GET_INFO) UVC control 6 on unit 1: -71 (exp. 1). [ 261.929607][ T550] usb 4-1: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 262.002651][ T3587] loop1: detected capacity change from 0 to 128 [ 262.040795][ T3587] EXT4-fs (loop1): Test dummy encryption mode enabled [ 262.285335][ T3587] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 262.294779][ T3587] ext4 filesystem being mounted at /149/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 262.438072][ T3590] loop2: detected capacity change from 0 to 1024 [ 262.888431][ T3590] EXT4-fs: Ignoring removed nomblk_io_submit option [ 262.952028][ T3590] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 263.037516][ T550] usb 4-1: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 263.048154][ T283] EXT4-fs (loop1): unmounting filesystem. [ 263.061000][ T550] usb 4-1: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 263.070555][ T550] usb 4-1: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 263.135463][ T3605] loop4: detected capacity change from 0 to 128 [ 263.187918][ T3605] EXT4-fs (loop4): Test dummy encryption mode enabled [ 263.221346][ T3605] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 263.231533][ T3605] ext4 filesystem being mounted at /150/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 263.958744][ T3603] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3603 comm=syz.2.797 [ 263.972717][ T550] usb 4-1: No streaming interface found for terminal 29. [ 263.979934][ T550] uvcvideo 4-1:63.66: Entity type for entity Output 5 was not initialized! [ 264.460075][ T3611] netlink: 36 bytes leftover after parsing attributes in process `syz.3.800'. [ 264.604659][ T282] EXT4-fs (loop4): unmounting filesystem. [ 264.610718][ T284] EXT4-fs (loop2): unmounting filesystem. [ 264.759689][ T550] usb 4-1: USB disconnect, device number 14 [ 265.758388][ T3632] loop4: detected capacity change from 0 to 256 [ 265.766872][ T3632] exfat: Bad value for 'umask' [ 266.381252][ T3633] netlink: 52 bytes leftover after parsing attributes in process `syz.0.806'. [ 267.294142][ T3648] loop1: detected capacity change from 0 to 128 [ 267.310627][ T3648] EXT4-fs (loop1): Test dummy encryption mode enabled [ 267.448013][ T3648] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 267.457474][ T3648] ext4 filesystem being mounted at /153/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 269.276023][ T283] EXT4-fs (loop1): unmounting filesystem. [ 269.324668][ T42] Bluetooth: hci0: Frame reassembly failed (-84) [ 269.850350][ T1511] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 270.271113][ T1511] usb 4-1: unable to get BOS descriptor or descriptor too short [ 270.279936][ T1511] usb 4-1: config 63 has an invalid interface number: 66 but max is 0 [ 270.288502][ T1511] usb 4-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 270.299287][ T1511] usb 4-1: config 63 has no interface number 0 [ 270.306012][ T1511] usb 4-1: config 63 interface 66 has no altsetting 0 [ 270.322942][ T1511] usb 4-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 270.333464][ T1511] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 270.341627][ T1511] usb 4-1: Product: syz [ 270.346190][ T1511] usb 4-1: Manufacturer: syz [ 270.350992][ T1511] usb 4-1: SerialNumber: syz [ 270.570592][ T1511] usb 4-1: Found UVC 0.07 device syz (174f:8acf) [ 270.578938][ T1511] usb 4-1: Failed to query (GET_INFO) UVC control 6 on unit 1: -71 (exp. 1). [ 270.621457][ T1511] usb 4-1: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 270.640863][ T1511] usb 4-1: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 270.970687][ T3692] netlink: 36 bytes leftover after parsing attributes in process `syz.4.823'. [ 271.360308][ T594] Bluetooth: hci0: command 0x1003 tx timeout [ 271.370441][ T697] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 271.377081][ T3672] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 271.393105][ T1511] usb 4-1: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 271.406319][ T1511] usb 4-1: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 271.419842][ T1511] usb 4-1: No streaming interface found for terminal 29. [ 271.446771][ T1511] uvcvideo 4-1:63.66: Entity type for entity Output 5 was not initialized! [ 271.476255][ T1511] usb 4-1: USB disconnect, device number 15 [ 271.711672][ T3697] ipt_REJECT: TCP_RESET invalid for non-tcp [ 273.157849][ T1511] usb 4-1: new full-speed USB device number 16 using dummy_hcd [ 273.230574][ T550] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 274.820854][ T3722] loop2: detected capacity change from 0 to 128 [ 274.833981][ T3722] EXT4-fs (loop2): Test dummy encryption mode enabled [ 274.897081][ T3722] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 274.907250][ T3722] ext4 filesystem being mounted at /175/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 275.017422][ T3728] loop4: detected capacity change from 0 to 40427 [ 275.069532][ T284] EXT4-fs (loop2): unmounting filesystem. [ 275.252839][ T3738] fuse: Bad value for 'fd' [ 275.488559][ T3742] loop4: detected capacity change from 0 to 16 [ 275.532047][ T3744] loop1: detected capacity change from 0 to 256 [ 275.635744][ T3744] FAT-fs (loop1): Directory bread(block 64) failed [ 275.679525][ T3742] erofs: (device loop4): mounted with root inode @ nid 36. [ 275.722902][ T3744] FAT-fs (loop1): Directory bread(block 65) failed [ 275.785604][ T3744] FAT-fs (loop1): Directory bread(block 66) failed [ 275.826541][ T3744] FAT-fs (loop1): Directory bread(block 67) failed [ 275.834533][ T3744] FAT-fs (loop1): Directory bread(block 68) failed [ 275.842311][ T3744] FAT-fs (loop1): Directory bread(block 69) failed [ 275.849609][ T3744] FAT-fs (loop1): Directory bread(block 70) failed [ 275.857301][ T3744] FAT-fs (loop1): Directory bread(block 71) failed [ 275.864709][ T3744] FAT-fs (loop1): Directory bread(block 72) failed [ 275.881626][ T3744] FAT-fs (loop1): Directory bread(block 73) failed [ 276.347750][ T3750] loop2: detected capacity change from 0 to 256 [ 276.535847][ T3750] FAT-fs (loop2): Directory bread(block 64) failed [ 276.651051][ T3750] FAT-fs (loop2): Directory bread(block 65) failed [ 277.131501][ T3750] FAT-fs (loop2): Directory bread(block 66) failed [ 277.139059][ T3750] FAT-fs (loop2): Directory bread(block 67) failed [ 277.197127][ T3750] FAT-fs (loop2): Directory bread(block 68) failed [ 277.224425][ T3750] FAT-fs (loop2): Directory bread(block 69) failed [ 277.260395][ T3750] FAT-fs (loop2): Directory bread(block 70) failed [ 277.360384][ T3750] FAT-fs (loop2): Directory bread(block 71) failed [ 277.389623][ T3750] FAT-fs (loop2): Directory bread(block 72) failed [ 277.399011][ T3750] FAT-fs (loop2): Directory bread(block 73) failed [ 277.494829][ T3756] ipt_REJECT: TCP_RESET invalid for non-tcp [ 277.506848][ T3756] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 278.340257][ T388] Bluetooth: hci0: Frame reassembly failed (-84) [ 278.723832][ T3774] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 278.893487][ T388] kworker/u4:5: attempt to access beyond end of device [ 278.893487][ T388] loop1: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 278.919025][ T388] kworker/u4:5: attempt to access beyond end of device [ 278.919025][ T388] loop1: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 278.941600][ T388] kworker/u4:5: attempt to access beyond end of device [ 278.941600][ T388] loop1: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 279.033564][ T388] kworker/u4:5: attempt to access beyond end of device [ 279.033564][ T388] loop2: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 279.048429][ T388] kworker/u4:5: attempt to access beyond end of device [ 279.048429][ T388] loop2: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 279.063962][ T388] kworker/u4:5: attempt to access beyond end of device [ 279.063962][ T388] loop2: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 279.115939][ T3782] loop1: detected capacity change from 0 to 128 [ 279.124580][ T3782] EXT4-fs (loop1): Test dummy encryption mode enabled [ 279.137636][ T3782] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 279.146833][ T3782] ext4 filesystem being mounted at /160/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 279.641552][ T3785] ipt_REJECT: TCP_RESET invalid for non-tcp [ 279.777294][ T3790] loop4: detected capacity change from 0 to 1024 [ 279.815854][ T3790] EXT4-fs: Ignoring removed nomblk_io_submit option [ 279.919525][ T283] EXT4-fs (loop1): unmounting filesystem. [ 279.922978][ T3790] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 280.531974][ T594] Bluetooth: hci0: command 0x1003 tx timeout [ 280.532035][ T697] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 280.648468][ T282] EXT4-fs (loop4): unmounting filesystem. [ 280.820502][ T3767] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 281.687750][ T3827] loop3: detected capacity change from 0 to 256 [ 281.707785][ T3827] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 281.893849][ T3832] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 282.333888][ T3836] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3836 comm=syz.0.859 [ 282.598508][ T3839] loop4: detected capacity change from 0 to 128 [ 282.648527][ T3839] EXT4-fs (loop4): Test dummy encryption mode enabled [ 282.658869][ T3839] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 282.669026][ T3839] ext4 filesystem being mounted at /163/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 283.269641][ T282] EXT4-fs (loop4): unmounting filesystem. [ 283.290365][ T500] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 283.360309][ T3809] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 283.360343][ T45] Bluetooth: hci0: command 0x1003 tx timeout [ 283.377679][ T3817] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 283.480343][ T500] usb 2-1: Using ep0 maxpacket: 16 [ 283.487155][ T500] usb 2-1: config 0 has an invalid interface number: 251 but max is 0 [ 283.517288][ T500] usb 2-1: config 0 has no interface number 0 [ 283.539336][ T500] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 283.576770][ T500] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 283.596690][ T500] usb 2-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 283.631353][ T500] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 283.641146][ T500] usb 2-1: Product: syz [ 283.646243][ T500] usb 2-1: Manufacturer: syz [ 283.653090][ T500] usb 2-1: SerialNumber: syz [ 283.707758][ T500] usb 2-1: config 0 descriptor?? [ 283.714297][ T3850] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 283.723278][ T3850] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 283.937264][ T3850] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 283.945697][ T3850] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 284.104338][ T3869] overlayfs: failed to resolve './file0': -2 [ 284.320580][ T337] Bluetooth: hci0: Frame reassembly failed (-84) [ 284.458002][ T500] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 284.476846][ T500] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71 [ 284.492177][ T500] asix: probe of 2-1:0.251 failed with error -71 [ 284.516845][ T500] usb 2-1: USB disconnect, device number 22 [ 286.758142][ T594] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 286.764749][ T45] Bluetooth: hci0: command 0x1003 tx timeout [ 286.791063][ T3871] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 286.946734][ T3894] netlink: 36 bytes leftover after parsing attributes in process `syz.3.877'. [ 287.454516][ T337] Bluetooth: hci0: Frame reassembly failed (-84) [ 289.658286][ T45] Bluetooth: hci0: command 0x1003 tx timeout [ 289.658320][ T594] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 289.675230][ T3907] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 289.729826][ T3930] netlink: 36 bytes leftover after parsing attributes in process `syz.0.885'. [ 290.082404][ T3932] pit: kvm: requested 137447 ns i8254 timer period limited to 200000 ns [ 290.103427][ T3932] pit: kvm: requested 135771 ns i8254 timer period limited to 200000 ns [ 290.112810][ T3932] pit: kvm: requested 89676 ns i8254 timer period limited to 200000 ns [ 290.128584][ T3932] pit: kvm: requested 96381 ns i8254 timer period limited to 200000 ns [ 290.140935][ T3932] pit: kvm: requested 64533 ns i8254 timer period limited to 200000 ns [ 290.159393][ T3932] pit: kvm: requested 191085 ns i8254 timer period limited to 200000 ns [ 290.186615][ T3932] pit: kvm: requested 195276 ns i8254 timer period limited to 200000 ns [ 290.199924][ T3932] pit: kvm: requested 165942 ns i8254 timer period limited to 200000 ns [ 290.219993][ T3932] pit: kvm: requested 66209 ns i8254 timer period limited to 200000 ns [ 290.231941][ T3932] pit: kvm: requested 89676 ns i8254 timer period limited to 200000 ns [ 290.264842][ T3939] loop3: detected capacity change from 0 to 256 [ 290.298276][ T3939] exfat: Bad value for 'umask' [ 290.500393][ T3944] loop3: detected capacity change from 0 to 128 [ 290.509335][ T3944] EXT4-fs (loop3): Test dummy encryption mode enabled [ 290.569692][ T3944] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 290.579345][ T3944] ext4 filesystem being mounted at /176/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 291.128704][ T336] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 291.137829][ T286] EXT4-fs (loop3): unmounting filesystem. [ 291.270424][ T1511] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 291.330374][ T336] usb 5-1: Using ep0 maxpacket: 16 [ 291.339257][ T336] usb 5-1: config 0 has an invalid interface number: 251 but max is 0 [ 291.350730][ T336] usb 5-1: config 0 has no interface number 0 [ 291.371216][ T336] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 291.527029][ T336] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 291.591312][ T336] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 291.645827][ T336] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 291.675392][ T336] usb 5-1: Product: syz [ 291.703085][ T336] usb 5-1: Manufacturer: syz [ 291.722377][ T3974] loop2: detected capacity change from 0 to 256 [ 291.729598][ T336] usb 5-1: SerialNumber: syz [ 291.746266][ T336] usb 5-1: config 0 descriptor?? [ 291.756258][ T3974] exfat: Bad value for 'umask' [ 291.791974][ T3956] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 291.808527][ T3956] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 291.948995][ T1511] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 291.960858][ T1511] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 291.975131][ T1511] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 291.985440][ T1511] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 291.994411][ T1511] usb 1-1: Product: syz [ 292.000707][ T1511] usb 1-1: Manufacturer: syz [ 292.028673][ T3956] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 292.043816][ T3956] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 292.057729][ T3979] loop2: detected capacity change from 0 to 128 [ 292.353173][ T3979] EXT4-fs (loop2): Test dummy encryption mode enabled [ 292.722513][ T3979] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 292.732431][ T3979] ext4 filesystem being mounted at /188/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 293.432172][ T1511] usb 1-1: SerialNumber: syz [ 293.437207][ T336] asix 5-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 293.490666][ T1511] cdc_mbim 1-1:1.0: skipping garbage [ 293.493106][ T336] asix 5-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71 [ 293.510382][ T336] asix: probe of 5-1:0.251 failed with error -71 [ 294.291764][ T336] usb 5-1: USB disconnect, device number 21 [ 294.305702][ T284] EXT4-fs (loop2): unmounting filesystem. [ 294.320583][ T1511] cdc_mbim 1-1:1.0: bind() failure [ 294.327202][ T1511] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 294.336202][ T3990] overlayfs: missing 'lowerdir' [ 294.340163][ T1511] cdc_ncm 1-1:1.1: bind() failure [ 294.347502][ T1511] usb 1-1: USB disconnect, device number 18 [ 294.375013][ T3993] loop5: detected capacity change from 0 to 7 [ 294.378662][ T2854] Bluetooth: hci0: Frame reassembly failed (-84) [ 294.426414][ T3997] loop3: detected capacity change from 0 to 1024 [ 294.434312][ T3997] EXT4-fs: Ignoring removed nomblk_io_submit option [ 294.488699][ T3997] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 294.841290][ T4012] netlink: 36 bytes leftover after parsing attributes in process `syz.2.911'. [ 295.269817][ T4018] netlink: 36 bytes leftover after parsing attributes in process `syz.4.912'. [ 295.402768][ T4023] loop4: detected capacity change from 0 to 256 [ 295.441601][ T4023] FAT-fs (loop4): Directory bread(block 64) failed [ 295.458941][ T4023] FAT-fs (loop4): Directory bread(block 65) failed [ 295.474620][ T4023] FAT-fs (loop4): Directory bread(block 66) failed [ 295.489881][ T4023] FAT-fs (loop4): Directory bread(block 67) failed [ 295.551136][ T4023] FAT-fs (loop4): Directory bread(block 68) failed [ 295.557966][ T4023] FAT-fs (loop4): Directory bread(block 69) failed [ 295.590480][ T4023] FAT-fs (loop4): Directory bread(block 70) failed [ 295.617537][ T4023] FAT-fs (loop4): Directory bread(block 71) failed [ 295.637761][ T4023] FAT-fs (loop4): Directory bread(block 72) failed [ 295.650331][ T4023] FAT-fs (loop4): Directory bread(block 73) failed [ 295.814044][ T286] EXT4-fs (loop3): unmounting filesystem. [ 296.391404][ T4031] netlink: 36 bytes leftover after parsing attributes in process `syz.2.914'. [ 296.410389][ T594] Bluetooth: hci0: command 0x1003 tx timeout [ 296.410485][ T45] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 296.424682][ T3991] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 296.486538][ T2854] kworker/u4:7: attempt to access beyond end of device [ 296.486538][ T2854] loop4: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 296.502824][ T2854] kworker/u4:7: attempt to access beyond end of device [ 296.502824][ T2854] loop4: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 296.525858][ T2854] kworker/u4:7: attempt to access beyond end of device [ 296.525858][ T2854] loop4: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 296.611786][ T4045] overlayfs: missing 'lowerdir' [ 297.556950][ T4055] netlink: 36 bytes leftover after parsing attributes in process `syz.0.923'. [ 297.755437][ T4062] loop1: detected capacity change from 0 to 1024 [ 297.810731][ T4062] EXT4-fs: Ignoring removed nomblk_io_submit option [ 297.890854][ T4062] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 298.426057][ T4081] overlayfs: failed to resolve './file1': -2 [ 298.474923][ T10] Bluetooth: hci0: Frame reassembly failed (-84) [ 298.642358][ T283] EXT4-fs (loop1): unmounting filesystem. [ 299.660548][ T4099] overlayfs: missing 'lowerdir' [ 300.045013][ T4110] netlink: 36 bytes leftover after parsing attributes in process `syz.4.936'. [ 300.737226][ T4119] netlink: 36 bytes leftover after parsing attributes in process `syz.2.939'. [ 300.878927][ T3809] Bluetooth: hci0: command 0x1003 tx timeout [ 300.885770][ T45] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 300.893110][ T4085] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 301.066362][ T10] Bluetooth: hci0: Frame reassembly failed (-84) [ 301.074247][ T4126] loop5: detected capacity change from 0 to 7 [ 301.202093][ T852] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 301.236262][ T4132] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 301.392373][ T852] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 301.403282][ T852] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 301.414836][ T852] usb 4-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping [ 301.427077][ T852] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 301.436657][ T852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 301.473503][ T852] usb 4-1: Product: syz [ 301.477963][ T852] usb 4-1: Manufacturer: syz [ 301.482687][ T852] usb 4-1: SerialNumber: syz [ 301.489776][ T852] cdc_mbim 4-1:1.0: skipping garbage [ 301.495505][ T852] usb 4-1: selecting invalid altsetting 1 [ 301.502916][ T4136] overlayfs: missing 'lowerdir' [ 301.890617][ T852] cdc_mbim 4-1:1.0: failed GET_NTB_PARAMETERS [ 301.897042][ T852] cdc_mbim 4-1:1.0: bind() failure [ 301.903611][ T852] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 301.910784][ T852] cdc_ncm 4-1:1.1: bind() failure [ 302.039122][ T4148] overlayfs: failed to resolve './file1': -2 [ 302.228949][ T4153] netlink: 36 bytes leftover after parsing attributes in process `syz.0.947'. [ 302.395594][ T4159] loop4: detected capacity change from 0 to 256 [ 302.457016][ T4159] FAT-fs (loop4): Directory bread(block 64) failed [ 302.480346][ T4159] FAT-fs (loop4): Directory bread(block 65) failed [ 302.505726][ T4159] FAT-fs (loop4): Directory bread(block 66) failed [ 302.530024][ T4159] FAT-fs (loop4): Directory bread(block 67) failed [ 302.554448][ T4159] FAT-fs (loop4): Directory bread(block 68) failed [ 302.577714][ T4159] FAT-fs (loop4): Directory bread(block 69) failed [ 302.605579][ T4159] FAT-fs (loop4): Directory bread(block 70) failed [ 302.628875][ T4159] FAT-fs (loop4): Directory bread(block 71) failed [ 302.646478][ T4159] FAT-fs (loop4): Directory bread(block 72) failed [ 302.663936][ T4159] FAT-fs (loop4): Directory bread(block 73) failed [ 302.778255][ T10] kworker/u4:1: attempt to access beyond end of device [ 302.778255][ T10] loop4: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 302.844690][ T10] kworker/u4:1: attempt to access beyond end of device [ 302.844690][ T10] loop4: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 302.860406][ T10] kworker/u4:1: attempt to access beyond end of device [ 302.860406][ T10] loop4: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 303.120332][ T45] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 303.661532][ T454] usb 4-1: USB disconnect, device number 17 [ 303.929151][ T4186] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 303.931815][ T10] Bluetooth: hci1: Frame reassembly failed (-84) [ 304.065263][ T4124] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 306.000326][ T594] Bluetooth: hci1: command 0x1003 tx timeout [ 306.000345][ T45] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 306.210353][ T852] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 306.391762][ T852] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 306.402212][ T852] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 306.413161][ T852] usb 5-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 306.429061][ T852] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 306.439735][ T852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 306.448549][ T852] usb 5-1: Product: syz [ 306.453432][ T852] usb 5-1: Manufacturer: syz [ 306.458156][ T852] usb 5-1: SerialNumber: syz [ 306.489499][ T852] cdc_mbim 5-1:1.0: skipping garbage [ 307.470403][ T4203] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 307.478682][ T4232] netlink: 36 bytes leftover after parsing attributes in process `syz.1.973'. [ 307.501701][ T852] cdc_mbim 5-1:1.0: bind() failure [ 307.516671][ T852] cdc_ncm: probe of 5-1:1.1 failed with error -71 [ 307.561981][ T852] cdc_mbim: probe of 5-1:1.1 failed with error -71 [ 307.637453][ T852] usb 5-1: USB disconnect, device number 22 [ 307.834398][ T4240] overlayfs: missing 'lowerdir' [ 307.908662][ T4243] netlink: 48 bytes leftover after parsing attributes in process `syz.2.977'. [ 308.824322][ T4265] netlink: 36 bytes leftover after parsing attributes in process `syz.2.983'. [ 309.083164][ T4270] loop2: detected capacity change from 0 to 1024 [ 309.211936][ T4270] EXT4-fs: Ignoring removed nomblk_io_submit option [ 309.686978][ T4270] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 309.990712][ T4266] netlink: 36 bytes leftover after parsing attributes in process `syz.4.984'. [ 310.000681][ T284] EXT4-fs (loop2): unmounting filesystem. [ 310.807655][ T4303] netlink: 48 bytes leftover after parsing attributes in process `syz.4.993'. [ 310.820443][ T500] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 311.011431][ T500] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 311.030313][ T500] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 311.050313][ T500] usb 4-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 311.081760][ T500] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 311.092836][ T500] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 311.101661][ T500] usb 4-1: Product: syz [ 311.107847][ T500] usb 4-1: Manufacturer: syz [ 311.113867][ T500] usb 4-1: SerialNumber: syz [ 311.166312][ T500] cdc_mbim 4-1:1.0: skipping garbage [ 311.526541][ T4317] loop1: detected capacity change from 0 to 256 [ 311.542344][ T4317] FAT-fs (loop1): Directory bread(block 64) failed [ 311.549379][ T4317] FAT-fs (loop1): Directory bread(block 65) failed [ 311.556715][ T4317] FAT-fs (loop1): Directory bread(block 66) failed [ 311.564575][ T4317] FAT-fs (loop1): Directory bread(block 67) failed [ 311.571744][ T4317] FAT-fs (loop1): Directory bread(block 68) failed [ 311.578660][ T4317] FAT-fs (loop1): Directory bread(block 69) failed [ 311.585496][ T4317] FAT-fs (loop1): Directory bread(block 70) failed [ 311.593017][ T4317] FAT-fs (loop1): Directory bread(block 71) failed [ 311.605250][ T4317] FAT-fs (loop1): Directory bread(block 72) failed [ 311.611808][ T4319] loop4: detected capacity change from 0 to 1024 [ 311.612237][ T4319] EXT4-fs: Ignoring removed nomblk_io_submit option [ 311.625722][ T4317] FAT-fs (loop1): Directory bread(block 73) failed [ 311.902330][ T4319] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 312.205980][ T500] cdc_mbim 4-1:1.0: bind() failure [ 312.213194][ T500] usb 4-1: USB disconnect, device number 18 [ 312.391279][ T2854] kworker/u4:7: attempt to access beyond end of device [ 312.391279][ T2854] loop1: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 312.405463][ T2854] kworker/u4:7: attempt to access beyond end of device [ 312.405463][ T2854] loop1: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 312.420338][ T2854] kworker/u4:7: attempt to access beyond end of device [ 312.420338][ T2854] loop1: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 312.502418][ T282] EXT4-fs (loop4): unmounting filesystem. [ 312.525547][ T4332] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1001'. [ 313.396398][ T4355] fuse: Bad value for 'fd' [ 314.600586][ T4367] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 315.256517][ T4373] loop4: detected capacity change from 0 to 1024 [ 315.270705][ T4373] EXT4-fs: Ignoring removed nomblk_io_submit option [ 315.458519][ T4373] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 315.621783][ T4380] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4380 comm=syz.4.1013 [ 316.090499][ T282] EXT4-fs (loop4): unmounting filesystem. [ 316.113208][ T4389] loop2: detected capacity change from 0 to 256 [ 316.134324][ T4389] exfat: Bad value for 'umask' [ 316.312231][ T4397] loop2: detected capacity change from 0 to 128 [ 316.320344][ T4397] EXT4-fs (loop2): Test dummy encryption mode enabled [ 316.375832][ T4397] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 316.385626][ T4397] ext4 filesystem being mounted at /211/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 316.402734][ T4397] EXT4-fs warning (device loop2): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 316.510402][ T500] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 316.721813][ T500] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 316.760222][ T500] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 316.842054][ T500] usb 5-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 317.040708][ T500] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 317.078991][ T500] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 317.122077][ T500] usb 5-1: Product: syz [ 317.126450][ T500] usb 5-1: Manufacturer: syz [ 317.164788][ T500] usb 5-1: SerialNumber: syz [ 317.188292][ T500] cdc_mbim 5-1:1.0: skipping garbage [ 317.352025][ T284] EXT4-fs (loop2): unmounting filesystem. [ 317.420752][ T4405] fuse: Unknown parameter 'fd0x0000000000000004' [ 318.269955][ T28] audit: type=1400 audit(1772634181.240:215): avc: denied { write } for pid=4418 comm="syz.1.1024" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 318.301129][ T28] audit: type=1400 audit(1772634181.240:216): avc: denied { nlmsg_write } for pid=4418 comm="syz.1.1024" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 318.401575][ T500] cdc_mbim 5-1:1.0: bind() failure [ 318.417723][ T500] usb 5-1: USB disconnect, device number 23 [ 319.220324][ T24] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 319.410319][ T24] usb 3-1: Using ep0 maxpacket: 16 [ 319.416861][ T24] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 319.441193][ T24] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 319.453342][ T24] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 319.463147][ T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 319.471939][ T24] usb 3-1: Product: syz [ 319.476359][ T24] usb 3-1: Manufacturer: syz [ 319.481337][ T24] usb 3-1: SerialNumber: syz [ 319.492163][ T24] usb 3-1: config 0 descriptor?? [ 319.703606][ T24] usb 3-1: USB disconnect, device number 11 [ 319.990372][ T1511] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 322.240442][ T1511] usb 5-1: Using ep0 maxpacket: 16 [ 322.248442][ T1511] usb 5-1: config 0 has an invalid interface number: 251 but max is 0 [ 322.260666][ T1511] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 322.271607][ T1511] usb 5-1: config 0 has no interface number 0 [ 322.278643][ T1511] usb 5-1: config 0 interface 251 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 322.291423][ T1511] usb 5-1: config 0 interface 251 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 322.489333][ T4452] loop2: detected capacity change from 0 to 40427 [ 322.656999][ T4455] loop3: detected capacity change from 0 to 256 [ 322.666727][ T4456] loop1: detected capacity change from 0 to 256 [ 322.671100][ T1511] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 322.682500][ T1511] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 322.690806][ T1511] usb 5-1: Product: syz [ 322.695663][ T1511] usb 5-1: Manufacturer: syz [ 322.702339][ T4456] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 322.708115][ T1511] usb 5-1: SerialNumber: syz [ 322.720145][ T405] I/O error, dev loop2, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 322.737255][ T1511] usb 5-1: config 0 descriptor?? [ 322.798926][ T4455] FAT-fs (loop3): Directory bread(block 64) failed [ 322.828206][ T4459] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1033'. [ 322.841537][ T4455] FAT-fs (loop3): Directory bread(block 65) failed [ 322.870718][ T4455] FAT-fs (loop3): Directory bread(block 66) failed [ 322.885452][ T4455] FAT-fs (loop3): Directory bread(block 67) failed [ 323.529518][ T4455] FAT-fs (loop3): Directory bread(block 68) failed [ 323.536642][ T4455] FAT-fs (loop3): Directory bread(block 69) failed [ 323.543672][ T4455] FAT-fs (loop3): Directory bread(block 70) failed [ 323.599028][ T4465] loop2: detected capacity change from 0 to 16 [ 323.780753][ T4465] erofs: (device loop2): mounted with root inode @ nid 36. [ 323.889998][ T1511] usb 5-1: can't set config #0, error -71 [ 323.896839][ T1511] usb 5-1: USB disconnect, device number 24 [ 323.905830][ T4455] FAT-fs (loop3): Directory bread(block 71) failed [ 324.029807][ T4455] FAT-fs (loop3): Directory bread(block 72) failed [ 324.047503][ T4455] FAT-fs (loop3): Directory bread(block 73) failed [ 326.098523][ T4483] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1042'. [ 326.276822][ T4488] loop3: detected capacity change from 0 to 256 [ 326.289664][ T4486] loop1: detected capacity change from 0 to 1024 [ 326.322240][ T4488] exfat: Bad value for 'umask' [ 326.335496][ T4486] EXT4-fs: Ignoring removed nomblk_io_submit option [ 326.466427][ T4486] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 326.534819][ T4493] loop3: detected capacity change from 0 to 128 [ 327.542857][ T4493] EXT4-fs (loop3): Test dummy encryption mode enabled [ 327.672703][ T4493] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 327.682153][ T4493] ext4 filesystem being mounted at /206/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 327.696414][ T4493] EXT4-fs warning (device loop3): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 327.943345][ T286] EXT4-fs (loop3): unmounting filesystem. [ 327.971372][ T4503] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1041'. [ 328.010306][ T1511] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 328.047920][ T4505] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4505 comm=syz.1.1043 [ 328.191402][ T1511] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 328.206883][ T1511] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 328.222794][ T1511] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 328.231393][ T4448] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 328.245481][ T1511] usb 5-1: config 0 descriptor?? [ 328.362121][ T283] EXT4-fs (loop1): unmounting filesystem. [ 328.420313][ T4448] usb 4-1: Using ep0 maxpacket: 16 [ 328.426971][ T4448] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 328.437250][ T4448] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 328.448257][ T4448] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 328.465083][ T4448] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 328.473298][ T4448] usb 4-1: Product: syz [ 328.477750][ T4448] usb 4-1: Manufacturer: syz [ 328.483114][ T4448] usb 4-1: SerialNumber: syz [ 328.494431][ T4448] usb 4-1: config 0 descriptor?? [ 328.999043][ T1511] keytouch 0003:0926:3333.000C: fixing up Keytouch IEC report descriptor [ 329.010777][ T1511] input: HID 0926:3333 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:0926:3333.000C/input/input16 [ 329.092629][ T1511] keytouch 0003:0926:3333.000C: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.4-1/input0 [ 329.105895][ T1511] usb 5-1: USB disconnect, device number 25 [ 329.132083][ T4519] fido_id[4519]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 329.186299][ T4521] loop2: detected capacity change from 0 to 256 [ 329.193320][ T4521] exfat: Bad value for 'umask' [ 329.328199][ T2696] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 329.392311][ T4523] loop2: detected capacity change from 0 to 128 [ 329.418175][ T4523] EXT4-fs (loop2): Test dummy encryption mode enabled [ 329.430071][ T4523] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 329.440168][ T4523] ext4 filesystem being mounted at /220/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 329.510295][ T2696] usb 1-1: Using ep0 maxpacket: 16 [ 329.517480][ T2696] usb 1-1: config 0 has an invalid interface number: 251 but max is 0 [ 329.526129][ T2696] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 329.536693][ T2696] usb 1-1: config 0 has no interface number 0 [ 329.542905][ T2696] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 329.553716][ T2696] usb 1-1: config 0 interface 251 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 329.569290][ T2696] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 329.604461][ T2696] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 329.642494][ T2696] usb 1-1: Product: syz [ 329.652297][ T2696] usb 1-1: Manufacturer: syz [ 329.657874][ T2696] usb 1-1: SerialNumber: syz [ 329.730219][ T2696] usb 1-1: config 0 descriptor?? [ 329.736166][ T4518] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 329.746668][ T2696] asix: probe of 1-1:0.251 failed with error -22 [ 330.753843][ T4533] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1054'. [ 330.980496][ T1511] usb 4-1: USB disconnect, device number 19 [ 331.011218][ T4535] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 331.019981][ T4535] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 331.070626][ T4535] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 331.129569][ T4539] loop4: detected capacity change from 0 to 256 [ 331.152863][ T4539] exfat: Bad value for 'umask' [ 331.338557][ T4541] loop4: detected capacity change from 0 to 128 [ 331.348767][ T4541] EXT4-fs (loop4): Test dummy encryption mode enabled [ 331.362802][ T4541] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 331.371892][ T4541] ext4 filesystem being mounted at /199/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 331.404265][ T4541] EXT4-fs warning (device loop4): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 331.710974][ T1511] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 331.818416][ T284] EXT4-fs (loop2): unmounting filesystem. [ 331.835344][ T337] Bluetooth: hci0: Frame reassembly failed (-84) [ 331.891477][ T1511] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 331.902065][ T1511] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 331.913456][ T1511] usb 4-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 331.928582][ T1511] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 331.937788][ T1511] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 331.945834][ T1511] usb 4-1: Product: syz [ 331.950127][ T1511] usb 4-1: Manufacturer: syz [ 331.954861][ T1511] usb 4-1: SerialNumber: syz [ 331.980189][ T1511] cdc_mbim 4-1:1.0: skipping garbage [ 331.981279][ T282] EXT4-fs (loop4): unmounting filesystem. [ 332.056233][ T934] usb 1-1: USB disconnect, device number 19 [ 332.489255][ T4558] ipt_REJECT: TCP_RESET invalid for non-tcp [ 332.496109][ T4558] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 332.520364][ T934] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 332.612759][ T1511] cdc_mbim 4-1:1.0: failed GET_NTB_PARAMETERS [ 332.618912][ T1511] cdc_mbim 4-1:1.0: bind() failure [ 332.625517][ T1511] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 332.632523][ T1511] cdc_ncm 4-1:1.1: bind() failure [ 332.711436][ T934] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 332.722847][ T934] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 332.732127][ T934] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 332.740876][ T934] usb 1-1: config 0 descriptor?? [ 332.870563][ T4560] loop4: detected capacity change from 0 to 256 [ 332.882333][ T4560] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 333.148493][ T934] keytouch 0003:0926:3333.000D: fixing up Keytouch IEC report descriptor [ 333.165500][ T934] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.000D/input/input17 [ 333.261658][ T934] keytouch 0003:0926:3333.000D: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0 [ 333.705470][ T934] usb 1-1: USB disconnect, device number 20 [ 333.840391][ T45] Bluetooth: hci0: command 0x1003 tx timeout [ 333.841459][ T3809] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 334.014176][ T934] usb 4-1: USB disconnect, device number 20 [ 334.164151][ T4574] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1066'. [ 335.878380][ T4595] ipt_REJECT: TCP_RESET invalid for non-tcp [ 335.891390][ T4595] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 335.899675][ T4595] overlayfs: overlapping lowerdir path [ 336.241205][ T4599] overlayfs: missing 'lowerdir' [ 336.352694][ T4607] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1077'. [ 336.434455][ T4591] loop1: detected capacity change from 0 to 40427 [ 336.449471][ T4591] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 336.467667][ T4591] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 336.488300][ T4591] F2FS-fs (loop1): invalid crc value [ 336.521393][ T4591] F2FS-fs (loop1): Found nat_bits in checkpoint [ 336.560841][ T4602] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1074'. [ 336.588410][ T4591] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 336.596013][ T4591] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 336.774298][ T10] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 336.793141][ T10] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 337.045970][ T4616] loop1: detected capacity change from 0 to 256 [ 337.101441][ T4616] FAT-fs (loop1): Directory bread(block 64) failed [ 337.128616][ T4616] FAT-fs (loop1): Directory bread(block 65) failed [ 337.208839][ T4616] FAT-fs (loop1): Directory bread(block 66) failed [ 337.257075][ T4616] FAT-fs (loop1): Directory bread(block 67) failed [ 337.273238][ T4619] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1079'. [ 337.442729][ T4616] FAT-fs (loop1): Directory bread(block 68) failed [ 337.512745][ T4625] loop2: detected capacity change from 0 to 256 [ 337.539595][ T4616] FAT-fs (loop1): Directory bread(block 69) failed [ 337.563894][ T4625] exfat: Bad value for 'umask' [ 337.600398][ T4616] FAT-fs (loop1): Directory bread(block 70) failed [ 337.608370][ T4616] FAT-fs (loop1): Directory bread(block 71) failed [ 337.660387][ T4616] FAT-fs (loop1): Directory bread(block 72) failed [ 337.670934][ T4616] FAT-fs (loop1): Directory bread(block 73) failed [ 338.047123][ T4632] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1081'. [ 338.131267][ T4633] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1083'. [ 338.223124][ T500] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 338.692409][ T500] usb 4-1: unable to get BOS descriptor or descriptor too short [ 338.781743][ T405] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 339.003865][ T500] usb 4-1: config 63 has an invalid interface number: 66 but max is 0 [ 339.581128][ T10] kworker/u4:1: attempt to access beyond end of device [ 339.581128][ T10] loop1: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 339.607468][ T500] usb 4-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 339.682929][ T10] kworker/u4:1: attempt to access beyond end of device [ 339.682929][ T10] loop1: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 339.725222][ T500] usb 4-1: config 63 has no interface number 0 [ 339.786922][ T500] usb 4-1: config 63 interface 66 has no altsetting 0 [ 339.842403][ T10] kworker/u4:1: attempt to access beyond end of device [ 339.842403][ T10] loop1: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 339.875184][ T500] usb 4-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 339.966250][ T500] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 340.152852][ T500] usb 4-1: Product: syz [ 340.210044][ T500] usb 4-1: Manufacturer: syz [ 340.252805][ T4644] overlayfs: missing 'lowerdir' [ 340.276227][ T500] usb 4-1: SerialNumber: syz [ 340.525123][ T500] usb 4-1: Found UVC 0.07 device syz (174f:8acf) [ 340.545721][ T500] usb 4-1: Failed to query (GET_INFO) UVC control 6 on unit 1: -71 (exp. 1). [ 340.639336][ T500] usb 4-1: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 340.651573][ T42] Bluetooth: hci0: Frame reassembly failed (-84) [ 340.658652][ T500] usb 4-1: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 340.680341][ T500] usb 4-1: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 340.699579][ T500] usb 4-1: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 340.767099][ T500] usb 4-1: No streaming interface found for terminal 29. [ 340.775395][ T500] uvcvideo 4-1:63.66: Entity type for entity Output 5 was not initialized! [ 340.792921][ T500] usb 4-1: USB disconnect, device number 21 [ 340.836447][ T4654] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4654 comm=syz.0.1090 [ 340.950325][ T852] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 341.132022][ T852] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 341.143281][ T852] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 341.152634][ T852] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 341.162237][ T852] usb 2-1: config 0 descriptor?? [ 341.586765][ T4663] ipt_REJECT: TCP_RESET invalid for non-tcp [ 341.687037][ T4663] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 341.721805][ T4665] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1093'. [ 342.720292][ T697] Bluetooth: hci0: command 0x1003 tx timeout [ 342.730484][ T3809] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 342.738201][ T4650] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 342.744764][ T4656] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 344.314672][ T852] usbhid 2-1:0.0: can't add hid device: -71 [ 344.321674][ T852] usbhid: probe of 2-1:0.0 failed with error -71 [ 344.329447][ T852] usb 2-1: USB disconnect, device number 23 [ 344.346762][ T4691] loop1: detected capacity change from 0 to 1024 [ 344.372670][ T4691] EXT4-fs: Ignoring removed nomblk_io_submit option [ 344.414982][ T4691] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 345.896870][ T19] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 345.925588][ T283] EXT4-fs (loop1): unmounting filesystem. [ 345.958134][ T337] Bluetooth: hci0: Frame reassembly failed (-84) [ 346.096950][ T4711] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1104'. [ 346.330897][ T4713] loop1: detected capacity change from 0 to 256 [ 346.349197][ T4713] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 347.021869][ T19] usb 5-1: unable to get BOS descriptor or descriptor too short [ 347.031113][ T19] usb 5-1: config 63 has an invalid interface number: 66 but max is 0 [ 347.039548][ T19] usb 5-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 347.051357][ T19] usb 5-1: config 63 has no interface number 0 [ 347.058272][ T19] usb 5-1: config 63 interface 66 has no altsetting 0 [ 347.067772][ T19] usb 5-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 347.078379][ T19] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 347.088167][ T19] usb 5-1: Product: syz [ 347.092901][ T19] usb 5-1: Manufacturer: syz [ 347.097742][ T19] usb 5-1: SerialNumber: syz [ 347.265708][ T4723] loop1: detected capacity change from 0 to 256 [ 347.279116][ T4723] FAT-fs (loop1): Directory bread(block 64) failed [ 347.284012][ T19] usb 5-1: Found UVC 0.07 device syz (174f:8acf) [ 347.295349][ T4723] FAT-fs (loop1): Directory bread(block 65) failed [ 347.304400][ T4723] FAT-fs (loop1): Directory bread(block 66) failed [ 347.304462][ T19] usb 5-1: Failed to query (GET_INFO) UVC control 6 on unit 1: -71 (exp. 1). [ 347.311944][ T4723] FAT-fs (loop1): Directory bread(block 67) failed [ 347.325154][ T19] usb 5-1: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 347.327257][ T4723] FAT-fs (loop1): Directory bread(block 68) failed [ 347.342909][ T4723] FAT-fs (loop1): Directory bread(block 69) failed [ 347.349562][ T4723] FAT-fs (loop1): Directory bread(block 70) failed [ 347.356409][ T4723] FAT-fs (loop1): Directory bread(block 71) failed [ 347.363408][ T4723] FAT-fs (loop1): Directory bread(block 72) failed [ 347.370186][ T4723] FAT-fs (loop1): Directory bread(block 73) failed [ 347.395445][ T19] usb 5-1: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 347.404832][ T19] usb 5-1: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 347.414284][ T19] usb 5-1: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 347.423955][ T19] usb 5-1: No streaming interface found for terminal 29. [ 347.431403][ T19] uvcvideo 5-1:63.66: Entity type for entity Output 5 was not initialized! [ 347.461796][ T19] usb 5-1: USB disconnect, device number 26 [ 347.653249][ T10] Bluetooth: hci1: Frame reassembly failed (-84) [ 347.660058][ T10] Bluetooth: hci1: Frame reassembly failed (-84) [ 348.000332][ T3809] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 348.000385][ T45] Bluetooth: hci0: command 0x1003 tx timeout [ 348.173338][ T4739] loop2: detected capacity change from 0 to 1024 [ 348.192719][ T4739] EXT4-fs: Ignoring removed nomblk_io_submit option [ 348.262089][ T4739] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 348.458039][ T4748] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1115'. [ 349.316707][ T337] kworker/u4:4: attempt to access beyond end of device [ 349.316707][ T337] loop1: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 349.346458][ T337] kworker/u4:4: attempt to access beyond end of device [ 349.346458][ T337] loop1: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 349.389248][ T337] kworker/u4:4: attempt to access beyond end of device [ 349.389248][ T337] loop1: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 349.454324][ T337] Bluetooth: hci0: Frame reassembly failed (-84) [ 349.556097][ T284] EXT4-fs (loop2): unmounting filesystem. [ 349.680339][ T697] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 349.680347][ T45] Bluetooth: hci1: command 0x1003 tx timeout [ 349.704527][ T4766] loop3: detected capacity change from 0 to 256 [ 349.714404][ T4766] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 350.177272][ T4772] ipt_REJECT: TCP_RESET invalid for non-tcp [ 350.184219][ T4772] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 350.520371][ T4776] ipt_REJECT: TCP_RESET invalid for non-tcp [ 350.838338][ T4775] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 350.890365][ T42] Bluetooth: hci1: Frame reassembly failed (-84) [ 351.522469][ T3809] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 351.522664][ T594] Bluetooth: hci0: command 0x1003 tx timeout [ 352.196019][ T4792] loop4: detected capacity change from 0 to 256 [ 352.207916][ T4793] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1126'. [ 352.246104][ T4792] FAT-fs (loop4): Directory bread(block 64) failed [ 352.257878][ T4792] FAT-fs (loop4): Directory bread(block 65) failed [ 352.265077][ T4792] FAT-fs (loop4): Directory bread(block 66) failed [ 352.271850][ T4792] FAT-fs (loop4): Directory bread(block 67) failed [ 352.278556][ T4792] FAT-fs (loop4): Directory bread(block 68) failed [ 352.285438][ T4792] FAT-fs (loop4): Directory bread(block 69) failed [ 352.293186][ T4792] FAT-fs (loop4): Directory bread(block 70) failed [ 352.299891][ T4792] FAT-fs (loop4): Directory bread(block 71) failed [ 352.308114][ T4792] FAT-fs (loop4): Directory bread(block 72) failed [ 352.314909][ T4792] FAT-fs (loop4): Directory bread(block 73) failed [ 352.480334][ T24] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 352.671776][ T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 352.683841][ T24] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 352.693965][ T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 352.748693][ T24] usb 1-1: config 0 descriptor?? [ 352.981807][ T4764] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 352.982928][ T3809] Bluetooth: hci1: command 0x1003 tx timeout [ 353.133651][ T337] Bluetooth: hci0: Frame reassembly failed (-84) [ 353.226220][ T337] kworker/u4:4: attempt to access beyond end of device [ 353.226220][ T337] loop4: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 353.240701][ T337] kworker/u4:4: attempt to access beyond end of device [ 353.240701][ T337] loop4: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 353.255747][ T337] kworker/u4:4: attempt to access beyond end of device [ 353.255747][ T337] loop4: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 353.302746][ T4814] loop4: detected capacity change from 0 to 256 [ 353.309619][ T4814] exfat: Bad value for 'umask' [ 353.510024][ T4817] loop4: detected capacity change from 0 to 128 [ 353.521931][ T4817] EXT4-fs (loop4): Test dummy encryption mode enabled [ 353.530953][ T10] Bluetooth: hci1: Frame reassembly failed (-84) [ 353.540635][ T4817] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 353.550192][ T4817] ext4 filesystem being mounted at /215/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 353.970616][ T4824] loop1: detected capacity change from 0 to 256 [ 353.988478][ T4824] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d) [ 354.564990][ T282] EXT4-fs (loop4): unmounting filesystem. [ 354.584955][ T10] Bluetooth: hci2: Frame reassembly failed (-84) [ 355.200331][ T594] Bluetooth: hci0: command 0x1003 tx timeout [ 355.200329][ T4764] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 355.212909][ T4809] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 355.226735][ T24] usbhid 1-1:0.0: can't add hid device: -71 [ 355.233785][ T4818] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 355.239807][ T4840] loop3: detected capacity change from 0 to 256 [ 355.244743][ T24] usbhid: probe of 1-1:0.0 failed with error -71 [ 355.256619][ T24] usb 1-1: USB disconnect, device number 21 [ 355.263096][ T4840] exfat: Bad value for 'umask' [ 355.419116][ T4842] loop3: detected capacity change from 0 to 128 [ 355.450303][ T4842] EXT4-fs (loop3): Test dummy encryption mode enabled [ 355.592035][ T4842] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 355.600998][ T4764] Bluetooth: hci1: command 0x1003 tx timeout [ 355.608011][ T697] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 355.608804][ T4842] ext4 filesystem being mounted at /227/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 355.633795][ T24] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 355.655764][ T4842] EXT4-fs warning (device loop3): verify_group_input:151: Cannot add at group 9 (only 1 groups) [ 355.870345][ T24] usb 1-1: Using ep0 maxpacket: 16 [ 355.877367][ T24] usb 1-1: config 0 has an invalid interface number: 251 but max is 0 [ 355.887673][ T24] usb 1-1: config 0 has no interface number 0 [ 355.894640][ T24] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 355.905796][ T24] usb 1-1: config 0 interface 251 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 355.919325][ T24] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 355.929465][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 355.938141][ T24] usb 1-1: Product: syz [ 355.943244][ T24] usb 1-1: Manufacturer: syz [ 355.948031][ T24] usb 1-1: SerialNumber: syz [ 355.972048][ T24] usb 1-1: config 0 descriptor?? [ 355.978130][ T4839] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 355.995280][ T24] asix: probe of 1-1:0.251 failed with error -22 [ 356.191877][ T286] EXT4-fs (loop3): unmounting filesystem. [ 356.248797][ T4848] loop2: detected capacity change from 0 to 256 [ 356.280379][ T4848] FAT-fs (loop2): Directory bread(block 64) failed [ 356.296272][ T4848] FAT-fs (loop2): Directory bread(block 65) failed [ 356.306170][ T4848] FAT-fs (loop2): Directory bread(block 66) failed [ 356.312900][ T4848] FAT-fs (loop2): Directory bread(block 67) failed [ 356.319693][ T4848] FAT-fs (loop2): Directory bread(block 68) failed [ 356.326401][ T4848] FAT-fs (loop2): Directory bread(block 69) failed [ 356.333675][ T4848] FAT-fs (loop2): Directory bread(block 70) failed [ 356.340437][ T4848] FAT-fs (loop2): Directory bread(block 71) failed [ 356.347217][ T4848] FAT-fs (loop2): Directory bread(block 72) failed [ 356.366587][ T4848] FAT-fs (loop2): Directory bread(block 73) failed [ 356.393871][ T4853] ipt_REJECT: TCP_RESET invalid for non-tcp [ 356.400494][ T4853] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 356.640287][ T697] Bluetooth: hci2: command 0x1003 tx timeout [ 356.646525][ T3809] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 357.105085][ T337] kworker/u4:4: attempt to access beyond end of device [ 357.105085][ T337] loop2: rw=1, sector=1224, nr_sectors = 32 limit=256 [ 357.119270][ T337] kworker/u4:4: attempt to access beyond end of device [ 357.119270][ T337] loop2: rw=1, sector=1288, nr_sectors = 544 limit=256 [ 357.135147][ T337] kworker/u4:4: attempt to access beyond end of device [ 357.135147][ T337] loop2: rw=1, sector=1864, nr_sectors = 1476 limit=256 [ 357.149523][ T4865] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1145'. [ 357.280245][ C1] ================================================================== [ 357.288699][ C1] BUG: KASAN: use-after-free in __run_timers+0x340/0x9f0 [ 357.295986][ C1] Write of size 8 at addr ffff888114604a00 by task swapper/1/0 [ 357.303996][ C1] [ 357.306431][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 [ 357.313560][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 357.323792][ C1] Call Trace: [ 357.327168][ C1] [ 357.330094][ C1] __dump_stack+0x21/0x24 [ 357.334545][ C1] dump_stack_lvl+0x110/0x170 [ 357.339230][ C1] ? __cfi_dump_stack_lvl+0x8/0x8 [ 357.344251][ C1] ? update_rq_clock+0x1c1/0x5c0 [ 357.349245][ C1] ? __run_timers+0x340/0x9f0 [ 357.354027][ C1] print_address_description+0x71/0x200 [ 357.359763][ C1] print_report+0x4a/0x60 [ 357.364353][ C1] kasan_report+0x122/0x150 [ 357.368973][ C1] ? __run_timers+0x340/0x9f0 [ 357.374008][ C1] __asan_report_store8_noabort+0x17/0x20 [ 357.380097][ C1] __run_timers+0x340/0x9f0 [ 357.384860][ C1] ? sched_clock+0x9/0x10 [ 357.389218][ C1] ? sched_clock_cpu+0x6e/0x260 [ 357.394239][ C1] ? calc_index+0x200/0x200 [ 357.398792][ C1] ? kvm_sched_clock_read+0x18/0x40 [ 357.404172][ C1] run_timer_softirq+0x6a/0xf0 [ 357.409027][ C1] handle_softirqs+0x1d7/0x600 [ 357.413962][ C1] ? irqtime_account_irq+0xc4/0x240 [ 357.419298][ C1] __irq_exit_rcu+0x52/0xf0 [ 357.423966][ C1] irq_exit_rcu+0x9/0x10 [ 357.428299][ C1] sysvec_apic_timer_interrupt+0xa9/0xc0 [ 357.434025][ C1] [ 357.437059][ C1] [ 357.440023][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 357.446099][ C1] RIP: 0010:debug_smp_processor_id+0x0/0x20 [ 357.451992][ C1] Code: 90 90 90 90 90 b8 0c 67 40 a5 55 48 89 e5 e8 77 f9 ff ff 5d c3 00 00 cc cc 00 90 90 90 90 90 90 90 90 90 90 90 b8 25 e5 7d 83 <55> 48 89 e5 48 c7 c7 40 77 ca 85 48 c7 c6 80 77 ca 85 e8 09 00 00 [ 357.471695][ C1] RSP: 0018:ffffc90000147df0 EFLAGS: 00000282 [ 357.477787][ C1] RAX: de5daa57dbb41500 RBX: ffff888100335100 RCX: de5daa57dbb41500 [ 357.485881][ C1] RDX: 0000000000000000 RSI: ffffffff85af1a60 RDI: ffffffff85ca77a0 [ 357.493965][ C1] RBP: ffffc90000147e10 R08: ffff8881f6f348b3 R09: 1ffff1103ede6916 [ 357.502034][ C1] R10: dffffc0000000000 R11: ffffed103ede6917 R12: 0000000000000000 [ 357.510175][ C1] R13: 0000000000000000 R14: ffff888100335100 R15: dffffc0000000000 [ 357.518315][ C1] ? default_idle_call+0x7d/0x1d0 [ 357.523429][ C1] do_idle+0x1a7/0x560 [ 357.527509][ C1] ? sysvec_call_function_single+0x61/0xc0 [ 357.533362][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 357.538570][ C1] ? schedule_idle+0x5b/0x90 [ 357.543272][ C1] cpu_startup_entry+0x43/0x60 [ 357.548131][ C1] start_secondary+0x119/0x120 [ 357.552992][ C1] secondary_startup_64_no_verify+0xce/0xdb [ 357.558897][ C1] [ 357.562000][ C1] [ 357.564317][ C1] Allocated by task 4809: [ 357.568813][ C1] kasan_set_track+0x4b/0x70 [ 357.573498][ C1] kasan_save_alloc_info+0x25/0x30 [ 357.578609][ C1] __kasan_kmalloc+0x95/0xb0 [ 357.583202][ C1] __kmalloc+0xb1/0x1e0 [ 357.587452][ C1] hci_alloc_dev_priv+0x27/0x1bd0 [ 357.592835][ C1] hci_uart_tty_ioctl+0x3c8/0xa20 [ 357.598067][ C1] tty_ioctl+0x8ef/0xc60 [ 357.602764][ C1] __se_sys_ioctl+0x12f/0x1b0 [ 357.607524][ C1] __x64_sys_ioctl+0x7b/0x90 [ 357.612205][ C1] x64_sys_call+0x58b/0x9a0 [ 357.616721][ C1] do_syscall_64+0x4c/0xa0 [ 357.621483][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 357.627650][ C1] [ 357.630085][ C1] Freed by task 4818: [ 357.634090][ C1] kasan_set_track+0x4b/0x70 [ 357.638825][ C1] kasan_save_free_info+0x31/0x50 [ 357.643908][ C1] ____kasan_slab_free+0x132/0x180 [ 357.649192][ C1] __kasan_slab_free+0x11/0x20 [ 357.654142][ C1] slab_free_freelist_hook+0xc2/0x190 [ 357.659643][ C1] __kmem_cache_free+0xb7/0x1b0 [ 357.664681][ C1] kfree+0x6f/0xf0 [ 357.668584][ C1] hci_release_dev+0x12a3/0x13b0 [ 357.673612][ C1] bt_host_release+0x82/0x90 [ 357.678290][ C1] device_release+0xa4/0x1d0 [ 357.682966][ C1] kobject_put+0x19d/0x280 [ 357.687382][ C1] put_device+0x1f/0x30 [ 357.691635][ C1] hci_dev_cmd+0x279/0x740 [ 357.696179][ C1] hci_sock_ioctl+0x41e/0x7f0 [ 357.701149][ C1] sock_do_ioctl+0x114/0x330 [ 357.705992][ C1] sock_ioctl+0x4bd/0x710 [ 357.710577][ C1] __se_sys_ioctl+0x12f/0x1b0 [ 357.715267][ C1] __x64_sys_ioctl+0x7b/0x90 [ 357.719852][ C1] x64_sys_call+0x58b/0x9a0 [ 357.724442][ C1] do_syscall_64+0x4c/0xa0 [ 357.728925][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 357.735081][ C1] [ 357.737600][ C1] Last potentially related work creation: [ 357.743480][ C1] kasan_save_stack+0x3a/0x60 [ 357.748396][ C1] __kasan_record_aux_stack+0xb6/0xc0 [ 357.754003][ C1] kasan_record_aux_stack_noalloc+0xb/0x10 [ 357.759813][ C1] insert_work+0x51/0x300 [ 357.764145][ C1] __queue_work+0x9b1/0xd30 [ 357.768796][ C1] queue_work_on+0xde/0x150 [ 357.773390][ C1] __hci_cmd_sync_sk+0xa7f/0xd30 [ 357.778413][ C1] hci_cmd_sync_status+0x53/0x120 [ 357.783435][ C1] hci_dev_cmd+0x35b/0x740 [ 357.787931][ C1] hci_sock_ioctl+0x41e/0x7f0 [ 357.792616][ C1] sock_do_ioctl+0x114/0x330 [ 357.797552][ C1] sock_ioctl+0x4bd/0x710 [ 357.802046][ C1] __se_sys_ioctl+0x12f/0x1b0 [ 357.806762][ C1] __x64_sys_ioctl+0x7b/0x90 [ 357.811348][ C1] x64_sys_call+0x58b/0x9a0 [ 357.815939][ C1] do_syscall_64+0x4c/0xa0 [ 357.820534][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 357.826519][ C1] [ 357.828834][ C1] Second to last potentially related work creation: [ 357.835409][ C1] kasan_save_stack+0x3a/0x60 [ 357.840089][ C1] __kasan_record_aux_stack+0xb6/0xc0 [ 357.845597][ C1] kasan_record_aux_stack_noalloc+0xb/0x10 [ 357.851500][ C1] insert_work+0x51/0x300 [ 357.855825][ C1] __queue_work+0x9b1/0xd30 [ 357.860423][ C1] queue_work_on+0xde/0x150 [ 357.865188][ C1] __hci_cmd_sync_sk+0xa7f/0xd30 [ 357.870126][ C1] hci_cmd_sync_status+0x53/0x120 [ 357.875231][ C1] hci_dev_cmd+0x35b/0x740 [ 357.879648][ C1] hci_sock_ioctl+0x41e/0x7f0 [ 357.884631][ C1] sock_do_ioctl+0x114/0x330 [ 357.889304][ C1] sock_ioctl+0x4bd/0x710 [ 357.893626][ C1] __se_sys_ioctl+0x12f/0x1b0 [ 357.898393][ C1] __x64_sys_ioctl+0x7b/0x90 [ 357.903063][ C1] x64_sys_call+0x58b/0x9a0 [ 357.907651][ C1] do_syscall_64+0x4c/0xa0 [ 357.912352][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 357.918290][ C1] [ 357.920637][ C1] The buggy address belongs to the object at ffff888114604000 [ 357.920637][ C1] which belongs to the cache kmalloc-8k of size 8192 [ 357.935061][ C1] The buggy address is located 2560 bytes inside of [ 357.935061][ C1] 8192-byte region [ffff888114604000, ffff888114606000) [ 357.948789][ C1] [ 357.951148][ C1] The buggy address belongs to the physical page: [ 357.957642][ C1] page:ffffea0004518000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x114600 [ 357.968061][ C1] head:ffffea0004518000 order:3 compound_mapcount:0 compound_pincount:0 [ 357.976466][ C1] flags: 0x4000000000010200(slab|head|zone=1) [ 357.982717][ C1] raw: 4000000000010200 0000000000000000 dead000000000001 ffff888100043500 [ 357.991316][ C1] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000 [ 357.999900][ C1] page dumped because: kasan: bad access detected [ 358.006400][ C1] page_owner tracks the page as allocated [ 358.012558][ C1] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 3742, tgid 3727 (syz.4.833), ts 275890000540, free_ts 275865553208 [ 358.037219][ C1] post_alloc_hook+0x1f5/0x210 [ 358.042425][ C1] prep_new_page+0x1c/0x110 [ 358.047217][ C1] get_page_from_freelist+0x2d12/0x2d80 [ 358.052936][ C1] __alloc_pages+0x1d9/0x480 [ 358.057734][ C1] alloc_slab_page+0x6e/0xf0 [ 358.062684][ C1] new_slab+0x98/0x3d0 [ 358.067286][ C1] ___slab_alloc+0x6bd/0xb20 [ 358.072480][ C1] __slab_alloc+0x5e/0xa0 [ 358.076936][ C1] __kmem_cache_alloc_node+0x203/0x2c0 [ 358.082663][ C1] kmalloc_trace+0x29/0xb0 [ 358.087647][ C1] ipv4_sysctl_init_net+0x25e/0x310 [ 358.093193][ C1] ops_init+0x1c8/0x4a0 [ 358.097459][ C1] setup_net+0x4b4/0xcc0 [ 358.101811][ C1] copy_net_ns+0x355/0x5c0 [ 358.106504][ C1] create_new_namespaces+0x3a2/0x660 [ 358.111992][ C1] unshare_nsproxy_namespaces+0x120/0x170 [ 358.117891][ C1] page last free stack trace: [ 358.122824][ C1] free_unref_page_prepare+0x742/0x750 [ 358.128485][ C1] free_unref_page+0x95/0x540 [ 358.133610][ C1] __free_pages+0x67/0x100 [ 358.138224][ C1] __free_slab+0xca/0x1a0 [ 358.142732][ C1] __unfreeze_partials+0x160/0x190 [ 358.147945][ C1] put_cpu_partial+0xa9/0x100 [ 358.152932][ C1] __slab_free+0x1c4/0x280 [ 358.157640][ C1] ___cache_free+0xbf/0xd0 [ 358.162146][ C1] qlist_free_all+0xc6/0x140 [ 358.166831][ C1] kasan_quarantine_reduce+0x14a/0x170 [ 358.172564][ C1] __kasan_slab_alloc+0x24/0x80 [ 358.177510][ C1] slab_post_alloc_hook+0x4f/0x2d0 [ 358.182734][ C1] kmem_cache_alloc+0x16e/0x330 [ 358.187630][ C1] getname_flags+0xb9/0x500 [ 358.192488][ C1] getname+0x19/0x20 [ 358.196476][ C1] do_sys_openat2+0xeb/0x810 [ 358.201500][ C1] [ 358.204218][ C1] Memory state around the buggy address: [ 358.210280][ C1] ffff888114604900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 358.218798][ C1] ffff888114604980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 358.227664][ C1] >ffff888114604a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 358.236247][ C1] ^ [ 358.240424][ C1] ffff888114604a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 358.248986][ C1] ffff888114604b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 358.257152][ C1] ================================================================== [ 358.265412][ C1] Disabling lock debugging due to kernel taint [ 358.271838][ C1] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 358.284078][ C1] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 358.293256][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B syzkaller #0 [ 358.302145][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 358.312643][ C1] RIP: 0010:__queue_work+0x575/0xd30 [ 358.318224][ C1] Code: 39 2b 0f 84 b9 00 00 00 e8 48 46 29 00 4c 89 ff e8 60 70 b8 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 9c 78 6e 00 49 8b 7d 00 e8 f3 6b [ 358.338525][ C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046 [ 358.344871][ C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888100335100 [ 358.352930][ C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff [ 358.361167][ C1] RBP: ffffc900001b0d08 R08: 0000000000000007 R09: fffffffffffffffb [ 358.369481][ C1] R10: dffffc0000000000 R11: ffffed10228c0939 R12: dffffc0000000000 [ 358.377881][ C1] R13: 0000000000000000 R14: ffff8881146049c8 R15: 0000000000000008 [ 358.386022][ C1] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 358.395034][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 358.401616][ C1] CR2: 0000200000022000 CR3: 000000011fe38000 CR4: 00000000003506a0 [ 358.410295][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 358.418695][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 358.427015][ C1] Call Trace: [ 358.430387][ C1] [ 358.433232][ C1] delayed_work_timer_fn+0x61/0x80 [ 358.438349][ C1] ? __cfi_delayed_work_timer_fn+0x10/0x10 [ 358.444291][ C1] call_timer_fn+0x46/0x2a0 [ 358.448920][ C1] ? __cfi_delayed_work_timer_fn+0x10/0x10 [ 358.454810][ C1] __run_timers+0x689/0x9f0 [ 358.459337][ C1] ? calc_index+0x200/0x200 [ 358.463928][ C1] ? kvm_sched_clock_read+0x18/0x40 [ 358.469142][ C1] run_timer_softirq+0x6a/0xf0 [ 358.473992][ C1] handle_softirqs+0x1d7/0x600 [ 358.478840][ C1] ? irqtime_account_irq+0xc4/0x240 [ 358.484146][ C1] __irq_exit_rcu+0x52/0xf0 [ 358.488732][ C1] irq_exit_rcu+0x9/0x10 [ 358.493062][ C1] sysvec_apic_timer_interrupt+0xa9/0xc0 [ 358.498779][ C1] [ 358.501892][ C1] [ 358.504918][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 358.510983][ C1] RIP: 0010:debug_smp_processor_id+0x0/0x20 [ 358.517144][ C1] Code: 90 90 90 90 90 b8 0c 67 40 a5 55 48 89 e5 e8 77 f9 ff ff 5d c3 00 00 cc cc 00 90 90 90 90 90 90 90 90 90 90 90 b8 25 e5 7d 83 <55> 48 89 e5 48 c7 c7 40 77 ca 85 48 c7 c6 80 77 ca 85 e8 09 00 00 [ 358.537712][ C1] RSP: 0018:ffffc90000147df0 EFLAGS: 00000282 [ 358.544052][ C1] RAX: de5daa57dbb41500 RBX: ffff888100335100 RCX: de5daa57dbb41500 [ 358.552388][ C1] RDX: 0000000000000000 RSI: ffffffff85af1a60 RDI: ffffffff85ca77a0 [ 358.560380][ C1] RBP: ffffc90000147e10 R08: ffff8881f6f348b3 R09: 1ffff1103ede6916 [ 358.568449][ C1] R10: dffffc0000000000 R11: ffffed103ede6917 R12: 0000000000000000 [ 358.577423][ C1] R13: 0000000000000000 R14: ffff888100335100 R15: dffffc0000000000 [ 358.585957][ C1] ? default_idle_call+0x7d/0x1d0 [ 358.591368][ C1] do_idle+0x1a7/0x560 [ 358.595446][ C1] ? sysvec_call_function_single+0x61/0xc0 [ 358.601337][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 358.606711][ C1] ? schedule_idle+0x5b/0x90 [ 358.611478][ C1] cpu_startup_entry+0x43/0x60 [ 358.616439][ C1] start_secondary+0x119/0x120 [ 358.621288][ C1] secondary_startup_64_no_verify+0xce/0xdb [ 358.627277][ C1] [ 358.630293][ C1] Modules linked in: [ 358.634282][ C1] ---[ end trace 0000000000000000 ]--- [ 358.639747][ C1] RIP: 0010:__queue_work+0x575/0xd30 [ 358.645370][ C1] Code: 39 2b 0f 84 b9 00 00 00 e8 48 46 29 00 4c 89 ff e8 60 70 b8 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 9c 78 6e 00 49 8b 7d 00 e8 f3 6b [ 358.665698][ C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046 [ 358.672027][ C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888100335100 [ 358.680340][ C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff [ 358.688572][ C1] RBP: ffffc900001b0d08 R08: 0000000000000007 R09: fffffffffffffffb [ 358.697071][ C1] R10: dffffc0000000000 R11: ffffed10228c0939 R12: dffffc0000000000 [ 358.705670][ C1] R13: 0000000000000000 R14: ffff8881146049c8 R15: 0000000000000008 [ 358.713945][ C1] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 358.723438][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 358.730296][ C1] CR2: 0000200000022000 CR3: 000000011fe38000 CR4: 00000000003506a0 [ 358.738280][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 358.746685][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 358.754851][ C1] Kernel panic - not syncing: Fatal exception in interrupt [ 358.762247][ C1] Kernel Offset: disabled [ 358.766946][ C1] Rebooting in 86400 seconds..