last executing test programs:

6m5.954620697s ago: executing program 1 (id=324):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$tty1(0xc, 0x4, 0x1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0}, 0x68)
connect$l2tp6(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sched_setscheduler(0x0, 0x2, 0x0)
ioctl$sock_SIOCGPGRP(r1, 0x8904, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000005580)=""/102392, 0x18ff8)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800"], 0x64}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="e0000000000101040000000000000000020000001c00188008000140a080000008000240000000020860034000000002240001801400018008000100e000000108000200e00000010c0002800500010000000000040016404400108008000140fffff800080002400000000108000140ffff1fc508000140000006870800014000000004080003"], 0xe0}, 0x1, 0x0, 0x0, 0x4}, 0x0)

6m5.69099854s ago: executing program 1 (id=326):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x1f, 0xd, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000fcffffff000000008000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000100000085000000a6000000850000000e00000095"], &(0x7f0000000080)='syzkaller\x00', 0x81, 0x0, 0x0, 0x0, 0x11}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="190000000400000008"], 0x48)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x57)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x899, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1c, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="2ff000fea0"], 0x0, 0xb, 0x0, 0x0, 0x41100, 0x6e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
ppoll(&(0x7f0000000080)=[{r4, 0x5004}], 0x1, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000000040)=0x18)
ioctl$SNDCTL_DSP_GETISPACE(r4, 0x8010500d, &(0x7f0000000000))

6m3.909474593s ago: executing program 1 (id=329):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000040)={0x2})
close(0x3)
close(0x4)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
fgetxattr(0xffffffffffffffff, &(0x7f0000000300)=@known='user.incfs.id\x00', 0x0, 0x0)
syz_usb_connect(0x5, 0x24, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000810087406d040e0a759400000001090212000100000000090400200003"], 0x0)

6m2.128968276s ago: executing program 1 (id=338):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000100))
fcntl$lock(r0, 0x25, &(0x7f0000000040)={0x1, 0x0, 0x10001, 0x6})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x200000e)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x10000000003, 0x40a142)
preadv(r1, &(0x7f0000000480)=[{&(0x7f0000000440)}], 0x1, 0x2, 0xd)
ioctl$DVB_DEMUX_DMX_SET_FILTER(r1, 0x403c6f2b, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0xffffffffffffff00}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x6)
ioctl$int_in(0xffffffffffffffff, 0x0, &(0x7f0000000340)=0xf0c)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000009b80)=""/102392, 0x18ff8)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYRESOCT=r0, @ANYRESOCT=r1, @ANYRESOCT=r0], 0x10c}, 0x1, 0x0, 0x0, 0x40004}, 0x800)
socket$tipc(0x1e, 0x5, 0x0)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r4, 0x65, 0x7, &(0x7f00000001c0)=0x8, 0x4)
setsockopt$CAN_RAW_FD_FRAMES(r4, 0x65, 0x5, &(0x7f00000000c0)=0x1, 0x4)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_default\x00', 0x0, 0x1c, 0x0)
mkdir(&(0x7f00000002c0)='./file1\x00', 0x0)
r5 = signalfd4(r4, 0x0, 0x0, 0x80800)
ioctl$KIOCSOUND(r5, 0x4b2f, 0xd)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000003c0)=0x11)
r7 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f00000001c0)=0x10)

6m1.361939923s ago: executing program 1 (id=341):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000780), r0)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000c80)={0x34, r1, 0x1, 0x70bd2d, 0xa000a00, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @rand_addr=0x64010101}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x2000000}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000500))
r4 = syz_genetlink_get_family_id$smc(&(0x7f0000000280), r3)
sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x20, r4, 0x4, 0x70bd2d, 0x25dfdbff, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x14}, 0x4)
socket$netlink(0x10, 0x3, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x802, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TCFLSH(r5, 0x540b, 0x1)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r6, &(0x7f00000001c0)={&(0x7f00000017c0)={0x2, 0x4e22, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000280)=[@rdma_args={0x48, 0x114, 0x1, {{0x4000, 0x2}, {&(0x7f0000000140)=""/111, 0x6f}, &(0x7f0000001b40)=[{&(0x7f0000000080)=""/79, 0x4f}], 0x1, 0x21}}, @rdma_args={0x48, 0x114, 0x1, {{0xfffffff8, 0x4}, {0x0}, &(0x7f0000001580)=[{&(0x7f00000003c0)=""/139, 0x8b}], 0x1, 0x40, 0x3}}], 0x90}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x60}, 0x1, 0x0, 0x0, 0x44040}, 0x0)

5m58.542912412s ago: executing program 1 (id=351):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000000))

5m58.127575132s ago: executing program 32 (id=351):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000000))

8.816388525s ago: executing program 0 (id=1817):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
accept$unix(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r1, 0x0, 0x4004)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x20010, 0xffffffffffffffff, 0xffffc000)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='maps\x00')
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000cb2000/0x4000)=nil, 0x4000, &(0x7f0000000040)=')^(://\x00')
read$FUSE(r4, &(0x7f0000005200)={0x2020}, 0x2020)
setsockopt$inet6_tcp_int(r4, 0x6, 0xc, &(0x7f0000000140)=0x9, 0x4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x109001, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x40000000000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="240000001800010000000000fedbdf251d01060008000900", @ANYRES32=r7, @ANYBLOB="08000a04", @ANYRES32=r7, @ANYBLOB="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"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

6.41653475s ago: executing program 0 (id=1825):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000400)=ANY=[@ANYBLOB="240000002100010000000000000000000a000000000000010162000008001a"], 0x24}], 0x1}, 0x0)
r1 = syz_usb_connect(0x3, 0x24, &(0x7f0000000080)=ANY=[@ANYRES8=r0], 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x24, r2, 0x1, 0xfff7fffe, 0x25dfdbfc, {{0x2}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newtaction={0x84, 0x30, 0x127, 0x0, 0x10000, {0x0, 0x0, 0x1be}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x200, 0x20000000, 0xffff, 0xbe35, 0x654, {0x59, 0x0, 0x8001, 0x7, 0x1, 0x80006}, {0x80, 0x0, 0x7, 0x9, 0x33a0, 0x6}, 0x6, 0x6, 0x7f}}]]}, {0x4}, {0xc, 0xb, {0x1}}, {0xc, 0xa, {0x0, 0x3f}}}}]}]}, 0x84}}, 0x0)
accept4(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x80800)
syz_usb_control_io$hid(r1, 0x0, 0x0)

5.554968479s ago: executing program 3 (id=1828):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010800d972a440b72040155ab7010203010902120001000000000904000000ff"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000880)=@newqdisc={0x138, 0x24, 0xd0f, 0x200000, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x108, 0x2, [@TCA_GRED_STAB={0x104, 0x2, "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"}]}}]}, 0x138}, 0x1, 0x0, 0x0, 0x845}, 0x24008004)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x4, &(0x7f0000006680))
pselect6(0x40, &(0x7f0000000040)={0x4, 0xffffffffffff2949, 0x8001, 0x7, 0x4, 0x10, 0x2b, 0x8be}, 0x0, &(0x7f00000000c0)={0x5, 0x4, 0x100000000, 0x6, 0x8, 0x9, 0x0, 0xe2}, &(0x7f00000001c0), &(0x7f0000000800)={&(0x7f0000000200)={[0xfd]}, 0x8})
syz_emit_ethernet(0x52, &(0x7f00000003c0)={@local, @dev, @val={@void, {0x8100, 0x2, 0x0, 0x3}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "7428dd", 0x18, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_na={0x89, 0x0, 0x0, 0x0, '\x00', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}}}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
getpgid(0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r2 = dup(r1)
ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x103, 0x100, 0x551}})
ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0x107, 0x100, 0x100, 0x1, 0x4000}})
syz_usb_control_io$uac2(r0, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x2, 0x171, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x15f, 0x2, 0x1, 0xde, 0x40, 0xef, "", {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x4}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x1, 0x93fe, 0x9}, {0x6, 0x24, 0x1a, 0x200, 0x22}, [@mdlm_detail={0x103, 0x24, 0x13, 0x9, "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"}]}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x5, 0x3, 0x3b}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x0, 0x1, 0xb, 0x7}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x1, 0xd, 0x40}}}}}}}]}}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000600)={0x44, &(0x7f0000000240)={0x0, 0x11, 0x8, "8087b3b7a29c2abe"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

5.470728575s ago: executing program 2 (id=1830):
syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$SNDCTL_SEQ_THRESHOLD(r0, 0x4004510d, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="010026bd700000dfffff210000001800018014000200766972745f7769666930"], 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
fsmount(r0, 0x0, 0x8)
openat$ubi_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x18e)
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x80c80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0)
write$binfmt_elf64(r3, 0x0, 0x78)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x2000, 0xe7)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000d, 0x12, r4, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

4.616057003s ago: executing program 2 (id=1835):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
accept$unix(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r1, 0x0, 0x4004)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x20010, 0xffffffffffffffff, 0xffffc000)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='maps\x00')
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000cb2000/0x4000)=nil, 0x4000, &(0x7f0000000040)=')^(://\x00')
read$FUSE(r4, &(0x7f0000005200)={0x2020}, 0x2020)
setsockopt$inet6_tcp_int(r4, 0x6, 0xc, &(0x7f0000000140)=0x9, 0x4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x109001, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x40000000000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="240000001800010000000000fedbdf251d01060008000900", @ANYRES32=r7, @ANYBLOB="08000a04", @ANYRES32=r7, @ANYBLOB="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"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

3.690979468s ago: executing program 2 (id=1838):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x8)
syz_open_dev$vbi(&(0x7f0000000180), 0x1, 0x2)
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = socket(0x10, 0x80002, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), r4)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f"], 0x1c}, 0x1, 0x0, 0x0, 0x48050}, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000140)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x2, 0x3, 0x0, 0x3, 0x2, 0x0, 0x70bd2c, 0x25dfdbfb}, 0x10}, 0x1, 0x7}, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x85, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0xff, 0x3}, 0x90)
r7 = fsopen(&(0x7f0000000200)='bpf\x00', 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff})
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r9, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000001600)={0x3c, r10, 0x1, 0x70bd2c, 0x1200, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x2}, @NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r8}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r8}}]}]}, 0x3c}}, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
fsmount(r7, 0x1, 0x0)
socket$key(0xf, 0x3, 0x2)

3.140672982s ago: executing program 5 (id=1839):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0xfe, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="3800000040000100fcff070004000000010000000800cb8004000880100001800c0010800400088004000d800c0002"], 0x38}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

2.849811592s ago: executing program 0 (id=1840):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000001f00000080000000000000cebb58e1c408ac0782843a2baec51fb147", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="042708400000006e9075ef"], 0x1c}, 0x1, 0x0, 0x0, 0x9080}, 0x20000045)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000faffbfff000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000048500000082000000850000001100000095"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
socket$inet6(0xa, 0x5, 0x4000003)
socket$inet(0x2, 0x4000000000000001, 0x0)
fsopen(&(0x7f0000000100)='btrfs\x00', 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
ioctl$PTP_SYS_OFFSET(r5, 0x43403d05, &(0x7f0000000900)={0x19})

2.575228455s ago: executing program 5 (id=1841):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, 0x0, 0x20000000)
recvfrom(r0, 0x0, 0x0, 0x42, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010003b0c28bd7000fedbdf2500000000", @ANYRES32=r2, @ANYBLOB="0000000000620000280012800b00010065727370616e000018000a800400120000"], 0x48}, 0x1, 0x0, 0x0, 0x180}, 0x40080c0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
r4 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
mmap(&(0x7f0000001000/0xb000)=nil, 0xb000, 0x2, 0x12, r5, 0x852ac000)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x129a00, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x6)
ioctl$KVM_SET_CPUID(r8, 0x4008ae8a, &(0x7f00000002c0)={0xe5, 0x0, [{0x80000001, 0x2, 0x4, 0x8001}]})
write$sndseq(r4, &(0x7f0000000600)=[{0x6, 0x0, 0x0, 0x0, @tick, {0x4}, {0x0, 0xfc}, @addr={0x5b, 0x5d}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {0x5}, @quote={{0x5, 0x5}}}, {0x0, 0x0, 0x0, 0x0, @tick=0x100, {}, {}, @connect={{0x7, 0x5f}, {0x2, 0x1}}}, {0x1, 0x0, 0x1, 0x0, @tick=0xffffffff, {0x4, 0x1}, {0x7, 0x8}, @quote={{0x2, 0xd8}, 0x8}}], 0x70)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x8, 0x0, 0x5, 0x0, 0x3, 0x7f, 0x5, 0xda, 0x3, 0xc, 0xa, 0x5, 0xa1, 0xfc, 0x6, 0xfe}})
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r9 = accept4(r3, 0x0, 0x0, 0x800)
connect$inet(r9, &(0x7f00000000c0)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
sendmsg$NL80211_CMD_SET_STATION(r9, &(0x7f0000000500)={&(0x7f0000000280), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x1, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x6}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0xff}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}, @NL80211_ATTR_STA_FLAGS={0x24, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_WME={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_ASSOCIATED={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_WME={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_WME={0x4}]}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x3}, @NL80211_ATTR_MAC={0xa}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
setsockopt$inet6_tcp_int(r9, 0x6, 0x1b, &(0x7f0000000000)=0x9, 0x4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB="55f10f000000000061111800000000001800000000000000735c21369afc8d9b00950000000000210057d99bb31140b4c08d5d57721d912104f50117aac3d24427145c9393d92056b1c78691980bc3b349e8de6e2180ffffffffbb07fe4e0f30995d030a1868df0000370e00"/118], &(0x7f0000000540)='syzkaller\x00'}, 0x94)
syz_open_dev$cec(&(0x7f0000000080), 0x0, 0xe8c00)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
r10 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r10, 0x11c, 0x2, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x1fc)
ioperm(0x3, 0x5, 0x7)

2.534016749s ago: executing program 2 (id=1842):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, 0x0, 0x0)
setsockopt$MRT_TABLE(r0, 0x0, 0xcf, &(0x7f00000000c0)=0xfe, 0x4)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000280)={'vxcan1\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r2, 0x0, {}, 0xfd}, 0x18)
connect$can_j1939(r1, &(0x7f0000000080)={0x1d, r2, 0x0, {0x0, 0x0, 0x2}, 0xfe}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x800)
sendmsg$can_j1939(r1, &(0x7f0000000180)={0x0, 0xf5, &(0x7f00000001c0)={&(0x7f0000000300)='.', 0x1a000}}, 0x0)

2.044497437s ago: executing program 0 (id=1843):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8000}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x98, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x70, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x3b}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x38, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0xf}, @NFTA_BITWISE_OP={0x8, 0x6, 0x1, 0x0, 0x5}, @NFTA_BITWISE_MASK={0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x10c}}, 0x0) (fail_nth: 5)

2.032711314s ago: executing program 2 (id=1844):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000240)=0x3)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000080))
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000000)=0xffffffff)
read$dsp(r0, &(0x7f0000000340)=""/36, 0x24)

2.026787631s ago: executing program 3 (id=1845):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001580)={&(0x7f0000001400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@const={0x0, 0x0, 0x0, 0x4}, @struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x0, [{0x0, 0x1, 0x1000000}]}]}}, 0x0, 0x3e}, 0x20)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4800000004080104000002000000000001000000050003008800000006000240001000000600024088000480080001400000730c050003002f"], 0x48}, 0x1, 0x0, 0x0, 0x20000004}, 0x40000)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={<r2=>0x0, 0x7}, &(0x7f0000000040)=0x8)
r3 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
r4 = syz_ublk_setup_io_uring(0x411c2, &(0x7f0000000280)={0x0, 0x30c6, 0x8000, 0x1, 0x17d, 0x0, r3}, &(0x7f0000000100), &(0x7f0000000300), &(0x7f0000000380))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x110, r4, 0x8000000)
r5 = eventfd2(0x1, 0x1)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r4, 0x7, &(0x7f0000000080)=r5, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000001c0)={r2, @in={{0x2, 0x4e21, @loopback}}, 0xae21, 0x8, 0xd, 0x945, 0x90, 0x8, 0x2}, 0x9c)

1.933947764s ago: executing program 5 (id=1846):
r0 = syz_open_procfs(0x0, 0x0)
r1 = openat$nvme_fabrics(0xffffff9c, &(0x7f0000000000), 0x80081, 0x0)
write$uinput_user_dev(r1, 0x0, 0x1f)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000080)='syz_tun\x00', 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r3, 0x10000)
sendfile(r2, r3, 0x0, 0x7ffff004)
r4 = eventfd2(0x4, 0x80801)
io_submit(0x0, 0x4, &(0x7f0000001400)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x7, r0, &(0x7f0000000040)="7071a0", 0x3, 0x4, 0x0, 0x1, r3}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x3, r1, &(0x7f0000000100)="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", 0xfe, 0x6, 0x0, 0x2, r4}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x6, 0x8, r0, &(0x7f00000002c0)="97176d676d27b87a8403ebd53f61a5da0d4d620cfed32958f245708cf414172d3cee2aa9e8dd184337bd27e478aa4fcdbcdb5b9ca927ed927a271052233652b1e9e1d0b9caca9e3195bf62e35e7d1d286731f65100336aeea770d04f5febba82f35ec8d29c55a975b173068055a93e59ad27f7a6b0dc3a12f275fc16b582c62a167c6a071816d312a87b18277b7da4282da3296dff8c219d7569d90ab4dcd7534e1704f641b9edd84a205fd797dfe0ad11ec0ce4bc970aee87", 0xb9, 0x94, 0x0, 0x2, r1}, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x8, 0x40, r2, &(0x7f00000003c0)="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", 0x1000, 0x2, 0x0, 0x3}])

1.54328671s ago: executing program 3 (id=1847):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000000c0)=@bpf_tracing={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x21, '\x00', 0x0, 0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1d479, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x40)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000002c0)="4a2b5af6b9c8af77a75979", 0xb)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3", 0x8}], 0x1}], 0x1, 0x40800)
recvmsg(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fbd3df2502000000050004000100000005000400010000001400020076657468315f746f5f7465616d0000000900030073797a32000000000900010073"], 0x68}, 0x1, 0x0, 0x0, 0x4000145}, 0x0)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000340)={&(0x7f0000000200)={0x90, r2, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'geneve1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'vlan1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip6gretap0\x00'}]}, 0x90}, 0x1, 0x0, 0x0, 0x800}, 0x8080)
r4 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r4, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x4001, 0xfffffffd, @empty}, 0x80, 0x0}, 0x20000001)
sendmsg$sock(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000840), 0x28}, 0x400c0)

1.518768465s ago: executing program 4 (id=1848):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
accept$unix(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r1, 0x0, 0x4004)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x20010, 0xffffffffffffffff, 0xffffc000)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='maps\x00')
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000cb2000/0x4000)=nil, 0x4000, &(0x7f0000000040)=')^(://\x00')
read$FUSE(r4, &(0x7f0000005200)={0x2020}, 0x2020)
setsockopt$inet6_tcp_int(r4, 0x6, 0xc, &(0x7f0000000140)=0x9, 0x4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x109001, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x40000000000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="240000001800010000000000fedbdf251d01060008000900", @ANYRES32=r7, @ANYBLOB="08000a04", @ANYRES32=r7, @ANYBLOB="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"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.421360329s ago: executing program 2 (id=1849):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
listen(r0, 0x5)
r1 = socket$unix(0x1, 0x1, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)
r2 = io_uring_setup(0x8, &(0x7f0000000040)={0x0, 0x620c, 0xc000, 0x800000a, 0x131})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0d00010004000000010004000000000000000000", @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00\x00'], 0x50)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)
connect$unix(r1, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e)
r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x1)
syz_usb_connect(0x3, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000cc1ef420890b070064ef000000010902120001000000000904"], 0x0)
r4 = syz_open_dev$dvb_demux(&(0x7f00000002c0), 0x1, 0x0)
ioctl$DVB_DEMUX_DMX_SET_FILTER(r4, 0x403c6f2b, &(0x7f0000000200)={0x1007, {"9db867d09ed91aa9c5c29f2f1e4be6bf", "cc6c2d12e0353c0e42899a29fdefe3bc", "9defe9f49655f386b84e6bb715dac54f"}, 0x445, 0x7})
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="5001000000000000", @ANYRES64=0x0, @ANYBLOB="0600000000000000030000000000000000000000000000000000000001000000070000001b02000006000000000000008f00000000000000090000000000000007000000000000005d0a0000000000000000010000000000090000007f00000003000000001000000a000000", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="c425ffff05000000000000000b000000000000000d0000000000000001000000b00000000000000000000000060000000000000001000000000000000e000000000000000400000000000000feffffff04000000050000000000000085000000000000000aff4624000000000600000000000000010000000000000006000000000000000100040002000000070000000060000000040000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="01000000000000000000000002000000000000000000000000000080040000005c08000047504c0000000000"], 0x150)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$P9_RMKDIR(r3, &(0x7f0000000240)={0x14, 0x49, 0x2, {0x8, 0x3, 0x1}}, 0x14)
write$char_usb(r3, &(0x7f0000000600)="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", 0xe17)
write$UHID_INPUT(r3, &(0x7f00000014c0)={0x8, {"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", 0x1000}}, 0x1006)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=[0xfff], 0x0, 0x0, 0x1}}, 0x40)

1.409653836s ago: executing program 0 (id=1850):
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000400)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0xffffffffffffffff, 0x3a, '+^\x00', 0x3a, 'sysadm_u', 0x3a, './file0'}, 0x32)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r1, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x1, 0x0, 0x7fff0000}]})
r3 = fanotify_init(0x200, 0x0)
fanotify_mark(r3, 0x1, 0x1033, r2, 0x0)
fchmod(r2, 0x190)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_BT_CHANNEL_POLICY(r5, 0x112, 0xa, 0x0, &(0x7f0000000500))
r6 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
syz_open_dev$video(&(0x7f0000000000), 0x3, 0x22001)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="10000000040000000800000005"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008900000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r7}, &(0x7f0000000000), &(0x7f0000000040)=r8}, 0x20)
sendmsg$FOU_CMD_ADD(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="090200100000fedbdf25010c0000050002"], 0x38}}, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040)={0x1, 0x3}, 0x4)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x15, 0x0, &(0x7f0000001600))
syz_emit_ethernet(0x66, &(0x7f0000000700)={@multicast, @link_local, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @private=0xe0, @multicast1=0xe000c800}, {{0x0, 0x0, 0x1, 0x0, 0xb, 0x0, 0x0, 0x4, 0x6558}, {0x0, 0x0, 0x0, 0x0, 0x11}, {}, {0x8, 0x88be, 0x0, {{}, 0xfffff788}}}}}}}, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r1, 0x0, 0xd2, &(0x7f0000000240)={@empty, @remote, 0x0, "00687b6678411dcc721abfa13ae6fc289d4c0d8f133b7a35becd8937b0cee443", 0x7, 0xa, 0x400, 0x4}, 0x3c)

1.360817992s ago: executing program 3 (id=1851):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f00000002c0)="ebe3a0e9796cfd1647e699f4e376fdba128280b372219d205e00dea7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6902009e6098ed88fbb36f4fe0350ed08af6261449779092e6436b82345574ea58550d301134358885f32d4263ec96775f8feabeb9a94759d68f7dbb1c250d69697dd15645bfd72f0d0ab4c1adc0", 0x80}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x24008885)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0xc0189436, &(0x7f0000000740)={0x0, 0x1, 0x0, 0x8005f, 0x3})
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000580), r2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r4=>0x0})
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@multicast, @random="8a0a63cdec59", @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x4, @remote, @remote, @broadcast, @remote}}}}, 0x0)
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14)

1.254904307s ago: executing program 0 (id=1852):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece)
r2 = dup(r1)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
ioctl$XFS_IOC_FSGROWFSLOG(r2, 0x4008586f, &(0x7f0000000440)={0x1, 0x7})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001800)={'veth1_virt_wifi\x00', <r5=>0x0})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f000001fac0)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x0, 0xdddd0000, 0xe, 0xf0, 0x40, 0xfd, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x7}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x9, 0x8, 0x5, 0xf, 0x3, 0xca}, {0xeeee0000, 0xe6e50002, 0x4, 0x0, 0x2, 0x7, 0x4, 0x1, 0xc, 0x0, 0x6, 0x5}, {0x8000000, 0x3000, 0x8, 0xfc, 0x3, 0x46, 0x2, 0xd, 0x6, 0x3, 0x0, 0x1}, {0x100000, 0xdddd0000, 0x9, 0x1, 0x3, 0x9, 0x9, 0x5, 0x5, 0x44, 0xe, 0x4b}, {0xeeee8000, 0xd000, 0x0, 0x40, 0x3, 0xfc, 0x1, 0xff, 0x4, 0x80, 0x1, 0xfc}, {0x6000, 0x1000, 0x3, 0x9d, 0x3, 0x0, 0x0, 0xd, 0x5, 0x7, 0x0, 0xf8}, {0xffff1000, 0x10000, 0xd, 0x5, 0x83, 0x1, 0xa, 0x9, 0x54, 0x6, 0x2, 0x7}, {0xeeee8000, 0x5}, {0x26000, 0xb}, 0x40010000, 0x0, 0xf000, 0x300, 0x5, 0x1, 0xe6e70c00, [0xffffffffffffff47, 0x401, 0x5, 0xc5]})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000080)={0x1, 0x0, [{0x830, 0x0, 0xffffffff00040000}]})
setsockopt$packet_int(r4, 0x107, 0x14, &(0x7f0000000180)=0x2, 0x4)
setsockopt$packet_int(r4, 0x107, 0xf, 0x0, 0x0)
sendto$packet(r4, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)

1.217785498s ago: executing program 3 (id=1853):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0x2c0, 0x60, 0xd0e0000, 0x2c0, 0x100, 0x390, 0x1d8, 0x1d8, 0x390, 0x1d8, 0x7fffffe, 0x0, {[{{@uncond, 0xee02, 0x2a0, 0x2c0, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{0x3, 0x77, 0x7, 0x2}, {0x6, 0x5d, 0x8, 0xf}, {0x0, 0x7, 0x4, 0x5}, {0x200, 0x10, 0x4, 0x401}, {0x2, 0x7, 0x9, 0x7}, {0x8, 0x2, 0x40, 0x80}, {0x7, 0x10, 0x4, 0xc27e}, {0x0, 0x8, 0x1, 0x9}, {0xa66, 0xf9, 0x2, 0x40}, {0xf207, 0x18, 0x1, 0x6}, {0x2, 0x8, 0x6, 0xb6}, {0x0, 0x5, 0x5, 0x4}, {0x9, 0x7f, 0x5, 0x2}, {0x5, 0x2, 0xf, 0xc00}, {0x1, 0x9, 0x2, 0x54}, {0x3, 0x2b, 0x2, 0x3}, {0xffff, 0x5, 0x6d, 0x7}, {0x6, 0xa, 0x5, 0x51d8}, {0x8, 0xe, 0x5}, {0x0, 0x40, 0x7, 0x88}, {0x7, 0x2, 0x6, 0x3}, {0x98d, 0x2, 0xff, 0x5}, {0x81, 0x1, 0x3, 0x7f}, {0x1, 0x2, 0xc0, 0x86f}, {0x8, 0x2, 0x9, 0x6}, {0x7, 0x75, 0x7, 0xd}, {0x6, 0x6, 0x6, 0x8001}, {0x120, 0x5, 0x2, 0x3dbd}, {0x5, 0x8, 0x9, 0x1}, {0x0, 0x3, 0x9, 0xff}, {0x0, 0x4, 0x0, 0xfffffff8}, {0x7, 0x1, 0x9, 0xd}, {0xfff, 0x7, 0x0, 0xbc}, {0x0, 0x4c, 0x8, 0xff}, {0x8, 0xc0, 0x80, 0x4}, {0x1, 0x1, 0x0, 0x508d}, {0x1ff, 0x5, 0x81, 0xd}, {0x0, 0x0, 0x2, 0x5}, {0x401, 0x3, 0x80, 0x9}, {0x9, 0x2, 0x0, 0x8}, {0x0, 0x1, 0xfb, 0x7}, {0xa, 0xff, 0x1, 0x7fffffff}, {0x7, 0x4, 0x7, 0x40}, {0xa, 0xc, 0x6, 0x5}, {0x9, 0x8, 0x7, 0x10000}, {0xe9, 0x6, 0x3, 0x3}, {0xb, 0x7, 0x7, 0x200}, {0xe, 0x5, 0x6, 0x2}, {0x9, 0x5, 0x0, 0x1}, {0x9, 0x1, 0x7, 0x1}, {0x1c0, 0x5, 0x2, 0x8e1}, {0x0, 0x5, 0x0, 0x7f07}, {0x6, 0x0, 0x1, 0x1ff}, {0x2, 0x28, 0xfc, 0x8}, {0x6, 0x3, 0x7, 0x2}, {0xa, 0xc5, 0x4, 0x3}, {0x3, 0x71, 0x8, 0x7}, {0x6e, 0x2, 0x0, 0x8}, {0x0, 0x7, 0x7, 0x10000}, {0x9, 0x7, 0x5, 0x7}, {0x100, 0x8, 0x3}, {0xd34, 0x7, 0x8}, {0x9, 0x9, 0x1, 0x80000001}, {0x6, 0xfe, 0x3, 0x3}], {0x1}}}]}, @unspec=@TRACE={0x20}}, {{@ip={@multicast2, @empty, 0xffffffff, 0xffffff00, 'veth1_virt_wifi\x00', 'xfrm0\x00', {}, {}, 0x1, 0x1, 0x6c}, 0x9400, 0x70, 0xd0, 0x94}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x0, 0x5, 0x0, 0x6, 0x4, 0x6], 0x0, 0x3}, {0x0, [0x5, 0x1, 0x6, 0x0, 0x3, 0x1]}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x488) (fail_nth: 1)

789.554399ms ago: executing program 5 (id=1854):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000001f00000080000000000000cebb58e1c408ac0782843a2baec51fb147", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="042708400000006e9075ef"], 0x1c}, 0x1, 0x0, 0x0, 0x9080}, 0x20000045)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000faffbfff000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000048500000082000000850000001100000095"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
socket$inet6(0xa, 0x5, 0x4000003)
socket$inet(0x2, 0x4000000000000001, 0x0)
fsopen(&(0x7f0000000100)='btrfs\x00', 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
ioctl$PTP_SYS_OFFSET(r5, 0x43403d05, &(0x7f0000000900)={0x19})

547.718696ms ago: executing program 4 (id=1855):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="40000000200025a729bd7000fddbdf25020000cdff00000102000100080006000000000014000100fc0000000000000000000000000000000500150002"], 0x40}, 0x1, 0x0, 0x0, 0x20008081}, 0x0) (async)
r1 = socket(0xa, 0x5, 0x0) (async, rerun: 32)
r2 = socket$can_j1939(0x1d, 0x2, 0x7) (rerun: 32)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x11, 0x80010, r2, 0xbe26d000)
sendmsg$inet_sctp(r1, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000000)=')', 0x1}], 0x1, &(0x7f0000000180)=[@sndinfo={0x20, 0x84, 0x2, {0x8, 0x3, 0x2, 0xfffffffd}}], 0x20, 0x8000}, 0x0) (async)
finit_module(0xffffffffffffffff, 0x0, 0x2) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) (async, rerun: 64)
r5 = socket(0x400000000010, 0x3, 0x0) (async, rerun: 64)
socket$unix(0x1, 0x5, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async, rerun: 32)
r6 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0xc0701, 0x0) (async, rerun: 32)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000080)={0x9, 0xd7, 0x6, 0x0, 0x401, 0x497f, 0x8, 0x4, <r7=>0x0}, &(0x7f0000000100)=0x20)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000140)={r7, 0x33, "f229d8566908d1b62cac9b7f8fb32075f8bfdcb28e08b1baa275ee3a1852085225f6075642b119be337a0d94400762bbfcc334"}, &(0x7f0000000200)=0x3b) (async)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e22, @private=0xa010101}, {0x2, 0x0, @local}, {0x2, 0x4e21, @local}, 0x1d7, 0x0, 0x0, 0x0, 0xfff8, 0x0, 0x4, 0x6}) (async)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYRES8=r6], 0x1c}, 0x1, 0x0, 0x0, 0x20000844}, 0x4048885) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe) (async, rerun: 64)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 64)
bind$bt_hci(r8, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6) (async)
write$binfmt_misc(r8, &(0x7f0000000000), 0xd) (async, rerun: 64)
io_setup(0x7d, &(0x7f0000000600)) (async, rerun: 64)
io_setup(0x3, &(0x7f0000000500)=<r9=>0x0)
io_destroy(r9) (async, rerun: 32)
io_cancel(r9, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, 0x0, 0x0, 0x6, 0x0, 0x3}, 0x0) (rerun: 32)

496.775551ms ago: executing program 3 (id=1856):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000dc0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000540)={0x50, r1, 0x1, 0x0, 0x25dfdbfb, {0x27}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c, 0x51}}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x10, 0x0, 0x8001786}]})
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x430, 0x2c0, 0x60, 0xd0e0000, 0x2c0, 0x100, 0x398, 0x1d8, 0x1d8, 0x398, 0x1d8, 0x7fffffe, 0x0, {[{{@uncond, 0xee02, 0x2a0, 0x2c0, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{0x1, 0x77, 0x7, 0x2}, {0x6, 0x5d, 0x8, 0xf}, {0x0, 0x7, 0x4, 0x5}, {0x204, 0x10, 0x4, 0x401}, {0x1, 0x7, 0x9, 0x7}, {0x8, 0x2, 0x40, 0x80}, {0x7, 0x10, 0x4, 0xc27e}, {0x0, 0x8, 0x1, 0x9}, {0xa66, 0xf9, 0x2, 0x40}, {0xf207, 0x18, 0xa7, 0x6}, {0x2, 0x8, 0x6, 0xb6}, {0x0, 0x5, 0x5, 0x4}, {0x9, 0x7f, 0x5, 0x2}, {0x5, 0x2, 0xf, 0xc00}, {0x1, 0x9, 0x2, 0x54}, {0x3, 0x2b, 0x2, 0x3}, {0xffff, 0x5, 0x6d, 0x7}, {0x6, 0xa, 0x5, 0x51d8}, {0x8, 0xe, 0x5}, {0x0, 0x40, 0x7, 0x88}, {0x7, 0x2, 0x6, 0x3}, {0x98d, 0x2, 0xff, 0x5}, {0x81, 0x1, 0x3, 0x7f}, {0x1, 0x2, 0xc0, 0x86f}, {0x8, 0x2, 0x9, 0x6}, {0x7, 0x75, 0x7, 0xd}, {0x6, 0x6, 0x6, 0x443f}, {0x120, 0x5, 0x2, 0x3dbd}, {0x5, 0x8, 0x9, 0x1}, {0x0, 0x3, 0x9, 0xff}, {0x0, 0x4, 0x0, 0xfffffff8}, {0x7, 0x7, 0x9, 0xd}, {0xfff, 0x7, 0x0, 0xbc}, {0x0, 0x4c, 0x8, 0xff}, {0x8, 0xc0, 0x80, 0x4}, {0x1, 0x1, 0x0, 0x508d}, {0x1ff, 0x5, 0x81, 0xd}, {0x0, 0x0, 0x2, 0x5}, {0x401, 0x3, 0x80, 0x9}, {0x9, 0x2, 0x0, 0x8}, {0x3, 0x1, 0xfb, 0x7}, {0xa, 0xff, 0x1, 0x7fffffff}, {0x7, 0x4, 0x7, 0x40}, {0x8, 0xc, 0x6, 0x5}, {0x9, 0x8, 0x7, 0x10000}, {0xe9, 0x6, 0x3, 0x3}, {0xb, 0x7, 0x7, 0x200}, {0xe, 0x5, 0x6, 0x2}, {0x9, 0x5, 0x0, 0x1}, {0x9, 0x1, 0x7, 0x1}, {0x1c0, 0x5, 0x2, 0x8e1}, {0x0, 0x5, 0x0, 0x7f07}, {0x6, 0x0, 0x1, 0x1ff}, {0x2, 0x28, 0xfc, 0x8}, {0x5, 0x3, 0x7, 0x2}, {0xa, 0xc5, 0x4, 0x194}, {0x3, 0x71, 0x8, 0x7}, {0x6e, 0x2, 0x0, 0x8}, {0x0, 0x7, 0x7, 0x10000}, {0x9, 0x7, 0x5, 0x7}, {0x100, 0x8, 0x3, 0x9}, {0xd34, 0x7, 0x8, 0x4}, {0x9, 0x81, 0x1, 0x80000001}, {0x6, 0xfe, 0x3, 0x3}], {0x1}}}]}, @unspec=@TRACE={0x20}}, {{@ip={@multicast2, @multicast1, 0xffffffff, 0xffffffff, 'veth1_virt_wifi\x00', 'xfrm0\x00', {}, {}, 0x1, 0x1, 0x6c}, 0x9400, 0x70, 0xd8, 0x94}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x9, 0x32f1, 0x8, 0xca7c, '\x00', 'syz0\x00', {0x6}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x490)

446.169264ms ago: executing program 4 (id=1857):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200000300000000000000000001008500000087000000850000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb6}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f00000003c0)="e02742e868fba54e3335729a5ce8", 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (fail_nth: 5)

348.396745ms ago: executing program 5 (id=1858):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000001, 0x12, r1, 0x0)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
socket$alg(0x26, 0x5, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
socket(0x10, 0x3, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x1a5042, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r2, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
preadv2(r3, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x100000}], 0xc4, 0x3000, 0x0, 0x9)

244.637264ms ago: executing program 4 (id=1859):
getpeername(0xffffffffffffffff, &(0x7f0000000000)=@ax25={{0x3, @null}, [@remote, @rose, @remote, @default, @null, @default, @rose]}, &(0x7f00000000c0)=0x80)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@ipv4_delroute={0x30, 0x19, 0x1, 0x70bd26, 0x25dfdbfb, {0x2, 0x20, 0x20, 0x0, 0xfd, 0x2, 0xff, 0x2, 0x1800}, [@RTA_DST={0x8, 0x1, @local}, @RTA_METRICS={0x9, 0x8, 0x0, 0x1, "8c5f8a2f45"}]}, 0x30}, 0x1, 0x0, 0x0, 0x44050}, 0x1000)

22.218266ms ago: executing program 5 (id=1860):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x11e, 0x483, 0x0, &(0x7f0000001400)=0xfe)

21.68945ms ago: executing program 4 (id=1861):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014751c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a0c93d47018c12e7ba8188a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab188dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b4896c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e547f7ad33850d9feccd0111a2e3700845dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005202000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a12489c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af14915f29b719f54926fc32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86ae826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa520000afe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da357f9e93ce055019c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c672b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981fd9086e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b6059b9ef90c2f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c33f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217bcfd1ef24284de8a0a9f068f297037d6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2826b47ad8ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b478abc5b196dd5308cb20c4e2a0bd702651bb39f10523102dcd8ece692159028f314e0d6bfa400475c6699fdc40efe0948e3cef7419a7f113134e5ee20fd87c4521ccfbd32d6f147f743d30866bdd86ca8bf0c7bcc475f4ed53517aaa51f1c151d859a7f0b53abd332c84bdad313e82ac3777a6f7f649ff8a25f6dfe09cb29213896b49a825257bf143e9fa3bbd47009e66fe5705b3ef2b40a182e408c680727d64e00e1ce508f8fd64ac6c84ccc28fc333067de63b9bb5daaa12ce60ee3779ded79651be69d2a413cd948a873dd7ad7017b150828cf100d3df8537f22aff58343c9ee966fceb594bbe10b911427f76a25a219be2f85287b7f83d323a30991067ad1369792166062085ff20c5fb9f6e4f78dd09c7d2d6ca3c8a5d0d26ccbe576f44a1bc94194817"], &(0x7f00000003c0)='syzkaller\x00'}, 0x51)
prctl$PR_MCE_KILL(0x21, 0xcc540c1f9ee9b7c0, 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f086dd47e08906200060000021000aac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

0s ago: executing program 4 (id=1862):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200000c0}, 0x0)

kernel console output (not intermixed with test programs):

 remainder of the config
[  411.862938][ T5719] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  411.951621][ T5719] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  411.975830][ T5719] usb 5-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5
[  411.994905][ T5719] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.998201][T10917] sctp: [Deprecated]: syz.5.1407 (pid 10917) Use of struct sctp_assoc_value in delayed_ack socket option.
[  411.998201][T10917] Use struct sctp_sack_info instead
[  412.034883][ T5719] usb 5-1: Product: syz
[  412.043342][ T5719] usb 5-1: Manufacturer: syz
[  412.063944][ T5719] usb 5-1: SerialNumber: syz
[  412.065894][  T803] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  412.081642][  T803] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  412.090559][  T803] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  412.099023][  T803] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  412.106681][  T803] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  412.113929][  T803] cp2112 0003:10C4:EA90.0007: item fetching failed at offset 5/7
[  412.122567][  T803] cp2112 0003:10C4:EA90.0007: parse failed
[  412.131311][  T803] cp2112 0003:10C4:EA90.0007: probe with driver cp2112 failed with error -22
[  412.131793][ T5719] usb 5-1: config 0 descriptor??
[  412.177324][ T5719] uvcvideo 5-1:0.0: Found UVC 34.00 device syz (8086:0b5b)
[  412.184558][ T5719] uvcvideo 5-1:0.0: No valid video chain found.
[  412.223243][T10923] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  412.230376][T10923] syzkaller0: entered promiscuous mode
[  412.237450][T10923] syzkaller0: entered allmulticast mode
[  412.254954][T10923] tipc: Resetting bearer <eth:syzkaller0>
[  412.261742][T10922] tipc: Resetting bearer <eth:syzkaller0>
[  412.274006][T10922] tipc: Disabling bearer <eth:syzkaller0>
[  412.287359][ T5733] usb 4-1: USB disconnect, device number 37
[  413.194957][ T5733] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  413.290208][T10937] FAULT_INJECTION: forcing a failure.
[  413.290208][T10937] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  413.303567][T10937] CPU: 1 UID: 0 PID: 10937 Comm: syz.2.1415 Not tainted syzkaller #0 PREEMPT(full) 
[  413.303588][T10937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  413.303597][T10937] Call Trace:
[  413.303603][T10937]  <TASK>
[  413.303608][T10937]  dump_stack_lvl+0x100/0x190
[  413.303625][T10937]  should_fail_ex.cold+0x5/0xa
[  413.303640][T10937]  _copy_from_iter+0x1f4/0x1690
[  413.303660][T10937]  ? __pfx__copy_from_iter+0x10/0x10
[  413.303675][T10937]  ? rcu_is_watching+0x12/0xc0
[  413.303691][T10937]  ? trace_kmalloc+0xe3/0x110
[  413.303702][T10937]  ? __kasan_kmalloc+0xaa/0xb0
[  413.303719][T10937]  ? __kmalloc_noprof+0x320/0x850
[  413.303737][T10937]  kernfs_fop_write_iter+0x186/0x5f0
[  413.303755][T10937]  aio_write+0x3ba/0x920
[  413.303772][T10937]  ? __pfx_aio_write+0x10/0x10
[  413.303787][T10937]  ? __lock_acquire+0x4a5/0x2630
[  413.303808][T10937]  ? __might_fault+0xc5/0x140
[  413.303826][T10937]  ? io_submit_one+0x1142/0x1fb0
[  413.303847][T10937]  io_submit_one+0x1142/0x1fb0
[  413.303875][T10937]  ? __lock_acquire+0x4a5/0x2630
[  413.303903][T10937]  ? __pfx_io_submit_one+0x10/0x10
[  413.303923][T10937]  ? __might_fault+0xc5/0x140
[  413.303941][T10937]  ? __x64_sys_io_submit+0x1b1/0x3a0
[  413.303950][T10937]  __x64_sys_io_submit+0x1b1/0x3a0
[  413.303961][T10937]  ? __pfx___x64_sys_io_submit+0x10/0x10
[  413.303971][T10937]  ? fput+0x79/0x100
[  413.303987][T10937]  ? rcu_is_watching+0x12/0xc0
[  413.304004][T10937]  do_syscall_64+0x10b/0xf80
[  413.304017][T10937]  ? clear_bhb_loop+0x40/0x90
[  413.304029][T10937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  413.304040][T10937] RIP: 0033:0x7fc5f6f9cdd9
[  413.304049][T10937] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  413.304058][T10937] RSP: 002b:00007fc5f7f30028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  413.304069][T10937] RAX: ffffffffffffffda RBX: 00007fc5f7215fa0 RCX: 00007fc5f6f9cdd9
[  413.304075][T10937] RDX: 0000200000000500 RSI: 0000000000000001 RDI: 00007fc5f7f0f000
[  413.304081][T10937] RBP: 00007fc5f7f30090 R08: 0000000000000000 R09: 0000000000000000
[  413.304087][T10937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  413.304093][T10937] R13: 00007fc5f7216038 R14: 00007fc5f7215fa0 R15: 00007ffdd1223658
[  413.304105][T10937]  </TASK>
[  413.414983][ T5733] usb 4-1: Using ep0 maxpacket: 16
[  413.541538][ T5733] usb 4-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  413.550602][ T5733] usb 4-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  413.558683][ T5733] usb 4-1: Product: syz
[  413.562826][ T5733] usb 4-1: Manufacturer: syz
[  413.567411][ T5733] usb 4-1: SerialNumber: syz
[  413.573233][ T5733] usb 4-1: config 0 descriptor??
[  413.659936][   T29] audit: type=1326 audit(2000000252.280:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10938 comm="syz.2.1416" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc5f6f9cdd9 code=0x0
[  414.032177][   T29] audit: type=1400 audit(2000000252.650:910): avc:  denied  { write } for  pid=10942 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1776 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  414.141501][   T29] audit: type=1400 audit(2000000252.760:911): avc:  denied  { write } for  pid=10964 comm="rm" name="hook-state" dev="tmpfs" ino=1776 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  414.238012][ T5704] usb 4-1: USB disconnect, device number 38
[  414.342133][   T29] audit: type=1400 audit(2000000252.960:912): avc:  denied  { write } for  pid=10969 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1776 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  414.387326][ T5719] usb 5-1: USB disconnect, device number 31
[  414.446433][   T29] audit: type=1400 audit(2000000253.060:913): avc:  denied  { write } for  pid=10980 comm="rm" name="hook-state" dev="tmpfs" ino=1776 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  415.026492][   T29] audit: type=1400 audit(2000000253.650:914): avc:  denied  { write } for  pid=10986 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1776 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  415.151689][   T29] audit: type=1400 audit(2000000253.770:915): avc:  denied  { write } for  pid=11007 comm="rm" name="hook-state" dev="tmpfs" ino=1776 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  415.234967][ T5733] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  415.356421][T11019] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  415.383797][T11019] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  415.389639][   T29] audit: type=1400 audit(2000000254.010:916): avc:  denied  { create } for  pid=11020 comm="syz.4.1426" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  415.416906][ T5733] usb 4-1: Using ep0 maxpacket: 32
[  415.423586][ T5733] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  415.442146][ T5733] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  415.464684][ T5733] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  415.483833][   T29] audit: type=1400 audit(2000000254.100:917): avc:  denied  { write } for  pid=11010 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1776 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  415.492347][ T5733] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  415.549298][ T5733] usb 4-1: config 0 descriptor??
[  415.564748][ T5733] hub 4-1:0.0: USB hub found
[  415.594951][ T5704] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  415.610449][   T29] audit: type=1400 audit(2000000254.230:918): avc:  denied  { write } for  pid=11031 comm="rm" name="hook-state" dev="tmpfs" ino=1776 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  415.758162][ T5704] usb 3-1: unable to get BOS descriptor or descriptor too short
[  415.767389][ T5733] hub 4-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  415.775587][  T803] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  415.784152][ T5704] usb 3-1: config 1 has an invalid descriptor of length 132, skipping remainder of the config
[  415.798366][ T5704] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  415.807756][ T5704] usb 3-1: too many endpoints for config 1 interface 1 altsetting 76: 188, using maximum allowed: 30
[  415.819095][ T5704] usb 3-1: config 1 interface 1 altsetting 76 has 0 endpoint descriptors, different from the interface descriptor's value: 188
[  415.833180][ T5704] usb 3-1: config 1 interface 1 has no altsetting 0
[  415.843444][ T5704] usb 3-1: string descriptor 0 read error: -22
[  415.849989][ T5704] usb 3-1: New USB device found, idVendor=21b4, idProduct=0081, bcdDevice= 0.40
[  415.859548][ T5704] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  415.925790][ T5704] snd-usb-audio 3-1:1.0: probe with driver snd-usb-audio failed with error -22
[  415.957609][  T803] usb 5-1: config 0 has no interfaces?
[  415.969382][  T803] usb 5-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  415.982698][  T803] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  415.992043][  T803] usb 5-1: Product: syz
[  415.996429][  T803] usb 5-1: Manufacturer: syz
[  416.001214][  T803] usb 5-1: SerialNumber: syz
[  416.012498][  T803] usb 5-1: config 0 descriptor??
[  416.075385][  T803] usb 3-1: USB disconnect, device number 37
[  416.194422][ T5733] hid-generic 0003:046D:C31C.0008: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.3-1/input0
[  416.270336][ T5733] usb 5-1: USB disconnect, device number 32
[  416.493776][   T46] usb 4-1: USB disconnect, device number 39
[  416.615218][T11076] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  419.181372][T11099] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  419.190374][T11099] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  419.218508][ T5719] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  419.720419][T11103] FAULT_INJECTION: forcing a failure.
[  419.720419][T11103] name failslab, interval 1, probability 0, space 0, times 0
[  419.892777][T11103] CPU: 0 UID: 0 PID: 11103 Comm: syz.4.1435 Not tainted syzkaller #0 PREEMPT(full) 
[  419.892800][T11103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  419.892810][T11103] Call Trace:
[  419.892815][T11103]  <TASK>
[  419.892822][T11103]  dump_stack_lvl+0x100/0x190
[  419.892847][T11103]  should_fail_ex.cold+0x5/0xa
[  419.892872][T11103]  should_failslab+0xc2/0x120
[  419.892891][T11103]  __kmalloc_cache_noprof+0x7a/0x6f0
[  419.892915][T11103]  ? sctp_add_bind_addr+0xae/0x3e0
[  419.892937][T11103]  ? __pfx_sctp_get_port_local+0x10/0x10
[  419.892968][T11103]  sctp_add_bind_addr+0xae/0x3e0
[  419.892993][T11103]  sctp_do_bind+0x36c/0x760
[  419.893016][T11103]  sctp_connect_new_asoc+0x5e7/0x770
[  419.893038][T11103]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  419.893067][T11103]  sctp_sendmsg+0x171a/0x22b0
[  419.893091][T11103]  ? __lock_acquire+0x4a5/0x2630
[  419.893115][T11103]  ? __pfx_sctp_sendmsg+0x10/0x10
[  419.893139][T11103]  ? __pfx_sock_has_perm+0x10/0x10
[  419.893172][T11103]  ? __pfx_sctp_sendmsg+0x10/0x10
[  419.893192][T11103]  inet_sendmsg+0x11c/0x140
[  419.893217][T11103]  ____sys_sendmsg+0x98d/0xb70
[  419.893237][T11103]  ? __pfx_inet_sendmsg+0x10/0x10
[  419.893262][T11103]  ? __pfx_____sys_sendmsg+0x10/0x10
[  419.893287][T11103]  ? __pfx__kstrtoull+0x10/0x10
[  419.893312][T11103]  ___sys_sendmsg+0x190/0x1e0
[  419.893335][T11103]  ? __pfx____sys_sendmsg+0x10/0x10
[  419.893369][T11103]  ? find_held_lock+0x2b/0x80
[  419.893402][T11103]  __sys_sendmmsg+0x205/0x430
[  419.893432][T11103]  ? __pfx___sys_sendmmsg+0x10/0x10
[  419.893467][T11103]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  419.893500][T11103]  ? fput+0x79/0x100
[  419.893524][T11103]  ? ksys_write+0x1ac/0x250
[  419.893542][T11103]  ? __pfx_ksys_write+0x10/0x10
[  419.893565][T11103]  __x64_sys_sendmmsg+0x9c/0x100
[  419.893597][T11103]  ? lockdep_hardirqs_on+0x78/0x100
[  419.893618][T11103]  do_syscall_64+0x10b/0xf80
[  419.893637][T11103]  ? clear_bhb_loop+0x40/0x90
[  419.893659][T11103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.893677][T11103] RIP: 0033:0x7ff02459cdd9
[  419.893692][T11103] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  419.893708][T11103] RSP: 002b:00007ff0253c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  419.893725][T11103] RAX: ffffffffffffffda RBX: 00007ff024815fa0 RCX: 00007ff02459cdd9
[  419.893736][T11103] RDX: 0000000000000001 RSI: 0000200000006e80 RDI: 0000000000000003
[  419.893746][T11103] RBP: 00007ff0253c6090 R08: 0000000000000000 R09: 0000000000000000
[  419.893756][T11103] R10: 0000000020002845 R11: 0000000000000246 R12: 0000000000000001
[  419.893766][T11103] R13: 00007ff024816038 R14: 00007ff024815fa0 R15: 00007ffe8ac7fd28
[  419.893790][T11103]  </TASK>
[  420.243253][T11082] syzkaller0: entered promiscuous mode
[  420.271151][T11082] syzkaller0: entered allmulticast mode
[  420.289524][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  420.289536][   T29] audit: type=1804 audit(2000000258.890:923): pid=11107 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1440" name="/newroot/9/file1" dev="tmpfs" ino=68 res=1 errno=0
[  420.309424][T11109] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1441'.
[  420.413226][ T5719] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  420.439338][ T5719] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  420.483824][ T5719] usb 3-1: Product: syz
[  420.512358][T11123] xt_recent: Unsupported userspace flags (000000de)
[  420.524302][ T5719] usb 3-1: Manufacturer: syz
[  420.536121][ T5719] usb 3-1: SerialNumber: syz
[  420.728899][ T5719] usb 3-1: can't set config #1, error -71
[  420.735107][   T29] audit: type=1400 audit(2000000259.340:924): avc:  denied  { setopt } for  pid=11122 comm="syz.3.1443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  420.805983][   T29] audit: type=1400 audit(2000000259.380:925): avc:  denied  { bind } for  pid=11122 comm="syz.3.1443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  420.812197][ T5719] usb 3-1: USB disconnect, device number 38
[  420.954438][   T29] audit: type=1400 audit(2000000259.390:926): avc:  denied  { name_bind } for  pid=11122 comm="syz.3.1443" src=20006 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  420.980941][   T29] audit: type=1400 audit(2000000259.390:927): avc:  denied  { node_bind } for  pid=11122 comm="syz.3.1443" saddr=fe80::39 src=20006 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  421.003429][   T29] audit: type=1400 audit(2000000259.400:928): avc:  denied  { bind } for  pid=11122 comm="syz.3.1443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  421.025014][   T29] audit: type=1400 audit(2000000259.400:929): avc:  denied  { listen } for  pid=11122 comm="syz.3.1443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  421.272293][   T29] audit: type=1326 audit(2000000259.890:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11125 comm="syz.4.1445" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  421.300411][   T29] audit: type=1326 audit(2000000259.890:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11125 comm="syz.4.1445" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  421.328464][   T29] audit: type=1326 audit(2000000259.920:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11125 comm="syz.4.1445" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  421.428329][ T5704] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  421.592509][ T5704] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  421.603460][ T5704] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  421.617858][ T5704] usb 4-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  421.631407][ T5704] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  421.650277][ T5704] usb 4-1: config 0 descriptor??
[  422.087914][ T5704] hid (null): report_id 1629141528 is invalid
[  422.107066][ T5704] hid-led 0003:27B8:01ED.0009: report_id 1629141528 is invalid
[  422.114612][ T5704] hid-led 0003:27B8:01ED.0009: item 0 4 1 8 parsing failed
[  422.137030][ T5704] hid-led 0003:27B8:01ED.0009: probe with driver hid-led failed with error -22
[  422.591244][T11134] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  422.614059][T11134] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  422.642121][T11134] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1448'.
[  422.726174][ T5704] usb 4-1: USB disconnect, device number 40
[  422.762162][T11152] FAULT_INJECTION: forcing a failure.
[  422.762162][T11152] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  422.775663][T11152] CPU: 1 UID: 0 PID: 11152 Comm: syz.2.1450 Not tainted syzkaller #0 PREEMPT(full) 
[  422.775684][T11152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  422.775695][T11152] Call Trace:
[  422.775700][T11152]  <TASK>
[  422.775706][T11152]  dump_stack_lvl+0x100/0x190
[  422.775732][T11152]  should_fail_ex.cold+0x5/0xa
[  422.775757][T11152]  _copy_to_user+0x32/0xd0
[  422.775784][T11152]  simple_read_from_buffer+0xcb/0x170
[  422.775815][T11152]  proc_fail_nth_read+0x1af/0x230
[  422.775835][T11152]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  422.775856][T11152]  ? rw_verify_area+0xce/0x6d0
[  422.775872][T11152]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  422.775890][T11152]  vfs_read+0x1e4/0xb30
[  422.775912][T11152]  ? __pfx_vfs_read+0x10/0x10
[  422.775929][T11152]  ? __fget_files+0x215/0x3d0
[  422.775956][T11152]  ? __fget_files+0x21f/0x3d0
[  422.775984][T11152]  ksys_read+0x12a/0x250
[  422.776001][T11152]  ? __pfx_ksys_read+0x10/0x10
[  422.776021][T11152]  ? rcu_is_watching+0x12/0xc0
[  422.776050][T11152]  do_syscall_64+0x10b/0xf80
[  422.776069][T11152]  ? clear_bhb_loop+0x40/0x90
[  422.776091][T11152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.776109][T11152] RIP: 0033:0x7fc5f6f5d60e
[  422.776123][T11152] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  422.776139][T11152] RSP: 002b:00007fc5f7f2ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  422.776155][T11152] RAX: ffffffffffffffda RBX: 00007fc5f7f306c0 RCX: 00007fc5f6f5d60e
[  422.776166][T11152] RDX: 000000000000000f RSI: 00007fc5f7f300a0 RDI: 0000000000000004
[  422.776176][T11152] RBP: 00007fc5f7f30090 R08: 0000000000000000 R09: 0000000000000000
[  422.776185][T11152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  422.776195][T11152] R13: 00007fc5f7216038 R14: 00007fc5f7215fa0 R15: 00007ffdd1223658
[  422.776218][T11152]  </TASK>
[  423.350648][T11154] overlayfs: failed to clone lowerpath
[  424.385066][ T5719] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  425.691196][T11197] overlayfs: failed to clone lowerpath
[  425.703068][ T5719] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  425.716557][ T5719] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  425.728313][ T5719] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  425.738925][ T5719] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  426.280609][ T5719] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  426.291836][ T5719] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  426.303721][ T5719] usb 5-1: config 0 descriptor??
[  427.150545][T11200] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  428.164037][ T5719] usb 5-1: can't set config #0, error -71
[  428.211200][ T5719] usb 5-1: USB disconnect, device number 33
[  428.253831][   T29] kauditd_printk_skb: 25 callbacks suppressed
[  428.253844][   T29] audit: type=1804 audit(2000000266.870:958): pid=11205 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.1468" name="/newroot/296/file1" dev="tmpfs" ino=1600 res=1 errno=0
[  429.440369][T11227] overlayfs: overlapping lowerdir path
[  430.425045][ T5719] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  430.542736][T11207] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1467'.
[  430.599393][   T29] audit: type=1400 audit(2000000269.220:959): avc:  denied  { append } for  pid=11206 comm="syz.0.1467" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  430.606659][T11235] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1476'.
[  430.641063][ T5719] usb 5-1: Using ep0 maxpacket: 32
[  430.684001][ T5719] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  430.744636][ T5719] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  430.781708][ T5719] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  430.918123][   T29] audit: type=1804 audit(2000000269.470:960): pid=11243 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.5.1479" name="file1" dev="tmpfs" ino=1625 res=1 errno=0
[  430.925240][ T5719] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.968979][ T5719] usb 5-1: config 0 descriptor??
[  430.992756][ T5719] hub 5-1:0.0: USB hub found
[  431.028391][   T29] audit: type=1400 audit(2000000269.650:961): avc:  denied  { mounton } for  pid=11244 comm="syz.3.1480" path="mnt:[4026532795]" dev="nsfs" ino=4026532795 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  431.029673][T11249] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1481'.
[  431.197606][ T5719] hub 5-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  431.348501][   T29] audit: type=1400 audit(2000000269.970:962): avc:  denied  { create } for  pid=11260 comm="syz.2.1487" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  431.415529][T11263] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1488'.
[  431.463027][   T29] audit: type=1400 audit(2000000270.080:963): avc:  denied  { write } for  pid=11264 comm="syz.2.1489" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  431.502827][T11267] FAULT_INJECTION: forcing a failure.
[  431.502827][T11267] name failslab, interval 1, probability 0, space 0, times 0
[  431.519818][T11267] CPU: 1 UID: 0 PID: 11267 Comm: syz.2.1490 Not tainted syzkaller #0 PREEMPT(full) 
[  431.519841][T11267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  431.519852][T11267] Call Trace:
[  431.519857][T11267]  <TASK>
[  431.519864][T11267]  dump_stack_lvl+0x100/0x190
[  431.519891][T11267]  should_fail_ex.cold+0x5/0xa
[  431.519916][T11267]  should_failslab+0xc2/0x120
[  431.519935][T11267]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  431.519961][T11267]  ? __d_alloc+0x34/0xa40
[  431.519992][T11267]  __d_alloc+0x34/0xa40
[  431.520019][T11267]  d_alloc+0x4a/0x1e0
[  431.520045][T11267]  lookup_one_qstr_excl+0x171/0x250
[  431.520072][T11267]  ? mnt_want_write+0x161/0x450
[  431.520094][T11267]  filename_create+0x1cf/0x400
[  431.520113][T11267]  ? __pfx_filename_create+0x10/0x10
[  431.520137][T11267]  ? find_held_lock+0x2b/0x80
[  431.520158][T11267]  filename_symlinkat+0xe1/0x560
[  431.520186][T11267]  ? __pfx_filename_symlinkat+0x10/0x10
[  431.520211][T11267]  ? strncpy_from_user+0x19d/0x2d0
[  431.520240][T11267]  ? do_getname+0x191/0x390
[  431.520268][T11267]  __x64_sys_symlink+0x79/0xb0
[  431.520293][T11267]  do_syscall_64+0x10b/0xf80
[  431.520313][T11267]  ? clear_bhb_loop+0x40/0x90
[  431.520334][T11267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.520352][T11267] RIP: 0033:0x7fc5f6f9cdd9
[  431.520366][T11267] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  431.520381][T11267] RSP: 002b:00007fc5f7f30028 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  431.520398][T11267] RAX: ffffffffffffffda RBX: 00007fc5f7215fa0 RCX: 00007fc5f6f9cdd9
[  431.520409][T11267] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000200000000080
[  431.520420][T11267] RBP: 00007fc5f7f30090 R08: 0000000000000000 R09: 0000000000000000
[  431.520430][T11267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  431.520441][T11267] R13: 00007fc5f7216038 R14: 00007fc5f7215fa0 R15: 00007ffdd1223658
[  431.520466][T11267]  </TASK>
[  431.772269][T11245] syz.3.1480 (11245): drop_caches: 2
[  431.800557][ T5719] hid-generic 0003:046D:C31C.000A: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.4-1/input0
[  431.831501][T11271] sock: sock_timestamping_bind_phc: sock not bind to device
[  432.001739][T11277] FAULT_INJECTION: forcing a failure.
[  432.001739][T11277] name failslab, interval 1, probability 0, space 0, times 0
[  432.015133][T11277] CPU: 0 UID: 0 PID: 11277 Comm: syz.0.1491 Not tainted syzkaller #0 PREEMPT(full) 
[  432.015155][T11277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  432.015165][T11277] Call Trace:
[  432.015171][T11277]  <TASK>
[  432.015177][T11277]  dump_stack_lvl+0x100/0x190
[  432.015202][T11277]  should_fail_ex.cold+0x5/0xa
[  432.015221][T11277]  should_failslab+0xc2/0x120
[  432.015236][T11277]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  432.015255][T11277]  ? do_getname+0x35/0x390
[  432.015279][T11277]  do_getname+0x35/0x390
[  432.015300][T11277]  __x64_sys_symlink+0x57/0xb0
[  432.015320][T11277]  do_syscall_64+0x10b/0xf80
[  432.015338][T11277]  ? clear_bhb_loop+0x40/0x90
[  432.015356][T11277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.015369][T11277] RIP: 0033:0x7f645a99cdd9
[  432.015381][T11277] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  432.015394][T11277] RSP: 002b:00007f645b824028 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  432.015408][T11277] RAX: ffffffffffffffda RBX: 00007f645ac16090 RCX: 00007f645a99cdd9
[  432.015416][T11277] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000200000000000
[  432.015425][T11277] RBP: 00007f645b824090 R08: 0000000000000000 R09: 0000000000000000
[  432.015432][T11277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  432.015440][T11277] R13: 00007f645ac16128 R14: 00007f645ac16090 R15: 00007ffc8517edf8
[  432.015458][T11277]  </TASK>
[  432.084864][ T5719] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  432.757240][ T5719] usb 3-1: unable to get BOS descriptor or descriptor too short
[  432.867573][ T5719] usb 3-1: config 8 has an invalid interface number: 177 but max is 0
[  433.005667][ T5719] usb 3-1: config 8 has an invalid descriptor of length 94, skipping remainder of the config
[  433.018037][ T5719] usb 3-1: config 8 has no interface number 0
[  433.024156][ T5719] usb 3-1: config 8 interface 177 has no altsetting 0
[  433.033956][ T5719] usb 3-1: New USB device found, idVendor=0ace, idProduct=1602, bcdDevice=50.c7
[  433.043602][ T5719] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  433.051840][ T5719] usb 3-1: Product: syz
[  433.064516][T11292] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1496'.
[  433.076406][ T5719] usb 3-1: Manufacturer: syz
[  433.086289][ T5719] usb 3-1: SerialNumber: syz
[  433.101316][   T29] audit: type=1400 audit(2000000271.720:964): avc:  denied  { create } for  pid=11285 comm="syz.5.1495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  433.198931][   T29] audit: type=1400 audit(2000000271.720:965): avc:  denied  { connect } for  pid=11285 comm="syz.5.1495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  433.269646][   T29] audit: type=1400 audit(2000000271.760:966): avc:  denied  { create } for  pid=11285 comm="syz.5.1495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  433.330771][ T5719] cdc_acm 3-1:8.177: skipping garbage
[  433.351484][ T5719] cdc_acm 3-1:8.177: skipping garbage
[  433.372906][ T5719] usb 3-1: USB disconnect, device number 39
[  433.493136][T11298] bridge0: port 2(bridge_slave_1) entered disabled state
[  433.500426][T11298] bridge0: port 1(bridge_slave_0) entered disabled state
[  433.600084][T11298] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  433.622271][ T5726] usb 5-1: USB disconnect, device number 34
[  433.651266][T11298] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  433.766057][   T12] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  433.792312][   T12] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  433.924944][   T12] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  433.942701][   T12] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  434.833504][   T29] audit: type=1804 audit(2000000273.450:967): pid=11311 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.1503" name="/newroot/276/file1" dev="tmpfs" ino=1479 res=1 errno=0
[  434.886620][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[  434.895443][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[  435.054883][ T5726] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  435.498787][T11318] net_ratelimit: 24 callbacks suppressed
[  435.498801][T11318] openvswitch: netlink: Key type 54 is out of range max 32
[  435.532838][T11318] netlink: 'syz.3.1504': attribute type 1 has an invalid length.
[  435.703352][T11322] erspan1: entered allmulticast mode
[  435.760450][ T5726] usb 3-1: Using ep0 maxpacket: 16
[  435.785310][ T5726] usb 3-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  435.804934][ T5726] usb 3-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  435.813012][ T5726] usb 3-1: Product: syz
[  435.814708][T11318] bond1: entered promiscuous mode
[  435.817620][ T5726] usb 3-1: Manufacturer: syz
[  435.827335][ T5726] usb 3-1: SerialNumber: syz
[  435.838829][ T5726] usb 3-1: config 0 descriptor??
[  435.844446][T11318] bond1: entered allmulticast mode
[  435.863820][T11318] 8021q: adding VLAN 0 to HW filter on device bond1
[  435.935451][  T803] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  435.952523][T11336] openvswitch: netlink: Key type 310 is out of range max 32
[  436.419968][  T803] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  436.421188][ T5726] usb 3-1: USB disconnect, device number 40
[  436.454573][  T803] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  436.483584][  T803] usb 5-1: Product: syz
[  436.501595][  T803] usb 5-1: Manufacturer: syz
[  436.518362][  T803] usb 5-1: SerialNumber: syz
[  436.533535][   T29] audit: type=1804 audit(2000000275.150:968): pid=11346 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1515" name="/newroot/28/file1" dev="tmpfs" ino=166 res=1 errno=0
[  436.580885][  T803] usb 5-1: config 0 descriptor??
[  436.864948][ T5704] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  437.036887][ T5704] usb 4-1: Using ep0 maxpacket: 16
[  437.065576][ T5704] usb 4-1: too many configurations: 112, using maximum allowed: 8
[  437.106112][ T5704] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  437.140196][ T5704] usb 4-1: New USB device strings: Mfr=144, Product=246, SerialNumber=0
[  437.160261][ T5704] usb 4-1: Product: syz
[  437.173912][ T5704] usb 4-1: Manufacturer: syz
[  437.203822][ T5704] r8152-cfgselector 4-1: Unknown version 0x0000
[  437.219881][ T5704] r8152-cfgselector 4-1: config 0 descriptor??
[  437.236156][ T5704] cdc_acm 4-1:0.0: Zero length descriptor references
[  437.264475][ T5704] cdc_acm 4-1:0.0: probe with driver cdc_acm failed with error -22
[  437.380279][   T29] audit: type=1804 audit(2000000276.000:969): pid=11358 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.5.1520" name="file1" dev="tmpfs" ino=1666 res=1 errno=0
[  437.466368][T11348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  437.510559][T11348] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  437.566123][ T5704] r8152-cfgselector 4-1: USB disconnect, device number 41
[  437.949874][  T803] usb 5-1: Firmware version (0.0) predates our first public release.
[  437.987268][  T803] usb 5-1: Please update to version 0.2 or newer
[  439.070714][   T29] audit: type=1400 audit(2000000277.620:970): avc:  denied  { ioctl } for  pid=11370 comm="syz.5.1523" path="socket:[35393]" dev="sockfs" ino=35393 ioctlcmd=0x6e8a scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  439.319313][T11324] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  439.448943][T11324] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  439.953412][   T29] audit: type=1804 audit(2000000278.570:971): pid=11383 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.1527" name="/newroot/306/file1" dev="tmpfs" ino=1659 res=1 errno=0
[  440.068347][ T5733] libceph: connect (1)[c::]:6789 error -101
[  440.095662][ T5733] libceph: mon0 (1)[c::]:6789 connect error
[  440.366051][  T803] libceph: connect (1)[c::]:6789 error -101
[  440.372062][  T803] libceph: mon0 (1)[c::]:6789 connect error
[  440.378024][ T5733] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  440.508713][T11384] ceph: No mds server is up or the cluster is laggy
[  440.674890][ T5733] usb 3-1: Using ep0 maxpacket: 32
[  440.698726][  T803] usb 5-1: USB disconnect, device number 35
[  440.709768][ T5733] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  440.743035][ T5733] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  440.835792][ T5733] usb 3-1: New USB device found, idVendor=041e, idProduct=30df, bcdDevice= 0.40
[  440.914874][ T5733] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.935251][ T5733] usb 3-1: Product: syz
[  440.939593][ T5733] usb 3-1: Manufacturer: syz
[  440.956475][ T5733] usb 3-1: SerialNumber: syz
[  441.043814][T11400] tipc: Enabling of bearer <uäp:s> rejected, media not registered
[  441.069770][T11400] netlink: 'syz.5.1533': attribute type 4 has an invalid length.
[  441.084864][T11400] netlink: 152 bytes leftover after parsing attributes in process `syz.5.1533'.
[  441.109706][T11400] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  441.901399][ T5733] usb 3-1: 0:1 : does not exist
[  441.932150][ T5733] usb 3-1: unit 8 not found!
[  442.693319][T11416] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  442.705099][ T5733] usb 3-1: USB disconnect, device number 41
[  443.658773][   T29] audit: type=1400 audit(2000000282.130:972): avc:  denied  { append } for  pid=11414 comm="syz.2.1537" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  443.751803][T10801] udevd[10801]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  443.796638][   T29] audit: type=1400 audit(2000000282.410:973): avc:  denied  { getopt } for  pid=11414 comm="syz.2.1537" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  443.824180][T11416] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  443.842257][T11416] block device autoloading is deprecated and will be removed.
[  443.860753][T11402] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=144 sclass=netlink_route_socket pid=11402 comm=syz.4.1534
[  444.059256][   T29] audit: type=1804 audit(2000000282.660:974): pid=11426 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.5.1539" name="file1" dev="tmpfs" ino=1708 res=1 errno=0
[  444.081579][ T5726] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  444.384920][ T5726] usb 3-1: Using ep0 maxpacket: 16
[  444.421735][ T5726] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  444.509327][ T5726] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  444.587490][ T5726] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  444.621744][ T5726] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.641158][ T5726] usb 3-1: config 0 descriptor??
[  444.791578][   T29] audit: type=1400 audit(2000000283.410:975): avc:  denied  { setopt } for  pid=11433 comm="syz.5.1541" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  445.232102][T11440] overlayfs: overlapping lowerdir path
[  446.050491][   T29] audit: type=1400 audit(2000000284.670:976): avc:  denied  { getopt } for  pid=11449 comm="syz.0.1542" lport=53328 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  446.088575][ T5726] mcp2221 0003:04D8:00DD.000B: unexpected long global item
[  446.115381][ T5726] mcp2221 0003:04D8:00DD.000B: can't parse reports
[  446.129803][ T5726] mcp2221 0003:04D8:00DD.000B: probe with driver mcp2221 failed with error -22
[  446.204925][T11456] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  446.230926][   T29] audit: type=1804 audit(2000000284.850:977): pid=11457 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.1546" name="/newroot/269/file1" dev="tmpfs" ino=1463 res=1 errno=0
[  446.348887][ T5726] usb 3-1: USB disconnect, device number 42
[  446.496674][   T29] audit: type=1400 audit(2000000285.110:978): avc:  denied  { mount } for  pid=11465 comm="syz.4.1548" name="/" dev="configfs" ino=34 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  446.522198][   T29] audit: type=1400 audit(2000000285.140:979): avc:  denied  { search } for  pid=11465 comm="syz.4.1548" name="/" dev="configfs" ino=34 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  446.590629][   T29] audit: type=1804 audit(2000000285.170:980): pid=11466 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1549" name="/newroot/36/file1" dev="tmpfs" ino=210 res=1 errno=0
[  446.643520][   T29] audit: type=1400 audit(2000000285.260:981): avc:  denied  { setattr } for  pid=11465 comm="syz.4.1548" name="/" dev="configfs" ino=34 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  446.710964][   T29] audit: type=1804 audit(2000000285.330:982): pid=11472 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1551" name="/newroot/37/file1" dev="tmpfs" ino=216 res=1 errno=0
[  446.753657][   T29] audit: type=1804 audit(2000000285.370:983): pid=11474 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.5.1552" name="file1" dev="tmpfs" ino=1729 res=1 errno=0
[  447.177906][T11490] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1555'.
[  447.194512][   T29] audit: type=1400 audit(2000000285.810:984): avc:  denied  { getopt } for  pid=11480 comm="syz.5.1555" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  447.420390][T11486] FAULT_INJECTION: forcing a failure.
[  447.420390][T11486] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  447.436441][   T46] libceph: connect (1)[c::]:6789 error -101
[  447.443594][   T46] libceph: mon0 (1)[c::]:6789 connect error
[  447.445090][T11486] CPU: 0 UID: 0 PID: 11486 Comm: syz.2.1556 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  447.445112][T11486] Tainted: [L]=SOFTLOCKUP
[  447.445117][T11486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  447.445126][T11486] Call Trace:
[  447.445131][T11486]  <TASK>
[  447.445137][T11486]  dump_stack_lvl+0x100/0x190
[  447.445160][T11486]  should_fail_ex.cold+0x5/0xa
[  447.445177][T11486]  ? prepare_alloc_pages+0x16d/0x5f0
[  447.445197][T11486]  should_fail_alloc_page+0xeb/0x140
[  447.445216][T11486]  prepare_alloc_pages+0x1f0/0x5f0
[  447.445237][T11486]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  447.445267][T11486]  ? __lock_acquire+0x4a5/0x2630
[  447.445290][T11486]  ? __lock_acquire+0x4a5/0x2630
[  447.445310][T11486]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  447.445338][T11486]  ? __lock_acquire+0x4a5/0x2630
[  447.445356][T11486]  ? __lock_acquire+0x4a5/0x2630
[  447.445382][T11486]  ? lock_acquire+0x1b1/0x370
[  447.445398][T11486]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  447.445418][T11486]  ? policy_nodemask+0xed/0x4f0
[  447.445436][T11486]  alloc_pages_mpol+0x1fb/0x540
[  447.445454][T11486]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  447.445470][T11486]  ? swap_entry_swapped+0x20c/0x2a0
[  447.445486][T11486]  ? __pfx_swap_entry_swapped+0x10/0x10
[  447.445505][T11486]  folio_alloc_mpol_noprof+0x36/0x260
[  447.445526][T11486]  swap_cache_alloc_folio+0x1a8/0x300
[  447.445548][T11486]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  447.445570][T11486]  ? __pfx_get_swap_device+0x10/0x10
[  447.445585][T11486]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  447.445611][T11486]  read_swap_cache_async+0xd9/0x480
[  447.445639][T11486]  ? __pfx_read_swap_cache_async+0x10/0x10
[  447.445660][T11486]  ? find_held_lock+0x2b/0x80
[  447.445675][T11486]  ? find_held_lock+0x2b/0x80
[  447.445689][T11486]  ? swapin_walk_pmd_entry+0x2d9/0x640
[  447.445706][T11486]  ? swapin_walk_pmd_entry+0x2d9/0x640
[  447.445728][T11486]  swapin_walk_pmd_entry+0x2fd/0x640
[  447.445749][T11486]  ? __pfx_swapin_walk_pmd_entry+0x10/0x10
[  447.445773][T11486]  ? __pfx_swapin_walk_pmd_entry+0x10/0x10
[  447.445792][T11486]  walk_pgd_range+0xc1a/0x1dd0
[  447.445820][T11486]  ? up_write+0x28c/0x4f0
[  447.445849][T11486]  ? __pfx_walk_pgd_range+0x10/0x10
[  447.445870][T11486]  ? find_held_lock+0x2b/0x80
[  447.445883][T11486]  ? avc_has_perm_noaudit+0x11e/0x3b0
[  447.445911][T11486]  __walk_page_range+0x163/0x820
[  447.445936][T11486]  ? __lock_acquire+0x4a5/0x2630
[  447.445961][T11486]  walk_page_range_vma_unsafe+0x209/0x8f0
[  447.445979][T11486]  ? __pfx_walk_page_range_vma_unsafe+0x10/0x10
[  447.445994][T11486]  ? find_held_lock+0x2b/0x80
[  447.446017][T11486]  walk_page_range_vma+0x63/0x90
[  447.446034][T11486]  madvise_vma_behavior+0x1411/0x2200
[  447.446055][T11486]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  447.446080][T11486]  ? find_vma_prev+0xd8/0x150
[  447.446095][T11486]  ? _kstrtoull+0x13c/0x1f0
[  447.446111][T11486]  ? __pfx_find_vma_prev+0x10/0x10
[  447.446140][T11486]  madvise_walk_vmas+0x2fe/0xa90
[  447.446163][T11486]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  447.446187][T11486]  madvise_do_behavior+0x1ea/0x510
[  447.446208][T11486]  ? __pfx_madvise_do_behavior+0x10/0x10
[  447.446227][T11486]  ? down_read+0x13b/0x450
[  447.446257][T11486]  do_madvise+0x195/0x240
[  447.446275][T11486]  ? __pfx_do_madvise+0x10/0x10
[  447.446291][T11486]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  447.446309][T11486]  ? kernel_write+0x613/0x6c0
[  447.446339][T11486]  ? ksys_write+0x1ac/0x250
[  447.446355][T11486]  ? __pfx_ksys_write+0x10/0x10
[  447.446375][T11486]  __x64_sys_madvise+0xa9/0x110
[  447.446393][T11486]  ? lockdep_hardirqs_on+0x78/0x100
[  447.446410][T11486]  do_syscall_64+0x10b/0xf80
[  447.446426][T11486]  ? clear_bhb_loop+0x40/0x90
[  447.446444][T11486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  447.446460][T11486] RIP: 0033:0x7fc5f6f9cdd9
[  447.446473][T11486] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  447.446487][T11486] RSP: 002b:00007fc5f7f0f028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  447.446502][T11486] RAX: ffffffffffffffda RBX: 00007fc5f7216090 RCX: 00007fc5f6f9cdd9
[  447.446512][T11486] RDX: 0000000000000003 RSI: 000000000060005f RDI: 0000200000000000
[  447.446521][T11486] RBP: 00007fc5f7f0f090 R08: 0000000000000000 R09: 0000000000000000
[  447.446530][T11486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  447.446539][T11486] R13: 00007fc5f7216128 R14: 00007fc5f7216090 R15: 00007ffdd1223658
[  447.446560][T11486]  </TASK>
[  447.889038][T11489] ceph: No mds server is up or the cluster is laggy
[  448.310271][T11512] program syz.4.1562 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  448.367297][T11513] program syz.4.1562 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  449.566790][T11526] overlayfs: failed to clone lowerpath
[  450.499437][T11530] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1568'.
[  450.924989][ T5733] usb 4-1: new full-speed USB device number 42 using dummy_hcd
[  451.117836][T11536] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1571'.
[  451.167841][ T5733] usb 4-1: unable to get BOS descriptor or descriptor too short
[  451.177979][ T5733] usb 4-1: not running at top speed; connect to a high speed hub
[  451.193881][ T5733] usb 4-1: config 1 interface 0 altsetting 235 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  451.215003][ T5733] usb 4-1: config 1 interface 0 has no altsetting 0
[  451.232047][ T5733] usb 4-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  451.258583][ T5733] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  451.288136][ T5733] usb 4-1: Product: syz
[  451.308936][T11539] fuse: fd is not a fuse device
[  451.315077][ T5733] usb 4-1: Manufacturer: syz
[  451.331554][ T5733] usb 4-1: SerialNumber: syz
[  451.361539][T11533] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  451.564688][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  451.564700][   T29] audit: type=1400 audit(2000000290.180:986): avc:  denied  { create } for  pid=11544 comm="syz.2.1573" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  451.601381][   T29] audit: type=1400 audit(2000000290.220:987): avc:  denied  { mounton } for  pid=11544 comm="syz.2.1573" path="/311/file0" dev="tmpfs" ino=1685 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  451.625770][   T29] audit: type=1326 audit(2000000290.220:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11538 comm="syz.5.1572" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4ac999cdd9 code=0x0
[  451.652716][T11533] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  451.662193][T11533] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  451.682751][ T5733] usblp0: Disabling reads from problematic bidirectional printer
[  451.797457][ T5733] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 42 if 0 alt 235 proto 2 vid 0x03F0 pid 0x0004
[  451.816016][ T5733] usb 4-1: USB disconnect, device number 42
[  451.837036][ T5733] usblp0: removed
[  451.941338][T11551] netlink: 'syz.4.1569': attribute type 3 has an invalid length.
[  451.954578][   T29] audit: type=1326 audit(2000000290.580:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11550 comm="syz.4.1569" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  451.982979][   T29] audit: type=1326 audit(2000000290.580:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11550 comm="syz.4.1569" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  452.011193][   T29] audit: type=1326 audit(2000000290.580:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11550 comm="syz.4.1569" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  452.039887][   T29] audit: type=1326 audit(2000000290.580:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11550 comm="syz.4.1569" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  452.067191][   T29] audit: type=1326 audit(2000000290.580:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11550 comm="syz.4.1569" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  452.093886][   T29] audit: type=1326 audit(2000000290.580:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11550 comm="syz.4.1569" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  452.120941][   T29] audit: type=1326 audit(2000000290.580:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11550 comm="syz.4.1569" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff02459cdd9 code=0x7ffc0000
[  458.327633][T11528] Process accounting resumed
[  458.505374][T11604] syzkaller1: entered promiscuous mode
[  458.517771][T11604] syzkaller1: entered allmulticast mode
[  459.453263][ T5733] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[  459.478990][T11628] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1598'.
[  459.559557][T11632] FAULT_INJECTION: forcing a failure.
[  459.559557][T11632] name failslab, interval 1, probability 0, space 0, times 0
[  459.609007][T11632] CPU: 1 UID: 0 PID: 11632 Comm: syz.0.1600 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  459.609033][T11632] Tainted: [L]=SOFTLOCKUP
[  459.609039][T11632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  459.609049][T11632] Call Trace:
[  459.609056][T11632]  <TASK>
[  459.609062][T11632]  dump_stack_lvl+0x100/0x190
[  459.609087][T11632]  should_fail_ex.cold+0x5/0xa
[  459.609111][T11632]  should_failslab+0xc2/0x120
[  459.609130][T11632]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  459.609156][T11632]  ? __alloc_skb+0x140/0x710
[  459.609181][T11632]  ? __alloc_skb+0x5b7/0x710
[  459.609208][T11632]  __alloc_skb+0x140/0x710
[  459.609230][T11632]  ? __alloc_skb+0x5b7/0x710
[  459.609253][T11632]  ? __pfx___alloc_skb+0x10/0x10
[  459.609285][T11632]  netlink_ack+0x117/0xb80
[  459.609305][T11632]  ? __lock_acquire+0x4a5/0x2630
[  459.609333][T11632]  rdma_nl_rcv_skb.constprop.0.isra.0+0x32b/0x410
[  459.609362][T11632]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[  459.609392][T11632]  ? netlink_deliver_tap+0x1ae/0xcc0
[  459.609417][T11632]  netlink_unicast+0x585/0x850
[  459.609440][T11632]  ? __pfx_netlink_unicast+0x10/0x10
[  459.609466][T11632]  netlink_sendmsg+0x8b0/0xda0
[  459.609490][T11632]  ? __pfx_netlink_sendmsg+0x10/0x10
[  459.609510][T11632]  ? __might_fault+0x90/0x140
[  459.609541][T11632]  ____sys_sendmsg+0x9e1/0xb70
[  459.609561][T11632]  ? __pfx_netlink_sendmsg+0x10/0x10
[  459.609582][T11632]  ? __pfx_____sys_sendmsg+0x10/0x10
[  459.609611][T11632]  ___sys_sendmsg+0x190/0x1e0
[  459.609633][T11632]  ? __pfx____sys_sendmsg+0x10/0x10
[  459.609681][T11632]  __sys_sendmsg+0x170/0x220
[  459.609708][T11632]  ? __pfx___sys_sendmsg+0x10/0x10
[  459.609744][T11632]  ? rcu_is_watching+0x12/0xc0
[  459.609771][T11632]  do_syscall_64+0x10b/0xf80
[  459.609792][T11632]  ? clear_bhb_loop+0x40/0x90
[  459.609812][T11632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.609828][T11632] RIP: 0033:0x7f645a99cdd9
[  459.609841][T11632] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  459.609856][T11632] RSP: 002b:00007f645b845028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  459.609872][T11632] RAX: ffffffffffffffda RBX: 00007f645ac15fa0 RCX: 00007f645a99cdd9
[  459.609883][T11632] RDX: 0000000000000040 RSI: 0000200000001800 RDI: 0000000000000003
[  459.609893][T11632] RBP: 00007f645b845090 R08: 0000000000000000 R09: 0000000000000000
[  459.609903][T11632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  459.609912][T11632] R13: 00007f645ac16038 R14: 00007f645ac15fa0 R15: 00007ffc8517edf8
[  459.609935][T11632]  </TASK>
[  459.614872][ T5733] usb 3-1: Using ep0 maxpacket: 16
[  460.159820][T11636] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  460.187112][T11638] tipc: Enabling of bearer <udp:s!> rejected, failed to enable media
[  460.192124][ T5733] usb 3-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  460.207853][T11639] FAULT_INJECTION: forcing a failure.
[  460.207853][T11639] name failslab, interval 1, probability 0, space 0, times 0
[  460.216980][T11636] IPVS: Error connecting to the multicast addr
[  460.220505][   T29] kauditd_printk_skb: 10 callbacks suppressed
[  460.220515][   T29] audit: type=1400 audit(2000000298.830:1006): avc:  denied  { name_bind } for  pid=11634 comm="syz.3.1601" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=udp_socket permissive=1
[  460.227376][T11639] CPU: 1 UID: 0 PID: 11639 Comm: syz.0.1602 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  460.227400][T11639] Tainted: [L]=SOFTLOCKUP
[  460.227405][T11639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  460.227414][T11639] Call Trace:
[  460.227419][T11639]  <TASK>
[  460.227425][T11639]  dump_stack_lvl+0x100/0x190
[  460.227447][T11639]  should_fail_ex.cold+0x5/0xa
[  460.227468][T11639]  should_failslab+0xc2/0x120
[  460.227485][T11639]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  460.227506][T11639]  ? skb_clone+0x190/0x400
[  460.227533][T11639]  skb_clone+0x190/0x400
[  460.227556][T11639]  netlink_deliver_tap+0xaed/0xcc0
[  460.227578][T11639]  netlink_unicast+0x62b/0x850
[  460.227600][T11639]  ? __pfx_netlink_unicast+0x10/0x10
[  460.227625][T11639]  netlink_sendmsg+0x8b0/0xda0
[  460.227646][T11639]  ? __pfx_netlink_sendmsg+0x10/0x10
[  460.227664][T11639]  ? __might_fault+0x90/0x140
[  460.227693][T11639]  ____sys_sendmsg+0x9e1/0xb70
[  460.227710][T11639]  ? __pfx_netlink_sendmsg+0x10/0x10
[  460.227730][T11639]  ? __pfx_____sys_sendmsg+0x10/0x10
[  460.227757][T11639]  ___sys_sendmsg+0x190/0x1e0
[  460.227778][T11639]  ? __pfx____sys_sendmsg+0x10/0x10
[  460.227822][T11639]  __sys_sendmsg+0x170/0x220
[  460.227846][T11639]  ? __pfx___sys_sendmsg+0x10/0x10
[  460.227878][T11639]  ? rcu_is_watching+0x12/0xc0
[  460.227903][T11639]  do_syscall_64+0x10b/0xf80
[  460.227920][T11639]  ? clear_bhb_loop+0x40/0x90
[  460.227939][T11639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.227954][T11639] RIP: 0033:0x7f645a99cdd9
[  460.227967][T11639] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  460.227981][T11639] RSP: 002b:00007f645b824028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  460.227995][T11639] RAX: ffffffffffffffda RBX: 00007f645ac16090 RCX: 00007f645a99cdd9
[  460.228005][T11639] RDX: 0000000000000004 RSI: 0000200000000400 RDI: 0000000000000005
[  460.228014][T11639] RBP: 00007f645b824090 R08: 0000000000000000 R09: 0000000000000000
[  460.228023][T11639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  460.228031][T11639] R13: 00007f645ac16128 R14: 00007f645ac16090 R15: 00007ffc8517edf8
[  460.228052][T11639]  </TASK>
[  460.464849][ T5726] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  460.472041][ T5733] usb 3-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  460.490221][ T5733] usb 3-1: Product: syz
[  460.494351][ T5733] usb 3-1: Manufacturer: syz
[  460.498940][ T5733] usb 3-1: SerialNumber: syz
[  460.517925][ T5733] usb 3-1: config 0 descriptor??
[  460.626242][ T5726] usb 5-1: Using ep0 maxpacket: 16
[  460.646837][ T5726] usb 5-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  460.669448][ T5726] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  460.693369][ T5726] usb 5-1: Product: syz
[  460.700833][ T5726] usb 5-1: Manufacturer: syz
[  460.712885][ T5726] usb 5-1: SerialNumber: syz
[  460.737989][ T5726] usb 5-1: config 0 descriptor??
[  460.864935][ T4929] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  460.872156][ T4929] Bluetooth: hci0: command 0x0c1a tx timeout
[  461.396213][ T5797] usb 3-1: USB disconnect, device number 43
[  461.409362][ T5726] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  461.480281][ T5726] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  461.532269][ T5726] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  461.557354][ T5726] usb 5-1: media controller created
[  461.592187][ T5726] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  461.634162][   T29] audit: type=1400 audit(2000000300.250:1007): avc:  denied  { bind } for  pid=11647 comm="syz.3.1605" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  461.671023][ T5726] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  461.689193][ T5726] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  461.895569][ T5797] usb 5-1: USB disconnect, device number 36
[  461.988398][ T5797] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  462.124895][ T5726] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  462.169264][   T29] audit: type=1326 audit(2000000300.790:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11649 comm="syz.0.1606" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645a99cdd9 code=0x7ffc0000
[  462.200272][T11656] /dev/nullb0: Can't open blockdev
[  462.208975][   T29] audit: type=1326 audit(2000000300.820:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11649 comm="syz.0.1606" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645a99cdd9 code=0x7ffc0000
[  462.241068][   T29] audit: type=1326 audit(2000000300.820:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11649 comm="syz.0.1606" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f645a99cdd9 code=0x7ffc0000
[  462.270093][   T29] audit: type=1326 audit(2000000300.830:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11649 comm="syz.0.1606" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645a99cdd9 code=0x7ffc0000
[  462.298341][   T29] audit: type=1326 audit(2000000300.830:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11649 comm="syz.0.1606" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645a99cdd9 code=0x7ffc0000
[  462.325345][ T5726] usb 4-1: config 1 has an invalid interface number: 7 but max is 0
[  462.333773][ T5726] usb 4-1: config 1 has no interface number 0
[  462.340543][ T5726] usb 4-1: config 1 interface 7 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  462.355634][   T29] audit: type=1326 audit(2000000300.830:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11649 comm="syz.0.1606" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f645a99cdd9 code=0x7ffc0000
[  462.384233][   T29] audit: type=1326 audit(2000000300.830:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11649 comm="syz.0.1606" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645a99cdd9 code=0x7ffc0000
[  462.412307][ T5726] usb 4-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  462.421421][ T5726] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.430080][ T5726] usb 4-1: Product: syz
[  462.435453][ T5726] usb 4-1: Manufacturer: syz
[  462.462152][   T29] audit: type=1326 audit(2000000300.830:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11649 comm="syz.0.1606" exe="/root/ci-upstream-kasan-gce-selinux-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f645a99cdd9 code=0x7ffc0000
[  462.492365][ T5726] usb 4-1: SerialNumber: syz
[  462.512243][ T5726] usb 4-1: Expected 3 endpoints, found: 2
[  462.699511][T11667] FAULT_INJECTION: forcing a failure.
[  462.699511][T11667] name failslab, interval 1, probability 0, space 0, times 0
[  462.723453][T11667] CPU: 1 UID: 0 PID: 11667 Comm: syz.2.1610 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  462.723477][T11667] Tainted: [L]=SOFTLOCKUP
[  462.723483][T11667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  462.723492][T11667] Call Trace:
[  462.723497][T11667]  <TASK>
[  462.723503][T11667]  dump_stack_lvl+0x100/0x190
[  462.723526][T11667]  should_fail_ex.cold+0x5/0xa
[  462.723548][T11667]  ? tomoyo_encode2+0xfb/0x3c0
[  462.723568][T11667]  should_failslab+0xc2/0x120
[  462.723586][T11667]  __kmalloc_noprof+0xe0/0x850
[  462.723608][T11667]  ? d_absolute_path+0x136/0x1b0
[  462.723630][T11667]  tomoyo_encode2+0xfb/0x3c0
[  462.723657][T11667]  tomoyo_encode+0x29/0x50
[  462.723676][T11667]  tomoyo_realpath_from_path+0x18c/0x690
[  462.723702][T11667]  tomoyo_path_number_perm+0x23c/0x580
[  462.723719][T11667]  ? tomoyo_path_number_perm+0x22e/0x580
[  462.723739][T11667]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  462.723779][T11667]  ? find_held_lock+0x2b/0x80
[  462.723794][T11667]  ? __fget_files+0x215/0x3d0
[  462.723812][T11667]  ? hook_file_ioctl_common+0x149/0x410
[  462.723835][T11667]  ? __fget_files+0x215/0x3d0
[  462.723857][T11667]  ? __fget_files+0x21f/0x3d0
[  462.723881][T11667]  security_file_ioctl+0xd3/0x230
[  462.723901][T11667]  __x64_sys_ioctl+0xb7/0x210
[  462.723918][T11667]  do_syscall_64+0x10b/0xf80
[  462.723937][T11667]  ? clear_bhb_loop+0x40/0x90
[  462.723956][T11667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.723972][T11667] RIP: 0033:0x7fc5f6f9cdd9
[  462.723986][T11667] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  462.724000][T11667] RSP: 002b:00007fc5f7f0f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  462.724015][T11667] RAX: ffffffffffffffda RBX: 00007fc5f7216090 RCX: 00007fc5f6f9cdd9
[  462.724025][T11667] RDX: 0000200000000140 RSI: 00000000c0d05604 RDI: 0000000000000009
[  462.724034][T11667] RBP: 00007fc5f7f0f090 R08: 0000000000000000 R09: 0000000000000000
[  462.724043][T11667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  462.724053][T11667] R13: 00007fc5f7216128 R14: 00007fc5f7216090 R15: 00007ffdd1223658
[  462.724074][T11667]  </TASK>
[  462.724096][T11667] ERROR: Out of memory at tomoyo_realpath_from_path.
[  465.006509][  T803] usb 4-1: USB disconnect, device number 43
[  467.745072][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  467.745087][   T29] audit: type=1400 audit(2000000306.370:1020): avc:  denied  { block_suspend } for  pid=11689 comm="syz.3.1617" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  467.925862][T11698] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  468.271912][   T29] audit: type=1400 audit(2000000306.890:1021): avc:  denied  { getopt } for  pid=11697 comm="syz.0.1619" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  468.296898][T11698] syzkaller0: entered promiscuous mode
[  468.308220][T11698] syzkaller0: entered allmulticast mode
[  468.322070][T11698] tipc: Resetting bearer <eth:syzkaller0>
[  468.347821][T11697] tipc: Resetting bearer <eth:syzkaller0>
[  469.933520][   T29] audit: type=1400 audit(2000000308.550:1022): avc:  denied  { setopt } for  pid=11723 comm="syz.5.1627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  470.490333][T11732] FAULT_INJECTION: forcing a failure.
[  470.490333][T11732] name failslab, interval 1, probability 0, space 0, times 0
[  470.508303][T11732] CPU: 0 UID: 0 PID: 11732 Comm: syz.3.1630 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  470.508328][T11732] Tainted: [L]=SOFTLOCKUP
[  470.508335][T11732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  470.508345][T11732] Call Trace:
[  470.508350][T11732]  <TASK>
[  470.508357][T11732]  dump_stack_lvl+0x100/0x190
[  470.508383][T11732]  should_fail_ex.cold+0x5/0xa
[  470.508407][T11732]  should_failslab+0xc2/0x120
[  470.508426][T11732]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  470.508458][T11732]  ? __rds_conn_create+0x72c/0x25a0
[  470.508482][T11732]  ? __rds_conn_create+0x1958/0x25a0
[  470.508510][T11732]  __rds_conn_create+0x72c/0x25a0
[  470.508543][T11732]  ? __pfx___rds_conn_create+0x10/0x10
[  470.508566][T11732]  ? rcu_is_watching+0x12/0xc0
[  470.508593][T11732]  ? trace_kmalloc+0xe3/0x110
[  470.508612][T11732]  ? lockdep_init_map_type+0x5c/0x250
[  470.508639][T11732]  rds_conn_create_outgoing+0x44/0x60
[  470.508667][T11732]  rds_sendmsg+0x10da/0x3480
[  470.508697][T11732]  ? __pfx_rds_sendmsg+0x10/0x10
[  470.508718][T11732]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  470.508757][T11732]  ? ____sys_sendmsg+0x9e1/0xb70
[  470.508777][T11732]  ____sys_sendmsg+0x9e1/0xb70
[  470.508795][T11732]  ? __pfx_rds_sendmsg+0x10/0x10
[  470.508814][T11732]  ? __pfx_____sys_sendmsg+0x10/0x10
[  470.508845][T11732]  ___sys_sendmsg+0x190/0x1e0
[  470.508868][T11732]  ? __pfx____sys_sendmsg+0x10/0x10
[  470.508919][T11732]  __sys_sendmsg+0x170/0x220
[  470.508946][T11732]  ? __pfx___sys_sendmsg+0x10/0x10
[  470.508983][T11732]  ? rcu_is_watching+0x12/0xc0
[  470.509012][T11732]  do_syscall_64+0x10b/0xf80
[  470.509032][T11732]  ? clear_bhb_loop+0x40/0x90
[  470.509054][T11732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.509071][T11732] RIP: 0033:0x7f98ced9cdd9
[  470.509085][T11732] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  470.509102][T11732] RSP: 002b:00007f98cfc56028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  470.509119][T11732] RAX: ffffffffffffffda RBX: 00007f98cf015fa0 RCX: 00007f98ced9cdd9
[  470.509130][T11732] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000003
[  470.509141][T11732] RBP: 00007f98cfc56090 R08: 0000000000000000 R09: 0000000000000000
[  470.509151][T11732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  470.509160][T11732] R13: 00007f98cf016038 R14: 00007f98cf015fa0 R15: 00007ffd6057b698
[  470.509184][T11732]  </TASK>
[  470.830936][T11736] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1631'.
[  470.860886][   T29] audit: type=1400 audit(2000000309.490:1023): avc:  denied  { read } for  pid=11733 comm="syz.4.1629" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  471.025058][   T29] audit: type=1400 audit(2000000309.650:1024): avc:  denied  { write } for  pid=11738 comm="syz.3.1632" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  471.445121][ T5797] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  471.967323][  T803] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  472.066948][T11697] tipc: Disabling bearer <eth:syzkaller0>
[  472.078252][T11714] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1625'.
[  472.124965][  T803] usb 5-1: Using ep0 maxpacket: 32
[  472.137293][  T803] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  472.184750][  T803] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  472.209221][  T803] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  472.237982][  T803] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  472.424372][  T803] usb 5-1: config 0 descriptor??
[  472.437048][  T803] hub 5-1:0.0: USB hub found
[  472.460212][   T29] audit: type=1400 audit(2000000311.080:1025): avc:  denied  { ioctl } for  pid=11747 comm="syz.0.1636" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 ioctlcmd=0x89f2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  472.520298][T11756] trusted_key: encrypted_key: insufficient parameters specified
[  472.932754][  T803] hub 5-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  472.942426][   T29] audit: type=1400 audit(2000000311.220:1026): avc:  denied  { write } for  pid=11747 comm="syz.0.1636" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  473.165944][   T29] audit: type=1804 audit(2000000311.760:1027): pid=11759 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.1637" name="/newroot/324/file1" dev="tmpfs" ino=1753 res=1 errno=0
[  473.440996][  T803] hid-generic 0003:046D:C31C.000C: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.4-1/input0
[  473.853237][T11763] overlayfs: failed to resolve '/ÿÿ': -2
[  474.438296][  T803] usb 5-1: USB disconnect, device number 37
[  474.703095][T11772] overlayfs: missing 'lowerdir'
[  474.742418][T11766] fido_id[11766]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  474.961137][T11785] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2579 sclass=netlink_route_socket pid=11785 comm=syz.5.1644
[  475.145049][ T5797] usb 4-1: device descriptor read/64, error -71
[  475.331390][   T29] audit: type=1400 audit(2000000313.940:1028): avc:  denied  { read append } for  pid=11784 comm="syz.4.1643" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  475.383028][T11785] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1644'.
[  475.451501][   T29] audit: type=1400 audit(2000000313.940:1029): avc:  denied  { open } for  pid=11784 comm="syz.4.1643" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  475.477062][ T5797] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  475.546437][   T29] audit: type=1400 audit(2000000314.030:1030): avc:  denied  { map } for  pid=11784 comm="syz.4.1643" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  475.634213][   T29] audit: type=1400 audit(2000000314.040:1031): avc:  denied  { write } for  pid=11784 comm="syz.4.1643" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  475.681044][ T5797] usb 4-1: config index 0 descriptor too short (expected 65499, got 72)
[  475.705527][ T5797] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  475.735329][ T5797] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.743801][ T5797] usb 4-1: Product: syz
[  475.764464][ T5797] usb 4-1: Manufacturer: syz
[  475.770209][ T5797] usb 4-1: SerialNumber: syz
[  475.802877][ T5797] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  475.818808][   T46] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  476.171207][T11797] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  476.223148][T11797] IPVS: Error connecting to the multicast addr
[  476.394704][T11803] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1649'.
[  476.530183][  T803] usb 4-1: USB disconnect, device number 45
[  477.119583][T11812] overlayfs: failed to resolve '/ÿÿ': -2
[  477.221969][   T46] usb 4-1: Service connection timeout for: 256
[  477.840252][   T46] ath9k_htc 4-1:1.0: ath9k_htc: Unable to initialize HTC services
[  477.941993][T11818] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1653'.
[  477.985547][   T46] ath9k_htc: Failed to initialize the device
[  477.993706][T11821] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1653'.
[  478.028905][  T803] usb 4-1: ath9k_htc: USB layer deinitialized
[  478.982272][T11840] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  478.990801][T11840] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  479.035862][T11840] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  479.044376][T11840] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  479.214939][ T5797] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[  480.708162][T11849] syz.4.1662 (11849) used greatest stack depth: 20152 bytes left
[  482.774864][ T5797] usb 3-1: device descriptor read/64, error -71
[  482.805565][  T803] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  482.995837][  T803] usb 4-1: Using ep0 maxpacket: 32
[  483.030321][  T803] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  483.065422][ T5797] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[  483.096961][  T803] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  483.167825][  T803] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  483.232591][  T803] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.276040][ T5797] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  483.315826][  T803] usb 4-1: config 0 descriptor??
[  483.325286][ T5797] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  483.371436][  T803] hub 4-1:0.0: USB hub found
[  483.386495][ T5797] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  483.452094][ T5797] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  483.542951][ T5797] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  483.603571][  T803] hub 4-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  483.606400][ T5797] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  483.691361][ T5797] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  483.722689][ T5797] usb 3-1: Product: syz
[  483.741283][ T5797] usb 3-1: Manufacturer: syz
[  483.773655][ T5797] cdc_wdm 3-1:1.0: skipping garbage
[  483.795793][ T5797] cdc_wdm 3-1:1.0: skipping garbage
[  483.839221][ T5797] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  483.875244][ T5797] cdc_wdm 3-1:1.0: Unknown control protocol
[  483.925456][   T46] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  484.065283][  T803] hid-generic 0003:046D:C31C.000D: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.3-1/input0
[  484.104933][   T46] usb 5-1: Using ep0 maxpacket: 32
[  484.131850][   T46] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  484.161848][   T46] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  484.188902][   T46] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  484.206607][T11894] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  484.225477][   T46] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  484.243369][T11894] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  484.267709][   T46] usb 5-1: config 0 descriptor??
[  484.309057][   T46] hub 5-1:0.0: USB hub found
[  484.661839][   T46] hub 5-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  485.644234][  T803] usb 4-1: USB disconnect, device number 46
[  485.645270][   T46] hid-generic 0003:046D:C31C.000E: hidraw1: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.4-1/input0
[  485.717786][   T46] usb 5-1: USB disconnect, device number 38
[  486.933961][T11915] fido_id[11915]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  487.278446][   T46] usb 3-1: USB disconnect, device number 45
[  487.575051][ T5726] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[  487.726394][   T46] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[  487.737489][  T134] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  487.758897][ T5726] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  487.770569][  T134] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  487.783538][ T5726] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  487.794943][  T134] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  487.807411][ T5726] usb 4-1: Product: syz
[  487.816436][ T5726] usb 4-1: Manufacturer: syz
[  487.831817][  T134] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  487.849116][ T5726] usb 4-1: SerialNumber: syz
[  487.867966][  T134] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  487.877384][ T5726] usb 4-1: config 0 descriptor??
[  487.889272][  T134] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  487.902431][  T134] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  487.911601][  T134] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  487.922321][   T46] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  487.942641][   T46] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  487.966814][   T46] usb 3-1: config 1 interface 0 altsetting 0 has an invalid endpoint descriptor of length 4, skipping
[  487.987775][T11934] FAULT_INJECTION: forcing a failure.
[  487.987775][T11934] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  488.003799][   T46] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  488.018215][T11934] CPU: 1 UID: 0 PID: 11934 Comm: syz.0.1687 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  488.018243][T11934] Tainted: [L]=SOFTLOCKUP
[  488.018250][T11934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  488.018260][T11934] Call Trace:
[  488.018267][T11934]  <TASK>
[  488.018274][T11934]  dump_stack_lvl+0x100/0x190
[  488.018299][T11934]  should_fail_ex.cold+0x5/0xa
[  488.018325][T11934]  _copy_to_user+0x32/0xd0
[  488.018353][T11934]  simple_read_from_buffer+0xcb/0x170
[  488.018378][T11934]  proc_fail_nth_read+0x1af/0x230
[  488.018398][T11934]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  488.018420][T11934]  ? rw_verify_area+0xce/0x6d0
[  488.018436][T11934]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  488.018454][T11934]  vfs_read+0x1e4/0xb30
[  488.018475][T11934]  ? __pfx_vfs_read+0x10/0x10
[  488.018492][T11934]  ? __fget_files+0x215/0x3d0
[  488.018519][T11934]  ? __fget_files+0x21f/0x3d0
[  488.018548][T11934]  ksys_read+0x12a/0x250
[  488.018568][T11934]  ? __pfx_ksys_read+0x10/0x10
[  488.018589][T11934]  ? rcu_is_watching+0x12/0xc0
[  488.018620][T11934]  do_syscall_64+0x10b/0xf80
[  488.018640][T11934]  ? clear_bhb_loop+0x40/0x90
[  488.018662][T11934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  488.018680][T11934] RIP: 0033:0x7f645a95d60e
[  488.018695][T11934] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  488.018711][T11934] RSP: 002b:00007f645b844fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  488.018728][T11934] RAX: ffffffffffffffda RBX: 00007f645b8456c0 RCX: 00007f645a95d60e
[  488.018739][T11934] RDX: 000000000000000f RSI: 00007f645b8450a0 RDI: 0000000000000005
[  488.018749][T11934] RBP: 00007f645b845090 R08: 0000000000000000 R09: 0000000000000000
[  488.018759][T11934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  488.018768][T11934] R13: 00007f645ac16038 R14: 00007f645ac15fa0 R15: 00007ffc8517edf8
[  488.018792][T11934]  </TASK>
[  488.220967][   T46] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  488.230138][   T46] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  488.238201][   T46] usb 3-1: SerialNumber: syz
[  488.451078][ T5733] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  488.676187][   T46] usb 3-1: 0:2 : does not exist
[  488.704159][   T46] usb 3-1: unit 5 not found!
[  488.785582][   T46] usb 3-1: USB disconnect, device number 46
[  488.814864][ T5733] usb 5-1: Using ep0 maxpacket: 8
[  488.831313][ T5733] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  488.885853][ T8929] udevd[8929]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  488.913822][ T5733] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  488.954690][ T5733] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[  488.999415][ T5733] usb 5-1: New USB device found, idVendor=056e, idProduct=00fe, bcdDevice= 0.00
[  489.028852][ T5733] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.047847][ T5733] usb 5-1: config 0 descriptor??
[  489.116917][T11946] FAULT_INJECTION: forcing a failure.
[  489.116917][T11946] name failslab, interval 1, probability 0, space 0, times 0
[  489.129978][T11946] CPU: 1 UID: 0 PID: 11946 Comm: syz.0.1690 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  489.130008][T11946] Tainted: [L]=SOFTLOCKUP
[  489.130014][T11946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  489.130025][T11946] Call Trace:
[  489.130037][T11946]  <TASK>
[  489.130045][T11946]  dump_stack_lvl+0x100/0x190
[  489.130072][T11946]  should_fail_ex.cold+0x5/0xa
[  489.130098][T11946]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x100/0x2f0
[  489.130124][T11946]  should_failslab+0xc2/0x120
[  489.130144][T11946]  __kmalloc_noprof+0xe0/0x850
[  489.130176][T11946]  genl_family_rcv_msg_attrs_parse.isra.0+0x100/0x2f0
[  489.130208][T11946]  genl_family_rcv_msg_doit+0xc7/0x300
[  489.130236][T11946]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  489.130268][T11946]  ? bpf_lsm_capable+0x9/0x10
[  489.130287][T11946]  ? security_capable+0x80/0x260
[  489.130308][T11946]  ? ns_capable+0xd2/0xf0
[  489.130335][T11946]  genl_rcv_msg+0x560/0x800
[  489.130364][T11946]  ? __pfx_genl_rcv_msg+0x10/0x10
[  489.130389][T11946]  ? __pfx_mptcp_pm_nl_del_addr_doit+0x10/0x10
[  489.130413][T11946]  ? __lock_acquire+0x4a5/0x2630
[  489.130441][T11946]  netlink_rcv_skb+0x159/0x420
[  489.130463][T11946]  ? __pfx_genl_rcv_msg+0x10/0x10
[  489.130489][T11946]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  489.130522][T11946]  ? netlink_deliver_tap+0x1ae/0xcc0
[  489.130546][T11946]  genl_rcv+0x28/0x40
[  489.130568][T11946]  netlink_unicast+0x585/0x850
[  489.130594][T11946]  ? __pfx_netlink_unicast+0x10/0x10
[  489.130623][T11946]  netlink_sendmsg+0x8b0/0xda0
[  489.130650][T11946]  ? __pfx_netlink_sendmsg+0x10/0x10
[  489.130670][T11946]  ? __might_fault+0x90/0x140
[  489.130705][T11946]  ____sys_sendmsg+0x9e1/0xb70
[  489.130725][T11946]  ? __pfx_netlink_sendmsg+0x10/0x10
[  489.130749][T11946]  ? __pfx_____sys_sendmsg+0x10/0x10
[  489.130782][T11946]  ___sys_sendmsg+0x190/0x1e0
[  489.130806][T11946]  ? __pfx____sys_sendmsg+0x10/0x10
[  489.130859][T11946]  __sys_sendmsg+0x170/0x220
[  489.130888][T11946]  ? __pfx___sys_sendmsg+0x10/0x10
[  489.130927][T11946]  ? rcu_is_watching+0x12/0xc0
[  489.130957][T11946]  do_syscall_64+0x10b/0xf80
[  489.130977][T11946]  ? clear_bhb_loop+0x40/0x90
[  489.131000][T11946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.131018][T11946] RIP: 0033:0x7f645a99cdd9
[  489.131039][T11946] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  489.131056][T11946] RSP: 002b:00007f645b845028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  489.131074][T11946] RAX: ffffffffffffffda RBX: 00007f645ac15fa0 RCX: 00007f645a99cdd9
[  489.131085][T11946] RDX: 0000000000008010 RSI: 0000200000000000 RDI: 0000000000000003
[  489.131095][T11946] RBP: 00007f645b845090 R08: 0000000000000000 R09: 0000000000000000
[  489.131105][T11946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  489.131115][T11946] R13: 00007f645ac16038 R14: 00007f645ac15fa0 R15: 00007ffc8517edf8
[  489.131140][T11946]  </TASK>
[  489.424972][T11949] fuse: fd is not a fuse device
[  489.425915][T11950] 9p: Bad value for 'rfdno'
[  489.430083][ T5726] usb 4-1: Firmware version (0.0) predates our first public release.
[  489.446933][ T5726] usb 4-1: Please update to version 0.2 or newer
[  489.448759][T11936] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  489.485235][T11936] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  489.493006][T11924] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  489.505501][T11924] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  489.642568][   T29] audit: type=1400 audit(2000000328.260:1032): avc:  denied  { accept } for  pid=11955 comm="syz.0.1692" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  489.718502][T11966] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  489.955947][ T5733] usbhid 5-1:0.0: can't add hid device: -71
[  489.965255][  T803] usb 4-1: USB disconnect, device number 47
[  489.973831][ T5733] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  490.014917][ T5733] usb 5-1: USB disconnect, device number 39
[  490.117597][   T29] audit: type=1804 audit(2000000328.740:1033): pid=11973 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.5.1698" name="file1" dev="tmpfs" ino=1985 res=1 errno=0
[  490.236437][T11978] FAULT_INJECTION: forcing a failure.
[  490.236437][T11978] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  490.250376][T11978] CPU: 1 UID: 0 PID: 11978 Comm: syz.2.1700 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  490.250402][T11978] Tainted: [L]=SOFTLOCKUP
[  490.250410][T11978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  490.250420][T11978] Call Trace:
[  490.250427][T11978]  <TASK>
[  490.250434][T11978]  dump_stack_lvl+0x100/0x190
[  490.250461][T11978]  should_fail_ex.cold+0x5/0xa
[  490.250487][T11978]  _copy_to_user+0x32/0xd0
[  490.250515][T11978]  simple_read_from_buffer+0xcb/0x170
[  490.250540][T11978]  proc_fail_nth_read+0x1af/0x230
[  490.250562][T11978]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  490.250584][T11978]  ? rw_verify_area+0xce/0x6d0
[  490.250604][T11978]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  490.250624][T11978]  vfs_read+0x1e4/0xb30
[  490.250647][T11978]  ? __pfx_vfs_read+0x10/0x10
[  490.250665][T11978]  ? __fget_files+0x215/0x3d0
[  490.250693][T11978]  ? __fget_files+0x21f/0x3d0
[  490.250723][T11978]  ksys_read+0x12a/0x250
[  490.250741][T11978]  ? __pfx_ksys_read+0x10/0x10
[  490.250762][T11978]  ? rcu_is_watching+0x12/0xc0
[  490.250792][T11978]  do_syscall_64+0x10b/0xf80
[  490.250814][T11978]  ? clear_bhb_loop+0x40/0x90
[  490.250836][T11978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.250855][T11978] RIP: 0033:0x7fc5f6f5d60e
[  490.250870][T11978] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  490.250887][T11978] RSP: 002b:00007fc5f7f2ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  490.250904][T11978] RAX: ffffffffffffffda RBX: 00007fc5f7f306c0 RCX: 00007fc5f6f5d60e
[  490.250917][T11978] RDX: 000000000000000f RSI: 00007fc5f7f300a0 RDI: 0000000000000003
[  490.250928][T11978] RBP: 00007fc5f7f30090 R08: 0000000000000000 R09: 0000000000000000
[  490.250939][T11978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  490.250950][T11978] R13: 00007fc5f7216038 R14: 00007fc5f7215fa0 R15: 00007ffdd1223658
[  490.250975][T11978]  </TASK>
[  490.523803][T11983] netlink: 'syz.2.1702': attribute type 2 has an invalid length.
[  490.538353][T11983] netlink: 'syz.2.1702': attribute type 2 has an invalid length.
[  490.539559][   T29] audit: type=1400 audit(2000000329.160:1034): avc:  denied  { ioctl } for  pid=11984 comm="syz.0.1701" path="/dev/fuse" dev="devtmpfs" ino=99 ioctlcmd=0xe503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  490.580076][T11987] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1703'.
[  490.591298][T11987] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1703'.
[  490.600246][T11987] netlink: 'syz.5.1703': attribute type 14 has an invalid length.
[  490.614627][T11987] netlink: 'syz.5.1703': attribute type 13 has an invalid length.
[  490.661052][T11988] futex_wake_op: syz.0.1701 tries to shift op by -1; fix this program
[  490.992728][T11994] FAULT_INJECTION: forcing a failure.
[  490.992728][T11994] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  491.006807][T11994] CPU: 0 UID: 0 PID: 11994 Comm: syz.4.1705 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  491.006833][T11994] Tainted: [L]=SOFTLOCKUP
[  491.006839][T11994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  491.006849][T11994] Call Trace:
[  491.006855][T11994]  <TASK>
[  491.006862][T11994]  dump_stack_lvl+0x100/0x190
[  491.006889][T11994]  should_fail_ex.cold+0x5/0xa
[  491.006914][T11994]  _copy_to_user+0x32/0xd0
[  491.006942][T11994]  simple_read_from_buffer+0xcb/0x170
[  491.006967][T11994]  proc_fail_nth_read+0x1af/0x230
[  491.006987][T11994]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  491.007008][T11994]  ? rw_verify_area+0xce/0x6d0
[  491.007025][T11994]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  491.007043][T11994]  vfs_read+0x1e4/0xb30
[  491.007073][T11994]  ? __pfx_vfs_read+0x10/0x10
[  491.007091][T11994]  ? __fget_files+0x215/0x3d0
[  491.007118][T11994]  ? __fget_files+0x21f/0x3d0
[  491.007146][T11994]  ksys_read+0x12a/0x250
[  491.007165][T11994]  ? __pfx_ksys_read+0x10/0x10
[  491.007185][T11994]  ? rcu_is_watching+0x12/0xc0
[  491.007214][T11994]  do_syscall_64+0x10b/0xf80
[  491.007233][T11994]  ? clear_bhb_loop+0x40/0x90
[  491.007256][T11994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  491.007274][T11994] RIP: 0033:0x7ff02455d60e
[  491.007289][T11994] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  491.007305][T11994] RSP: 002b:00007ff0253c5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  491.007323][T11994] RAX: ffffffffffffffda RBX: 00007ff0253c66c0 RCX: 00007ff02455d60e
[  491.007335][T11994] RDX: 000000000000000f RSI: 00007ff0253c60a0 RDI: 0000000000000005
[  491.007345][T11994] RBP: 00007ff0253c6090 R08: 0000000000000000 R09: 0000000000000000
[  491.007356][T11994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  491.007367][T11994] R13: 00007ff024816038 R14: 00007ff024815fa0 R15: 00007ffe8ac7fd28
[  491.007391][T11994]  </TASK>
[  491.250173][T11998] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1707'.
[  492.140308][T12024] usb usb8: usbfs: interface 0 claimed by hub while 'syz.4.1713' sets config #2
[  492.525873][   T29] audit: type=1804 audit(2000000331.140:1035): pid=12026 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.5.1717" name="file1" dev="tmpfs" ino=2007 res=1 errno=0
[  492.644919][   T46] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  492.834966][   T46] usb 5-1: Using ep0 maxpacket: 32
[  492.875977][   T46] usb 5-1: unable to get BOS descriptor or descriptor too short
[  492.936157][   T46] usb 5-1: config 3 has an invalid interface number: 2 but max is 1
[  492.967091][   T46] usb 5-1: config 3 has an invalid interface number: 19 but max is 1
[  493.004879][ T5726] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[  493.038058][   T46] usb 5-1: config 3 has no interface number 0
[  493.060981][   T46] usb 5-1: config 3 has no interface number 1
[  493.092824][   T46] usb 5-1: config 3 interface 19 has no altsetting 0
[  493.144171][   T46] usb 5-1: New USB device found, idVendor=0bda, idProduct=0140, bcdDevice=20.c1
[  493.177330][   T46] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  493.217667][ T5726] usb 4-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  493.230843][   T46] usb 5-1: Product: syz
[  493.252142][   T46] usb 5-1: Manufacturer: syz
[  493.258863][ T5726] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  493.290259][   T46] usb 5-1: SerialNumber: syz
[  493.303897][ T5726] usb 4-1: Product: syz
[  493.326227][ T5726] usb 4-1: Manufacturer: syz
[  493.368953][ T5726] usb 4-1: SerialNumber: syz
[  493.692025][   T29] audit: type=1800 audit(2000000332.250:1036): pid=12037 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.5.1720" name="nullb0" dev="tmpfs" ino=2019 res=0 errno=0
[  495.322583][ T5726] rtl8150 4-1:1.0: couldn't reset the device
[  495.553033][ T5726] rtl8150 4-1:1.0: probe with driver rtl8150 failed with error -5
[  495.781591][  T803] usb 4-1: USB disconnect, device number 48
[  496.038788][   T46] rtsx_usb 5-1:3.2: probe with driver rtsx_usb failed with error -22
[  496.073142][   T46] rtsx_usb 5-1:3.19: probe with driver rtsx_usb failed with error -22
[  496.147186][   T46] usb 5-1: USB disconnect, device number 40
[  496.186406][T12056] FAULT_INJECTION: forcing a failure.
[  496.186406][T12056] name failslab, interval 1, probability 0, space 0, times 0
[  496.230727][T12056] CPU: 0 UID: 0 PID: 12056 Comm: syz.0.1726 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  496.230755][T12056] Tainted: [L]=SOFTLOCKUP
[  496.230761][T12056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  496.230772][T12056] Call Trace:
[  496.230778][T12056]  <TASK>
[  496.230786][T12056]  dump_stack_lvl+0x100/0x190
[  496.230814][T12056]  should_fail_ex.cold+0x5/0xa
[  496.230840][T12056]  should_failslab+0xc2/0x120
[  496.230860][T12056]  __kmalloc_cache_noprof+0x7a/0x6f0
[  496.230884][T12056]  ? percpu_ref_init+0xec/0x3f0
[  496.230908][T12056]  ? __pfx_nfsd_net_free+0x10/0x10
[  496.230934][T12056]  percpu_ref_init+0xec/0x3f0
[  496.230957][T12056]  nfsd_create_serv+0x15f/0x4a0
[  496.230984][T12056]  ? __pfx_nfsd_create_serv+0x10/0x10
[  496.231010][T12056]  ? __nla_validate_parse+0x1e7/0x28b0
[  496.231038][T12056]  nfsd_nl_listener_set_doit+0xdd/0x1a80
[  496.231064][T12056]  ? rcu_is_watching+0x12/0xc0
[  496.231091][T12056]  ? trace_kmalloc+0xe3/0x110
[  496.231113][T12056]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  496.231139][T12056]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0
[  496.231166][T12056]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0
[  496.231197][T12056]  genl_family_rcv_msg_doit+0x214/0x300
[  496.231224][T12056]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  496.231267][T12056]  ? bpf_lsm_capable+0x9/0x10
[  496.231286][T12056]  ? security_capable+0x80/0x260
[  496.231311][T12056]  genl_rcv_msg+0x560/0x800
[  496.231339][T12056]  ? __pfx_genl_rcv_msg+0x10/0x10
[  496.231363][T12056]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  496.231386][T12056]  ? __lock_acquire+0x4a5/0x2630
[  496.231414][T12056]  netlink_rcv_skb+0x159/0x420
[  496.231435][T12056]  ? __pfx_genl_rcv_msg+0x10/0x10
[  496.231460][T12056]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  496.231491][T12056]  ? netlink_deliver_tap+0x1ae/0xcc0
[  496.231516][T12056]  genl_rcv+0x28/0x40
[  496.231537][T12056]  netlink_unicast+0x585/0x850
[  496.231562][T12056]  ? __pfx_netlink_unicast+0x10/0x10
[  496.231591][T12056]  netlink_sendmsg+0x8b0/0xda0
[  496.231617][T12056]  ? __pfx_netlink_sendmsg+0x10/0x10
[  496.231637][T12056]  ? __might_fault+0x90/0x140
[  496.231671][T12056]  ____sys_sendmsg+0x9e1/0xb70
[  496.231691][T12056]  ? __pfx_netlink_sendmsg+0x10/0x10
[  496.231714][T12056]  ? __pfx_____sys_sendmsg+0x10/0x10
[  496.231747][T12056]  ___sys_sendmsg+0x190/0x1e0
[  496.231771][T12056]  ? __pfx____sys_sendmsg+0x10/0x10
[  496.231821][T12056]  __sys_sendmsg+0x170/0x220
[  496.231849][T12056]  ? __pfx___sys_sendmsg+0x10/0x10
[  496.231885][T12056]  ? rcu_is_watching+0x12/0xc0
[  496.231915][T12056]  do_syscall_64+0x10b/0xf80
[  496.231936][T12056]  ? clear_bhb_loop+0x40/0x90
[  496.231958][T12056]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.231975][T12056] RIP: 0033:0x7f645a99cdd9
[  496.231990][T12056] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  496.232007][T12056] RSP: 002b:00007f645b845028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  496.232024][T12056] RAX: ffffffffffffffda RBX: 00007f645ac15fa0 RCX: 00007f645a99cdd9
[  496.232035][T12056] RDX: 0000000004008010 RSI: 0000200000000140 RDI: 0000000000000003
[  496.232046][T12056] RBP: 00007f645b845090 R08: 0000000000000000 R09: 0000000000000000
[  496.232057][T12056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  496.232067][T12056] R13: 00007f645ac16038 R14: 00007f645ac15fa0 R15: 00007ffc8517edf8
[  496.232091][T12056]  </TASK>
[  496.590461][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[  497.464434][T12073] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1734'.
[  497.854698][T12081] ipvlan2: entered allmulticast mode
[  497.860052][T12081] dummy0: entered allmulticast mode
[  499.314866][  T803] usb 4-1: new full-speed USB device number 49 using dummy_hcd
[  499.526305][  T803] usb 4-1: New USB device found, idVendor=13d8, idProduct=0020, bcdDevice=f7.31
[  499.544915][  T803] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  499.572940][  T803] usb 4-1: selecting invalid altsetting 3
[  499.586512][  T803] comedi comedi5: could not set alternate setting 3 in high speed
[  499.598536][  T803] usbduxsigma 4-1:128.0: driver 'usbduxsigma' failed to auto-configure device.
[  499.617208][  T803] usbduxsigma 4-1:128.0: probe with driver usbduxsigma failed with error -22
[  499.707651][T12100] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1742'.
[  499.767912][T12104] xt_recent: Unsupported userspace flags (000000de)
[  500.105238][  T803] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  500.118013][   T46] usb 4-1: USB disconnect, device number 49
[  500.407920][  T803] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  500.417071][  T803] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  500.425274][  T803] usb 5-1: Product: syz
[  500.429702][  T803] usb 5-1: Manufacturer: syz
[  500.434315][  T803] usb 5-1: SerialNumber: syz
[  500.542430][T12120] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1747'.
[  501.483048][T12127] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  501.513889][T12127] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  501.535235][   T29] audit: type=1400 audit(2000000340.160:1037): avc:  denied  { getopt } for  pid=12128 comm="syz.2.1752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  501.553381][  T803] rtl8150 5-1:1.0: couldn't reset the device
[  501.563600][T12131] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  501.573216][  T803] rtl8150 5-1:1.0: probe with driver rtl8150 failed with error -5
[  501.583802][T12131] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  501.593379][T12129] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1752'.
[  501.604382][   T29] audit: type=1400 audit(2000000340.230:1038): avc:  denied  { read } for  pid=12126 comm="syz.3.1750" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  501.632591][T12129] netlink: 16166 bytes leftover after parsing attributes in process `syz.2.1752'.
[  501.694880][T12127] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  501.702165][T12127] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  501.759255][T12127] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  501.786229][ T5733] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[  501.954676][T12127] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  501.973839][ T5711] usb 5-1: USB disconnect, device number 41
[  502.101513][T12127] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  502.146648][T12127] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  502.154874][ T5733] usb 4-1: device descriptor read/64, error -71
[  502.236733][T12127] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  502.277971][T12127] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  502.331169][T12127] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  502.394971][ T5733] usb 4-1: new high-speed USB device number 51 using dummy_hcd
[  502.935729][T12163] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1761'.
[  503.744901][   T50] Bluetooth: hci0: command 0x0c1a tx timeout
[  503.825391][   T50] Bluetooth: hci2: command 0x0406 tx timeout
[  503.860212][T12127] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  504.177079][   T50] Bluetooth: hci3: command 0x0406 tx timeout
[  504.315921][ T4929] Bluetooth: hci4: command 0x0c1a tx timeout
[  504.877554][T12201] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12201 comm=syz.5.1770
[  504.930428][T12199] FAULT_INJECTION: forcing a failure.
[  504.930428][T12199] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  505.009330][T12199] CPU: 1 UID: 0 PID: 12199 Comm: syz.0.1774 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  505.009359][T12199] Tainted: [L]=SOFTLOCKUP
[  505.009366][T12199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  505.009377][T12199] Call Trace:
[  505.009383][T12199]  <TASK>
[  505.009390][T12199]  dump_stack_lvl+0x100/0x190
[  505.009416][T12199]  should_fail_ex.cold+0x5/0xa
[  505.009441][T12199]  _copy_to_user+0x32/0xd0
[  505.009469][T12199]  __sys_bpf+0x3b7e/0x4b90
[  505.009489][T12199]  ? __pfx___sys_bpf+0x10/0x10
[  505.009504][T12199]  ? proc_fail_nth_write+0x9f/0x220
[  505.009524][T12199]  ? find_held_lock+0x2b/0x80
[  505.009547][T12199]  ? find_held_lock+0x2b/0x80
[  505.009563][T12199]  ? ksys_write+0x190/0x250
[  505.009582][T12199]  ? ksys_write+0x190/0x250
[  505.009605][T12199]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  505.009628][T12199]  ? kernel_write+0x613/0x6c0
[  505.009646][T12199]  ? __fget_files+0x215/0x3d0
[  505.009680][T12199]  ? fput+0x79/0x100
[  505.009703][T12199]  ? ksys_write+0x1ac/0x250
[  505.009722][T12199]  ? __pfx_ksys_write+0x10/0x10
[  505.009746][T12199]  __x64_sys_bpf+0x7b/0xc0
[  505.009762][T12199]  ? lockdep_hardirqs_on+0x78/0x100
[  505.009783][T12199]  do_syscall_64+0x10b/0xf80
[  505.009803][T12199]  ? clear_bhb_loop+0x40/0x90
[  505.009825][T12199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.009843][T12199] RIP: 0033:0x7f645a99cdd9
[  505.009863][T12199] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  505.009880][T12199] RSP: 002b:00007f645b845028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  505.009897][T12199] RAX: ffffffffffffffda RBX: 00007f645ac15fa0 RCX: 00007f645a99cdd9
[  505.009908][T12199] RDX: 0000000000000020 RSI: 0000200000000200 RDI: 0000000000000015
[  505.009920][T12199] RBP: 00007f645b845090 R08: 0000000000000000 R09: 0000000000000000
[  505.009930][T12199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  505.009948][T12199] R13: 00007f645ac16038 R14: 00007f645ac15fa0 R15: 00007ffc8517edf8
[  505.009972][T12199]  </TASK>
[  505.297638][   T29] audit: type=1400 audit(2000000343.870:1039): avc:  denied  { ioctl } for  pid=12172 comm="syz.4.1764" path="socket:[39483]" dev="sockfs" ino=39483 ioctlcmd=0x8940 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  505.324647][T12208] netlink: 'syz.0.1775': attribute type 1 has an invalid length.
[  505.522111][T12216] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1780'.
[  505.858753][ T4929] Bluetooth: hci0: command 0x0c1a tx timeout
[  505.905106][ T4929] Bluetooth: hci2: command 0x0406 tx timeout
[  506.334631][ T4929] Bluetooth: hci3: command 0x0406 tx timeout
[  506.384912][ T4929] Bluetooth: hci4: command 0x0c1a tx timeout
[  507.272214][T12259] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993
[  507.463010][T12263] overlayfs: failed to clone lowerpath
[  507.558700][T12270] FAULT_INJECTION: forcing a failure.
[  507.558700][T12270] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  507.585459][T12270] CPU: 0 UID: 0 PID: 12270 Comm: syz.2.1794 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  507.585484][T12270] Tainted: [L]=SOFTLOCKUP
[  507.585490][T12270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  507.585500][T12270] Call Trace:
[  507.585506][T12270]  <TASK>
[  507.585512][T12270]  dump_stack_lvl+0x100/0x190
[  507.585537][T12270]  should_fail_ex.cold+0x5/0xa
[  507.585563][T12270]  _copy_to_user+0x32/0xd0
[  507.585590][T12270]  simple_read_from_buffer+0xcb/0x170
[  507.585615][T12270]  proc_fail_nth_read+0x1af/0x230
[  507.585636][T12270]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  507.585657][T12270]  ? rw_verify_area+0xce/0x6d0
[  507.585674][T12270]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  507.585693][T12270]  vfs_read+0x1e4/0xb30
[  507.585716][T12270]  ? __pfx_vfs_read+0x10/0x10
[  507.585738][T12270]  ? __seccomp_filter+0x89d/0x1140
[  507.585769][T12270]  ? __pfx___seccomp_filter+0x10/0x10
[  507.585801][T12270]  ksys_read+0x12a/0x250
[  507.585820][T12270]  ? __pfx_ksys_read+0x10/0x10
[  507.585847][T12270]  do_syscall_64+0x10b/0xf80
[  507.585868][T12270]  ? clear_bhb_loop+0x40/0x90
[  507.585890][T12270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.585909][T12270] RIP: 0033:0x7fc5f6f5d60e
[  507.585932][T12270] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  507.585949][T12270] RSP: 002b:00007fc5f7f2ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  507.585967][T12270] RAX: ffffffffffffffda RBX: 00007fc5f7f306c0 RCX: 00007fc5f6f5d60e
[  507.585978][T12270] RDX: 000000000000000f RSI: 00007fc5f7f300a0 RDI: 0000000000000006
[  507.585989][T12270] RBP: 00007fc5f7f30090 R08: 0000000000000000 R09: 0000000000000000
[  507.586000][T12270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  507.586011][T12270] R13: 00007fc5f7216038 R14: 00007fc5f7215fa0 R15: 00007ffdd1223658
[  507.586036][T12270]  </TASK>
[  507.914934][ T4929] Bluetooth: hci0: command 0x0c1a tx timeout
[  507.991643][   T29] audit: type=1804 audit(2000000346.600:1040): pid=12267 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1792" name="/newroot/77/file1" dev="tmpfs" ino=423 res=1 errno=0
[  508.464840][ T4929] Bluetooth: hci4: command 0x0c1a tx timeout
[  509.018208][T12286] FAULT_INJECTION: forcing a failure.
[  509.018208][T12286] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  509.036403][T12286] CPU: 1 UID: 0 PID: 12286 Comm: syz.2.1799 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  509.036430][T12286] Tainted: [L]=SOFTLOCKUP
[  509.036437][T12286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  509.036447][T12286] Call Trace:
[  509.036454][T12286]  <TASK>
[  509.036461][T12286]  dump_stack_lvl+0x100/0x190
[  509.036488][T12286]  should_fail_ex.cold+0x5/0xa
[  509.036514][T12286]  _copy_from_user+0x2e/0xd0
[  509.036540][T12286]  kstrtouint_from_user+0xd6/0x1d0
[  509.036560][T12286]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  509.036579][T12286]  ? __lock_acquire+0x4a5/0x2630
[  509.036606][T12286]  ? lock_acquire+0x1b1/0x370
[  509.036634][T12286]  proc_fail_nth_write+0x83/0x220
[  509.036655][T12286]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  509.036682][T12286]  vfs_write+0x2aa/0x1070
[  509.036703][T12286]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  509.036724][T12286]  ? __pfx_vfs_write+0x10/0x10
[  509.036742][T12286]  ? __fget_files+0x215/0x3d0
[  509.036770][T12286]  ? __fget_files+0x21f/0x3d0
[  509.036800][T12286]  ksys_write+0x12a/0x250
[  509.036819][T12286]  ? __pfx_ksys_write+0x10/0x10
[  509.036841][T12286]  ? rcu_is_watching+0x12/0xc0
[  509.036871][T12286]  do_syscall_64+0x10b/0xf80
[  509.036899][T12286]  ? clear_bhb_loop+0x40/0x90
[  509.036921][T12286]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.036939][T12286] RIP: 0033:0x7fc5f6f5d60e
[  509.036954][T12286] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  509.036971][T12286] RSP: 002b:00007fc5f7f2ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  509.036988][T12286] RAX: ffffffffffffffda RBX: 00007fc5f7f306c0 RCX: 00007fc5f6f5d60e
[  509.037000][T12286] RDX: 0000000000000001 RSI: 00007fc5f7f300a0 RDI: 0000000000000004
[  509.037009][T12286] RBP: 00007fc5f7f30090 R08: 0000000000000000 R09: 0000000000000000
[  509.037020][T12286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  509.037029][T12286] R13: 00007fc5f7216038 R14: 00007fc5f7215fa0 R15: 00007ffdd1223658
[  509.037054][T12286]  </TASK>
[  509.402019][T12287] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  509.418158][   T29] audit: type=1400 audit(2000000348.040:1041): avc:  denied  { mount } for  pid=12294 comm="syz.3.1801" name="/" dev="hugetlbfs" ino=40985 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  509.565090][T12303] overlayfs: failed to clone lowerpath
[  509.689933][   T29] audit: type=1400 audit(2000000348.310:1042): avc:  denied  { read } for  pid=12306 comm="syz.5.1807" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  509.929919][T12323] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1811'.
[  510.473988][T12334] overlayfs: failed to resolve '/ÿÿ': -2
[  510.959669][   T29] audit: type=1400 audit(2000000349.580:1043): avc:  denied  { unmount } for  pid=10582 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  512.557583][T12344] RDS: rds_bind could not find a transport for ::f000:0:0:0:1, load rds_tcp or rds_rdma?
[  513.190689][T12355] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1822'.
[  513.440472][T12362] wg1: entered promiscuous mode
[  513.560593][T12362] wg1: entered allmulticast mode
[  513.585714][T12365] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1824'.
[  513.875521][T12372] futex_wake_op: syz.2.1826 tries to shift op by 144; fix this program
[  514.202054][T12379] futex_wake_op: syz.2.1827 tries to shift op by 144; fix this program
[  514.894879][ T5733] usb 4-1: new high-speed USB device number 52 using dummy_hcd
[  514.921082][T12391] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1831'.
[  515.182281][   T29] audit: type=1804 audit(2000000353.800:1044): pid=12387 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.1830" name="/newroot/368/file1" dev="tmpfs" ino=1985 res=1 errno=0
[  515.184873][ T5733] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  515.270990][ T5733] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.291786][ T5733] usb 4-1: Product: syz
[  515.301196][ T5733] usb 4-1: Manufacturer: syz
[  515.309815][ T5733] usb 4-1: SerialNumber: syz
[  515.320468][ T5733] usb 4-1: config 0 descriptor??
[  515.854901][   T46] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  515.905832][T12382] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  515.916546][T12382] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  515.935286][ T5733] usb 4-1: Firmware version (0.0) predates our first public release.
[  515.946025][ T5733] usb 4-1: Please update to version 0.2 or newer
[  515.957807][ T5733] usb 4-1: Firmware: build €‡³·¢œ*¾
[  516.015037][   T46] usb 5-1: Using ep0 maxpacket: 8
[  516.023271][   T46] usb 5-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  516.032800][   T46] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=239
[  516.041502][   T46] usb 5-1: Product: syz
[  516.045958][   T46] usb 5-1: Manufacturer: syz
[  516.050591][   T46] usb 5-1: SerialNumber: syz
[  516.066885][   T46] usb 5-1: config 0 descriptor??
[  516.079634][   T46] gspca_main: sq905-2.14.0 probing 2770:9120
[  516.180686][ T5733] usb 4-1: USB disconnect, device number 52
[  516.336576][   T46] gspca_sq905: sq905_command: usb_control_msg failed (-71)
[  516.343926][   T46] sq905 5-1:0.0: probe with driver sq905 failed with error -71
[  516.353520][   T46] usb 5-1: USB disconnect, device number 42
[  516.371800][ T5711] kernel write not supported for file /vbi9 (pid: 5711 comm: kworker/0:4)
[  516.605146][T12420] block nbd0: server does not support multiple connections per device.
[  516.631701][T12420] block nbd0: shutting down sockets
[  518.060148][T12434] FAULT_INJECTION: forcing a failure.
[  518.060148][T12434] name failslab, interval 1, probability 0, space 0, times 0
[  518.088050][T12436] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1845'.
[  518.099195][T12434] CPU: 1 UID: 0 PID: 12434 Comm: syz.0.1843 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  518.099222][T12434] Tainted: [L]=SOFTLOCKUP
[  518.099229][T12434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  518.099240][T12434] Call Trace:
[  518.099246][T12434]  <TASK>
[  518.099253][T12434]  dump_stack_lvl+0x100/0x190
[  518.099279][T12434]  should_fail_ex.cold+0x5/0xa
[  518.099305][T12434]  should_failslab+0xc2/0x120
[  518.099325][T12434]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  518.099351][T12434]  ? skb_clone+0x190/0x400
[  518.099383][T12434]  skb_clone+0x190/0x400
[  518.099411][T12434]  nfnetlink_rcv_batch+0x1c8/0x2880
[  518.099448][T12434]  ? __lock_acquire+0x4a5/0x2630
[  518.099472][T12434]  ? stack_trace_save+0x8e/0xc0
[  518.099492][T12434]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  518.099536][T12434]  ? avc_has_perm_noaudit+0x145/0x3b0
[  518.099567][T12434]  ? __asan_memset+0x23/0x50
[  518.099592][T12434]  ? __nla_validate_parse+0x1e7/0x28b0
[  518.099619][T12434]  ? __lock_acquire+0x4a5/0x2630
[  518.099641][T12434]  ? __pfx___nla_validate_parse+0x10/0x10
[  518.099663][T12434]  ? rcu_is_watching+0x12/0xc0
[  518.099690][T12434]  ? cap_capable+0x10b/0x440
[  518.099714][T12434]  ? __nla_parse+0x40/0x60
[  518.099738][T12434]  nfnetlink_rcv+0x3bd/0x440
[  518.099766][T12434]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  518.099800][T12434]  netlink_unicast+0x585/0x850
[  518.099826][T12434]  ? __pfx_netlink_unicast+0x10/0x10
[  518.099854][T12434]  netlink_sendmsg+0x8b0/0xda0
[  518.099880][T12434]  ? __pfx_netlink_sendmsg+0x10/0x10
[  518.099900][T12434]  ? __might_fault+0x90/0x140
[  518.099935][T12434]  ____sys_sendmsg+0x9e1/0xb70
[  518.099954][T12434]  ? __pfx_netlink_sendmsg+0x10/0x10
[  518.099976][T12434]  ? __pfx_____sys_sendmsg+0x10/0x10
[  518.100011][T12434]  ___sys_sendmsg+0x190/0x1e0
[  518.100035][T12434]  ? __pfx____sys_sendmsg+0x10/0x10
[  518.100093][T12434]  __sys_sendmsg+0x170/0x220
[  518.100122][T12434]  ? __pfx___sys_sendmsg+0x10/0x10
[  518.100159][T12434]  ? rcu_is_watching+0x12/0xc0
[  518.100187][T12434]  do_syscall_64+0x10b/0xf80
[  518.100209][T12434]  ? clear_bhb_loop+0x40/0x90
[  518.100231][T12434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.100249][T12434] RIP: 0033:0x7f645a99cdd9
[  518.100263][T12434] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  518.100281][T12434] RSP: 002b:00007f645b845028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  518.100298][T12434] RAX: ffffffffffffffda RBX: 00007f645ac15fa0 RCX: 00007f645a99cdd9
[  518.100309][T12434] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  518.100319][T12434] RBP: 00007f645b845090 R08: 0000000000000000 R09: 0000000000000000
[  518.100330][T12434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  518.100339][T12434] R13: 00007f645ac16038 R14: 00007f645ac15fa0 R15: 00007ffc8517edf8
[  518.100362][T12434]  </TASK>
[  518.503180][T12440] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1847'.
[  518.659389][   T29] audit: type=1400 audit(2000000357.280:1045): avc:  denied  { setattr } for  pid=12448 comm="syz.0.1850" name="" dev="pipefs" ino=5416 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  518.695626][T12450] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1850'.
[  518.889745][T12457] FAULT_INJECTION: forcing a failure.
[  518.889745][T12457] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  519.101816][ T5733] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[  519.156734][T12457] CPU: 1 UID: 0 PID: 12457 Comm: syz.3.1853 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  519.156762][T12457] Tainted: [L]=SOFTLOCKUP
[  519.156769][T12457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  519.156780][T12457] Call Trace:
[  519.156786][T12457]  <TASK>
[  519.156794][T12457]  dump_stack_lvl+0x100/0x190
[  519.156826][T12457]  should_fail_ex.cold+0x5/0xa
[  519.156852][T12457]  _copy_from_user+0x2e/0xd0
[  519.156880][T12457]  do_ipt_set_ctl+0x86b/0xb90
[  519.156911][T12457]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  519.156936][T12457]  ? sockopt_release_sock+0x57/0x70
[  519.156962][T12457]  ? __local_bh_enable_ip+0x9e/0x120
[  519.156990][T12457]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  519.157026][T12457]  ? nf_sockopt_find.isra.0+0x222/0x290
[  519.157054][T12457]  nf_setsockopt+0x8d/0xf0
[  519.157081][T12457]  ip_setsockopt+0xcb/0xf0
[  519.157109][T12457]  udp_setsockopt+0x64/0xb0
[  519.157130][T12457]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  519.157152][T12457]  do_sock_setsockopt+0xf3/0x1d0
[  519.157175][T12457]  __sys_setsockopt+0x195/0x220
[  519.157206][T12457]  __x64_sys_setsockopt+0xbd/0x160
[  519.157231][T12457]  ? do_syscall_64+0x90/0xf80
[  519.157252][T12457]  ? lockdep_hardirqs_on+0x78/0x100
[  519.157272][T12457]  do_syscall_64+0x10b/0xf80
[  519.157291][T12457]  ? clear_bhb_loop+0x40/0x90
[  519.157313][T12457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.157331][T12457] RIP: 0033:0x7f98ced9cdd9
[  519.157346][T12457] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  519.157362][T12457] RSP: 002b:00007f98cfc56028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  519.157378][T12457] RAX: ffffffffffffffda RBX: 00007f98cf015fa0 RCX: 00007f98ced9cdd9
[  519.157389][T12457] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  519.157400][T12457] RBP: 00007f98cfc56090 R08: 0000000000000488 R09: 0000000000000000
[  519.157411][T12457] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  519.157422][T12457] R13: 00007f98cf016038 R14: 00007f98cf015fa0 R15: 00007ffd6057b698
[  519.157447][T12457]  </TASK>
[  519.454859][ T5733] usb 3-1: Using ep0 maxpacket: 32
[  519.466261][ T5733] usb 3-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  519.476555][ T5733] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  519.505879][   T29] audit: type=1400 audit(2000000358.090:1046): avc:  denied  { map } for  pid=12459 comm="syz.4.1855" path="socket:[40427]" dev="sockfs" ino=40427 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  519.572771][T12465] FAULT_INJECTION: forcing a failure.
[  519.572771][T12465] name failslab, interval 1, probability 0, space 0, times 0
[  519.588072][ T5733] usb 3-1: config 0 descriptor??
[  519.611003][ T5733] as10x_usb: device has been detected
[  519.652639][ T5733] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  519.667375][T12465] CPU: 0 UID: 0 PID: 12465 Comm: syz.4.1857 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  519.667401][T12465] Tainted: [L]=SOFTLOCKUP
[  519.667407][T12465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  519.667417][T12465] Call Trace:
[  519.667423][T12465]  <TASK>
[  519.667430][T12465]  dump_stack_lvl+0x100/0x190
[  519.667457][T12465]  should_fail_ex.cold+0x5/0xa
[  519.667482][T12465]  ? lsm_blob_alloc+0x68/0x90
[  519.667508][T12465]  should_failslab+0xc2/0x120
[  519.667528][T12465]  __kmalloc_noprof+0xe0/0x850
[  519.667554][T12465]  ? trace_kmalloc+0xe3/0x110
[  519.667577][T12465]  lsm_blob_alloc+0x68/0x90
[  519.667604][T12465]  security_sk_alloc+0x2d/0x290
[  519.667626][T12465]  sk_prot_alloc+0x12a/0x2a0
[  519.667649][T12465]  sk_alloc+0x36/0xe80
[  519.667676][T12465]  bpf_prog_test_run_skb+0x4db/0x3540
[  519.667704][T12465]  ? find_held_lock+0x2b/0x80
[  519.667723][T12465]  ? __fget_files+0x151/0x3d0
[  519.667751][T12465]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  519.667776][T12465]  ? fput+0x79/0x100
[  519.667802][T12465]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  519.667824][T12465]  __sys_bpf+0x1725/0x4b90
[  519.667845][T12465]  ? __pfx___sys_bpf+0x10/0x10
[  519.667859][T12465]  ? proc_fail_nth_write+0x9f/0x220
[  519.667879][T12465]  ? find_held_lock+0x2b/0x80
[  519.667901][T12465]  ? find_held_lock+0x2b/0x80
[  519.667918][T12465]  ? ksys_write+0x190/0x250
[  519.667936][T12465]  ? ksys_write+0x190/0x250
[  519.667956][T12465]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  519.667973][T12465]  ? kernel_write+0x613/0x6c0
[  519.667987][T12465]  ? __fget_files+0x215/0x3d0
[  519.668014][T12465]  ? fput+0x79/0x100
[  519.668032][T12465]  ? ksys_write+0x1ac/0x250
[  519.668046][T12465]  ? __pfx_ksys_write+0x10/0x10
[  519.668069][T12465]  __x64_sys_bpf+0x7b/0xc0
[  519.668082][T12465]  ? lockdep_hardirqs_on+0x78/0x100
[  519.668098][T12465]  do_syscall_64+0x10b/0xf80
[  519.668113][T12465]  ? clear_bhb_loop+0x40/0x90
[  519.668130][T12465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.668143][T12465] RIP: 0033:0x7ff02459cdd9
[  519.668155][T12465] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  519.668169][T12465] RSP: 002b:00007ff0253c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  519.668184][T12465] RAX: ffffffffffffffda RBX: 00007ff024815fa0 RCX: 00007ff02459cdd9
[  519.668193][T12465] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[  519.668201][T12465] RBP: 00007ff0253c6090 R08: 0000000000000000 R09: 0000000000000000
[  519.668209][T12465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  519.668218][T12465] R13: 00007ff024816038 R14: 00007ff024815fa0 R15: 00007ffe8ac7fd28
[  519.668236][T12465]  </TASK>
[  519.676860][   T29] audit: type=1800 audit(2000000358.300:1047): pid=12470 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.5.1858" name="nullb0" dev="tmpfs" ino=2019 res=0 errno=0
[  519.717458][ T5733] usb 3-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  519.899655][T12447] ------------[ cut here ]------------
[  519.983540][T12447] DEBUG_LOCKS_WARN_ON(lock->magic != lock)
[  519.983553][T12447] WARNING: kernel/locking/mutex.c:625 at __mutex_lock+0x94f/0x1b10, CPU#1: syz.2.1849/12447
[  519.999582][T12447] Modules linked in:
[  520.003624][T12447] CPU: 1 UID: 0 PID: 12447 Comm: syz.2.1849 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  520.004523][ T5733] as10x_usb: error during firmware upload part1
[  520.014588][T12447] Tainted: [L]=SOFTLOCKUP
[  520.014598][T12447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  520.014611][T12447] RIP: 0010:__mutex_lock+0x956/0x1b10
[  520.014637][T12447] Code: 0f b6 14 11 38 d0 7c 08 84 d2 0f 85 a8 10 00 00 44 8b 35 3d fc 4b 05 45 85 f6 75 13 48 8d 3d 71 1a 4f 05 48 c7 c6 20 bb af 8b <67> 48 0f b9 3a 90 e9 10 f8 ff ff 4d 8d a7 e0 0a 00 00 4c 89 e7 e8
[  520.014657][T12447] RSP: 0018:ffffc90003707a50 EFLAGS: 00010246
[  520.014674][T12447] RAX: 0000000000000003 RBX: ffff88801f358b30 RCX: 1ffffffff21af99c
[  520.014687][T12447] RDX: 0000000000000000 RSI: ffffffff8bafbb20 RDI: ffffffff90daeb20
[  520.014700][T12447] RBP: ffffc90003707bc0 R08: 0000000000000001 R09: 0000000000000000
[  520.014712][T12447] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  520.014724][T12447] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  520.014736][T12447] FS:  00007fc5f7f306c0(0000) GS:ffff888124476000(0000) knlGS:0000000000000000
[  520.014755][T12447] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  520.014768][T12447] CR2: 0000001b3360eff8 CR3: 000000004fc40000 CR4: 00000000003526f0
[  520.014807][T12447] Call Trace:
[  520.118719][ T5733] Registered device nBox DVB-T Dongle
[  520.121868][T12447]  <TASK>
[  520.121879][T12447]  ? as102_dvb_dmx_start_feed+0x7d/0x2e0
[  520.147005][T12447]  ? __mutex_lock+0x26d/0x1b10
[  520.151752][T12447]  ? dmx_section_feed_start_filtering+0x56/0x660
[  520.158109][T12447]  ? find_held_lock+0x2b/0x80
[  520.162802][T12447]  ? __pfx___mutex_lock+0x10/0x10
[  520.167857][T12447]  ? __pfx___mutex_lock+0x10/0x10
[  520.172880][T12447]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  520.178557][T12447]  ? as102_dvb_dmx_start_feed+0x7d/0x2e0
[  520.184197][T12447]  as102_dvb_dmx_start_feed+0x7d/0x2e0
[  520.189692][T12447]  dmx_section_feed_start_filtering+0x3a8/0x660
[  520.195955][T12447]  dvb_dmxdev_filter_start+0x767/0xdd0
[  520.201411][T12447]  dvb_demux_do_ioctl+0xe64/0x1200
[  520.206548][T12447]  dvb_usercopy+0x167/0x340
[  520.211053][T12447]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[  520.216612][T12447]  ? __pfx_dvb_usercopy+0x10/0x10
[  520.221643][T12447]  ? selinux_file_ioctl+0x13b/0x290
[  520.226875][T12447]  ? selinux_file_ioctl+0xb6/0x290
[  520.232259][T12447]  dvb_demux_ioctl+0x29/0x40
[  520.236879][T12447]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[  520.242167][T12447]  __x64_sys_ioctl+0x18e/0x210
[  520.246952][T12447]  do_syscall_64+0x10b/0xf80
[  520.251534][T12447]  ? clear_bhb_loop+0x40/0x90
[  520.256218][T12447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.262102][T12447] RIP: 0033:0x7fc5f6f9cdd9
[  520.266513][T12447] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  520.286139][T12447] RSP: 002b:00007fc5f7f30028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  520.294542][T12447] RAX: ffffffffffffffda RBX: 00007fc5f7215fa0 RCX: 00007fc5f6f9cdd9
[  520.302518][T12447] RDX: 0000200000000200 RSI: 00000000403c6f2b RDI: 0000000000000007
[  520.310521][T12447] RBP: 00007fc5f7032d69 R08: 0000000000000000 R09: 0000000000000000
[  520.318523][T12447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  520.326505][T12447] R13: 00007fc5f7216038 R14: 00007fc5f7215fa0 R15: 00007ffdd1223658
[  520.334470][T12447]  </TASK>
[  520.337494][T12447] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  520.344769][T12447] CPU: 1 UID: 0 PID: 12447 Comm: syz.2.1849 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  520.355700][T12447] Tainted: [L]=SOFTLOCKUP
[  520.359997][T12447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  520.370026][T12447] Call Trace:
[  520.373281][T12447]  <TASK>
[  520.376200][T12447]  dump_stack_lvl+0x100/0x190
[  520.380852][T12447]  vpanic+0x552/0x970
[  520.384810][T12447]  ? __pfx_vpanic+0x10/0x10
[  520.389290][T12447]  ? lock_release+0x245/0x310
[  520.393946][T12447]  panic+0xd1/0xe0
[  520.397648][T12447]  ? __pfx_panic+0x10/0x10
[  520.402065][T12447]  check_panic_on_warn.cold+0x19/0x34
[  520.407429][T12447]  ? __mutex_lock+0x94f/0x1b10
[  520.412178][T12447]  __warn.cold+0x191/0x328
[  520.416577][T12447]  __report_bug+0x296/0x3d0
[  520.421063][T12447]  ? __mutex_lock+0x94f/0x1b10
[  520.425809][T12447]  ? __pfx___report_bug+0x10/0x10
[  520.430815][T12447]  ? register_lock_class+0x40/0x560
[  520.436015][T12447]  report_bug_entry+0xe1/0x290
[  520.440761][T12447]  ? __mutex_lock+0x956/0x1b10
[  520.445509][T12447]  handle_bug+0x1cd/0x2a0
[  520.449823][T12447]  exc_invalid_op+0x17/0x50
[  520.454312][T12447]  asm_exc_invalid_op+0x1a/0x20
[  520.459144][T12447] RIP: 0010:__mutex_lock+0x956/0x1b10
[  520.464498][T12447] Code: 0f b6 14 11 38 d0 7c 08 84 d2 0f 85 a8 10 00 00 44 8b 35 3d fc 4b 05 45 85 f6 75 13 48 8d 3d 71 1a 4f 05 48 c7 c6 20 bb af 8b <67> 48 0f b9 3a 90 e9 10 f8 ff ff 4d 8d a7 e0 0a 00 00 4c 89 e7 e8
[  520.484086][T12447] RSP: 0018:ffffc90003707a50 EFLAGS: 00010246
[  520.490132][T12447] RAX: 0000000000000003 RBX: ffff88801f358b30 RCX: 1ffffffff21af99c
[  520.498083][T12447] RDX: 0000000000000000 RSI: ffffffff8bafbb20 RDI: ffffffff90daeb20
[  520.506033][T12447] RBP: ffffc90003707bc0 R08: 0000000000000001 R09: 0000000000000000
[  520.513983][T12447] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  520.521932][T12447] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  520.529889][T12447]  ? as102_dvb_dmx_start_feed+0x7d/0x2e0
[  520.535514][T12447]  ? __mutex_lock+0x26d/0x1b10
[  520.540262][T12447]  ? dmx_section_feed_start_filtering+0x56/0x660
[  520.546569][T12447]  ? find_held_lock+0x2b/0x80
[  520.551227][T12447]  ? __pfx___mutex_lock+0x10/0x10
[  520.556234][T12447]  ? __pfx___mutex_lock+0x10/0x10
[  520.561241][T12447]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  520.566860][T12447]  ? as102_dvb_dmx_start_feed+0x7d/0x2e0
[  520.572479][T12447]  as102_dvb_dmx_start_feed+0x7d/0x2e0
[  520.577928][T12447]  dmx_section_feed_start_filtering+0x3a8/0x660
[  520.584151][T12447]  dvb_dmxdev_filter_start+0x767/0xdd0
[  520.589589][T12447]  dvb_demux_do_ioctl+0xe64/0x1200
[  520.594681][T12447]  dvb_usercopy+0x167/0x340
[  520.599169][T12447]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[  520.604696][T12447]  ? __pfx_dvb_usercopy+0x10/0x10
[  520.609712][T12447]  ? selinux_file_ioctl+0x13b/0x290
[  520.614896][T12447]  ? selinux_file_ioctl+0xb6/0x290
[  520.619989][T12447]  dvb_demux_ioctl+0x29/0x40
[  520.624566][T12447]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[  520.629836][T12447]  __x64_sys_ioctl+0x18e/0x210
[  520.634581][T12447]  do_syscall_64+0x10b/0xf80
[  520.639153][T12447]  ? clear_bhb_loop+0x40/0x90
[  520.643811][T12447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.649691][T12447] RIP: 0033:0x7fc5f6f9cdd9
[  520.654093][T12447] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  520.673683][T12447] RSP: 002b:00007fc5f7f30028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  520.682077][T12447] RAX: ffffffffffffffda RBX: 00007fc5f7215fa0 RCX: 00007fc5f6f9cdd9
[  520.690029][T12447] RDX: 0000200000000200 RSI: 00000000403c6f2b RDI: 0000000000000007
[  520.697980][T12447] RBP: 00007fc5f7032d69 R08: 0000000000000000 R09: 0000000000000000
[  520.705933][T12447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  520.713881][T12447] R13: 00007fc5f7216038 R14: 00007fc5f7215fa0 R15: 00007ffdd1223658
[  520.721838][T12447]  </TASK>
[  520.725087][T12447] Kernel Offset: disabled
[  520.729383][T12447] Rebooting in 86400 seconds..