last executing test programs:

5.690277s ago: executing program 0 (id=3177):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, &(0x7f0000000440)=@svm={0x0, 0x1, 0x1080, {0x100000}, {"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"}})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 4)

5.300549038s ago: executing program 0 (id=3179):
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000040)={0x2, 0x3, 0x3}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x9)
landlock_restrict_self(r0, 0xa)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x800000000088}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
r4 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
fchdir(r5)
r6 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
sendfile(r6, r6, 0x0, 0x1000000201005)
landlock_restrict_self(r0, 0x6)
landlock_restrict_self(r1, 0x5)
landlock_restrict_self(r1, 0x0)
r7 = landlock_create_ruleset(&(0x7f0000000140)={0x4000, 0x2, 0x2}, 0x18, 0x1)
landlock_restrict_self(r7, 0x2)
landlock_restrict_self(r0, 0xa)
landlock_restrict_self(r7, 0x9)
landlock_create_ruleset(&(0x7f00000001c0)={0x2fbd, 0x1}, 0x18, 0x0)

5.152775877s ago: executing program 0 (id=3180):
sendmsg$ETHTOOL_MSG_EEE_GET(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001380)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x40448a0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000340)}, {0x0}, {&(0x7f00000005c0)}], 0x3}}], 0x1, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x340}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000500)='q', 0x1}, {&(0x7f0000000540)}, {&(0x7f0000000600)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19", 0x85}, {0x0}, {0x0}], 0x5}}], 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0xeeef0000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x1, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0x0, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x6, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x28, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000740)={"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"})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 4)

4.702266214s ago: executing program 0 (id=3182):
ioctl$FE_GET_INFO(0xffffffffffffffff, 0x80a86f3d, &(0x7f0000000300))

4.59238985s ago: executing program 0 (id=3183):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha256\x00'}, 0x58)
r1 = accept(r0, 0x0, 0x0)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f00000001c0)={{0x2, 0x4e24, @private=0xa010100}, {0x306, @broadcast}, 0x12, {0x2, 0x4e20, @rand_addr=0x64010101}, 'vlan0\x00'})
sendmsg$TCPDIAG_GETSOCK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[], 0x188}, 0x1, 0x0, 0x0, 0x8080}, 0x20008010)
r2 = accept$unix(r1, 0x0, 0x0)
sendmsg(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x120}, 0x20040050)
syz_usb_connect$uac2(0x5, 0x7b, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010003000000209904541040000102030109026900030104007f080b0101010a20020904000000010120000924010700060900b209040100000102200009040101010102200009050109000000090402000001c5c8911e04020101010220000905820900020e0452082501040f43ce03"], &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x2c09}}, {0x3a, &(0x7f0000000180)=@string={0x3a, 0x3, "1b18529572ddac06f54a8b5ea2157b8cc350268d376b1b0ca09b6582fd64edd479dda891bd5bd7edfedf88876ee5a19a8c37e034a28ff977"}}, {0x4, &(0x7f0000000040)=@lang_id={0x4, 0x3, 0x81d}}]})

4.567657454s ago: executing program 3 (id=3184):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000100)={0x1, 0x0, [{0x4000009e, 0x0, 0xffffffffffffffff}]}) (fail_nth: 4)

4.43829567s ago: executing program 3 (id=3185):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000bfe000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000000)={0x0, &(0x7f0000000cc0)=[@nested_load_code={0x12e, 0x60, {0x0, "44db500065f3416d2e650f01d166b863000f00d8660f08b9b0060000b800000100ba000000000f30b906090000b800500000ba000000000f30cd00c4c2ed99b964fb000047de7a00"}}], 0x60})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000300)={[0x1000, 0x9, 0x400, 0x0, 0x7, 0x6, 0x3, 0x100000001, 0x6, 0x200000007, 0x0, 0xf7eb, 0x100000001, 0xffffffffffffffed, 0x12000000000000, 0x4a0b54e9], 0x50000, 0x1004})
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 4)

4.010689766s ago: executing program 2 (id=3186):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000240)=ANY=[@ANYBLOB="1201100154e108101e041840b4ed010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
unshare(0x2040400)
r1 = semget$private(0x0, 0x5, 0x0)
semop(r1, &(0x7f0000000000)=[{0x3, 0xfff7, 0x1000}], 0x1)
semop(r1, &(0x7f00000000c0)=[{0x3, 0xa78c, 0x1000}], 0x1)
semctl$IPC_RMID(r1, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1, 0x0, 0x2})
ioctl$vim2m_VIDIOC_QBUF(r2, 0xc058560f, &(0x7f0000000240)=@mmap={0x1, 0x2, 0x4, 0x70000, 0x9, {}, {0x1, 0x0, 0x4, 0xc0, 0x0, 0xf0, "18a6fc23"}, 0x1, 0x1, {}, 0x1, 0x0, <r3=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_STREAMOFF(r2, 0x40045612, &(0x7f0000000080)=0x2)
r4 = socket(0x22, 0x803, 0x0)
bind$netlink(r4, &(0x7f00000002c0)={0x10, 0x0, 0x25dfdbfb, 0x40}, 0xc)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000000, 0x12, r3, 0xd756000)
close_range(r2, 0xffffffffffffffff, 0x0)
r5 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
getsockopt$llc_int(r5, 0x10c, 0x2, &(0x7f00000000c0), &(0x7f0000000040)=0x4)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000001c0)={0x44, &(0x7f0000000180)={0x0, 0xf, 0xe3fe032e, "0f0e8b88f7f789dd37a5d2e3b055980034529cbc3981caa62a89"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000001480)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000001540)=[@assoc={0x18, 0x117, 0x4, 0x64d3c56c}, @iv={0xc0, 0x117, 0x2, 0xa5, "84baf5aa529a4e20122e68b8a54d084eb0ecb6f48aa04f929c6b2628961518a0397a18ffea227147b1c65807dac99f5bc0518bcdf8ace2aabe97d814dc53acc9c51b6dfb329ab9740a9e867c0dd7f2cb3cfb8f724527b68349a2c955f0a8d83734761f233a57425a1af3eb7417f269e3a2cac686a9ee081af7d645d52e5e4250ab79d2ee620daaa2dd4cfe11519ef15400fcfe302e81c977975adb8b077dc98a83d5b0bafd"}, @iv={0x58, 0x117, 0x2, 0x3e, "d5509745b590a86e39642847c0c42d6ff3a8f0c601d92fb54e852f1670dfd85d694afe50f0e449419461a3ec6de5fe5c80f61007f5c67cfd0612c3f8e827"}, @op={0x18, 0x117, 0x3, 0x1}], 0x148, 0x40c0}], 0x1, 0x48804)
r6 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0)
syz_usb_control_io$cdc_ecm(r6, &(0x7f0000000140)={0x14, 0x0, &(0x7f0000000100)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r6, 0x82, 0xc38, &(0x7f0000000d80)=ANY=[@ANYBLOB="ddf963efbeb08a", @ANYBLOB="9ebe7c71a123a6fb03cec931f700677e0b126f1f5986ccafe71c1b550f2ad260ec946ea93eebe89a41706be3379af67835b11def814f7ac51b52408b99ce20f30f9aee23926ed84e39a3ff1bf195c5226d69b99d06e54087339373adf824b4fb718af0fe0471186a576891d89c7643972071b738f0161048d2a011c751ca01a8c09e4efa145d0b130efac60ffba07796e33bc7a6027e8dc733e90027a769f2f0ec0093560ff3169887ed13d836582bfcb68c03cd1a47c4dfdcbe830da0e8e1948e245970d95a7154134106b80957e0d03cb91080f1e90b3b91c644fe5564e6946d9645864388374fc644c20c7749064cd80a86b1dc32821c6d4ac4c408993ebe2c3668871ff0fae09077346d84ea4497e56251c233e5ac203b558ca87f0064a2e647b4e5c71402763ba81b7c82eb00b9b36d9a65a9ef09ebe37d453fa989d5fb29eaf4686e5ad112762b03e5ab42dbbd03d376860e2d2925576eab67eaa5b5fa3ee2c431430480e24ca63a8964e1f91d9ab6da5128b8432f4eff3e0f8ec95fc2d04a48f6f10759c61c5566e6d613f685529eb5a2b87e4da439b59800612f38119253c3863222e0c9dcbaf12376745c877471d7a2bc243f516138433793c0094093e13ca3b834137b00b4fb8561474c35bd63c92c50bffa8ebf164c41fd5718b70c7da8dd79a830736434faa517607e97a3812956c3766e46d309a24912822cd77059f900159f7e58c0a72ec60932c84e1ad75e2dadbd217dd60d2937a561e4a887a312dc77a65fd7962484ae6aefaed551b85ce65770fc0b0a5a4f89941cbb8484c38af83c2fea123cd48af455b99fc0c14b186b16e61c73bbacf294e53ffd7a7b804417aab4282cf420a0a3685224c00dae021eb810b467ff68fb49b43742e5b1095f183c1053849fbae276a984419474ed39ca456ccd74185de100b4f607051f40c1471090cd864738d08a952752a67b4bf0ca6c73a9135c5068ea472b70ce126470db14d48f96b9f211dfaed75829b14a1a2cbac87de61c127b4c5063ef0dd40c5ede8a5bd20988862648e274edfcf3d424aa5c0770635d655ca10f09506a9837d73849d90ef533e6e2d9a13d7ee26474261448da7e5a1743b5ceaeebc65672734738881e1134bfddc6328f86312061972404c682e1f09edb22d91351831b6b963fa06e8fbfc250cc66c7d29b69938f0a75662abf4b585d0199928d9377ccf629d3385b10c6adebef1a767f2ad7e2ddcd4278fd56d5638180c920a3ccf50b08c193c932bb86f0101be47e35b5f1f5534b6f080845fc3602e5fa8bff7f806a7e6855a724167e43a01c428d428fb40bd996c6cf743ab524f5f3a0bb2f4b219188407d34ceec56f6ba97dacdcc41480b85edb698945704de95f8019fa80e992974fa400c34138e993c83f8516046e942ab89ae165dd7000cbe218688781a867f4fb75a57cd3dd04d1e4e88d3166c91c5db6fd9935d882a6f2d771e7699aa7e12c4a018df495b567e0f12c91615fb2184ba3ca098f783acd14b0c1ec489a73e3e9e0a759eadf7f646259981393a91e8279d95ed0216ddd593ccf215794aff73d9ed880b8a05a8170bff8bc7a2c556e192a3555780f57d8e9dbb1427c0d763d25e86f0a9ba1f5c2e6c87052f330f52a146c365a8eb3a2ec6914a60a5799af13975b9de44ab37f358390b8dda4f459f3f42b697d36b8e418a39f092b127cc400a2f8b1eae70849c66a9459596080e540b2f3f8a5e36448254555eb6e08e040e27fa14e506f3a9e7dca498786eab24eaa20d16adc485780288a7f71d84ac48674c08826dd1bfa72a5e48448fab1cafcac101cb4081c6ca76502d9d8639d0fe863aa3294c4bee68ed1fe4623e56cc4df2d42f5cdecdd2a7c64272908b5f197a0408f590191b2af3ca8c34577254003977a33112c3b4d1a51d5b53ab823b90438afc815e75ce36dc25d20979afcbb7b7c9e1d74e149c536584032f4fb459758e8cad5406eb8ddf9e07b24d7a8247b646098434f5abf5703c004dcd47aade4385936d0ddc0305177afaf1165db02778140385c8802e456e6a834bb53aa42067e3bc6c366b89cf2f7c55ee75290b093052a323e8fcce96acc75a00e72a0eb53ad5035f14f1d35491f1cb72647142341644f5047b4584ee0e39a51dde8992046e2ba55521766c55e99bf64628c339aac63cfc72269e493d46f95d4f533be54adb67d05b4941497450b3206d0bc4785305124792c091dfe4df456ccbb5dc64deffdae71b482a9deb02e536607ef689dcbf606346b47f3f2f7801f4d64b55defacc1bc0f7f3e86d1a810e766a79a2345551fcd450d8f038092bbf079400809725656235dba67766f3e5afbb03134119cb6e70af106791a68385634ad9fd599947d15d8448223e6b49a26733477366c8e318d46eba0aa2c9061cf44f8dbe08732a727788dd72518bb84b17828f4a400246e5bdc44f108bc309c5ac0af2aa8950cbe1942401aad8a688b508f6c688ec5a42c58c7749227a99be8ec0b85cbdc416bbcf077e6bbd59892f260291df286c64e2490e6be70bb849d8e42a253036bb74617607462bfd444dbac2e25f0794e9d2ee592f73009bd4a07fb9d20776cbc1a50758143941a6a597d28dc62110632d4b0f02ea7df532f6ee2263046ddd579c7a352527ad6cc92150ffd7a2603c1bdb01fba997ddc2c2346934e5f85fa30800db0454d837787a243c267118dfebf63fd76473573764388545389bacf12e949ea132467379a5a180acd17750ef7f306fad9a804801b55be6f33defc0c286f2f5a15926a3d1ef187f7000e241c759066dd42ae13b595f2b87edde1dcf1bb2deff9978d5716a1955fb19a3a8cc5e576c2cd10611eb1859f755cd16c5b656c30e32cb9ec858f98426267fb13988b2ceba6dec8ed0d38c46ebeb9ef89aa94d4619cc8ccbc5067aa1539588785439199b5942c4a5b41a2a2e28ccdaf9821ce34732a39f0cc35c8e88f16e28327184456be80ef6bb4b4e18b4872a93a50b33e4009af632b93ba73f9e6b9e4cd7be5a4a96a191464171219ad30b135e96f934f1b4780125dc637af326040ca8b9e706656b688054e1169b6af70959081b6cdee494c85a1dd73f5b737f8ed570471dd10c70241d7b6193a9ba2d24e0b025d36b273bd40f697ab6413ff59dc800754c652a3c29264af355fbf3a9df51889cc0ead6c8d99e93398d1616ffd7927ad38ed9d32ef4f7ca08e98482d2abfc7f9f06"])

3.909091142s ago: executing program 3 (id=3187):
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getpeername$packet(r0, 0x0, &(0x7f0000000040))
syz_usb_connect(0x5, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000eafa7240936901b02926f400100109021b000124a800800904000001030000000905", @ANYRES32], 0x0)

2.592679071s ago: executing program 1 (id=3189):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2003, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000240))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000140)="0f30c402fd3eecae660f38800a66b80c010f00d0662e3646d87213460f09b98c0900000f32b8010000000f01c12e644c0fc72f", 0x33}], 0x1, 0x68, 0x0, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000004c0)={[0xa, 0x5, 0x7000000, 0x400, 0x4, 0xfffffbfffffffff9, 0xb3, 0x4, 0x80000000000b1d, 0x5, 0x8, 0xfffffffffffffffa, 0x2, 0xb, 0x9, 0x3], 0xfec00000, 0x3877c4})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000580)={0x2020, 0x0, <r4=>0x0}, 0x2020)
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x400)
r6 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r7=>0x0}, &(0x7f0000000240)=0xc)
setresgid(0xffffffffffffffff, r7, r7)
write$FUSE_STATX(r3, &(0x7f00000002c0)={0x130, 0x0, r4, {0x8000000000000000, 0x2, 0x0, '\x00', {0x8000, 0x0, 0x30d685af, 0x100, r5, r7, 0x8000, '\x00', 0x9, 0x5, 0x8, 0x2, {0x968, 0x8000}, {0x3, 0xa}, {0x36, 0x3e08}, {0x4136, 0x2}, 0x0, 0xc24c, 0x0, 0x32e}}}, 0x130)

2.485002731s ago: executing program 3 (id=3190):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x121380, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f000094b000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, &(0x7f00000002c0)=[@rdmsr={0x66, 0x18, {0x40000105}}], 0x18})
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x40000001, 0x5, 0x2, 0x31237648, 0x6, 0x2, 0x80}]})
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 4)

2.018005173s ago: executing program 1 (id=3191):
ioctl$FE_GET_INFO(0xffffffffffffffff, 0x80a86f3d, &(0x7f0000000300))

1.960303753s ago: executing program 3 (id=3192):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000bfe000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000000)={0x0, &(0x7f0000000cc0)=[@nested_load_code={0x12e, 0x60, {0x0, "44db500065f3416d2e650f01d166b863000f00d8660f08b9b0060000b800000100ba000000000f30b906090000b800500000ba000000000f30cd00c4c2ed99b964fb000047de7a00"}}], 0x60})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000300)={[0x1000, 0x9, 0x400, 0x0, 0x7, 0x6, 0x3, 0x100000001, 0x6, 0x200000007, 0x0, 0xf7eb, 0x100000001, 0xffffffffffffffed, 0x12000000000000, 0x4a0b54e9], 0x50000, 0x1004})
ioctl$KVM_RUN(r3, 0xae80, 0x1000000)

1.864141145s ago: executing program 1 (id=3193):
syz_usb_connect(0x0, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="120110011db61d400a1a04018f750102030109021200010007200c0904b80800a93766a2"], 0x0)
socket$packet(0x11, 0x3, 0x300)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
r0 = getpgrp(0x0)
r1 = syz_pidfd_open(r0, 0x0)
pidfd_send_signal(r1, 0x3b, &(0x7f0000001fc0)={0x19, 0x1, 0xc}, 0x0)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000007880), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x2, &(0x7f0000000000)=@gcm_128={{0x303}, "2d9421fe8a4c9563", "cf6ff9ff337ed301000100c747fbbfc1", '\x00', "4f9e86d67a8426bd"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x303}, "b7a41f5d937e5523", "4705a7b6113b967d7314f7201eb2babf", "1d1cbe23", "ecba06893bcdc493"}, 0x28)
recvfrom(r4, &(0x7f0000002800)=""/4071, 0xfffffffffffffdab, 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r4)
setsockopt$sock_int(r4, 0x1, 0x12, &(0x7f00000000c0)=0x8, 0x4)
r5 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x0, 0x0, 0x0, 0x7995}, 0x10017, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURB(r6, 0x4004550c, 0x0)
ioctl$HIDIOCINITREPORT(r6, 0x4805, 0x0)
sendmsg$DEVLINK_CMD_GET(r3, &(0x7f0000009500)={0x0, 0x0, &(0x7f00000094c0)={&(0x7f0000009380)=ANY=[@ANYBLOB="ef935092", @ANYRES16=r2, @ANYBLOB="010028bd7000ffdbdf25010000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x40080c4}, 0x20008000)

1.833265503s ago: executing program 2 (id=3194):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000050000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a010200000000000000000100ffff0900030073797a320000000028000480080002400000000008000140000000051400030076657468315f746f5f687372000000000900010073797a31000000004c000000050a05000000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d616376746107000000080001400000000514"], 0xe8}}, 0x0)

1.769946881s ago: executing program 3 (id=3195):
r0 = syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r0, 0xc01864b0, &(0x7f0000000b00))
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000003c0)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000000240)={0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="00000c000000eaff01"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000180)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB=' '], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000700)={0x2c, &(0x7f0000000580)=ANY=[@ANYBLOB="20310400000021677e"], 0x0, 0x0, 0x0, 0x0})

1.692307465s ago: executing program 2 (id=3196):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000bfe000/0x400000)=nil)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000080)={<r4=>0x0, 0xffffffff}, &(0x7f00000000c0)=0x8)
r5 = open(&(0x7f00009e1000)='./file0\x00', 0x149040, 0x40)
fcntl$setsig(r5, 0xa, 0x13)
r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x20001, 0x0)
ioctl$SNAPSHOT_CREATE_IMAGE(r6, 0x40043311, &(0x7f0000000180))
fcntl$setlease(r5, 0x400, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = getpid()
fcntl$setownex(r7, 0xf, &(0x7f0000000100)={0x2, r8})
ioctl$sock_FIOGETOWN(r7, 0x8903, &(0x7f00000001c0)=<r9=>0x0)
fcntl$setown(r5, 0x8, r9)
fcntl$setlease(r5, 0x400, 0x2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={<r10=>r4, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e1e, @multicast1}]}, &(0x7f0000000540)=0x10)
setsockopt$inet_sctp6_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000040)={r10, 0x0, 0x80000001, 0xfffffffd}, 0x10)
r11 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000000)={0x0, &(0x7f0000000cc0)=[@nested_load_code={0x12e, 0x60, {0x0, "44db500065f3416d2e650f01d166b863000f00d8660f08b9b0060000b800000100ba000000000f30b906090000b800500000ba000000000f30cd00c4c2ed99b964fb000047de7a00"}}], 0x60})
ioctl$KVM_SET_REGS(r11, 0x4090ae82, &(0x7f0000000300)={[0x1000, 0x9, 0x400, 0x0, 0x7, 0x6, 0x3, 0x100000001, 0x6, 0x200000007, 0x0, 0xf7eb, 0x100000001, 0xffffffffffffffed, 0x12000000000000, 0x10000], 0x50000, 0x24204})
ioctl$KVM_RUN(r11, 0xae80, 0x0)
ioctl$KVM_RUN(r11, 0xae80, 0x0)

1.591367524s ago: executing program 0 (id=3197):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x8010)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_usb_connect(0x5, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000092ecc620ac0500773aeb010203010902240001000020000904c40102fffd018009050202100202000009058202"], 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000000)={0x14, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0003060000000603"]}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000500)={0x44, &(0x7f0000000300)={0x20, 0x14, 0x6, "f99d5133974f"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x300, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x3}, 0x10)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r3, &(0x7f0000000000)={0xa, 0x0, 0x1, @empty, 0x0, 0x3}, 0x20)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e1301"], 0x16)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="04080401c90001f6309753a7221c88c0a0f3d5212fa0290eb49eeebf0474759ef8c8753b6df0e866dda6b3341845f5058d7c5453d90ccf0c854a21d4292f734f8558dec5049e"], 0x7)
syz_open_dev$dvb_frontend(0x0, 0x0, 0x40002)
ioctl$FE_SET_PROPERTY(0xffffffffffffffff, 0x40106f52, 0x0)
sync()
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000880)={0x2c, &(0x7f0000000700)=ANY=[@ANYBLOB="20096300050700000045cf638d18ced9310aca1cd46501004ef78cebd83476f95c24ca5ac6f2a67c83c31d036ffa8abfec5d3fd2723005ae19ebec1a2e8045bcbd371d72be7580579e7de96c92d8765600bc76bffa78ad30bcd9603c479881a7907249"], &(0x7f0000000780)={0x0, 0xa, 0x1, 0x5b}, &(0x7f00000007c0)={0x0, 0x8, 0x1, 0xa}, &(0x7f0000000800)={0x20, 0x1, 0x31, "28c7678562662a5062821f2beb294a7212c94cd749cd6d20c93e66983045d5e7646dc1af82b9b40725dfdcce95eca7aadf"}, 0x0})
syz_emit_vhci(0x0, 0x9)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r4, 0x40045567, 0x2)
ioctl$UI_SET_ABSBIT(r4, 0x40045567, 0x0)
ioctl$UI_SET_ABSBIT(0xffffffffffffffff, 0x40045567, 0x4)
write$uinput_user_dev(r4, &(0x7f0000000080)={'syz1\x00', {0x3ff, 0x3, 0x7, 0x3}, 0x51, [0xd4, 0x6, 0x9, 0x8a4, 0x2, 0x2, 0x7fffffff, 0x80000001, 0x5, 0x1, 0x101, 0x3c6, 0x7, 0x6, 0xf70, 0x3, 0xe7, 0x7, 0x401, 0xbc5e, 0x0, 0x1, 0x8, 0xffff, 0xe, 0xe, 0x10, 0x20000000, 0x15098855, 0x6, 0x2, 0xfffffffb, 0x6, 0xc, 0xfffffff8, 0x4, 0xe79, 0x7, 0x1ff4, 0x1, 0x1, 0x7ffffffd, 0x401, 0x9, 0xbdc7, 0xb, 0x1, 0x9, 0x1, 0x1, 0x6, 0x2, 0x5, 0x9, 0x5, 0x9, 0x0, 0x3a23, 0x1000, 0x57f5, 0x2, 0x6, 0x7ff, 0xb8547353], [0x80000000, 0xffffffff, 0x4, 0x5, 0x7fffffff, 0x1, 0x553, 0x7, 0x2, 0xfffffffc, 0x8, 0xc, 0x36, 0xa, 0x106, 0x4, 0x9, 0x98, 0x8, 0xe56d, 0xa4, 0x4, 0x99d, 0x8, 0x0, 0xd, 0x5, 0x0, 0x6e38, 0x0, 0xa, 0x202, 0x3, 0x0, 0x5, 0x7, 0x4, 0xd, 0x9, 0xfff, 0x4, 0xfffffffd, 0x40, 0x2, 0x8, 0x5, 0x8, 0x0, 0x34f1, 0x1ff, 0x4, 0x1b2c5a17, 0x1, 0x6, 0x8, 0x0, 0xffffffff, 0x1, 0x6, 0x9, 0x1000ac, 0x2, 0x54, 0x6], [0x40006, 0xdb8, 0x9, 0x4, 0x2, 0x6, 0x5, 0x5, 0x3, 0x5, 0xfffffffd, 0xc8d3, 0x33, 0x9a45, 0x0, 0xee40000, 0x1, 0x1, 0x43, 0x100069d, 0x8, 0xffff, 0x0, 0x0, 0xb, 0x2, 0x4, 0x800, 0x7, 0x9, 0x0, 0x0, 0x1, 0x1, 0x7, 0x0, 0x9, 0x8c0, 0x9, 0x2, 0xa, 0xdd31, 0x6, 0x5, 0x81, 0xf7b4, 0xffffff20, 0x55f2, 0xdf46, 0x9, 0x7f, 0x9, 0x8000, 0x40, 0x3, 0x2, 0xa, 0x6, 0x2, 0xffffff00, 0xda15, 0xfffffff8, 0x3, 0x10], [0x2000, 0x892, 0x37, 0x246d, 0x6, 0x101, 0xfffff412, 0xd, 0x7ff, 0x606, 0x4, 0x9, 0x80000001, 0x2, 0x8000000b, 0x2, 0x7, 0x1, 0x80000000, 0x2, 0x7ff, 0x3ff, 0x0, 0x2, 0x6, 0x100, 0x2, 0xec9b, 0x61c8, 0x6, 0x0, 0x101, 0xff, 0x7, 0x9, 0x5, 0x7, 0x101, 0xd, 0x3000000, 0x7, 0x4000006, 0x7, 0x1, 0xa38, 0x1, 0x4, 0x100009, 0x100, 0x3, 0x3c, 0x1000, 0x3, 0x2, 0x15, 0x8000, 0x7, 0x81, 0x5, 0x7, 0xfffffffc, 0x4, 0x6, 0x701a7e2b]}, 0x45c)

1.518368735s ago: executing program 2 (id=3198):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xb0000) (async)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@hyper}) (async)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, 0x0) (async)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000f, 0x810, r1, 0xf8bcf000)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) (async)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000440)={'filter\x00', 0x0, 0x0, 0x0, [0x101, 0xffffffffffffffff, 0x2, 0x1, 0x2]}, &(0x7f0000000340)=0x78)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
r5 = syz_open_dev$loop(&(0x7f0000000000), 0x7048, 0x1)
ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f0000000200)={r5, 0x10000, {0x0, 0x0, 0x0, 0x9, 0x4, 0x0, 0x6, 0x19, 0x15, "ed9b224bff15d4745b5296b481a05a447066d82bad2dc1ef444f07ffa663d12745dedb7b486c4356aa74f46b7ae01c7b62d3a2bfed3b3d0b7242140ad569afa8", "d8ecdc879e10831aa08c48a0ef77ea95780eef4c12b0e91c90c4737124a0cee20ec1e7bbcdd394ec04e1a54566642b54bcd46439b53ea8a459a306f5e57fcd14", "54f99cf6dbdbe297ef4e6b6ac59960f10428ab6c196a49f82d8a8310b45a43a0", [0xffffffffffffffba, 0x9]}}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000000)=@x86={0x5, 0x5, 0x17, 0x0, 0x3, 0x4, 0x2, 0x79, 0xff, 0x5, 0x1, 0x1, 0x0, 0x8, 0x5, 0x9, 0x72, 0x7, 0xba, '\x00', 0x3}) (async)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r7, 0x0, 0x483, &(0x7f0000000080), &(0x7f0000000100)=0x68) (async)
r8 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) (async)
r9 = openat$dsp(0xffffffffffffff9c, &(0x7f00000003c0), 0x101a02, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r9, 0xc004500a, &(0x7f0000000080))
writev(r9, &(0x7f0000000400)=[{&(0x7f0000000680)="3751f02b82f73ccfc7c431617753f5732f765c975ebce8947e5388c4ff26fa3893119fd147a1576d9456136ab5f15493d175754e4b666e989869d01d418adc376ca22d8077c1b54bea92b5977a41d70ebcc4735ce6c012a5fe5ab7fef98e864216699a25d70e26103e294b7894b34a794bc14a2edfdc6978c0c97bcb02de69264d", 0x81}, {&(0x7f00000004c0)="393740701790ac45cb040c65b3b3de6e9b6854fea762efc1ed7920bb3ad7bef3520cc7682e5322996b1f86baecb39ff6e0256a699315ef30f190df037379c3", 0x3f}], 0x2) (async)
close(r9)
ioctl$SIOCGSTAMPNS(r7, 0x8907, &(0x7f0000000200)) (async)
ioctl$PTP_EXTTS_REQUEST(r8, 0x40103d02, &(0x7f00000001c0)={0x1d94, 0x9}) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$NFT_BATCH(r10, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r11 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r11, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)

1.380852808s ago: executing program 2 (id=3199):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000300)={@in={{0x2, 0x4e21, @rand_addr=0x64010101}}, 0x0, 0x0, 0x43, 0x0, "ee8b0e650926a96ecc136e7fb980e989db9e8bf9b93129488f651a8de213eb94cd46e19d9c65a018444a131f4da58ae36556dd38ea6c029607462029add09240005c6776267517308a3d40aa1c788df6"}, 0xd8)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r0, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="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", 0x132}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000640)='B', 0x1}], 0x1}}], 0x2, 0x2090)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
pipe2$watch_queue(&(0x7f0000001180)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
r3 = add_key(&(0x7f0000000000)='id_legacy\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000080)="f8", 0x1, 0xfffffffffffffffe)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r2, 0xffffffffffffffff)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000035ffaa20cd0caf104a38010203010902"], 0x0)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

490.267151ms ago: executing program 1 (id=3200):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a010200000000000000000100ffff0900030073797a320000000028000480080002400000000008000140000000051400030076657468315f746f5f687372000000000900010073797a31000000004c000000050a05000000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d616376746107000000080001400000000514"], 0xe8}}, 0x0) (fail_nth: 4)

198.05554ms ago: executing program 1 (id=3201):
r0 = syz_open_dev$dvb_frontend(0x0, 0x0, 0x141000)
ioctl$FE_GET_INFO(r0, 0x80a86f3d, &(0x7f0000000300))

120.932889ms ago: executing program 1 (id=3202):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000080)={<r1=>0x0, 0xa}, &(0x7f0000000100)=0x8)
r2 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r2, 0x40045612, &(0x7f0000000080)={0xa})
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={r1, 0x9b7a}, 0x8)
r3 = socket$alg(0x26, 0x5, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r6=>0x0})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$uac2(0x0, 0x7b, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0})
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r7, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010022bd7000ffdb00", @ANYRES32=r6, @ANYBLOB="24002d800800020003000000080002000300000005000400010000000500040000000000"], 0x40}, 0x1, 0x0, 0x0, 0x20008000}, 0x8000)
r8 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000680)=ANY=[@ANYBLOB="1201000000000040f30455070000000000010902240001000040b109040000010300010009210101000122050009058103"], 0x0)
syz_usb_control_io(r8, 0x0, 0x0)
syz_usb_control_io(r8, &(0x7f0000000340)={0x2c, &(0x7f0000000700)=ANY=[@ANYBLOB=' \n\a'], 0x0, 0x0, 0x0, 0x0}, 0x0)
r9 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r9, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)=[<r10=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r9, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r10], 0x1})
bind$alg(r3, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58)

0s ago: executing program 2 (id=3203):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = socket(0x2b, 0x80801, 0x1)
r2 = dup(0xffffffffffffffff)
write$UHID_INPUT(r2, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006)
r3 = openat$cgroup_ro(r2, &(0x7f0000000100)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x7000001, 0x12, r3, 0x0)
r4 = userfaultfd(0x1)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000080))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}, 0x1})
write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118)
ioctl$UFFDIO_ZEROPAGE(r4, 0xc020aa07, &(0x7f0000000280)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}})
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$l2tp6(r1, &(0x7f0000000080)={0xa, 0x0, 0x292, @ipv4={'\x00', '\xff\xff', @local}, 0x0, 0x2}, 0x20)
ioctl$sock_inet6_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000000))
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r6, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x4000009e, 0x0, 0xffffffffffffffff}, {0x402, 0x0, 0x4}]})

kernel console output (not intermixed with test programs):

f82090 R08: 0000000000000000 R09: 0000000000000000
[  694.343767][T16576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  694.343776][T16576] R13: 00007fba0f416038 R14: 00007fba0f415fa0 R15: 00007fffe07389a8
[  694.343803][T16576]  </TASK>
[  694.980586][ T5923] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  695.142822][ T5923] usb 3-1: config 0 has no interfaces?
[  695.148346][ T5923] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  695.159111][ T5923] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  695.179323][ T5923] usb 3-1: config 0 descriptor??
[  695.358417][    T9] usb 4-1: USB disconnect, device number 121
[  695.396291][ T1559] usb 3-1: USB disconnect, device number 14
[  695.590585][ T5923] usb 2-1: new high-speed USB device number 124 using dummy_hcd
[  695.740695][ T5923] usb 2-1: Using ep0 maxpacket: 32
[  695.747657][ T5923] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  695.758768][ T5923] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  695.768582][ T5923] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  695.777781][ T5923] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  695.788727][ T5923] usb 2-1: config 0 descriptor??
[  695.794503][    T9] usb 4-1: new high-speed USB device number 122 using dummy_hcd
[  695.796989][ T5923] hub 2-1:0.0: USB hub found
[  695.840641][ T5898] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  695.960585][    T9] usb 4-1: Using ep0 maxpacket: 32
[  695.967427][    T9] usb 4-1: config 0 has an invalid interface number: 196 but max is 0
[  695.975913][    T9] usb 4-1: config 0 has no interface number 0
[  695.982289][    T9] usb 4-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  695.993053][    T9] usb 4-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  695.996768][ T5923] hub 2-1:0.0: 1 port detected
[  696.003567][    T9] usb 4-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  696.019576][    T9] usb 4-1: config 0 interface 196 has no altsetting 0
[  696.027898][ T5898] usb 3-1: unable to get BOS descriptor or descriptor too short
[  696.036973][    T9] usb 4-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[  696.046657][ T5898] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 37, changing to 7
[  696.057726][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  696.065845][ T5898] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 116, changing to 7
[  696.076960][    T9] usb 4-1: Product: syz
[  696.081189][    T9] usb 4-1: Manufacturer: syz
[  696.086570][    T9] usb 4-1: SerialNumber: syz
[  696.093681][ T5898] usb 3-1: New USB device found, idVendor=0582, idProduct=0582, bcdDevice= 0.40
[  696.104015][ T5898] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  696.114037][    T9] usb 4-1: config 0 descriptor??
[  696.123267][T16591] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  696.124568][ T5898] usb 3-1: Product: syz
[  696.136415][ T5898] usb 3-1: Manufacturer: syz
[  696.141190][ T5898] usb 3-1: SerialNumber: syz
[  696.354611][T16579] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  696.363668][T16579] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  696.583253][ T5898] usb 3-1: Can't set UAC3 power state to 1 for id 10
[  696.594097][ T5898] usb 3-1: 2:0: failed to get current value for ch 0 (-71)
[  696.606818][ T5898] usb 3-1: 2:0: cannot get min/max values for control 2 (id 2)
[  696.616279][ T5898] usb 3-1: Warning! Unlikely small volume range (=1), linear volume or custom curve?
[  696.626146][ T5898] usb 3-1: [2] FU [Generic Out Playback Volume] ch = 1, val = 0/1/1
[  696.631223][ T5923] hub 2-1:0.0: activate --> -90
[  696.688225][ T5898] usb 3-1: USB disconnect, device number 15
[  696.852208][    T9] ipheth 4-1:0.196: ipheth_enable_ncm: usb_control_msg: 0
[  696.890926][    T9] ipheth 4-1:0.196: Apple iPhone USB Ethernet device attached
[  697.063113][T14826] usb 4-1: USB disconnect, device number 122
[  697.075512][ T5898] usb 2-1: USB disconnect, device number 124
[  697.152319][T14826] ipheth 4-1:0.196: Apple iPhone USB Ethernet now disconnected
[  697.184142][T16606] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3050'.
[  697.252759][T16611] FAULT_INJECTION: forcing a failure.
[  697.252759][T16611] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  697.266162][T16611] CPU: 1 UID: 0 PID: 16611 Comm: syz.2.3051 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  697.266194][T16611] Tainted: [L]=SOFTLOCKUP
[  697.266202][T16611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  697.266214][T16611] Call Trace:
[  697.266222][T16611]  <TASK>
[  697.266231][T16611]  dump_stack_lvl+0xe8/0x150
[  697.266264][T16611]  should_fail_ex+0x412/0x560
[  697.266291][T16611]  _copy_from_iter+0x1d3/0x1670
[  697.266317][T16611]  ? rcu_is_watching+0x15/0xb0
[  697.266342][T16611]  ? __pfx__copy_from_iter+0x10/0x10
[  697.266370][T16611]  ? netlink_sendmsg+0x650/0xb40
[  697.266397][T16611]  ? skb_put+0x11b/0x210
[  697.266419][T16611]  netlink_sendmsg+0x6c0/0xb40
[  697.266454][T16611]  ? __pfx_netlink_sendmsg+0x10/0x10
[  697.266484][T16611]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  697.266521][T16611]  ? __pfx_netlink_sendmsg+0x10/0x10
[  697.266548][T16611]  sock_sendmsg_nosec+0x112/0x150
[  697.266575][T16611]  ____sys_sendmsg+0x589/0x8c0
[  697.266604][T16611]  ? __pfx_____sys_sendmsg+0x10/0x10
[  697.266633][T16611]  ? import_iovec+0x73/0xa0
[  697.266667][T16611]  ___sys_sendmsg+0x2a5/0x360
[  697.266694][T16611]  ? __pfx____sys_sendmsg+0x10/0x10
[  697.266745][T16611]  ? __fget_files+0x2a/0x420
[  697.266768][T16611]  ? __fget_files+0x3a0/0x420
[  697.266797][T16611]  __x64_sys_sendmsg+0x1bd/0x2a0
[  697.266818][T16611]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  697.266846][T16611]  ? __pfx_ksys_write+0x10/0x10
[  697.266874][T16611]  do_syscall_64+0x14d/0xf80
[  697.266890][T16611]  ? trace_irq_disable+0x3b/0x150
[  697.266911][T16611]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  697.266927][T16611]  ? clear_bhb_loop+0x40/0x90
[  697.266947][T16611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  697.266964][T16611] RIP: 0033:0x7f287c19c799
[  697.266981][T16611] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  697.266997][T16611] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  697.267016][T16611] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  697.267029][T16611] RDX: 0000000004000084 RSI: 0000200000000000 RDI: 0000000000000003
[  697.267041][T16611] RBP: 00007f287d02e090 R08: 0000000000000000 R09: 0000000000000000
[  697.267054][T16611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  697.267066][T16611] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  697.267094][T16611]  </TASK>
[  697.582575][T16618] FAULT_INJECTION: forcing a failure.
[  697.582575][T16618] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  697.595840][T16618] CPU: 1 UID: 0 PID: 16618 Comm: syz.2.3052 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  697.595868][T16618] Tainted: [L]=SOFTLOCKUP
[  697.595874][T16618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  697.595884][T16618] Call Trace:
[  697.595891][T16618]  <TASK>
[  697.595898][T16618]  dump_stack_lvl+0xe8/0x150
[  697.595928][T16618]  should_fail_ex+0x412/0x560
[  697.595955][T16618]  _copy_from_iter+0x1d3/0x1670
[  697.595977][T16618]  ? rcu_is_watching+0x15/0xb0
[  697.596000][T16618]  ? __pfx__copy_from_iter+0x10/0x10
[  697.596023][T16618]  ? netlink_sendmsg+0x650/0xb40
[  697.596048][T16618]  ? skb_put+0x11b/0x210
[  697.596068][T16618]  netlink_sendmsg+0x6c0/0xb40
[  697.596101][T16618]  ? __pfx_netlink_sendmsg+0x10/0x10
[  697.596127][T16618]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  697.596160][T16618]  ? __pfx_netlink_sendmsg+0x10/0x10
[  697.596192][T16618]  sock_sendmsg_nosec+0x112/0x150
[  697.596218][T16618]  ____sys_sendmsg+0x589/0x8c0
[  697.596243][T16618]  ? __pfx_____sys_sendmsg+0x10/0x10
[  697.596270][T16618]  ? import_iovec+0x73/0xa0
[  697.596295][T16618]  ___sys_sendmsg+0x2a5/0x360
[  697.596318][T16618]  ? __pfx____sys_sendmsg+0x10/0x10
[  697.596369][T16618]  ? __fget_files+0x2a/0x420
[  697.596392][T16618]  ? __fget_files+0x3a0/0x420
[  697.596423][T16618]  __x64_sys_sendmsg+0x1bd/0x2a0
[  697.596446][T16618]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  697.596475][T16618]  ? __pfx_ksys_write+0x10/0x10
[  697.596502][T16618]  do_syscall_64+0x14d/0xf80
[  697.596519][T16618]  ? trace_irq_disable+0x3b/0x150
[  697.596540][T16618]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  697.596558][T16618]  ? clear_bhb_loop+0x40/0x90
[  697.596580][T16618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  697.596598][T16618] RIP: 0033:0x7f287c19c799
[  697.596617][T16618] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  697.596633][T16618] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  697.596654][T16618] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  697.596667][T16618] RDX: 0000000008000000 RSI: 0000200000000040 RDI: 0000000000000003
[  697.596679][T16618] RBP: 00007f287d02e090 R08: 0000000000000000 R09: 0000000000000000
[  697.596691][T16618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  697.596702][T16618] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  697.596731][T16618]  </TASK>
[  698.140992][ T5884] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  698.300626][ T5905] usb 2-1: new high-speed USB device number 125 using dummy_hcd
[  698.303388][ T5884] usb 3-1: config 0 has too many interfaces: 253, using maximum allowed: 32
[  698.324841][ T5884] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 253
[  698.336579][ T5884] usb 3-1: New USB device found, idVendor=055f, idProduct=c630, bcdDevice=b6.ac
[  698.345766][ T5884] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  698.355415][ T5884] usb 3-1: Product: syz
[  698.359642][ T5884] usb 3-1: Manufacturer: syz
[  698.364726][ T5884] usb 3-1: SerialNumber: syz
[  698.379000][ T5884] usb 3-1: config 0 descriptor??
[  698.398663][ T5884] gspca_main: sunplus-2.14.0 probing 055f:c630
[  698.441869][T16645] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  698.451130][ T5905] usb 2-1: Using ep0 maxpacket: 8
[  698.459114][ T5905] usb 2-1: config index 0 descriptor too short (expected 133, got 78)
[  698.468100][ T5905] usb 2-1: config 1 has an invalid descriptor of length 209, skipping remainder of the config
[  698.478514][ T5905] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  698.490129][ T5905] usb 2-1: New USB device found, idVendor=0582, idProduct=0120, bcdDevice= 0.40
[  698.499347][ T5905] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  698.507398][ T5905] usb 2-1: Product: syz
[  698.515130][ T5905] usb 2-1: Manufacturer: syz
[  698.519750][ T5905] usb 2-1: SerialNumber: syz
[  698.710667][ T5898] usb 4-1: new high-speed USB device number 123 using dummy_hcd
[  698.746480][T16633] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  698.756921][T16633] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  698.831737][ T5905] snd-usb-audio 2-1:1.0: probe with driver snd-usb-audio failed with error -22
[  698.861051][ T5898] usb 4-1: Using ep0 maxpacket: 8
[  698.873041][ T5898] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  698.874671][T16653] FAULT_INJECTION: forcing a failure.
[  698.874671][T16653] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  698.890616][ T5898] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  698.895604][T16653] CPU: 1 UID: 0 PID: 16653 Comm: syz.1.3061 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  698.895631][T16653] Tainted: [L]=SOFTLOCKUP
[  698.895639][T16653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  698.895650][T16653] Call Trace:
[  698.895659][T16653]  <TASK>
[  698.895667][T16653]  dump_stack_lvl+0xe8/0x150
[  698.895700][T16653]  should_fail_ex+0x412/0x560
[  698.895728][T16653]  _copy_from_iter+0x1d3/0x1670
[  698.895751][T16653]  ? rcu_is_watching+0x15/0xb0
[  698.895775][T16653]  ? __pfx__copy_from_iter+0x10/0x10
[  698.895801][T16653]  ? netlink_sendmsg+0x650/0xb40
[  698.895826][T16653]  ? skb_put+0x11b/0x210
[  698.895847][T16653]  netlink_sendmsg+0x6c0/0xb40
[  698.895881][T16653]  ? __pfx_netlink_sendmsg+0x10/0x10
[  698.895908][T16653]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  698.895942][T16653]  ? __pfx_netlink_sendmsg+0x10/0x10
[  698.895967][T16653]  sock_sendmsg_nosec+0x112/0x150
[  698.895993][T16653]  ____sys_sendmsg+0x589/0x8c0
[  698.896020][T16653]  ? __pfx_____sys_sendmsg+0x10/0x10
[  698.896047][T16653]  ? import_iovec+0x73/0xa0
[  698.896071][T16653]  ___sys_sendmsg+0x2a5/0x360
[  698.896095][T16653]  ? __pfx____sys_sendmsg+0x10/0x10
[  698.896142][T16653]  ? __fget_files+0x2a/0x420
[  698.896165][T16653]  ? __fget_files+0x3a0/0x420
[  698.896197][T16653]  __x64_sys_sendmsg+0x1bd/0x2a0
[  698.896218][T16653]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  698.896244][T16653]  ? __pfx_ksys_write+0x10/0x10
[  698.896270][T16653]  do_syscall_64+0x14d/0xf80
[  698.896288][T16653]  ? trace_irq_disable+0x3b/0x150
[  698.896310][T16653]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.896329][T16653]  ? clear_bhb_loop+0x40/0x90
[  698.896350][T16653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.896367][T16653] RIP: 0033:0x7f61ded9c799
[  698.896385][T16653] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  698.896400][T16653] RSP: 002b:00007f61dcff6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  698.896426][T16653] RAX: ffffffffffffffda RBX: 00007f61df015fa0 RCX: 00007f61ded9c799
[  698.896440][T16653] RDX: 0000000000000894 RSI: 0000200000000000 RDI: 0000000000000004
[  698.896451][T16653] RBP: 00007f61dcff6090 R08: 0000000000000000 R09: 0000000000000000
[  698.896462][T16653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  698.896473][T16653] R13: 00007f61df016038 R14: 00007f61df015fa0 R15: 00007ffcecb5e998
[  698.896501][T16653]  </TASK>
[  699.159677][ T5898] usb 4-1: Product: syz
[  699.168871][ T5898] usb 4-1: Manufacturer: syz
[  699.176240][ T5905] snd-usb-audio 2-1:1.1: probe with driver snd-usb-audio failed with error -22
[  699.186466][ T5898] usb 4-1: SerialNumber: syz
[  699.192347][ T5905] usb 2-1: USB disconnect, device number 125
[  699.212261][ T5898] usb 4-1: config 0 descriptor??
[  699.224164][ T6256] udevd[6256]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  699.420847][ T5898] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  699.530604][ T5905] usb 2-1: new high-speed USB device number 126 using dummy_hcd
[  699.680662][ T5905] usb 2-1: Using ep0 maxpacket: 32
[  699.687621][ T5905] usb 2-1: config 0 has an invalid interface number: 188 but max is 0
[  699.695927][ T5905] usb 2-1: config 0 has no interface number 0
[  699.702227][ T5905] usb 2-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  699.715377][ T5905] usb 2-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  699.724728][ T5905] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  699.732802][ T5905] usb 2-1: Product: syz
[  699.737022][ T5905] usb 2-1: Manufacturer: syz
[  699.741724][ T5905] usb 2-1: SerialNumber: syz
[  699.749189][ T5905] usb 2-1: config 0 descriptor??
[  699.755292][T16656] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  699.968578][T16656] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  700.015728][ T5884] gspca_sunplus: reg_r err -71
[  700.020869][ T5884] sunplus 3-1:0.0: probe with driver sunplus failed with error -71
[  700.034657][ T5884] usb 3-1: USB disconnect, device number 16
[  700.841375][ T5898] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  700.854421][ T5898] usb 4-1: USB disconnect, device number 123
[  701.000643][ T5884] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  701.151269][ T5884] usb 3-1: Using ep0 maxpacket: 32
[  701.158478][ T5884] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  701.169623][ T5884] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  701.179479][ T5884] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  701.188596][ T5884] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  701.200410][ T5884] usb 3-1: config 0 descriptor??
[  701.209239][ T5884] hub 3-1:0.0: USB hub found
[  701.408755][ T5884] hub 3-1:0.0: 1 port detected
[  701.690628][  T808] usb 4-1: new high-speed USB device number 124 using dummy_hcd
[  701.843073][  T808] usb 4-1: Using ep0 maxpacket: 32
[  701.857470][  T808] usb 4-1: config 0 has an invalid interface number: 196 but max is 0
[  701.867586][  T808] usb 4-1: config 0 has no interface number 0
[  701.874834][  T808] usb 4-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  701.886384][  T808] usb 4-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  701.896610][  T808] usb 4-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  701.906781][  T808] usb 4-1: config 0 interface 196 has no altsetting 0
[  701.916949][  T808] usb 4-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[  701.926248][  T808] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  701.935049][  T808] usb 4-1: Product: syz
[  701.939321][  T808] usb 4-1: Manufacturer: syz
[  701.944938][T16670] FAULT_INJECTION: forcing a failure.
[  701.944938][T16670] name failslab, interval 1, probability 0, space 0, times 0
[  701.957767][  T808] usb 4-1: SerialNumber: syz
[  701.965844][  T808] usb 4-1: config 0 descriptor??
[  701.975750][T16670] CPU: 0 UID: 0 PID: 16670 Comm: syz.0.3067 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  701.975778][T16670] Tainted: [L]=SOFTLOCKUP
[  701.975785][T16670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  701.975799][T16670] Call Trace:
[  701.975806][T16670]  <TASK>
[  701.975815][T16670]  dump_stack_lvl+0xe8/0x150
[  701.975847][T16670]  should_fail_ex+0x412/0x560
[  701.975873][T16670]  should_failslab+0xa8/0x100
[  701.975893][T16670]  __kmalloc_cache_noprof+0x88/0x660
[  701.975922][T16670]  ? vhost_task_create+0x123/0x380
[  701.975950][T16670]  vhost_task_create+0x123/0x380
[  701.975972][T16670]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  701.975992][T16670]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  701.976014][T16670]  ? __pfx_vhost_task_create+0x10/0x10
[  701.976043][T16670]  ? __pfx_vhost_task_fn+0x10/0x10
[  701.976074][T16670]  ? __lock_acquire+0x6b5/0x2cf0
[  701.976108][T16670]  kvm_mmu_post_init_vm+0x14c/0x300
[  701.976132][T16670]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  701.976163][T16670]  ? __mutex_trylock_common+0x158/0x260
[  701.976186][T16670]  ? __pfx___mutex_trylock_common+0x10/0x10
[  701.976208][T16670]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  701.976229][T16670]  ? register_lock_class+0x31/0x2e0
[  701.976259][T16670]  ? __lock_acquire+0x6b5/0x2cf0
[  701.976292][T16670]  ? kasan_quarantine_put+0xbb/0x1f0
[  701.976320][T16670]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  701.976339][T16670]  ? do_raw_write_lock+0x11d/0x260
[  701.976359][T16670]  kvm_vcpu_ioctl+0xa62/0xfd0
[  701.976373][T16670]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  701.976383][T16670]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  701.976404][T16670]  ? __fget_files+0x2a/0x420
[  701.976420][T16670]  ? __fget_files+0x2a/0x420
[  701.976435][T16670]  ? __fget_files+0x3a0/0x420
[  701.976455][T16670]  ? __fget_files+0x2a/0x420
[  701.976478][T16670]  ? bpf_lsm_file_ioctl+0x9/0x20
[  701.976495][T16670]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  701.976515][T16670]  __se_sys_ioctl+0xfc/0x170
[  701.976536][T16670]  do_syscall_64+0x14d/0xf80
[  701.976548][T16670]  ? trace_irq_disable+0x3b/0x150
[  701.976559][T16670]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.976570][T16670]  ? clear_bhb_loop+0x40/0x90
[  701.976582][T16670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.976592][T16670] RIP: 0033:0x7fba0f19c799
[  701.976603][T16670] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  701.976612][T16670] RSP: 002b:00007fba0d3f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  701.976624][T16670] RAX: ffffffffffffffda RBX: 00007fba0f416090 RCX: 00007fba0f19c799
[  701.976631][T16670] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  701.976638][T16670] RBP: 00007fba0d3f6090 R08: 0000000000000000 R09: 0000000000000000
[  701.976644][T16670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  701.976650][T16670] R13: 00007fba0f416128 R14: 00007fba0f416090 R15: 00007fffe07389a8
[  701.976665][T16670]  </TASK>
[  701.977859][T16662] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  702.297900][ T5884] hub 3-1:0.0: activate --> -90
[  702.308457][ T5905] asix 2-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  702.330980][ T5905] asix 2-1:0.188: probe with driver asix failed with error -71
[  702.352926][ T5905] usb 2-1: USB disconnect, device number 126
[  702.605404][ T5905] usb 3-1: USB disconnect, device number 17
[  702.668213][T16679] syzkaller1: entered promiscuous mode
[  702.674990][T16679] syzkaller1: entered allmulticast mode
[  702.926068][T16691] netlink: 'syz.0.3076': attribute type 58 has an invalid length.
[  703.025617][  T808] ipheth 4-1:0.196: ipheth_enable_ncm: usb_control_msg: 0
[  703.039050][  T808] ipheth 4-1:0.196: Apple iPhone USB Ethernet device attached
[  703.178123][T16701] FAULT_INJECTION: forcing a failure.
[  703.178123][T16701] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  703.193813][T16701] CPU: 1 UID: 0 PID: 16701 Comm: syz.2.3077 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  703.193844][T16701] Tainted: [L]=SOFTLOCKUP
[  703.193851][T16701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  703.193863][T16701] Call Trace:
[  703.193871][T16701]  <TASK>
[  703.193879][T16701]  dump_stack_lvl+0xe8/0x150
[  703.193911][T16701]  should_fail_ex+0x412/0x560
[  703.193937][T16701]  _copy_from_iter+0x1d3/0x1670
[  703.193960][T16701]  ? rcu_is_watching+0x15/0xb0
[  703.193985][T16701]  ? __pfx__copy_from_iter+0x10/0x10
[  703.194011][T16701]  ? netlink_sendmsg+0x650/0xb40
[  703.194036][T16701]  ? skb_put+0x11b/0x210
[  703.194058][T16701]  netlink_sendmsg+0x6c0/0xb40
[  703.194090][T16701]  ? __pfx_netlink_sendmsg+0x10/0x10
[  703.194118][T16701]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  703.194152][T16701]  ? __pfx_netlink_sendmsg+0x10/0x10
[  703.194176][T16701]  sock_sendmsg_nosec+0x112/0x150
[  703.194214][T16701]  ____sys_sendmsg+0x589/0x8c0
[  703.194240][T16701]  ? __pfx_____sys_sendmsg+0x10/0x10
[  703.194269][T16701]  ? import_iovec+0x73/0xa0
[  703.194292][T16701]  ___sys_sendmsg+0x2a5/0x360
[  703.194312][T16701]  ? __pfx____sys_sendmsg+0x10/0x10
[  703.194361][T16701]  ? __fget_files+0x2a/0x420
[  703.194393][T16701]  ? __fget_files+0x3a0/0x420
[  703.194424][T16701]  __x64_sys_sendmsg+0x1bd/0x2a0
[  703.194447][T16701]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  703.194474][T16701]  ? __pfx_ksys_write+0x10/0x10
[  703.194500][T16701]  do_syscall_64+0x14d/0xf80
[  703.194517][T16701]  ? trace_irq_disable+0x3b/0x150
[  703.194537][T16701]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.194556][T16701]  ? clear_bhb_loop+0x40/0x90
[  703.194578][T16701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.194594][T16701] RIP: 0033:0x7f287c19c799
[  703.194611][T16701] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  703.194626][T16701] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  703.194643][T16701] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  703.194655][T16701] RDX: 0000000024040840 RSI: 00002000000001c0 RDI: 0000000000000003
[  703.194666][T16701] RBP: 00007f287d02e090 R08: 0000000000000000 R09: 0000000000000000
[  703.194677][T16701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  703.194687][T16701] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  703.194712][T16701]  </TASK>
[  703.488357][  T808] usb 4-1: USB disconnect, device number 124
[  703.575677][T16710] FAULT_INJECTION: forcing a failure.
[  703.575677][T16710] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  703.588928][T16710] CPU: 0 UID: 0 PID: 16710 Comm: syz.1.3078 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  703.588965][T16710] Tainted: [L]=SOFTLOCKUP
[  703.588973][T16710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  703.588984][T16710] Call Trace:
[  703.588992][T16710]  <TASK>
[  703.589000][T16710]  dump_stack_lvl+0xe8/0x150
[  703.589032][T16710]  should_fail_ex+0x412/0x560
[  703.589058][T16710]  _copy_from_iter+0x1d3/0x1670
[  703.589083][T16710]  ? rcu_is_watching+0x15/0xb0
[  703.589108][T16710]  ? __pfx__copy_from_iter+0x10/0x10
[  703.589136][T16710]  ? netlink_sendmsg+0x650/0xb40
[  703.589161][T16710]  ? skb_put+0x11b/0x210
[  703.589183][T16710]  netlink_sendmsg+0x6c0/0xb40
[  703.589217][T16710]  ? __pfx_netlink_sendmsg+0x10/0x10
[  703.589245][T16710]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  703.589282][T16710]  ? __pfx_netlink_sendmsg+0x10/0x10
[  703.589307][T16710]  sock_sendmsg_nosec+0x112/0x150
[  703.589334][T16710]  ____sys_sendmsg+0x589/0x8c0
[  703.589362][T16710]  ? __pfx_____sys_sendmsg+0x10/0x10
[  703.589389][T16710]  ? import_iovec+0x73/0xa0
[  703.589414][T16710]  ___sys_sendmsg+0x2a5/0x360
[  703.589435][T16710]  ? __pfx____sys_sendmsg+0x10/0x10
[  703.589478][T16710]  ? __fget_files+0x2a/0x420
[  703.589499][T16710]  ? __fget_files+0x3a0/0x420
[  703.589531][T16710]  __x64_sys_sendmsg+0x1bd/0x2a0
[  703.589553][T16710]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  703.589581][T16710]  ? __pfx_ksys_write+0x10/0x10
[  703.589610][T16710]  do_syscall_64+0x14d/0xf80
[  703.589627][T16710]  ? trace_irq_disable+0x3b/0x150
[  703.589647][T16710]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.589664][T16710]  ? clear_bhb_loop+0x40/0x90
[  703.589685][T16710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.589704][T16710] RIP: 0033:0x7f61ded9c799
[  703.589722][T16710] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  703.589739][T16710] RSP: 002b:00007f61dcff6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  703.589759][T16710] RAX: ffffffffffffffda RBX: 00007f61df015fa0 RCX: 00007f61ded9c799
[  703.589772][T16710] RDX: 0000000000000010 RSI: 0000200000000240 RDI: 0000000000000005
[  703.589784][T16710] RBP: 00007f61dcff6090 R08: 0000000000000000 R09: 0000000000000000
[  703.589796][T16710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  703.589807][T16710] R13: 00007f61df016038 R14: 00007f61df015fa0 R15: 00007ffcecb5e998
[  703.589835][T16710]  </TASK>
[  703.873982][  T808] ipheth 4-1:0.196: Apple iPhone USB Ethernet now disconnected
[  703.933849][T16718] FAULT_INJECTION: forcing a failure.
[  703.933849][T16718] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  703.982021][T16718] CPU: 1 UID: 0 PID: 16718 Comm: syz.0.3081 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  703.982054][T16718] Tainted: [L]=SOFTLOCKUP
[  703.982059][T16718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  703.982070][T16718] Call Trace:
[  703.982078][T16718]  <TASK>
[  703.982085][T16718]  dump_stack_lvl+0xe8/0x150
[  703.982118][T16718]  should_fail_ex+0x412/0x560
[  703.982144][T16718]  _copy_from_iter+0x1d3/0x1670
[  703.982166][T16718]  ? rcu_is_watching+0x15/0xb0
[  703.982189][T16718]  ? __pfx__copy_from_iter+0x10/0x10
[  703.982213][T16718]  ? netlink_sendmsg+0x650/0xb40
[  703.982237][T16718]  ? skb_put+0x11b/0x210
[  703.982257][T16718]  netlink_sendmsg+0x6c0/0xb40
[  703.982289][T16718]  ? __pfx_netlink_sendmsg+0x10/0x10
[  703.982317][T16718]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  703.982350][T16718]  ? __pfx_netlink_sendmsg+0x10/0x10
[  703.982364][T16718]  sock_sendmsg_nosec+0x112/0x150
[  703.982379][T16718]  ____sys_sendmsg+0x589/0x8c0
[  703.982393][T16718]  ? __pfx_____sys_sendmsg+0x10/0x10
[  703.982408][T16718]  ? import_iovec+0x73/0xa0
[  703.982421][T16718]  ___sys_sendmsg+0x2a5/0x360
[  703.982434][T16718]  ? __pfx____sys_sendmsg+0x10/0x10
[  703.982460][T16718]  ? __fget_files+0x2a/0x420
[  703.982474][T16718]  ? __fget_files+0x3a0/0x420
[  703.982491][T16718]  __x64_sys_sendmsg+0x1bd/0x2a0
[  703.982510][T16718]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  703.982525][T16718]  ? __pfx_ksys_write+0x10/0x10
[  703.982540][T16718]  do_syscall_64+0x14d/0xf80
[  703.982550][T16718]  ? trace_irq_disable+0x3b/0x150
[  703.982562][T16718]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.982572][T16718]  ? clear_bhb_loop+0x40/0x90
[  703.982584][T16718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.982594][T16718] RIP: 0033:0x7fba0f19c799
[  703.982606][T16718] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  703.982615][T16718] RSP: 002b:00007fba0ff82028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  703.982627][T16718] RAX: ffffffffffffffda RBX: 00007fba0f415fa0 RCX: 00007fba0f19c799
[  703.982635][T16718] RDX: 0000000020004000 RSI: 0000200000000140 RDI: 0000000000000004
[  703.982641][T16718] RBP: 00007fba0ff82090 R08: 0000000000000000 R09: 0000000000000000
[  703.982647][T16718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  703.982654][T16718] R13: 00007fba0f416038 R14: 00007fba0f415fa0 R15: 00007fffe07389a8
[  703.982668][T16718]  </TASK>
[  704.397408][ T1559] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  704.405690][ T5884] usb 2-1: new high-speed USB device number 127 using dummy_hcd
[  704.442305][T16726] netlink: 'syz.0.3083': attribute type 10 has an invalid length.
[  704.522435][T16726] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  704.564533][ T5884] usb 2-1: Using ep0 maxpacket: 16
[  704.573976][ T1559] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  704.583707][ T1559] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  704.600371][ T5884] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=f4.9b
[  704.611643][ T5884] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  704.622956][ T1559] usb 3-1: config 0 descriptor??
[  704.630204][ T5884] usb 2-1: Product: syz
[  704.635722][ T5884] usb 2-1: SerialNumber: syz
[  704.645088][ T5884] usb 2-1: config 0 descriptor??
[  704.656076][ T5884] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  704.666322][ T5884] dvb_usb_af9015 2-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  704.676785][ T5884] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  704.688721][ T5884] dvb_usb_af9035 2-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[  704.740621][   T10] usb 4-1: new high-speed USB device number 125 using dummy_hcd
[  704.861126][ T5884] usb 2-1: USB disconnect, device number 127
[  704.902011][   T10] usb 4-1: Using ep0 maxpacket: 32
[  704.914558][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  704.925745][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  704.935646][   T10] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  704.945085][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  704.956077][   T10] usb 4-1: config 0 descriptor??
[  704.972539][   T10] hub 4-1:0.0: USB hub found
[  705.169445][   T10] hub 4-1:0.0: 1 port detected
[  705.354634][ T1559] usb 3-1: Cannot set autoneg
[  705.359832][ T1559] MOSCHIP usb-ethernet driver 3-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  705.391763][ T1559] usb 3-1: USB disconnect, device number 18
[  705.483774][T16751] FAULT_INJECTION: forcing a failure.
[  705.483774][T16751] name failslab, interval 1, probability 0, space 0, times 0
[  705.499502][T16751] CPU: 1 UID: 0 PID: 16751 Comm: syz.1.3088 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  705.499535][T16751] Tainted: [L]=SOFTLOCKUP
[  705.499542][T16751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  705.499554][T16751] Call Trace:
[  705.499562][T16751]  <TASK>
[  705.499570][T16751]  dump_stack_lvl+0xe8/0x150
[  705.499595][T16751]  should_fail_ex+0x412/0x560
[  705.499612][T16751]  should_failslab+0xa8/0x100
[  705.499626][T16751]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  705.499646][T16751]  ? dup_task_struct+0x52/0x840
[  705.499680][T16751]  dup_task_struct+0x52/0x840
[  705.499705][T16751]  ? _raw_spin_unlock_irq+0x23/0x50
[  705.499733][T16751]  copy_process+0x89b/0x4430
[  705.499763][T16751]  ? __pfx_copy_process+0x10/0x10
[  705.499781][T16751]  ? mutex_init_lockdep+0xdf/0x110
[  705.499798][T16751]  vhost_task_create+0x1f9/0x380
[  705.499821][T16751]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  705.499843][T16751]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  705.499874][T16751]  ? __pfx_vhost_task_create+0x10/0x10
[  705.499893][T16751]  ? __pfx_vhost_task_fn+0x10/0x10
[  705.499909][T16751]  ? __lock_acquire+0x6b5/0x2cf0
[  705.499928][T16751]  kvm_mmu_post_init_vm+0x14c/0x300
[  705.499945][T16751]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  705.499977][T16751]  ? __mutex_trylock_common+0x158/0x260
[  705.500001][T16751]  ? __pfx___mutex_trylock_common+0x10/0x10
[  705.500022][T16751]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  705.500040][T16751]  ? register_lock_class+0x31/0x2e0
[  705.500056][T16751]  ? __lock_acquire+0x6b5/0x2cf0
[  705.500074][T16751]  ? kasan_quarantine_put+0xbb/0x1f0
[  705.500090][T16751]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  705.500120][T16751]  ? do_raw_write_lock+0x11d/0x260
[  705.500159][T16751]  kvm_vcpu_ioctl+0xa62/0xfd0
[  705.500184][T16751]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  705.500194][T16751]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  705.500214][T16751]  ? __fget_files+0x2a/0x420
[  705.500229][T16751]  ? __fget_files+0x2a/0x420
[  705.500240][T16751]  ? __fget_files+0x3a0/0x420
[  705.500260][T16751]  ? __fget_files+0x2a/0x420
[  705.500287][T16751]  ? bpf_lsm_file_ioctl+0x9/0x20
[  705.500307][T16751]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  705.500327][T16751]  __se_sys_ioctl+0xfc/0x170
[  705.500343][T16751]  do_syscall_64+0x14d/0xf80
[  705.500352][T16751]  ? trace_irq_disable+0x3b/0x150
[  705.500366][T16751]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.500376][T16751]  ? clear_bhb_loop+0x40/0x90
[  705.500389][T16751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.500404][T16751] RIP: 0033:0x7f61ded9c799
[  705.500423][T16751] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  705.500438][T16751] RSP: 002b:00007f61dcff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  705.500457][T16751] RAX: ffffffffffffffda RBX: 00007f61df015fa0 RCX: 00007f61ded9c799
[  705.500471][T16751] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  705.500483][T16751] RBP: 00007f61dcff6090 R08: 0000000000000000 R09: 0000000000000000
[  705.500493][T16751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  705.500502][T16751] R13: 00007f61df016038 R14: 00007f61df015fa0 R15: 00007ffcecb5e998
[  705.500529][T16751]  </TASK>
[  705.831559][   T10] hub 4-1:0.0: activate --> -90
[  706.150631][ T1559] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  706.235181][T14826] usb 4-1: USB disconnect, device number 125
[  706.310667][ T1559] usb 2-1: Using ep0 maxpacket: 8
[  706.317301][ T1559] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  706.329461][ T1559] usb 2-1: New USB device found, idVendor=22b8, idProduct=6425, bcdDevice=d3.6c
[  706.339187][ T1559] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  706.347298][ T1559] usb 2-1: Product: syz
[  706.351655][ T1559] usb 2-1: Manufacturer: syz
[  706.356358][ T1559] usb 2-1: SerialNumber: syz
[  706.364556][ T1559] usb 2-1: config 0 descriptor??
[  706.382513][ T1559] cdc_acm 2-1:0.0: Zero length descriptor references
[  706.389389][ T1559] cdc_acm 2-1:0.0: probe with driver cdc_acm failed with error -22
[  706.583568][T16753] netlink: 'syz.1.3089': attribute type 11 has an invalid length.
[  706.593776][T16753] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3089'.
[  706.605654][  T808] usb 2-1: USB disconnect, device number 2
[  706.760659][   T10] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  706.920647][   T10] usb 3-1: Using ep0 maxpacket: 32
[  706.927296][   T10] usb 3-1: config 0 has an invalid interface number: 196 but max is 0
[  706.935620][   T10] usb 3-1: config 0 has no interface number 0
[  706.941904][   T10] usb 3-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  706.952700][   T10] usb 3-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  706.963275][   T10] usb 3-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  706.973240][   T10] usb 3-1: config 0 interface 196 has no altsetting 0
[  706.981985][   T10] usb 3-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[  706.992187][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  707.000219][   T10] usb 3-1: Product: syz
[  707.004882][   T10] usb 3-1: Manufacturer: syz
[  707.009517][   T10] usb 3-1: SerialNumber: syz
[  707.016943][   T10] usb 3-1: config 0 descriptor??
[  707.022586][T16766] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  707.120589][ T1559] usb 4-1: new high-speed USB device number 126 using dummy_hcd
[  707.270583][ T1559] usb 4-1: Using ep0 maxpacket: 32
[  707.277549][ T1559] usb 4-1: config 0 has an invalid interface number: 188 but max is 0
[  707.286819][ T1559] usb 4-1: config 0 has no interface number 0
[  707.293113][ T1559] usb 4-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  707.305610][ T1559] usb 4-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  707.314727][ T1559] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  707.322864][ T1559] usb 4-1: Product: syz
[  707.327059][ T1559] usb 4-1: Manufacturer: syz
[  707.331976][ T1559] usb 4-1: SerialNumber: syz
[  707.340968][ T1559] usb 4-1: config 0 descriptor??
[  707.346789][T16772] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  707.390609][T14826] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  707.530635][T14826] usb 2-1: device descriptor read/64, error -71
[  707.558356][T16772] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  707.709697][   T10] ipheth 3-1:0.196: ipheth_enable_ncm: usb_control_msg: 0
[  707.747841][   T10] ipheth 3-1:0.196: Apple iPhone USB Ethernet device attached
[  707.768340][ T1559] asix 4-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  707.781016][T14826] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  707.791689][ T1559] asix 4-1:0.188: probe with driver asix failed with error -61
[  707.805291][T16779] netlink: 'syz.0.3098': attribute type 31 has an invalid length.
[  707.818018][T16779] netlink: 'syz.0.3098': attribute type 1 has an invalid length.
[  707.827105][T16779] bridge0: port 1(bridge_slave_0) entered learning state
[  707.925086][ T1559] usb 3-1: USB disconnect, device number 19
[  707.932138][T14826] usb 2-1: device descriptor read/64, error -71
[  708.011300][ T1559] ipheth 3-1:0.196: Apple iPhone USB Ethernet now disconnected
[  708.044710][T16788] kvm: MWAIT instruction emulated as NOP!
[  708.062433][T14826] usb usb2-port1: attempt power cycle
[  708.307375][T16804] FAULT_INJECTION: forcing a failure.
[  708.307375][T16804] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  708.321624][T16804] CPU: 0 UID: 0 PID: 16804 Comm: syz.0.3102 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  708.321656][T16804] Tainted: [L]=SOFTLOCKUP
[  708.321663][T16804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  708.321672][T16804] Call Trace:
[  708.321679][T16804]  <TASK>
[  708.321685][T16804]  dump_stack_lvl+0xe8/0x150
[  708.321714][T16804]  should_fail_ex+0x412/0x560
[  708.321741][T16804]  _copy_from_iter+0x1d3/0x1670
[  708.321765][T16804]  ? rcu_is_watching+0x15/0xb0
[  708.321790][T16804]  ? __pfx__copy_from_iter+0x10/0x10
[  708.321816][T16804]  ? netlink_sendmsg+0x650/0xb40
[  708.321841][T16804]  ? skb_put+0x11b/0x210
[  708.321863][T16804]  netlink_sendmsg+0x6c0/0xb40
[  708.321897][T16804]  ? __pfx_netlink_sendmsg+0x10/0x10
[  708.321925][T16804]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  708.321959][T16804]  ? __pfx_netlink_sendmsg+0x10/0x10
[  708.321984][T16804]  sock_sendmsg_nosec+0x112/0x150
[  708.322008][T16804]  ____sys_sendmsg+0x589/0x8c0
[  708.322036][T16804]  ? __pfx_____sys_sendmsg+0x10/0x10
[  708.322064][T16804]  ? import_iovec+0x73/0xa0
[  708.322088][T16804]  ___sys_sendmsg+0x2a5/0x360
[  708.322110][T16804]  ? __pfx____sys_sendmsg+0x10/0x10
[  708.322162][T16804]  ? __fget_files+0x2a/0x420
[  708.322185][T16804]  ? __fget_files+0x3a0/0x420
[  708.322217][T16804]  __x64_sys_sendmsg+0x1bd/0x2a0
[  708.322238][T16804]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  708.322267][T16804]  ? __pfx_ksys_write+0x10/0x10
[  708.322295][T16804]  do_syscall_64+0x14d/0xf80
[  708.322313][T16804]  ? trace_irq_disable+0x3b/0x150
[  708.322333][T16804]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.322350][T16804]  ? clear_bhb_loop+0x40/0x90
[  708.322372][T16804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.322390][T16804] RIP: 0033:0x7fba0f19c799
[  708.322408][T16804] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  708.322424][T16804] RSP: 002b:00007fba0ff82028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  708.322445][T16804] RAX: ffffffffffffffda RBX: 00007fba0f415fa0 RCX: 00007fba0f19c799
[  708.322459][T16804] RDX: 0000000020004000 RSI: 0000200000000140 RDI: 0000000000000004
[  708.322472][T16804] RBP: 00007fba0ff82090 R08: 0000000000000000 R09: 0000000000000000
[  708.322483][T16804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  708.322494][T16804] R13: 00007fba0f416038 R14: 00007fba0f415fa0 R15: 00007fffe07389a8
[  708.322518][T16804]  </TASK>
[  708.644513][T14826] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  708.671533][T14826] usb 2-1: device descriptor read/8, error -71
[  708.864276][T16820] FAULT_INJECTION: forcing a failure.
[  708.864276][T16820] name failslab, interval 1, probability 0, space 0, times 0
[  708.878258][T16820] CPU: 1 UID: 0 PID: 16820 Comm: syz.2.3105 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  708.878288][T16820] Tainted: [L]=SOFTLOCKUP
[  708.878295][T16820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  708.878306][T16820] Call Trace:
[  708.878315][T16820]  <TASK>
[  708.878323][T16820]  dump_stack_lvl+0xe8/0x150
[  708.878357][T16820]  should_fail_ex+0x412/0x560
[  708.878383][T16820]  should_failslab+0xa8/0x100
[  708.878409][T16820]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  708.878438][T16820]  ? dup_task_struct+0x52/0x840
[  708.878470][T16820]  dup_task_struct+0x52/0x840
[  708.878495][T16820]  ? _raw_spin_unlock_irq+0x23/0x50
[  708.878524][T16820]  copy_process+0x89b/0x4430
[  708.878582][T16820]  ? __pfx_copy_process+0x10/0x10
[  708.878616][T16820]  ? mutex_init_lockdep+0xdf/0x110
[  708.878638][T16820]  vhost_task_create+0x1f9/0x380
[  708.878659][T16820]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  708.878679][T16820]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  708.878700][T16820]  ? __pfx_vhost_task_create+0x10/0x10
[  708.878727][T16820]  ? __pfx_vhost_task_fn+0x10/0x10
[  708.878756][T16820]  ? __lock_acquire+0x6b5/0x2cf0
[  708.878788][T16820]  kvm_mmu_post_init_vm+0x14c/0x300
[  708.878813][T16820]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  708.878845][T16820]  ? __mutex_trylock_common+0x158/0x260
[  708.878866][T16820]  ? __pfx___mutex_trylock_common+0x10/0x10
[  708.878887][T16820]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  708.878910][T16820]  ? register_lock_class+0x31/0x2e0
[  708.878947][T16820]  ? __lock_acquire+0x6b5/0x2cf0
[  708.878979][T16820]  ? kasan_quarantine_put+0xbb/0x1f0
[  708.879008][T16820]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  708.879035][T16820]  ? do_raw_write_lock+0x11d/0x260
[  708.879072][T16820]  kvm_vcpu_ioctl+0xa62/0xfd0
[  708.879098][T16820]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  708.879115][T16820]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  708.879153][T16820]  ? __fget_files+0x2a/0x420
[  708.879180][T16820]  ? __fget_files+0x2a/0x420
[  708.879202][T16820]  ? __fget_files+0x3a0/0x420
[  708.879224][T16820]  ? __fget_files+0x2a/0x420
[  708.879250][T16820]  ? bpf_lsm_file_ioctl+0x9/0x20
[  708.879270][T16820]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  708.879290][T16820]  __se_sys_ioctl+0xfc/0x170
[  708.879312][T16820]  do_syscall_64+0x14d/0xf80
[  708.879329][T16820]  ? trace_irq_disable+0x3b/0x150
[  708.879350][T16820]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.879369][T16820]  ? clear_bhb_loop+0x40/0x90
[  708.879391][T16820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.879410][T16820] RIP: 0033:0x7f287c19c799
[  708.879429][T16820] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  708.879445][T16820] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  708.879466][T16820] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  708.879480][T16820] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  708.879492][T16820] RBP: 00007f287d02e090 R08: 0000000000000000 R09: 0000000000000000
[  708.879504][T16820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  708.879515][T16820] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  708.879545][T16820]  </TASK>
[  709.219999][T14826] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  709.255412][T14826] usb 2-1: device descriptor read/8, error -71
[  709.371007][T14826] usb usb2-port1: unable to enumerate USB device
[  709.710710][ T5846] Bluetooth: hci1: command 0x2016 tx timeout
[  709.899426][T14826] usb 4-1: USB disconnect, device number 126
[  710.204460][T16840] IPVS: sync thread started: state = BACKUP, mcast_ifn = vlan0, syncid = 2, id = 0
[  710.205127][T16838] IPVS: stopping backup sync thread 16840 ...
[  710.411501][T14826] usb 4-1: new high-speed USB device number 127 using dummy_hcd
[  710.560637][   T10] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  710.580589][T14826] usb 4-1: Using ep0 maxpacket: 32
[  710.588392][T14826] usb 4-1: config 0 has no interfaces?
[  710.600132][T14826] usb 4-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4a
[  710.609309][T14826] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  710.617503][T14826] usb 4-1: Product: syz
[  710.622560][T14826] usb 4-1: Manufacturer: syz
[  710.627277][T14826] usb 4-1: SerialNumber: syz
[  710.633924][T14826] usb 4-1: config 0 descriptor??
[  710.720623][   T10] usb 2-1: Using ep0 maxpacket: 32
[  710.727288][   T10] usb 2-1: config 0 has no interfaces?
[  710.735396][   T10] usb 2-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4a
[  710.745038][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  710.753947][   T10] usb 2-1: Product: syz
[  710.758548][   T10] usb 2-1: Manufacturer: syz
[  710.763212][   T10] usb 2-1: SerialNumber: syz
[  710.769699][   T10] usb 2-1: config 0 descriptor??
[  710.846431][T14826] usb 4-1: USB disconnect, device number 127
[  710.853934][ T5923] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  711.030676][ T5923] usb 3-1: Using ep0 maxpacket: 32
[  711.037415][ T5923] usb 3-1: config 0 has an invalid interface number: 196 but max is 0
[  711.046675][ T5923] usb 3-1: config 0 has no interface number 0
[  711.052870][ T5923] usb 3-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  711.062991][ T5923] usb 3-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  711.073095][ T5923] usb 3-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  711.083110][ T5923] usb 3-1: config 0 interface 196 has no altsetting 0
[  711.091959][ T5923] usb 3-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[  711.101137][ T5923] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  711.109133][ T5923] usb 3-1: Product: syz
[  711.113371][ T5923] usb 3-1: Manufacturer: syz
[  711.117990][ T5923] usb 3-1: SerialNumber: syz
[  711.124499][ T5923] usb 3-1: config 0 descriptor??
[  711.131212][T16849] raw-gadget.3 gadget.2: fail, usb_ep_enable returned -22
[  711.502485][T16853] can0: slcan on ptm0.
[  711.515625][T16853] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3115'.
[  711.562053][T16852] can0 (unregistered): slcan off ptm0.
[  711.753853][T16858] FAULT_INJECTION: forcing a failure.
[  711.753853][T16858] name failslab, interval 1, probability 0, space 0, times 0
[  711.768444][T16858] CPU: 0 UID: 0 PID: 16858 Comm: syz.3.3116 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  711.768473][T16858] Tainted: [L]=SOFTLOCKUP
[  711.768481][T16858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  711.768491][T16858] Call Trace:
[  711.768499][T16858]  <TASK>
[  711.768507][T16858]  dump_stack_lvl+0xe8/0x150
[  711.768540][T16858]  should_fail_ex+0x412/0x560
[  711.768567][T16858]  should_failslab+0xa8/0x100
[  711.768589][T16858]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  711.768617][T16858]  ? dup_task_struct+0x52/0x840
[  711.768648][T16858]  dup_task_struct+0x52/0x840
[  711.768674][T16858]  ? _raw_spin_unlock_irq+0x23/0x50
[  711.768714][T16858]  copy_process+0x89b/0x4430
[  711.768768][T16858]  ? __pfx_copy_process+0x10/0x10
[  711.768802][T16858]  ? mutex_init_lockdep+0xdf/0x110
[  711.768825][T16858]  vhost_task_create+0x1f9/0x380
[  711.768848][T16858]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  711.768869][T16858]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  711.768891][T16858]  ? __pfx_vhost_task_create+0x10/0x10
[  711.768921][T16858]  ? __pfx_vhost_task_fn+0x10/0x10
[  711.768951][T16858]  ? __lock_acquire+0x6b5/0x2cf0
[  711.768985][T16858]  kvm_mmu_post_init_vm+0x14c/0x300
[  711.769011][T16858]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  711.769041][T16858]  ? __mutex_trylock_common+0x158/0x260
[  711.769064][T16858]  ? __pfx___mutex_trylock_common+0x10/0x10
[  711.769085][T16858]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  711.769108][T16858]  ? register_lock_class+0x31/0x2e0
[  711.769136][T16858]  ? __lock_acquire+0x6b5/0x2cf0
[  711.769168][T16858]  ? kasan_quarantine_put+0xbb/0x1f0
[  711.769195][T16858]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  711.769223][T16858]  ? do_raw_write_lock+0x11d/0x260
[  711.769261][T16858]  kvm_vcpu_ioctl+0xa62/0xfd0
[  711.769287][T16858]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  711.769317][T16858]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  711.769355][T16858]  ? __fget_files+0x2a/0x420
[  711.769382][T16858]  ? __fget_files+0x2a/0x420
[  711.769404][T16858]  ? __fget_files+0x3a0/0x420
[  711.769425][T16858]  ? __fget_files+0x2a/0x420
[  711.769452][T16858]  ? bpf_lsm_file_ioctl+0x9/0x20
[  711.769471][T16858]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  711.769491][T16858]  __se_sys_ioctl+0xfc/0x170
[  711.769512][T16858]  do_syscall_64+0x14d/0xf80
[  711.769527][T16858]  ? trace_irq_disable+0x3b/0x150
[  711.769547][T16858]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  711.769565][T16858]  ? clear_bhb_loop+0x40/0x90
[  711.769583][T16858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  711.769599][T16858] RIP: 0033:0x7fe5c079c799
[  711.769617][T16858] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  711.769631][T16858] RSP: 002b:00007fe5c15ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  711.769649][T16858] RAX: ffffffffffffffda RBX: 00007fe5c0a15fa0 RCX: 00007fe5c079c799
[  711.769663][T16858] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  711.769674][T16858] RBP: 00007fe5c15ef090 R08: 0000000000000000 R09: 0000000000000000
[  711.769685][T16858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  711.769706][T16858] R13: 00007fe5c0a16038 R14: 00007fe5c0a15fa0 R15: 00007ffc8f5356d8
[  711.769734][T16858]  </TASK>
[  712.097390][ T5923] ipheth 3-1:0.196: ipheth_enable_ncm: usb_control_msg: -110
[  712.114452][ T5923] ipheth 3-1:0.196: Apple iPhone USB Ethernet device attached
[  712.127465][T16862] tmpfs: Unknown parameter '€'
[  712.205708][ T5841] Bluetooth: hci1: command 0x2016 tx timeout
[  712.731058][ T5923] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  712.787163][ T5923] hid-generic 0000:0000:0000.001F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  713.056178][T16893] FAULT_INJECTION: forcing a failure.
[  713.056178][T16893] name failslab, interval 1, probability 0, space 0, times 0
[  713.069182][T16893] CPU: 0 UID: 0 PID: 16893 Comm: syz.0.3121 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  713.069212][T16893] Tainted: [L]=SOFTLOCKUP
[  713.069219][T16893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  713.069230][T16893] Call Trace:
[  713.069238][T16893]  <TASK>
[  713.069247][T16893]  dump_stack_lvl+0xe8/0x150
[  713.069281][T16893]  should_fail_ex+0x412/0x560
[  713.069306][T16893]  should_failslab+0xa8/0x100
[  713.069323][T16893]  ? dst_alloc+0x105/0x170
[  713.069344][T16893]  kmem_cache_alloc_noprof+0x87/0x650
[  713.069375][T16893]  dst_alloc+0x105/0x170
[  713.069399][T16893]  ip_route_output_key_hash_rcu+0x14d0/0x25e0
[  713.069428][T16893]  ? ip_route_output_key_hash+0xd8/0x2a0
[  713.069447][T16893]  ip_route_output_key_hash+0x18d/0x2a0
[  713.069465][T16893]  ? ns_capable+0x89/0xe0
[  713.069493][T16893]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  713.069511][T16893]  ? __sock_cmsg_send+0x450/0x9f0
[  713.069545][T16893]  ip_route_output_flow+0x2a/0x150
[  713.069569][T16893]  ? security_sk_classify_flow+0x6d/0x150
[  713.069594][T16893]  udp_sendmsg+0x141a/0x21a0
[  713.069629][T16893]  ? __pfx_udp_sendmsg+0x10/0x10
[  713.069659][T16893]  ? tomoyo_supervisor+0x4cb/0x1570
[  713.069707][T16893]  ? get_random_u32+0x497/0x8b0
[  713.069859][T16893]  ? lockdep_hardirqs_on+0x7a/0x110
[  713.069886][T16893]  ? get_random_u32+0x13a/0x8b0
[  713.069912][T16893]  ? get_random_u32+0x4ce/0x8b0
[  713.069947][T16893]  udpv6_sendmsg+0x996/0x25c0
[  713.069979][T16893]  ? __lock_acquire+0x6b5/0x2cf0
[  713.070007][T16893]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  713.070028][T16893]  ? udp_lib_get_port+0x168d/0x1b70
[  713.070074][T16893]  ? inet_send_prepare+0x1b9/0x270
[  713.070093][T16893]  ? inet_send_prepare+0x1b9/0x270
[  713.070124][T16893]  ? inet_send_prepare+0x1b9/0x270
[  713.070141][T16893]  ? __local_bh_enable_ip+0xd0/0x130
[  713.070167][T16893]  ? inet_send_prepare+0x1b9/0x270
[  713.070190][T16893]  ? inet6_sendmsg+0xe4/0x120
[  713.070212][T16893]  ? __pfx_inet6_sendmsg+0x10/0x10
[  713.070229][T16893]  sock_sendmsg_nosec+0x90/0x150
[  713.070255][T16893]  ____sys_sendmsg+0x589/0x8c0
[  713.070283][T16893]  ? __pfx_____sys_sendmsg+0x10/0x10
[  713.070308][T16893]  ? import_iovec+0x73/0xa0
[  713.070332][T16893]  ___sys_sendmsg+0x2a5/0x360
[  713.070355][T16893]  ? __pfx____sys_sendmsg+0x10/0x10
[  713.070403][T16893]  ? __fget_files+0x2a/0x420
[  713.070424][T16893]  ? __fget_files+0x3a0/0x420
[  713.070457][T16893]  __x64_sys_sendmsg+0x1bd/0x2a0
[  713.070478][T16893]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  713.070502][T16893]  ? __pfx_ksys_write+0x10/0x10
[  713.070528][T16893]  do_syscall_64+0x14d/0xf80
[  713.070543][T16893]  ? trace_irq_disable+0x3b/0x150
[  713.070562][T16893]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.070579][T16893]  ? clear_bhb_loop+0x40/0x90
[  713.070600][T16893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.070618][T16893] RIP: 0033:0x7fba0f19c799
[  713.070634][T16893] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  713.070648][T16893] RSP: 002b:00007fba0ff82028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  713.070666][T16893] RAX: ffffffffffffffda RBX: 00007fba0f415fa0 RCX: 00007fba0f19c799
[  713.070680][T16893] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  713.070692][T16893] RBP: 00007fba0ff82090 R08: 0000000000000000 R09: 0000000000000000
[  713.070703][T16893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  713.070714][T16893] R13: 00007fba0f416038 R14: 00007fba0f415fa0 R15: 00007fffe07389a8
[  713.070744][T16893]  </TASK>
[  713.462840][ T5905] usb 2-1: USB disconnect, device number 7
[  713.610597][   T10] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  713.620098][ T5898] usb 3-1: USB disconnect, device number 20
[  713.697331][T16918] FAULT_INJECTION: forcing a failure.
[  713.697331][T16918] name failslab, interval 1, probability 0, space 0, times 0
[  713.728059][T16918] CPU: 1 UID: 0 PID: 16918 Comm: syz.2.3124 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  713.728091][T16918] Tainted: [L]=SOFTLOCKUP
[  713.728099][T16918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  713.728111][T16918] Call Trace:
[  713.728118][T16918]  <TASK>
[  713.728127][T16918]  dump_stack_lvl+0xe8/0x150
[  713.728159][T16918]  should_fail_ex+0x412/0x560
[  713.728180][T16918]  should_failslab+0xa8/0x100
[  713.728200][T16918]  __kmalloc_noprof+0xe8/0x760
[  713.728223][T16918]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  713.728253][T16918]  tomoyo_realpath_from_path+0xe3/0x5d0
[  713.728290][T16918]  ? tomoyo_path_number_perm+0x219/0x630
[  713.728313][T16918]  tomoyo_path_number_perm+0x246/0x630
[  713.728338][T16918]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  713.728363][T16918]  ? __lock_acquire+0x6b5/0x2cf0
[  713.728397][T16918]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  713.728434][T16918]  ? __fget_files+0x2a/0x420
[  713.728460][T16918]  ? __fget_files+0x2a/0x420
[  713.728481][T16918]  ? __fget_files+0x3a0/0x420
[  713.728503][T16918]  ? __fget_files+0x2a/0x420
[  713.728530][T16918]  security_file_ioctl+0xc3/0x2a0
[  713.728552][T16918]  __se_sys_ioctl+0x47/0x170
[  713.728574][T16918]  do_syscall_64+0x14d/0xf80
[  713.728589][T16918]  ? trace_irq_disable+0x3b/0x150
[  713.728603][ T5898] ipheth 3-1:0.196: Apple iPhone USB Ethernet now disconnected
[  713.728609][T16918]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.728627][T16918]  ? clear_bhb_loop+0x40/0x90
[  713.728646][T16918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.728660][T16918] RIP: 0033:0x7f287c19c799
[  713.728675][T16918] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  713.728689][T16918] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  713.728709][T16918] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  713.728723][T16918] RDX: 0000200000000300 RSI: 0000000080a86f3d RDI: 0000000000000003
[  713.728735][T16918] RBP: 00007f287d02e090 R08: 0000000000000000 R09: 0000000000000000
[  713.728747][T16918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  713.728757][T16918] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  713.728784][T16918]  </TASK>
[  713.728807][T16918] ERROR: Out of memory at tomoyo_realpath_from_path.
[  713.872546][   T10] usb 4-1: unable to get BOS descriptor or descriptor too short
[  713.980088][   T10] usb 4-1: not running at top speed; connect to a high speed hub
[  714.002478][   T10] usb 4-1: config 7 has an invalid interface number: 12 but max is 0
[  714.010972][   T10] usb 4-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  714.022746][   T10] usb 4-1: config 7 has no interface number 0
[  714.031062][ T5905] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  714.042024][   T10] usb 4-1: New USB device found, idVendor=045e, idProduct=044d, bcdDevice=db.e9
[  714.051620][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  714.062098][   T10] usb 4-1: Product: syz
[  714.066306][   T10] usb 4-1: Manufacturer: syz
[  714.071468][   T10] usb 4-1: SerialNumber: syz
[  714.098596][ T5841] Bluetooth: hci1: unexpected event for opcode 0x0c46
[  714.215893][ T5905] usb 2-1: New USB device found, idVendor=2304, idProduct=023e, bcdDevice=d7.69
[  714.226802][ T5905] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  714.236567][ T5905] usb 2-1: Product: syz
[  714.241264][ T5905] usb 2-1: Manufacturer: syz
[  714.245932][ T5905] usb 2-1: SerialNumber: syz
[  714.254355][ T5905] usb 2-1: config 0 descriptor??
[  714.281924][ T5905] hub 2-1:0.0: bad descriptor, ignoring hub
[  714.300142][ T5905] hub 2-1:0.0: probe with driver hub failed with error -5
[  714.344781][T16937] FAULT_INJECTION: forcing a failure.
[  714.344781][T16937] name failslab, interval 1, probability 0, space 0, times 0
[  714.370686][T16937] CPU: 1 UID: 0 PID: 16937 Comm: syz.2.3128 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  714.370719][T16937] Tainted: [L]=SOFTLOCKUP
[  714.370725][T16937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  714.370737][T16937] Call Trace:
[  714.370745][T16937]  <TASK>
[  714.370754][T16937]  dump_stack_lvl+0xe8/0x150
[  714.370786][T16937]  should_fail_ex+0x412/0x560
[  714.370813][T16937]  should_failslab+0xa8/0x100
[  714.370835][T16937]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  714.370864][T16937]  ? dup_task_struct+0x52/0x840
[  714.370897][T16937]  dup_task_struct+0x52/0x840
[  714.370922][T16937]  ? _raw_spin_unlock_irq+0x23/0x50
[  714.370951][T16937]  copy_process+0x89b/0x4430
[  714.371008][T16937]  ? __pfx_copy_process+0x10/0x10
[  714.371041][T16937]  ? mutex_init_lockdep+0xdf/0x110
[  714.371064][T16937]  vhost_task_create+0x1f9/0x380
[  714.371087][T16937]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  714.371106][T16937]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  714.371128][T16937]  ? __pfx_vhost_task_create+0x10/0x10
[  714.371180][T16937]  ? __pfx_vhost_task_fn+0x10/0x10
[  714.371208][T16937]  ? __lock_acquire+0x6b5/0x2cf0
[  714.371237][T16937]  kvm_mmu_post_init_vm+0x14c/0x300
[  714.371263][T16937]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  714.371295][T16937]  ? __mutex_trylock_common+0x158/0x260
[  714.371319][T16937]  ? __pfx___mutex_trylock_common+0x10/0x10
[  714.371340][T16937]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  714.371363][T16937]  ? register_lock_class+0x31/0x2e0
[  714.371392][T16937]  ? __lock_acquire+0x6b5/0x2cf0
[  714.371426][T16937]  ? kasan_quarantine_put+0xbb/0x1f0
[  714.371455][T16937]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  714.371483][T16937]  ? do_raw_write_lock+0x11d/0x260
[  714.371521][T16937]  kvm_vcpu_ioctl+0xa62/0xfd0
[  714.371547][T16937]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  714.371565][T16937]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  714.371611][T16937]  ? __fget_files+0x2a/0x420
[  714.371638][T16937]  ? __fget_files+0x2a/0x420
[  714.371660][T16937]  ? __fget_files+0x3a0/0x420
[  714.371682][T16937]  ? __fget_files+0x2a/0x420
[  714.371708][T16937]  ? bpf_lsm_file_ioctl+0x9/0x20
[  714.371727][T16937]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  714.371748][T16937]  __se_sys_ioctl+0xfc/0x170
[  714.371770][T16937]  do_syscall_64+0x14d/0xf80
[  714.371786][T16937]  ? trace_irq_disable+0x3b/0x150
[  714.371807][T16937]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  714.371826][T16937]  ? clear_bhb_loop+0x40/0x90
[  714.371849][T16937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  714.371867][T16937] RIP: 0033:0x7f287c19c799
[  714.371886][T16937] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  714.371902][T16937] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  714.371921][T16937] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  714.371935][T16937] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  714.371946][T16937] RBP: 00007f287d02e090 R08: 0000000000000000 R09: 0000000000000000
[  714.371957][T16937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  714.371968][T16937] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  714.371998][T16937]  </TASK>
[  714.733483][ T5905] dvb-usb: found a 'Pinnacle PCTV Hybrid Stick Solo' in warm state.
[  714.750208][ T5905] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  714.777879][ T5905] dvbdev: DVB: registering new adapter (Pinnacle PCTV Hybrid Stick Solo)
[  714.810251][ T5905] usb 2-1: media controller created
[  714.842724][   T10] usb 4-1: USB disconnect, device number 2
[  714.890312][ T5905] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  714.977372][ T5905] DVB: Unable to find symbol dib7000p_attach()
[  714.996866][ T5905] dvb-usb: no frontend was attached by 'Pinnacle PCTV Hybrid Stick Solo'
[  715.090508][ T5905] rc_core: IR keymap rc-dib0700-rc5 not found
[  715.099586][ T5905] Registered IR keymap rc-empty
[  715.109997][ T5905] dvb-usb: could not initialize remote control.
[  715.119877][ T5905] dvb-usb: Pinnacle PCTV Hybrid Stick Solo successfully initialized and connected.
[  715.205507][ T5905] usb 2-1: USB disconnect, device number 8
[  715.277818][ T5905] dvb-usb: Pinnacle PCTV Hybrid Stick Solo successfully deinitialized and disconnected.
[  715.765516][T16963] FAULT_INJECTION: forcing a failure.
[  715.765516][T16963] name failslab, interval 1, probability 0, space 0, times 0
[  715.778242][T16963] CPU: 1 UID: 0 PID: 16963 Comm: syz.1.3133 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  715.778271][T16963] Tainted: [L]=SOFTLOCKUP
[  715.778276][T16963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  715.778282][T16963] Call Trace:
[  715.778290][T16963]  <TASK>
[  715.778296][T16963]  dump_stack_lvl+0xe8/0x150
[  715.778318][T16963]  should_fail_ex+0x412/0x560
[  715.778334][T16963]  should_failslab+0xa8/0x100
[  715.778347][T16963]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  715.778370][T16963]  ? dup_task_struct+0x52/0x840
[  715.778389][T16963]  dup_task_struct+0x52/0x840
[  715.778402][T16963]  ? _raw_spin_unlock_irq+0x23/0x50
[  715.778420][T16963]  copy_process+0x89b/0x4430
[  715.778450][T16963]  ? __pfx_copy_process+0x10/0x10
[  715.778468][T16963]  ? mutex_init_lockdep+0xdf/0x110
[  715.778481][T16963]  vhost_task_create+0x1f9/0x380
[  715.778494][T16963]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  715.778505][T16963]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  715.778517][T16963]  ? __pfx_vhost_task_create+0x10/0x10
[  715.778533][T16963]  ? __pfx_vhost_task_fn+0x10/0x10
[  715.778549][T16963]  ? __lock_acquire+0x6b5/0x2cf0
[  715.778566][T16963]  kvm_mmu_post_init_vm+0x14c/0x300
[  715.778581][T16963]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  715.778599][T16963]  ? __mutex_trylock_common+0x158/0x260
[  715.778611][T16963]  ? __pfx___mutex_trylock_common+0x10/0x10
[  715.778622][T16963]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  715.778634][T16963]  ? register_lock_class+0x31/0x2e0
[  715.778650][T16963]  ? __lock_acquire+0x6b5/0x2cf0
[  715.778668][T16963]  ? kasan_quarantine_put+0xbb/0x1f0
[  715.778684][T16963]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  715.778700][T16963]  ? do_raw_write_lock+0x11d/0x260
[  715.778720][T16963]  kvm_vcpu_ioctl+0xa62/0xfd0
[  715.778734][T16963]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  715.778743][T16963]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  715.778763][T16963]  ? __fget_files+0x2a/0x420
[  715.778777][T16963]  ? __fget_files+0x2a/0x420
[  715.778789][T16963]  ? __fget_files+0x3a0/0x420
[  715.778800][T16963]  ? __fget_files+0x2a/0x420
[  715.778814][T16963]  ? bpf_lsm_file_ioctl+0x9/0x20
[  715.778825][T16963]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  715.778836][T16963]  __se_sys_ioctl+0xfc/0x170
[  715.778848][T16963]  do_syscall_64+0x14d/0xf80
[  715.778860][T16963]  ? trace_irq_disable+0x3b/0x150
[  715.778873][T16963]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  715.778883][T16963]  ? clear_bhb_loop+0x40/0x90
[  715.778895][T16963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  715.778905][T16963] RIP: 0033:0x7f61ded9c799
[  715.778917][T16963] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  715.778925][T16963] RSP: 002b:00007f61dcff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  715.778937][T16963] RAX: ffffffffffffffda RBX: 00007f61df015fa0 RCX: 00007f61ded9c799
[  715.778945][T16963] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  715.778951][T16963] RBP: 00007f61dcff6090 R08: 0000000000000000 R09: 0000000000000000
[  715.778958][T16963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  715.778964][T16963] R13: 00007f61df016038 R14: 00007f61df015fa0 R15: 00007ffcecb5e998
[  715.778979][T16963]  </TASK>
[  716.187818][T16965] netlink: 'syz.1.3134': attribute type 21 has an invalid length.
[  716.196079][T16965] netlink: 164 bytes leftover after parsing attributes in process `syz.1.3134'.
[  716.240636][T14826] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  716.350570][ T5841] Bluetooth: hci1: command 0x2016 tx timeout
[  716.389984][ T5846] Bluetooth: hci0: unexpected event for opcode 0x0c46
[  716.390681][T14826] usb 4-1: Using ep0 maxpacket: 32
[  716.412725][T14826] usb 4-1: config 0 has an invalid interface number: 196 but max is 0
[  716.421020][T14826] usb 4-1: config 0 has no interface number 0
[  716.427177][T14826] usb 4-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  716.437610][T14826] usb 4-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  716.447826][T14826] usb 4-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  716.460519][T14826] usb 4-1: config 0 interface 196 has no altsetting 0
[  716.470869][T14826] usb 4-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[  716.480746][T14826] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  716.488886][T14826] usb 4-1: Product: syz
[  716.494562][T14826] usb 4-1: Manufacturer: syz
[  716.504403][T14826] usb 4-1: SerialNumber: syz
[  716.531167][T14826] usb 4-1: config 0 descriptor??
[  716.536821][T16961] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  716.646894][T16978] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  716.979333][T16986] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  717.070655][ T5923] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  717.096759][T16988] FAULT_INJECTION: forcing a failure.
[  717.096759][T16988] name failslab, interval 1, probability 0, space 0, times 0
[  717.109687][T16988] CPU: 1 UID: 0 PID: 16988 Comm: syz.0.3142 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  717.109718][T16988] Tainted: [L]=SOFTLOCKUP
[  717.109729][T16988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  717.109740][T16988] Call Trace:
[  717.109748][T16988]  <TASK>
[  717.109756][T16988]  dump_stack_lvl+0xe8/0x150
[  717.109790][T16988]  should_fail_ex+0x412/0x560
[  717.109817][T16988]  should_failslab+0xa8/0x100
[  717.109839][T16988]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  717.109867][T16988]  ? dup_task_struct+0x52/0x840
[  717.109900][T16988]  dup_task_struct+0x52/0x840
[  717.109925][T16988]  ? _raw_spin_unlock_irq+0x23/0x50
[  717.109955][T16988]  copy_process+0x89b/0x4430
[  717.110012][T16988]  ? __pfx_copy_process+0x10/0x10
[  717.110046][T16988]  ? mutex_init_lockdep+0xdf/0x110
[  717.110070][T16988]  vhost_task_create+0x1f9/0x380
[  717.110092][T16988]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  717.110113][T16988]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  717.110133][T16988]  ? __pfx_vhost_task_create+0x10/0x10
[  717.110163][T16988]  ? __pfx_vhost_task_fn+0x10/0x10
[  717.110192][T16988]  ? __lock_acquire+0x6b5/0x2cf0
[  717.110225][T16988]  kvm_mmu_post_init_vm+0x14c/0x300
[  717.110250][T16988]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  717.110281][T16988]  ? __mutex_trylock_common+0x158/0x260
[  717.110304][T16988]  ? __pfx___mutex_trylock_common+0x10/0x10
[  717.110324][T16988]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  717.110345][T16988]  ? register_lock_class+0x31/0x2e0
[  717.110374][T16988]  ? __lock_acquire+0x6b5/0x2cf0
[  717.110406][T16988]  ? kasan_quarantine_put+0xbb/0x1f0
[  717.110432][T16988]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  717.110457][T16988]  ? do_raw_write_lock+0x11d/0x260
[  717.110492][T16988]  kvm_vcpu_ioctl+0xa62/0xfd0
[  717.110518][T16988]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  717.110535][T16988]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  717.110573][T16988]  ? __fget_files+0x2a/0x420
[  717.110599][T16988]  ? __fget_files+0x2a/0x420
[  717.110620][T16988]  ? __fget_files+0x3a0/0x420
[  717.110642][T16988]  ? __fget_files+0x2a/0x420
[  717.110668][T16988]  ? bpf_lsm_file_ioctl+0x9/0x20
[  717.110695][T16988]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  717.110715][T16988]  __se_sys_ioctl+0xfc/0x170
[  717.110737][T16988]  do_syscall_64+0x14d/0xf80
[  717.110754][T16988]  ? trace_irq_disable+0x3b/0x150
[  717.110774][T16988]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.110793][T16988]  ? clear_bhb_loop+0x40/0x90
[  717.110816][T16988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.110835][T16988] RIP: 0033:0x7fba0f19c799
[  717.110853][T16988] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  717.110885][T16988] RSP: 002b:00007fba0ff82028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  717.110906][T16988] RAX: ffffffffffffffda RBX: 00007fba0f415fa0 RCX: 00007fba0f19c799
[  717.110920][T16988] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  717.110932][T16988] RBP: 00007fba0ff82090 R08: 0000000000000000 R09: 0000000000000000
[  717.110943][T16988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  717.110955][T16988] R13: 00007fba0f416038 R14: 00007fba0f415fa0 R15: 00007fffe07389a8
[  717.110984][T16988]  </TASK>
[  717.453081][T14826] ipheth 4-1:0.196: ipheth_enable_ncm: usb_control_msg: -110
[  717.468975][T14826] ipheth 4-1:0.196: Apple iPhone USB Ethernet device attached
[  717.501772][ T5923] usb 2-1: device descriptor read/64, error -71
[  717.740533][ T5923] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  717.873151][ T5923] usb 2-1: device descriptor read/64, error -71
[  717.962733][ T5506] ipheth 4-1:0.196: ipheth_rx_submit: usb_submit_urb: -90
[  717.982249][ T5923] usb usb2-port1: attempt power cycle
[  718.330531][ T5923] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  718.361389][ T5923] usb 2-1: device descriptor read/8, error -71
[  718.610562][ T5923] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  718.630991][ T5923] usb 2-1: device descriptor read/8, error -71
[  718.751016][ T5923] usb usb2-port1: unable to enumerate USB device
[  718.945744][ T5923] usb 4-1: USB disconnect, device number 3
[  718.999279][T17013] fuse: Bad value for 'rootmode'
[  719.011112][ T5923] ipheth 4-1:0.196: Apple iPhone USB Ethernet now disconnected
[  719.194989][T17027] FAULT_INJECTION: forcing a failure.
[  719.194989][T17027] name failslab, interval 1, probability 0, space 0, times 0
[  719.218465][T17027] CPU: 0 UID: 0 PID: 17027 Comm: syz.3.3146 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  719.218497][T17027] Tainted: [L]=SOFTLOCKUP
[  719.218504][T17027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  719.218515][T17027] Call Trace:
[  719.218523][T17027]  <TASK>
[  719.218540][T17027]  dump_stack_lvl+0xe8/0x150
[  719.218573][T17027]  should_fail_ex+0x412/0x560
[  719.218599][T17027]  should_failslab+0xa8/0x100
[  719.218620][T17027]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  719.218649][T17027]  ? dup_task_struct+0x52/0x840
[  719.218678][T17027]  dup_task_struct+0x52/0x840
[  719.218704][T17027]  ? _raw_spin_unlock_irq+0x23/0x50
[  719.218733][T17027]  copy_process+0x89b/0x4430
[  719.218789][T17027]  ? __pfx_copy_process+0x10/0x10
[  719.218821][T17027]  ? mutex_init_lockdep+0xdf/0x110
[  719.218842][T17027]  vhost_task_create+0x1f9/0x380
[  719.218862][T17027]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  719.218884][T17027]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  719.218902][T17027]  ? __pfx_vhost_task_create+0x10/0x10
[  719.218930][T17027]  ? __pfx_vhost_task_fn+0x10/0x10
[  719.218957][T17027]  ? __lock_acquire+0x6b5/0x2cf0
[  719.218988][T17027]  kvm_mmu_post_init_vm+0x14c/0x300
[  719.219010][T17027]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  719.219040][T17027]  ? __mutex_trylock_common+0x158/0x260
[  719.219063][T17027]  ? __pfx___mutex_trylock_common+0x10/0x10
[  719.219083][T17027]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  719.219106][T17027]  ? register_lock_class+0x31/0x2e0
[  719.219136][T17027]  ? __lock_acquire+0x6b5/0x2cf0
[  719.219170][T17027]  ? kasan_quarantine_put+0xbb/0x1f0
[  719.219221][T17027]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  719.219250][T17027]  ? do_raw_write_lock+0x11d/0x260
[  719.219289][T17027]  kvm_vcpu_ioctl+0xa62/0xfd0
[  719.219316][T17027]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  719.219334][T17027]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  719.219373][T17027]  ? __fget_files+0x2a/0x420
[  719.219400][T17027]  ? __fget_files+0x2a/0x420
[  719.219422][T17027]  ? __fget_files+0x3a0/0x420
[  719.219445][T17027]  ? __fget_files+0x2a/0x420
[  719.219472][T17027]  ? bpf_lsm_file_ioctl+0x9/0x20
[  719.219491][T17027]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  719.219512][T17027]  __se_sys_ioctl+0xfc/0x170
[  719.219541][T17027]  do_syscall_64+0x14d/0xf80
[  719.219558][T17027]  ? trace_irq_disable+0x3b/0x150
[  719.219580][T17027]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.219599][T17027]  ? clear_bhb_loop+0x40/0x90
[  719.219622][T17027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.219640][T17027] RIP: 0033:0x7fe5c079c799
[  719.219659][T17027] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  719.219675][T17027] RSP: 002b:00007fe5c15ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  719.219695][T17027] RAX: ffffffffffffffda RBX: 00007fe5c0a16090 RCX: 00007fe5c079c799
[  719.219709][T17027] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  719.219721][T17027] RBP: 00007fe5c15ce090 R08: 0000000000000000 R09: 0000000000000000
[  719.219732][T17027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  719.219743][T17027] R13: 00007fe5c0a16128 R14: 00007fe5c0a16090 R15: 00007ffc8f5356d8
[  719.219774][T17027]  </TASK>
[  719.715161][T17032] FAULT_INJECTION: forcing a failure.
[  719.715161][T17032] name failslab, interval 1, probability 0, space 0, times 0
[  719.742954][T17032] CPU: 1 UID: 0 PID: 17032 Comm: syz.3.3147 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  719.742984][T17032] Tainted: [L]=SOFTLOCKUP
[  719.742990][T17032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  719.743000][T17032] Call Trace:
[  719.743007][T17032]  <TASK>
[  719.743015][T17032]  dump_stack_lvl+0xe8/0x150
[  719.743047][T17032]  should_fail_ex+0x412/0x560
[  719.743072][T17032]  should_failslab+0xa8/0x100
[  719.743093][T17032]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  719.743121][T17032]  ? dup_task_struct+0x52/0x840
[  719.743153][T17032]  dup_task_struct+0x52/0x840
[  719.743178][T17032]  ? _raw_spin_unlock_irq+0x23/0x50
[  719.743207][T17032]  copy_process+0x89b/0x4430
[  719.743258][T17032]  ? __pfx_copy_process+0x10/0x10
[  719.743292][T17032]  ? mutex_init_lockdep+0xdf/0x110
[  719.743314][T17032]  vhost_task_create+0x1f9/0x380
[  719.743337][T17032]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  719.743358][T17032]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  719.743379][T17032]  ? __pfx_vhost_task_create+0x10/0x10
[  719.743408][T17032]  ? __pfx_vhost_task_fn+0x10/0x10
[  719.743435][T17032]  ? __lock_acquire+0x6b5/0x2cf0
[  719.743475][T17032]  kvm_mmu_post_init_vm+0x14c/0x300
[  719.743500][T17032]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  719.743532][T17032]  ? __mutex_trylock_common+0x158/0x260
[  719.743555][T17032]  ? __pfx___mutex_trylock_common+0x10/0x10
[  719.743576][T17032]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  719.743595][T17032]  ? register_lock_class+0x31/0x2e0
[  719.743621][T17032]  ? __lock_acquire+0x6b5/0x2cf0
[  719.743648][T17032]  ? kasan_quarantine_put+0xbb/0x1f0
[  719.743670][T17032]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  719.743695][T17032]  ? do_raw_write_lock+0x11d/0x260
[  719.743727][T17032]  kvm_vcpu_ioctl+0xa62/0xfd0
[  719.743746][T17032]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  719.743760][T17032]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  719.743789][T17032]  ? __fget_files+0x2a/0x420
[  719.743809][T17032]  ? __fget_files+0x2a/0x420
[  719.743826][T17032]  ? __fget_files+0x3a0/0x420
[  719.743842][T17032]  ? __fget_files+0x2a/0x420
[  719.743862][T17032]  ? bpf_lsm_file_ioctl+0x9/0x20
[  719.743877][T17032]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  719.743893][T17032]  __se_sys_ioctl+0xfc/0x170
[  719.743909][T17032]  do_syscall_64+0x14d/0xf80
[  719.743922][T17032]  ? trace_irq_disable+0x3b/0x150
[  719.743938][T17032]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.743954][T17032]  ? clear_bhb_loop+0x40/0x90
[  719.743971][T17032]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.743985][T17032] RIP: 0033:0x7fe5c079c799
[  719.744000][T17032] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  719.744012][T17032] RSP: 002b:00007fe5c15ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  719.744029][T17032] RAX: ffffffffffffffda RBX: 00007fe5c0a15fa0 RCX: 00007fe5c079c799
[  719.744039][T17032] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  719.744048][T17032] RBP: 00007fe5c15ef090 R08: 0000000000000000 R09: 0000000000000000
[  719.744057][T17032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  719.744065][T17032] R13: 00007fe5c0a16038 R14: 00007fe5c0a15fa0 R15: 00007ffc8f5356d8
[  719.744088][T17032]  </TASK>
[  720.480566][ T5923] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  720.620692][ T5884] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  720.630495][ T5923] usb 4-1: Using ep0 maxpacket: 32
[  720.637395][ T5923] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  720.648469][ T5923] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  720.658277][ T5923] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  720.667365][ T5923] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  720.678585][ T5923] usb 4-1: config 0 descriptor??
[  720.687574][ T5923] hub 4-1:0.0: USB hub found
[  720.770529][ T5884] usb 3-1: Using ep0 maxpacket: 32
[  720.778194][ T5884] usb 3-1: unable to get BOS descriptor or descriptor too short
[  720.787160][ T5884] usb 3-1: config 128 has an invalid interface number: 127 but max is 3
[  720.795592][ T5884] usb 3-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  720.806230][ T5884] usb 3-1: config 128 has 1 interface, different from the descriptor's value: 4
[  720.815548][ T5884] usb 3-1: config 128 has no interface number 0
[  720.822109][ T5884] usb 3-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  720.833714][ T5884] usb 3-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0
[  720.860524][ T5884] usb 3-1: config 128 interface 127 has no altsetting 0
[  720.871554][ T5884] usb 3-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  720.882866][ T5884] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  720.895195][ T5884] usb 3-1: Product: syz
[  720.912671][ T5923] hub 4-1:0.0: 1 port detected
[  720.917524][ T5884] usb 3-1: Manufacturer: syz
[  720.922864][ T5884] usb 3-1: SerialNumber: syz
[  721.110632][T14826] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  721.149594][T17046] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  721.161099][T17046] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  721.211646][ T5884] usb 3-1: USB disconnect, device number 21
[  721.237456][ T5839] udevd[5839]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  721.280585][T14826] usb 2-1: Using ep0 maxpacket: 32
[  721.288246][T14826] usb 2-1: config 0 has an invalid interface number: 196 but max is 0
[  721.297073][T14826] usb 2-1: config 0 has no interface number 0
[  721.306266][T14826] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  721.316500][T14826] usb 2-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  721.326862][T14826] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  721.337002][T14826] usb 2-1: config 0 interface 196 has no altsetting 0
[  721.346093][T14826] usb 2-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[  721.355166][T14826] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  721.363452][T14826] usb 2-1: Product: syz
[  721.367644][T14826] usb 2-1: Manufacturer: syz
[  721.372323][T14826] usb 2-1: SerialNumber: syz
[  721.379345][T14826] usb 2-1: config 0 descriptor??
[  721.385058][T17048] raw-gadget.3 gadget.1: fail, usb_ep_enable returned -22
[  721.553817][ T5923] hub 4-1:0.0: activate --> -90
[  721.726876][T17055] syzkaller1: entered promiscuous mode
[  721.736571][T17055] syzkaller1: entered allmulticast mode
[  721.757649][ T1559] usb 4-1: USB disconnect, device number 4
[  721.767491][ T5923] hub 4-1:0.0: hub_ext_port_status failed (err = -71)
[  722.029430][T17065] binder: 17064:17065 ioctl c0306201 200000000680 returned -14
[  722.093073][T17069] futex_wake_op: syz.2.3160 tries to shift op by -1; fix this program
[  722.102426][T17070] futex_wake_op: syz.2.3160 tries to shift op by -1; fix this program
[  722.115441][T14826] ipheth 2-1:0.196: ipheth_enable_ncm: usb_control_msg: 0
[  722.140711][T14826] ipheth 2-1:0.196: Apple iPhone USB Ethernet device attached
[  722.232481][T17072] FAULT_INJECTION: forcing a failure.
[  722.232481][T17072] name failslab, interval 1, probability 0, space 0, times 0
[  722.245391][T17072] CPU: 1 UID: 0 PID: 17072 Comm: syz.2.3161 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  722.245419][T17072] Tainted: [L]=SOFTLOCKUP
[  722.245426][T17072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  722.245437][T17072] Call Trace:
[  722.245445][T17072]  <TASK>
[  722.245453][T17072]  dump_stack_lvl+0xe8/0x150
[  722.245487][T17072]  should_fail_ex+0x412/0x560
[  722.245515][T17072]  should_failslab+0xa8/0x100
[  722.245537][T17072]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  722.245565][T17072]  ? dup_task_struct+0x52/0x840
[  722.245598][T17072]  dup_task_struct+0x52/0x840
[  722.245623][T17072]  ? _raw_spin_unlock_irq+0x23/0x50
[  722.245654][T17072]  copy_process+0x89b/0x4430
[  722.245710][T17072]  ? __pfx_copy_process+0x10/0x10
[  722.245744][T17072]  ? mutex_init_lockdep+0xdf/0x110
[  722.245768][T17072]  vhost_task_create+0x1f9/0x380
[  722.245790][T17072]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  722.245810][T17072]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  722.245831][T17072]  ? __pfx_vhost_task_create+0x10/0x10
[  722.245862][T17072]  ? __pfx_vhost_task_fn+0x10/0x10
[  722.245890][T17072]  ? __lock_acquire+0x6b5/0x2cf0
[  722.245923][T17072]  kvm_mmu_post_init_vm+0x14c/0x300
[  722.245949][T17072]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  722.245980][T17072]  ? __mutex_trylock_common+0x158/0x260
[  722.246003][T17072]  ? __pfx___mutex_trylock_common+0x10/0x10
[  722.246023][T17072]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  722.246045][T17072]  ? register_lock_class+0x31/0x2e0
[  722.246073][T17072]  ? __lock_acquire+0x6b5/0x2cf0
[  722.246107][T17072]  ? kasan_quarantine_put+0xbb/0x1f0
[  722.246135][T17072]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  722.246161][T17072]  ? do_raw_write_lock+0x11d/0x260
[  722.246194][T17072]  kvm_vcpu_ioctl+0xa62/0xfd0
[  722.246218][T17072]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  722.246234][T17072]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  722.246272][T17072]  ? __fget_files+0x2a/0x420
[  722.246296][T17072]  ? __fget_files+0x2a/0x420
[  722.246318][T17072]  ? __fget_files+0x3a0/0x420
[  722.246349][T17072]  ? __fget_files+0x2a/0x420
[  722.246374][T17072]  ? bpf_lsm_file_ioctl+0x9/0x20
[  722.246393][T17072]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  722.246412][T17072]  __se_sys_ioctl+0xfc/0x170
[  722.246433][T17072]  do_syscall_64+0x14d/0xf80
[  722.246449][T17072]  ? trace_irq_disable+0x3b/0x150
[  722.246468][T17072]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.246485][T17072]  ? clear_bhb_loop+0x40/0x90
[  722.246505][T17072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.246522][T17072] RIP: 0033:0x7f287c19c799
[  722.246540][T17072] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  722.246555][T17072] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  722.246576][T17072] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  722.246589][T17072] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  722.246601][T17072] RBP: 00007f287d02e090 R08: 0000000000000000 R09: 0000000000000000
[  722.246612][T17072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  722.246623][T17072] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  722.246657][T17072]  </TASK>
[  722.676298][ T5898] usb 2-1: USB disconnect, device number 13
[  722.761057][ T5898] ipheth 2-1:0.196: Apple iPhone USB Ethernet now disconnected
[  722.892622][T17087] FAULT_INJECTION: forcing a failure.
[  722.892622][T17087] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  722.938368][T17087] CPU: 0 UID: 0 PID: 17087 Comm: syz.2.3165 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  722.938399][T17087] Tainted: [L]=SOFTLOCKUP
[  722.938407][T17087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  722.938418][T17087] Call Trace:
[  722.938425][T17087]  <TASK>
[  722.938433][T17087]  dump_stack_lvl+0xe8/0x150
[  722.938465][T17087]  should_fail_ex+0x412/0x560
[  722.938491][T17087]  _copy_to_user+0x31/0xb0
[  722.938516][T17087]  binder_ioctl_write_read+0x9abf/0xa660
[  722.938579][T17087]  ? stack_trace_save+0xa9/0x100
[  722.938603][T17087]  ? __pfx_binder_ioctl_write_read+0x10/0x10
[  722.938628][T17087]  ? kasan_save_free_info+0x46/0x50
[  722.938653][T17087]  ? __pfx_autoremove_wake_function+0x10/0x10
[  722.938677][T17087]  ? format_decode+0x90/0xe10
[  722.938702][T17087]  ? kasan_save_track+0x4f/0x80
[  722.938727][T17087]  ? kasan_save_track+0x3e/0x80
[  722.938758][T17087]  ? kasan_save_free_info+0x46/0x50
[  722.938779][T17087]  ? __kasan_slab_free+0x5c/0x80
[  722.938812][T17087]  ? binder_debug+0x155/0x1d0
[  722.938843][T17087]  ? __pfx_binder_debug+0x10/0x10
[  722.938867][T17087]  ? do_raw_spin_lock+0x12b/0x2f0
[  722.938903][T17087]  ? _raw_spin_unlock+0x28/0x50
[  722.938928][T17087]  ? binder_get_thread+0x177/0x6d0
[  722.938958][T17087]  binder_ioctl+0x423/0x1b70
[  722.938985][T17087]  ? tomoyo_path_number_perm+0x219/0x630
[  722.939010][T17087]  ? tomoyo_path_number_perm+0x219/0x630
[  722.939037][T17087]  ? do_vfs_ioctl+0x1166/0x1530
[  722.939055][T17087]  ? __pfx_binder_ioctl+0x10/0x10
[  722.939082][T17087]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  722.939112][T17087]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  722.939148][T17087]  ? __fget_files+0x2a/0x420
[  722.939174][T17087]  ? __fget_files+0x2a/0x420
[  722.939196][T17087]  ? __fget_files+0x3a0/0x420
[  722.939218][T17087]  ? __fget_files+0x2a/0x420
[  722.939247][T17087]  ? bpf_lsm_file_ioctl+0x9/0x20
[  722.939265][T17087]  ? __pfx_binder_ioctl+0x10/0x10
[  722.939292][T17087]  __se_sys_ioctl+0xfc/0x170
[  722.939313][T17087]  do_syscall_64+0x14d/0xf80
[  722.939329][T17087]  ? trace_irq_disable+0x3b/0x150
[  722.939350][T17087]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.939370][T17087]  ? clear_bhb_loop+0x40/0x90
[  722.939392][T17087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.939410][T17087] RIP: 0033:0x7f287c19c799
[  722.939428][T17087] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  722.939443][T17087] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  722.939463][T17087] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  722.939476][T17087] RDX: 0000200000000680 RSI: 00000000c0306201 RDI: 0000000000000005
[  722.939489][T17087] RBP: 00007f287d02e090 R08: 0000000000000000 R09: 0000000000000000
[  722.939500][T17087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  722.939511][T17087] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  722.939540][T17087]  </TASK>
[  723.232483][T17087] binder: 17086:17087 ioctl c0306201 200000000680 returned -14
[  723.403622][T17099] netlink: 'syz.2.3167': attribute type 27 has an invalid length.
[  723.721852][T14826] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  723.890529][T14826] usb 4-1: Using ep0 maxpacket: 16
[  723.902154][T14826] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  723.913763][T14826] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  723.925696][T14826] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  723.952888][T14826] usb 4-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  723.981557][T14826] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  724.013196][T14826] usb 4-1: Product: syz
[  724.021606][ T1559] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  724.035065][T14826] usb 4-1: Manufacturer: syz
[  724.060870][T14826] usb 4-1: SerialNumber: syz
[  724.092420][T14826] usb 4-1: config 0 descriptor??
[  724.110563][ T5841] Bluetooth: hci0: command 0x040f tx timeout
[  724.114269][T14826] port100 4-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  724.230484][ T1559] usb 3-1: Using ep0 maxpacket: 32
[  724.249711][ T1559] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  724.261430][T17143] FAULT_INJECTION: forcing a failure.
[  724.261430][T17143] name failslab, interval 1, probability 0, space 0, times 0
[  724.271335][ T1559] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  724.277086][T17143] CPU: 0 UID: 0 PID: 17143 Comm: syz.0.3174 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  724.277115][T17143] Tainted: [L]=SOFTLOCKUP
[  724.277122][T17143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  724.277133][T17143] Call Trace:
[  724.277141][T17143]  <TASK>
[  724.277149][T17143]  dump_stack_lvl+0xe8/0x150
[  724.277183][T17143]  should_fail_ex+0x412/0x560
[  724.277207][T17143]  should_failslab+0xa8/0x100
[  724.277227][T17143]  ? vm_area_alloc+0x24/0x140
[  724.277245][T17143]  kmem_cache_alloc_noprof+0x87/0x650
[  724.277278][T17143]  vm_area_alloc+0x24/0x140
[  724.277296][T17143]  mmap_region+0x10eb/0x2240
[  724.277324][T17143]  ? tomoyo_check_open_permission+0x1d3/0x470
[  724.277354][T17143]  ? __pfx_mmap_region+0x10/0x10
[  724.277380][T17143]  ? __lock_acquire+0x6b5/0x2cf0
[  724.277500][T17143]  ? apparmor_capable+0x126/0x170
[  724.277522][T17143]  ? bpf_lsm_capable+0x9/0x20
[  724.277542][T17143]  ? security_capable+0x7e/0x2c0
[  724.277566][T17143]  ? shmem_mapping+0xd/0x50
[  724.277585][T17143]  ? memfd_check_seals_mmap+0xc5/0x200
[  724.277611][T17143]  do_mmap+0xc39/0x10c0
[  724.277646][T17143]  ? __pfx_do_mmap+0x10/0x10
[  724.277665][T17143]  ? down_write_killable+0x180/0x240
[  724.277689][T17143]  ? __pfx_down_write_killable+0x10/0x10
[  724.277708][T17143]  ? apparmor_mmap_file+0x2da/0x3e0
[  724.277734][T17143]  vm_mmap_pgoff+0x2c9/0x4f0
[  724.277762][T17143]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  724.277785][T17143]  ? __fget_files+0x2a/0x420
[  724.277812][T17143]  ? __fget_files+0x3a0/0x420
[  724.277834][T17143]  ? __fget_files+0x2a/0x420
[  724.277860][T17143]  ksys_mmap_pgoff+0x51e/0x760
[  724.277893][T17143]  do_syscall_64+0x14d/0xf80
[  724.277909][T17143]  ? trace_irq_disable+0x3b/0x150
[  724.277930][T17143]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.277947][T17143]  ? clear_bhb_loop+0x40/0x90
[  724.277969][T17143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.277987][T17143] RIP: 0033:0x7fba0f19c799
[  724.278005][T17143] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  724.278020][T17143] RSP: 002b:00007fba0ff82028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  724.278039][T17143] RAX: ffffffffffffffda RBX: 00007fba0f415fa0 RCX: 00007fba0f19c799
[  724.278059][T17143] RDX: 0000000002000003 RSI: 0000000000000930 RDI: 0000200000000000
[  724.278071][T17143] RBP: 00007fba0ff82090 R08: 0000000000000005 R09: 0000000000004000
[  724.278082][T17143] R10: 0000000000002012 R11: 0000000000000246 R12: 0000000000000001
[  724.278094][T17143] R13: 00007fba0f416038 R14: 00007fba0f415fa0 R15: 00007fffe07389a8
[  724.278122][T17143]  </TASK>
[  724.554945][T17107] binder: 17106:17107 ioctl c0306201 200000000680 returned -14
[  724.573324][  T808] usb 4-1: USB disconnect, device number 5
[  724.598328][ T1559] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  724.607991][ T1559] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  724.632202][ T1559] usb 3-1: config 0 descriptor??
[  724.644844][ T1559] hub 3-1:0.0: USB hub found
[  724.844010][ T1559] hub 3-1:0.0: 1 port detected
[  725.261704][T17151] FAULT_INJECTION: forcing a failure.
[  725.261704][T17151] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  725.275600][T17151] CPU: 0 UID: 0 PID: 17151 Comm: syz.0.3177 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  725.275632][T17151] Tainted: [L]=SOFTLOCKUP
[  725.275640][T17151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  725.275651][T17151] Call Trace:
[  725.275659][T17151]  <TASK>
[  725.275668][T17151]  dump_stack_lvl+0xe8/0x150
[  725.275701][T17151]  should_fail_ex+0x412/0x560
[  725.275727][T17151]  _copy_to_user+0x31/0xb0
[  725.275751][T17151]  simple_read_from_buffer+0xe1/0x170
[  725.275781][T17151]  proc_fail_nth_read+0x1bb/0x230
[  725.275809][T17151]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  725.275835][T17151]  ? rw_verify_area+0x2a6/0x4d0
[  725.275861][T17151]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  725.275886][T17151]  vfs_read+0x20c/0xa70
[  725.275912][T17151]  ? fdget_pos+0x246/0x320
[  725.275939][T17151]  ? __pfx___mutex_lock+0x10/0x10
[  725.275968][T17151]  ? __pfx_vfs_read+0x10/0x10
[  725.275997][T17151]  ? __fget_files+0x2a/0x420
[  725.276024][T17151]  ? __fget_files+0x3a0/0x420
[  725.276046][T17151]  ? __fget_files+0x2a/0x420
[  725.276078][T17151]  ksys_read+0x150/0x270
[  725.276097][T17151]  ? __pfx_ksys_read+0x10/0x10
[  725.276113][T17151]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  725.276142][T17151]  do_syscall_64+0x14d/0xf80
[  725.276158][T17151]  ? trace_irq_disable+0x3b/0x150
[  725.276179][T17151]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.276197][T17151]  ? clear_bhb_loop+0x40/0x90
[  725.276220][T17151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.276239][T17151] RIP: 0033:0x7fba0f15cfce
[  725.276257][T17151] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  725.276273][T17151] RSP: 002b:00007fba0ff81fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  725.276294][T17151] RAX: ffffffffffffffda RBX: 00007fba0ff826c0 RCX: 00007fba0f15cfce
[  725.276308][T17151] RDX: 000000000000000f RSI: 00007fba0ff820a0 RDI: 0000000000000006
[  725.276320][T17151] RBP: 00007fba0ff82090 R08: 0000000000000000 R09: 0000000000000000
[  725.276335][T17151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  725.276346][T17151] R13: 00007fba0f416038 R14: 00007fba0f415fa0 R15: 00007fffe07389a8
[  725.276377][T17151]  </TASK>
[  725.510204][ T1559] hub 3-1:0.0: activate --> -90
[  725.566697][T17157] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3176'.
[  725.750587][ T5884] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  725.767947][T17162] FAULT_INJECTION: forcing a failure.
[  725.767947][T17162] name failslab, interval 1, probability 0, space 0, times 0
[  725.780821][T17162] CPU: 1 UID: 0 PID: 17162 Comm: syz.0.3180 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  725.780841][T17162] Tainted: [L]=SOFTLOCKUP
[  725.780845][T17162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  725.780852][T17162] Call Trace:
[  725.780856][T17162]  <TASK>
[  725.780861][T17162]  dump_stack_lvl+0xe8/0x150
[  725.780882][T17162]  should_fail_ex+0x412/0x560
[  725.780897][T17162]  should_failslab+0xa8/0x100
[  725.780910][T17162]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  725.780928][T17162]  ? dup_task_struct+0x52/0x840
[  725.780947][T17162]  dup_task_struct+0x52/0x840
[  725.780960][T17162]  ? _raw_spin_unlock_irq+0x23/0x50
[  725.780978][T17162]  copy_process+0x89b/0x4430
[  725.781007][T17162]  ? __pfx_copy_process+0x10/0x10
[  725.781025][T17162]  ? mutex_init_lockdep+0xdf/0x110
[  725.781039][T17162]  vhost_task_create+0x1f9/0x380
[  725.781051][T17162]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  725.781063][T17162]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  725.781076][T17162]  ? __pfx_vhost_task_create+0x10/0x10
[  725.781103][T17162]  ? __pfx_vhost_task_fn+0x10/0x10
[  725.781131][T17162]  ? __lock_acquire+0x6b5/0x2cf0
[  725.781160][T17162]  kvm_mmu_post_init_vm+0x14c/0x300
[  725.781175][T17162]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  725.781193][T17162]  ? __mutex_trylock_common+0x158/0x260
[  725.781205][T17162]  ? __pfx___mutex_trylock_common+0x10/0x10
[  725.781216][T17162]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  725.781229][T17162]  ? register_lock_class+0x31/0x2e0
[  725.781244][T17162]  ? __lock_acquire+0x6b5/0x2cf0
[  725.781262][T17162]  ? kasan_quarantine_put+0xbb/0x1f0
[  725.781278][T17162]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  725.781294][T17162]  ? do_raw_write_lock+0x11d/0x260
[  725.781319][T17162]  kvm_vcpu_ioctl+0xa62/0xfd0
[  725.781340][T17162]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  725.781350][T17162]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  725.781369][T17162]  ? __fget_files+0x2a/0x420
[  725.781385][T17162]  ? __fget_files+0x2a/0x420
[  725.781396][T17162]  ? __fget_files+0x3a0/0x420
[  725.781413][T17162]  ? __fget_files+0x2a/0x420
[  725.781427][T17162]  ? bpf_lsm_file_ioctl+0x9/0x20
[  725.781438][T17162]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  725.781449][T17162]  __se_sys_ioctl+0xfc/0x170
[  725.781460][T17162]  do_syscall_64+0x14d/0xf80
[  725.781470][T17162]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.781480][T17162]  ? clear_bhb_loop+0x40/0x90
[  725.781493][T17162]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.781503][T17162] RIP: 0033:0x7fba0f19c799
[  725.781514][T17162] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  725.781524][T17162] RSP: 002b:00007fba0ff82028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  725.781536][T17162] RAX: ffffffffffffffda RBX: 00007fba0f415fa0 RCX: 00007fba0f19c799
[  725.781543][T17162] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  725.781551][T17162] RBP: 00007fba0ff82090 R08: 0000000000000000 R09: 0000000000000000
[  725.781562][T17162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  725.781572][T17162] R13: 00007fba0f416038 R14: 00007fba0f415fa0 R15: 00007fffe07389a8
[  725.781598][T17162]  </TASK>
[  726.131240][ T5923] usb 3-1: USB disconnect, device number 22
[  726.180513][ T5884] usb 2-1: Using ep0 maxpacket: 32
[  726.187205][ T5884] usb 2-1: config 0 has an invalid interface number: 196 but max is 0
[  726.195558][ T5846] Bluetooth: hci0: command 0x040f tx timeout
[  726.202265][ T5884] usb 2-1: config 0 has no interface number 0
[  726.208493][ T5884] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  726.219628][ T5884] usb 2-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  726.231907][ T5884] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  726.243166][ T5884] usb 2-1: config 0 interface 196 has no altsetting 0
[  726.275139][ T5884] usb 2-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[  726.284419][ T5884] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  726.292579][ T5884] usb 2-1: Product: syz
[  726.296755][ T5884] usb 2-1: Manufacturer: syz
[  726.304169][ T5884] usb 2-1: SerialNumber: syz
[  726.313160][ T5884] usb 2-1: config 0 descriptor??
[  726.324713][T17155] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  726.524755][T17173] FAULT_INJECTION: forcing a failure.
[  726.524755][T17173] name failslab, interval 1, probability 0, space 0, times 0
[  726.537718][T17173] CPU: 0 UID: 0 PID: 17173 Comm: syz.3.3185 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  726.537747][T17173] Tainted: [L]=SOFTLOCKUP
[  726.537754][T17173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  726.537764][T17173] Call Trace:
[  726.537770][T17173]  <TASK>
[  726.537778][T17173]  dump_stack_lvl+0xe8/0x150
[  726.537809][T17173]  should_fail_ex+0x412/0x560
[  726.537834][T17173]  should_failslab+0xa8/0x100
[  726.537855][T17173]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  726.537879][T17173]  ? dup_task_struct+0x52/0x840
[  726.537904][T17173]  dup_task_struct+0x52/0x840
[  726.537923][T17173]  ? _raw_spin_unlock_irq+0x23/0x50
[  726.537947][T17173]  copy_process+0x89b/0x4430
[  726.537995][T17173]  ? __pfx_copy_process+0x10/0x10
[  726.538021][T17173]  ? mutex_init_lockdep+0xdf/0x110
[  726.538039][T17173]  vhost_task_create+0x1f9/0x380
[  726.538056][T17173]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  726.538072][T17173]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  726.538088][T17173]  ? __pfx_vhost_task_create+0x10/0x10
[  726.538113][T17173]  ? __pfx_vhost_task_fn+0x10/0x10
[  726.538139][T17173]  ? __lock_acquire+0x6b5/0x2cf0
[  726.538163][T17173]  kvm_mmu_post_init_vm+0x14c/0x300
[  726.538183][T17173]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  726.538207][T17173]  ? __mutex_trylock_common+0x158/0x260
[  726.538224][T17173]  ? __pfx___mutex_trylock_common+0x10/0x10
[  726.538240][T17173]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  726.538263][T17173]  ? register_lock_class+0x31/0x2e0
[  726.538286][T17173]  ? __lock_acquire+0x6b5/0x2cf0
[  726.538311][T17173]  ? kasan_quarantine_put+0xbb/0x1f0
[  726.538333][T17173]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  726.538353][T17173]  ? do_raw_write_lock+0x11d/0x260
[  726.538382][T17173]  kvm_vcpu_ioctl+0xa62/0xfd0
[  726.538406][T17173]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  726.538420][T17173]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  726.538456][T17173]  ? __fget_files+0x2a/0x420
[  726.538476][T17173]  ? __fget_files+0x2a/0x420
[  726.538492][T17173]  ? __fget_files+0x3a0/0x420
[  726.538508][T17173]  ? __fget_files+0x2a/0x420
[  726.538530][T17173]  ? bpf_lsm_file_ioctl+0x9/0x20
[  726.538549][T17173]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  726.538564][T17173]  __se_sys_ioctl+0xfc/0x170
[  726.538580][T17173]  do_syscall_64+0x14d/0xf80
[  726.538593][T17173]  ? trace_irq_disable+0x3b/0x150
[  726.538609][T17173]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.538624][T17173]  ? clear_bhb_loop+0x40/0x90
[  726.538640][T17173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.538654][T17173] RIP: 0033:0x7fe5c079c799
[  726.538669][T17173] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  726.538686][T17173] RSP: 002b:00007fe5c15ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  726.538702][T17173] RAX: ffffffffffffffda RBX: 00007fe5c0a15fa0 RCX: 00007fe5c079c799
[  726.538712][T17173] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  726.538726][T17173] RBP: 00007fe5c15ef090 R08: 0000000000000000 R09: 0000000000000000
[  726.538735][T17173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  726.538743][T17173] R13: 00007fe5c0a16038 R14: 00007fe5c0a15fa0 R15: 00007ffc8f5356d8
[  726.538765][T17173]  </TASK>
[  727.161276][   T24] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  727.172130][ T5884] ipheth 2-1:0.196: ipheth_enable_ncm: usb_control_msg: 0
[  727.187399][ T5884] ipheth 2-1:0.196: Apple iPhone USB Ethernet device attached
[  727.210757][   T10] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  727.350624][   T24] usb 3-1: Using ep0 maxpacket: 16
[  727.360295][   T24] usb 3-1: New USB device found, idVendor=041e, idProduct=4018, bcdDevice=ed.b4
[  727.363537][   T10] usb 4-1: config 36 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  727.369663][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  727.391010][   T10] usb 4-1: config 36 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  727.409961][   T24] usb 3-1: Product: syz
[  727.411461][  T808] usb 2-1: USB disconnect, device number 14
[  727.420175][   T24] usb 3-1: Manufacturer: syz
[  727.423346][   T10] usb 4-1: config 36 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  727.431845][   T24] usb 3-1: SerialNumber: syz
[  727.442455][   T10] usb 4-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=26.29
[  727.457479][   T24] usb 3-1: config 0 descriptor??
[  727.461090][   T10] usb 4-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  727.472748][   T10] usb 4-1: Manufacturer: syz
[  727.482621][   T10] usb 4-1: SerialNumber: syz
[  727.490216][   T24] gspca_main: spca508-2.14.0 probing 041e:4018
[  727.503809][  T808] ipheth 2-1:0.196: Apple iPhone USB Ethernet now disconnected
[  727.512610][T17177] raw-gadget.3 gadget.3: fail, usb_ep_enable returned -22
[  727.692677][   T24] gspca_spca508: reg_read err -32
[  727.702580][   T24] gspca_spca508: reg_read err -32
[  727.738109][   T10] yealink 4-1:36.0: invalid payload size 1024, expected 16
[  727.751780][   T10] input: Yealink usb-p1k as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:36.0/input/input226
[  727.769989][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.777130][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.784117][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.791843][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.798933][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.805921][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.812904][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.819887][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.825014][   T24] gspca_spca508: reg_read err -32
[  727.826881][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  727.838471][    C0] yealink 4-1:36.0: unexpected response 0
[  727.839117][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.852185][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  727.858986][    C0] yealink 4-1:36.0: unexpected response 0
[  727.865046][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.872263][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  727.879050][    C0] yealink 4-1:36.0: unexpected response 0
[  727.885100][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.892361][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  727.899152][    C0] yealink 4-1:36.0: unexpected response 0
[  727.905103][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.912107][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  727.918884][    C0] yealink 4-1:36.0: unexpected response 0
[  727.924881][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.931864][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  727.938648][    C0] yealink 4-1:36.0: unexpected response 0
[  727.945140][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.952418][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  727.959210][    C0] yealink 4-1:36.0: unexpected response 0
[  727.965140][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.972137][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  727.978939][    C0] yealink 4-1:36.0: unexpected response 0
[  727.984961][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  727.991967][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  727.998761][    C0] yealink 4-1:36.0: unexpected response 0
[  728.004909][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.014670][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  728.021475][    C0] yealink 4-1:36.0: unexpected response 0
[  728.027735][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.034851][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  728.041662][    C0] yealink 4-1:36.0: unexpected response 0
[  728.047922][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.055159][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  728.061966][    C0] yealink 4-1:36.0: unexpected response 0
[  728.067900][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.070275][T17175] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  728.074892][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  728.089845][    C0] yealink 4-1:36.0: unexpected response 0
[  728.097840][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.105227][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  728.112012][    C0] yealink 4-1:36.0: unexpected response 0
[  728.118006][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.125047][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  728.131831][    C0] yealink 4-1:36.0: unexpected response 0
[  728.134025][T17175] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  728.138812][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.154128][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  728.160927][    C0] yealink 4-1:36.0: unexpected response 0
[  728.167213][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.176255][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.183259][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.190455][    C0] yealink 4-1:36.0: urb_ctl_callback - urb status -71
[  728.197366][   T10] usb 4-1: USB disconnect, device number 6
[  728.197595][    C0] yealink 4-1:36.0: urb_irq_callback - urb status -71
[  728.197618][    C0] yealink 4-1:36.0: unexpected response 0
[  728.197636][    C0] yealink 4-1:36.0: urb_irq_callback - usb_submit_urb failed -19
[  728.370700][   T24] gspca_spca508: reg_read err -110
[  728.381110][   T24] gspca_spca508: reg write: error -32
[  728.392523][   T24] spca508 3-1:0.0: probe with driver spca508 failed with error -32
[  728.502552][T17209] FAULT_INJECTION: forcing a failure.
[  728.502552][T17209] name failslab, interval 1, probability 0, space 0, times 0
[  728.516202][T17209] CPU: 1 UID: 0 PID: 17209 Comm: syz.3.3190 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  728.516230][T17209] Tainted: [L]=SOFTLOCKUP
[  728.516237][T17209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  728.516246][T17209] Call Trace:
[  728.516253][T17209]  <TASK>
[  728.516260][T17209]  dump_stack_lvl+0xe8/0x150
[  728.516288][T17209]  should_fail_ex+0x412/0x560
[  728.516311][T17209]  should_failslab+0xa8/0x100
[  728.516331][T17209]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  728.516358][T17209]  ? dup_task_struct+0x52/0x840
[  728.516387][T17209]  dup_task_struct+0x52/0x840
[  728.516411][T17209]  ? _raw_spin_unlock_irq+0x23/0x50
[  728.516438][T17209]  copy_process+0x89b/0x4430
[  728.516487][T17209]  ? __pfx_copy_process+0x10/0x10
[  728.516518][T17209]  ? mutex_init_lockdep+0xdf/0x110
[  728.516541][T17209]  vhost_task_create+0x1f9/0x380
[  728.516563][T17209]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  728.516584][T17209]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  728.516603][T17209]  ? __pfx_vhost_task_create+0x10/0x10
[  728.516629][T17209]  ? __pfx_vhost_task_fn+0x10/0x10
[  728.516657][T17209]  ? __lock_acquire+0x6b5/0x2cf0
[  728.516690][T17209]  kvm_mmu_post_init_vm+0x14c/0x300
[  728.516719][T17209]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[  728.516749][T17209]  ? __mutex_trylock_common+0x158/0x260
[  728.516772][T17209]  ? __pfx___mutex_trylock_common+0x10/0x10
[  728.516792][T17209]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  728.516815][T17209]  ? register_lock_class+0x31/0x2e0
[  728.516841][T17209]  ? __lock_acquire+0x6b5/0x2cf0
[  728.516874][T17209]  ? kasan_quarantine_put+0xbb/0x1f0
[  728.516902][T17209]  ? kvm_vcpu_ioctl+0x280/0xfd0
[  728.516927][T17209]  ? do_raw_write_lock+0x11d/0x260
[  728.516965][T17209]  kvm_vcpu_ioctl+0xa62/0xfd0
[  728.516991][T17209]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  728.517009][T17209]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  728.517046][T17209]  ? __fget_files+0x2a/0x420
[  728.517073][T17209]  ? __fget_files+0x2a/0x420
[  728.517095][T17209]  ? __fget_files+0x3a0/0x420
[  728.517116][T17209]  ? __fget_files+0x2a/0x420
[  728.517151][T17209]  ? bpf_lsm_file_ioctl+0x9/0x20
[  728.517170][T17209]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  728.517190][T17209]  __se_sys_ioctl+0xfc/0x170
[  728.517212][T17209]  do_syscall_64+0x14d/0xf80
[  728.517230][T17209]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.517248][T17209]  ? clear_bhb_loop+0x40/0x90
[  728.517271][T17209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.517290][T17209] RIP: 0033:0x7fe5c079c799
[  728.517308][T17209] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  728.517324][T17209] RSP: 002b:00007fe5c15ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  728.517344][T17209] RAX: ffffffffffffffda RBX: 00007fe5c0a15fa0 RCX: 00007fe5c079c799
[  728.517357][T17209] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  728.517368][T17209] RBP: 00007fe5c15ef090 R08: 0000000000000000 R09: 0000000000000000
[  728.517380][T17209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  728.517391][T17209] R13: 00007fe5c0a16038 R14: 00007fe5c0a15fa0 R15: 00007ffc8f5356d8
[  728.517421][T17209]  </TASK>
[  729.067410][ T1559] usb 3-1: USB disconnect, device number 23
[  729.150507][ T5846] Bluetooth: hci0: command 0x040f tx timeout
[  729.236767][T17230] random: crng reseeded on system resumption
[  729.263122][T17230] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  729.272267][T17230] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  729.320624][   T10] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  729.433493][  T808] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  729.482820][   T10] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[  729.491417][   T10] usb 2-1: config 0 has no interface number 0
[  729.497636][   T10] usb 2-1: config 0 interface 184 has no altsetting 0
[  729.508315][   T10] usb 2-1: New USB device found, idVendor=1a0a, idProduct=0104, bcdDevice=75.8f
[  729.523726][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  729.532391][   T10] usb 2-1: Product: syz
[  729.536578][   T10] usb 2-1: Manufacturer: syz
[  729.541227][   T10] usb 2-1: SerialNumber: syz
[  729.549159][   T10] usb 2-1: config 0 descriptor??
[  729.590724][  T808] usb 4-1: Using ep0 maxpacket: 32
[  729.597438][  T808] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  729.608530][  T808] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  729.618678][  T808] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  729.628444][  T808] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  729.641854][  T808] usb 4-1: config 0 descriptor??
[  729.656675][  T808] hub 4-1:0.0: USB hub found
[  729.760561][ T5905] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  729.852831][  T808] hub 4-1:0.0: 1 port detected
[  729.903452][   T10] usb_ehset_test 2-1:0.184: probe with driver usb_ehset_test failed with error -32
[  729.915615][   T10] usb 2-1: USB disconnect, device number 15
[  729.921712][ T5905] usb 3-1: Using ep0 maxpacket: 32
[  729.935523][ T5905] usb 3-1: config 0 has no interfaces?
[  729.945618][ T5905] usb 3-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4a
[  729.955589][ T5905] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  729.965357][ T5905] usb 3-1: Product: syz
[  729.969666][ T5905] usb 3-1: Manufacturer: syz
[  729.975504][ T5905] usb 3-1: SerialNumber: syz
[  729.982689][ T5905] usb 3-1: config 0 descriptor??
[  730.200614][   T10] usb 3-1: USB disconnect, device number 24
[  730.427838][T17244] FAULT_INJECTION: forcing a failure.
[  730.427838][T17244] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  730.441903][T17244] CPU: 1 UID: 0 PID: 17244 Comm: syz.1.3200 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  730.441931][T17244] Tainted: [L]=SOFTLOCKUP
[  730.441937][T17244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  730.441946][T17244] Call Trace:
[  730.441952][T17244]  <TASK>
[  730.441958][T17244]  dump_stack_lvl+0xe8/0x150
[  730.441984][T17244]  should_fail_ex+0x412/0x560
[  730.442003][T17244]  _copy_from_iter+0x1d3/0x1670
[  730.442021][T17244]  ? rcu_is_watching+0x15/0xb0
[  730.442042][T17244]  ? __pfx__copy_from_iter+0x10/0x10
[  730.442063][T17244]  ? netlink_sendmsg+0x650/0xb40
[  730.442083][T17244]  ? skb_put+0x11b/0x210
[  730.442099][T17244]  netlink_sendmsg+0x6c0/0xb40
[  730.442124][T17244]  ? __pfx_netlink_sendmsg+0x10/0x10
[  730.442145][T17244]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  730.442172][T17244]  ? __pfx_netlink_sendmsg+0x10/0x10
[  730.442191][T17244]  sock_sendmsg_nosec+0x112/0x150
[  730.442212][T17244]  ____sys_sendmsg+0x589/0x8c0
[  730.442232][T17244]  ? __pfx_____sys_sendmsg+0x10/0x10
[  730.442252][T17244]  ? import_iovec+0x73/0xa0
[  730.442272][T17244]  ___sys_sendmsg+0x2a5/0x360
[  730.442290][T17244]  ? __pfx____sys_sendmsg+0x10/0x10
[  730.442330][T17244]  ? __fget_files+0x2a/0x420
[  730.442348][T17244]  ? __fget_files+0x3a0/0x420
[  730.442380][T17244]  __x64_sys_sendmsg+0x1bd/0x2a0
[  730.442397][T17244]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  730.442418][T17244]  ? __pfx_ksys_write+0x10/0x10
[  730.442439][T17244]  do_syscall_64+0x14d/0xf80
[  730.442452][T17244]  ? trace_irq_disable+0x3b/0x150
[  730.442469][T17244]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  730.442483][T17244]  ? clear_bhb_loop+0x40/0x90
[  730.442499][T17244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  730.442513][T17244] RIP: 0033:0x7f61ded9c799
[  730.442528][T17244] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  730.442540][T17244] RSP: 002b:00007f61dcff6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  730.442556][T17244] RAX: ffffffffffffffda RBX: 00007f61df015fa0 RCX: 00007f61ded9c799
[  730.442566][T17244] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  730.442575][T17244] RBP: 00007f61dcff6090 R08: 0000000000000000 R09: 0000000000000000
[  730.442584][T17244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  730.442592][T17244] R13: 00007f61df016038 R14: 00007f61df015fa0 R15: 00007ffcecb5e998
[  730.442613][T17244]  </TASK>
[  730.895525][ T1559] usb 4-1: USB disconnect, device number 7
[  730.933971][T17250] 
[  730.936312][T17250] ======================================================
[  730.943319][T17250] WARNING: possible circular locking dependency detected
[  730.950345][T17250] syzkaller #0 Tainted: G             L     
[  730.956314][T17250] ------------------------------------------------------
[  730.963371][T17250] syz.2.3203/17250 is trying to acquire lock:
[  730.969418][T17250] ffff888076f50338 (&mm->mmap_lock){++++}-{4:4}, at: __might_fault+0xaf/0x130
[  730.978357][T17250] 
[  730.978357][T17250] but task is already holding lock:
[  730.985709][T17250] ffff8880590aab30 (&ctx->map_changing_lock){++++}-{4:4}, at: mfill_get_vma+0x162/0x660
[  730.995440][T17250] 
[  730.995440][T17250] which lock already depends on the new lock.
[  730.995440][T17250] 
[  731.005840][T17250] 
[  731.005840][T17250] the existing dependency chain (in reverse order) is:
[  731.014853][T17250] 
[  731.014853][T17250] -> #1 (&ctx->map_changing_lock){++++}-{4:4}:
[  731.023259][T17250]        down_write+0x96/0x200
[  731.028017][T17250]        userfaultfd_unmap_prep+0x24b/0x3e0
[  731.033897][T17250]        vms_gather_munmap_vmas+0x9c6/0x1370
[  731.039867][T17250]        do_vmi_align_munmap+0x2b4/0x4b0
[  731.045489][T17250]        do_vmi_munmap+0x252/0x2d0
[  731.050590][T17250]        mremap_to+0x270/0x850
[  731.055336][T17250]        __se_sys_mremap+0xe6d/0x11d0
[  731.060704][T17250]        do_syscall_64+0x14d/0xf80
[  731.065795][T17250]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.072188][T17250] 
[  731.072188][T17250] -> #0 (&mm->mmap_lock){++++}-{4:4}:
[  731.079733][T17250]        __lock_acquire+0x15a5/0x2cf0
[  731.085093][T17250]        lock_acquire+0xf0/0x2e0
[  731.090016][T17250]        __might_fault+0xcb/0x130
[  731.095027][T17250]        userfaultfd_ioctl+0x2372/0x4c70
[  731.100684][T17250]        __se_sys_ioctl+0xfc/0x170
[  731.105775][T17250]        do_syscall_64+0x14d/0xf80
[  731.110866][T17250]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.117279][T17250] 
[  731.117279][T17250] other info that might help us debug this:
[  731.117279][T17250] 
[  731.127492][T17250]  Possible unsafe locking scenario:
[  731.127492][T17250] 
[  731.134928][T17250]        CPU0                    CPU1
[  731.140350][T17250]        ----                    ----
[  731.145715][T17250]   rlock(&ctx->map_changing_lock);
[  731.150952][T17250]                                lock(&mm->mmap_lock);
[  731.157787][T17250]                                lock(&ctx->map_changing_lock);
[  731.165412][T17250]   rlock(&mm->mmap_lock);
[  731.169810][T17250] 
[  731.169810][T17250]  *** DEADLOCK ***
[  731.169810][T17250] 
[  731.178011][T17250] 2 locks held by syz.2.3203/17250:
[  731.183205][T17250]  #0: ffff88802be5a308 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x1d1/0x500
[  731.192448][T17250]  #1: ffff8880590aab30 (&ctx->map_changing_lock){++++}-{4:4}, at: mfill_get_vma+0x162/0x660
[  731.202615][T17250] 
[  731.202615][T17250] stack backtrace:
[  731.208506][T17250] CPU: 0 UID: 0 PID: 17250 Comm: syz.2.3203 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  731.208533][T17250] Tainted: [L]=SOFTLOCKUP
[  731.208542][T17250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  731.208553][T17250] Call Trace:
[  731.208559][T17250]  <TASK>
[  731.208566][T17250]  dump_stack_lvl+0xe8/0x150
[  731.208587][T17250]  print_circular_bug+0x2e1/0x300
[  731.208602][T17250]  check_noncircular+0x12e/0x150
[  731.208624][T17250]  __lock_acquire+0x15a5/0x2cf0
[  731.208643][T17250]  ? __kernel_text_address+0xd/0x30
[  731.208657][T17250]  ? unwind_get_return_address+0x4d/0x90
[  731.208669][T17250]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  731.208685][T17250]  lock_acquire+0xf0/0x2e0
[  731.208699][T17250]  ? __might_fault+0xaf/0x130
[  731.208716][T17250]  ? __might_fault+0xaf/0x130
[  731.208730][T17250]  __might_fault+0xcb/0x130
[  731.208743][T17250]  ? __might_fault+0xaf/0x130
[  731.208758][T17250]  userfaultfd_ioctl+0x2372/0x4c70
[  731.208774][T17250]  ? __kasan_slab_free+0x5c/0x80
[  731.208783][T17250]  ? kfree+0x1c5/0x650
[  731.208800][T17250]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  731.208819][T17250]  ? kasan_quarantine_put+0xbb/0x1f0
[  731.208836][T17250]  ? tomoyo_path_number_perm+0x219/0x630
[  731.208850][T17250]  ? tomoyo_path_number_perm+0x219/0x630
[  731.208863][T17250]  ? do_vfs_ioctl+0x1166/0x1530
[  731.208875][T17250]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  731.208887][T17250]  ? do_futex+0x333/0x420
[  731.208913][T17250]  ? __fget_files+0x2a/0x420
[  731.208927][T17250]  ? __fget_files+0x2a/0x420
[  731.208941][T17250]  ? __fget_files+0x3a0/0x420
[  731.208954][T17250]  ? __fget_files+0x2a/0x420
[  731.208968][T17250]  ? bpf_lsm_file_ioctl+0x9/0x20
[  731.208978][T17250]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  731.208994][T17250]  __se_sys_ioctl+0xfc/0x170
[  731.209006][T17250]  do_syscall_64+0x14d/0xf80
[  731.209017][T17250]  ? trace_irq_disable+0x3b/0x150
[  731.209030][T17250]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.209041][T17250]  ? clear_bhb_loop+0x40/0x90
[  731.209052][T17250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.209064][T17250] RIP: 0033:0x7f287c19c799
[  731.209075][T17250] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  731.209085][T17250] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  731.209097][T17250] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  731.209106][T17250] RDX: 0000200000000280 RSI: 00000000c020aa07 RDI: 0000000000000005
[  731.209113][T17250] RBP: 00007f287c232c99 R08: 0000000000000000 R09: 0000000000000000
[  731.209119][T17250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  731.209126][T17250] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  731.209137][T17250]  </TASK>
[  731.488130][ T5846] Bluetooth: hci0: command 0x040f tx timeout
[  731.540497][  T808] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  731.692413][  T808] usb 2-1: unable to get BOS descriptor or descriptor too short
[  731.703858][  T808] usb 2-1: New USB device found, idVendor=17cc, idProduct=0510, bcdDevice= 0.00
[  731.712998][  T808] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  731.721030][  T808] usb 2-1: Product: syz
[  731.725364][  T808] usb 2-1: Manufacturer: syz
[  731.729950][  T808] usb 2-1: SerialNumber: syz
[  731.938886][T17248] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  731.947586][T17248] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  732.032718][  T808] usb 2-1: USB disconnect, device number 16
[  733.933370][T17250] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] SMP KASAN PTI
[  733.945376][T17250] KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f]
[  733.953785][T17250] CPU: 0 UID: 0 PID: 17250 Comm: syz.2.3203 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  733.964711][T17250] Tainted: [L]=SOFTLOCKUP
[  733.969114][T17250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  733.979156][T17250] RIP: 0010:rwsem_mark_wake+0xfa/0x7c0
[  733.984619][T17250] Code: 01 00 74 08 4c 89 f7 e8 44 d8 8d 00 4c 89 74 24 10 4d 8b 26 4d 8d 74 24 18 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <0f> b6 04 08 84 c0 0f 85 75 06 00 00 41 83 3e 00 74 64 4c 89 ef be
[  734.004229][T17250] RSP: 0018:ffffc9000d09f460 EFLAGS: 00010006
[  734.010319][T17250] RAX: 0000000000000003 RBX: 0000000000000000 RCX: dffffc0000000000
[  734.018277][T17250] RDX: 1ffff92001a13e98 RSI: 0000000000000000 RDI: ffff888076f502d0
[  734.026246][T17250] RBP: ffffc9000d09f560 R08: 0000000000000003 R09: 0000000000000004
[  734.034226][T17250] R10: dffffc0000000000 R11: fffff52001a13ea8 R12: 0000000000000000
[  734.042199][T17250] R13: ffff888076f502d0 R14: 0000000000000018 R15: ffffc9000d09f620
[  734.050183][T17250] FS:  00007f287d02e6c0(0000) GS:ffff888124de2000(0000) knlGS:0000000000000000
[  734.059105][T17250] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  734.065676][T17250] CR2: 000000110c393fd2 CR3: 000000005cf62000 CR4: 00000000003526f0
[  734.073724][T17250] Call Trace:
[  734.076991][T17250]  <TASK>
[  734.079917][T17250]  ? rcu_is_watching+0x15/0xb0
[  734.084674][T17250]  ? __pfx_rwsem_mark_wake+0x10/0x10
[  734.089956][T17250]  ? do_raw_spin_lock+0x12b/0x2f0
[  734.094975][T17250]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  734.100342][T17250]  rwsem_del_wake_waiter+0x25d/0x2e0
[  734.105624][T17250]  rwsem_down_read_slowpath+0x76c/0x940
[  734.111162][T17250]  ? rwsem_down_read_slowpath+0x596/0x940
[  734.116873][T17250]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[  734.122932][T17250]  ? rcu_is_watching+0x15/0xb0
[  734.127684][T17250]  ? lock_acquire+0x57/0x2e0
[  734.132271][T17250]  ? mmap_read_lock_killable+0x1d/0x70
[  734.137729][T17250]  down_read_killable+0x9e/0x340
[  734.142655][T17250]  mmap_read_lock_killable+0x1d/0x70
[  734.147936][T17250]  lock_mm_and_find_vma+0x2d7/0x340
[  734.153126][T17250]  ? do_user_addr_fault+0x2c9/0x1340
[  734.158404][T17250]  do_user_addr_fault+0x330/0x1340
[  734.163508][T17250]  ? rcu_is_watching+0x15/0xb0
[  734.168259][T17250]  ? rcu_is_watching+0x15/0xb0
[  734.173007][T17250]  ? trace_page_fault_kernel+0x84/0x210
[  734.178547][T17250]  exc_page_fault+0x6a/0xc0
[  734.183052][T17250]  asm_exc_page_fault+0x26/0x30
[  734.187893][T17250] RIP: 0010:__put_user_8+0xd/0x20
[  734.192917][T17250] Code: 89 01 31 c9 0f 01 ca e9 c1 79 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca e9 96 79 03 00 90 90 90 90 90 90 90 90 90
[  734.212519][T17250] RSP: 0018:ffffc9000d09f938 EFLAGS: 00050202
[  734.218577][T17250] RAX: ffffffffffffffea RBX: 0000000000000000 RCX: 0000200000000298
[  734.226542][T17250] RDX: ffffc9000499a000 RSI: ffffffff8c4a6260 RDI: ffffffff8c4a6220
[  734.234502][T17250] RBP: ffffc9000d09fea8 R08: 0000000000000003 R09: 0000000000000004
[  734.242458][T17250] R10: dffffc0000000000 R11: fffffbfff1d46e44 R12: ffffffffffffffea
[  734.250419][T17250] R13: ffff8880590aa940 R14: fffff52001a13f3c R15: 00007ffffffff000
[  734.258390][T17250]  userfaultfd_ioctl+0x2381/0x4c70
[  734.263503][T17250]  ? __kasan_slab_free+0x5c/0x80
[  734.268428][T17250]  ? kfree+0x1c5/0x650
[  734.272495][T17250]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  734.277961][T17250]  ? kasan_quarantine_put+0xbb/0x1f0
[  734.283245][T17250]  ? tomoyo_path_number_perm+0x219/0x630
[  734.288872][T17250]  ? tomoyo_path_number_perm+0x219/0x630
[  734.294499][T17250]  ? do_vfs_ioctl+0x1166/0x1530
[  734.299344][T17250]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  734.304358][T17250]  ? do_futex+0x333/0x420
[  734.308687][T17250]  ? __fget_files+0x2a/0x420
[  734.313271][T17250]  ? __fget_files+0x2a/0x420
[  734.317852][T17250]  ? __fget_files+0x3a0/0x420
[  734.322518][T17250]  ? __fget_files+0x2a/0x420
[  734.327101][T17250]  ? bpf_lsm_file_ioctl+0x9/0x20
[  734.332023][T17250]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  734.337480][T17250]  __se_sys_ioctl+0xfc/0x170
[  734.342056][T17250]  do_syscall_64+0x14d/0xf80
[  734.346633][T17250]  ? trace_irq_disable+0x3b/0x150
[  734.351680][T17250]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.357736][T17250]  ? clear_bhb_loop+0x40/0x90
[  734.362402][T17250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.368303][T17250] RIP: 0033:0x7f287c19c799
[  734.372704][T17250] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  734.392299][T17250] RSP: 002b:00007f287d02e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  734.400708][T17250] RAX: ffffffffffffffda RBX: 00007f287c415fa0 RCX: 00007f287c19c799
[  734.408672][T17250] RDX: 0000200000000280 RSI: 00000000c020aa07 RDI: 0000000000000005
[  734.416631][T17250] RBP: 00007f287c232c99 R08: 0000000000000000 R09: 0000000000000000
[  734.424598][T17250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  734.432554][T17250] R13: 00007f287c416038 R14: 00007f287c415fa0 R15: 00007ffd6937ea18
[  734.440525][T17250]  </TASK>
[  734.443539][T17250] Modules linked in:
[  734.447433][T17250] ---[ end trace 0000000000000000 ]---
[  734.452872][T17250] RIP: 0010:rwsem_mark_wake+0xfa/0x7c0
[  734.458328][T17250] Code: 01 00 74 08 4c 89 f7 e8 44 d8 8d 00 4c 89 74 24 10 4d 8b 26 4d 8d 74 24 18 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <0f> b6 04 08 84 c0 0f 85 75 06 00 00 41 83 3e 00 74 64 4c 89 ef be
[  734.477933][T17250] RSP: 0018:ffffc9000d09f460 EFLAGS: 00010006
[  734.484013][T17250] RAX: 0000000000000003 RBX: 0000000000000000 RCX: dffffc0000000000
[  734.491983][T17250] RDX: 1ffff92001a13e98 RSI: 0000000000000000 RDI: ffff888076f502d0
[  734.499945][T17250] RBP: ffffc9000d09f560 R08: 0000000000000003 R09: 0000000000000004
[  734.507910][T17250] R10: dffffc0000000000 R11: fffff52001a13ea8 R12: 0000000000000000
[  734.515891][T17250] R13: ffff888076f502d0 R14: 0000000000000018 R15: ffffc9000d09f620
[  734.523852][T17250] FS:  00007f287d02e6c0(0000) GS:ffff888124de2000(0000) knlGS:0000000000000000
[  734.532768][T17250] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  734.539338][T17250] CR2: 000000110c393fd2 CR3: 000000005cf62000 CR4: 00000000003526f0
[  734.547380][T17250] Kernel panic - not syncing: Fatal exception
[  734.553690][T17250] Kernel Offset: disabled
[  734.557999][T17250] Rebooting in 86400 seconds..