last executing test programs:

4m18.228924141s ago: executing program 0 (id=124):
syz_emit_vhci(0x0, 0x7)

4m17.910973706s ago: executing program 0 (id=127):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan1\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x1c, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x4c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x88c7}, @NL80211_ATTR_FRAME={0x1c, 0x33, @data_frame={@msdu=@type10={{}, {}, @from_mac=@broadcast, @device_b}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x800)

4m17.510442397s ago: executing program 0 (id=131):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000030000001200000008000300", @ANYRES32=r1, @ANYBLOB="0a000600080211000000000054008100050002000600000005000100e0000000050001000d00000005000200000000000500020000000000050002000400000005000100070000000500010065"], 0x7c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

4m17.234784544s ago: executing program 0 (id=134):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0x2, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0xb0b}, 0x14}}, 0x0)

4m16.948902852s ago: executing program 0 (id=135):
syz_emit_vhci(0x0, 0x7)

4m16.745029988s ago: executing program 0 (id=137):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7)
r2 = openat$cgroup_procs(r0, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
fcntl$lock(0xffffffffffffffff, 0x24, 0x0)
pwritev(r0, 0x0, 0x0, 0x7, 0x0)
r3 = syz_clone(0x0, 0x0, 0xfffffffffffffd38, 0x0, 0x0, 0x0)
write$cgroup_pid(r2, &(0x7f0000000180)=r3, 0x12)

4m5.963756021s ago: executing program 32 (id=257):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/5, 0x214000, 0x800}, 0x20)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000180)=0x800, 0x4)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000040)=0x20000, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000400)={'dummy0\x00', <r2=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r2}, 0x10)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f00000000c0)=0x2, 0x4)

4m2.662083229s ago: executing program 33 (id=279):
r0 = syz_ublk_setup_io_uring(0x432f, &(0x7f00000007c0)={0x0, 0x40a2, 0x400, 0x2, 0x1e5}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000340)='net/fib_trie\x00')
syz_io_uring_submit(r1, r2, 0x0, &(0x7f0000000740)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x3})
syz_ublk_add_dev(r0, r1, r2, 0x0, &(0x7f00000003c0)={0x2e, 0x5, 0x0, 0xffffffffffffffff, 0xc0207504, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, '\x00', {0xffffffff, 0xffff, 0x40, &(0x7f0000000200)=@any_dev={0x4, 0xd74, 0x0, 0x0, 0x1000, 0x68ba, 0x0, 0x0, 0x10}}}, &(0x7f0000000440))

4m1.925935098s ago: executing program 34 (id=281):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='htcp', 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@sack_perm, @window={0x3, 0x6, 0x7}, @mss={0x2, 0x7}, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x6}, @timestamp, @window={0x3, 0xfffe}, @sack_perm], 0x200000000000005e)
sendto$inet(r0, &(0x7f0000000500)="ad02da73b0bf2981ebf3577526b5cfa18e81f870dccda555138093a43c6867ffa9be67400f86d8a6e5d265211d764a4ca96601ea5590caf651b427700db3fedd433d2cf8c4c31c811218840e83571f575c3a2c10b925808fd6cf794b47ee5c069164651ce0351c0eeae970ed97b02611e3116abe5f9edfa2585f4961efdbdd6c863a1466ce4adf7fdba4107a9e333ac3ce", 0x91, 0x40894, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4)
sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0)

4m0.884043993s ago: executing program 35 (id=137):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7)
r2 = openat$cgroup_procs(r0, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
fcntl$lock(0xffffffffffffffff, 0x24, 0x0)
pwritev(r0, 0x0, 0x0, 0x7, 0x0)
r3 = syz_clone(0x0, 0x0, 0xfffffffffffffd38, 0x0, 0x0, 0x0)
write$cgroup_pid(r2, &(0x7f0000000180)=r3, 0x12)

3m25.898862848s ago: executing program 6 (id=338):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x80, 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x82032, 0x0)

3m25.722551903s ago: executing program 6 (id=339):
r0 = socket$inet(0x2b, 0x801, 0x0)
setsockopt$inet_opts(r0, 0x300, 0x16, 0x0, 0x0)

3m25.509430043s ago: executing program 6 (id=342):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x30})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
r1 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000775000/0x3000)=nil, 0x7fffffff, 0x0, 0x0, 0x0, 0x33, 0x20, 0xc, 0x2})

3m25.303624486s ago: executing program 6 (id=345):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$bind(&(0x7f00000001c0)='.\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x111509e, 0x0)

3m25.037900581s ago: executing program 6 (id=348):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32", 0x8)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@assoc={0x18, 0x117, 0x4, 0x6}, @op={0x18, 0x117, 0x3, 0x1}], 0x30}, 0x4800)
write$binfmt_script(r1, &(0x7f0000000600), 0xfec8)
recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0xc8}], 0x1, 0x0, 0x0, 0x2000000}}], 0x1, 0xcb, 0x0)

3m24.769804177s ago: executing program 4 (id=350):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20040014, &(0x7f0000000280)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0})
close_range(r2, 0xffffffffffffffff, 0x0)

3m24.69492264s ago: executing program 5 (id=351):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

3m24.579893815s ago: executing program 5 (id=352):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r2, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
listen(r0, 0x802)

3m24.556889266s ago: executing program 4 (id=353):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
r1 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000775000/0x3000)=nil, 0x7fffffff, 0x0, 0x0, 0x0, 0x33, 0x20, 0xc, 0x2})

3m24.410765644s ago: executing program 4 (id=354):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f00000000c0)=""/87, 0x0})
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000400)=0x4000000)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000002540)={0x1, 0x0, [{0xeeee0000, 0xf4, &(0x7f0000002580)=""/244}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000500)=0x1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af04, &(0x7f0000000080))

3m24.290347064s ago: executing program 5 (id=355):
getpid()
setns(0xffffffffffffffff, 0x24020000)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x9, 0x5, 0x81, 0xffffffff})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x11)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)
readv(r1, &(0x7f0000000340)=[{&(0x7f0000000100)=""/174, 0xae}], 0x1)

3m24.21786768s ago: executing program 4 (id=356):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$bind(&(0x7f00000001c0)='.\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x111509e, 0x0)

3m24.141569031s ago: executing program 4 (id=357):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000900)={0x41, 0x4}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x41}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r3, &(0x7f0000000180)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10, 0x0}, 0x0)

3m23.978003519s ago: executing program 6 (id=360):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

3m23.709860565s ago: executing program 36 (id=360):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

3m23.290604982s ago: executing program 5 (id=365):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$bind(&(0x7f00000001c0)='.\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x111509e, 0x0)

3m23.208777943s ago: executing program 5 (id=366):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/vlan/vlan0\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8923, &(0x7f0000000000)={'vlan0\x00', @local})
inotify_init1(0x80000)
socket$inet_sctp(0x2, 0x5, 0x84)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x800, 0x3, 0x8000, 0x0, 0x8004, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0xfffffffffffffff6}, 0x0, 0x0)

3m22.654771615s ago: executing program 4 (id=368):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d0400", 0xc)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@assoc={0x18, 0x117, 0x4, 0x6}, @op={0x18, 0x117, 0x3, 0x1}], 0x30}, 0x4800)
write$binfmt_script(r1, &(0x7f0000000600), 0xfec8)
recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0xc8}], 0x1, 0x0, 0x0, 0x2000000}}], 0x1, 0xcb, 0x0)

3m22.434839046s ago: executing program 37 (id=368):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d0400", 0xc)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@assoc={0x18, 0x117, 0x4, 0x6}, @op={0x18, 0x117, 0x3, 0x1}], 0x30}, 0x4800)
write$binfmt_script(r1, &(0x7f0000000600), 0xfec8)
recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0xc8}], 0x1, 0x0, 0x0, 0x2000000}}], 0x1, 0xcb, 0x0)

3m21.822282585s ago: executing program 5 (id=372):
getpid()
setns(0xffffffffffffffff, 0x24020000)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x9, 0x5, 0x81, 0xffffffff})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x11)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)
readv(r1, &(0x7f0000000340)=[{&(0x7f0000000100)=""/174, 0xae}], 0x1)

3m21.729260672s ago: executing program 38 (id=372):
getpid()
setns(0xffffffffffffffff, 0x24020000)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x9, 0x5, 0x81, 0xffffffff})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x11)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)
readv(r1, &(0x7f0000000340)=[{&(0x7f0000000100)=""/174, 0xae}], 0x1)

3m15.818761856s ago: executing program 7 (id=403):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000200)=0x2, 0x4)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x300, 0xfc}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, 0x0, 0x0)
setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, &(0x7f00000001c0)={0x1, 0x1, 0x2, 0x9, @vifc_lcl_ifindex, @empty}, 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={<r2=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000840)={r2, @in6={{0xa, 0x4e20, 0x3b1, @empty, 0x8c2ac}}, 0x2, 0x2, 0x614, 0x1, 0xd, 0x7, 0x4}, 0x9c)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000b00), 0xffffffffffffffff)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r5=>0x0})
sendto$packet(r3, 0x0, 0x0, 0x4048000, &(0x7f0000000240)={0x11, 0x8100, r5, 0x1, 0xfc, 0x6, @multicast}, 0x14)

3m14.44370182s ago: executing program 7 (id=404):
sched_setscheduler(0x0, 0x2, &(0x7f0000000480)=0x7)
prctl$PR_SET_SECCOMP(0x37, 0x1, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_OPENQRY(r0, 0x4b4b, &(0x7f0000000480))

3m14.33678362s ago: executing program 7 (id=405):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f00000005c0)={0x0, 0x9, 0x5051}, 0x8)

3m14.221673626s ago: executing program 7 (id=406):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuseblk(0x0, 0x0, 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$bind(&(0x7f00000001c0)='.\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x111509e, 0x0)

3m14.182691947s ago: executing program 7 (id=407):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x30})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
r1 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000775000/0x3000)=nil, 0x7fffffff, 0x0, 0x0, 0x0, 0x33, 0x20, 0xc, 0x2})

3m13.163736599s ago: executing program 7 (id=408):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0xa, &(0x7f00000000c0)=0x5, 0x4)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
splice(r1, 0x0, r0, 0x0, 0x10000807, 0x0)

3m12.958173564s ago: executing program 39 (id=408):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0xa, &(0x7f00000000c0)=0x5, 0x4)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
splice(r1, 0x0, r0, 0x0, 0x10000807, 0x0)

2m42.214817583s ago: executing program 2 (id=439):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', 0x0, 0x0, 0x1005848, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$bind(&(0x7f00000001c0)='.\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x111509e, 0x0)

2m41.997628011s ago: executing program 2 (id=440):
r0 = syz_open_dev$cec(&(0x7f0000000200), 0xffffffffffffffff, 0x4ae60)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
ioctl$CEC_TRANSMIT(r0, 0xc0386105, &(0x7f0000000000)={0x3, 0x6, 0x9, 0x80, 0x200, 0x1, "c2405e44033d852fe045d3f8454a6b53", 0xd6, 0x7, 0x1, 0x9, 0x8, 0x8, 0x4})

2m41.462311855s ago: executing program 2 (id=444):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r1, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
listen(r0, 0x802)

2m41.224901498s ago: executing program 2 (id=447):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', 0x0, 0x0, 0x1005848, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$bind(&(0x7f00000001c0)='.\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x111509e, 0x0)

2m40.815917119s ago: executing program 2 (id=451):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setresuid(0x0, 0xee00, 0x0)
fcntl$F_SET_RW_HINT(r0, 0x40c, 0x0)

2m39.554696554s ago: executing program 2 (id=462):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="6507060082762422f9a30250a90def79e5ddb933ba3b8f8f1a0daad170478560f60eb8c1258ded60aee45b04b15db3", 0x2f)
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f00000008c0)=[{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000001c0)="517da1c92aab73880165a1d2967e7932b9", 0x11}], 0x1, &(0x7f00000002c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x408d0}], 0x1, 0x0)
recvmsg(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000600)=""/136, 0x88}], 0x1}, 0x40008dff)

2m39.083784068s ago: executing program 40 (id=462):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="6507060082762422f9a30250a90def79e5ddb933ba3b8f8f1a0daad170478560f60eb8c1258ded60aee45b04b15db3", 0x2f)
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f00000008c0)=[{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000001c0)="517da1c92aab73880165a1d2967e7932b9", 0x11}], 0x1, &(0x7f00000002c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x408d0}], 0x1, 0x0)
recvmsg(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000600)=""/136, 0x88}], 0x1}, 0x40008dff)

5.706694831s ago: executing program 8 (id=1710):
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@mcast2={0xff, 0x5}, 0x200, 0x1, 0x1, 0x3, 0x3ff}, 0x20)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000140)={0xe, 0xfffffffe, [{0xe64d, 0x0, 0x80000001}, {0xfd6, 0x0, 0x9}, {0x93d, 0x0, 0x9}, {0xfffffffe, 0x0, 0x5}, {0x9, 0x0, 0x8}, {0x5, 0x0, 0xfffffffffffff800}, {0x4, 0x0, 0x2}, {0x7, 0x0, 0x5}, {0x47, 0x0, 0x1}, {0x7fffffff, 0x0, 0x4}, {0x9}, {0x7fff, 0x0, 0x1}, {0x9, 0x0, 0x34a7124d}, {0xfc000000, 0x0, 0xfd0f}, {0xfffffffb, 0x0, 0x2}, {0x5, 0x0, 0x10001}]})
r3 = syz_open_dev$vim2m(&(0x7f0000000080), 0x400000000000003, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f00000000c0)={0xf0f041})
readv(r3, &(0x7f0000000340)=[{&(0x7f0000000040)=""/60, 0x3c}], 0x1)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x85, &(0x7f00000061c0)={<r5=>0x0, 0x88, "0200000000000000703fe6153c598ae93aa83725cdcff2eae49f89843a5318d5ba093aa761132b512e8c4eb4eb76aa3f3069d1d5a64a2c75a2d59986feff48dc51b23de50b4c052630642b3348c700b558041310b18d364b87808f8a7494c5de7f7ba36ec3b597fae6ac116b5bc6c564f98676e592103c268225b716a73e48c8c8f8ec21e15e7a5d"}, &(0x7f0000000200)=0x90)
r6 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f00000000c0)={0xa, 0xe22, 0x3, @private2, 0xffffffff}, 0x1c)
r7 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r7, &(0x7f0000000140)=[{&(0x7f0000000480)="580000001500add427323b472545b45602117fffffff81000e22d9910000000000d6a80013007b00090080007f000001e809000000ff0000f03abf100003ffffffffffffffffffffffe7ee000000deff2000000200000000d818522a709dc94057", 0x61}], 0x1)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000100)={r5, 0x9}, &(0x7f0000000180)=0x8)

5.078234985s ago: executing program 8 (id=1714):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12014101f2c59620d016b8108ede0102030109022400010000100009040002020083ec0009050602000202000a09058202"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
syz_usb_connect$uac3(0x6, 0xe6, &(0x7f0000000040)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x20, 0x582, 0x582, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xd4, 0x3, 0x1, 0xd, 0x20, 0x2, {0x8, 0xb, 0x0, 0x1, 0x1, 0x26, 0x30, 0x1}, {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x30, 0x0, {{0xa, 0x24, 0x1, 0xff, 0x36, 0xf}, [@source_unit={0xc, 0x24, 0xb, 0xc, 0x2, 0x4, 0x4}, @input_terminal={0x14, 0x24, 0x2, 0x6, 0x401, 0x4, 0x5, 0x4, 0x300, 0x3, 0x8, 0x7ff}, @source_unit={0xc, 0x24, 0xb, 0x1, 0x0, 0x5179, 0x9, 0x6}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x10, 0x3, 0x94, 0x8, {0xa, 0x25, 0x25, 0x8, 0x4, 0x1}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {[@as_header={0x17, 0x24, 0x1, 0x6, 0x5, 0x1ff, 0x1, 0x9, 0x3, 0xffff}, @format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0x6, 0x1, 0xf8, 0xd3, "0efdb444bc8500cf0b"}, @format_type_i_ext={0x9, 0x24, 0x2, 0x1, 0x7, 0x29, 0x5, 0x10, 0x9}, @format_type_i_ext={0x9, 0x24, 0x2, 0x1, 0xb, 0x9, 0x20, 0x9a, 0xcf}]}, {{0x9, 0x5, 0x82, 0x9, 0x200, 0x3, 0x10, 0x4, {0xa, 0x25, 0x25, 0x9, 0x2, 0x8001}}}}}}}}]}}, &(0x7f0000000700)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x250, 0x9, 0xff, 0x6, 0x8, 0x32}, 0x239, &(0x7f0000000180)={0x5, 0xf, 0x239, 0x6}, 0x7, [{0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x426}}, {0x92, &(0x7f0000000400)=@string={0x92, 0x3, "f54331d5983478bef866741d3f2ec5f3f168e4e923f3647fbbb0c07017a110aaf859ffc51760fed5f5d0ee3045f28e47151f6c532e425a528668dc0385ed78f6fa2ff351e3c734735fcbab251e60b24f67a9b393f27db3adf02a7eac3f0cde720178a8b178f029bb5b5f4f491a452eccbf67817d757673620ec0f3728c609aea23cc504f07e3a54a5343a2651c7bbedc"}}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x419}}, {0x4, &(0x7f0000000540)=@lang_id={0xfffffffffffffe56, 0x3, 0x42c}}, {0x1d, &(0x7f00000001c0)=@string={0x1d, 0x3, "f87567edfb198ed283c03c3f0cef9f357d7dcc91ae822a4826a4a1"}}, {0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x405}}, {0xb2, &(0x7f0000000640)=@string={0xb2, 0x3, "75441ce358a8d2aa9666f3ddef9cd662274d51436d6152069d7155f39d33a8eaaad47953870f2d64370404d7a05a20e18bf9e687aa7611b675490cb3ccf40a60b37456926c1c61e17afe603bf86edb9749eae246f4b3dd242d17488ed4ef671262e19bebdb2015633baec849e23ae7feca8f78b5b757643752b08d6f7dd6a0c83d923f06ed36d966ec47f637b30cc8e15b70201062e74007e88fa0e1c7ed23cb49ba1c0d363a1c0d742c6144de8a3670"}}]})
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000880)={0x2c, &(0x7f00000005c0)={0x0, 0x15, 0xc, "4a6e66c2b589aaad490d0ab4"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, &(0x7f00000004c0)={0x40, 0x0, 0x28, "e20d26123bf4bfbadfd8a3934e93c35b153fae08f1940d359cd3e853ba1bf9402044ed8cb75b9cc4"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)

3.606917467s ago: executing program 9 (id=1726):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000000040)={0x34, r1, 0x301, 0x0, 0x0, {0x4e}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

3.142244809s ago: executing program 9 (id=1728):
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000bc0)="ab29d92826349952eb8f7a2a74f535bc9739c1df57144c51a3391625b8b5354134b06ef1355506aeae96e3f097503998f375a054cf3d7de4fe53ea51518955", 0x3f}], 0x1, 0x0, 0x0, 0x900}}], 0x1, 0x0)
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$inet(0x2, 0x3, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[{0x18, 0x84, 0x8, "eeb4fe8b"}], 0x18}, 0x41)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000080)='ip6_vti0\x00', 0x10)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
sendmmsg$inet(r1, &(0x7f0000000280)=[{{&(0x7f0000000240)={0x2, 0x4e01, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00D$\r'], 0x38}}], 0x1, 0x46000)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r4=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000005c0)=ANY=[@ANYBLOB="98000000", @ANYRES16=r3, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r4, @ANYBLOB="7c00028038"], 0x98}, 0x1, 0x0, 0x0, 0x4040df5}, 0x4040084)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth1_to_hsr\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r8=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010028bd7000010000000f00000008000300", @ANYRES32=r8, @ANYBLOB="0500330061"], 0x24}}, 0x80)
r9 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r9, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'sit0\x00', <r10=>0x0})
sendto$packet(r9, &(0x7f00000002c0)="05031c00d3fc140000004788031c09102c28", 0xfdef, 0x4, &(0x7f0000000140)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @multicast}, 0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000480)={'ip6_vti0\x00', &(0x7f0000000300)={'syztnl1\x00', <r11=>0x0, 0x2f, 0x0, 0xfa, 0x0, 0x41, @remote, @private2, 0x8000, 0x40, 0x469, 0x5}})
sendmsg$TEAM_CMD_NOOP(r0, &(0x7f00000008c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000880)={&(0x7f00000006c0)={0xd8, r3, 0x4, 0x70bd2c, 0x25dfdbfb, {}, [{{0x8, 0x1, r5}, {0xbc, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffff7}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r10}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r11}}}]}}]}, 0xd8}, 0x1, 0x0, 0x0, 0x22000012}, 0x10000000)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x14c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x188}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
r12 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r12, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="1000000017140525"], 0x10}, 0x1, 0x0, 0x0, 0x4080}, 0x0)
r13 = syz_open_dev$dvb_frontend(&(0x7f00000015c0), 0x0, 0x400)
ioctl$FE_GET_PROPERTY(r13, 0x80106f53, &(0x7f00000001c0)={0x31, &(0x7f0000000200)=[{0x27, '\x00', @buffer={"21d7e07366a9b54b138debcebe66bbe9e1cb0324aeb5f696abb322648bc60c2f", 0x20}, 0x6}, {0x1f, '\x00', @buffer={"fd291a69d2c76bf0dc75b4a6b923ca94223d0dd22d25f44ef2e9a3a4d1f6c3f2", 0x20}, 0xffff}]})
syz_emit_vhci(&(0x7f0000000540)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0x1a}, @hci_ev_le_ext_adv_report={{}, {0x1, [{0x2, 0x1, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x0, 0xc8, 0xc, 0x1, 0x7, 0x1, 0x1, @none}]}}}}, 0x1d)

2.653374282s ago: executing program 3 (id=1729):
add_key(&(0x7f0000000040)='rxrpc\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff) (async)
syz_usb_connect(0x0, 0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000f3c7c820da059a0095620102030109023400010000000009049200030f6276000905000000000000000705e37e1b82e60905f2020000060000090501"], 0x0) (async)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1b)

2.554989244s ago: executing program 9 (id=1731):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000000000), 0x1, 0x0)
pwritev(r1, &(0x7f0000000bc0)=[{&(0x7f0000000040)="00000e001a002300000000", 0xb}], 0x1, 0xe, 0x1fc)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000480)={0x73622a85, 0x0, 0x2})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r3 = dup3(r2, r0, 0x80000)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x400c6314, 0x3}], 0x0, 0x0, 0x0})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x6c}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r5 = socket$alg(0x26, 0x5, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000140)='net/sockstat\x00')
ioctl$FIDEDUPERANGE(r6, 0xc0189436, &(0x7f0000000200)={0x3, 0xffffffffffffffff})
bind$alg(r5, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={0x40, 0xd, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, "ff"}]}]}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

2.463155285s ago: executing program 1 (id=1732):
r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000007c0)={0x1, 0x2, 0x1, 0x0, 0x8})
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, &(0x7f00000002c0)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x80, 0x0, {}, {0x4, 0x1, 0x0, 0x0, 0x0, 0x0, "fafc00"}, 0x0, 0x1, {0x0}})
ioctl$vim2m_VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000000)=0x2) (fail_nth: 2)

2.403617598s ago: executing program 8 (id=1733):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000080)=[{0x2c}, {0x6, 0x0, 0x0, 0x7ffffdbd}]})

2.317313612s ago: executing program 8 (id=1734):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a", 0x29}], 0x3}, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x40)

1.916016458s ago: executing program 1 (id=1735):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x3, 0x8d)
setsockopt$inet_msfilter(r1, 0x0, 0x8, &(0x7f0000000340)=ANY=[@ANYRES32], 0x1)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000000c0)={<r2=>0x0, @local, @local}, &(0x7f0000000140)=0xc)
r3 = socket$inet6(0xa, 0x3, 0x3c)
ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @local}, 0x0, r2})
r4 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x4c, &(0x7f0000000000)=0xfffffffe, 0x4)
ioctl(r4, 0x8916, &(0x7f0000000000))
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)

1.797616604s ago: executing program 8 (id=1736):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000040)=0xe, 0x4) (async)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r2, 0xc018643a, &(0x7f00000000c0)={0x4000001, 0x71, 0x200000009}) (async)
sendmsg$SOCK_DIAG_BY_FAMILY(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="2400000014001b0928bd7000ffdbdf2511000d000100d76f51"], 0x24}, 0x1, 0x0, 0x0, 0x2400a051}, 0x44000)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000040)={0x980902, 0x1}) (async)
r4 = syz_open_dev$loop(&(0x7f0000000240), 0xffffffff7ffffffd, 0x160862) (async)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_test', 0x82802, 0x1ec541d9ca5bf0af)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x7)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f0000000080)={r5, 0x0, {0x0, 0x0, 0x0, 0x1, 0x4000000000000ffa, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "675237601a8ca5b07dcc141802c4dae4162e43ac61b7ad3300", [0xfffffffffffffce8, 0xa]}}) (async)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(r5, 0x84, 0x20, &(0x7f0000000000)=0x25f4, 0x4)

1.708347477s ago: executing program 1 (id=1737):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000100)={0x3}, 0x10)
sendto$inet(r1, &(0x7f0000000300)="b3", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000500)={0x0, 0x4}, 0x8)

1.422368174s ago: executing program 9 (id=1738):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000100)={0x3}, 0x10)
sendto$inet(r1, &(0x7f0000000300)="b3", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000500)={0x0, 0x4}, 0x8) (fail_nth: 2)

1.420497743s ago: executing program 3 (id=1739):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x61, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x1f6, 0x4)
sendmmsg$inet(r0, &(0x7f0000003240)=[{{&(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10, &(0x7f00000016c0)=[{&(0x7f0000001540)="94", 0xffe3}], 0x1}}], 0x1, 0x4000800)

1.365024089s ago: executing program 1 (id=1740):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)={0x6c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x31, 0xe, {{{}, {0x7ffc}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x803, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x71, 0x7, {0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x54, 0x68}}, @void}}, @NL80211_ATTR_FTM_RESPONDER={0x4}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0xfffffffd}]}, 0x6c}}, 0x0)

1.209379828s ago: executing program 9 (id=1741):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x30, 0x2d, 0xb, 0xfffffffd, 0x0, {0x7}, [@typed={0x14, 0x3, 0x0, 0x0, @ipv6=@empty}, @nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x78}]}]}, 0x30}}, 0x8000)
ioctl(r0, 0x7, &(0x7f0000000000)="deb071f39472dc2c46a9d6e09313cbc4132b335fa07089987187caf5a671fe25b6e9bcd31fe79c7a43ef8a2d1313c02dd058b48da4dff6b9d26ba7e41f5f2035458bdbb0cbeafc5e8a1a4ca18118307fb10ea1b666b6b504f651d6827273ed4d43c1b901d42e296afc25084b4176b08315ec250bd7a8a652170c52c84aac677e5ba72081873e1464c12ac6")
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendto(r2, &(0x7f00000000c0)="115f190b472358e6628a03bb7097e7812fa117c26aeb5935b25cff79e66d9dd2e6450675cdca23036da0ac12c48754c0272d62ba7bd8151dfb8131f669c4493f2530b6f4085a303a91693c7307773cd519ec299e68701e699f13ae3cff8ede1f6cc00ea7588f30fba0d8a8f1703da6730dd58cb70f9edcff1630", 0x7a, 0x50, &(0x7f0000000180)=@phonet={0x23, 0xd, 0x9, 0x9}, 0x80)
sendmsg$nl_generic(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000c40)={0x14, 0x24, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
r3 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000200), 0x101080, 0x0)
ioctl$XFS_IOC_OPEN_BY_HANDLE(r3, 0xc038586b, &(0x7f0000000340)={r0, &(0x7f0000000240)='\x00', 0x185040, &(0x7f0000000280)={@_ha_fsid={[0x6, 0x7]}, {0x3, 0xa8ef, 0xd7, 0xfffffffffffffffe}}, 0x1, &(0x7f00000002c0), &(0x7f0000000300)=0x574})
r4 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000140)={{0x1, 0x1, 0x18, r4, {r0}}, './file0\x00'})

1.162858503s ago: executing program 3 (id=1742):
r0 = syz_open_dev$dri(&(0x7f00000002c0), 0x1, 0x2100)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000300)={&(0x7f0000000180)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f0000000140)={r1, <r2=>0x0, <r3=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETPLANE(r0, 0xc03064b7, &(0x7f0000000200)={r1, r2, r3, 0x80000003, 0xffff, 0xfefffffc, 0x0, 0x200, 0x1ff, 0xc, 0x2000000, 0x31e})

1.142874627s ago: executing program 1 (id=1743):
r0 = fsopen(&(0x7f0000000040)='smb3\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='iocharset', &(0x7f00000000c0)='io#harset', 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x11, r1, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r3 = dup3(r2, r1, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x100000000000000, &(0x7f0000000680)="98"})
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x2}, 0x10)
r5 = socket$alg(0x26, 0x5, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f00000003c0), 0x3)
getsockopt$bt_hci(r6, 0x11a, 0x1, 0x0, &(0x7f00000000c0))
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000004e00)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@assoc={0x18, 0x117, 0x4, 0x40}], 0x18, 0x88010}], 0x1, 0x20000010)
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000000)=@req={0x3fc, 0x0, 0x0, 0x5}, 0x10)
socket(0x1e, 0x4, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r9, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000040)={0x10, 0x0, &(0x7f0000000440)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})

943.851086ms ago: executing program 3 (id=1744):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a", 0x29}], 0x3}, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x40)

739.611775ms ago: executing program 3 (id=1745):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r1, &(0x7f0000000080)={'b', ' *:* ', 'rwm\x00'}, 0xa) (fail_nth: 2)

543.483045ms ago: executing program 3 (id=1746):
mlock(&(0x7f00007fe000/0x800000)=nil, 0x800000) (async)
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000140)={0x0, @l2tp={0x2, 0x0, @local}, @qipcrtr={0x2a, 0x1, 0x3fff}, @qipcrtr={0x2a, 0x1}, 0xae, 0x0, 0x0, 0x0, 0x472a, 0x0, 0x8000, 0x8, 0xd})
mprotect(&(0x7f0000aa4000/0x2000)=nil, 0x2000, 0x8) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x400caed0, &(0x7f0000000780)={0x3, 0x0, @pic={0x5, 0x7, 0xa, 0xe6, 0xff, 0x0, 0xa2, 0xc1, 0x5, 0x4, 0xa6, 0x8, 0x6, 0xb0, 0x8, 0xf}}) (async)
mprotect(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xa)

177.583462ms ago: executing program 9 (id=1747):
kexec_load(0x3, 0x2, &(0x7f00000005c0)=[{&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f68476969bf8c4bcd37ba24e4ba1683339879a11b854a7478f898805f327af12eaab8ac918c201b7f932e124796f1aba03e031312bd7e67403651abac282b310f420dbcdea31d52854783d6952a2a7b10f3", 0xa9, 0x5, 0xffffffff}, {&(0x7f0000000340)="8c4e55be8948c65379def4df90ce301f71e7", 0x12, 0x100, 0x9}], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002840)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x20}, 0x1c, 0x0}}], 0x1, 0x14018891)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {0x0}, {&(0x7f0000000740)}], 0x3}, 0x41)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4044050)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000180)="5500000020007fafb72d13b2a4a2719302000000030b43016c26236925000400fe7f0000bd2dca8a9848a3c728f138d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade5b175c0a9b2ce9", 0x55}], 0x1}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {0x0}], 0x2}, 0x20005005)
sendmmsg$alg(r2, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)="bd9c629b909dddebc0508bf412865663aded7919352b141faa7dc00680ce5a44ff1ed1c813c6c1e58e28c509cd269d0e79fff4d2ea4c1da69fa672c4f5eb15788aa929e9f5c94e443cf68a1759ee805958a7c76c8c7f11a39ea32c019c2f2c8cce48d92d659f623081974c0135dc1fe2a057f725", 0x74}], 0x1, &(0x7f00000008c0)=[@iv={0xb8, 0x117, 0x2, 0xa0, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d434c678807c5ab4264c8ba94065d11d8ee27dd16f4a0342bed8a3c79acd4bb1f9f46ef28a63b329e09a86c62f907539c9af6f1b0bc00510c3b27f64245b6f4f80e00bca3c91538839a52c3c393aada6ed6155fa03c988b6658e106d043cc8652373dd8e2a7"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0xd0, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f00000009c0)="c2debd9e2d4617d17e01e704d3576f8b26b757ffa164a105efcaa28e5d52d4383258c148e95e4ee927dab4ba9cdbf4dbf6b0e19f8b7e9a95211ec6aedfd78a09200b7076afabdae9c87c6837e202845b6cf3ac6b728856d66eef286087e0154a40c153e5fe7505615fb53b33f629928c80aeea7fd091180968d44cd4544b6bb4c116f4d6c4c3d148eb273bd4fa76ad8f709ed07bd2a91564fc364f1b971b0e005fe1d24f1b0d7f157b695c625cc39aac2d6f07b11d926c801fb1b98e", 0xbc}, {&(0x7f0000000ac0)="3fe4c8a3288f0977", 0x8}, {&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd70a1b428c05442da", 0x3a}, {&(0x7f0000000b80)="0d4842ef613cd072196eae2d74d31c309df1c61a888039b1a23acbea852fb54afae1761845284c6e484aa5154a2b418ffe2ac1d6363010c9d8f2d75a71eb55849202714884c6a0a760f5e028016a68fc07407f5671a5a4a8c91e9d056039df63390376a7359c6fc2059d1e3ffeec1ff0f4c09099e8e61c268324d0fc621f6dc2912e4bd5316ff808ac5126ade9b759e1489c04a517e992d7b56d9df469c0c906000e0f82c089ec12677e7ade15e68a602d6b", 0xb2}, {&(0x7f0000000c40)="176d6b3905505e2a41391bf6fd66d8ad4ebc86e07694005204b0151bfa8dc581a5be209d8850a950791f10f76de79651272a11f6d7267276ff1596a47826a90a0b74b425d8ff2bbea5c5732f69a908c45b4b348abc24d2cd2031a9508ef8e3594bd12ebc38c466f76d6ff3618471f4f6574e1043766375eb889750ca25429f976089462bf1b689280ebc67640f4534eef4b7ffd85963bc5d8b114670c00f76cbdd722662dce5fc58daf323bf987ef7d646a99794c02b62b30e189691c4be9094ea58e9df52d9dbd9e0fae7a4a130246680b2", 0xd2}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55ae9543ea21d63f85d9a5a996f6fa32ead42a9b7e97a7ae1b4a8f76ff9321b4ec76606f9709bb57eda4e8c45e797ff2cabc03a3d03ca57b5239833610ac4306ac2a443c768b9365de67f9f9be49fe7d6f4d71abedeb55ab91ddd31154758fcaa8f25a56126152b9ba46d9bd4cd0d67de6fda9f72a37319681c1750045b363a3b90faecc5b5cbc0a241152a62edc2d081937058931cfb823591b49c610995a895f214c473ef6e1d49051b9198877e4e9d920ff", 0xea}], 0x6, 0x0, 0x0, 0xc0}], 0x2, 0x48040)
r4 = socket$alg(0x26, 0x5, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0xc0400)
bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmsg$AUDIT_GET_FEATURE(r5, &(0x7f0000000580)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x3fb, 0x20, 0x70bd25, 0x25dfdbfd, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8014}, 0x8044)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000600)="f20f78de8b6a9af51d2a000f228466b80500000066b92e3d00000f01c1b8ba008ec0c4c2d5dc080f01c566b8000000800f23c80f21f86635000080000f23f8b8e1008ed8f0305900", 0x48}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000001640)={0x3, 'vlan0\x00', {0x200000a}, 0x1})

34.53106ms ago: executing program 1 (id=1748):
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff002, 0x0, 0x2000000000032, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
bind$qrtr(r1, &(0x7f00000000c0)={0x2a, 0x1, 0xf0}, 0xc)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000009c0)="d8000000100081064e81f782db44b9040a1d080404000000000081a1180002000600142603600e1208000f000000000100001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e40ae8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccc29e00360db70100000d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e7834", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x8000800)
getgroups(0x2, &(0x7f00000000c0)=[0xee00, 0x0])

0s ago: executing program 8 (id=1749):
r0 = socket(0x1, 0x2, 0x100)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x4, 0x8000000, 0xfffffffb, 0xc}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x10, 0x701, 0x0, 0xffffffff, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x14\x00'}]}, 0x1c}}, 0x20008080)
sendmsg$nl_generic(r1, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x18, 0x13, 0x1, 0x70bd2c, 0x25dfdbfc, {0x1b}, [@typed={0x4, 0x10b}]}, 0x18}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000)
keyctl$restrict_keyring(0x1d, 0xffffffffffffffff, &(0x7f0000000140)='trusted\x00', 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000001d40)={0x0, 0x0, &(0x7f0000001d00)=[{&(0x7f0000000d00)="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", 0x1000}], 0x1}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000900)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000008c0)={&(0x7f00000007c0)={0xc8, 0x35, 0x100, 0x70bd26, 0x25dfdbfc, {0xe}, [@generic="5c554c5f4b0ca9037d9d5ea72774d4cbfa668f3854bb0dad470fe7ee811f21ba1aeb41930ad05bb3f433e1606d3c50998a8b57c5e612bfc73e0d6f265ccfc38da9466348ac0f265d732d2471d5435b6932032a8dcdd63d72dc1552db6a0569a022cbb3b607a307", @generic="e7bc7cb54e4c2a6e11e47027b56fc538e068afe242c3bf4cc33b559bce04edf5fe80b8ceb423feb43fa7ea86d6169fbeff85ac5fcf2ea67960360531", @nested={0x10, 0xff, 0x0, 0x1, [@nested={0x4, 0x74}, @typed={0x8, 0x132, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x42}}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x8014}, 0x24008000)
sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x35, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000018000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r6, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000540)={0x48, 0x0, 0x22b, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME={0x20, 0x33, @data_frame={@a_msdu=@type00={{0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x3}, @device_b, @device_b, @random="02e8823c1274", {0x3, 0x81}, "", @void, @value=@ver_80211n={0x0, 0x4, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1}}}}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x48}, 0x1, 0x0, 0x0, 0x11}, 0x24000800)
getsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f0000000240)={@dev, <r8=>0x0}, &(0x7f00000002c0)=0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000003c0)={'gre0\x00', &(0x7f0000000300)={'syztnl1\x00', <r9=>0x0, 0x1, 0x0, 0x84, 0x5, {{0x19, 0x4, 0x2, 0x11, 0x64, 0x67, 0x0, 0xb, 0x2f, 0x0, @local, @remote, {[@timestamp_prespec={0x44, 0xc, 0x1b, 0x3, 0x8, [{@loopback, 0x3}]}, @lsrr={0x83, 0x17, 0x3c, [@dev={0xac, 0x14, 0x14, 0x2f}, @empty, @local, @dev={0xac, 0x14, 0x14, 0x37}, @private=0xa010102]}, @lsrr={0x83, 0xb, 0x9f, [@dev={0xac, 0x14, 0x14, 0x2d}, @multicast2]}, @noop, @timestamp={0x44, 0x8, 0xf4, 0x0, 0xe, [0x400]}, @timestamp={0x44, 0x18, 0x41, 0x0, 0xa, [0x0, 0xd, 0x5, 0x7, 0x8]}, @end]}}}}})
getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, &(0x7f0000000400), &(0x7f0000000440)=0x4)
r10 = syz_usb_connect$hid(0x0, 0x75, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x46d, 0xc225, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xf0, 0x35, "", [{{0x9, 0x4, 0x0, 0xff, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x81, 0x3, 0x1, {0x22, 0x28}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x3, 0xbe, 0x8}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r10, 0x0, 0x0)
syz_usb_control_io(r10, &(0x7f0000000040)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB="0000280000002811c263138526792c3cbdeace918d0fb7a0f8cc6e446c4e88e78881ce2a52973661d67a0c554438"], 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000480)={'team0\x00', <r11=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r4, &(0x7f0000000780)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40080}, 0xc, &(0x7f0000000740)={&(0x7f0000000b00)={0x158, r5, 0x0, 0x70bd2b, 0x25dfdbfe, {}, [@HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}]}, 0x158}, 0x1, 0x0, 0x0, 0x4}, 0x484d)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r6, &(0x7f0000000100)={0x0, 0x59, 0xffffffffffffffff, 0x1, 0x0, 0x0, 0x20004000}, 0x4)
setsockopt$bt_l2cap_L2CAP_CONNINFO(r2, 0x6, 0x2, &(0x7f0000000080)={0x6, "bb5df1"}, 0x6)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001200010a000000000ec000008000eb"], 0x26}, 0x1, 0x0, 0x0, 0x90}, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r4, &(0x7f00000009c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00012cbd700014dcdf25060000001c00018008000100", @ANYRES32=0x0, @ANYBLOB="080003000300000008000100", @ANYRES32=r8, @ANYBLOB], 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x8008)

kernel console output (not intermixed with test programs):

dummy_hcd.8/usb9/9-1/rc/rc0
[  311.333424][ T5697] input: DigitalNow TinyUSB 2 DVB-t Receiver as /devices/platform/dummy_hcd.8/usb9/9-1/rc/rc0/input11
[  311.382829][T10767] binder: 10766:10767 ioctl c0306201 200000000180 returned -14
[  311.580416][ T5697] dvb-usb: schedule remote query interval to 400 msecs.
[  311.580883][ T5697] vp7045: USB control message 'out' went wrong.
[  311.580894][ T5697] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver successfully initialized and connected.
[  311.698592][ T5697] usb 9-1: USB disconnect, device number 3
[  311.715450][ T5610] Bluetooth: hci4: command 0x0406 tx timeout
[  311.910102][T10786] veth1_macvtap: left promiscuous mode
[  311.942613][    C0] [drm:vkms_crtc_handle_vblank_timeout] *ERROR* vkms failure on handling vblank
[  311.996696][T10790] program syz.8.1362 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  312.568739][T10804] binder: 10803:10804 ioctl c0306201 200000000180 returned -14
[  312.777018][T10811] FAULT_INJECTION: forcing a failure.
[  312.777018][T10811] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.777054][T10811] CPU: 0 UID: 0 PID: 10811 Comm: syz.3.1374 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  312.777080][T10811] Tainted: [L]=SOFTLOCKUP
[  312.777086][T10811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  312.777098][T10811] Call Trace:
[  312.777105][T10811]  <TASK>
[  312.777113][T10811]  dump_stack_lvl+0xe8/0x150
[  312.777140][T10811]  should_fail_ex+0x46b/0x600
[  312.777172][T10811]  _copy_from_user+0x2d/0xb0
[  312.777194][T10811]  ___sys_sendmsg+0x1c6/0x360
[  312.777222][T10811]  ? __lock_acquire+0x6b5/0x2d10
[  312.777248][T10811]  ? __pfx____sys_sendmsg+0x10/0x10
[  312.777308][T10811]  ? __fget_files+0x2a/0x420
[  312.777329][T10811]  ? __fget_files+0x3a6/0x420
[  312.777360][T10811]  __x64_sys_sendmsg+0x1c3/0x2a0
[  312.777391][T10811]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  312.777428][T10811]  ? __pfx_ksys_write+0x10/0x10
[  312.777469][T10811]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.777491][T10811]  do_syscall_64+0x174/0x580
[  312.777518][T10811]  ? trace_irq_disable+0x3b/0x140
[  312.777538][T10811]  ? clear_bhb_loop+0x40/0x90
[  312.777562][T10811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.777581][T10811] RIP: 0033:0x7f18da66ce59
[  312.777598][T10811] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  312.777615][T10811] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  312.777636][T10811] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  312.777650][T10811] RDX: 0000000000008840 RSI: 0000200000000040 RDI: 0000000000000003
[  312.777663][T10811] RBP: 00007f18d88be090 R08: 0000000000000000 R09: 0000000000000000
[  312.777675][T10811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  312.777687][T10811] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  312.777716][T10811]  </TASK>
[  313.591317][T10835] binder: 10834:10835 ioctl c0306201 200000000180 returned -14
[  313.698446][ T5697] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver successfully deinitialized and disconnected.
[  314.025211][T10852] FAULT_INJECTION: forcing a failure.
[  314.025211][T10852] name failslab, interval 1, probability 0, space 0, times 0
[  314.025246][T10852] CPU: 0 UID: 0 PID: 10852 Comm: syz.9.1385 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  314.025273][T10852] Tainted: [L]=SOFTLOCKUP
[  314.025279][T10852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  314.025291][T10852] Call Trace:
[  314.025298][T10852]  <TASK>
[  314.025306][T10852]  dump_stack_lvl+0xe8/0x150
[  314.025334][T10852]  should_fail_ex+0x46b/0x600
[  314.025371][T10852]  should_failslab+0xa8/0x100
[  314.025398][T10852]  __kvmalloc_node_noprof+0x170/0x8e0
[  314.025424][T10852]  ? file_tty_write+0x2ec/0xa10
[  314.025445][T10852]  ? _mutex_trylock_nest_lock+0x128/0x180
[  314.025474][T10852]  file_tty_write+0x2ec/0xa10
[  314.025530][T10852]  vfs_write+0x629/0xba0
[  314.025565][T10852]  ? __pfx_vfs_write+0x10/0x10
[  314.025601][T10852]  ? __fget_files+0x2a/0x420
[  314.025632][T10852]  ksys_write+0x156/0x270
[  314.025660][T10852]  ? __pfx_ksys_write+0x10/0x10
[  314.025694][T10852]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.025716][T10852]  do_syscall_64+0x174/0x580
[  314.025743][T10852]  ? trace_irq_disable+0x3b/0x140
[  314.025764][T10852]  ? clear_bhb_loop+0x40/0x90
[  314.025787][T10852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.025805][T10852] RIP: 0033:0x7f9ea4cbce59
[  314.025822][T10852] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  314.025837][T10852] RSP: 002b:00007f9ea2f0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  314.025858][T10852] RAX: ffffffffffffffda RBX: 00007f9ea4f35fa0 RCX: 00007f9ea4cbce59
[  314.025871][T10852] RDX: 0000000000001006 RSI: 0000200000000000 RDI: 0000000000000004
[  314.025883][T10852] RBP: 00007f9ea2f0e090 R08: 0000000000000000 R09: 0000000000000000
[  314.025895][T10852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  314.025906][T10852] R13: 00007f9ea4f36038 R14: 00007f9ea4f35fa0 R15: 00007ffd923685b8
[  314.025937][T10852]  </TASK>
[  314.393040][ T5266] veth1_macvtap: entered promiscuous mode
[  314.940060][T10879] binder: 10877:10879 ioctl c0306201 200000000180 returned -14
[  315.364605][    T9] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  315.514497][    T9] usb 10-1: Using ep0 maxpacket: 32
[  315.547918][    T9] usb 10-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  315.547950][    T9] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  315.547968][    T9] usb 10-1: Product: syz
[  315.548036][    T9] usb 10-1: Manufacturer: syz
[  315.548050][    T9] usb 10-1: SerialNumber: syz
[  315.617167][    T9] usb 10-1: config 0 descriptor??
[  315.852949][T10889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  315.854021][T10889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  316.126543][    T9] airspy 10-1:0.0: Board ID: 00
[  316.126567][    T9] airspy 10-1:0.0: Firmware version: 
[  316.330802][T10889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  316.337287][T10889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  316.709720][    T9] airspy 10-1:0.0: usb_control_msg() failed -71 request 0e
[  316.750389][T10929] binder: 10928:10929 ioctl 4018620d 0 returned -22
[  316.759255][T10929] binder: 10928:10929 ioctl c0306201 200000000180 returned -14
[  316.836927][    T9] airspy 10-1:0.0: Registered as swradio24
[  316.836950][    T9] airspy 10-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  316.857541][    T9] usb 10-1: USB disconnect, device number 3
[  317.045897][T10941] FAULT_INJECTION: forcing a failure.
[  317.045897][T10941] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.045933][T10941] CPU: 1 UID: 0 PID: 10941 Comm: syz.3.1407 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  317.045958][T10941] Tainted: [L]=SOFTLOCKUP
[  317.045964][T10941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  317.045978][T10941] Call Trace:
[  317.045985][T10941]  <TASK>
[  317.045993][T10941]  dump_stack_lvl+0xe8/0x150
[  317.046021][T10941]  should_fail_ex+0x46b/0x600
[  317.046052][T10941]  _copy_from_user+0x2d/0xb0
[  317.046074][T10941]  do_sock_getsockopt+0x200/0x7e0
[  317.046105][T10941]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  317.046136][T10941]  ? __fget_files+0x3a6/0x420
[  317.046154][T10941]  ? __fget_files+0x2a/0x420
[  317.046178][T10941]  __x64_sys_getsockopt+0x1aa/0x250
[  317.046203][T10941]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.046221][T10941]  do_syscall_64+0x174/0x580
[  317.046246][T10941]  ? trace_irq_disable+0x3b/0x140
[  317.046265][T10941]  ? clear_bhb_loop+0x40/0x90
[  317.046286][T10941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.046302][T10941] RIP: 0033:0x7f18da66ce59
[  317.046320][T10941] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  317.046332][T10941] RSP: 002b:00007f18d889d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  317.046347][T10941] RAX: ffffffffffffffda RBX: 00007f18da8e6090 RCX: 00007f18da66ce59
[  317.046357][T10941] RDX: 0000000000000004 RSI: 0000000000000112 RDI: 0000000000000004
[  317.046366][T10941] RBP: 00007f18d889d090 R08: 0000200000000080 R09: 0000000000000000
[  317.046374][T10941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.046382][T10941] R13: 00007f18da8e6128 R14: 00007f18da8e6090 R15: 00007ffd04f2ba18
[  317.046404][T10941]  </TASK>
[  317.157051][ T1334] ieee802154 phy0 wpan0: encryption failed: -22
[  317.157146][ T1334] ieee802154 phy1 wpan1: encryption failed: -22
[  317.500725][ T7355] IPVS: starting estimator thread 0...
[  317.622401][T10953] IPVS: using max 10 ests per chain, 24000 per kthread
[  318.123100][T10976] binder: 10973:10976 ioctl 4018620d 0 returned -22
[  318.127181][T10976] binder: 10973:10976 ioctl c0306201 200000000180 returned -14
[  318.181992][T10978] FAULT_INJECTION: forcing a failure.
[  318.181992][T10978] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.182027][T10978] CPU: 0 UID: 0 PID: 10978 Comm: syz.8.1417 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  318.182053][T10978] Tainted: [L]=SOFTLOCKUP
[  318.182060][T10978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  318.182070][T10978] Call Trace:
[  318.182078][T10978]  <TASK>
[  318.182085][T10978]  dump_stack_lvl+0xe8/0x150
[  318.182114][T10978]  should_fail_ex+0x46b/0x600
[  318.182147][T10978]  _copy_from_user+0x2d/0xb0
[  318.182170][T10978]  do_seccomp+0x1aa/0xd30
[  318.182200][T10978]  ? __pfx_do_seccomp+0x10/0x10
[  318.182225][T10978]  ? ksys_write+0x248/0x270
[  318.182252][T10978]  ? __pfx_ksys_write+0x10/0x10
[  318.182284][T10978]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.182303][T10978]  do_syscall_64+0x174/0x580
[  318.182332][T10978]  ? clear_bhb_loop+0x40/0x90
[  318.182355][T10978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.182373][T10978] RIP: 0033:0x7f3c4601ce59
[  318.182391][T10978] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  318.182405][T10978] RSP: 002b:00007f3c4426e028 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[  318.182425][T10978] RAX: ffffffffffffffda RBX: 00007f3c46295fa0 RCX: 00007f3c4601ce59
[  318.182443][T10978] RDX: 0000200000000040 RSI: 0000000000000000 RDI: 0000000000000001
[  318.182453][T10978] RBP: 00007f3c4426e090 R08: 0000000000000000 R09: 0000000000000000
[  318.182464][T10978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.182473][T10978] R13: 00007f3c46296038 R14: 00007f3c46295fa0 R15: 00007ffd1038f658
[  318.182501][T10978]  </TASK>
[  318.795878][T10989] binder: 10988:10989 ioctl c0306201 200000000180 returned -14
[  318.825165][T10995] FAULT_INJECTION: forcing a failure.
[  318.825165][T10995] name failslab, interval 1, probability 0, space 0, times 0
[  318.825203][T10995] CPU: 0 UID: 0 PID: 10995 Comm: syz.8.1422 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  318.825229][T10995] Tainted: [L]=SOFTLOCKUP
[  318.825235][T10995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  318.825245][T10995] Call Trace:
[  318.825252][T10995]  <TASK>
[  318.825260][T10995]  dump_stack_lvl+0xe8/0x150
[  318.825287][T10995]  should_fail_ex+0x46b/0x600
[  318.825319][T10995]  should_failslab+0xa8/0x100
[  318.825344][T10995]  __kmalloc_noprof+0xdf/0x7b0
[  318.825365][T10995]  ? kfree+0x4d/0x6c0
[  318.825383][T10995]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  318.825410][T10995]  tomoyo_realpath_from_path+0xe3/0x5d0
[  318.825432][T10995]  ? tomoyo_domain+0xd7/0x130
[  318.825456][T10995]  ? tomoyo_path_number_perm+0x219/0x630
[  318.825483][T10995]  tomoyo_path_number_perm+0x246/0x630
[  318.825511][T10995]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  318.825538][T10995]  ? __lock_acquire+0x6b5/0x2d10
[  318.825562][T10995]  ? do_raw_spin_lock+0x12b/0x2f0
[  318.825613][T10995]  ? __fget_files+0x2a/0x420
[  318.825638][T10995]  ? __fget_files+0x2a/0x420
[  318.825659][T10995]  ? __fget_files+0x3a6/0x420
[  318.825680][T10995]  ? __fget_files+0x2a/0x420
[  318.825706][T10995]  security_file_ioctl+0xc3/0x2a0
[  318.825735][T10995]  __se_sys_ioctl+0x47/0x170
[  318.825762][T10995]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.825784][T10995]  do_syscall_64+0x174/0x580
[  318.825811][T10995]  ? trace_irq_disable+0x3b/0x140
[  318.825833][T10995]  ? clear_bhb_loop+0x40/0x90
[  318.825858][T10995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.825877][T10995] RIP: 0033:0x7f3c4601ce59
[  318.825895][T10995] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  318.825911][T10995] RSP: 002b:00007f3c4424d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  318.825931][T10995] RAX: ffffffffffffffda RBX: 00007f3c46296090 RCX: 00007f3c4601ce59
[  318.825945][T10995] RDX: 0000200000000040 RSI: 00000000c0306201 RDI: 0000000000000003
[  318.825958][T10995] RBP: 00007f3c4424d090 R08: 0000000000000000 R09: 0000000000000000
[  318.825970][T10995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.825982][T10995] R13: 00007f3c46296128 R14: 00007f3c46296090 R15: 00007ffd1038f658
[  318.826013][T10995]  </TASK>
[  318.831297][T10995] ERROR: Out of memory at tomoyo_realpath_from_path.
[  318.831528][T10993] binder: 10992:10993 ioctl c0306201 200000000180 returned -14
[  319.448008][T10986] syz.1.1418 (10986) used greatest stack depth: 16416 bytes left
[  319.532151][T11011] binder: 11007:11011 ioctl 4018620d 0 returned -22
[  319.538418][T11011] binder: 11007:11011 ioctl c0306201 200000000180 returned -14
[  319.611014][   T38] audit: type=1326 audit(1780642095.964:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.9.1425" exe="/root/ci-upstream-rust-kasan-gce/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9ea4cbce59 code=0x0
[  319.647230][T11018] FAULT_INJECTION: forcing a failure.
[  319.647230][T11018] name failslab, interval 1, probability 0, space 0, times 0
[  319.647253][T11018] CPU: 1 UID: 0 PID: 11018 Comm: syz.1.1427 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  319.647269][T11018] Tainted: [L]=SOFTLOCKUP
[  319.647273][T11018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  319.647279][T11018] Call Trace:
[  319.647283][T11018]  <TASK>
[  319.647288][T11018]  dump_stack_lvl+0xe8/0x150
[  319.647306][T11018]  should_fail_ex+0x46b/0x600
[  319.647325][T11018]  should_failslab+0xa8/0x100
[  319.647339][T11018]  __kmalloc_noprof+0xdf/0x7b0
[  319.647353][T11018]  ? iovec_from_user+0x87/0x250
[  319.647364][T11018]  ? __fget_files+0x2a/0x420
[  319.647378][T11018]  iovec_from_user+0x87/0x250
[  319.647391][T11018]  __import_iovec+0x163/0x7e0
[  319.647404][T11018]  ? __fget_files+0x2a/0x420
[  319.647415][T11018]  ? __fget_files+0x3a6/0x420
[  319.647434][T11018]  import_iovec+0x73/0xa0
[  319.647447][T11018]  __se_sys_vmsplice+0x27d/0x1620
[  319.647466][T11018]  ? get_pid_task+0x20/0x1f0
[  319.647477][T11018]  ? get_pid_task+0x20/0x1f0
[  319.647489][T11018]  ? __pfx___se_sys_vmsplice+0x10/0x10
[  319.647507][T11018]  ? do_raw_spin_lock+0x12b/0x2f0
[  319.647523][T11018]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  319.647539][T11018]  ? lockdep_hardirqs_on+0x7a/0x110
[  319.647554][T11018]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  319.647568][T11018]  ? rt_mutex_slowunlock+0x1cb/0x300
[  319.647585][T11018]  ? fput+0xa0/0xd0
[  319.647597][T11018]  ? ksys_write+0x248/0x270
[  319.647617][T11018]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.647629][T11018]  do_syscall_64+0x174/0x580
[  319.647643][T11018]  ? trace_irq_disable+0x3b/0x140
[  319.647655][T11018]  ? clear_bhb_loop+0x40/0x90
[  319.647668][T11018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.647677][T11018] RIP: 0033:0x7f90e5f6ce59
[  319.647688][T11018] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  319.647697][T11018] RSP: 002b:00007f90e41a5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[  319.647709][T11018] RAX: ffffffffffffffda RBX: 00007f90e61e6090 RCX: 00007f90e5f6ce59
[  319.647716][T11018] RDX: 0000000000000047 RSI: 0000200000000140 RDI: 0000000000000003
[  319.647723][T11018] RBP: 00007f90e41a5090 R08: 0000000000000000 R09: 0000000000000000
[  319.647729][T11018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.647735][T11018] R13: 00007f90e61e6128 R14: 00007f90e61e6090 R15: 00007ffe54c0cc88
[  319.647751][T11018]  </TASK>
[  322.000610][T11060] binder: BINDER_SET_CONTEXT_MGR already set
[  322.000625][T11060] binder: 11054:11060 ioctl 4018620d 200000000040 returned -16
[  322.005747][T11060] binder: 11054:11060 ioctl c0306201 0 returned -14
[  322.051571][T11055] binder: 11054:11055 ioctl c0306201 200000000180 returned -14
[  322.758520][T11074] fuse: Bad value for 'fd'
[  323.692025][T11087] FAULT_INJECTION: forcing a failure.
[  323.692025][T11087] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  323.692065][T11087] CPU: 1 UID: 0 PID: 11087 Comm: syz.9.1445 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  323.692086][T11087] Tainted: [L]=SOFTLOCKUP
[  323.692091][T11087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  323.692104][T11087] Call Trace:
[  323.692115][T11087]  <TASK>
[  323.692122][T11087]  dump_stack_lvl+0xe8/0x150
[  323.692145][T11087]  should_fail_ex+0x46b/0x600
[  323.692171][T11087]  _copy_from_user+0x2d/0xb0
[  323.692189][T11087]  prctl_set_mm+0x34b/0x1260
[  323.692218][T11087]  ? __lock_acquire+0x6b5/0x2d10
[  323.692239][T11087]  ? _parse_integer_limit+0x192/0x1e0
[  323.692263][T11087]  ? kstrtoull+0x12f/0x1d0
[  323.692286][T11087]  ? kstrtouint+0x6e/0xe0
[  323.692306][T11087]  ? __pfx_prctl_set_mm+0x10/0x10
[  323.692360][T11087]  ? cap_task_prctl+0x1dd/0xaa0
[  323.692382][T11087]  ? static_key_count+0x41/0x70
[  323.692396][T11087]  ? security_task_prctl+0x163/0x190
[  323.692416][T11087]  __se_sys_prctl+0x206/0x1910
[  323.692437][T11087]  ? __pfx___se_sys_prctl+0x10/0x10
[  323.692458][T11087]  ? __x64_sys_prctl+0x20/0xc0
[  323.692473][T11087]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.692488][T11087]  do_syscall_64+0x174/0x580
[  323.692510][T11087]  ? trace_irq_disable+0x3b/0x140
[  323.692527][T11087]  ? clear_bhb_loop+0x40/0x90
[  323.692545][T11087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.692561][T11087] RIP: 0033:0x7f9ea4cbce59
[  323.692577][T11087] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  323.692593][T11087] RSP: 002b:00007f9ea2f0e028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  323.692611][T11087] RAX: ffffffffffffffda RBX: 00007f9ea4f35fa0 RCX: 00007f9ea4cbce59
[  323.692622][T11087] RDX: 0000200000000100 RSI: 000000000000000e RDI: 0000000000000023
[  323.692632][T11087] RBP: 00007f9ea2f0e090 R08: 0000000000000000 R09: 0000000000000000
[  323.692642][T11087] R10: 0000000000000068 R11: 0000000000000246 R12: 0000000000000001
[  323.692651][T11087] R13: 00007f9ea4f36038 R14: 00007f9ea4f35fa0 R15: 00007ffd923685b8
[  323.692675][T11087]  </TASK>
[  323.990045][T11092] binder: BINDER_SET_CONTEXT_MGR already set
[  323.990061][T11092] binder: 11090:11092 ioctl 4018620d 200000000040 returned -16
[  323.990407][T11092] binder: 11090:11092 ioctl c0306201 0 returned -14
[  324.020728][T11092] binder: 11090:11092 ioctl c0306201 200000000180 returned -14
[  324.333391][T11104] fuse: Unknown parameter '00000000000000000003'
[  324.634444][   T37] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  324.821587][   T37] usb 4-1: Using ep0 maxpacket: 16
[  324.914221][   T37] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  324.914254][   T37] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  324.914407][   T37] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  324.914430][   T37] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.950063][T11121] netlink: 48 bytes leftover after parsing attributes in process `syz.9.1456'.
[  325.089274][   T37] usb 4-1: config 0 descriptor??
[  325.374627][ T5697] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  325.546696][ T5704] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  325.566495][ T5697] usb 9-1: config 0 has an invalid interface number: 50 but max is 0
[  325.566524][ T5697] usb 9-1: config 0 has no interface number 0
[  325.566567][ T5697] usb 9-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  325.570690][ T5697] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  325.570719][ T5697] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.570739][ T5697] usb 9-1: Product: syz
[  325.570753][ T5697] usb 9-1: Manufacturer: syz
[  325.570767][ T5697] usb 9-1: SerialNumber: syz
[  325.617665][ T5697] usb 9-1: config 0 descriptor??
[  325.712626][   T37] microsoft 0003:045E:07DA.0001: ignoring exceeding usage max
[  325.744504][ T5704] usb 10-1: device descriptor read/64, error -71
[  325.835971][    C1] yurex 9-1:0.50: yurex_interrupt - overflow with length 8, actual length is 8
[  326.125243][ T5704] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  326.146736][   T37] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0001/input/input12
[  326.274421][ T5704] usb 10-1: device descriptor read/64, error -71
[  326.393754][ T5704] usb usb10-port1: attempt power cycle
[  326.516809][ T5697] yurex 9-1:0.50: USB YUREX device now attached to Yurex #0
[  326.600985][ T5697] usb 9-1: USB disconnect, device number 4
[  326.762463][ T5697] yurex 9-1:0.50: USB YUREX #0 now disconnected
[  326.916125][ T5704] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  326.938551][ T5704] usb 10-1: device descriptor read/8, error -71
[  327.144036][   T37] microsoft 0003:045E:07DA.0001: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  327.184470][ T5704] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  327.211961][ T5704] usb 10-1: device descriptor read/8, error -71
[  327.308677][   T37] usb 4-1: USB disconnect, device number 3
[  327.365840][ T5704] usb usb10-port1: unable to enumerate USB device
[  328.037966][T11194] netlink: 48 bytes leftover after parsing attributes in process `syz.8.1466'.
[  328.134781][   T37] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  328.304485][   T37] usb 4-1: Using ep0 maxpacket: 16
[  328.320222][   T37] usb 4-1: unable to get BOS descriptor or descriptor too short
[  328.322710][   T37] usb 4-1: config 4 has an invalid interface number: 80 but max is 0
[  328.322736][   T37] usb 4-1: config 4 has no interface number 0
[  328.322766][   T37] usb 4-1: config 4 interface 80 has no altsetting 0
[  328.330468][   T37] usb 4-1: New USB device found, idVendor=2770, idProduct=913d, bcdDevice=86.10
[  328.330496][   T37] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  328.330516][   T37] usb 4-1: Product: syz
[  328.330529][   T37] usb 4-1: Manufacturer: syz
[  328.330544][   T37] usb 4-1: SerialNumber: syz
[  328.630247][T11174] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  328.630799][T11174] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  328.663652][T11174] team_slave_1: entered promiscuous mode
[  328.663675][T11174] team_slave_1: entered allmulticast mode
[  328.744016][   T37] gspca_main: sq905c-2.14.0 probing 2770:913d
[  328.775368][   T37] gspca_sq905c: sq905c_command: usb_control_msg failed (-71)
[  328.775388][   T37] sq905c 4-1:4.80: Get version command failed
[  328.775469][   T37] sq905c 4-1:4.80: probe with driver sq905c failed with error -71
[  328.865587][   T37] usb 4-1: USB disconnect, device number 4
[  328.895195][ T5704] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  329.103477][ T5704] usb 10-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice= 0.40
[  329.103508][ T5704] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  329.103528][ T5704] usb 10-1: Product: syz
[  329.103542][ T5704] usb 10-1: Manufacturer: syz
[  329.103556][ T5704] usb 10-1: SerialNumber: syz
[  329.479709][T11206] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  329.490076][T11206] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  329.694419][T11125] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  329.890374][T11125] usb 9-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  329.890404][T11125] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  329.890476][T11125] usb 9-1: Product: syz
[  329.890490][T11125] usb 9-1: Manufacturer: syz
[  329.890505][T11125] usb 9-1: SerialNumber: syz
[  329.978129][ T5704] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  329.978174][ T5704] usb 10-1: MIDIStreaming interface descriptor not found
[  330.039397][T11125] usb 9-1: config 0 descriptor??
[  330.551196][T11125] usb 9-1: ignoring: probably an ADSL modem
[  330.830362][   T38] audit: type=1326 audit(1780642107.184:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.9.1486" exe="/root/ci-upstream-rust-kasan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9ea4cbce59 code=0x0
[  330.963472][T11125] cxacru 9-1:0.0: usbatm_usb_probe: bind failed: -19!
[  331.054853][T11125] usb 9-1: USB disconnect, device number 5
[  331.449910][ T5704] usb 10-1: USB disconnect, device number 8
[  331.621786][   T38] audit: type=1326 audit(1780642107.964:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11300 comm="syz.8.1494" exe="/root/ci-upstream-rust-kasan-gce/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3c4601ce59 code=0x0
[  332.248057][ T7515] udevd[7515]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  332.339130][T11325] fuse: Unknown parameter 'fd00000000000000000003'
[  332.624513][ T5704] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  332.785331][ T5704] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  332.785359][ T5704] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  332.789376][ T5704] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  332.789403][ T5704] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  332.789424][ T5704] usb 2-1: SerialNumber: syz
[  333.067877][ T5704] usb 2-1: skipping empty audio interface (v1)
[  333.339458][ T5704] snd-usb-audio 2-1:1.0: probe with driver snd-usb-audio failed with error -22
[  333.379654][ T5704] usb 2-1: USB disconnect, device number 3
[  333.470294][ T7909] udevd[7909]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  333.762607][T11379] FAULT_INJECTION: forcing a failure.
[  333.762607][T11379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  333.762642][T11379] CPU: 1 UID: 0 PID: 11379 Comm: syz.9.1519 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  333.762670][T11379] Tainted: [L]=SOFTLOCKUP
[  333.762676][T11379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  333.762687][T11379] Call Trace:
[  333.762693][T11379]  <TASK>
[  333.762702][T11379]  dump_stack_lvl+0xe8/0x150
[  333.762729][T11379]  should_fail_ex+0x46b/0x600
[  333.762771][T11379]  _copy_from_user+0x2d/0xb0
[  333.762793][T11379]  __keyctl_dh_compute+0x1c3/0xd10
[  333.762820][T11379]  ? __lock_acquire+0x6b5/0x2d10
[  333.762845][T11379]  ? __pfx___keyctl_dh_compute+0x10/0x10
[  333.762888][T11379]  ? __lock_acquire+0x6b5/0x2d10
[  333.762914][T11379]  ? get_pid_task+0x20/0x1f0
[  333.762936][T11379]  keyctl_dh_compute+0x124/0x180
[  333.762959][T11379]  ? __pfx_keyctl_dh_compute+0x10/0x10
[  333.762980][T11379]  ? do_raw_spin_lock+0x12b/0x2f0
[  333.762993][T11379]  __se_sys_keyctl+0x44c/0x9e0
[  333.763010][T11379]  ? __pfx___se_sys_keyctl+0x10/0x10
[  333.763024][T11379]  ? lockdep_hardirqs_on+0x7a/0x110
[  333.763038][T11379]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  333.763054][T11379]  ? rt_mutex_slowunlock+0x1cb/0x300
[  333.763065][T11379]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  333.763081][T11379]  ? fput+0xa0/0xd0
[  333.763093][T11379]  ? ksys_write+0x248/0x270
[  333.763108][T11379]  ? __pfx_ksys_write+0x10/0x10
[  333.763124][T11379]  ? __x64_sys_keyctl+0x20/0xc0
[  333.763138][T11379]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.763149][T11379]  do_syscall_64+0x174/0x580
[  333.763164][T11379]  ? trace_irq_disable+0x3b/0x140
[  333.763175][T11379]  ? clear_bhb_loop+0x40/0x90
[  333.763188][T11379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.763198][T11379] RIP: 0033:0x7f9ea4cbce59
[  333.763209][T11379] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  333.763218][T11379] RSP: 002b:00007f9ea2f0e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  333.763231][T11379] RAX: ffffffffffffffda RBX: 00007f9ea4f35fa0 RCX: 00007f9ea4cbce59
[  333.763241][T11379] RDX: 0000200000002380 RSI: 0000200000000440 RDI: 0000000000000017
[  333.763248][T11379] RBP: 00007f9ea2f0e090 R08: 0000000000000000 R09: 0000000000000000
[  333.763254][T11379] R10: 0000000000001060 R11: 0000000000000246 R12: 0000000000000001
[  333.763260][T11379] R13: 00007f9ea4f36038 R14: 00007f9ea4f35fa0 R15: 00007ffd923685b8
[  333.763276][T11379]  </TASK>
[  333.797333][T11377] netlink: 'syz.1.1518': attribute type 4 has an invalid length.
[  333.876548][T11380] FAULT_INJECTION: forcing a failure.
[  333.876548][T11380] name failslab, interval 1, probability 0, space 0, times 0
[  333.876583][T11380] CPU: 1 UID: 0 PID: 11380 Comm: syz.3.1517 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  333.876610][T11380] Tainted: [L]=SOFTLOCKUP
[  333.876616][T11380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  333.876631][T11380] Call Trace:
[  333.876637][T11380]  <TASK>
[  333.876645][T11380]  dump_stack_lvl+0xe8/0x150
[  333.876674][T11380]  should_fail_ex+0x46b/0x600
[  333.876706][T11380]  should_failslab+0xa8/0x100
[  333.876739][T11380]  __kmalloc_noprof+0xdf/0x7b0
[  333.876760][T11380]  ? kfree+0x4d/0x6c0
[  333.876779][T11380]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  333.876808][T11380]  tomoyo_realpath_from_path+0xe3/0x5d0
[  333.876832][T11380]  ? tomoyo_domain+0xd7/0x130
[  333.876858][T11380]  ? tomoyo_path_number_perm+0x219/0x630
[  333.876887][T11380]  tomoyo_path_number_perm+0x246/0x630
[  333.876917][T11380]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  333.876944][T11380]  ? __lock_acquire+0x6b5/0x2d10
[  333.876968][T11380]  ? do_raw_spin_lock+0x12b/0x2f0
[  333.877017][T11380]  ? __fget_files+0x2a/0x420
[  333.877041][T11380]  ? __fget_files+0x2a/0x420
[  333.877060][T11380]  ? __fget_files+0x3a6/0x420
[  333.877080][T11380]  ? __fget_files+0x2a/0x420
[  333.877105][T11380]  security_file_ioctl+0xc3/0x2a0
[  333.877134][T11380]  __se_sys_ioctl+0x47/0x170
[  333.877160][T11380]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.877180][T11380]  do_syscall_64+0x174/0x580
[  333.877207][T11380]  ? trace_irq_disable+0x3b/0x140
[  333.877227][T11380]  ? clear_bhb_loop+0x40/0x90
[  333.877250][T11380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.877268][T11380] RIP: 0033:0x7f18da66ce59
[  333.877285][T11380] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  333.877300][T11380] RSP: 002b:00007f18d889d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  333.877320][T11380] RAX: ffffffffffffffda RBX: 00007f18da8e6090 RCX: 00007f18da66ce59
[  333.877334][T11380] RDX: 0000200000000080 RSI: 0000000000005412 RDI: 0000000000000003
[  333.877347][T11380] RBP: 00007f18d889d090 R08: 0000000000000000 R09: 0000000000000000
[  333.877359][T11380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  333.877369][T11380] R13: 00007f18da8e6128 R14: 00007f18da8e6090 R15: 00007ffd04f2ba18
[  333.877399][T11380]  </TASK>
[  333.893594][T11380] ERROR: Out of memory at tomoyo_realpath_from_path.
[  334.403514][T11390] syzkaller1: entered promiscuous mode
[  334.403538][T11390] syzkaller1: entered allmulticast mode
[  334.412721][T11390] FAULT_INJECTION: forcing a failure.
[  334.412721][T11390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  334.412765][T11390] CPU: 1 UID: 0 PID: 11390 Comm: syz.1.1522 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  334.412791][T11390] Tainted: [L]=SOFTLOCKUP
[  334.412797][T11390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  334.412808][T11390] Call Trace:
[  334.412815][T11390]  <TASK>
[  334.412823][T11390]  dump_stack_lvl+0xe8/0x150
[  334.412848][T11390]  should_fail_ex+0x46b/0x600
[  334.412881][T11390]  _copy_from_iter+0x1d3/0x1670
[  334.412905][T11390]  ? __lock_acquire+0x6b5/0x2d10
[  334.412930][T11390]  ? __pfx__copy_from_iter+0x10/0x10
[  334.412963][T11390]  tun_get_user+0x267/0x4450
[  334.412995][T11390]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  334.413026][T11390]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  334.413047][T11390]  ? reacquire_held_locks+0x80/0x190
[  334.413070][T11390]  ? rt_spin_lock+0x1e0/0x400
[  334.413095][T11390]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  334.413117][T11390]  ? __pfx_tun_get_user+0x10/0x10
[  334.413146][T11390]  ? rt_spin_unlock+0x14f/0x200
[  334.413171][T11390]  ? rt_spin_unlock+0x160/0x200
[  334.413195][T11390]  ? save_netdev_trace_buffer+0x4ba/0x5f0
[  334.413222][T11390]  ? ref_tracker_alloc+0x332/0x4a0
[  334.413248][T11390]  ? tun_get+0x157/0x2f0
[  334.413273][T11390]  ? vfs_write+0x629/0xba0
[  334.413295][T11390]  ? ksys_write+0x156/0x270
[  334.413319][T11390]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  334.413350][T11390]  ? tun_get+0x1c/0x2f0
[  334.413381][T11390]  ? tun_get+0x1c/0x2f0
[  334.413406][T11390]  ? tun_get+0x1c/0x2f0
[  334.413439][T11390]  tun_chr_write_iter+0x119/0x210
[  334.413469][T11390]  vfs_write+0x629/0xba0
[  334.413499][T11390]  ? __pfx_vfs_write+0x10/0x10
[  334.413533][T11390]  ? __fget_files+0x2a/0x420
[  334.413564][T11390]  ksys_write+0x156/0x270
[  334.413590][T11390]  ? __pfx_ksys_write+0x10/0x10
[  334.413622][T11390]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.413642][T11390]  do_syscall_64+0x174/0x580
[  334.413670][T11390]  ? clear_bhb_loop+0x40/0x90
[  334.413693][T11390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.413711][T11390] RIP: 0033:0x7f90e5f6ce59
[  334.413734][T11390] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  334.413750][T11390] RSP: 002b:00007f90e41c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  334.413770][T11390] RAX: ffffffffffffffda RBX: 00007f90e61e5fa0 RCX: 00007f90e5f6ce59
[  334.413784][T11390] RDX: 000000000000fdef RSI: 0000200000000240 RDI: 0000000000000003
[  334.413796][T11390] RBP: 00007f90e41c6090 R08: 0000000000000000 R09: 0000000000000000
[  334.413807][T11390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.413819][T11390] R13: 00007f90e61e6038 R14: 00007f90e61e5fa0 R15: 00007ffe54c0cc88
[  334.413848][T11390]  </TASK>
[  334.951286][T11400] FAULT_INJECTION: forcing a failure.
[  334.951286][T11400] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  334.951321][T11400] CPU: 1 UID: 0 PID: 11400 Comm: syz.9.1527 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  334.951347][T11400] Tainted: [L]=SOFTLOCKUP
[  334.951354][T11400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  334.951365][T11400] Call Trace:
[  334.951372][T11400]  <TASK>
[  334.951381][T11400]  dump_stack_lvl+0xe8/0x150
[  334.951410][T11400]  should_fail_ex+0x46b/0x600
[  334.951443][T11400]  _copy_from_user+0x2d/0xb0
[  334.951466][T11400]  ___sys_sendmsg+0x1c6/0x360
[  334.951494][T11400]  ? __lock_acquire+0x6b5/0x2d10
[  334.951521][T11400]  ? __pfx____sys_sendmsg+0x10/0x10
[  334.951582][T11400]  ? __fget_files+0x2a/0x420
[  334.951602][T11400]  ? __fget_files+0x3a6/0x420
[  334.951630][T11400]  __x64_sys_sendmsg+0x1c3/0x2a0
[  334.951661][T11400]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  334.951699][T11400]  ? __pfx_ksys_write+0x10/0x10
[  334.951733][T11400]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.951753][T11400]  do_syscall_64+0x174/0x580
[  334.951781][T11400]  ? trace_irq_disable+0x3b/0x140
[  334.951802][T11400]  ? clear_bhb_loop+0x40/0x90
[  334.951824][T11400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.951842][T11400] RIP: 0033:0x7f9ea4cbce59
[  334.951861][T11400] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  334.951878][T11400] RSP: 002b:00007f9ea2f0e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  334.951899][T11400] RAX: ffffffffffffffda RBX: 00007f9ea4f35fa0 RCX: 00007f9ea4cbce59
[  334.951912][T11400] RDX: 0000000000004800 RSI: 0000200000000300 RDI: 0000000000000003
[  334.951925][T11400] RBP: 00007f9ea2f0e090 R08: 0000000000000000 R09: 0000000000000000
[  334.951940][T11400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.951951][T11400] R13: 00007f9ea4f36038 R14: 00007f9ea4f35fa0 R15: 00007ffd923685b8
[  334.951982][T11400]  </TASK>
[  335.012184][T11402] FAULT_INJECTION: forcing a failure.
[  335.012184][T11402] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.012219][T11402] CPU: 1 UID: 0 PID: 11402 Comm: syz.1.1528 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  335.012246][T11402] Tainted: [L]=SOFTLOCKUP
[  335.012253][T11402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  335.012265][T11402] Call Trace:
[  335.012272][T11402]  <TASK>
[  335.012279][T11402]  dump_stack_lvl+0xe8/0x150
[  335.012307][T11402]  should_fail_ex+0x46b/0x600
[  335.012339][T11402]  _copy_from_user+0x2d/0xb0
[  335.012361][T11402]  ___sys_sendmsg+0x1c6/0x360
[  335.012389][T11402]  ? __lock_acquire+0x6b5/0x2d10
[  335.012414][T11402]  ? __pfx____sys_sendmsg+0x10/0x10
[  335.012474][T11402]  ? __fget_files+0x2a/0x420
[  335.012494][T11402]  ? __fget_files+0x3a6/0x420
[  335.012524][T11402]  __x64_sys_sendmsg+0x1c3/0x2a0
[  335.012555][T11402]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  335.012591][T11402]  ? __pfx_ksys_write+0x10/0x10
[  335.012624][T11402]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.012644][T11402]  do_syscall_64+0x174/0x580
[  335.012670][T11402]  ? trace_irq_disable+0x3b/0x140
[  335.012690][T11402]  ? clear_bhb_loop+0x40/0x90
[  335.012713][T11402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.012731][T11402] RIP: 0033:0x7f90e5f6ce59
[  335.012749][T11402] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  335.012765][T11402] RSP: 002b:00007f90e41c6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  335.012785][T11402] RAX: ffffffffffffffda RBX: 00007f90e61e5fa0 RCX: 00007f90e5f6ce59
[  335.012798][T11402] RDX: 0000000000000810 RSI: 0000200000000300 RDI: 0000000000000003
[  335.012810][T11402] RBP: 00007f90e41c6090 R08: 0000000000000000 R09: 0000000000000000
[  335.012822][T11402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  335.012833][T11402] R13: 00007f90e61e6038 R14: 00007f90e61e5fa0 R15: 00007ffe54c0cc88
[  335.012862][T11402]  </TASK>
[  335.114517][ T5704] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  335.337496][ T5704] usb 9-1: Using ep0 maxpacket: 8
[  335.340812][ T5704] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  335.340867][ T5704] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  335.340890][ T5704] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  335.340914][ T5704] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  335.340938][ T5704] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  335.340978][ T5704] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  335.341000][ T5704] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.424496][ T5697] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  335.573741][ T5704] usb 9-1: GET_CAPABILITIES returned 0
[  335.573771][ T5704] usbtmc 9-1:16.0: can't read capabilities
[  335.617152][ T5697] usb 10-1: unable to get BOS descriptor or descriptor too short
[  335.618233][ T5697] usb 10-1: config 4 has an invalid interface number: 150 but max is 0
[  335.618259][ T5697] usb 10-1: config 4 has no interface number 0
[  335.620352][ T5697] usb 10-1: New USB device found, idVendor=16ca, idProduct=1502, bcdDevice=e8.82
[  335.620379][ T5697] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  335.620399][ T5697] usb 10-1: Product: syz
[  335.620408][ T5697] usb 10-1: Manufacturer: syz
[  335.620416][ T5697] usb 10-1: SerialNumber: syz
[  335.852761][T11404] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  335.870398][T11404] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  335.873861][T11404] 9pnet_fd: Insufficient options for proto=fd
[  335.875047][ T5610] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  335.956530][ T5697] usb 10-1: USB disconnect, device number 9
[  335.962044][T11397] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  336.251781][T11422] FAULT_INJECTION: forcing a failure.
[  336.251781][T11422] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  336.251804][T11422] CPU: 0 UID: 0 PID: 11422 Comm: syz.3.1536 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  336.251820][T11422] Tainted: [L]=SOFTLOCKUP
[  336.251824][T11422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  336.251834][T11422] Call Trace:
[  336.251841][T11422]  <TASK>
[  336.251848][T11422]  dump_stack_lvl+0xe8/0x150
[  336.251876][T11422]  should_fail_ex+0x46b/0x600
[  336.251908][T11422]  _copy_from_user+0x2d/0xb0
[  336.251931][T11422]  tls_setsockopt+0x678/0x15c0
[  336.251966][T11422]  ? __pfx_tls_setsockopt+0x10/0x10
[  336.251985][T11422]  ? aa_sock_opt_perm+0x131/0x1f0
[  336.251998][T11422]  ? sock_common_setsockopt+0x36/0xc0
[  336.252012][T11422]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  336.252026][T11422]  do_sock_setsockopt+0x17c/0x1b0
[  336.252043][T11422]  __x64_sys_setsockopt+0x143/0x1b0
[  336.252059][T11422]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.252071][T11422]  do_syscall_64+0x174/0x580
[  336.252086][T11422]  ? trace_irq_disable+0x3b/0x140
[  336.252098][T11422]  ? clear_bhb_loop+0x40/0x90
[  336.252116][T11422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.252126][T11422] RIP: 0033:0x7f18da66ce59
[  336.252137][T11422] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  336.252146][T11422] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  336.252157][T11422] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  336.252166][T11422] RDX: 0000000000000002 RSI: 000000000000011a RDI: 0000000000000004
[  336.252172][T11422] RBP: 00007f18d88be090 R08: 0000000000000038 R09: 0000000000000000
[  336.252179][T11422] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001
[  336.252185][T11422] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  336.252201][T11422]  </TASK>
[  336.598747][T11430] FAULT_INJECTION: forcing a failure.
[  336.598747][T11430] name failslab, interval 1, probability 0, space 0, times 0
[  336.598781][T11430] CPU: 0 UID: 0 PID: 11430 Comm: syz.1.1538 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  336.598808][T11430] Tainted: [L]=SOFTLOCKUP
[  336.598815][T11430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  336.598825][T11430] Call Trace:
[  336.598833][T11430]  <TASK>
[  336.598841][T11430]  dump_stack_lvl+0xe8/0x150
[  336.598869][T11430]  should_fail_ex+0x46b/0x600
[  336.598901][T11430]  should_failslab+0xa8/0x100
[  336.598926][T11430]  __kmalloc_noprof+0xdf/0x7b0
[  336.598947][T11430]  ? kfree+0x4d/0x6c0
[  336.598965][T11430]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  336.598991][T11430]  tomoyo_realpath_from_path+0xe3/0x5d0
[  336.599014][T11430]  ? tomoyo_domain+0xd7/0x130
[  336.599042][T11430]  ? tomoyo_path_number_perm+0x219/0x630
[  336.599071][T11430]  tomoyo_path_number_perm+0x246/0x630
[  336.599102][T11430]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  336.599130][T11430]  ? __lock_acquire+0x6b5/0x2d10
[  336.599156][T11430]  ? do_raw_spin_lock+0x12b/0x2f0
[  336.599205][T11430]  ? __fget_files+0x2a/0x420
[  336.599230][T11430]  ? __fget_files+0x2a/0x420
[  336.599252][T11430]  ? __fget_files+0x3a6/0x420
[  336.599272][T11430]  ? __fget_files+0x2a/0x420
[  336.599300][T11430]  security_file_ioctl+0xc3/0x2a0
[  336.599329][T11430]  __se_sys_ioctl+0x47/0x170
[  336.599356][T11430]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.599376][T11430]  do_syscall_64+0x174/0x580
[  336.599404][T11430]  ? trace_irq_disable+0x3b/0x140
[  336.599426][T11430]  ? clear_bhb_loop+0x40/0x90
[  336.599450][T11430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.599469][T11430] RIP: 0033:0x7f90e5f6ce59
[  336.599493][T11430] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  336.599509][T11430] RSP: 002b:00007f90e41c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  336.599528][T11430] RAX: ffffffffffffffda RBX: 00007f90e61e5fa0 RCX: 00007f90e5f6ce59
[  336.599542][T11430] RDX: 0000200000000040 RSI: 00000000c034564b RDI: 0000000000000003
[  336.599555][T11430] RBP: 00007f90e41c6090 R08: 0000000000000000 R09: 0000000000000000
[  336.599567][T11430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  336.599579][T11430] R13: 00007f90e61e6038 R14: 00007f90e61e5fa0 R15: 00007ffe54c0cc88
[  336.599610][T11430]  </TASK>
[  336.599629][T11430] ERROR: Out of memory at tomoyo_realpath_from_path.
[  336.675961][ T5704] usb 9-1: USB disconnect, device number 6
[  337.064563][ T5697] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  337.064756][T11446] sg_read: process 666 (syz.8.1547) changed security contexts after opening file descriptor, this is not allowed.
[  337.244507][ T5697] usb 10-1: Using ep0 maxpacket: 8
[  337.259587][ T5697] usb 10-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  337.259618][ T5697] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  337.259636][ T5697] usb 10-1: Product: syz
[  337.259650][ T5697] usb 10-1: Manufacturer: syz
[  337.259663][ T5697] usb 10-1: SerialNumber: syz
[  337.299180][ T5697] usb 10-1: config 0 descriptor??
[  337.306042][T11457] FAULT_INJECTION: forcing a failure.
[  337.306042][T11457] name failslab, interval 1, probability 0, space 0, times 0
[  337.306082][T11457] CPU: 1 UID: 0 PID: 11457 Comm: syz.8.1549 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  337.306108][T11457] Tainted: [L]=SOFTLOCKUP
[  337.306114][T11457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  337.306126][T11457] Call Trace:
[  337.306132][T11457]  <TASK>
[  337.306140][T11457]  dump_stack_lvl+0xe8/0x150
[  337.306169][T11457]  should_fail_ex+0x46b/0x600
[  337.306201][T11457]  should_failslab+0xa8/0x100
[  337.306227][T11457]  __kmalloc_noprof+0xdf/0x7b0
[  337.306248][T11457]  ? kfree+0x4d/0x6c0
[  337.306267][T11457]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  337.306295][T11457]  tomoyo_realpath_from_path+0xe3/0x5d0
[  337.306318][T11457]  ? tomoyo_domain+0xd7/0x130
[  337.306345][T11457]  ? tomoyo_path_number_perm+0x219/0x630
[  337.306373][T11457]  tomoyo_path_number_perm+0x246/0x630
[  337.306402][T11457]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  337.306430][T11457]  ? __lock_acquire+0x6b5/0x2d10
[  337.306454][T11457]  ? do_raw_spin_lock+0x12b/0x2f0
[  337.306502][T11457]  ? __fget_files+0x2a/0x420
[  337.306526][T11457]  ? __fget_files+0x2a/0x420
[  337.306546][T11457]  ? __fget_files+0x3a6/0x420
[  337.306566][T11457]  ? __fget_files+0x2a/0x420
[  337.306593][T11457]  security_file_ioctl+0xc3/0x2a0
[  337.306622][T11457]  __se_sys_ioctl+0x47/0x170
[  337.306647][T11457]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.306668][T11457]  do_syscall_64+0x174/0x580
[  337.306695][T11457]  ? trace_irq_disable+0x3b/0x140
[  337.306715][T11457]  ? clear_bhb_loop+0x40/0x90
[  337.306738][T11457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.306756][T11457] RIP: 0033:0x7f3c4601ce59
[  337.306773][T11457] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  337.306788][T11457] RSP: 002b:00007f3c4426e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  337.306807][T11457] RAX: ffffffffffffffda RBX: 00007f3c46295fa0 RCX: 00007f3c4601ce59
[  337.306821][T11457] RDX: 0000000000000003 RSI: 0000000000003b66 RDI: 0000000000000003
[  337.306833][T11457] RBP: 00007f3c4426e090 R08: 0000000000000000 R09: 0000000000000000
[  337.306844][T11457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  337.306855][T11457] R13: 00007f3c46296038 R14: 00007f3c46295fa0 R15: 00007ffd1038f658
[  337.306885][T11457]  </TASK>
[  337.324889][T11457] ERROR: Out of memory at tomoyo_realpath_from_path.
[  337.366078][ T5697] gspca_main: sonixj-2.14.0 probing 0c45:613e
[  337.397937][T11459] FAULT_INJECTION: forcing a failure.
[  337.397937][T11459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  337.397973][T11459] CPU: 1 UID: 0 PID: 11459 Comm: syz.3.1551 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  337.398002][T11459] Tainted: [L]=SOFTLOCKUP
[  337.398009][T11459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  337.398020][T11459] Call Trace:
[  337.398027][T11459]  <TASK>
[  337.398035][T11459]  dump_stack_lvl+0xe8/0x150
[  337.398063][T11459]  should_fail_ex+0x46b/0x600
[  337.398095][T11459]  _copy_from_user+0x2d/0xb0
[  337.398119][T11459]  ___sys_sendmsg+0x1c6/0x360
[  337.398146][T11459]  ? __lock_acquire+0x6b5/0x2d10
[  337.398172][T11459]  ? __pfx____sys_sendmsg+0x10/0x10
[  337.398231][T11459]  ? __fget_files+0x2a/0x420
[  337.398252][T11459]  ? __fget_files+0x3a6/0x420
[  337.398283][T11459]  __x64_sys_sendmsg+0x1c3/0x2a0
[  337.398314][T11459]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  337.398350][T11459]  ? __pfx_ksys_write+0x10/0x10
[  337.398384][T11459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.398404][T11459]  do_syscall_64+0x174/0x580
[  337.398438][T11459]  ? trace_irq_disable+0x3b/0x140
[  337.398459][T11459]  ? clear_bhb_loop+0x40/0x90
[  337.398482][T11459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.398500][T11459] RIP: 0033:0x7f18da66ce59
[  337.398517][T11459] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  337.398533][T11459] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  337.398552][T11459] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  337.398566][T11459] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  337.398578][T11459] RBP: 00007f18d88be090 R08: 0000000000000000 R09: 0000000000000000
[  337.398590][T11459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  337.398602][T11459] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  337.398631][T11459]  </TASK>
[  338.262700][T11477] input: syz1 as /devices/virtual/input/input13
[  338.321672][ T5697] gspca_sonixj: reg_w1 err -110
[  338.321767][ T5697] sonixj 10-1:0.0: probe with driver sonixj failed with error -110
[  338.322698][T11478] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1559'.
[  338.354510][ T5620] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  338.539153][ T5620] usb 4-1: config 1 has an invalid interface number: 188 but max is 0
[  338.539182][ T5620] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  338.539201][ T5620] usb 4-1: config 1 has no interface number 0
[  338.539244][ T5620] usb 4-1: config 1 interface 188 altsetting 209 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  338.539272][ T5620] usb 4-1: config 1 interface 188 has no altsetting 0
[  338.542399][ T5620] usb 4-1: New USB device found, idVendor=2040, idProduct=7210, bcdDevice=5b.6b
[  338.542426][ T5620] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  338.542444][ T5620] usb 4-1: Product: syz
[  338.542456][ T5620] usb 4-1: Manufacturer: syz
[  338.542468][ T5620] usb 4-1: SerialNumber: syz
[  338.936888][ T5620] usb 4-1: unknown interface protocol 0xc1, assuming v1
[  338.936914][ T5620] usb 4-1: 188:0 : does not exist
[  339.000562][ T5620] usb 4-1: USB disconnect, device number 5
[  339.105606][ T7909] udevd[7909]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.188/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  339.134684][ T5697] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  339.286811][ T5697] usb 2-1: Using ep0 maxpacket: 32
[  339.288982][ T5697] usb 2-1: unable to get BOS descriptor or descriptor too short
[  339.293040][ T5697] usb 2-1: New USB device found, idVendor=2b53, idProduct=0023, bcdDevice= 0.40
[  339.293070][ T5697] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  339.293089][ T5697] usb 2-1: Product: syz
[  339.293103][ T5697] usb 2-1: Manufacturer: syz
[  339.293116][ T5697] usb 2-1: SerialNumber: syz
[  339.709689][T11497] FAULT_INJECTION: forcing a failure.
[  339.709689][T11497] name failslab, interval 1, probability 0, space 0, times 0
[  339.709719][T11497] CPU: 0 UID: 0 PID: 11497 Comm: syz.3.1566 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  339.709740][T11497] Tainted: [L]=SOFTLOCKUP
[  339.709745][T11497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  339.709753][T11497] Call Trace:
[  339.709759][T11497]  <TASK>
[  339.709766][T11497]  dump_stack_lvl+0xe8/0x150
[  339.709789][T11497]  should_fail_ex+0x46b/0x600
[  339.709814][T11497]  should_failslab+0xa8/0x100
[  339.709835][T11497]  __kmalloc_noprof+0xdf/0x7b0
[  339.709851][T11497]  ? kfree+0x4d/0x6c0
[  339.709865][T11497]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  339.709887][T11497]  tomoyo_realpath_from_path+0xe3/0x5d0
[  339.709904][T11497]  ? tomoyo_domain+0xd7/0x130
[  339.709924][T11497]  ? tomoyo_path_number_perm+0x219/0x630
[  339.709946][T11497]  tomoyo_path_number_perm+0x246/0x630
[  339.709971][T11497]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  339.709995][T11497]  ? __lock_acquire+0x6b5/0x2d10
[  339.710022][T11497]  ? do_raw_spin_lock+0x12b/0x2f0
[  339.710067][T11497]  ? __fget_files+0x2a/0x420
[  339.710092][T11497]  ? __fget_files+0x2a/0x420
[  339.710113][T11497]  ? __fget_files+0x3a6/0x420
[  339.710138][T11497]  ? __fget_files+0x2a/0x420
[  339.710159][T11497]  security_file_ioctl+0xc3/0x2a0
[  339.710187][T11497]  __se_sys_ioctl+0x47/0x170
[  339.710212][T11497]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.710231][T11497]  do_syscall_64+0x174/0x580
[  339.710253][T11497]  ? trace_irq_disable+0x3b/0x140
[  339.710277][T11497]  ? clear_bhb_loop+0x40/0x90
[  339.710295][T11497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.710310][T11497] RIP: 0033:0x7f18da66ce59
[  339.710324][T11497] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  339.710337][T11497] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  339.710354][T11497] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  339.710365][T11497] RDX: 0000200000000200 RSI: 00000000c03064b7 RDI: 0000000000000003
[  339.710375][T11497] RBP: 00007f18d88be090 R08: 0000000000000000 R09: 0000000000000000
[  339.710385][T11497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  339.710396][T11497] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  339.710422][T11497]  </TASK>
[  339.712929][T11497] ERROR: Out of memory at tomoyo_realpath_from_path.
[  339.716337][ T5704] usb 10-1: USB disconnect, device number 10
[  340.225565][T11508] comedi comedi3: comedi_config --init_data is deprecated
[  340.446448][T11517] nbd: must specify a size in bytes for the device
[  340.446666][ T5697] usb 2-1: USB disconnect, device number 4
[  340.508817][T11517] nbd: must specify a size in bytes for the device
[  340.737729][T11529] FAULT_INJECTION: forcing a failure.
[  340.737729][T11529] name failslab, interval 1, probability 0, space 0, times 0
[  340.737764][T11529] CPU: 1 UID: 0 PID: 11529 Comm: syz.9.1579 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  340.737791][T11529] Tainted: [L]=SOFTLOCKUP
[  340.737797][T11529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  340.737808][T11529] Call Trace:
[  340.737816][T11529]  <TASK>
[  340.737824][T11529]  dump_stack_lvl+0xe8/0x150
[  340.737850][T11529]  should_fail_ex+0x46b/0x600
[  340.737882][T11529]  should_failslab+0xa8/0x100
[  340.737908][T11529]  __kmalloc_noprof+0xdf/0x7b0
[  340.737931][T11529]  ? __local_bh_enable+0x1e1/0x2f0
[  340.737958][T11529]  ? tls_get_rec+0xbf/0x670
[  340.737982][T11529]  tls_get_rec+0xbf/0x670
[  340.738000][T11529]  ? lockdep_hardirqs_on+0x7a/0x110
[  340.738034][T11529]  tls_sw_sendmsg+0x4d7/0x2430
[  340.738061][T11529]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  340.738084][T11529]  ? __lock_acquire+0x6b5/0x2d10
[  340.738140][T11529]  ? __pfx_tls_sw_sendmsg+0x10/0x10
[  340.738166][T11529]  ? aa_sk_perm+0x703/0x950
[  340.738184][T11529]  ? aa_file_perm+0x192/0x15f0
[  340.738210][T11529]  ? sock_rps_record_flow+0x19/0x350
[  340.738237][T11529]  ? inet_send_prepare+0x5c/0x270
[  340.738272][T11529]  ? inet6_sendmsg+0x101/0x120
[  340.738294][T11529]  ? __pfx_inet6_sendmsg+0x10/0x10
[  340.738315][T11529]  sock_sendmsg_nosec+0x90/0x180
[  340.738341][T11529]  sock_write_iter+0x308/0x410
[  340.738366][T11529]  ? __pfx_sock_write_iter+0x10/0x10
[  340.738409][T11529]  do_iter_readv_writev+0x62b/0x8d0
[  340.738441][T11529]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  340.738478][T11529]  ? rw_verify_area+0x25b/0x4e0
[  340.738508][T11529]  vfs_writev+0x345/0x9a0
[  340.738537][T11529]  ? __pfx_vfs_writev+0x10/0x10
[  340.738573][T11529]  ? __fget_files+0x2a/0x420
[  340.738600][T11529]  ? __fget_files+0x3a6/0x420
[  340.738621][T11529]  ? __fget_files+0x2a/0x420
[  340.738652][T11529]  do_writev+0x15a/0x2e0
[  340.738674][T11529]  ? __pfx_do_writev+0x10/0x10
[  340.738703][T11529]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.738724][T11529]  do_syscall_64+0x174/0x580
[  340.738753][T11529]  ? clear_bhb_loop+0x40/0x90
[  340.738776][T11529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.738795][T11529] RIP: 0033:0x7f9ea4cbce59
[  340.738812][T11529] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  340.738828][T11529] RSP: 002b:00007f9ea2f0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  340.738848][T11529] RAX: ffffffffffffffda RBX: 00007f9ea4f35fa0 RCX: 00007f9ea4cbce59
[  340.738860][T11529] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000003
[  340.738871][T11529] RBP: 00007f9ea2f0e090 R08: 0000000000000000 R09: 0000000000000000
[  340.738881][T11529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  340.738891][T11529] R13: 00007f9ea4f36038 R14: 00007f9ea4f35fa0 R15: 00007ffd923685b8
[  340.738921][T11529]  </TASK>
[  341.429746][T11553] binder: 11550:11553 ioctl c00c6211 ffffffffffffffff returned -14
[  341.671720][ T5697] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  341.845321][ T5697] usb 2-1: Using ep0 maxpacket: 16
[  341.868374][ T5697] usb 2-1: config 0 has an invalid interface number: 187 but max is 0
[  341.868401][ T5697] usb 2-1: config 0 has no interface number 0
[  341.868432][ T5697] usb 2-1: config 0 interface 187 has no altsetting 0
[  341.870844][ T5697] usb 2-1: New USB device found, idVendor=04b4, idProduct=5500, bcdDevice=48.8d
[  341.870873][ T5697] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  341.870891][ T5697] usb 2-1: Product: syz
[  341.870905][ T5697] usb 2-1: Manufacturer: syz
[  341.870919][ T5697] usb 2-1: SerialNumber: syz
[  341.890514][ T5697] usb 2-1: config 0 descriptor??
[  342.190157][ T5697] cypress_m8 2-1:0.187: HID->COM RS232 Adapter converter detected
[  342.238676][ T5697] cyphidcom ttyUSB0: required endpoint is missing
[  342.339901][T11574] binder: 11569:11574 ioctl c00c6211 ffffffffffffffff returned -14
[  342.341064][ T5697] usb 2-1: USB disconnect, device number 5
[  342.393591][ T5697] cypress_m8 2-1:0.187: device disconnected
[  342.554089][T11577] FAULT_INJECTION: forcing a failure.
[  342.554089][T11577] name failslab, interval 1, probability 0, space 0, times 0
[  342.554123][T11577] CPU: 0 UID: 0 PID: 11577 Comm: syz.8.1599 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  342.554148][T11577] Tainted: [L]=SOFTLOCKUP
[  342.554155][T11577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  342.554166][T11577] Call Trace:
[  342.554173][T11577]  <TASK>
[  342.554181][T11577]  dump_stack_lvl+0xe8/0x150
[  342.554206][T11577]  should_fail_ex+0x46b/0x600
[  342.554239][T11577]  should_failslab+0xa8/0x100
[  342.554267][T11577]  __kmalloc_noprof+0xdf/0x7b0
[  342.554289][T11577]  ? tomoyo_encode+0x28b/0x550
[  342.554314][T11577]  tomoyo_encode+0x28b/0x550
[  342.554340][T11577]  tomoyo_realpath_from_path+0x58d/0x5d0
[  342.554371][T11577]  ? tomoyo_path_number_perm+0x219/0x630
[  342.554399][T11577]  tomoyo_path_number_perm+0x246/0x630
[  342.554428][T11577]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  342.554453][T11577]  ? __lock_acquire+0x6b5/0x2d10
[  342.554477][T11577]  ? do_raw_spin_lock+0x12b/0x2f0
[  342.554535][T11577]  ? __fget_files+0x2a/0x420
[  342.554560][T11577]  ? __fget_files+0x2a/0x420
[  342.554579][T11577]  ? __fget_files+0x3a6/0x420
[  342.554599][T11577]  ? __fget_files+0x2a/0x420
[  342.554623][T11577]  security_file_ioctl+0xc3/0x2a0
[  342.554651][T11577]  __se_sys_ioctl+0x47/0x170
[  342.554678][T11577]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.554696][T11577]  do_syscall_64+0x174/0x580
[  342.554722][T11577]  ? trace_irq_disable+0x3b/0x140
[  342.554743][T11577]  ? clear_bhb_loop+0x40/0x90
[  342.554766][T11577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.554785][T11577] RIP: 0033:0x7f3c4601ce59
[  342.554803][T11577] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  342.554818][T11577] RSP: 002b:00007f3c4426e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  342.554838][T11577] RAX: ffffffffffffffda RBX: 00007f3c46295fa0 RCX: 00007f3c4601ce59
[  342.554852][T11577] RDX: 0000200000000440 RSI: 00000000c0405602 RDI: 0000000000000003
[  342.554864][T11577] RBP: 00007f3c4426e090 R08: 0000000000000000 R09: 0000000000000000
[  342.554876][T11577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.554888][T11577] R13: 00007f3c46296038 R14: 00007f3c46295fa0 R15: 00007ffd1038f658
[  342.554916][T11577]  </TASK>
[  342.615389][T11577] ERROR: Out of memory at tomoyo_realpath_from_path.
[  343.678518][ T5808] usb 9-1: new full-speed USB device number 7 using dummy_hcd
[  343.756395][   T10] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  343.846411][ T5808] usb 9-1: config 100 has an invalid interface number: 124 but max is 0
[  343.846440][ T5808] usb 9-1: config 100 has no interface number 0
[  343.846487][ T5808] usb 9-1: config 100 interface 124 has no altsetting 0
[  343.849545][ T5808] usb 9-1: New USB device found, idVendor=0681, idProduct=0010, bcdDevice=52.5e
[  343.849573][ T5808] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  343.849592][ T5808] usb 9-1: Product: syz
[  343.849607][ T5808] usb 9-1: Manufacturer: syz
[  343.849622][ T5808] usb 9-1: SerialNumber: syz
[  343.904373][   T10] usb 2-1: Using ep0 maxpacket: 16
[  343.909102][   T10] usb 2-1: config 127 has an invalid interface number: 124 but max is 0
[  343.909128][   T10] usb 2-1: config 127 has no interface number 0
[  343.909158][   T10] usb 2-1: config 127 interface 124 has no altsetting 0
[  343.913326][   T10] usb 2-1: string descriptor 0 read error: -22
[  343.913442][   T10] usb 2-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=36.87
[  343.913462][   T10] usb 2-1: New USB device strings: Mfr=5, Product=2, SerialNumber=3
[  343.923337][T11612] FAULT_INJECTION: forcing a failure.
[  343.923337][T11612] name failslab, interval 1, probability 0, space 0, times 0
[  343.923373][T11612] CPU: 1 UID: 0 PID: 11612 Comm: syz.9.1614 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  343.923399][T11612] Tainted: [L]=SOFTLOCKUP
[  343.923405][T11612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  343.923423][T11612] Call Trace:
[  343.923430][T11612]  <TASK>
[  343.923437][T11612]  dump_stack_lvl+0xe8/0x150
[  343.923465][T11612]  should_fail_ex+0x46b/0x600
[  343.923498][T11612]  should_failslab+0xa8/0x100
[  343.923524][T11612]  __kmalloc_noprof+0xdf/0x7b0
[  343.923546][T11612]  ? tomoyo_encode+0x28b/0x550
[  343.923573][T11612]  tomoyo_encode+0x28b/0x550
[  343.923599][T11612]  tomoyo_realpath_from_path+0x58d/0x5d0
[  343.923623][T11612]  ? tomoyo_domain+0xd7/0x130
[  343.923649][T11612]  ? tomoyo_path_number_perm+0x219/0x630
[  343.923678][T11612]  tomoyo_path_number_perm+0x246/0x630
[  343.923708][T11612]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  343.923734][T11612]  ? __lock_acquire+0x6b5/0x2d10
[  343.923759][T11612]  ? do_raw_spin_lock+0x12b/0x2f0
[  343.923806][T11612]  ? __fget_files+0x2a/0x420
[  343.923830][T11612]  ? __fget_files+0x2a/0x420
[  343.923851][T11612]  ? __fget_files+0x3a6/0x420
[  343.923871][T11612]  ? __fget_files+0x2a/0x420
[  343.923895][T11612]  security_file_ioctl+0xc3/0x2a0
[  343.923923][T11612]  __se_sys_ioctl+0x47/0x170
[  343.923948][T11612]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.923969][T11612]  do_syscall_64+0x174/0x580
[  343.923995][T11612]  ? trace_irq_disable+0x3b/0x140
[  343.924015][T11612]  ? clear_bhb_loop+0x40/0x90
[  343.924038][T11612]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.924056][T11612] RIP: 0033:0x7f9ea4cbce59
[  343.924073][T11612] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  343.924089][T11612] RSP: 002b:00007f9ea2f0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  343.924109][T11612] RAX: ffffffffffffffda RBX: 00007f9ea4f35fa0 RCX: 00007f9ea4cbce59
[  343.924122][T11612] RDX: 0000200000000000 RSI: 0000000000008946 RDI: 0000000000000003
[  343.924134][T11612] RBP: 00007f9ea2f0e090 R08: 0000000000000000 R09: 0000000000000000
[  343.924146][T11612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.924158][T11612] R13: 00007f9ea4f36038 R14: 00007f9ea4f35fa0 R15: 00007ffd923685b8
[  343.924188][T11612]  </TASK>
[  343.924204][T11612] ERROR: Out of memory at tomoyo_realpath_from_path.
[  344.607671][ T5808] idmouse 9-1:100.124: Unable to find bulk-in endpoint.
[  344.645210][ T5808] usb 9-1: USB disconnect, device number 7
[  345.324101][   T10] usb 2-1: reset high-speed USB device number 6 using dummy_hcd
[  345.727826][T11662] FAULT_INJECTION: forcing a failure.
[  345.727826][T11662] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.727862][T11662] CPU: 1 UID: 0 PID: 11662 Comm: syz.8.1630 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  345.727888][T11662] Tainted: [L]=SOFTLOCKUP
[  345.727894][T11662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  345.727906][T11662] Call Trace:
[  345.727914][T11662]  <TASK>
[  345.727922][T11662]  dump_stack_lvl+0xe8/0x150
[  345.727952][T11662]  should_fail_ex+0x46b/0x600
[  345.727985][T11662]  _copy_from_user+0x2d/0xb0
[  345.728012][T11662]  ___sys_sendmsg+0x1c6/0x360
[  345.728040][T11662]  ? __lock_acquire+0x6b5/0x2d10
[  345.728067][T11662]  ? __pfx____sys_sendmsg+0x10/0x10
[  345.728100][T11662]  ? kstrtouint+0x6e/0xe0
[  345.728146][T11662]  ? __fget_files+0x2a/0x420
[  345.728167][T11662]  ? __fget_files+0x3a6/0x420
[  345.728197][T11662]  __sys_sendmmsg+0x282/0x4e0
[  345.728233][T11662]  ? __pfx___sys_sendmmsg+0x10/0x10
[  345.728268][T11662]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  345.728300][T11662]  ? ksys_write+0x248/0x270
[  345.728327][T11662]  ? __pfx_ksys_write+0x10/0x10
[  345.728366][T11662]  __x64_sys_sendmmsg+0xa0/0xc0
[  345.728395][T11662]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.728415][T11662]  do_syscall_64+0x174/0x580
[  345.728441][T11662]  ? trace_irq_disable+0x3b/0x140
[  345.728461][T11662]  ? clear_bhb_loop+0x40/0x90
[  345.728483][T11662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.728501][T11662] RIP: 0033:0x7f3c4601ce59
[  345.728518][T11662] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  345.728534][T11662] RSP: 002b:00007f3c4426e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  345.728554][T11662] RAX: ffffffffffffffda RBX: 00007f3c46295fa0 RCX: 00007f3c4601ce59
[  345.728567][T11662] RDX: 0000000000000051 RSI: 0000200000000100 RDI: 0000000000000003
[  345.728580][T11662] RBP: 00007f3c4426e090 R08: 0000000000000000 R09: 0000000000000000
[  345.728592][T11662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.728603][T11662] R13: 00007f3c46296038 R14: 00007f3c46295fa0 R15: 00007ffd1038f658
[  345.728633][T11662]  </TASK>
[  346.370979][T11601] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  346.595513][T11682] [U] 
[  346.622993][T11682] [U] K{�
[  346.623278][T11682] [U] �t �1��Š�F���fˊ�`G�J��g���������o��/�mC�
[  346.623311][T11682] [U] t�ؖ/,�~�Ĝ��j���}8���'o1��"�7-�JQ�K��W��q�5c%"�H12��Y������X�`����`+��(��!(���z'�tXln�I�g�j����ݭ�p�~�7�!���"�����(�5�Ob���̓J�
[  346.623579][T11682] [U] �k\&�}6�6�X�HX�������.`�a�$�40|϶��9��ި����U��4���Vbz��}�w�M�T���Q��Φr�4��
[  346.623640][T11682] [U] ".h6��"�k�[����J�4��I�n��[Z(��C|T�]z{��3�c=��x�����4�w�)\T�XJ��SH{q;칢��t��+���g����d�.˂�>y����wUh�fN����hl]S�2���\g%�O�&z)��'�pul�_<�	�ذ����`ұT�������;_�"(�u{7j��2X �/�'��c���I����H�c�ճ�V�=��Ai�%w�Es� R��j���g��r����hI
���a��6-�D��V�� i"��n� ��Asc~4���8c�*�OO5/��J�~���w�vK+����3��Y)��M���v��yq潀DTr�
Otpem%f��ej�A5��T_-X~�^aaۂ�q��
[  346.624139][T11682] [U] 	+�w�G?]��'a:	��)�
����' B>t���f/��<'�U�'��h�i�.+]e�.�-ɿ���%��>2`�^U�8F.�6��3��+�A�«���g3�p��6:�^0��t��v�'E�t����YC�n��rϩ�n�Pj�;�Z������8!��\���A�ʖ2��$�­wi.��#��/Bai���`��4j��d�y@�z��gW�5˿B��ٜ�N�y"vI2��
[  346.692276][T11687] FAULT_INJECTION: forcing a failure.
[  346.692276][T11687] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  346.692315][T11687] CPU: 1 UID: 0 PID: 11687 Comm: syz.8.1637 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  346.692342][T11687] Tainted: [L]=SOFTLOCKUP
[  346.692348][T11687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  346.692360][T11687] Call Trace:
[  346.692367][T11687]  <TASK>
[  346.692374][T11687]  dump_stack_lvl+0xe8/0x150
[  346.692402][T11687]  should_fail_ex+0x46b/0x600
[  346.692434][T11687]  _copy_from_user+0x2d/0xb0
[  346.692461][T11687]  sctp_setsockopt+0x1c4/0x12c0
[  346.692488][T11687]  ? sock_common_setsockopt+0x36/0xc0
[  346.692512][T11687]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  346.692537][T11687]  do_sock_setsockopt+0x17c/0x1b0
[  346.692568][T11687]  __x64_sys_setsockopt+0x143/0x1b0
[  346.692598][T11687]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.692619][T11687]  do_syscall_64+0x174/0x580
[  346.692645][T11687]  ? trace_irq_disable+0x3b/0x140
[  346.692666][T11687]  ? clear_bhb_loop+0x40/0x90
[  346.692689][T11687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.692707][T11687] RIP: 0033:0x7f3c4601ce59
[  346.692725][T11687] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  346.692741][T11687] RSP: 002b:00007f3c4426e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  346.692761][T11687] RAX: ffffffffffffffda RBX: 00007f3c46295fa0 RCX: 00007f3c4601ce59
[  346.692775][T11687] RDX: 0000000000000085 RSI: 0000000000000084 RDI: 0000000000000003
[  346.692786][T11687] RBP: 00007f3c4426e090 R08: 0000000000000090 R09: 0000000000000000
[  346.692798][T11687] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  346.692810][T11687] R13: 00007f3c46296038 R14: 00007f3c46295fa0 R15: 00007ffd1038f658
[  346.692839][T11687]  </TASK>
[  346.729560][T11692] FAULT_INJECTION: forcing a failure.
[  346.729560][T11692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  346.729595][T11692] CPU: 1 UID: 0 PID: 11692 Comm: syz.3.1638 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  346.729622][T11692] Tainted: [L]=SOFTLOCKUP
[  346.729629][T11692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  346.729640][T11692] Call Trace:
[  346.729647][T11692]  <TASK>
[  346.729655][T11692]  dump_stack_lvl+0xe8/0x150
[  346.729683][T11692]  should_fail_ex+0x46b/0x600
[  346.729717][T11692]  _copy_from_user+0x2d/0xb0
[  346.729739][T11692]  kstrtouint_from_user+0xd6/0x180
[  346.729769][T11692]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  346.729814][T11692]  proc_fail_nth_write+0x8e/0x210
[  346.729837][T11692]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  346.729865][T11692]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  346.729887][T11692]  vfs_write+0x2a3/0xba0
[  346.729922][T11692]  ? __pfx_vfs_write+0x10/0x10
[  346.729949][T11692]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  346.729978][T11692]  ? lockdep_hardirqs_on+0x7a/0x110
[  346.730005][T11692]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  346.730031][T11692]  ? mutex_lock_nested+0x152/0x1d0
[  346.730052][T11692]  ? fdget_pos+0x252/0x320
[  346.730082][T11692]  ksys_write+0x156/0x270
[  346.730111][T11692]  ? __pfx_ksys_write+0x10/0x10
[  346.730145][T11692]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.730165][T11692]  do_syscall_64+0x174/0x580
[  346.730191][T11692]  ? trace_irq_disable+0x3b/0x140
[  346.730213][T11692]  ? clear_bhb_loop+0x40/0x90
[  346.730243][T11692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.730263][T11692] RIP: 0033:0x7f18da62d68e
[  346.730280][T11692] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  346.730295][T11692] RSP: 002b:00007f18d889cfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  346.730315][T11692] RAX: ffffffffffffffda RBX: 00007f18d889d6c0 RCX: 00007f18da62d68e
[  346.730329][T11692] RDX: 0000000000000001 RSI: 00007f18d889d0a0 RDI: 0000000000000004
[  346.730341][T11692] RBP: 00007f18d889d090 R08: 0000000000000000 R09: 0000000000000000
[  346.730353][T11692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  346.730364][T11692] R13: 00007f18da8e6128 R14: 00007f18da8e6090 R15: 00007ffd04f2ba18
[  346.730393][T11692]  </TASK>
[  347.110950][T11682] [U] �T�_K5�t�YJ���9��c�$br�L�Nul��9w���|�G�"ʃ�%����C�؝���q��
 ��3��q��N^HP*��$	�.�7yӱ�2�
[  347.111006][T11682] [U] �?���h��*����3�7�鍾^#Q�"0~���(�o�XL�b�,'v��=���C�S���G�S��0�ւ��`���ه��=1(��p#�2DO*Ƀ
[  347.120981][T11682] [U] �s��g������Gu��d-{���|&������2��L�c_��!`��oz֥�B��%>�r��w���Ss�H"�yA4�O.�Y��䏄RTԶ�B�[+/<<R�B����|Фe���۠�V96#���ͤ�j�U�%
s851���ҩs�P��\��?q�|L��QX�0�K�1orɴ2��|��d�F�������2ޔ���0��H�}C[/����px^��o
[  347.125507][T11682] [U] �؛���(J�Л��m��xz�;�����؝_����*3�3��5�\�xm��U��AK!aQ`��;F�I+��VUH���m�j��Ʒ��Z�c��z���)_矡	���&�����a�xto���_� ���:���%�P���C���y�+_�����}U�m��ƫC�!KJ�7��g��=b�
[  347.139134][T11682] [U] ٽ�F�%�XA��l�2r*g��VW��$��j	�A��F�ߝ�+��9̈́Vi�֗�kپ�1}_��
�%�r6��(]��/����řYܺ��h����r g��rn/ܫ�#!�d����%���D��-{�$�vU��T���$:mtr�E�C1V�D~��];[�����sq����(��e,X�8�"�
��G�d���2@T8��������t8.Rc+�@�ꦇp�u�
p����C���'�yL�-Ss1E?�7�O���^]����c��H]�Jkr]Rkq܆��ݣ��OTc��x���4�N�	��&���ڋ��@�:m7�~�+�W*���xM��>>��{q���
_�՝LX8�U����{�Z����)��7?�rR;�c�r�hײڣ����1�>)�Mă��t���(��aϝ�}9�ڥ�J*Mќ�ġ�'L��q	�DW����=��|q�	�Æ�W;5��Ž�!�dB�x`��/��E�`ƦM��X��"�\
[  347.139181][T11682] [U] {;����٘_�o2��)�o��.2�W2���y���x_  HPϱ�S�D����:]�{������
[  347.153034][T11682] [U] I,�>��	��5�1��^1�N4�oǶ�'0�?֒i�9w.�_.�W�a���V��`)�Z���c6Giӹ�a��XL[����F�*��O�W)+��'\n�
[K@����2�Ǭ���p"^`���	��
[  347.153071][T11682] [U] 22��Ʃ���x?0;3u�
[  347.303204][T11691] [U] ޜ�
��sObx�8�W�4�(�~/���K�U��ԖoQ�e+�G�-y�gY_
�>v�����3.h�ә]̈́�2��)�D�,	��	�D~�d���+�w;A\�F
P��Ș|$��)�
KؐI���ɿk�YT^R����
[  347.329823][   T10] usb 2-1: unable to get BOS descriptor or descriptor too short
[  347.329905][   T10] usb 2-1: device firmware changed
[  347.480816][   T10] usb 2-1: USB disconnect, device number 6
[  347.513909][T11702] 
: renamed from bridge_slave_0 (while UP)
[  347.619751][T11704] FAULT_INJECTION: forcing a failure.
[  347.619751][T11704] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  347.619786][T11704] CPU: 1 UID: 0 PID: 11704 Comm: syz.3.1643 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  347.619812][T11704] Tainted: [L]=SOFTLOCKUP
[  347.619819][T11704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  347.619830][T11704] Call Trace:
[  347.619837][T11704]  <TASK>
[  347.619845][T11704]  dump_stack_lvl+0xe8/0x150
[  347.619873][T11704]  should_fail_ex+0x46b/0x600
[  347.619904][T11704]  _copy_from_user+0x2d/0xb0
[  347.619926][T11704]  ___sys_sendmsg+0x1c6/0x360
[  347.619953][T11704]  ? __lock_acquire+0x6b5/0x2d10
[  347.619980][T11704]  ? __pfx____sys_sendmsg+0x10/0x10
[  347.620040][T11704]  ? __fget_files+0x2a/0x420
[  347.620062][T11704]  ? __fget_files+0x3a6/0x420
[  347.620091][T11704]  __x64_sys_sendmsg+0x1c3/0x2a0
[  347.620130][T11704]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  347.620167][T11704]  ? __pfx_ksys_write+0x10/0x10
[  347.620198][T11704]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.620218][T11704]  do_syscall_64+0x174/0x580
[  347.620246][T11704]  ? trace_irq_disable+0x3b/0x140
[  347.620265][T11704]  ? clear_bhb_loop+0x40/0x90
[  347.620287][T11704]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.620305][T11704] RIP: 0033:0x7f18da66ce59
[  347.620323][T11704] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  347.620338][T11704] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  347.620357][T11704] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  347.620369][T11704] RDX: 0000000004000040 RSI: 0000200000000080 RDI: 0000000000000005
[  347.620381][T11704] RBP: 00007f18d88be090 R08: 0000000000000000 R09: 0000000000000000
[  347.620392][T11704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  347.620404][T11704] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  347.620432][T11704]  </TASK>
[  348.060878][T11715] FAULT_INJECTION: forcing a failure.
[  348.060878][T11715] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  348.060907][T11715] CPU: 1 UID: 0 PID: 11715 Comm: syz.8.1648 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  348.060927][T11715] Tainted: [L]=SOFTLOCKUP
[  348.060932][T11715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  348.060940][T11715] Call Trace:
[  348.060946][T11715]  <TASK>
[  348.060952][T11715]  dump_stack_lvl+0xe8/0x150
[  348.060974][T11715]  should_fail_ex+0x46b/0x600
[  348.060998][T11715]  _copy_from_user+0x2d/0xb0
[  348.061016][T11715]  ___sys_sendmsg+0x1c6/0x360
[  348.061037][T11715]  ? __lock_acquire+0x6b5/0x2d10
[  348.061056][T11715]  ? __pfx____sys_sendmsg+0x10/0x10
[  348.061089][T11715]  ? kstrtouint+0x6e/0xe0
[  348.061127][T11715]  ? __fget_files+0x2a/0x420
[  348.061143][T11715]  ? __fget_files+0x3a6/0x420
[  348.061165][T11715]  __sys_sendmmsg+0x282/0x4e0
[  348.061189][T11715]  ? __pfx___sys_sendmmsg+0x10/0x10
[  348.061215][T11715]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  348.061241][T11715]  ? ksys_write+0x248/0x270
[  348.061263][T11715]  ? __pfx_ksys_write+0x10/0x10
[  348.061284][T11715]  __x64_sys_sendmmsg+0xa0/0xc0
[  348.061305][T11715]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.061320][T11715]  do_syscall_64+0x174/0x580
[  348.061340][T11715]  ? trace_irq_disable+0x3b/0x140
[  348.061355][T11715]  ? clear_bhb_loop+0x40/0x90
[  348.061372][T11715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.061386][T11715] RIP: 0033:0x7f3c4601ce59
[  348.061400][T11715] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  348.061411][T11715] RSP: 002b:00007f3c4426e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  348.061427][T11715] RAX: ffffffffffffffda RBX: 00007f3c46295fa0 RCX: 00007f3c4601ce59
[  348.061437][T11715] RDX: 0000000000000001 RSI: 0000200000000100 RDI: 0000000000000003
[  348.061446][T11715] RBP: 00007f3c4426e090 R08: 0000000000000000 R09: 0000000000000000
[  348.061454][T11715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.061463][T11715] R13: 00007f3c46296038 R14: 00007f3c46295fa0 R15: 00007ffd1038f658
[  348.061484][T11715]  </TASK>
[  348.089504][T11717] FAULT_INJECTION: forcing a failure.
[  348.089504][T11717] name failslab, interval 1, probability 0, space 0, times 0
[  348.089538][T11717] CPU: 1 UID: 0 PID: 11717 Comm: syz.1.1647 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  348.089565][T11717] Tainted: [L]=SOFTLOCKUP
[  348.089572][T11717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  348.089582][T11717] Call Trace:
[  348.089589][T11717]  <TASK>
[  348.089596][T11717]  dump_stack_lvl+0xe8/0x150
[  348.089623][T11717]  should_fail_ex+0x46b/0x600
[  348.089655][T11717]  should_failslab+0xa8/0x100
[  348.089682][T11717]  __kmalloc_noprof+0xdf/0x7b0
[  348.089702][T11717]  ? __kmalloc_cache_noprof+0x3a6/0x690
[  348.089724][T11717]  ? alloc_pipe_info+0x1fc/0x4d0
[  348.089749][T11717]  ? alloc_pipe_info+0xe8/0x4d0
[  348.089779][T11717]  alloc_pipe_info+0x1fc/0x4d0
[  348.089807][T11717]  splice_direct_to_actor+0xa19/0xc80
[  348.089836][T11717]  ? kstrtouint+0x6e/0xe0
[  348.089864][T11717]  ? __pfx_direct_splice_actor+0x10/0x10
[  348.089889][T11717]  ? __pfx_aa_file_perm+0x10/0x10
[  348.089911][T11717]  ? __lock_acquire+0x6b5/0x2d10
[  348.089933][T11717]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  348.089966][T11717]  do_splice_direct+0x19b/0x2a0
[  348.089991][T11717]  ? __pfx_do_splice_direct+0x10/0x10
[  348.090014][T11717]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  348.090049][T11717]  ? rw_verify_area+0x25b/0x4e0
[  348.090078][T11717]  do_sendfile+0x547/0x7e0
[  348.090102][T11717]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  348.090136][T11717]  ? __pfx_do_sendfile+0x10/0x10
[  348.090167][T11717]  __se_sys_sendfile64+0x144/0x1a0
[  348.090189][T11717]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  348.090214][T11717]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.090234][T11717]  do_syscall_64+0x174/0x580
[  348.090259][T11717]  ? trace_irq_disable+0x3b/0x140
[  348.090280][T11717]  ? clear_bhb_loop+0x40/0x90
[  348.090303][T11717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.090321][T11717] RIP: 0033:0x7f90e5f6ce59
[  348.090338][T11717] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  348.090354][T11717] RSP: 002b:00007f90e41c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  348.090373][T11717] RAX: ffffffffffffffda RBX: 00007f90e61e5fa0 RCX: 00007f90e5f6ce59
[  348.090387][T11717] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  348.090398][T11717] RBP: 00007f90e41c6090 R08: 0000000000000000 R09: 0000000000000000
[  348.090409][T11717] R10: 4000000000010046 R11: 0000000000000246 R12: 0000000000000001
[  348.090421][T11717] R13: 00007f90e61e6038 R14: 00007f90e61e5fa0 R15: 00007ffe54c0cc88
[  348.090450][T11717]  </TASK>
[  348.417458][T11726] FAULT_INJECTION: forcing a failure.
[  348.417458][T11726] name failslab, interval 1, probability 0, space 0, times 0
[  348.417493][T11726] CPU: 1 UID: 0 PID: 11726 Comm: syz.3.1652 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  348.417518][T11726] Tainted: [L]=SOFTLOCKUP
[  348.417524][T11726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  348.417535][T11726] Call Trace:
[  348.417542][T11726]  <TASK>
[  348.417549][T11726]  dump_stack_lvl+0xe8/0x150
[  348.417577][T11726]  should_fail_ex+0x46b/0x600
[  348.417611][T11726]  should_failslab+0xa8/0x100
[  348.417636][T11726]  __kmalloc_cache_noprof+0x84/0x690
[  348.417660][T11726]  ? tcp_sendmsg_fastopen+0x1de/0x5e0
[  348.417691][T11726]  tcp_sendmsg_fastopen+0x1de/0x5e0
[  348.417724][T11726]  tcp_sendmsg_locked+0x4a8e/0x5370
[  348.417752][T11726]  ? __lock_acquire+0x6b5/0x2d10
[  348.417774][T11726]  ? tcp_sendmsg_locked+0x281/0x5370
[  348.417816][T11726]  ? __lock_acquire+0x6b5/0x2d10
[  348.417845][T11726]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  348.417873][T11726]  ? lockdep_hardirqs_on+0x7a/0x110
[  348.417899][T11726]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  348.417925][T11726]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  348.417952][T11726]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  348.417988][T11726]  ? __local_bh_enable_ip+0x1ae/0x2b0
[  348.418015][T11726]  ? lockdep_hardirqs_on+0x7a/0x110
[  348.418049][T11726]  tcp_sendmsg+0x2f/0x50
[  348.418081][T11726]  ? __pfx_inet6_sendmsg+0x10/0x10
[  348.418101][T11726]  sock_sendmsg_nosec+0x90/0x180
[  348.418127][T11726]  __sys_sendto+0x402/0x590
[  348.418157][T11726]  ? __pfx___sys_sendto+0x10/0x10
[  348.418206][T11726]  ? ksys_write+0x248/0x270
[  348.418233][T11726]  ? __pfx_ksys_write+0x10/0x10
[  348.418263][T11726]  __x64_sys_sendto+0xde/0x100
[  348.418288][T11726]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.418309][T11726]  do_syscall_64+0x174/0x580
[  348.418334][T11726]  ? trace_irq_disable+0x3b/0x140
[  348.418355][T11726]  ? clear_bhb_loop+0x40/0x90
[  348.418378][T11726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.418396][T11726] RIP: 0033:0x7f18da66ce59
[  348.418414][T11726] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  348.418430][T11726] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  348.418448][T11726] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  348.418462][T11726] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000003
[  348.418474][T11726] RBP: 00007f18d88be090 R08: 0000200000000140 R09: 000000000000001c
[  348.418487][T11726] R10: 0000000028004044 R11: 0000000000000246 R12: 0000000000000001
[  348.418499][T11726] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  348.418528][T11726]  </TASK>
[  348.429829][   T10] usb 10-1: new low-speed USB device number 11 using dummy_hcd
[  348.622248][   T10] usb 10-1: config 1 has an invalid descriptor of length 104, skipping remainder of the config
[  348.622277][   T10] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  348.697719][   T10] usb 10-1: string descriptor 0 read error: -22
[  348.697875][   T10] usb 10-1: New USB device found, idVendor=17cc, idProduct=1010, bcdDevice= 0.40
[  348.697899][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  348.712335][T11730] FAULT_INJECTION: forcing a failure.
[  348.712335][T11730] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  348.712391][T11730] CPU: 1 UID: 0 PID: 11730 Comm: syz.3.1653 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  348.712417][T11730] Tainted: [L]=SOFTLOCKUP
[  348.712423][T11730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  348.712435][T11730] Call Trace:
[  348.712442][T11730]  <TASK>
[  348.712449][T11730]  dump_stack_lvl+0xe8/0x150
[  348.712477][T11730]  should_fail_ex+0x46b/0x600
[  348.712511][T11730]  _copy_from_user+0x2d/0xb0
[  348.712533][T11730]  do_sock_getsockopt+0x200/0x7e0
[  348.712566][T11730]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  348.712604][T11730]  ? __fget_files+0x3a6/0x420
[  348.712625][T11730]  ? __fget_files+0x2a/0x420
[  348.712650][T11730]  __x64_sys_getsockopt+0x1aa/0x250
[  348.712682][T11730]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.712702][T11730]  do_syscall_64+0x174/0x580
[  348.712729][T11730]  ? trace_irq_disable+0x3b/0x140
[  348.712750][T11730]  ? clear_bhb_loop+0x40/0x90
[  348.712773][T11730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.712790][T11730] RIP: 0033:0x7f18da66ce59
[  348.712809][T11730] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  348.712824][T11730] RSP: 002b:00007f18d889d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  348.712844][T11730] RAX: ffffffffffffffda RBX: 00007f18da8e6090 RCX: 00007f18da66ce59
[  348.712857][T11730] RDX: 000000000000001b RSI: 0000000000000084 RDI: 0000000000000003
[  348.712868][T11730] RBP: 00007f18d889d090 R08: 0000200000002b00 R09: 0000000000000000
[  348.712881][T11730] R10: 0000200000001ac0 R11: 0000000000000246 R12: 0000000000000001
[  348.712893][T11730] R13: 00007f18da8e6128 R14: 00007f18da8e6090 R15: 00007ffd04f2ba18
[  348.712922][T11730]  </TASK>
[  349.341667][   T10] snd-usb-audio 10-1:1.0: probe with driver snd-usb-audio failed with error -71
[  349.368920][   T10] usb 10-1: USB disconnect, device number 11
[  349.726251][T11755] FAULT_INJECTION: forcing a failure.
[  349.726251][T11755] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  349.726283][T11755] CPU: 0 UID: 0 PID: 11755 Comm: syz.3.1663 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  349.726305][T11755] Tainted: [L]=SOFTLOCKUP
[  349.726311][T11755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  349.726321][T11755] Call Trace:
[  349.726327][T11755]  <TASK>
[  349.726334][T11755]  dump_stack_lvl+0xe8/0x150
[  349.726358][T11755]  should_fail_ex+0x46b/0x600
[  349.726391][T11755]  _copy_from_user+0x2d/0xb0
[  349.726411][T11755]  sctp_getsockopt_probe_interval+0x111/0x490
[  349.726441][T11755]  ? __pfx_sctp_getsockopt_probe_interval+0x10/0x10
[  349.726465][T11755]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  349.726501][T11755]  ? __local_bh_enable_ip+0x1ae/0x2b0
[  349.726524][T11755]  ? lockdep_hardirqs_on+0x7a/0x110
[  349.726552][T11755]  sctp_getsockopt+0x72e/0xb90
[  349.726576][T11755]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  349.726598][T11755]  do_sock_getsockopt+0x51d/0x7e0
[  349.726627][T11755]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  349.726664][T11755]  ? __fget_files+0x3a6/0x420
[  349.726682][T11755]  ? __fget_files+0x2a/0x420
[  349.726706][T11755]  __x64_sys_getsockopt+0x1aa/0x250
[  349.726734][T11755]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.726752][T11755]  do_syscall_64+0x174/0x580
[  349.726774][T11755]  ? trace_irq_disable+0x3b/0x140
[  349.726792][T11755]  ? clear_bhb_loop+0x40/0x90
[  349.726812][T11755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.726828][T11755] RIP: 0033:0x7f18da66ce59
[  349.726843][T11755] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  349.726857][T11755] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  349.726875][T11755] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  349.726887][T11755] RDX: 0000000000000085 RSI: 0000000000000084 RDI: 0000000000000004
[  349.726897][T11755] RBP: 00007f18d88be090 R08: 0000200000000040 R09: 0000000000000000
[  349.726926][T11755] R10: 00002000000061c0 R11: 0000000000000246 R12: 0000000000000001
[  349.726936][T11755] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  349.726968][T11755]  </TASK>
[  350.194560][   T37] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  350.436551][   T37] usb 2-1: unable to get BOS descriptor or descriptor too short
[  350.437121][   T37] usb 2-1: not running at top speed; connect to a high speed hub
[  350.437183][   T37] usb 2-1: too many configurations: 84, using maximum allowed: 8
[  350.521134][   T37] usb 2-1: New USB device found, idVendor=0763, idProduct=146a, bcdDevice=d0.07
[  350.521164][   T37] usb 2-1: New USB device strings: Mfr=143, Product=5, SerialNumber=16
[  350.521183][   T37] usb 2-1: Product: syz
[  350.521190][   T37] usb 2-1: Manufacturer: syz
[  350.521198][   T37] usb 2-1: SerialNumber: syz
[  350.526566][T11778] FAULT_INJECTION: forcing a failure.
[  350.526566][T11778] name failslab, interval 1, probability 0, space 0, times 0
[  350.526660][T11778] CPU: 1 UID: 0 PID: 11778 Comm: syz.3.1673 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  350.526686][T11778] Tainted: [L]=SOFTLOCKUP
[  350.526693][T11778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  350.526705][T11778] Call Trace:
[  350.526713][T11778]  <TASK>
[  350.526720][T11778]  dump_stack_lvl+0xe8/0x150
[  350.526749][T11778]  should_fail_ex+0x46b/0x600
[  350.526785][T11778]  should_failslab+0xa8/0x100
[  350.526811][T11778]  kmem_cache_alloc_noprof+0x87/0x680
[  350.526834][T11778]  ? dst_alloc+0x105/0x170
[  350.526872][T11778]  dst_alloc+0x105/0x170
[  350.526890][T11778]  ? ip_check_mc_rcu+0x64f/0x690
[  350.526911][T11778]  ip_route_output_key_hash_rcu+0x14d0/0x25e0
[  350.526946][T11778]  ? ip_route_output_key_hash+0xd8/0x2a0
[  350.526971][T11778]  ip_route_output_key_hash+0x18d/0x2a0
[  350.526994][T11778]  ? __lock_acquire+0x6b5/0x2d10
[  350.527018][T11778]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  350.527057][T11778]  ip_route_output_flow+0x2a/0x150
[  350.527077][T11778]  ? security_sk_classify_flow+0x6d/0x150
[  350.527106][T11778]  udp_sendmsg+0x141a/0x21a0
[  350.527137][T11778]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  350.527158][T11778]  ? count_memcg_event_mm+0x21/0x260
[  350.527183][T11778]  ? __pfx_udp_sendmsg+0x10/0x10
[  350.527205][T11778]  ? handle_mm_fault+0x13ea/0x14d0
[  350.527261][T11778]  ? __pfx_aa_sk_perm+0x10/0x10
[  350.527277][T11778]  ? sock_rps_record_flow+0x19/0x350
[  350.527303][T11778]  ? inet_sendmsg+0x29c/0x370
[  350.527324][T11778]  ? aa_sock_msg_perm+0x122/0x200
[  350.527344][T11778]  ? __pfx_inet_sendmsg+0x10/0x10
[  350.527372][T11778]  sock_sendmsg_nosec+0x10e/0x180
[  350.527398][T11778]  ____sys_sendmsg+0x55c/0x870
[  350.527431][T11778]  ? __pfx_____sys_sendmsg+0x10/0x10
[  350.527468][T11778]  ? import_iovec+0x73/0xa0
[  350.527493][T11778]  ___sys_sendmsg+0x2a5/0x360
[  350.527520][T11778]  ? __lock_acquire+0x6b5/0x2d10
[  350.527544][T11778]  ? __pfx____sys_sendmsg+0x10/0x10
[  350.527578][T11778]  ? kstrtouint+0x6e/0xe0
[  350.527627][T11778]  ? __fget_files+0x2a/0x420
[  350.527648][T11778]  ? __fget_files+0x3a6/0x420
[  350.527678][T11778]  __sys_sendmmsg+0x282/0x4e0
[  350.527711][T11778]  ? __pfx___sys_sendmmsg+0x10/0x10
[  350.527747][T11778]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  350.527783][T11778]  ? ksys_write+0x248/0x270
[  350.527810][T11778]  ? __pfx_ksys_write+0x10/0x10
[  350.527841][T11778]  __x64_sys_sendmmsg+0xa0/0xc0
[  350.527869][T11778]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.527889][T11778]  do_syscall_64+0x174/0x580
[  350.527915][T11778]  ? trace_irq_disable+0x3b/0x140
[  350.527935][T11778]  ? clear_bhb_loop+0x40/0x90
[  350.527958][T11778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.527976][T11778] RIP: 0033:0x7f18da66ce59
[  350.527994][T11778] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  350.528010][T11778] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  350.528030][T11778] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  350.528044][T11778] RDX: 000000000800001d RSI: 0000200000007fc0 RDI: 0000000000000003
[  350.528056][T11778] RBP: 00007f18d88be090 R08: 0000000000000000 R09: 0000000000000000
[  350.528068][T11778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  350.528079][T11778] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  350.528109][T11778]  </TASK>
[  351.133366][   T37] usb 2-1: cannot find UAC_HEADER
[  351.173189][T11791] FAULT_INJECTION: forcing a failure.
[  351.173189][T11791] name failslab, interval 1, probability 0, space 0, times 0
[  351.173226][T11791] CPU: 1 UID: 0 PID: 11791 Comm: syz.9.1678 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  351.173252][T11791] Tainted: [L]=SOFTLOCKUP
[  351.173258][T11791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  351.173271][T11791] Call Trace:
[  351.173278][T11791]  <TASK>
[  351.173286][T11791]  dump_stack_lvl+0xe8/0x150
[  351.173314][T11791]  should_fail_ex+0x46b/0x600
[  351.173345][T11791]  should_failslab+0xa8/0x100
[  351.173372][T11791]  __kmalloc_noprof+0xdf/0x7b0
[  351.173395][T11791]  ? tomoyo_encode+0x28b/0x550
[  351.173422][T11791]  tomoyo_encode+0x28b/0x550
[  351.173449][T11791]  tomoyo_realpath_from_path+0x58d/0x5d0
[  351.173482][T11791]  ? tomoyo_path_number_perm+0x219/0x630
[  351.173512][T11791]  tomoyo_path_number_perm+0x246/0x630
[  351.173544][T11791]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  351.173571][T11791]  ? __lock_acquire+0x6b5/0x2d10
[  351.173596][T11791]  ? do_raw_spin_lock+0x12b/0x2f0
[  351.173646][T11791]  ? __fget_files+0x2a/0x420
[  351.173670][T11791]  ? __fget_files+0x2a/0x420
[  351.173687][T11791]  ? __fget_files+0x3a6/0x420
[  351.173707][T11791]  ? __fget_files+0x2a/0x420
[  351.173732][T11791]  security_file_ioctl+0xc3/0x2a0
[  351.173759][T11791]  __se_sys_ioctl+0x47/0x170
[  351.173785][T11791]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.173804][T11791]  do_syscall_64+0x174/0x580
[  351.173831][T11791]  ? trace_irq_disable+0x3b/0x140
[  351.173862][T11791]  ? clear_bhb_loop+0x40/0x90
[  351.173885][T11791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.173902][T11791] RIP: 0033:0x7f9ea4cbce59
[  351.173918][T11791] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  351.173933][T11791] RSP: 002b:00007f9ea2f0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  351.173952][T11791] RAX: ffffffffffffffda RBX: 00007f9ea4f35fa0 RCX: 00007f9ea4cbce59
[  351.173966][T11791] RDX: 0000200000000580 RSI: 00000000c06864b8 RDI: 0000000000000003
[  351.173978][T11791] RBP: 00007f9ea2f0e090 R08: 0000000000000000 R09: 0000000000000000
[  351.173990][T11791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  351.174002][T11791] R13: 00007f9ea4f36038 R14: 00007f9ea4f35fa0 R15: 00007ffd923685b8
[  351.174033][T11791]  </TASK>
[  351.174063][T11791] ERROR: Out of memory at tomoyo_realpath_from_path.
[  351.631431][   T37] snd-usb-audio 2-1:1.0: probe with driver snd-usb-audio failed with error -22
[  351.652005][   T37] usb 2-1: USB disconnect, device number 7
[  351.741615][ T7909] udevd[7909]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  351.819357][T11803] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  352.155632][ T5610] Bluetooth: to_multiplier 56315 > 3200
[  352.258812][T11815] input: syz1 as /devices/virtual/input/input14
[  352.555075][   T37] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  352.744494][   T37] usb 2-1: Using ep0 maxpacket: 8
[  352.747224][   T37] usb 2-1: unable to get BOS descriptor or descriptor too short
[  352.751224][   T37] usb 2-1: config 4 interface 0 has no altsetting 0
[  352.754639][   T37] usb 2-1: string descriptor 0 read error: -22
[  352.754737][   T37] usb 2-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  352.754763][   T37] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3
[  352.797345][   T37] usb 2-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  353.287144][   T37] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  353.289452][   T37] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  353.289566][   T37] usb 2-1: media controller created
[  353.394979][   T37] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  353.552196][T11837] FAULT_INJECTION: forcing a failure.
[  353.552196][T11837] name failslab, interval 1, probability 0, space 0, times 0
[  353.552235][T11837] CPU: 0 UID: 0 PID: 11837 Comm: syz.3.1696 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  353.552262][T11837] Tainted: [L]=SOFTLOCKUP
[  353.552269][T11837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  353.552279][T11837] Call Trace:
[  353.552286][T11837]  <TASK>
[  353.552294][T11837]  dump_stack_lvl+0xe8/0x150
[  353.552319][T11837]  should_fail_ex+0x46b/0x600
[  353.552351][T11837]  should_failslab+0xa8/0x100
[  353.552376][T11837]  kmem_cache_alloc_node_noprof+0x8f/0x6e0
[  353.552396][T11837]  ? __alloc_skb+0x1d0/0x7d0
[  353.552418][T11837]  ? __pfx_tcp_current_mss+0x10/0x10
[  353.552444][T11837]  __alloc_skb+0x1d0/0x7d0
[  353.552472][T11837]  tcp_stream_alloc_skb+0x3f/0x5c0
[  353.552505][T11837]  tcp_sendmsg_locked+0x134b/0x5370
[  353.552582][T11837]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  353.552614][T11837]  ? __local_bh_enable_ip+0x1ae/0x2b0
[  353.552634][T11837]  ? lockdep_hardirqs_on+0x7a/0x110
[  353.552660][T11837]  tcp_sendmsg+0x2f/0x50
[  353.552683][T11837]  ? __pfx_inet_sendmsg+0x10/0x10
[  353.552700][T11837]  sock_sendmsg_nosec+0x10e/0x180
[  353.552721][T11837]  ____sys_sendmsg+0x55c/0x870
[  353.552750][T11837]  ? __pfx_____sys_sendmsg+0x10/0x10
[  353.552786][T11837]  ? import_iovec+0x73/0xa0
[  353.552810][T11837]  ___sys_sendmsg+0x2a5/0x360
[  353.552836][T11837]  ? __lock_acquire+0x6b5/0x2d10
[  353.552855][T11837]  ? __pfx____sys_sendmsg+0x10/0x10
[  353.552879][T11837]  ? kstrtouint+0x6e/0xe0
[  353.552916][T11837]  ? __fget_files+0x2a/0x420
[  353.552932][T11837]  ? __fget_files+0x3a6/0x420
[  353.552955][T11837]  __sys_sendmmsg+0x282/0x4e0
[  353.552979][T11837]  ? __pfx___sys_sendmmsg+0x10/0x10
[  353.553006][T11837]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  353.553032][T11837]  ? ksys_write+0x248/0x270
[  353.553058][T11837]  ? __pfx_ksys_write+0x10/0x10
[  353.553091][T11837]  __x64_sys_sendmmsg+0xa0/0xc0
[  353.553115][T11837]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.553135][T11837]  do_syscall_64+0x174/0x580
[  353.553160][T11837]  ? trace_irq_disable+0x3b/0x140
[  353.553189][T11837]  ? clear_bhb_loop+0x40/0x90
[  353.553208][T11837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.553226][T11837] RIP: 0033:0x7f18da66ce59
[  353.553242][T11837] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  353.553255][T11837] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  353.553272][T11837] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  353.553282][T11837] RDX: 0000000000000003 RSI: 0000200000005c40 RDI: 0000000000000003
[  353.553291][T11837] RBP: 00007f18d88be090 R08: 0000000000000000 R09: 0000000000000000
[  353.553301][T11837] R10: 0000000000040001 R11: 0000000000000246 R12: 0000000000000001
[  353.553310][T11837] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  353.553335][T11837]  </TASK>
[  354.175942][   T37] usb 2-1: USB disconnect, device number 8
[  354.191585][ T5610] Bluetooth: hci4: command 0x0406 tx timeout
[  354.607792][ T5808] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  354.825422][ T5808] usb 4-1: Using ep0 maxpacket: 16
[  354.842310][ T5808] usb 4-1: config 0 has an invalid interface number: 34 but max is 0
[  354.842339][ T5808] usb 4-1: config 0 has no interface number 0
[  354.842383][ T5808] usb 4-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[  354.842409][ T5808] usb 4-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80
[  354.880998][ T5808] usb 4-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[  354.881028][ T5808] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.881047][ T5808] usb 4-1: Product: syz
[  354.881061][ T5808] usb 4-1: Manufacturer: syz
[  354.881074][ T5808] usb 4-1: SerialNumber: syz
[  354.936155][ T5808] usb 4-1: config 0 descriptor??
[  354.937261][T11847] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  354.937452][T11847] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  355.024569][ T5613] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  355.141357][T11847] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  355.141470][T11847] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  355.167946][ T5808] asix 4-1:0.34 (unnamed net_device) (uninitialized): invalid hw address, using random
[  355.184527][ T5613] usb 10-1: device descriptor read/64, error -71
[  355.299377][T11861] ./bus: Can't lookup blockdev
[  355.321152][ T5808] asix 4-1:0.34 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  355.321183][ T5808] asix 4-1:0.34 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  355.321405][ T5808] asix 4-1:0.34: probe with driver asix failed with error -71
[  355.373361][ T5808] usb 4-1: USB disconnect, device number 6
[  355.423506][T11862] ./bus: Can't lookup blockdev
[  355.446678][ T5613] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  355.452136][T11865] FAULT_INJECTION: forcing a failure.
[  355.452136][T11865] name failslab, interval 1, probability 0, space 0, times 0
[  355.452159][T11865] CPU: 1 UID: 0 PID: 11865 Comm: syz.3.1707 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  355.452175][T11865] Tainted: [L]=SOFTLOCKUP
[  355.452179][T11865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  355.452185][T11865] Call Trace:
[  355.452190][T11865]  <TASK>
[  355.452195][T11865]  dump_stack_lvl+0xe8/0x150
[  355.452211][T11865]  should_fail_ex+0x46b/0x600
[  355.452229][T11865]  should_failslab+0xa8/0x100
[  355.452244][T11865]  kmem_cache_alloc_node_noprof+0x8f/0x6e0
[  355.452257][T11865]  ? __alloc_skb+0x1d0/0x7d0
[  355.452269][T11865]  ? lockdep_hardirqs_on+0x7a/0x110
[  355.452287][T11865]  __alloc_skb+0x1d0/0x7d0
[  355.452303][T11865]  netlink_sendmsg+0x5d4/0xb40
[  355.452318][T11865]  ? __pfx_netlink_sendmsg+0x10/0x10
[  355.452329][T11865]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  355.452344][T11865]  ? aa_sock_msg_perm+0x122/0x200
[  355.452356][T11865]  ? __pfx_netlink_sendmsg+0x10/0x10
[  355.452365][T11865]  sock_sendmsg_nosec+0x13a/0x180
[  355.452378][T11865]  ____sys_sendmsg+0x55c/0x870
[  355.452396][T11865]  ? __pfx_____sys_sendmsg+0x10/0x10
[  355.452415][T11865]  ? import_iovec+0x73/0xa0
[  355.452428][T11865]  ___sys_sendmsg+0x2a5/0x360
[  355.452443][T11865]  ? __lock_acquire+0x6b5/0x2d10
[  355.452457][T11865]  ? __pfx____sys_sendmsg+0x10/0x10
[  355.452488][T11865]  ? __fget_files+0x2a/0x420
[  355.452500][T11865]  ? __fget_files+0x3a6/0x420
[  355.452516][T11865]  __x64_sys_sendmsg+0x1c3/0x2a0
[  355.452543][T11865]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  355.452579][T11865]  ? __pfx_ksys_write+0x10/0x10
[  355.452615][T11865]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.452636][T11865]  do_syscall_64+0x174/0x580
[  355.452662][T11865]  ? trace_irq_disable+0x3b/0x140
[  355.452675][T11865]  ? clear_bhb_loop+0x40/0x90
[  355.452688][T11865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.452698][T11865] RIP: 0033:0x7f18da66ce59
[  355.452709][T11865] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  355.452718][T11865] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  355.452730][T11865] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  355.452737][T11865] RDX: 0000000000008840 RSI: 0000200000000040 RDI: 0000000000000003
[  355.452744][T11865] RBP: 00007f18d88be090 R08: 0000000000000000 R09: 0000000000000000
[  355.452750][T11865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  355.452756][T11865] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  355.452771][T11865]  </TASK>
[  355.794533][ T5613] usb 10-1: device descriptor read/64, error -71
[  355.905859][ T5613] usb usb10-port1: attempt power cycle
[  356.064513][ T5808] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  356.224877][ T5808] usb 4-1: Using ep0 maxpacket: 8
[  356.254408][ T5808] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  356.254469][ T5808] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  356.254494][ T5808] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  356.254521][ T5808] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  356.254546][ T5808] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  356.254589][ T5808] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  356.254613][ T5808] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.327042][ T5613] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  356.349087][ T5613] usb 10-1: device descriptor read/8, error -71
[  356.570561][ T5808] usb 4-1: usb_control_msg returned -32
[  356.570611][ T5808] usbtmc 4-1:16.0: can't read capabilities
[  356.634673][ T5613] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  356.689759][ T5613] usb 10-1: device descriptor read/8, error -71
[  356.796837][ T5613] usb usb10-port1: unable to enumerate USB device
[  357.002729][T11874] vivid-000: disconnect
[  357.063006][T11872] vivid-000: reconnect
[  357.350790][T11880] usbtmc 4-1:16.0: stb usb_control_msg returned -32
[  357.852295][   T37] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  357.956078][    T9] usb 4-1: USB disconnect, device number 7
[  358.054406][   T37] usb 9-1: Using ep0 maxpacket: 32
[  358.056634][   T37] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  358.056660][   T37] usb 9-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  358.056684][   T37] usb 9-1: config 0 interface 0 has no altsetting 0
[  358.058869][   T37] usb 9-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  358.058897][   T37] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  358.058916][   T37] usb 9-1: Product: syz
[  358.058931][   T37] usb 9-1: Manufacturer: syz
[  358.058945][   T37] usb 9-1: SerialNumber: syz
[  358.195472][   T37] usb 9-1: config 0 descriptor??
[  358.638575][   T37] gs_usb 9-1:0.0: Configuring for 195 interfaces
[  359.090473][   T37] gs_usb 9-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  359.091154][   T37] gs_usb 9-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO)
[  359.091936][   T37] gs_usb 9-1:0.0: probe with driver gs_usb failed with error -71
[  359.173354][   T37] usb 9-1: USB disconnect, device number 8
[  359.352780][T11920] netlink: 64 bytes leftover after parsing attributes in process `syz.9.1728'.
[  359.548009][T11922] FAULT_INJECTION: forcing a failure.
[  359.548009][T11922] name failslab, interval 1, probability 0, space 0, times 0
[  359.548491][T11922] CPU: 0 UID: 0 PID: 11922 Comm: syz.3.1727 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  359.548520][T11922] Tainted: [L]=SOFTLOCKUP
[  359.548527][T11922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  359.548541][T11922] Call Trace:
[  359.548555][T11922]  <TASK>
[  359.548563][T11922]  dump_stack_lvl+0xe8/0x150
[  359.548592][T11922]  should_fail_ex+0x46b/0x600
[  359.548625][T11922]  should_failslab+0xa8/0x100
[  359.548656][T11922]  __kmalloc_noprof+0xdf/0x7b0
[  359.548679][T11922]  ? tomoyo_encode+0x28b/0x550
[  359.548707][T11922]  tomoyo_encode+0x28b/0x550
[  359.548734][T11922]  tomoyo_realpath_from_path+0x58d/0x5d0
[  359.548758][T11922]  ? tomoyo_domain+0xd7/0x130
[  359.548785][T11922]  ? tomoyo_path_number_perm+0x219/0x630
[  359.548814][T11922]  tomoyo_path_number_perm+0x246/0x630
[  359.548844][T11922]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  359.548872][T11922]  ? __lock_acquire+0x6b5/0x2d10
[  359.548898][T11922]  ? do_raw_spin_lock+0x12b/0x2f0
[  359.548949][T11922]  ? __fget_files+0x2a/0x420
[  359.548974][T11922]  ? __fget_files+0x2a/0x420
[  359.548995][T11922]  ? __fget_files+0x3a6/0x420
[  359.549015][T11922]  ? __fget_files+0x2a/0x420
[  359.549040][T11922]  security_file_ioctl+0xc3/0x2a0
[  359.549069][T11922]  __se_sys_ioctl+0x47/0x170
[  359.549097][T11922]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.549118][T11922]  do_syscall_64+0x174/0x580
[  359.549145][T11922]  ? trace_irq_disable+0x3b/0x140
[  359.549167][T11922]  ? clear_bhb_loop+0x40/0x90
[  359.549196][T11922]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.549214][T11922] RIP: 0033:0x7f18da66ce59
[  359.549232][T11922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  359.549247][T11922] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  359.549266][T11922] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  359.549280][T11922] RDX: 0000200000000840 RSI: 000000000000890b RDI: 0000000000000003
[  359.549294][T11922] RBP: 00007f18d88be090 R08: 0000000000000000 R09: 0000000000000000
[  359.549306][T11922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.549316][T11922] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  359.549346][T11922]  </TASK>
[  359.549376][T11922] ERROR: Out of memory at tomoyo_realpath_from_path.
[  359.941940][    T9] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  360.124958][    T9] usb 4-1: Using ep0 maxpacket: 32
[  360.129601][    T9] usb 4-1: config 0 has an invalid interface number: 146 but max is 0
[  360.129631][    T9] usb 4-1: config 0 has no interface number 0
[  360.129675][    T9] usb 4-1: config 0 interface 146 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  360.129696][    T9] usb 4-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  360.129722][    T9] usb 4-1: config 0 interface 146 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[  360.129749][    T9] usb 4-1: config 0 interface 146 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  360.129774][    T9] usb 4-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xF2, changing to 0x82
[  360.129798][    T9] usb 4-1: config 0 interface 146 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  360.129819][    T9] usb 4-1: config 0 interface 146 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  360.129844][    T9] usb 4-1: config 0 interface 146 altsetting 0 endpoint 0x1 has invalid maxpacket 29304, setting to 1024
[  360.129869][    T9] usb 4-1: config 0 interface 146 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 1024
[  360.129892][    T9] usb 4-1: config 0 interface 146 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  360.132797][    T9] usb 4-1: New USB device found, idVendor=05da, idProduct=009a, bcdDevice=62.95
[  360.132827][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  360.132847][    T9] usb 4-1: Product: syz
[  360.132861][    T9] usb 4-1: Manufacturer: syz
[  360.132973][    T9] usb 4-1: SerialNumber: syz
[  360.160803][T11931] binder: 11928:11931 ioctl c0306201 200000000640 returned -22
[  360.170335][    T9] usb 4-1: config 0 descriptor??
[  360.175293][T11925] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  360.175602][T11925] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  360.203726][    T9] usb 4-1: will this work? Response EP is not usually 3
[  360.203750][    T9] usb 4-1: will this work? Image data EP is not usually 2
[  360.220511][T11933] FAULT_INJECTION: forcing a failure.
[  360.220511][T11933] name failslab, interval 1, probability 0, space 0, times 0
[  360.220545][T11933] CPU: 0 UID: 0 PID: 11933 Comm: syz.1.1732 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  360.220587][T11933] Tainted: [L]=SOFTLOCKUP
[  360.220594][T11933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  360.220606][T11933] Call Trace:
[  360.220613][T11933]  <TASK>
[  360.220621][T11933]  dump_stack_lvl+0xe8/0x150
[  360.220649][T11933]  should_fail_ex+0x46b/0x600
[  360.220682][T11933]  should_failslab+0xa8/0x100
[  360.220708][T11933]  __kmalloc_noprof+0xdf/0x7b0
[  360.220733][T11933]  ? tomoyo_encode+0x28b/0x550
[  360.220760][T11933]  tomoyo_encode+0x28b/0x550
[  360.220786][T11933]  tomoyo_realpath_from_path+0x58d/0x5d0
[  360.220818][T11933]  ? tomoyo_path_number_perm+0x219/0x630
[  360.220846][T11933]  tomoyo_path_number_perm+0x246/0x630
[  360.220877][T11933]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  360.220904][T11933]  ? __lock_acquire+0x6b5/0x2d10
[  360.220929][T11933]  ? do_raw_spin_lock+0x12b/0x2f0
[  360.220976][T11933]  ? __fget_files+0x2a/0x420
[  360.221001][T11933]  ? __fget_files+0x2a/0x420
[  360.221021][T11933]  ? __fget_files+0x3a6/0x420
[  360.221041][T11933]  ? __fget_files+0x2a/0x420
[  360.221066][T11933]  security_file_ioctl+0xc3/0x2a0
[  360.221095][T11933]  __se_sys_ioctl+0x47/0x170
[  360.221120][T11933]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.221140][T11933]  do_syscall_64+0x174/0x580
[  360.221167][T11933]  ? trace_irq_disable+0x3b/0x140
[  360.221188][T11933]  ? clear_bhb_loop+0x40/0x90
[  360.221211][T11933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.221229][T11933] RIP: 0033:0x7f90e5f6ce59
[  360.221247][T11933] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  360.221263][T11933] RSP: 002b:00007f90e41c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  360.221283][T11933] RAX: ffffffffffffffda RBX: 00007f90e61e5fa0 RCX: 00007f90e5f6ce59
[  360.221297][T11933] RDX: 0000200000000000 RSI: 0000000040045612 RDI: 0000000000000003
[  360.221309][T11933] RBP: 00007f90e41c6090 R08: 0000000000000000 R09: 0000000000000000
[  360.221320][T11933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.221331][T11933] R13: 00007f90e61e6038 R14: 00007f90e61e5fa0 R15: 00007ffe54c0cc88
[  360.221361][T11933]  </TASK>
[  360.234776][T11933] ERROR: Out of memory at tomoyo_realpath_from_path.
[  360.429057][    T9] scsi host1: microtekX6
[  360.649275][    T9] usb 4-1: USB disconnect, device number 8
[  360.683452][T11942] netlink: 'syz.1.1735': attribute type 4 has an invalid length.
[  360.757004][   T64] usb 4-1: error -19 submitting URB
[  360.777473][T11943] loop5: detected capacity change from 0 to 7
[  360.788188][   T64] usb 4-1: error -19 submitting URB
[  360.842971][   T64] usb 4-1: error -19 submitting URB
[  361.120995][T11949] FAULT_INJECTION: forcing a failure.
[  361.120995][T11949] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.121035][T11949] CPU: 0 UID: 0 PID: 11949 Comm: syz.9.1738 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  361.121059][T11949] Tainted: [L]=SOFTLOCKUP
[  361.121065][T11949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  361.121076][T11949] Call Trace:
[  361.121082][T11949]  <TASK>
[  361.121090][T11949]  dump_stack_lvl+0xe8/0x150
[  361.121117][T11949]  should_fail_ex+0x46b/0x600
[  361.121158][T11949]  _copy_from_user+0x2d/0xb0
[  361.121181][T11949]  sctp_setsockopt+0x1c4/0x12c0
[  361.121202][T11949]  ? sock_common_setsockopt+0x36/0xc0
[  361.121219][T11949]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  361.121238][T11949]  do_sock_setsockopt+0x17c/0x1b0
[  361.121261][T11949]  __x64_sys_setsockopt+0x143/0x1b0
[  361.121282][T11949]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.121297][T11949]  do_syscall_64+0x174/0x580
[  361.121318][T11949]  ? trace_irq_disable+0x3b/0x140
[  361.121334][T11949]  ? clear_bhb_loop+0x40/0x90
[  361.121351][T11949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.121364][T11949] RIP: 0033:0x7f9ea4cbce59
[  361.121378][T11949] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  361.121391][T11949] RSP: 002b:00007f9ea2f0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  361.121406][T11949] RAX: ffffffffffffffda RBX: 00007f9ea4f35fa0 RCX: 00007f9ea4cbce59
[  361.121416][T11949] RDX: 000000000000007b RSI: 0000000000000084 RDI: 0000000000000004
[  361.121425][T11949] RBP: 00007f9ea2f0e090 R08: 0000000000000008 R09: 0000000000000000
[  361.121434][T11949] R10: 0000200000000500 R11: 0000000000000246 R12: 0000000000000001
[  361.121443][T11949] R13: 00007f9ea4f36038 R14: 00007f9ea4f35fa0 R15: 00007ffd923685b8
[  361.121466][T11949]  </TASK>
[  361.432604][T11957] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1741'.
[  361.684646][T11964] tipc: Started in network mode
[  361.684672][T11964] tipc: Node identity 4, cluster identity 4711
[  361.684682][T11964] tipc: Node number set to 4
[  361.714665][T11943]  loop5: [CUMANA/ADFS] p1 [ADFS] p1
[  361.714699][T11943] loop5: partition table partially beyond EOD, truncated
[  361.750393][T11959] binder: 11958:11959 ioctl c0306201 200000000180 returned -14
[  361.761387][T11966] FAULT_INJECTION: forcing a failure.
[  361.761387][T11966] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.761423][T11966] CPU: 0 UID: 0 PID: 11966 Comm: syz.3.1745 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  361.761449][T11966] Tainted: [L]=SOFTLOCKUP
[  361.761456][T11966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  361.761467][T11966] Call Trace:
[  361.761475][T11966]  <TASK>
[  361.761482][T11966]  dump_stack_lvl+0xe8/0x150
[  361.761511][T11966]  should_fail_ex+0x46b/0x600
[  361.761553][T11966]  _copy_from_iter+0x1d3/0x1670
[  361.761585][T11966]  ? __pfx__copy_from_iter+0x10/0x10
[  361.761603][T11966]  ? trace_kmalloc+0x2a/0xf0
[  361.761629][T11966]  ? __kmalloc_noprof+0x408/0x7b0
[  361.761651][T11966]  ? kernfs_fop_write_iter+0x159/0x540
[  361.761683][T11966]  kernfs_fop_write_iter+0x19c/0x540
[  361.761716][T11966]  vfs_write+0x629/0xba0
[  361.761750][T11966]  ? __pfx_vfs_write+0x10/0x10
[  361.761777][T11966]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  361.761806][T11966]  ? lockdep_hardirqs_on+0x7a/0x110
[  361.761832][T11966]  ? mutex_lock_nested+0x152/0x1d0
[  361.761852][T11966]  ? fdget_pos+0x252/0x320
[  361.761883][T11966]  ksys_write+0x156/0x270
[  361.761910][T11966]  ? __pfx_ksys_write+0x10/0x10
[  361.761943][T11966]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.761965][T11966]  do_syscall_64+0x174/0x580
[  361.761989][T11966]  ? trace_irq_disable+0x3b/0x140
[  361.762011][T11966]  ? clear_bhb_loop+0x40/0x90
[  361.762033][T11966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.762052][T11966] RIP: 0033:0x7f18da66ce59
[  361.762070][T11966] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  361.762086][T11966] RSP: 002b:00007f18d88be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  361.762105][T11966] RAX: ffffffffffffffda RBX: 00007f18da8e5fa0 RCX: 00007f18da66ce59
[  361.762119][T11966] RDX: 000000000000000a RSI: 0000200000000080 RDI: 0000000000000004
[  361.762130][T11966] RBP: 00007f18d88be090 R08: 0000000000000000 R09: 0000000000000000
[  361.762142][T11966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.762154][T11966] R13: 00007f18da8e6038 R14: 00007f18da8e5fa0 R15: 00007ffd04f2ba18
[  361.762184][T11966]  </TASK>
[  361.995811][T11943] loop5: p1 size 2989602745 extends beyond EOD, truncated
[  362.528422][ T7891] 
[  362.528435][ T7891] ======================================================
[  362.528443][ T7891] WARNING: possible circular locking dependency detected
[  362.528466][ T7891] syzkaller #0 Tainted: G             L     
[  362.528477][ T7891] ------------------------------------------------------
[  362.528483][ T7891] udevd/7891 is trying to acquire lock:
[  362.528494][ T7891] ffff88803b240138 ((wq_completion)loop5){+.+.}-{0:0}, at: touch_wq_lockdep_map+0xb5/0x180
[  362.528541][ T7891] 
[  362.528541][ T7891] but task is already holding lock:
[  362.528547][ T7891] ffff8880266754c8 (&disk->open_mutex#4){+.+.}-{4:4}, at: bdev_release+0x1af/0x660
[  362.528599][ T7891] 
[  362.528599][ T7891] which lock already depends on the new lock.
[  362.528599][ T7891] 
[  362.528606][ T7891] 
[  362.528606][ T7891] the existing dependency chain (in reverse order) is:
[  362.528613][ T7891] 
[  362.528613][ T7891] -> #5 (&disk->open_mutex#4){+.+.}-{4:4}:
[  362.528747][ T7891]        mutex_lock_nested+0x5a/0x1d0
[  362.528769][ T7891]        bdev_open+0xe0/0xcc0
[  362.528793][ T7891]        bdev_file_open_by_dev+0x1be/0x240
[  362.528817][ T7891]        swsusp_check+0x56/0x490
[  362.528836][ T7891]        software_resume+0x51/0x4c0
[  362.528860][ T7891]        resume_store+0x333/0x4f0
[  362.528875][ T7891]        kernfs_fop_write_iter+0x3b0/0x540
[  362.528907][ T7891]        vfs_write+0x629/0xba0
[  362.528930][ T7891]        ksys_write+0x156/0x270
[  362.528956][ T7891]        do_syscall_64+0x174/0x580
[  362.528981][ T7891]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.528999][ T7891] 
[  362.528999][ T7891] -> #4 (system_transition_mutex){+.+.}-{4:4}:
[  362.529024][ T7891]        mutex_lock_nested+0x5a/0x1d0
[  362.529042][ T7891]        lock_system_sleep+0x49/0x70
[  362.529060][ T7891]        resume_store+0x2ff/0x4f0
[  362.529075][ T7891]        kernfs_fop_write_iter+0x3b0/0x540
[  362.529099][ T7891]        vfs_write+0x629/0xba0
[  362.529118][ T7891]        ksys_write+0x156/0x270
[  362.529137][ T7891]        do_syscall_64+0x174/0x580
[  362.529157][ T7891]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.529170][ T7891] 
[  362.529170][ T7891] -> #3 (&of->mutex){+.+.}-{4:4}:
[  362.529190][ T7891]        mutex_lock_nested+0x5a/0x1d0
[  362.529206][ T7891]        kernfs_seq_start+0x5c/0x420
[  362.529228][ T7891]        traverse+0x164/0x580
[  362.529253][ T7891]        seq_read_iter+0xd09/0xe20
[  362.529278][ T7891]        lo_rw_aio+0xc80/0xf00
[  362.529302][ T7891]        loop_process_work+0x92a/0x11b0
[  362.529325][ T7891]        process_one_work+0x98b/0x1630
[  362.529348][ T7891]        worker_thread+0xb49/0x1140
[  362.529372][ T7891]        kthread+0x388/0x470
[  362.529388][ T7891]        ret_from_fork+0x514/0xb70
[  362.529498][ T7891]        ret_from_fork_asm+0x1a/0x30
[  362.529523][ T7891] 
[  362.529523][ T7891] -> #2 (&p->lock){+.+.}-{4:4}:
[  362.529550][ T7891]        mutex_lock_nested+0x5a/0x1d0
[  362.529569][ T7891]        seq_read_iter+0xb8/0xe20
[  362.529595][ T7891]        lo_rw_aio+0xc80/0xf00
[  362.529618][ T7891]        loop_process_work+0x92a/0x11b0
[  362.529641][ T7891]        process_one_work+0x98b/0x1630
[  362.529664][ T7891]        worker_thread+0xb49/0x1140
[  362.529688][ T7891]        kthread+0x388/0x470
[  362.529705][ T7891]        ret_from_fork+0x514/0xb70
[  362.529724][ T7891]        ret_from_fork_asm+0x1a/0x30
[  362.529746][ T7891] 
[  362.529746][ T7891] -> #1 ((work_completion)(&worker->work)){+.+.}-{0:0}:
[  362.529771][ T7891]        process_one_work+0x8d7/0x1630
[  362.529794][ T7891]        worker_thread+0xb49/0x1140
[  362.529817][ T7891]        kthread+0x388/0x470
[  362.529835][ T7891]        ret_from_fork+0x514/0xb70
[  362.529853][ T7891]        ret_from_fork_asm+0x1a/0x30
[  362.529872][ T7891] 
[  362.529872][ T7891] -> #0 ((wq_completion)loop5){+.+.}-{0:0}:
[  362.529892][ T7891]        __lock_acquire+0x15a5/0x2d10
[  362.529909][ T7891]        lock_acquire+0x106/0x350
[  362.529926][ T7891]        touch_wq_lockdep_map+0xcb/0x180
[  362.529941][ T7891]        __flush_workqueue+0x14b/0x14f0
[  362.529957][ T7891]        drain_workqueue+0xd3/0x390
[  362.529973][ T7891]        lo_release+0x287/0x8f0
[  362.529995][ T7891]        bdev_release+0x541/0x660
[  362.530019][ T7891]        blkdev_release+0x15/0x20
[  362.530040][ T7891]        __fput+0x461/0xa70
[  362.530058][ T7891]        fput_close_sync+0x11f/0x240
[  362.530077][ T7891]        __x64_sys_close+0x7e/0x110
[  362.530097][ T7891]        do_syscall_64+0x174/0x580
[  362.530122][ T7891]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.530140][ T7891] 
[  362.530140][ T7891] other info that might help us debug this:
[  362.530140][ T7891] 
[  362.530146][ T7891] Chain exists of:
[  362.530146][ T7891]   (wq_completion)loop5 --> system_transition_mutex --> &disk->open_mutex#4
[  362.530146][ T7891] 
[  362.530180][ T7891]  Possible unsafe locking scenario:
[  362.530180][ T7891] 
[  362.530187][ T7891]        CPU0                    CPU1
[  362.530192][ T7891]        ----                    ----
[  362.530198][ T7891]   lock(&disk->open_mutex#4);
[  362.530214][ T7891]                                lock(system_transition_mutex);
[  362.530229][ T7891]                                lock(&disk->open_mutex#4);
[  362.530248][ T7891]   lock((wq_completion)loop5);
[  362.530261][ T7891] 
[  362.530261][ T7891]  *** DEADLOCK ***
[  362.530261][ T7891] 
[  362.530266][ T7891] 1 lock held by udevd/7891:
[  362.530277][ T7891]  #0: ffff8880266754c8 (&disk->open_mutex#4){+.+.}-{4:4}, at: bdev_release+0x1af/0x660
[  362.530334][ T7891] 
[  362.530334][ T7891] stack backtrace:
[  362.530348][ T7891] CPU: 1 UID: 0 PID: 7891 Comm: udevd Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  362.530383][ T7891] Tainted: [L]=SOFTLOCKUP
[  362.530390][ T7891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  362.530402][ T7891] Call Trace:
[  362.530409][ T7891]  <TASK>
[  362.530417][ T7891]  dump_stack_lvl+0xe8/0x150
[  362.530440][ T7891]  print_circular_bug+0x2e1/0x300
[  362.530469][ T7891]  check_noncircular+0x12e/0x150
[  362.530498][ T7891]  __lock_acquire+0x15a5/0x2d10
[  362.530527][ T7891]  ? __bfs+0x153/0x290
[  362.530547][ T7891]  ? __pfx_hlock_conflict+0x10/0x10
[  362.530573][ T7891]  ? touch_wq_lockdep_map+0xb5/0x180
[  362.530588][ T7891]  lock_acquire+0x106/0x350
[  362.530607][ T7891]  ? touch_wq_lockdep_map+0xb5/0x180
[  362.530629][ T7891]  ? touch_wq_lockdep_map+0xb5/0x180
[  362.530646][ T7891]  touch_wq_lockdep_map+0xcb/0x180
[  362.530665][ T7891]  ? touch_wq_lockdep_map+0xb5/0x180
[  362.530684][ T7891]  __flush_workqueue+0x14b/0x14f0
[  362.530703][ T7891]  ? do_raw_spin_lock+0x12b/0x2f0
[  362.530727][ T7891]  ? __pfx___flush_workqueue+0x10/0x10
[  362.530753][ T7891]  drain_workqueue+0xd3/0x390
[  362.530775][ T7891]  lo_release+0x287/0x8f0
[  362.530804][ T7891]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  362.530834][ T7891]  ? __pfx_lo_release+0x10/0x10
[  362.530858][ T7891]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  362.530879][ T7891]  ? reacquire_held_locks+0x104/0x190
[  362.530901][ T7891]  ? rt_spin_lock+0x1e0/0x400
[  362.530920][ T7891]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  362.530941][ T7891]  ? rt_spin_unlock+0x14f/0x200
[  362.530964][ T7891]  ? rt_spin_unlock+0x160/0x200
[  362.530989][ T7891]  ? __pfx_lo_release+0x10/0x10
[  362.531014][ T7891]  bdev_release+0x541/0x660
[  362.531044][ T7891]  ? __pfx_blkdev_release+0x10/0x10
[  362.531062][ T7891]  blkdev_release+0x15/0x20
[  362.531079][ T7891]  __fput+0x461/0xa70
[  362.531104][ T7891]  fput_close_sync+0x11f/0x240
[  362.531125][ T7891]  ? __pfx_fput_close_sync+0x10/0x10
[  362.531149][ T7891]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.531169][ T7891]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.531188][ T7891]  __x64_sys_close+0x7e/0x110
[  362.531212][ T7891]  do_syscall_64+0x174/0x580
[  362.531240][ T7891]  ? trace_irq_disable+0x3b/0x140
[  362.531260][ T7891]  ? clear_bhb_loop+0x40/0x90
[  362.531281][ T7891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.531299][ T7891] RIP: 0033:0x7f968c2c2407
[  362.531318][ T7891] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  362.531336][ T7891] RSP: 002b:00007fffe1d41b00 EFLAGS: 00000202 ORIG_RAX: 0000000000000003
[  362.531356][ T7891] RAX: ffffffffffffffda RBX: 00007f968c1d4880 RCX: 00007f968c2c2407
[  362.531383][ T7891] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[  362.531394][ T7891] RBP: 00007f968c1d46e8 R08: 0000000000000000 R09: 0000000000000000
[  362.531406][ T7891] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002
[  362.531418][ T7891] R13: 0000557edb66f190 R14: 0000000000000008 R15: 0000557edb674ad0
[  362.531437][ T7891]  </TASK>
[  362.579847][T11971] netlink: 'syz.9.1747': attribute type 4 has an invalid length.
[  362.579897][T11971] netlink: 17 bytes leftover after parsing attributes in process `syz.9.1747'.
[  362.907050][ T7891] udevd[7891]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  362.954888][ T5808] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  363.140770][ T5808] usb 9-1: Using ep0 maxpacket: 8
[  363.142944][ T5808] usb 9-1: config 0 interface 0 has no altsetting 0
[  363.142979][ T5808] usb 9-1: New USB device found, idVendor=046d, idProduct=c225, bcdDevice= 0.00
[  363.143001][ T5808] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.148557][ T5808] usb 9-1: config 0 descriptor??
[  363.626337][ T5808] lg-g15 0003:046D:C225.0002: unknown main item tag 0x1
[  363.626383][ T5808] lg-g15 0003:046D:C225.0002: unknown main item tag 0x6
[  363.626470][ T5808] lg-g15 0003:046D:C225.0002: ignoring exceeding usage max
[  363.629136][ T5808] lg-g15 0003:046D:C225.0002: hidraw0: USB HID v0.81 Device [HID 046d:c225] on usb-dummy_hcd.8-1/input0
[  363.824987][ T7354] usb 9-1: USB disconnect, device number 9