last executing test programs:

6m13.236395496s ago: executing program 2 (id=3):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
setrlimit(0xd, &(0x7f00000003c0)={0x27a, 0x7})
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
connect$unix(0xffffffffffffffff, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000052c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000053c0)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x402c5342, &(0x7f0000005480)={0x0, 0x0, 0x3cdb, {0x2, 0x10000}, 0xfe, 0x80008})
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
getpeername$tipc(0xffffffffffffffff, &(0x7f00000000c0)=@name, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000540)=@filename='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0xee00, 0x0)
pipe2$9p(0x0, 0x800)
r5 = pidfd_getfd(0xffffffffffffffff, r4, 0x0)
mknodat(r5, &(0x7f0000000400)='./file0\x00', 0x80, 0x7f)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x8004, &(0x7f00000001c0)=ANY=[])
ioctl$TFD_IOC_SET_TICKS(0xffffffffffffffff, 0x40085400, 0x0)
syz_io_uring_setup(0x5240, &(0x7f0000000240)={0x0, 0xf47e, 0x2000, 0x0, 0x101c6}, &(0x7f0000000180), &(0x7f00000002c0))
syz_io_uring_setup(0x5f9a, &(0x7f0000000080)={0x0, 0x44b3, 0x20, 0x1, 0x3ab}, &(0x7f0000000000), &(0x7f0000000140))
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x8528c000)

6m8.912401851s ago: executing program 2 (id=10):
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write(r0, &(0x7f0000000240)="673aaa44fa73c2d18f929b3e0b096f9c4f483461835123dc2371a7ef12576b0192d51da57ac78a1ee9c176c58e8b5363a4d075e8e513c58bba87aeb73c75144e4c3ed16c852112472af5d7ae09d2016a306c0ffd644c4d15", 0x58)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x104}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x60081, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0x3)
socket$kcm(0x11, 0x2, 0x0)
r5 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x80)
fchdir(r6)
symlink(&(0x7f0000000300)='./file0/../file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r7 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0x114df, 0x0, 0x1, 0x87}, &(0x7f00000000c0)=<r8=>0x0, &(0x7f0000000200)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r6, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r7, 0x2000413f, 0x20adde, 0x2, 0x0, 0x0)
execve(&(0x7f0000000180)='./file0\x00', &(0x7f0000000380)={[&(0x7f00000001c0)='afs\x00', &(0x7f00000002c0)='\\%\x00', &(0x7f0000000300)='}:\\-}\xf9,-^%\\\x00', &(0x7f0000000340)='+.]\x00']}, &(0x7f0000000580)={[&(0x7f00000003c0)='\x00', &(0x7f0000000400)='/dev/ptmx\x00', &(0x7f0000000440)='afs\x00', &(0x7f00000004c0)='dyn', &(0x7f0000000500)='$\x00', &(0x7f0000000540)=']{&\x00']})
ioctl$SIOCAX25GETUID(0xffffffffffffffff, 0x89e0, &(0x7f0000000480)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
ioctl$SIOCAX25DELUID(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={0x3, @bcast})

6m7.759473489s ago: executing program 2 (id=11):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
setrlimit(0xd, &(0x7f00000003c0)={0x27a, 0x7})
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
connect$unix(0xffffffffffffffff, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000052c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000053c0)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x402c5342, &(0x7f0000005480)={0x0, 0x0, 0x3cdb, {0x2, 0x10000}, 0xfe, 0x80008})
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
getpeername$tipc(0xffffffffffffffff, &(0x7f00000000c0)=@name, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000540)=@filename='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0xee00, 0x0)
pipe2$9p(0x0, 0x800)
r5 = pidfd_getfd(0xffffffffffffffff, r4, 0x0)
mknodat(r5, &(0x7f0000000400)='./file0\x00', 0x80, 0x7f)
timerfd_create(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x8004, &(0x7f00000001c0)=ANY=[])
syz_io_uring_setup(0x5240, &(0x7f0000000240)={0x0, 0xf47e, 0x2000, 0x0, 0x101c6}, &(0x7f0000000180), &(0x7f00000002c0))
syz_io_uring_setup(0x5f9a, &(0x7f0000000080)={0x0, 0x44b3, 0x20, 0x1, 0x3ab}, &(0x7f0000000000), &(0x7f0000000140))
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x8528c000)

6m5.917011531s ago: executing program 2 (id=12):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
setrlimit(0xd, &(0x7f00000003c0)={0x27a, 0x7})
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
connect$unix(0xffffffffffffffff, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000052c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000053c0)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x402c5342, &(0x7f0000005480)={0x0, 0x0, 0x3cdb, {0x2, 0x10000}, 0xfe, 0x80008})
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
getpeername$tipc(0xffffffffffffffff, &(0x7f00000000c0)=@name, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000540)=@filename='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0xee00, 0x0)
pipe2$9p(0x0, 0x800)
r5 = pidfd_getfd(0xffffffffffffffff, r4, 0x0)
mknodat(r5, &(0x7f0000000400)='./file0\x00', 0x80, 0x7f)
timerfd_create(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x8004, &(0x7f00000001c0)=ANY=[])
syz_io_uring_setup(0x5240, &(0x7f0000000240)={0x0, 0xf47e, 0x2000, 0x0, 0x101c6}, &(0x7f0000000180), &(0x7f00000002c0))
syz_io_uring_setup(0x5f9a, &(0x7f0000000080)={0x0, 0x44b3, 0x20, 0x1, 0x3ab}, &(0x7f0000000000), &(0x7f0000000140))
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x8528c000)

5m59.165806126s ago: executing program 2 (id=17):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
setrlimit(0xd, &(0x7f00000003c0)={0x27a, 0x7})
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
connect$unix(0xffffffffffffffff, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000052c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000053c0)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x402c5342, &(0x7f0000005480)={0x0, 0x0, 0x3cdb, {0x2, 0x10000}, 0xfe, 0x80008})
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
getpeername$tipc(0xffffffffffffffff, &(0x7f00000000c0)=@name, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000540)=@filename='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0xee00, 0x0)
pipe2$9p(0x0, 0x800)
r5 = pidfd_getfd(0xffffffffffffffff, r4, 0x0)
mknodat(r5, &(0x7f0000000400)='./file0\x00', 0x80, 0x7f)
r6 = timerfd_create(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x8004, &(0x7f00000001c0)=ANY=[])
ioctl$TFD_IOC_SET_TICKS(r6, 0x40085400, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_io_uring_setup(0x5240, &(0x7f0000000240)={0x0, 0xf47e, 0x2000, 0x0, 0x101c6}, &(0x7f0000000180), &(0x7f00000002c0))
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x8528c000)

5m49.398413013s ago: executing program 2 (id=24):
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x5ac, 0x254, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x40, 0x9, "", [{{0x9, 0x4, 0x0, 0x7, 0x2, 0x3, 0x1, 0x2, 0x4, {0x9, 0x21, 0x7bd, 0x0, 0x1, {0x22, 0xdae}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x0, 0xc, 0xe7}}}}}]}}]}}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = openat$dlm_plock(0xffffffffffffff9c, 0x0, 0x41, 0x0)
write$nbd(r0, 0x0, 0x40)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newlink={0x40, 0x10, 0x1, 0x0, 0x3, {0x0, 0x0, 0x0, 0x0, 0xc010}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_IKEY={0x8, 0x4, 0xfff}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x8000)
syz_open_procfs(0x0, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
r5 = syz_open_procfs(0x0, &(0x7f0000002080)='pagemap\x00')
lseek(r5, 0xffffe80000000001, 0x1)
readv(r5, &(0x7f0000000640)=[{&(0x7f0000000140)=""/169, 0xa9}], 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', 0x0, 0x2, 0x0)

5m34.121104023s ago: executing program 32 (id=24):
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x5ac, 0x254, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x40, 0x9, "", [{{0x9, 0x4, 0x0, 0x7, 0x2, 0x3, 0x1, 0x2, 0x4, {0x9, 0x21, 0x7bd, 0x0, 0x1, {0x22, 0xdae}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x0, 0xc, 0xe7}}}}}]}}]}}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = openat$dlm_plock(0xffffffffffffff9c, 0x0, 0x41, 0x0)
write$nbd(r0, 0x0, 0x40)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newlink={0x40, 0x10, 0x1, 0x0, 0x3, {0x0, 0x0, 0x0, 0x0, 0xc010}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_IKEY={0x8, 0x4, 0xfff}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x8000)
syz_open_procfs(0x0, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
r5 = syz_open_procfs(0x0, &(0x7f0000002080)='pagemap\x00')
lseek(r5, 0xffffe80000000001, 0x1)
readv(r5, &(0x7f0000000640)=[{&(0x7f0000000140)=""/169, 0xa9}], 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', 0x0, 0x2, 0x0)

11.941644495s ago: executing program 4 (id=519):
setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x3)
syz_usb_connect$uac1(0x0, 0x72, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x763, 0x2030, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x60, 0x3, 0x1, 0x7, 0x80, 0x1, "", {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x8f0d, 0xa}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x10, 0x6, 0x5, 0x44, {0x7, 0x25, 0x1, 0xc, 0x6}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x20, 0x1, 0xff, 0x2, {0x7, 0x25, 0x1, 0x0, 0x5, 0x1}}}}}}}}]}}, 0x0)

11.033016191s ago: executing program 0 (id=524):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000000)=ANY=[@ANYRESHEX=r0, @ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shutdown(r4, 0x1)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000003c0)=0x11)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x2)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004041, 0x0, 0x0)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_ERRQUEUE(r6, 0x6b, 0x3, 0x0, &(0x7f0000000040))
syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x4e22, @broadcast}, 0x2, 0x9800}}, 0x2e)
socket(0x1d, 0x2, 0x6)
syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x78, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f0000000180)={0x3fb, 0x7, 0xffffffffffffffff, 0x9, 0x8000000, 0x2, 0x80000006}, 0x0, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0xc0145b0e, &(0x7f0000000040))

7.600417511s ago: executing program 1 (id=530):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'gre0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x48, 0x10, 0x421, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r1, 0x0, 0x10000}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @gre={{0x8}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_SPORT={0x6, 0x10, 0x4e20}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x3ff}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e20}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x841}, 0x0)

7.161272863s ago: executing program 1 (id=531):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=@newlink={0x40, 0x10, 0x403, 0x0, 0xfffffd, {0x0, 0x0, 0x3, 0x0, 0x0, 0x20040}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0x4040}, @IFLA_AF_SPEC={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4894}, 0x0)
ioctl$IOMMU_IOAS_IOVA_RANGES(r0, 0x3b84, &(0x7f0000000000)={0x20, r1, 0x1, 0x0, &(0x7f00000022c0)=[{}]})

6.451831899s ago: executing program 0 (id=532):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ppoll(&(0x7f0000000040)=[{r0, 0x4}], 0x1, 0x0, 0x0, 0x0)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f00000003c0)=@userptr={0x2, 0x8, 0x4, 0x40, 0xffffffff, {0x77359400}, {0x4, 0x1, 0x10, 0x3, 0x6, 0x7, "bdc0be11"}, 0x2, 0x2, {0x0}, 0x5})
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000540)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xc}, 0x10, 0x0, r1, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x3, 0x200000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0x800002, 0x2b}, 0xa, @in6=@local, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xb}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x40000)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x10040)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
fcntl$setstatus(r4, 0x4, 0x40800)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r5, 0x2000009)
sendfile(r4, r5, 0x0, 0x7ffff004)

6.344171134s ago: executing program 4 (id=533):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000540)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xc}, 0x10, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x3, 0x200000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0x800002, 0x2b}, 0xa, @in6=@local, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xb}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x40000)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x10040)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
fcntl$setstatus(r3, 0x4, 0x40800)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r4, 0x2000009)
sendfile(r3, r4, 0x0, 0x7ffff004)

6.097231706s ago: executing program 1 (id=534):
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)={0x44, r0, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x1c, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa9}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa6}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x44}}, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r1, 0xfffffffc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2800000010005fba0f1902e80000000000000000", @ANYRES32=0x0, @ANYBLOB="00010000e180000008001b0000000000"], 0x28}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140))
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@fowner_eq}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@fsname={'fsname', 0x3d, '.'}}, {@subj_type={'subj_type', 0x3d, '/)/-:$//('}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r6, &(0x7f0000000140)='2', 0x1, 0x8000c61)
ioctl$sock_netdev_private(r4, 0x89ff, &(0x7f00000002c0)="0a42b1")
link(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0), 0x4)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r3, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)

5.999060221s ago: executing program 0 (id=535):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000540)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xc}, 0x10, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x3, 0x200000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0x800002, 0x2b}, 0xa, @in6=@local, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xb}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x40000)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x10040)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
fcntl$setstatus(r3, 0x4, 0x40800)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r4, 0x2000009)
sendfile(r3, r4, 0x0, 0x7ffff004) (fail_nth: 1)

5.986924131s ago: executing program 4 (id=536):
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000d, 0x20010, r0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
r1 = openat$dsp1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

5.800108911s ago: executing program 3 (id=537):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
syz_emit_vhci(0x0, 0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setrlimit(0xc, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000400000000000000080003851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50afdff00000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0xa}, 0x94)

5.325253435s ago: executing program 0 (id=538):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x104}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x60081, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x3)
socket$kcm(0x11, 0x2, 0x0)
r4 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x80)
fchdir(r5)
symlink(&(0x7f0000000300)='./file0/../file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r6 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0x114df, 0x0, 0x1, 0x87}, &(0x7f00000000c0)=<r7=>0x0, &(0x7f0000000200)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r5, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r6, 0x2000413f, 0x20adde, 0x2, 0x0, 0x0)
execve(&(0x7f0000000180)='./file0\x00', &(0x7f0000000380)={[&(0x7f00000001c0)='afs\x00', &(0x7f00000002c0)='\\%\x00', &(0x7f0000000300)='}:\\-}\xf9,-^%\\\x00', &(0x7f0000000340)='+.]\x00']}, &(0x7f0000000580)={[&(0x7f00000003c0)='\x00', &(0x7f0000000400)='/dev/ptmx\x00', &(0x7f0000000440)='afs\x00', &(0x7f00000004c0)='dyn', &(0x7f0000000500)='$\x00', &(0x7f0000000540)=']{&\x00']})
ioctl$SIOCAX25GETUID(0xffffffffffffffff, 0x89e0, &(0x7f0000000480)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
ioctl$SIOCAX25DELUID(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={0x3, @bcast})

5.145363234s ago: executing program 3 (id=539):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$kcm(0x1e, 0x5, 0x0)
sendmsg$kcm(r1, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@id, 0x80, 0x0}, 0x0) (async)
sendmsg$kcm(r1, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@id, 0x80, 0x0}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000380)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@errors_remount}, {@usrjquota}]}, 0xff, 0x44d, &(0x7f0000000900)="$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")
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
ioctl$FITRIM(r2, 0xc0185879, 0x0) (async)
ioctl$FITRIM(r2, 0xc0185879, 0x0)
recvmsg$kcm(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000480)=""/146, 0x92}], 0x1}, 0x80f3051602a5e657)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xd, @ipv4={'\x00', '\xff\xff', @loopback}, 0x9}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c) (async)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth0_macvtap\x00', 0x10)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$dupfd(r0, 0x0, r0) (async)
r3 = fcntl$dupfd(r0, 0x0, r0)
connect$netlink(r3, &(0x7f00000001c0)=@kern={0x10, 0x0, 0x0, 0x20}, 0xc)
symlink(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00')

5.043759879s ago: executing program 4 (id=540):
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x17f)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000540), 0x44800, 0x0)
sendfile(r0, r1, 0x0, 0xfffe82)

4.799992941s ago: executing program 1 (id=541):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000000)=ANY=[@ANYRESHEX=r0, @ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shutdown(r4, 0x1)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000003c0)=0x11)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x2)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004041, 0x0, 0x0)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_ERRQUEUE(r6, 0x6b, 0x3, 0x0, &(0x7f0000000040))
syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
socket(0x1d, 0x2, 0x6)
syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x78, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f0000000180)={0x3fb, 0x7, 0xffffffffffffffff, 0x9, 0x8000000, 0x2, 0x80000006}, 0x0, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0xc0145b0e, &(0x7f0000000040))

3.777345512s ago: executing program 3 (id=542):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000340)={@in={{0x2, 0x4e20, @local}}, 0x0, 0x0, 0x22, 0x0, "cebd7ceedb7b0ad952e966bbe242b92b746b023df2cb59e32e10366456deac64e782206bd4aee372005a52a40b7161161a8b2749fe184fb0d08bc63f90010a1ed2bf603d2c3fcc250c01006f9ef2ef8b"}, 0xd8)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

3.21526642s ago: executing program 0 (id=543):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000040))
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x1, 0x4, 0x1, 0x1, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x8, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100002}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1c, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x41100, 0x62, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9528da7}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000008c0), 0x103000, 0x0)
fcntl$setstatus(r2, 0x4, 0x44800)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000300)={0x1, <r3=>0xffffffffffffffff}, 0x4)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000280)={r3, &(0x7f00000000c0)="d57e2d27b71123e814fbb5bf75f5178deb951351c2988799b3ec13d78eb115df651344badc7d305f2535336fda25850a548d3b6d1eac372f7f64086c3d799360af1400b4cc7f25438e8ff0f1bc758da8b19ce73d38168a833151044ba43afd570b1d068f4201f7f5184dc2a0486e367a94981ff7231007d10eb3de5a4055a70640a06b29698d081a8b3b634fac5f3d19a173104a23c3ca40b7323b964621a50295f059b5e18eb9", &(0x7f0000000180)=""/199, 0x4}, 0x20)
r4 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009e173610ef171e7206de0102030109021200010000000009040000000206"], 0x0)
syz_usb_control_io$uac1(r4, 0x0, &(0x7f0000000b80)={0x44, &(0x7f00000002c0)={0x40, 0x10, 0x9, "08004dd59e69000034"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3.141707913s ago: executing program 4 (id=544):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {0x0}, {0x0}, {0x0}], 0x5}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4000, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0x6, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0xb, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0x9000, 0xb, 0x1, 0x2, 0x7, 0x2, 0x4, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0xf3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x58000, 0x0, 0x4, 0x0, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x9000, 0x8, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x7, 0x3, 0xa, 0x9, 0x5c, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0x4, [0x3, 0x401, 0x7, 0x6]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x5, 0x3000, 0x1000, &(0x7f0000ffe000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(r4, 0x80184151, &(0x7f0000000580)={0x0, &(0x7f0000000600)="62546d25300286bcbb2b6ebfe89a95f982516327568720ef137a3a02f7bd8470b177cca5e688c746c2e190911a9fa8bba1ce7e6aa461ff0b5094c554919b5dc451b15f307c8ecbf28144867bb8f0f1d6f15cd57172dffe46f2aded0bc2df93073dfffaeb", 0x64})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x88}, 0x0)
r5 = socket$inet(0x2, 0xa, 0x262)
prlimit64(0x0, 0x8, &(0x7f00000000c0)={0xb8, 0x7ff}, &(0x7f0000000100))
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
ioctl$sock_inet_SIOCSARP(r5, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @remote}, 0x38, {0x2, 0xfffe, @broadcast}, 'syz_tun\x00'})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x17f)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000540), 0x44800, 0x0)
r8 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x8, 0x0, 0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000500), 0x4800a0)
sendfile(r6, r7, 0x0, 0xfffe82)

1.755699902s ago: executing program 3 (id=545):
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x6, 0x917}}, './file0\x00'})
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r2=>0x0})
getpeername$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000140)=0x14)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={0xffffffffffffffff, 0x58, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0x10)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000001440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001400)={&(0x7f0000000240)={0x11c0, r1, 0x600, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_FEATURES_HEADER={0x80, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_FEATURES_WANTED={0x108c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}, @ETHTOOL_A_BITSET_VALUE={0x71, 0x4, "15f2eb8ada7d74ea4fc0e4d34f267847176c72ecbf33745241cca8cff00e264bea6fb3ed2dfdf02c3d8fb5f0f9689ff441f5ea0bed70df2e2334e2d419848f8d94af5a19e8c4b297473f839c7721b3d7be2debd2ef51af2db146c66b594e72edb47a273c36bf29becc0977f37b"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xd}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x5}]}, @ETHTOOL_A_FEATURES_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_FEATURES_WANTED={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x10}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x11c0}, 0x1, 0x0, 0x0, 0x8800}, 0x800)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f0000001540)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001500)={&(0x7f00000014c0)={0x1c, 0x2, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0x1}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000802}, 0x40895)
r5 = syz_open_dev$sndmidi(&(0x7f0000001580), 0x1, 0x0)
sendfile(r5, r0, &(0x7f00000015c0)=0x3, 0x5)
ioctl$int_out(r0, 0xa8c0, &(0x7f0000001600))
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000001640)={<r7=>0x0, 0x8, 0x10, 0x59, 0x5}, &(0x7f0000001680)=0x18)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r6, 0x84, 0x1b, &(0x7f00000016c0)={r7, 0xe6, "53b58c48b97022333357d8b2859eb2ac1fc1d3d3a7ee4a04b7606dba41ba5ad6e312f574ee92908700c9c31b9d2fbc1b1d83d7a4a599254f6fdfa9b00f1c4a90d8fc41cdbeb7bbebcc3cf20e44b6885025f6d4095af27b650192d942a718658664af9e8431dd3b8fe09109c95b7d8606dd686ebf694fdc1d554d5e53321271b5eaa610a4292dde0050a9f486b3e7eb4ae0c3ad4c620fcd96e5cf0c52f00a0c36e998647368d5662dfdca35b82ba5b26ca903c7bab85fd55a94bf4ec299e29030d2a34da562f1a0e200f550d5eb3a5f96f65fc11c43854eeece4d7072b016e987834d3212d4c5"}, &(0x7f00000017c0)=0xee)
bind$inet6(r0, &(0x7f0000001800)={0xa, 0x4e24, 0xf, @local, 0x8}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
tee(r5, r5, 0xfffffffffffff000, 0x5)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, &(0x7f0000001840)={r7, 0xff88, 0x6}, 0x8)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001880)=<r8=>0x0)
r9 = syz_open_procfs(r8, &(0x7f00000018c0)='ns\x00')
ioctl$LOOP_SET_STATUS64(r9, 0x4c04, &(0x7f0000001900)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8, 0x4, "9b10d257f6fc4406dad68af21a598cf33142cb1ec83757fec51fdfe54eeb1b0a0ec58ce4e157f9def3ee13e2a9104edd9bd2bf965ca7f51ad5ca2ee532aac1a6", "de0942859f3df4ae51506ee6b4f7cb4b1034d46393acb5f896047691b0e6d08be69a26431ec0397e265b7279d3732160272d7286ada037f5806cf4982a251937", "3c790936e1eeed1191847c84b35c498ae58dfb32e156b343a88494304a49a199", [0x7, 0x100000000]})
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001a40), r9)
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r10, &(0x7f0000001b00)={&(0x7f0000001a00)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001ac0)={&(0x7f0000001a80)={0x1c, r11, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x24000080)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000001b80)={'wlan0\x00', <r12=>0x0})
sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000001c40)={&(0x7f0000001b40)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001c00)={&(0x7f0000001bc0)={0x1c, r11, 0x200, 0x70bd2a, 0x1, {{}, {@val={0x8, 0x3, r12}, @void}}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0xc010}, 0x800)
setsockopt$llc_int(r9, 0x10c, 0x5, &(0x7f0000001c80), 0x4)
ioctl$NILFS_IOCTL_GET_CPSTAT(r0, 0x80186e83, &(0x7f0000001cc0))
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f0000001d00)={0x101, 0x81, 0xab, 0x1000}, 0x10)
ioctl$sock_SIOCETHTOOL(r10, 0x8946, &(0x7f0000001d80)={'dvmrp0\x00', &(0x7f0000001d40)=@ethtool_sfeatures={0x3b, 0x1, [{0x446, 0x800}]}})
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f00000021c0)={0x0, "4155b0b064fc092cb1a838ed209442fe"})

1.165341672s ago: executing program 3 (id=546):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, 0x0) (fail_nth: 2)

554.435002ms ago: executing program 1 (id=547):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x10040)
syz_emit_ethernet(0x131, &(0x7f0000000400)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x123, 0xfffe, 0x0, 0xbc, 0x6, 0x0, @remote, @multicast1}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0xc, 0x10, 0xca, 0x0, 0x1000, {[@timestamp={0x8, 0x8, 0x1, 0x9}]}}, {"8bb851682615b3352d462419be0c9600c0292668f9bccd80e3f403e230e377ff1b263db634937d8d552c25bf2238b53b48e1c33ade907051b81a71bc8adeb0e0f0a629bf92985ebbd3aa8d0f2dab97037142c37c36a673988de3420591134378a591d143ad819779fa8658c4947afd5a8d6d17f5ecfb7a094b23ed5dc5d3026f63398df899d7d312f8f2713891fac1143546e33dd5148998bf6d19efb77011d5c4bba1919701bcc4a01d99dfbc34f57b0887652d3eebf1bcc3454e76b0f8b80db1704d99ae075cccb654827a1bffe9d41f8af138e3e65e54294d71877722d12fafad30686bdd18eef5122e3b320e1b"}}}}}}, 0x0)
r1 = io_uring_setup(0x514, &(0x7f0000000000)={0x0, 0xbbec, 0x8, 0x1, 0x1cf})
io_uring_enter(r1, 0x4f40, 0xa30b, 0x3, &(0x7f0000000080)={[0x53795fba]}, 0x8)

409.567039ms ago: executing program 4 (id=548):
r0 = socket(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x5e, &(0x7f0000003680)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @loopback={0xff00000000000000, 0x1ff0000aa}, @private1}}}}}}, 0x0)
ioctl$SIOCGETLINKNAME(r0, 0x89e0, &(0x7f0000000580)={0x2, 0x1})
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x204050, &(0x7f0000000540)=ANY=[], 0x1, 0x6da, &(0x7f0000002240)="$eJzs3c1vHGcZAPBn1uu1N00TN03bgCrVaiRARDT+kAvmQkAIGalCKBw4W4nTWNmkxXHBrRB1+Lz20D+gF18QJyROXCIVDlzg1hvygUMlJC69YE6DZnZmd7Ler3x5bfj9otn3nfedeeeZZz52diNrA/i/tXYp6vcjibVLb+xk8/t7y639veXbZT0iZiJiN6IeEbWISP6dpunHEVciks4wSU95yIebq1c/+Wz/0/ZcvZjy5WvD1utRLLfb07xbts1HxFRRPoYHxrv22OMlncivRMTFooSJm46INJ2OtONHfzl9uuzJOs+2y2a/tWePMFLgaUna75vZm3Gt2j4Xcaq40LPngPKdtzaRIMcwM+ZyvU8QAAAAcNKM8xn47EEcxE5y5gjCAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgP8Ju93f/0+KqVbW5yMpf/+/UbRFUT9eXnm4xe8/rTgAAAAAAAAA4Ai9chAHsRNnyvk0yf/P/9V85nz++ky8E3djI7bitdiJ9diO7diKxYiYqwzU2Fnf3t5aHGPNpb5rLo0IdKYom09mvwEAAAAAAADgBPnJ1U51d9AyP4+17v//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAcZBETLWLSO5VmueiVo+I2XrRsBvxt4hoTCrOJ+X+pAMAAACAxzE13mJnD+IgduJMOZ8mcT4iXsy/A5iNd+JObMdmbEcrNuJ6/r1A+1N/bX9vubW/t3w7mw6P+81/PTA7OyKMfMRO1P22fCFfohk3YjNveS2uxVvRiutRy9fMXCjiKUftieteFlPyjcJ4+YnrRZnt+QdFecj7Yw42XO+XKc3hX7DM5RmZ7mRkoYgty8Zz5ZHpf4R6js4ovVtajFonsPM9W+oJ+JFyfqoos/359aCcT0RvJpYqZ9+Lw3Me8cU//O6HC0X9+OzSaLVKPc1fm1km/vFAJpYrmXhpnEzcbN25dfPGqBvDCbCQp+iFzvxafCd+EJdiPr4fW7EZP4712I6NmI9v57X14uAnlct7QKautIvpfptd655CZd4bxRk6VbQ+TEyv5uueic34XrwV12MjXs//LcVifDVWYiVWK0e4UY35cNz5VV/LAuxc9d0DnT7bN40Xv1RUstveb4qyr4EdT0u2t89V8lq9587lfdWWbpbODb8OsixlaZmp3hv/ODyU+ueLSraNX/RcnJPVm4nFSiaeH5aJ8kS+27pza+vm+tvjbe7cB5XVf3WsbqnZ+XIuO1hRHqDu2ZH1PV/29eQr6zvf6asd6nuh09e+UncHXqmN4hnu8EhLed9LffuW82Av5H3pwOet0U9zAEzYqS+fajT/2fxr86PmL5s3m2/MfmvmazMvN2L6T9Nfry9MfaH2cvL7+Ch+1v38DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLq77753a73V2tjqqaRp+v6ArlZ6NmJA16NVagPDyCr1EaEeqsT835/JVihb0uh0lb+O+ASDH1X53OmIIctMP9hS/DpPtFvqTzbPE6z8J03ToiUZsMxv/3w4Uc8OS12n0hj/3BhRmS3O8MKxSF1RqR/xRid0QwKOzOXt229fvvvue1/ZvL3+5sabG3dWV1ZWF1ZXXl++fGOztbHQfp10lMDT0H3Tn3QkAAAAAAAAAAAAwLjG+3uAeKw/J5j0PgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAn29qlqN+PJBYXYjab399bbmVTWe8uWY+IWkQkP41IPo64Eu0p5irDJYO28+Hm6tVPPtv/tDtWNsV3rw1ZrzH2XuwWU8xHxFS7vDf22iPGu1aUQyWDd729d+3uLGEXy8TBpP03AAD//4ry/Bg=")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file1\x00', 0x8042, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
pwrite64(r1, 0x0, 0x0, 0x5)
ioctl$FE_DISEQC_RECV_SLAVE_REPLY(0xffffffffffffffff, 0x800c6f40, &(0x7f0000000100)={""/4, 0x4})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
setsockopt$inet_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(0xffffffffffffffff, 0xc01864cb, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=@newsa={0x1fc, 0x1a, 0x1, 0xfffffffe, 0x100, {{@in=@rand_addr=0x64010102, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x1, 0x717, 0x4e23, 0x5, 0xa, 0x0, 0x20, 0x3a}, {@in=@dev={0xac, 0x14, 0x14, 0x35}, 0x4d4, 0x33}, @in6=@mcast1, {0xfe, 0x1000000000000192, 0xf, 0xcbed, 0x8251c, 0x5, 0xfffffffffffffffc}, {0x6, 0x0, 0x1f, 0xfffffffffffffffe}, {0xff7ffffe, 0x3fc}, 0x7e, 0x3505, 0x2, 0x1, 0x0, 0x24}, [@algo_auth={0x10b, 0x1, {{'blake2s-224-arm\x00'}, 0x618, "602b237c47d62d5fe9f760ba46ab69bccea081d13fa6b2ff46ac7a80632be2a0f8616d3a07ebdce070b5bbfb2fa2c1fa0119635f78a7c5d43b297a29035ff6ae4721dfb67a616287fa11d175e73db741597ce46223eed24da7036abbad9e579831dc637a1eb7ca6c0428c2b870da9ef14591538f1d8a9cb26bee7da6e815e0a3c33cc477321a99b583d83f6257e2b756f64afdfd26ef4ceb7ebb711d1a0ab6e91dae0233073d58dbfc68dc33bf8a11ca1890aaa6b88aefda9af4ad5b5e777770de6b78"}}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x81}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x80, 0x5, 0x7fff0003}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000300))
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00'})

237.185288ms ago: executing program 1 (id=549):
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)={0x44, r0, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x1c, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa9}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa6}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x44}}, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r1, 0xfffffffc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2800000010005fba0f1902e80000000000000000", @ANYRES32=0x0, @ANYBLOB="00010000e180000008001b0000000000"], 0x28}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140))
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@fowner_eq}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@fsname={'fsname', 0x3d, '.'}}, {@subj_type={'subj_type', 0x3d, '/)/-:$//('}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$eJzs3V9rW+UfAPDvSZP9636/djCGeiGDXTgZS9fWPxOEzUvR4UDvZ2izMpouo0nHWgduF+7GGxmCiAPxBXjv5fAN+CoGOhgyil6IUDnpSZe1Sf8tNbH5fOBsz5Nzkud58pzvyfOck/QEMLBOpv/kIl6OiK+SiJGWdfnIVp5c3W756e2pdEliZeXj35O4sO61kuz/4SzzUkT8/EXEmdzGcmuLS7OlSqU8n+XH6nM3xmqLS2evzZVmyjPl6xOTk+ffnJx45+23utbW1y//+e1HD98//+Wp5W9+fHzsfhIX42i2Lm1XF4q405o5Wfo7SxXi4roNx7tQWD9Jel0BdmUoi/NCpMeAkRjKoh7Y/z6PiBVgQCXiHwZUcxzQnNt3aR78n/HkvdUJ0Mb251fPjcShxtzoyHLy3Mwone+OdqH8tIyffntwP11i8/MQh7fIA+zInbsRcS6f33j8S7Lj3+6da5w83tz6Mgbt8wd66WE6/knuRGyI/9za+CfajH+G28Tubmwd/7nHXSimo3T8927b8e/aoWt0KMv9rzHmKyRXr1XK5yLi/xFxOgoH0/xm13POLz9a6bSudfyXLmn5zbFgVo/H+YPPP2e6VC+9SJtbPbkb8Urb8W+y1v9Jm/5P34/L2yzjRPnBq53Wbd3+vbXyQ8Rrbfv/2RWtZPPrk2ON/WGsuVds9Me9E790Kr/X7U/7/8jm7R9NWq/X1nZexveH/ip3Wrfb/f9A8kkjfSB77FapXp8fjziQfJgfXv/4xLPnNvPN7dP2nz7VPv432//Tyden22z/veP3Om7aD/0/vaP+33ni0Qeffdep/O31/xuN1Onske0c/7ZbwRd57wAAAAAAAKDf5CLiaCS54lo6lysWV7/fcTyO5CrVWv3M1erC9elo/FZ2NAq55pXukZbvQ4xn34dt5ifW5Scj4lhEfD10uJEvTlUr071uPAAAAAAAAAAAAAAAAAAAAPSJ4Q6//0/9OtTr2gF7rnFjg4O9rgXQC1ve8r8bd3oC+tKW8Q/sWzuPf2cGYL/w+Q+DS/zD4BL/MLi2G/+FkT2uCPCv8/kPg0v8AwAAAAAAAAAAAAAAAAAAAAAAAAAAQFddvnQpXVaWn96eSvPTNxcXZqs3z06Xa7PFuYWp4lR1/kZxplqdqZSLU9W5rV6vUq3eGJ+IhVtj9XKtPlZbXLoyV124Xr9yba40U75SLvhjwwAAAAAAAAAAAAAAAAAAALBBbXFptlSplOclOiYuRF9UYy8buGpXT8/3Syskupro8YEJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFr8EwAA//8DDjNQ")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r6, &(0x7f0000000140)='2', 0x1, 0x8000c61)
ioctl$sock_netdev_private(r4, 0x89ff, &(0x7f00000002c0)="0a42b1")
link(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0), 0x4)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r3, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)

161.609292ms ago: executing program 3 (id=550):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x204050, &(0x7f0000000540)=ANY=[], 0x1, 0x6da, &(0x7f0000002240)="$eJzs3c1vHGcZAPBn1uu1N00TN03bgCrVaiRARDT+kAvmQkAIGalCKBw4W4nTWNmkxXHBrRB1+Lz20D+gF18QJyROXCIVDlzg1hvygUMlJC69YE6DZnZmd7Ler3x5bfj9otn3nfedeeeZZz52diNrA/i/tXYp6vcjibVLb+xk8/t7y639veXbZT0iZiJiN6IeEbWISP6dpunHEVciks4wSU95yIebq1c/+Wz/0/ZcvZjy5WvD1utRLLfb07xbts1HxFRRPoYHxrv22OMlncivRMTFooSJm46INJ2OtONHfzl9uuzJOs+2y2a/tWePMFLgaUna75vZm3Gt2j4Xcaq40LPngPKdtzaRIMcwM+ZyvU8QAAAAcNKM8xn47EEcxE5y5gjCAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgP8Ju93f/0+KqVbW5yMpf/+/UbRFUT9eXnm4xe8/rTgAAAAAAAAA4Ai9chAHsRNnyvk0yf/P/9V85nz++ky8E3djI7bitdiJ9diO7diKxYiYqwzU2Fnf3t5aHGPNpb5rLo0IdKYom09mvwEAAAAAAADgBPnJ1U51d9AyP4+17v//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAcZBETLWLSO5VmueiVo+I2XrRsBvxt4hoTCrOJ+X+pAMAAACAxzE13mJnD+IgduJMOZ8mcT4iXsy/A5iNd+JObMdmbEcrNuJ6/r1A+1N/bX9vubW/t3w7mw6P+81/PTA7OyKMfMRO1P22fCFfohk3YjNveS2uxVvRiutRy9fMXCjiKUftieteFlPyjcJ4+YnrRZnt+QdFecj7Yw42XO+XKc3hX7DM5RmZ7mRkoYgty8Zz5ZHpf4R6js4ovVtajFonsPM9W+oJ+JFyfqoos/359aCcT0RvJpYqZ9+Lw3Me8cU//O6HC0X9+OzSaLVKPc1fm1km/vFAJpYrmXhpnEzcbN25dfPGqBvDCbCQp+iFzvxafCd+EJdiPr4fW7EZP4712I6NmI9v57X14uAnlct7QKautIvpfptd655CZd4bxRk6VbQ+TEyv5uueic34XrwV12MjXs//LcVifDVWYiVWK0e4UY35cNz5VV/LAuxc9d0DnT7bN40Xv1RUstveb4qyr4EdT0u2t89V8lq9587lfdWWbpbODb8OsixlaZmp3hv/ODyU+ueLSraNX/RcnJPVm4nFSiaeH5aJ8kS+27pza+vm+tvjbe7cB5XVf3WsbqnZ+XIuO1hRHqDu2ZH1PV/29eQr6zvf6asd6nuh09e+UncHXqmN4hnu8EhLed9LffuW82Av5H3pwOet0U9zAEzYqS+fajT/2fxr86PmL5s3m2/MfmvmazMvN2L6T9Nfry9MfaH2cvL7+Ch+1v38DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLq77753a73V2tjqqaRp+v6ArlZ6NmJA16NVagPDyCr1EaEeqsT835/JVihb0uh0lb+O+ASDH1X53OmIIctMP9hS/DpPtFvqTzbPE6z8J03ToiUZsMxv/3w4Uc8OS12n0hj/3BhRmS3O8MKxSF1RqR/xRid0QwKOzOXt229fvvvue1/ZvL3+5sabG3dWV1ZWF1ZXXl++fGOztbHQfp10lMDT0H3Tn3QkAAAAAAAAAAAAwLjG+3uAeKw/J5j0PgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAn29qlqN+PJBYXYjab399bbmVTWe8uWY+IWkQkP41IPo64Eu0p5irDJYO28+Hm6tVPPtv/tDtWNsV3rw1ZrzH2XuwWU8xHxFS7vDf22iPGu1aUQyWDd729d+3uLGEXy8TBpP03AAD//4ry/Bg=")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file1\x00', 0x8042, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)

0s ago: executing program 0 (id=551):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x104}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x60081, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x3)
socket$kcm(0x11, 0x2, 0x0)
r4 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x80)
fchdir(r5)
symlink(&(0x7f0000000300)='./file0/../file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r6 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0x114df, 0x0, 0x1, 0x87}, &(0x7f00000000c0)=<r7=>0x0, &(0x7f0000000200)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r5, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r6, 0x2000413f, 0x20adde, 0x2, 0x0, 0x0)
execve(&(0x7f0000000180)='./file0\x00', &(0x7f0000000380)={[&(0x7f00000001c0)='afs\x00', &(0x7f00000002c0)='\\%\x00', &(0x7f0000000300)='}:\\-}\xf9,-^%\\\x00', &(0x7f0000000340)='+.]\x00']}, &(0x7f0000000580)={[&(0x7f00000003c0)='\x00', &(0x7f0000000400)='/dev/ptmx\x00', &(0x7f0000000440)='afs\x00', &(0x7f00000004c0)='dyn', &(0x7f0000000500)='$\x00', &(0x7f0000000540)=']{&\x00']})
ioctl$SIOCAX25GETUID(0xffffffffffffffff, 0x89e0, &(0x7f0000000480)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
ioctl$SIOCAX25DELUID(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={0x3, @bcast})

kernel console output (not intermixed with test programs):

ro read bulk status received: -71
[  265.676946][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  265.686119][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  265.695267][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  265.704390][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  265.713504][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  265.722626][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  265.731770][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  265.740887][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  265.750017][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  265.759130][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  266.072314][ T6937] can0 (unregistered): slcan off ttyS3.
[  266.217636][ T6950] loop1: detected capacity change from 0 to 2048
[  266.261384][ T6955] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  266.678421][ T6578] kernel write not supported for file /vcsa (pid: 6578 comm: kworker/0:14)
[  267.011336][ T6957] loop4: detected capacity change from 0 to 2048
[  267.309543][ T6957]  loop4: p2 < > p3 < p5 > p4
[  267.417455][ T6957] loop4: partition table partially beyond EOD, truncated
[  267.485609][ T5813] usb 1-1: USB disconnect, device number 8
[  267.498790][ T6957] loop4: p2 start 4278190080 is beyond EOD, truncated
[  267.580306][ T6957] loop4: p4 size 8192 extends beyond EOD, truncated
[  267.589408][ T6957] loop4: p5 size 8192 extends beyond EOD, truncated
[  267.622385][ T6970] syz.0.211 uses obsolete (PF_INET,SOCK_PACKET)
[  267.766418][ T5782] udevd[5782]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory
[  267.775019][ T6031] udevd[6031]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  267.797188][ T6100] udevd[6100]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  268.206877][ T6983] loop1: detected capacity change from 0 to 64
[  268.362367][ T6973] loop4: detected capacity change from 0 to 32768
[  268.619654][ T6984] tipc: Started in network mode
[  268.627229][ T6984] tipc: Node identity 100007, cluster identity 4711
[  268.634338][ T6984] tipc: Node number set to 1048583
[  270.343093][ T6995] netlink: 8 bytes leftover after parsing attributes in process `syz.0.227'.
[  270.360159][ T6995] loop0: detected capacity change from 0 to 256
[  270.415893][ T6995] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  270.464210][ T6995] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  270.810606][ T6991] FAULT_INJECTION: forcing a failure.
[  270.810606][ T6991] name failslab, interval 1, probability 0, space 0, times 0
[  270.843152][ T6991] CPU: 1 PID: 6991 Comm: syz.1.218 Not tainted syzkaller #0
[  270.850519][ T6991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  270.860803][ T6991] Call Trace:
[  270.864138][ T6991]  <TASK>
[  270.867151][ T6991]  dump_stack_lvl+0x18c/0x250
[  270.871933][ T6991]  ? show_regs_print_info+0x20/0x20
[  270.877194][ T6991]  ? load_image+0x400/0x400
[  270.881751][ T6991]  ? __might_sleep+0xe0/0xe0
[  270.886405][ T6991]  ? __lock_acquire+0x7d40/0x7d40
[  270.891578][ T6991]  should_fail_ex+0x39d/0x4d0
[  270.896335][ T6991]  should_failslab+0x9/0x20
[  270.900895][ T6991]  slab_pre_alloc_hook+0x59/0x310
[  270.905977][ T6991]  ? __might_sleep+0xe0/0xe0
[  270.910714][ T6991]  kmem_cache_alloc_node+0x60/0x320
[  270.916113][ T6991]  ? __alloc_skb+0x103/0x2c0
[  270.920762][ T6991]  __alloc_skb+0x103/0x2c0
[  270.925243][ T6991]  netlink_sendmsg+0x66a/0xbf0
[  270.930082][ T6991]  ? netlink_getsockopt+0x590/0x590
[  270.935342][ T6991]  ? aa_sock_msg_perm+0x94/0x150
[  270.940335][ T6991]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  270.945685][ T6991]  ? security_socket_sendmsg+0x80/0xa0
[  270.951223][ T6991]  ? netlink_getsockopt+0x590/0x590
[  270.956477][ T6991]  ____sys_sendmsg+0x5ba/0x960
[  270.961308][ T6991]  ? __asan_memset+0x22/0x40
[  270.965961][ T6991]  ? __sys_sendmsg_sock+0x30/0x30
[  270.971033][ T6991]  ? __import_iovec+0x5f2/0x850
[  270.975959][ T6991]  ? import_iovec+0x73/0xa0
[  270.980517][ T6991]  ___sys_sendmsg+0x2a6/0x360
[  270.985256][ T6991]  ? get_pid_task+0x20/0x1e0
[  270.989944][ T6991]  ? __sys_sendmsg+0x2a0/0x2a0
[  270.994779][ T6991]  ? __lock_acquire+0x7d40/0x7d40
[  270.999891][ T6991]  __se_sys_sendmsg+0x1c2/0x2b0
[  271.004800][ T6991]  ? __x64_sys_sendmsg+0x80/0x80
[  271.009816][ T6991]  ? lockdep_hardirqs_on+0x98/0x150
[  271.015081][ T6991]  do_syscall_64+0x55/0xa0
[  271.019581][ T6991]  ? clear_bhb_loop+0x40/0x90
[  271.024307][ T6991]  ? clear_bhb_loop+0x40/0x90
[  271.029039][ T6991]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  271.031888][ T6578] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  271.034971][ T6991] RIP: 0033:0x7f54db99c799
[  271.047005][ T6991] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  271.066684][ T6991] RSP: 002b:00007f54dc8c2028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  271.075151][ T6991] RAX: ffffffffffffffda RBX: 00007f54dbc16090 RCX: 00007f54db99c799
[  271.083170][ T6991] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000009
[  271.091190][ T6991] RBP: 00007f54dc8c2090 R08: 0000000000000000 R09: 0000000000000000
[  271.099205][ T6991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  271.107226][ T6991] R13: 00007f54dbc16128 R14: 00007f54dbc16090 R15: 00007ffd395419d8
[  271.115961][ T6991]  </TASK>
[  271.172083][ T6999] loop0: detected capacity change from 256 to 0
[  271.271811][ T6578] usb 4-1: Using ep0 maxpacket: 8
[  271.279277][ T6578] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  271.291013][ T6578] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  271.304808][ T6578] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  271.322373][ T6578] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  271.352004][ T6578] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  271.371304][ T6578] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.387668][ T6570] kernel write not supported for file /dsp1 (pid: 6570 comm: kworker/0:9)
[  271.819248][ T6578] usb 4-1: GET_CAPABILITIES returned 0
[  271.838402][ T6578] usbtmc 4-1:16.0: can't read capabilities
[  272.525085][ T7012] can0: slcan on ttyS3.
[  272.657386][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.666771][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.675909][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.685038][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.694773][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.703905][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.713490][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.722641][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.732286][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.741523][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.752091][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.761536][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.771443][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.780950][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.790088][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  272.799743][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  274.073341][ T7004] netlink: 12 bytes leftover after parsing attributes in process `syz.0.222'.
[  274.082521][ T7004] netlink: 'syz.0.222': attribute type 2 has an invalid length.
[  274.091430][ T7004] netlink: 'syz.0.222': attribute type 1 has an invalid length.
[  274.142819][ T7012] can0 (unregistered): slcan off ttyS3.
[  274.159582][ T7004] can0: slcan on ttyS3.
[  274.293997][ T7004] can0 (unregistered): slcan off ttyS3.
[  274.573568][ T7025] loop0: detected capacity change from 0 to 1024
[  274.584240][ T7025] EXT4-fs: Ignoring removed orlov option
[  274.610028][ T7025] ext4: Unknown parameter 'pcr'
[  274.698129][ T7025] netlink: 4 bytes leftover after parsing attributes in process `syz.0.225'.
[  274.717857][ T7025] netlink: 20 bytes leftover after parsing attributes in process `syz.0.225'.
[  274.731233][ T7025] netlink: 4 bytes leftover after parsing attributes in process `syz.0.225'.
[  275.303258][   T28] usb 4-1: USB disconnect, device number 11
[  277.906412][ T7062] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  277.914378][ T7062] UDF-fs: Scanning with blocksize 512 failed
[  277.921884][ T7062] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  277.929444][ T7062] UDF-fs: Scanning with blocksize 1024 failed
[  277.935946][ T7062] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  277.943515][ T7062] UDF-fs: Scanning with blocksize 2048 failed
[  277.950110][ T7062] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  277.958199][ T7062] UDF-fs: Scanning with blocksize 4096 failed
[  280.837201][ T7084] loop0: detected capacity change from 0 to 32768
[  280.962976][ T7092] netlink: 76 bytes leftover after parsing attributes in process `syz.4.233'.
[  281.055656][ T7094] netlink: 4 bytes leftover after parsing attributes in process `syz.0.237'.
[  285.716656][ T7122] loop1: detected capacity change from 0 to 1024
[  285.747782][ T7122] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  285.835451][ T7122] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  286.102271][ T7128] loop0: detected capacity change from 0 to 4096
[  286.129403][ T7128] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  286.149954][    C0] vkms_vblank_simulate: vblank timer overrun
[  286.254155][ T7128] ntfs: (device loop0): parse_options(): Invalid gid option argument: 0x0000000000000000ÿ00000000000000000000ÿÿ
[  286.276417][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.784982][ T7128] netlink: 124 bytes leftover after parsing attributes in process `syz.0.239'.
[  287.831850][ T7128] netlink: 40 bytes leftover after parsing attributes in process `syz.0.239'.
[  292.733624][ T6578] libceph: connect (1)[c::]:6789 error -101
[  292.740583][ T6578] libceph: mon0 (1)[c::]:6789 connect error
[  292.778782][ T6578] libceph: connect (1)[c::]:6789 error -101
[  292.791862][ T6578] libceph: mon0 (1)[c::]:6789 connect error
[  292.835216][ T7158] ceph: No mds server is up or the cluster is laggy
[  293.411119][   T28] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  294.481796][   T28] usb 4-1: Using ep0 maxpacket: 8
[  294.498601][   T28] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  294.509835][   T28] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  294.596104][   T28] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  294.644637][   T28] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  294.659008][   T28] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  294.668410][   T28] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.063641][   T28] usb 4-1: GET_CAPABILITIES returned 0
[  295.069365][   T28] usbtmc 4-1:16.0: can't read capabilities
[  295.804666][ T7195] can0: slcan on ttyS3.
[  296.561726][ T7192] veth1_vlan: left allmulticast mode
[  296.572956][ T7195] can0 (unregistered): slcan off ttyS3.
[  296.694218][ T7192] loop1: detected capacity change from 0 to 1024
[  296.712672][ T7192] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  296.752919][ T7192] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  297.173441][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.587374][ T7212] can0: slcan on ttyS3.
[  297.800759][   T28] usb 4-1: USB disconnect, device number 12
[  297.953445][ T7208] can0 (unregistered): slcan off ttyS3.
[  297.967230][ T7215] loop3: detected capacity change from 0 to 1024
[  298.042252][ T7215] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  298.117722][ T7215] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  298.291653][ T5614] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  298.511662][ T5614] usb 2-1: Using ep0 maxpacket: 32
[  298.536475][ T5614] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  298.556822][ T7230] FAULT_INJECTION: forcing a failure.
[  298.556822][ T7230] name failslab, interval 1, probability 0, space 0, times 0
[  298.569788][ T7230] CPU: 0 PID: 7230 Comm: syz.4.267 Not tainted syzkaller #0
[  298.573574][ T5614] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  298.577192][ T7230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  298.577209][ T7230] Call Trace:
[  298.577218][ T7230]  <TASK>
[  298.577227][ T7230]  dump_stack_lvl+0x18c/0x250
[  298.608080][ T7230]  ? show_regs_print_info+0x20/0x20
[  298.613343][ T7230]  ? load_image+0x400/0x400
[  298.617925][ T7230]  ? __might_sleep+0xe0/0xe0
[  298.622586][ T7230]  ? __lock_acquire+0x7d40/0x7d40
[  298.627662][ T7230]  ? mark_lock+0x94/0x320
[  298.629600][ T5614] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  298.632030][ T7230]  should_fail_ex+0x39d/0x4d0
[  298.632070][ T7230]  should_failslab+0x9/0x20
[  298.632100][ T7230]  slab_pre_alloc_hook+0x59/0x310
[  298.632133][ T7230]  ? __get_vm_area_node+0x125/0x370
[  298.632160][ T7230]  __kmem_cache_alloc_node+0x53/0x250
[  298.632194][ T7230]  ? __get_vm_area_node+0x125/0x370
[  298.675385][ T7230]  kmalloc_node_trace+0x26/0xe0
[  298.680403][ T7230]  __get_vm_area_node+0x125/0x370
[  298.685882][ T7230]  __vmalloc_node_range+0x36e/0x1330
[  298.691272][ T7230]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  298.696881][ T7230]  ? mark_lock+0x94/0x320
[  298.701274][ T7230]  ? __lock_acquire+0x1347/0x7d40
[  298.706364][ T7230]  ? verify_lock_unused+0x140/0x140
[  298.711638][ T7230]  ? free_vm_area+0x50/0x50
[  298.715992][ T5614] usb 2-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  298.716187][ T7230]  ? end_current_label_crit_section+0x170/0x170
[  298.731554][ T7230]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  298.737166][ T7230]  __vmalloc+0x7a/0x90
[  298.741301][ T7230]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  298.746945][ T7230]  bpf_prog_alloc_no_stats+0x47/0x440
[  298.752377][ T7230]  ? bpf_prog_alloc+0x2b/0x1a0
[  298.757195][ T7230]  bpf_prog_alloc+0x3d/0x1a0
[  298.761838][ T7230]  bpf_prog_load+0x6eb/0x1670
[  298.761860][ T5614] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.766683][ T7230]  ? map_freeze+0x420/0x420
[  298.766711][ T7230]  ? asm_sysvec_call_function_single+0x1a/0x20
[  298.785524][ T7230]  ? lockdep_hardirqs_on+0x98/0x150
[  298.790793][ T7230]  ? asm_sysvec_call_function_single+0x1a/0x20
[  298.797112][ T7230]  ? security_bpf+0x37/0xa0
[  298.801710][ T7230]  ? bpf_lsm_bpf+0x9/0x10
[  298.806100][ T7230]  ? security_bpf+0x7e/0xa0
[  298.810662][ T7230]  __sys_bpf+0x5ba/0x890
[  298.815013][ T7230]  ? bpf_link_show_fdinfo+0x390/0x390
[  298.820452][ T7230]  ? lock_chain_count+0x20/0x20
[  298.825368][ T7230]  __x64_sys_bpf+0x7c/0x90
[  298.830276][ T7230]  do_syscall_64+0x55/0xa0
[  298.834782][ T7230]  ? clear_bhb_loop+0x40/0x90
[  298.839598][ T7230]  ? clear_bhb_loop+0x40/0x90
[  298.844344][ T7230]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  298.850331][ T7230] RIP: 0033:0x7fcb7a59c799
[  298.854800][ T7230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  298.855462][ T5614] usb 2-1: config 0 descriptor??
[  298.874527][ T7230] RSP: 002b:00007fcb7b434028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  298.874560][ T7230] RAX: ffffffffffffffda RBX: 00007fcb7a816180 RCX: 00007fcb7a59c799
[  298.874574][ T7230] RDX: 0000000000000094 RSI: 0000200000000700 RDI: 0000000000000005
[  298.874586][ T7230] RBP: 00007fcb7b434090 R08: 0000000000000000 R09: 0000000000000000
[  298.874598][ T7230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  298.874609][ T7230] R13: 00007fcb7a816218 R14: 00007fcb7a816180 R15: 00007fffae1543d8
[  298.874638][ T7230]  </TASK>
[  298.948510][ T7230] syz.4.267: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz4,mems_allowed=0-1
[  299.061476][ T7230] CPU: 0 PID: 7230 Comm: syz.4.267 Not tainted syzkaller #0
[  299.068868][ T7230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  299.078979][ T7230] Call Trace:
[  299.082322][ T7230]  <TASK>
[  299.085299][ T7230]  dump_stack_lvl+0x18c/0x250
[  299.090050][ T7230]  ? show_regs_print_info+0x20/0x20
[  299.095331][ T7230]  ? load_image+0x400/0x400
[  299.100168][ T7230]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  299.106642][ T7230]  ? cpuset_print_current_mems_allowed+0x2e7/0x360
[  299.113340][ T7230]  warn_alloc+0x246/0x340
[  299.117744][ T7230]  ? __get_vm_area_node+0x125/0x370
[  299.123056][ T7230]  ? zone_watermark_ok_safe+0x230/0x230
[  299.128755][ T7230]  ? rcu_is_watching+0x15/0xb0
[  299.133587][ T7230]  ? __get_vm_area_node+0x356/0x370
[  299.138854][ T7230]  __vmalloc_node_range+0x393/0x1330
[  299.144216][ T7230]  ? mark_lock+0x94/0x320
[  299.148609][ T7230]  ? __lock_acquire+0x1347/0x7d40
[  299.153703][ T7230]  ? verify_lock_unused+0x140/0x140
[  299.158974][ T7230]  ? free_vm_area+0x50/0x50
[  299.163532][ T7230]  ? end_current_label_crit_section+0x170/0x170
[  299.170110][ T7230]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  299.175710][ T7230]  __vmalloc+0x7a/0x90
[  299.179853][ T7230]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  299.185556][ T7230]  bpf_prog_alloc_no_stats+0x47/0x440
[  299.190983][ T7230]  ? bpf_prog_alloc+0x2b/0x1a0
[  299.195811][ T7230]  bpf_prog_alloc+0x3d/0x1a0
[  299.200461][ T7230]  bpf_prog_load+0x6eb/0x1670
[  299.205203][ T7230]  ? map_freeze+0x420/0x420
[  299.209770][ T7230]  ? asm_sysvec_call_function_single+0x1a/0x20
[  299.215982][ T7230]  ? lockdep_hardirqs_on+0x98/0x150
[  299.221245][ T7230]  ? asm_sysvec_call_function_single+0x1a/0x20
[  299.227510][ T7230]  ? security_bpf+0x37/0xa0
[  299.232245][ T7230]  ? bpf_lsm_bpf+0x9/0x10
[  299.236634][ T7230]  ? security_bpf+0x7e/0xa0
[  299.241198][ T7230]  __sys_bpf+0x5ba/0x890
[  299.245498][ T7230]  ? bpf_link_show_fdinfo+0x390/0x390
[  299.250945][ T7230]  ? lock_chain_count+0x20/0x20
[  299.255863][ T7230]  __x64_sys_bpf+0x7c/0x90
[  299.260336][ T7230]  do_syscall_64+0x55/0xa0
[  299.264813][ T7230]  ? clear_bhb_loop+0x40/0x90
[  299.269540][ T7230]  ? clear_bhb_loop+0x40/0x90
[  299.274282][ T7230]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  299.280238][ T7230] RIP: 0033:0x7fcb7a59c799
[  299.284704][ T7230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  299.304397][ T7230] RSP: 002b:00007fcb7b434028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  299.312873][ T7230] RAX: ffffffffffffffda RBX: 00007fcb7a816180 RCX: 00007fcb7a59c799
[  299.320894][ T7230] RDX: 0000000000000094 RSI: 0000200000000700 RDI: 0000000000000005
[  299.328916][ T7230] RBP: 00007fcb7b434090 R08: 0000000000000000 R09: 0000000000000000
[  299.336936][ T7230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  299.344958][ T7230] R13: 00007fcb7a816218 R14: 00007fcb7a816180 R15: 00007fffae1543d8
[  299.353002][ T7230]  </TASK>
[  299.558057][ T7230] Mem-Info:
[  299.561598][ T7230] active_anon:16419 inactive_anon:0 isolated_anon:0
[  299.561598][ T7230]  active_file:22547 inactive_file:40397 isolated_file:0
[  299.561598][ T7230]  unevictable:0 dirty:456 writeback:0
[  299.561598][ T7230]  slab_reclaimable:10786 slab_unreclaimable:91951
[  299.561598][ T7230]  mapped:31426 shmem:10344 pagetables:773
[  299.561598][ T7230]  sec_pagetables:0 bounce:0
[  299.561598][ T7230]  kernel_misc_reclaimable:0
[  299.561598][ T7230]  free:1331273 free_pcp:9205 free_cma:0
[  300.601738][ T7230] Node 0 active_anon:64212kB inactive_anon:0kB active_file:90188kB inactive_file:161384kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:129964kB dirty:1824kB writeback:0kB shmem:39920kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11816kB pagetables:3120kB sec_pagetables:0kB all_unreclaimable? no
[  300.825648][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.881760][ T7230] Node 1 active_anon:1536kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  300.913576][ T7230] Node 0 DMA free:15328kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  300.941799][ T7230] lowmem_reserve[]: 0 2521 2522 2522 2522
[  300.948084][ T7230] Node 0 DMA32 free:1419472kB boost:0kB min:34644kB low:43304kB high:51964kB reserved_highatomic:0KB active_anon:54472kB inactive_anon:0kB active_file:90188kB inactive_file:160564kB unevictable:0kB writepending:1824kB present:3129332kB managed:2586964kB mlocked:0kB bounce:0kB free_pcp:30408kB local_pcp:10160kB free_cma:0kB
[  300.979526][ T7230] lowmem_reserve[]: 0 0 0 0 0
[  300.993613][ T7230] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:820kB unevictable:0kB writepending:0kB present:1048576kB managed:872kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:0kB free_cma:0kB
[  301.022905][ T7230] lowmem_reserve[]: 0 0 0 0 0
[  301.035310][ T7230] Node 1 Normal free:3888872kB boost:0kB min:55244kB low:69052kB high:82860kB reserved_highatomic:0KB active_anon:1536kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:0kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:22528kB local_pcp:15072kB free_cma:0kB
[  301.065633][ T7230] lowmem_reserve[]: 0 0 0 0 0
[  301.071078][ T7230] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 1*2048kB (M) 3*4096kB (M) = 15328kB
[  301.137145][ T7230] Node 0 DMA32: 8*4kB (E) 0*8kB 15*16kB 
[  301.188379][ T5614] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5011.0004/input/input9
[  301.218742][ T7230] (E) 514*32kB (UME) 192*64kB (UME) 153*128kB (UME) 101*256kB (UME) 43*512kB (M) 28*1024kB (UME) 18*2048kB (ME) 307*4096kB (UM) = 1419472kB
[  301.271834][ T7230] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  301.316736][ T7230] Node 1 Normal: 254*4kB (UM) 56*8kB (UME) 47*16kB (UME) 80*32kB (UME) 23*64kB (UME) 13*128kB (UME) 2*256kB (ME) 1*512kB (E) 1*1024kB (U) 2*2048kB (UE) 946*4096kB (M) = 3888872kB
[  301.410432][ T7230] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  301.420542][ T7230] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  301.477982][ T5614] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5011.0004/input/input10
[  301.501743][ T7230] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  301.513671][ T7230] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  301.523295][ T7230] 72246 total pagecache pages
[  301.539993][ T7230] 0 pages in swap cache
[  301.551774][ T7230] Free swap  = 124996kB
[  301.580612][ T7230] Total swap = 124996kB
[  301.622463][ T7230] 2097051 pages RAM
[  301.636651][ T7230] 0 pages HighMem/MovableOnly
[  301.657240][ T7230] 416924 pages reserved
[  301.663540][ T7230] 0 pages cma reserved
[  301.727770][ T5614] kye 0003:0458:5011.0004: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0458:5011] on usb-dummy_hcd.1-1/input0
[  301.791982][   T28] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  302.473145][   T28] usb 1-1: Using ep0 maxpacket: 32
[  302.496886][   T28] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  302.545900][ T5614] usb 2-1: reset high-speed USB device number 13 using dummy_hcd
[  302.556587][   T28] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  302.630193][   T28] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  302.705830][   T28] usb 1-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  302.735877][   T28] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.812238][   T28] usb 1-1: config 0 descriptor??
[  303.504894][   T23] usb 2-1: USB disconnect, device number 13
[  303.528856][   T28] input: HID 0458:5011 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0458:5011.0005/input/input11
[  303.610675][ T7263] Cannot find add_set index 65532 as target
[  304.675790][ T7266] FAULT_INJECTION: forcing a failure.
[  304.675790][ T7266] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  304.689836][ T7266] CPU: 0 PID: 7266 Comm: syz.0.270 Not tainted syzkaller #0
[  304.697267][ T7266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  304.707366][ T7266] Call Trace:
[  304.710671][ T7266]  <TASK>
[  304.713798][ T7266]  dump_stack_lvl+0x18c/0x250
[  304.718611][ T7266]  ? show_regs_print_info+0x20/0x20
[  304.723923][ T7266]  ? load_image+0x400/0x400
[  304.728447][ T7266]  ? __might_fault+0xaa/0x120
[  304.733146][ T7266]  ? __lock_acquire+0x7d40/0x7d40
[  304.738188][ T7266]  should_fail_ex+0x39d/0x4d0
[  304.742894][ T7266]  strncpy_from_user+0x36/0x2d0
[  304.747801][ T7266]  getname_flags+0xf6/0x500
[  304.752350][ T7266]  do_sys_openat2+0xda/0x1d0
[  304.757002][ T7266]  ? do_sys_open+0xe0/0xe0
[  304.761473][ T7266]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  304.767506][ T7266]  ? lock_chain_count+0x20/0x20
[  304.772399][ T7266]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  304.778420][ T7266]  __x64_sys_openat+0x139/0x160
[  304.783321][ T7266]  do_syscall_64+0x55/0xa0
[  304.787778][ T7266]  ? clear_bhb_loop+0x40/0x90
[  304.792489][ T7266]  ? clear_bhb_loop+0x40/0x90
[  304.797208][ T7266]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  304.803166][ T7266] RIP: 0033:0x7f1becd5cfce
[  304.807733][ T7266] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  304.827366][ T7266] RSP: 002b:00007f1bedbd6b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  304.835901][ T7266] RAX: ffffffffffffffda RBX: 00007f1bedbd76c0 RCX: 00007f1becd5cfce
[  304.843985][ T7266] RDX: 0000000000000000 RSI: 00007f1bedbd6c00 RDI: ffffffffffffff9c
[  304.851983][ T7266] RBP: 00007f1bedbd6c00 R08: 0000000000000000 R09: 0000000000000000
[  304.859996][ T7266] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  304.868004][ T7266] R13: 00007f1bed016218 R14: 00007f1bed016180 R15: 00007ffda80c2ed8
[  304.876100][ T7266]  </TASK>
[  305.282706][   T28] input: HID 0458:5011 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0458:5011.0005/input/input12
[  305.416392][   T28] kye 0003:0458:5011.0005: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0458:5011] on usb-dummy_hcd.0-1/input0
[  305.638774][ T6578] usb 1-1: USB disconnect, device number 9
[  305.721994][   T23] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  305.817175][ T7277] loop4: detected capacity change from 0 to 1024
[  305.872912][ T7272] fido_id[7272]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/1-1/report_descriptor': No such file or directory
[  305.879145][ T7277] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  305.961657][   T23] usb 2-1: Using ep0 maxpacket: 8
[  305.977831][   T23] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  306.004115][ T7277] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  306.037568][   T23] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  306.170298][   T23] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  306.234969][   T23] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  306.284210][ T5993] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.301808][   T23] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  306.340733][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.597211][   T23] usb 2-1: GET_CAPABILITIES returned 0
[  306.632063][   T23] usbtmc 2-1:16.0: can't read capabilities
[  307.951452][ T7302] can0: slcan on ttyS3.
[  308.903321][ T7302] can0 (unregistered): slcan off ttyS3.
[  309.145648][ T7305] loop3: detected capacity change from 0 to 4096
[  309.177731][ T7305] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  309.191896][ T7305] NILFS (loop3): mounting unchecked fs
[  309.572609][ T7305] NILFS (loop3): recovery complete
[  309.637123][ T7306] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  310.005283][ T6580] usb 2-1: USB disconnect, device number 14
[  310.219194][ T7309] syz.1.279: attempt to access beyond end of device
[  310.219194][ T7309] nbd1: rw=0, sector=0, nr_sectors = 8 limit=0
[  310.243250][ T7309] F2FS-fs (nbd1): Unable to read 1th superblock
[  310.264056][ T7309] syz.1.279: attempt to access beyond end of device
[  310.264056][ T7309] nbd1: rw=0, sector=8, nr_sectors = 8 limit=0
[  310.310622][ T7309] F2FS-fs (nbd1): Unable to read 2th superblock
[  310.736552][ T7317] 9pnet_fd: Insufficient options for proto=fd
[  311.970360][ T7322] loop3: detected capacity change from 0 to 1024
[  312.012296][ T7322] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  312.293150][ T7322] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  312.583086][ T7312] loop0: detected capacity change from 0 to 32768
[  312.886450][ T7312] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  313.177134][ T7321] bridge0: port 2(bridge_slave_1) entered disabled state
[  313.185026][ T7321] bridge0: port 1(bridge_slave_0) entered disabled state
[  313.199627][ T7347] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  313.319342][ T7312] XFS (loop0): Ending clean mount
[  313.346669][ T7312] XFS (loop0): Quotacheck needed: Please wait.
[  313.432764][ T7312] XFS (loop0): Quotacheck: Done.
[  313.492376][ T7340] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  313.521969][ T5848] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  313.638087][ T5769] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  313.691770][ T7340] usb 5-1: Using ep0 maxpacket: 8
[  313.699853][ T7340] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  313.715410][ T7340] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  313.726348][ T7340] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  313.726506][ T5848] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  313.747205][ T7340] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  313.776284][ T7340] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  313.785935][ T5848] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  313.795125][ T7340] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.810903][ T5848] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  313.820957][ T5848] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.829446][ T5848] usb 2-1: Product: syz
[  313.834167][ T5848] usb 2-1: Manufacturer: syz
[  313.840686][ T5848] usb 2-1: SerialNumber: syz
[  313.954848][ T7321] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  313.972619][ T7321] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  314.022179][ T7340] usb 5-1: GET_CAPABILITIES returned 0
[  314.038132][ T7340] usbtmc 5-1:16.0: can't read capabilities
[  314.117465][ T7353] netlink: 32 bytes leftover after parsing attributes in process `syz.1.287'.
[  314.191975][ T7321] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  314.228108][ T7321] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  314.256880][ T7321] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  314.284038][ T7321] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  314.548540][ T5848] usb 2-1: cannot find UAC_HEADER
[  314.618407][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.680821][ T5848] snd-usb-audio: probe of 2-1:1.0 failed with error -22
[  314.769165][ T7357] can0: slcan on ttyS3.
[  315.012506][ T7357] can0 (unregistered): slcan off ttyS3.
[  315.147189][ T5848] usb 2-1: USB disconnect, device number 15
[  315.490172][ T6032] udevd[6032]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  315.741738][ T6581] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  315.924378][ T6581] usb 4-1: Using ep0 maxpacket: 8
[  315.990316][ T7367] 9pnet_fd: Insufficient options for proto=fd
[  316.793998][ T6581] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7
[  316.865968][ T5614] usb 5-1: USB disconnect, device number 6
[  316.873154][ T6581] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  316.913251][ T6581] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  316.940776][ T6581] usb 4-1: Product: syz
[  316.948187][ T6581] usb 4-1: Manufacturer: syz
[  316.954112][ T6581] usb 4-1: SerialNumber: syz
[  317.053494][ T7372] loop4: detected capacity change from 0 to 164
[  317.252788][ T7372] rock: directory entry would overflow storage
[  317.346577][ T7372] rock: sig=0x66, size=4, remaining=3
[  317.568627][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  317.579310][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  317.913806][ T6581] usb 4-1: Handspring Visor / Palm OS: No valid connect info available
[  318.110539][ T7372] rock: directory entry would overflow storage
[  318.212327][ T7372] rock: sig=0x66, size=4, remaining=3
[  318.264063][ T6581] usb 4-1: Handspring Visor / Palm OS: port 110, is for unknown use
[  318.272173][ T6581] usb 4-1: Handspring Visor / Palm OS: port 40, is for unknown use
[  318.280126][ T6581] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2
[  318.733980][ T6581] usb 4-1: palm_os_3_probe - error -110 getting bytes available request
[  318.926640][ T6581] visor 4-1:1.0: Handspring Visor / Palm OS converter detected
[  318.949831][ T7377] nvme_fabrics: missing parameter 'transport=%s'
[  318.959734][ T7377] nvme_fabrics: missing parameter 'nqn=%s'
[  318.983813][ T6581] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  319.015185][ T6581] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  319.638275][ T5848] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  321.521871][ T5848] usb 1-1: Using ep0 maxpacket: 32
[  321.787879][ T5848] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  321.801627][ T5848] usb 1-1: config 0 has no interface number 0
[  321.821929][ T6581] usb 4-1: USB disconnect, device number 13
[  321.825244][ T5848] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  321.837450][ T5848] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.845758][ T5848] usb 1-1: Product: syz
[  321.849979][ T5848] usb 1-1: Manufacturer: syz
[  321.876893][ T5848] usb 1-1: SerialNumber: syz
[  321.881721][ T6581] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  321.893640][ T6581] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  321.911238][ T6581] visor 4-1:1.0: device disconnected
[  321.969793][ T5848] usb 1-1: config 0 descriptor??
[  321.997068][ T5848] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  322.058507][ T7400] can0: slcan on ttyS3.
[  322.182125][ T7400] can0 (unregistered): slcan off ttyS3.
[  322.223320][ T7393] team0: No ports can be present during mode change
[  322.236829][ T7393] netlink: 4 bytes leftover after parsing attributes in process `syz.0.297'.
[  322.246849][ T7393] tipc: Resetting bearer <eth:team0>
[  322.370063][ T7406] 9pnet_fd: Insufficient options for proto=fd
[  323.228432][ T7393] tipc: Disabling bearer <eth:team0>
[  323.316004][ T7393] team0 (unregistering): Port device team_slave_0 removed
[  323.354516][ T7393] team0 (unregistering): Port device team_slave_1 removed
[  323.467248][ T5848] usb 1-1: qt2_attach - failed to power on unit: -71
[  323.476292][ T5848] quatech2: probe of 1-1:0.51 failed with error -71
[  323.491119][ T5848] usb 1-1: USB disconnect, device number 10
[  323.533513][ T6580] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  323.542928][ T6581] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  323.752709][ T6581] usb 4-1: Using ep0 maxpacket: 16
[  323.758120][ T6580] usb 5-1: Using ep0 maxpacket: 8
[  323.774749][ T6581] usb 4-1: config 0 has too many interfaces: 255, using maximum allowed: 32
[  323.791694][ T6580] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  323.801883][ T6581] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 255
[  323.831608][ T6580] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  323.844405][ T6581] usb 4-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[  323.853565][ T6580] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  323.871860][ T6581] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.880005][ T6581] usb 4-1: Product: syz
[  323.885099][ T6580] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  323.911595][ T6581] usb 4-1: Manufacturer: syz
[  323.916276][ T6581] usb 4-1: SerialNumber: syz
[  323.931922][ T6580] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  323.941428][ T6580] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.963119][ T6581] usb 4-1: config 0 descriptor??
[  323.978615][ T6581] ums-onetouch 4-1:0.0: USB Mass Storage device detected
[  324.159994][ T7416] loop1: detected capacity change from 0 to 32768
[  324.178008][ T6581] usb 4-1: USB disconnect, device number 14
[  324.217349][ T6580] usb 5-1: GET_CAPABILITIES returned 0
[  324.224242][ T6580] usbtmc 5-1:16.0: can't read capabilities
[  325.110990][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.120234][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.204049][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.213224][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.222376][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.231516][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.241762][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.250928][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.260093][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.272150][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.281383][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.290523][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.299695][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.308914][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.318059][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.327454][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  325.611277][ T7452] FAULT_INJECTION: forcing a failure.
[  325.611277][ T7452] name failslab, interval 1, probability 0, space 0, times 0
[  325.624990][ T7452] CPU: 0 PID: 7452 Comm: syz.3.310 Not tainted syzkaller #0
[  325.632332][ T7452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  325.642426][ T7452] Call Trace:
[  325.645871][ T7452]  <TASK>
[  325.648826][ T7452]  dump_stack_lvl+0x18c/0x250
[  325.653624][ T7452]  ? show_regs_print_info+0x20/0x20
[  325.658861][ T7452]  ? load_image+0x400/0x400
[  325.663402][ T7452]  ? __might_sleep+0xe0/0xe0
[  325.668008][ T7452]  ? __lock_acquire+0x7d40/0x7d40
[  325.673051][ T7452]  should_fail_ex+0x39d/0x4d0
[  325.677759][ T7452]  should_failslab+0x9/0x20
[  325.682296][ T7452]  slab_pre_alloc_hook+0x59/0x310
[  325.687385][ T7452]  kmem_cache_alloc_node+0x60/0x320
[  325.692786][ T7452]  ? __alloc_skb+0x103/0x2c0
[  325.697430][ T7452]  __alloc_skb+0x103/0x2c0
[  325.701884][ T7452]  pfkey_sendmsg+0x1a8/0x10e0
[  325.706606][ T7452]  ? __might_sleep+0xe0/0xe0
[  325.711240][ T7452]  ? mark_lock+0x94/0x320
[  325.715746][ T7452]  ? pfkey_release+0x320/0x320
[  325.720538][ T7452]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  325.726543][ T7452]  ? aa_sk_perm+0x83c/0x970
[  325.731079][ T7452]  ? asm_sysvec_call_function_single+0x1a/0x20
[  325.737516][ T7452]  ? aa_af_perm+0x330/0x330
[  325.742164][ T7452]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  325.748607][ T7452]  ? aa_sock_msg_perm+0x94/0x150
[  325.753720][ T7452]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  325.759050][ T7452]  ? security_socket_sendmsg+0x80/0xa0
[  325.764523][ T7452]  ? pfkey_release+0x320/0x320
[  325.769390][ T7452]  ____sys_sendmsg+0x5ba/0x960
[  325.774357][ T7452]  ? __asan_memset+0x22/0x40
[  325.778990][ T7452]  ? __sys_sendmsg_sock+0x30/0x30
[  325.784031][ T7452]  ? __import_iovec+0x5f2/0x850
[  325.788909][ T7452]  ? import_iovec+0x73/0xa0
[  325.793451][ T7452]  ___sys_sendmsg+0x2a6/0x360
[  325.798172][ T7452]  ? __sys_sendmsg+0x2a0/0x2a0
[  325.803061][ T7452]  __sys_sendmmsg+0x2ca/0x510
[  325.807752][ T7452]  ? __ia32_sys_sendmsg+0x90/0x90
[  325.812796][ T7452]  ? mutex_unlock+0x10/0x10
[  325.817320][ T7452]  ? __fget_files+0x43d/0x4b0
[  325.822020][ T7452]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  325.828024][ T7452]  ? lock_chain_count+0x20/0x20
[  325.832895][ T7452]  __x64_sys_sendmmsg+0xa0/0xb0
[  325.837760][ T7452]  do_syscall_64+0x55/0xa0
[  325.842193][ T7452]  ? clear_bhb_loop+0x40/0x90
[  325.846875][ T7452]  ? clear_bhb_loop+0x40/0x90
[  325.851587][ T7452]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  325.857523][ T7452] RIP: 0033:0x7fad4e19c799
[  325.861985][ T7452] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  325.881641][ T7452] RSP: 002b:00007fad4f04a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  325.890162][ T7452] RAX: ffffffffffffffda RBX: 00007fad4e416090 RCX: 00007fad4e19c799
[  325.898151][ T7452] RDX: 000000000400008a RSI: 0000200000000180 RDI: 0000000000000007
[  325.906133][ T7452] RBP: 00007fad4f04a090 R08: 0000000000000000 R09: 0000000000000000
[  325.914119][ T7452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  325.922106][ T7452] R13: 00007fad4e416128 R14: 00007fad4e416090 R15: 00007ffe7b3ca268
[  325.930131][ T7452]  </TASK>
[  326.464635][ T6581] usb 5-1: USB disconnect, device number 7
[  326.960218][ T6580] kernel write not supported for file /vcsa (pid: 6580 comm: kworker/0:16)
[  326.969292][ T6581] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  327.321979][ T6581] usb 5-1: Using ep0 maxpacket: 8
[  327.381606][ T6581] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  327.562417][ T6581] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  328.977431][ T6581] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  329.227118][ T7461] loop1: detected capacity change from 0 to 32768
[  329.273612][ T6581] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  329.287304][ T7461] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.314 (7461)
[  329.339624][ T7461] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  329.350149][ T7461] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  329.358974][ T7461] BTRFS info (device loop1): using free space tree
[  329.379251][ T6581] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  329.418929][ T6581] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  329.792624][ T7461] BTRFS info (device loop1): enabling ssd optimizations
[  329.799758][ T7461] BTRFS info (device loop1): auto enabling async discard
[  330.522434][ T6581] usb 5-1: usb_control_msg returned -71
[  330.541740][ T6581] usbtmc 5-1:16.0: can't read capabilities
[  330.590052][ T6581] usb 5-1: USB disconnect, device number 8
[  330.684782][ T5774] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  330.926387][ T7490] loop4: detected capacity change from 0 to 64
[  330.934530][ T7490] hfs: unable to parse mount options
[  333.807876][ T7501] FAULT_INJECTION: forcing a failure.
[  333.807876][ T7501] name failslab, interval 1, probability 0, space 0, times 0
[  333.821405][ T7501] CPU: 0 PID: 7501 Comm: syz.1.317 Not tainted syzkaller #0
[  333.828834][ T7501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  333.838936][ T7501] Call Trace:
[  333.842256][ T7501]  <TASK>
[  333.845225][ T7501]  dump_stack_lvl+0x18c/0x250
[  333.849970][ T7501]  ? show_regs_print_info+0x20/0x20
[  333.855219][ T7501]  ? load_image+0x400/0x400
[  333.859784][ T7501]  ? __lock_acquire+0x7d40/0x7d40
[  333.864859][ T7501]  ? __lock_acquire+0x7d40/0x7d40
[  333.869954][ T7501]  should_fail_ex+0x39d/0x4d0
[  333.874693][ T7501]  should_failslab+0x9/0x20
[  333.879260][ T7501]  slab_pre_alloc_hook+0x59/0x310
[  333.884341][ T7501]  ? d_alloc_parallel+0x1456/0x1530
[  333.889593][ T7501]  kmem_cache_alloc_lru+0x4d/0x2d0
[  333.894761][ T7501]  ? proc_alloc_inode+0x2a/0xb0
[  333.899668][ T7501]  proc_alloc_inode+0x2a/0xb0
[  333.904386][ T7501]  ? proc_invalidate_siblings_dcache+0x6c0/0x6c0
[  333.910857][ T7501]  new_inode_pseudo+0x63/0x1d0
[  333.915776][ T7501]  new_inode+0x22/0x1b0
[  333.920018][ T7501]  ? d_hash_and_lookup+0x1b0/0x1b0
[  333.925281][ T7501]  proc_pid_make_inode+0x24/0x190
[  333.930455][ T7501]  proc_pid_instantiate+0x53/0x2b0
[  333.935616][ T7501]  ? __init_waitqueue_head+0xa9/0x150
[  333.941038][ T7501]  proc_fill_cache+0x1ef/0x430
[  333.945872][ T7501]  ? proc_pid_lookup+0x440/0x440
[  333.950866][ T7501]  ? pid_revalidate+0x260/0x260
[  333.955761][ T7501]  ? snprintf+0xe9/0x140
[  333.960048][ T7501]  ? __lock_acquire+0x7d40/0x7d40
[  333.965142][ T7501]  proc_pid_readdir+0x4a4/0x670
[  333.970040][ T7501]  ? preempt_schedule_thunk+0x1a/0x30
[  333.975513][ T7501]  ? proc_pid_instantiate+0x2b0/0x2b0
[  333.980944][ T7501]  ? proc_root_readdir+0x7c/0xd0
[  333.985932][ T7501]  iterate_dir+0x1c2/0x580
[  333.990406][ T7501]  __se_sys_getdents64+0xf6/0x270
[  333.995483][ T7501]  ? __x64_sys_getdents64+0x80/0x80
[  334.000905][ T7501]  ? filldir+0x660/0x660
[  334.005224][ T7501]  ? lockdep_hardirqs_on+0x98/0x150
[  334.010648][ T7501]  do_syscall_64+0x55/0xa0
[  334.015121][ T7501]  ? clear_bhb_loop+0x40/0x90
[  334.019840][ T7501]  ? clear_bhb_loop+0x40/0x90
[  334.024571][ T7501]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  334.030506][ T7501] RIP: 0033:0x7f54db99c799
[  334.034960][ T7501] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  334.054690][ T7501] RSP: 002b:00007f54dc8a1028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  334.063157][ T7501] RAX: ffffffffffffffda RBX: 00007f54dbc16180 RCX: 00007f54db99c799
[  334.071195][ T7501] RDX: 0000000000001000 RSI: 0000200000004440 RDI: 0000000000000007
[  334.079219][ T7501] RBP: 00007f54dc8a1090 R08: 0000000000000000 R09: 0000000000000000
[  334.087251][ T7501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.095259][ T7501] R13: 00007f54dbc16218 R14: 00007f54dbc16180 R15: 00007ffd395419d8
[  334.103289][ T7501]  </TASK>
[  334.571279][ T7500] bridge_slave_0: left allmulticast mode
[  334.662678][ T7500] bridge_slave_0: left promiscuous mode
[  334.668587][ T7500] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.836895][ T7500] bridge_slave_1: left allmulticast mode
[  334.863223][ T7500] bridge_slave_1: left promiscuous mode
[  334.929512][ T7500] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.991904][  T966] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  335.049078][ T7500] bond0: (slave bond_slave_0): Releasing backup interface
[  335.077762][ T7500] bond0: (slave bond_slave_1): Releasing backup interface
[  335.138002][ T7500] team0: Port device team_slave_0 removed
[  335.971792][  T966] usb 4-1: Using ep0 maxpacket: 32
[  336.035666][  T966] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  336.044661][  T966] usb 4-1: config 0 has no interface number 0
[  336.305346][ T7500] team0: Port device team_slave_1 removed
[  336.403750][  T966] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  336.405402][ T7500] batman_adv: batadv0: Removing interface: batadv_slave_0
[  336.414257][  T966] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.431963][  T966] usb 4-1: Product: syz
[  336.451901][  T966] usb 4-1: Manufacturer: syz
[  336.471670][  T966] usb 4-1: SerialNumber: syz
[  336.525924][  T966] usb 4-1: config 0 descriptor??
[  336.603341][  T966] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  336.662763][ T7500] batman_adv: batadv0: Removing interface: batadv_slave_1
[  336.843462][  T966] usb 4-1: qt2_attach - failed to power on unit: -71
[  336.872182][  T966] quatech2: probe of 4-1:0.51 failed with error -71
[  336.936626][  T966] usb 4-1: USB disconnect, device number 15
[  337.411717][  T966] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  337.647681][  T966] usb 4-1: Using ep0 maxpacket: 8
[  337.665607][  T966] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  337.712355][  T966] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  337.733934][  T966] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  337.787896][  T966] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  337.844010][  T966] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  337.861617][  T966] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.130240][  T966] usb 4-1: GET_CAPABILITIES returned 0
[  338.153969][  T966] usbtmc 4-1:16.0: can't read capabilities
[  338.298875][ T7516] loop1: detected capacity change from 0 to 4096
[  338.587093][ T7519] can0: slcan on ttyS3.
[  339.474696][ T7516] ntfs: (device loop1): check_mft_mirror(): Failed to read $MFTMirr.
[  339.492510][ T7516] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[  339.547653][ T7516] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  339.582960][ T7519] can0 (unregistered): slcan off ttyS3.
[  339.591744][ T7516] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  339.655447][ T7516] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  339.691917][ T7516] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  339.767197][ T7516] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  339.839807][ T7516] ntfs: volume version 3.1.
[  339.858602][ T7516] ntfs: (device loop1): ntfs_check_logfile(): $LogFile is too small.
[  339.899695][ T7516] ntfs: (device loop1): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  339.948972][ T7516] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Directory index record with vcn 0x0 is corrupt.  Corrupt inode 0x5.  Run chkdsk.
[  339.981748][ T6581] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  340.191901][ T6581] usb 5-1: Using ep0 maxpacket: 8
[  340.303444][ T6581] usb 5-1: unable to get BOS descriptor or descriptor too short
[  340.851416][  T966] usb 4-1: USB disconnect, device number 16
[  340.911812][ T6581] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  340.920991][ T6581] usb 5-1: can't read configurations, error -22
[  341.172056][ T6581] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  341.361731][ T6581] usb 5-1: Using ep0 maxpacket: 8
[  341.369660][ T6581] usb 5-1: unable to get BOS descriptor or descriptor too short
[  341.379447][ T6581] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  341.390827][ T6581] usb 5-1: can't read configurations, error -22
[  341.435306][ T6581] usb usb5-port1: attempt power cycle
[  341.695524][ T7534] loop5: detected capacity change from 0 to 3175
[  341.761844][ T7535] loop5: detected capacity change from 3175 to 5055
[  341.801943][ T6580] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  341.891698][ T6581] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  341.942474][ T6581] usb 5-1: Using ep0 maxpacket: 8
[  341.964275][ T6581] usb 5-1: unable to get BOS descriptor or descriptor too short
[  342.013544][ T6581] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  342.027835][ T6580] usb 1-1: Using ep0 maxpacket: 32
[  342.038152][ T6581] usb 5-1: can't read configurations, error -22
[  342.053037][ T6580] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  342.071943][ T6580] usb 1-1: config 0 has no interface number 0
[  342.113575][ T6580] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  342.133126][ T6580] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.141220][ T6580] usb 1-1: Product: syz
[  342.169536][ T6580] usb 1-1: Manufacturer: syz
[  342.189847][ T6580] usb 1-1: SerialNumber: syz
[  342.215757][ T6580] usb 1-1: config 0 descriptor??
[  342.221795][ T6581] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  342.619757][ T6580] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  342.632558][ T6581] usb 5-1: Using ep0 maxpacket: 8
[  342.654782][ T6581] usb 5-1: unable to get BOS descriptor or descriptor too short
[  342.763615][ T6581] usb 5-1: unable to read config index 0 descriptor/start: -71
[  342.781753][ T6581] usb 5-1: can't read configurations, error -71
[  342.818063][ T6581] usb usb5-port1: unable to enumerate USB device
[  342.941869][ T7544] netlink: 4 bytes leftover after parsing attributes in process `syz.0.330'.
[  343.178068][ T6580] usb 1-1: qt2_attach - failed to power on unit: -71
[  343.200175][ T6580] quatech2: probe of 1-1:0.51 failed with error -71
[  343.233688][ T6580] usb 1-1: USB disconnect, device number 11
[  343.311787][ T6581] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  343.516119][ T6581] usb 5-1: Using ep0 maxpacket: 8
[  343.526981][ T6581] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  343.541307][ T6581] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  343.574020][ T6581] pvrusb2: Hardware description: Terratec Grabster AV400
[  343.581184][ T6581] pvrusb2: **********
[  343.606399][ T6581] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  343.641447][ T6581] pvrusb2: Important functionality might not be entirely working.
[  343.667673][ T6581] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  343.688065][ T6581] pvrusb2: **********
[  343.780157][ T2319] pvrusb2: Invalid write control endpoint
[  344.013914][ T7543] pvrusb2: Invalid write control endpoint
[  344.051290][ T2319] pvrusb2: Invalid write control endpoint
[  344.061907][  T966] usb 5-1: USB disconnect, device number 13
[  344.071156][ T7550] mkiss: ax0: crc mode is auto.
[  344.088746][ T2319] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  344.142206][ T2319] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  344.172760][ T2319] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  344.229466][ T2319] pvrusb2: Device being rendered inoperable
[  344.248820][ T2319] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  344.262913][ T2319] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  344.297680][ T2319] pvrusb2: Attached sub-driver cx25840
[  344.325873][ T2319] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  344.369184][ T2319] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  344.462994][ T5848] usb 2-1: new full-speed USB device number 16 using dummy_hcd
[  344.728387][ T5848] usb 2-1: New USB device found, idVendor=0483, idProduct=1234, bcdDevice= 5.76
[  344.752073][ T5848] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.810825][ T5848] usb 2-1: config 0 descriptor??
[  344.892907][ T5848] usb_8dev 2-1:0.0 can0: sending command message failed
[  344.912182][  T966] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  344.920200][ T5848] usb_8dev 2-1:0.0 can0: can't get firmware version
[  345.102275][ T5848] usb_8dev: probe of 2-1:0.0 failed with error -22
[  345.151638][  T966] usb 1-1: Using ep0 maxpacket: 32
[  345.178670][  T966] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  345.202193][  T966] usb 1-1: config 0 has no interface number 0
[  345.235058][  T966] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  345.251820][  T966] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  345.275103][  T966] usb 1-1: Product: syz
[  345.279346][  T966] usb 1-1: Manufacturer: syz
[  345.310566][  T966] usb 1-1: SerialNumber: syz
[  345.334976][  T966] usb 1-1: config 0 descriptor??
[  345.353726][  T966] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  345.557819][  T966] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  345.630857][  T966] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  345.792060][    C1] quatech-serial ttyUSB0: qt2_process_read_urb - change_port message too short
[  345.885173][ T6580] usb 2-1: USB disconnect, device number 16
[  347.404663][ T7580] loop1: detected capacity change from 0 to 1024
[  347.428132][ T7580] EXT4-fs: Ignoring removed orlov option
[  347.463815][ T7580] EXT4-fs (loop1): stripe (9) is not aligned with cluster size (16), stripe is disabled
[  347.612333][ T7580] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  348.089127][    C1] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[  348.093246][ T6580] usb 1-1: USB disconnect, device number 12
[  348.141489][ T6580] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  348.214547][ T6580] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  348.273854][ T6580] quatech2 1-1:0.51: device disconnected
[  348.314331][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.428583][ T7601] loop1: detected capacity change from 0 to 764
[  350.882771][ T7611] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  350.912020][ T7611] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  351.241748][ T7617] FAULT_INJECTION: forcing a failure.
[  351.241748][ T7617] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  351.255243][ T7617] CPU: 0 PID: 7617 Comm: syz.0.348 Not tainted syzkaller #0
[  351.262585][ T7617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  351.272682][ T7617] Call Trace:
[  351.276004][ T7617]  <TASK>
[  351.278973][ T7617]  dump_stack_lvl+0x18c/0x250
[  351.283714][ T7617]  ? show_regs_print_info+0x20/0x20
[  351.288957][ T7617]  ? load_image+0x400/0x400
[  351.293514][ T7617]  ? __might_fault+0xaa/0x120
[  351.298234][ T7617]  ? __lock_acquire+0x7d40/0x7d40
[  351.303309][ T7617]  should_fail_ex+0x39d/0x4d0
[  351.308219][ T7617]  _copy_from_user+0x2f/0xe0
[  351.312862][ T7617]  __se_sys_memfd_create+0x295/0x660
[  351.318195][ T7617]  do_syscall_64+0x55/0xa0
[  351.322664][ T7617]  ? clear_bhb_loop+0x40/0x90
[  351.327377][ T7617]  ? clear_bhb_loop+0x40/0x90
[  351.332098][ T7617]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  351.338039][ T7617] RIP: 0033:0x7f1becd9c799
[  351.342500][ T7617] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  351.362146][ T7617] RSP: 002b:00007f1bedbd6e08 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  351.370611][ T7617] RAX: ffffffffffffffda RBX: 00000000000001f8 RCX: 00007f1becd9c799
[  351.378629][ T7617] RDX: 00007f1bedbd6ee0 RSI: 0000000000000000 RDI: 00007f1bece32e79
[  351.386651][ T7617] RBP: 0000200000000580 R08: 00000000ffffffff R09: 0000000000000000
[  351.394667][ T7617] R10: 0000000000000001 R11: 0000000000000202 R12: 0000200000000040
[  351.402677][ T7617] R13: 00007f1bedbd6ee0 R14: 00007f1bedbd6ea0 R15: 0000200000000080
[  351.410706][ T7617]  </TASK>
[  352.661548][    C0] sched: RT throttling activated
[  352.756418][ T7628] Driver unsupported XDP return value 0 on prog  (id 15) dev N/A, expect packet loss!
[  352.938769][ T7631] program syz.4.351 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  352.957264][ T7628] FAULT_INJECTION: forcing a failure.
[  352.957264][ T7628] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  352.970939][ T7628] CPU: 0 PID: 7628 Comm: syz.4.351 Not tainted syzkaller #0
[  352.978316][ T7628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  352.988502][ T7628] Call Trace:
[  352.991828][ T7628]  <TASK>
[  352.994802][ T7628]  dump_stack_lvl+0x18c/0x250
[  352.999539][ T7628]  ? show_regs_print_info+0x20/0x20
[  353.004795][ T7628]  ? load_image+0x400/0x400
[  353.009348][ T7628]  ? __might_fault+0xaa/0x120
[  353.014074][ T7628]  ? __lock_acquire+0x7d40/0x7d40
[  353.019153][ T7628]  should_fail_ex+0x39d/0x4d0
[  353.023891][ T7628]  strncpy_from_user+0x36/0x2d0
[  353.028794][ T7628]  getname_flags+0xf6/0x500
[  353.033363][ T7628]  do_sys_openat2+0xda/0x1d0
[  353.038011][ T7628]  ? do_sys_open+0xe0/0xe0
[  353.042486][ T7628]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  353.048520][ T7628]  ? lock_chain_count+0x20/0x20
[  353.053422][ T7628]  __x64_sys_openat+0x139/0x160
[  353.058339][ T7628]  do_syscall_64+0x55/0xa0
[  353.062809][ T7628]  ? clear_bhb_loop+0x40/0x90
[  353.067532][ T7628]  ? clear_bhb_loop+0x40/0x90
[  353.072306][ T7628]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  353.078251][ T7628] RIP: 0033:0x7fcb7a55cfce
[  353.082709][ T7628] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  353.102368][ T7628] RSP: 002b:00007fcb7b475ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  353.110936][ T7628] RAX: ffffffffffffffda RBX: 00007fcb7b4766c0 RCX: 00007fcb7a55cfce
[  353.118951][ T7628] RDX: 0000000000000002 RSI: 00007fcb7b475f90 RDI: ffffffffffffff9c
[  353.127057][ T7628] RBP: 00007fcb7b476090 R08: 0000000000000000 R09: 0000000000000000
[  353.135074][ T7628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  353.143087][ T7628] R13: 00007fcb7a816038 R14: 00007fcb7a815fa0 R15: 00007fffae1543d8
[  353.151120][ T7628]  </TASK>
[  353.312631][ T7632] loop0: detected capacity change from 0 to 512
[  353.440937][   T52] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[  353.451473][   T52] CPU: 0 PID: 52 Comm: kworker/u5:0 Not tainted syzkaller #0
[  353.458925][   T52] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  353.469174][   T52] Workqueue: hci0 hci_rx_work
[  353.473960][   T52] Call Trace:
[  353.477285][   T52]  <TASK>
[  353.480258][   T52]  dump_stack_lvl+0x18c/0x250
[  353.485004][   T52]  ? show_regs_print_info+0x20/0x20
[  353.490267][   T52]  ? load_image+0x400/0x400
[  353.494847][   T52]  sysfs_create_dir_ns+0x26e/0x2a0
[  353.500102][   T52]  ? sysfs_warn_dup+0xa0/0xa0
[  353.504833][   T52]  ? do_raw_spin_unlock+0x121/0x230
[  353.510100][   T52]  kobject_add_internal+0x61c/0xcc0
[  353.515461][   T52]  kobject_add+0x164/0x240
[  353.519935][   T52]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  353.525628][   T52]  ? kobject_init+0x1e0/0x1e0
[  353.530564][   T52]  ? get_device_parent+0x366/0x390
[  353.535741][   T52]  device_add+0x408/0xc20
[  353.540145][   T52]  hci_conn_add_sysfs+0xd5/0x1e0
[  353.545146][   T52]  le_conn_complete_evt+0xf5d/0x1540
[  353.550511][   T52]  ? lock_chain_count+0x20/0x20
[  353.555443][   T52]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  353.561846][   T52]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  353.567560][   T52]  hci_le_conn_complete_evt+0x187/0x440
[  353.573219][   T52]  ? hci_remote_host_features_evt+0x150/0x150
[  353.579452][   T52]  hci_event_packet+0x7ba/0x1270
[  353.584454][   T52]  ? bis_list+0x290/0x290
[  353.588886][   T52]  ? lockdep_hardirqs_on+0x98/0x150
[  353.594151][   T52]  ? hci_send_to_monitor+0xd7/0x4f0
[  353.599412][   T52]  hci_rx_work+0x43a/0xd60
[  353.603990][   T52]  ? process_scheduled_works+0x96f/0x15d0
[  353.609853][   T52]  process_scheduled_works+0xa5d/0x15d0
[  353.615516][   T52]  ? worker_attach_to_pool+0x380/0x380
[  353.621045][   T52]  ? assign_work+0x3d2/0x5d0
[  353.625696][   T52]  worker_thread+0xa55/0xfc0
[  353.630376][   T52]  kthread+0x2fa/0x390
[  353.634497][   T52]  ? pr_cont_work+0x560/0x560
[  353.639232][   T52]  ? kthread_blkcg+0xd0/0xd0
[  353.643878][   T52]  ret_from_fork+0x48/0x80
[  353.648350][   T52]  ? kthread_blkcg+0xd0/0xd0
[  353.653009][   T52]  ret_from_fork_asm+0x11/0x20
[  353.657937][   T52]  </TASK>
[  353.685370][   T52] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  353.699572][   T52] Bluetooth: hci0: failed to register connection device
[  353.852497][ T7632] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  353.876398][ T7632] ext4 filesystem being mounted at /85/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  354.855846][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.668268][ T7652] loop0: detected capacity change from 0 to 64
[  356.767414][ T7652] MINIX-fs: bad superblock or unable to read bitmaps
[  357.889741][ T6032] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  360.703326][ T7663] loop0: detected capacity change from 0 to 2048
[  360.783480][ T7663] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  360.906483][ T7668] loop4: detected capacity change from 0 to 256
[  361.063891][ T7668] FAT-fs (loop4): Directory bread(block 64) failed
[  361.111670][ T7668] FAT-fs (loop4): Directory bread(block 65) failed
[  361.128746][ T7668] FAT-fs (loop4): Directory bread(block 66) failed
[  361.164413][ T7668] FAT-fs (loop4): Directory bread(block 67) failed
[  361.171124][ T7668] FAT-fs (loop4): Directory bread(block 68) failed
[  361.201640][ T7668] FAT-fs (loop4): Directory bread(block 69) failed
[  361.208707][ T7668] FAT-fs (loop4): Directory bread(block 70) failed
[  361.208926][   T11] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1229: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  361.265183][ T7668] FAT-fs (loop4): Directory bread(block 71) failed
[  361.273901][   T11] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  361.286899][   T11] EXT4-fs (loop0): This should not happen!! Data will be lost
[  361.286899][   T11] 
[  361.292742][ T7668] FAT-fs (loop4): Directory bread(block 72) failed
[  361.297200][   T11] EXT4-fs (loop0): Total free blocks count 0
[  361.309587][   T11] EXT4-fs (loop0): Free/Dirty block details
[  361.319016][   T11] EXT4-fs (loop0): free_blocks=4096
[  361.324557][   T11] EXT4-fs (loop0): dirty_blocks=640
[  361.329815][   T11] EXT4-fs (loop0): Block reservation details
[  361.335961][   T11] EXT4-fs (loop0): i_reserved_data_blocks=40
[  361.344613][   T49] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 609 with error 28
[  361.346482][ T7668] FAT-fs (loop4): Directory bread(block 73) failed
[  361.772917][ T6580] kernel write not supported for file /vcsa (pid: 6580 comm: kworker/0:16)
[  362.271990][ T5781] Bluetooth: hci0: command 0x0406 tx timeout
[  364.937804][ T7685] ucma_write: process 249 (syz.4.369) changed security contexts after opening file descriptor, this is not allowed.
[  365.093134][ T7689] netlink: 'syz.1.370': attribute type 10 has an invalid length.
[  365.153076][ T7689] 8021q: adding VLAN 0 to HW filter on device batadv0
[  365.232289][ T7689] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  365.260606][ T7688] batman_adv: batadv0: Removing interface: batadv_slave_0
[  365.325279][ T7688] batman_adv: batadv0: Removing interface: batadv_slave_1
[  365.465057][ T7688] bond0: (slave batadv0): Releasing backup interface
[  367.578413][ T7701] loop0: detected capacity change from 0 to 32768
[  368.978646][ T5848] kernel write not supported for file /vcsa (pid: 5848 comm: kworker/1:10)
[  369.222352][ T5848] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  369.463358][ T5848] usb 2-1: Using ep0 maxpacket: 8
[  369.523305][ T5848] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  369.636346][ T5848] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  369.730930][ T5848] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  369.824123][ T5848] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  369.961991][ T5848] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  370.075088][ T5848] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.816385][ T5848] usb 2-1: GET_CAPABILITIES returned 0
[  370.841887][ T5848] usbtmc 2-1:16.0: can't read capabilities
[  371.273569][ T7717] can0: slcan on ttyS3.
[  372.183552][ T7717] can0 (unregistered): slcan off ttyS3.
[  373.575612][ T6568] usb 2-1: USB disconnect, device number 17
[  373.726756][ T7728] loop1: detected capacity change from 0 to 256
[  373.800906][ T7721] loop4: detected capacity change from 0 to 764
[  374.594237][ T7739] ax25_connect(): syz.4.381 uses autobind, please contact jreuter@yaina.de
[  374.869419][ T7744] FAULT_INJECTION: forcing a failure.
[  374.869419][ T7744] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  374.901713][ T7744] CPU: 1 PID: 7744 Comm: syz.4.382 Not tainted syzkaller #0
[  374.909087][ T7744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  374.919398][ T7744] Call Trace:
[  374.922720][ T7744]  <TASK>
[  374.925689][ T7744]  dump_stack_lvl+0x18c/0x250
[  374.930432][ T7744]  ? show_regs_print_info+0x20/0x20
[  374.935672][ T7744]  ? load_image+0x400/0x400
[  374.940214][ T7744]  ? __might_fault+0xaa/0x120
[  374.944921][ T7744]  ? __lock_acquire+0x7d40/0x7d40
[  374.949989][ T7744]  should_fail_ex+0x39d/0x4d0
[  374.954794][ T7744]  _copy_from_user+0x2f/0xe0
[  374.959424][ T7744]  __sys_connect+0x171/0x470
[  374.964056][ T7744]  ? __sys_connect_file+0x180/0x180
[  374.969307][ T7744]  __x64_sys_connect+0x7a/0x90
[  374.974105][ T7744]  do_syscall_64+0x55/0xa0
[  374.978551][ T7744]  ? clear_bhb_loop+0x40/0x90
[  374.983263][ T7744]  ? clear_bhb_loop+0x40/0x90
[  374.987975][ T7744]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  374.993930][ T7744] RIP: 0033:0x7fcb7a59c799
[  374.998374][ T7744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  375.018282][ T7744] RSP: 002b:00007fcb7b476028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  375.026731][ T7744] RAX: ffffffffffffffda RBX: 00007fcb7a815fa0 RCX: 00007fcb7a59c799
[  375.034728][ T7744] RDX: 0000000000000048 RSI: 00002000000001c0 RDI: 0000000000000004
[  375.042725][ T7744] RBP: 00007fcb7b476090 R08: 0000000000000000 R09: 0000000000000000
[  375.050721][ T7744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  375.058718][ T7744] R13: 00007fcb7a816038 R14: 00007fcb7a815fa0 R15: 00007fffae1543d8
[  375.066730][ T7744]  </TASK>
[  376.746323][ T6580] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  378.102355][ T6580] usb 4-1: Using ep0 maxpacket: 8
[  378.140113][ T6580] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  378.161566][ T6580] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  378.171404][ T6580] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  378.208288][ T6580] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  378.251871][ T6580] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  378.261168][ T6580] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.489518][ T7770] loop4: detected capacity change from 0 to 1024
[  378.545421][ T7770] hfsplus: unable to parse mount options
[  378.625781][ T6580] usb 4-1: usb_control_msg returned -71
[  378.661775][ T6580] usbtmc 4-1:16.0: can't read capabilities
[  378.703484][ T6580] usb 4-1: USB disconnect, device number 17
[  378.785124][ T7772] "syz.3.392" (7772) uses obsolete ecb(arc4) skcipher
[  378.804126][ T7772] FAULT_INJECTION: forcing a failure.
[  378.804126][ T7772] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  378.849663][ T7772] CPU: 0 PID: 7772 Comm: syz.3.392 Not tainted syzkaller #0
[  378.857130][ T7772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  378.867237][ T7772] Call Trace:
[  378.870555][ T7772]  <TASK>
[  378.873532][ T7772]  dump_stack_lvl+0x18c/0x250
[  378.878266][ T7772]  ? show_regs_print_info+0x20/0x20
[  378.883519][ T7772]  ? load_image+0x400/0x400
[  378.888076][ T7772]  ? __might_fault+0xaa/0x120
[  378.892793][ T7772]  ? __lock_acquire+0x7d40/0x7d40
[  378.897871][ T7772]  should_fail_ex+0x39d/0x4d0
[  378.902701][ T7772]  _copy_from_user+0x2f/0xe0
[  378.907348][ T7772]  ___sys_recvmsg+0x176/0x590
[  378.912081][ T7772]  ? __sys_recvmsg+0x2a0/0x2a0
[  378.916981][ T7772]  ? ksys_write+0x1c4/0x260
[  378.921574][ T7772]  ? __fget_files+0x43d/0x4b0
[  378.926355][ T7772]  __x64_sys_recvmsg+0x20c/0x2e0
[  378.931514][ T7772]  ? ___sys_recvmsg+0x590/0x590
[  378.936510][ T7772]  ? lockdep_hardirqs_on+0x98/0x150
[  378.941872][ T7772]  do_syscall_64+0x55/0xa0
[  378.946348][ T7772]  ? clear_bhb_loop+0x40/0x90
[  378.951084][ T7772]  ? clear_bhb_loop+0x40/0x90
[  378.955811][ T7772]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  378.961759][ T7772] RIP: 0033:0x7fad4e19c799
[  378.966244][ T7772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  378.985897][ T7772] RSP: 002b:00007fad4f06b028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  378.994368][ T7772] RAX: ffffffffffffffda RBX: 00007fad4e415fa0 RCX: 00007fad4e19c799
[  379.002386][ T7772] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  379.010405][ T7772] RBP: 00007fad4f06b090 R08: 0000000000000000 R09: 0000000000000000
[  379.018406][ T7772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  379.026415][ T7772] R13: 00007fad4e416038 R14: 00007fad4e415fa0 R15: 00007ffe7b3ca268
[  379.034431][ T7772]  </TASK>
[  379.059160][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  379.066702][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  379.282410][ T7774] loop4: detected capacity change from 0 to 4096
[  379.302171][ T7774] ntfs3: loop4: Primary boot: invalid bytes per MFT record 0 (0).
[  379.310466][ T7774] ntfs3: loop4: try to read out of volume at offset 0x1ffe00
[  379.531737][ T6580] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  379.731744][ T6580] usb 4-1: Using ep0 maxpacket: 8
[  379.740532][ T6580] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  379.750789][ T6580] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  379.760963][ T6580] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  379.771204][ T6580] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  379.784522][ T6580] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  379.796060][ T6568] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  379.803795][ T6580] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.021901][ T6568] usb 5-1: Using ep0 maxpacket: 8
[  380.027221][ T6580] usb 4-1: GET_CAPABILITIES returned 0
[  380.033321][ T6580] usbtmc 4-1:16.0: can't read capabilities
[  380.040488][ T6568] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  380.051422][ T6568] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  380.068223][ T6568] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  380.078433][ T6568] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  380.091650][ T6568] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  380.100756][ T6568] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.339578][ T6568] usb 5-1: GET_CAPABILITIES returned 0
[  380.350248][ T6568] usbtmc 5-1:16.0: can't read capabilities
[  380.691236][ T7793] can0: slcan on ttyS3.
[  380.822210][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.831397][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.840526][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.849992][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.859209][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.868356][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.878482][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.887620][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.897013][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.906641][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.916119][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.925252][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.934385][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.944099][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.953233][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  380.962358][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  383.532491][ T7793] can0 (unregistered): slcan off ttyS3.
[  383.659432][ T5848] usb 5-1: USB disconnect, device number 14
[  383.667131][ T6568] usb 4-1: USB disconnect, device number 18
[  385.201860][ T6580] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  385.402254][ T5848] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  385.402280][ T6580] usb 1-1: Using ep0 maxpacket: 8
[  385.407686][ T6580] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  385.442092][ T6580] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  385.462030][ T6580] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  385.481571][ T6580] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  385.511759][ T6580] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  385.520877][ T6580] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  385.623899][ T5848] usb 5-1: Using ep0 maxpacket: 8
[  385.631294][ T5848] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  385.652581][ T5848] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  385.676277][ T5848] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  385.696896][ T5848] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  385.730865][ T5848] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  385.751130][ T5848] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  385.768547][ T6580] usb 1-1: GET_CAPABILITIES returned 0
[  385.783629][ T6580] usbtmc 1-1:16.0: can't read capabilities
[  386.122071][ T6580] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  386.163164][ T5848] usb 5-1: GET_CAPABILITIES returned 0
[  386.177764][ T5848] usbtmc 5-1:16.0: can't read capabilities
[  386.755219][ T7819] can0: slcan on ttyS3.
[  386.821618][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.832722][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.842131][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.851345][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.861021][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.872034][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.881570][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.891745][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.901508][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.912134][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.921277][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.930397][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.940210][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.950710][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.960340][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  386.971439][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.345852][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.355882][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.365454][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.374947][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.384771][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.394289][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.403836][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.413756][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.425513][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.434731][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.443847][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.452982][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.462527][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.471629][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.480735][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  387.489845][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  387.861122][ T6580] usb 4-1: Using ep0 maxpacket: 16
[  387.875237][ T6580] usb 4-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  387.890156][ T6580] usb 4-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  387.902734][ T7821] can0 (unregistered): slcan off ttyS3.
[  387.910577][ T6580] usb 4-1: config 0 interface 0 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  387.924038][ T7822] can0: slcan on ttyS3.
[  387.951852][ T6580] usb 4-1: config 0 interface 0 has no altsetting 0
[  387.965005][ T6580] usb 4-1: New USB device found, idVendor=5543, idProduct=0003, bcdDevice= 0.00
[  388.005621][ T6580] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.026308][ T6580] usb 4-1: config 0 descriptor??
[  388.163338][ T7830] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  388.521375][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.530516][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.541831][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.549802][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.564305][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.571979][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.579235][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0xe
[  388.594169][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.604912][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.614151][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.621343][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.632013][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.639261][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.652497][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.659795][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.675521][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.685212][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.695709][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.704761][ T6580] uclogic 0003:5543:0003.0006: unknown main item tag 0x0
[  388.718826][ T6580] uclogic 0003:5543:0003.0006: unbalanced collection at end of report description
[  388.734237][ T6580] uclogic 0003:5543:0003.0006: parse failed
[  388.740569][ T6580] uclogic: probe of 0003:5543:0003.0006 failed with error -22
[  388.918616][ T6580] usb 1-1: USB disconnect, device number 13
[  389.027230][ T7844] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  389.063370][ T7820] can0 (unregistered): slcan off ttyS3.
[  389.135860][ T7844] FAULT_INJECTION: forcing a failure.
[  389.135860][ T7844] name failslab, interval 1, probability 0, space 0, times 0
[  389.155811][ T5813] usb 5-1: USB disconnect, device number 15
[  389.172406][ T7844] CPU: 1 PID: 7844 Comm: syz.0.403 Not tainted syzkaller #0
[  389.179770][ T7844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  389.189880][ T7844] Call Trace:
[  389.193213][ T7844]  <TASK>
[  389.196186][ T7844]  dump_stack_lvl+0x18c/0x250
[  389.200932][ T7844]  ? show_regs_print_info+0x20/0x20
[  389.206190][ T7844]  ? load_image+0x400/0x400
[  389.210761][ T7844]  ? __might_sleep+0xe0/0xe0
[  389.215407][ T7844]  ? __lock_acquire+0x7d40/0x7d40
[  389.220490][ T7844]  should_fail_ex+0x39d/0x4d0
[  389.225327][ T7844]  should_failslab+0x9/0x20
[  389.229887][ T7844]  slab_pre_alloc_hook+0x59/0x310
[  389.235245][ T7844]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  389.241025][ T7844]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  389.246794][ T7844]  __kmem_cache_alloc_node+0x53/0x250
[  389.252218][ T7844]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  389.257977][ T7844]  __kmalloc+0xa4/0x230
[  389.262169][ T7844]  tomoyo_realpath_from_path+0xe3/0x5d0
[  389.267767][ T7844]  tomoyo_path_number_perm+0x248/0x620
[  389.273358][ T7844]  ? tomoyo_path_number_perm+0x217/0x620
[  389.279027][ T7844]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  389.284526][ T7844]  ? ksys_write+0x1c4/0x260
[  389.289097][ T7844]  ? __fget_files+0x28/0x4b0
[  389.293722][ T7844]  ? __fget_files+0x28/0x4b0
[  389.298352][ T7844]  security_file_ioctl+0x70/0xa0
[  389.303323][ T7844]  __se_sys_ioctl+0x48/0x170
[  389.307942][ T7844]  do_syscall_64+0x55/0xa0
[  389.312412][ T7844]  ? clear_bhb_loop+0x40/0x90
[  389.317121][ T7844]  ? clear_bhb_loop+0x40/0x90
[  389.321826][ T7844]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  389.327743][ T7844] RIP: 0033:0x7f1becd9c799
[  389.332272][ T7844] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  389.351912][ T7844] RSP: 002b:00007f1bedc19028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  389.360354][ T7844] RAX: ffffffffffffffda RBX: 00007f1bed015fa0 RCX: 00007f1becd9c799
[  389.368453][ T7844] RDX: 0000200000000180 RSI: 0000000000003b85 RDI: 0000000000000004
[  389.376466][ T7844] RBP: 00007f1bedc19090 R08: 0000000000000000 R09: 0000000000000000
[  389.384467][ T7844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.392494][ T7844] R13: 00007f1bed016038 R14: 00007f1bed015fa0 R15: 00007ffda80c2ed8
[  389.400603][ T7844]  </TASK>
[  389.420729][ T7844] ERROR: Out of memory at tomoyo_realpath_from_path.
[  389.789291][ T7852] loop4: detected capacity change from 0 to 4096
[  389.831880][ T7852] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512).
[  389.889423][ T7852] ntfs3: loop4: Failed to load $UpCase (-22).
[  390.060598][ T5848] usb 4-1: USB disconnect, device number 19
[  393.901656][ T5848] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  394.302149][ T5848] usb 4-1: device descriptor read/64, error -71
[  394.346529][ T7885] FAULT_INJECTION: forcing a failure.
[  394.346529][ T7885] name failslab, interval 1, probability 0, space 0, times 0
[  394.385114][ T7885] CPU: 1 PID: 7885 Comm: syz.1.414 Not tainted syzkaller #0
[  394.392501][ T7885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  394.402607][ T7885] Call Trace:
[  394.405924][ T7885]  <TASK>
[  394.408893][ T7885]  dump_stack_lvl+0x18c/0x250
[  394.413630][ T7885]  ? show_regs_print_info+0x20/0x20
[  394.418882][ T7885]  ? load_image+0x400/0x400
[  394.423439][ T7885]  ? __might_sleep+0xe0/0xe0
[  394.428088][ T7885]  ? __lock_acquire+0x7d40/0x7d40
[  394.433175][ T7885]  should_fail_ex+0x39d/0x4d0
[  394.437913][ T7885]  should_failslab+0x9/0x20
[  394.442473][ T7885]  slab_pre_alloc_hook+0x59/0x310
[  394.447651][ T7885]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  394.453552][ T7885]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  394.459317][ T7885]  __kmem_cache_alloc_node+0x53/0x250
[  394.464756][ T7885]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  394.470521][ T7885]  __kmalloc+0xa4/0x230
[  394.474738][ T7885]  tomoyo_realpath_from_path+0xe3/0x5d0
[  394.480340][ T7885]  tomoyo_path_number_perm+0x248/0x620
[  394.485859][ T7885]  ? tomoyo_path_number_perm+0x217/0x620
[  394.491555][ T7885]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  394.497072][ T7885]  ? ksys_write+0x1c4/0x260
[  394.501669][ T7885]  ? __fget_files+0x28/0x4b0
[  394.506303][ T7885]  ? __fget_files+0x28/0x4b0
[  394.510956][ T7885]  security_file_ioctl+0x70/0xa0
[  394.515939][ T7885]  __se_sys_ioctl+0x48/0x170
[  394.520576][ T7885]  do_syscall_64+0x55/0xa0
[  394.525035][ T7885]  ? clear_bhb_loop+0x40/0x90
[  394.529756][ T7885]  ? clear_bhb_loop+0x40/0x90
[  394.534645][ T7885]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  394.540592][ T7885] RIP: 0033:0x7f54db99c799
[  394.545039][ T7885] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  394.564698][ T7885] RSP: 002b:00007f54dc8e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  394.573241][ T7885] RAX: ffffffffffffffda RBX: 00007f54dbc15fa0 RCX: 00007f54db99c799
[  394.581331][ T7885] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  394.589373][ T7885] RBP: 00007f54dc8e3090 R08: 0000000000000000 R09: 0000000000000000
[  394.597392][ T7885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  394.605408][ T7885] R13: 00007f54dbc16038 R14: 00007f54dbc15fa0 R15: 00007ffd395419d8
[  394.613439][ T7885]  </TASK>
[  394.641984][ T7885] ERROR: Out of memory at tomoyo_realpath_from_path.
[  394.771761][ T5848] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  394.961675][ T5848] usb 4-1: Using ep0 maxpacket: 8
[  394.974784][ T5848] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  394.992586][ T7893] loop1: detected capacity change from 0 to 128
[  395.011659][ T5848] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  395.022565][ T7893] FAT-fs (loop1): Unrecognized mount option "gid=0x000000000000000318446744073709551615éçk¯~nkuïÖ0…ØyàdŠS2Ôg4G²€±°P�‰ª-5åÏ57DIxêþË«‡ê@Æ�Náme‰ÀVZ7õ®uλÄjROÎâõä?×Â(ƒdÊü@©æ¾xKÞ¼²ÞžÃ2oUH®@" or missing value
[  395.044370][ T5848] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  395.070819][ T5848] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  395.089136][ T5848] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  395.100091][ T5848] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  395.530430][ T5848] usb 4-1: GET_CAPABILITIES returned 0
[  395.537140][ T5848] usbtmc 4-1:16.0: can't read capabilities
[  395.672302][ T7899] loop0: detected capacity change from 0 to 2048
[  395.701983][ T6580] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  396.022206][ T7899] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  396.097772][ T7899] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1229: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  396.577565][ T6580] usb 2-1: device descriptor read/64, error -71
[  396.823911][ T7906] can0: slcan on ttyS3.
[  396.898005][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.907273][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.916418][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.925640][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.935984][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.945207][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.954344][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.965048][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.974194][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.983415][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  396.993751][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  397.002969][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  397.012089][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  397.022155][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  397.031769][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  397.041094][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  399.185317][ T7899] netlink: 8 bytes leftover after parsing attributes in process `syz.0.421'.
[  400.432213][ T7906] can0 (unregistered): slcan off ttyS3.
[  400.541835][ T5848] usb 4-1: USB disconnect, device number 21
[  400.975043][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.065135][ T7919] netlink: 56 bytes leftover after parsing attributes in process `syz.3.420'.
[  403.294700][ T7919] loop3: detected capacity change from 0 to 1024
[  403.343208][ T7919] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  403.601704][    T9] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  403.753776][ T7917] loop4: detected capacity change from 0 to 32768
[  403.868839][ T7917] read_mapping_page failed!
[  403.883152][ T7917] diRead: diIAGRead returned -5
[  404.003961][    T9] usb 1-1: Using ep0 maxpacket: 8
[  404.023821][    T9] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  404.041559][    T9] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  404.051455][    T9] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  404.091780][    T9] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  404.126074][    T9] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  404.159218][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  404.409433][    T9] usb 1-1: GET_CAPABILITIES returned 0
[  404.421865][    T9] usbtmc 1-1:16.0: can't read capabilities
[  404.691040][ T7943] loop3: detected capacity change from 0 to 2048
[  404.739565][ T7945] FAULT_INJECTION: forcing a failure.
[  404.739565][ T7945] name failslab, interval 1, probability 0, space 0, times 0
[  404.755926][ T7945] CPU: 0 PID: 7945 Comm: syz.1.423 Not tainted syzkaller #0
[  404.763285][ T7945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  404.773490][ T7945] Call Trace:
[  404.776817][ T7945]  <TASK>
[  404.779831][ T7945]  dump_stack_lvl+0x18c/0x250
[  404.784578][ T7945]  ? show_regs_print_info+0x20/0x20
[  404.789839][ T7945]  ? load_image+0x400/0x400
[  404.794396][ T7945]  ? __might_sleep+0xe0/0xe0
[  404.799044][ T7945]  ? __lock_acquire+0x7d40/0x7d40
[  404.804120][ T7945]  should_fail_ex+0x39d/0x4d0
[  404.808863][ T7945]  should_failslab+0x9/0x20
[  404.813429][ T7945]  slab_pre_alloc_hook+0x59/0x310
[  404.818601][ T7945]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  404.824373][ T7945]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  404.830146][ T7945]  __kmem_cache_alloc_node+0x53/0x250
[  404.835580][ T7945]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  404.841355][ T7945]  __kmalloc+0xa4/0x230
[  404.845574][ T7945]  tomoyo_realpath_from_path+0xe3/0x5d0
[  404.851177][ T7945]  tomoyo_path_number_perm+0x248/0x620
[  404.856700][ T7945]  ? tomoyo_path_number_perm+0x217/0x620
[  404.862405][ T7945]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  404.867927][ T7945]  ? ksys_write+0x1c4/0x260
[  404.872519][ T7945]  ? __fget_files+0x28/0x4b0
[  404.877162][ T7945]  ? __fget_files+0x28/0x4b0
[  404.881903][ T7945]  security_file_ioctl+0x70/0xa0
[  404.886910][ T7945]  __se_sys_ioctl+0x48/0x170
[  404.891562][ T7945]  do_syscall_64+0x55/0xa0
[  404.896150][ T7945]  ? clear_bhb_loop+0x40/0x90
[  404.900960][ T7945]  ? clear_bhb_loop+0x40/0x90
[  404.905687][ T7945]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  404.911643][ T7945] RIP: 0033:0x7f54db99c799
[  404.916111][ T7945] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  404.935779][ T7945] RSP: 002b:00007f54dc8e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  404.944251][ T7945] RAX: ffffffffffffffda RBX: 00007f54dbc15fa0 RCX: 00007f54db99c799
[  404.952276][ T7945] RDX: 0000200000000000 RSI: 000000004008ae90 RDI: 0000000000000006
[  404.960293][ T7945] RBP: 00007f54dc8e3090 R08: 0000000000000000 R09: 0000000000000000
[  404.968442][ T7945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  404.976465][ T7945] R13: 00007f54dbc16038 R14: 00007f54dbc15fa0 R15: 00007ffd395419d8
[  404.984499][ T7945]  </TASK>
[  404.999344][ T7943]  loop3: p1 p2 p3
[  404.999344][ T7943]  p1: <netbsd:bad subpartition - ignored
[  404.999344][ T7943]  p5 (ignored 752 more) >
[  405.008833][ T7945] ERROR: Out of memory at tomoyo_realpath_from_path.
[  405.039831][ T7943] loop3: p3 start 65280 is beyond EOD, truncated
[  405.183116][ T7949] can0: slcan on ttyS3.
[  405.435106][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.448994][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.458137][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.467419][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.476624][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.485772][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.494996][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.504110][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.513408][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.522531][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.531664][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.540775][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.550325][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.559438][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.568551][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  405.577742][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  405.604180][ T7949] can0 (unregistered): slcan off ttyS3.
[  406.698450][ T5848] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  407.031611][ T5848] usb 2-1: Using ep0 maxpacket: 8
[  407.039485][ T5848] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  407.053729][ T5848] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  407.752848][    T9] usb 1-1: USB disconnect, device number 14
[  407.776148][ T5848] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  407.794917][ T5848] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  407.808906][ T5848] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  407.820122][ T5848] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  407.922038][   T28] usb 5-1: new low-speed USB device number 16 using dummy_hcd
[  408.042987][ T7967] loop0: detected capacity change from 0 to 256
[  408.183881][   T28] usb 5-1: device descriptor read/64, error -71
[  408.235155][ T7967] FAT-fs (loop0): Directory bread(block 64) failed
[  408.242469][ T7967] FAT-fs (loop0): Directory bread(block 65) failed
[  408.249776][ T7967] FAT-fs (loop0): Directory bread(block 66) failed
[  408.256652][ T7967] FAT-fs (loop0): Directory bread(block 67) failed
[  408.264072][ T7967] FAT-fs (loop0): Directory bread(block 68) failed
[  408.270874][ T7967] FAT-fs (loop0): Directory bread(block 69) failed
[  408.278669][ T7967] FAT-fs (loop0): Directory bread(block 70) failed
[  408.285659][ T7967] FAT-fs (loop0): Directory bread(block 71) failed
[  408.293055][ T7967] FAT-fs (loop0): Directory bread(block 72) failed
[  408.299847][ T7967] FAT-fs (loop0): Directory bread(block 73) failed
[  408.645036][   T28] usb 5-1: new low-speed USB device number 17 using dummy_hcd
[  408.779997][ T5848] usb 2-1: GET_CAPABILITIES returned 0
[  408.803722][ T5848] usbtmc 2-1:16.0: can't read capabilities
[  408.932240][   T28] usb 5-1: device descriptor read/64, error -71
[  409.025045][ T7972] loop0: detected capacity change from 0 to 1024
[  409.106594][ T7972] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  409.191069][ T7972] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.245375][   T28] usb usb5-port1: attempt power cycle
[  409.513967][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.523158][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.532289][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.541524][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.553808][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.563155][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.572297][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.581438][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.590568][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.599690][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.608923][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.618061][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.627266][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.636396][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.645535][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  409.654660][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  409.858567][ T7980] loop4: detected capacity change from 0 to 2048
[  410.452274][ T7971] tipc: Resetting bearer <eth:ip6gre0>
[  410.473108][ T7980] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.518535][ T7971] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.526112][ T7971] bridge0: port 1(bridge_slave_0) entered disabled state
[  410.538923][ T7980] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  410.656720][ T7980] /dev/loop0: Can't open blockdev
[  410.679093][ T7980] x_tables: duplicate underflow at hook 2
[  410.941137][ T7995] x_tables: duplicate underflow at hook 4
[  410.971720][    T9] usb 5-1: new full-speed USB device number 19 using dummy_hcd
[  411.000710][ T7978] slcan: can't register candev
[  411.008638][ T7978] Falling back ldisc for ttyS3.
[  411.138159][ T7991] usb 2-1: USB disconnect, device number 20
[  411.167691][    T9] usb 5-1: unable to get BOS descriptor or descriptor too short
[  411.204088][    T9] usb 5-1: not running at top speed; connect to a high speed hub
[  411.229447][    T9] usb 5-1: config 8 has an invalid interface number: 212 but max is 0
[  411.251188][    T9] usb 5-1: config 8 has no interface number 0
[  411.263849][    T9] usb 5-1: config 8 interface 212 altsetting 65 endpoint 0x8 has invalid maxpacket 512, setting to 64
[  411.277411][    T9] usb 5-1: config 8 interface 212 altsetting 65 endpoint 0xE has invalid maxpacket 1023, setting to 64
[  411.291082][    T9] usb 5-1: config 8 interface 212 has no altsetting 0
[  411.309428][    T9] usb 5-1: New USB device found, idVendor=0403, idProduct=f458, bcdDevice=c2.d3
[  411.312013][ T5812] kernel write not supported for file /vcsa (pid: 5812 comm: kworker/1:5)
[  411.327890][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.336354][    T9] usb 5-1: Product: syz
[  411.340660][    T9] usb 5-1: Manufacturer: syz
[  411.349466][    T9] usb 5-1: SerialNumber: syz
[  411.364040][ T7980] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  411.371682][ T6568] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  411.529825][ T8003] binder: 8002:8003 ioctl c018620c 2000000002c0 returned -22
[  411.538696][ T7971] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  411.581674][ T6568] usb 4-1: Using ep0 maxpacket: 32
[  411.602726][ T6568] usb 4-1: config 10 has an invalid interface number: 251 but max is 0
[  411.629493][ T6568] usb 4-1: config 10 has no interface number 0
[  411.651039][ T7971] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  411.651039][ T6568] usb 4-1: config 10 interface 251 has no altsetting 0
[  411.667378][ T6568] usb 4-1: New USB device found, idVendor=052b, idProduct=1803, bcdDevice= 5.ff
[  411.707468][ T6568] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.737627][ T6568] usb 4-1: Product: syz
[  411.753418][ T6568] usb 4-1: Manufacturer: syz
[  411.758684][ T6568] usb 4-1: SerialNumber: syz
[  411.767341][    T9] ftdi_sio 5-1:8.212: FTDI USB Serial Device converter detected
[  411.797306][    T9] ftdi_sio ttyUSB0: unknown device type: 0xc2d3
[  411.824800][    T9] usb 5-1: USB disconnect, device number 19
[  411.848461][    T9] ftdi_sio 5-1:8.212: device disconnected
[  412.322912][ T5993] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.687645][ T7971] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  412.710106][ T7971] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  412.734591][ T7971] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  412.759959][ T7971] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  413.258854][ T8011] loop1: detected capacity change from 0 to 32768
[  413.269666][ T7997] netlink: 4 bytes leftover after parsing attributes in process `syz.3.432'.
[  413.323403][ T7880] I/O error, dev loop1, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  413.343070][ T6568] gspca_main: sunplus-2.14.0 probing 052b:1803
[  413.361139][ T6568] gspca_sunplus: reg_r err -71
[  413.374065][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.381842][ T6568] sunplus: probe of 4-1:10.251 failed with error -71
[  413.405715][ T6568] usb 4-1: USB disconnect, device number 22
[  415.421625][    T9] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  415.560531][ T8027] FAULT_INJECTION: forcing a failure.
[  415.560531][ T8027] name failslab, interval 1, probability 0, space 0, times 0
[  415.577945][ T8027] CPU: 0 PID: 8027 Comm: syz.4.445 Not tainted syzkaller #0
[  415.585303][ T8027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  415.595517][ T8027] Call Trace:
[  415.595530][ T8027]  <TASK>
[  415.595539][ T8027]  dump_stack_lvl+0x18c/0x250
[  415.606638][ T8027]  ? show_regs_print_info+0x20/0x20
[  415.611901][ T8027]  ? load_image+0x400/0x400
[  415.616475][ T8027]  ? __might_sleep+0xe0/0xe0
[  415.621117][ T8027]  ? __lock_acquire+0x7d40/0x7d40
[  415.626222][ T8027]  should_fail_ex+0x39d/0x4d0
[  415.630997][ T8027]  should_failslab+0x9/0x20
[  415.635559][ T8027]  slab_pre_alloc_hook+0x59/0x310
[  415.640833][ T8027]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  415.646617][ T8027]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  415.652392][ T8027]  __kmem_cache_alloc_node+0x53/0x250
[  415.657829][ T8027]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  415.664619][ T8027]  __kmalloc+0xa4/0x230
[  415.664662][ T8027]  tomoyo_realpath_from_path+0xe3/0x5d0
[  415.664701][ T8027]  tomoyo_path_number_perm+0x248/0x620
[  415.664734][ T8027]  ? tomoyo_path_number_perm+0x217/0x620
[  415.664767][ T8027]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  415.664802][ T8027]  ? ksys_write+0x1c4/0x260
[  415.664866][ T8027]  ? __fget_files+0x28/0x4b0
[  415.664892][ T8027]  ? __fget_files+0x28/0x4b0
[  415.664934][ T8027]  security_file_ioctl+0x70/0xa0
[  415.664970][ T8027]  __se_sys_ioctl+0x48/0x170
[  415.665001][ T8027]  do_syscall_64+0x55/0xa0
[  415.665031][ T8027]  ? clear_bhb_loop+0x40/0x90
[  415.665055][ T8027]  ? clear_bhb_loop+0x40/0x90
[  415.665081][ T8027]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  415.665104][ T8027] RIP: 0033:0x7fcb7a59c799
[  415.665125][ T8027] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  415.665143][ T8027] RSP: 002b:00007fcb7b476028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  415.665167][ T8027] RAX: ffffffffffffffda RBX: 00007fcb7a815fa0 RCX: 00007fcb7a59c799
[  415.665183][ T8027] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  415.665196][ T8027] RBP: 00007fcb7b476090 R08: 0000000000000000 R09: 0000000000000000
[  415.665209][ T8027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  415.665222][ T8027] R13: 00007fcb7a816038 R14: 00007fcb7a815fa0 R15: 00007fffae1543d8
[  415.665254][ T8027]  </TASK>
[  415.670564][    T9] usb 1-1: device descriptor read/64, error -71
[  415.690057][ T8027] ERROR: Out of memory at tomoyo_realpath_from_path.
[  415.719749][ T8032] 9pnet_fd: Insufficient options for proto=fd
[  415.945931][    T9] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  416.101792][    T9] usb 1-1: device descriptor read/64, error -71
[  416.236571][    T9] usb usb1-port1: attempt power cycle
[  416.267386][ T8037] loop3: detected capacity change from 0 to 1024
[  416.288275][ T8037] hfsplus: unable to parse mount options
[  416.376432][ T8039] ax25_connect(): syz.4.449 uses autobind, please contact jreuter@yaina.de
[  416.408587][ T8037] batadv_slave_0: entered promiscuous mode
[  416.597792][ T8045] ax25_connect(): syz.3.450 uses autobind, please contact jreuter@yaina.de
[  416.691903][    T9] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  416.725633][ T8046] loop1: detected capacity change from 0 to 2048
[  417.102667][ T8046] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  417.160282][ T8046] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1229: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  417.296111][    T9] usb 1-1: device descriptor read/8, error -71
[  417.342870][ T8055] loop0: detected capacity change from 0 to 2048
[  417.356803][ T8051] loop4: detected capacity change from 0 to 2048
[  418.520724][ T8060] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  418.748718][ T8055] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.846933][ T8051] NILFS error (device loop4): nilfs_check_page: bad entry in directory #2: directory entry across blocks - offset=0, inode=2, rec_len=1040, name_len=1
[  419.379922][ T8051] Remounting filesystem read-only
[  419.428626][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  419.428684][   T27] audit: type=1800 audit(1774247393.011:2): pid=8055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.452" name="file0" dev="loop0" ino=13 res=0 errno=0
[  419.726857][ T8052] netlink: 8 bytes leftover after parsing attributes in process `syz.1.444'.
[  420.138882][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.226781][ T8068] FAULT_INJECTION: forcing a failure.
[  420.226781][ T8068] name failslab, interval 1, probability 0, space 0, times 0
[  420.239783][ T8068] CPU: 1 PID: 8068 Comm: syz.4.455 Not tainted syzkaller #0
[  420.247119][ T8068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  420.257397][ T8068] Call Trace:
[  420.260727][ T8068]  <TASK>
[  420.263703][ T8068]  dump_stack_lvl+0x18c/0x250
[  420.268476][ T8068]  ? show_regs_print_info+0x20/0x20
[  420.273742][ T8068]  ? load_image+0x400/0x400
[  420.278307][ T8068]  ? __might_sleep+0xe0/0xe0
[  420.283036][ T8068]  ? __lock_acquire+0x7d40/0x7d40
[  420.288112][ T8068]  should_fail_ex+0x39d/0x4d0
[  420.292845][ T8068]  should_failslab+0x9/0x20
[  420.297396][ T8068]  slab_pre_alloc_hook+0x59/0x310
[  420.302489][ T8068]  kmem_cache_alloc_node+0x60/0x320
[  420.307828][ T8068]  ? __alloc_skb+0x103/0x2c0
[  420.312486][ T8068]  __alloc_skb+0x103/0x2c0
[  420.316969][ T8068]  alloc_skb_with_frags+0xca/0x7b0
[  420.322152][ T8068]  ? aa_sk_perm+0x970/0x970
[  420.326794][ T8068]  sock_alloc_send_pskb+0x883/0x9a0
[  420.332022][ T8068]  ? sock_kzfree_s+0x50/0x50
[  420.336638][ T8068]  ? aa_file_perm+0x11b/0xee0
[  420.341336][ T8068]  ? aa_sk_perm+0x83c/0x970
[  420.345862][ T8068]  hci_sock_sendmsg+0x207/0xeb0
[  420.350728][ T8068]  ? hci_sock_getsockopt+0x600/0x600
[  420.356022][ T8068]  ? aa_sock_msg_perm+0x94/0x150
[  420.360976][ T8068]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  420.366289][ T8068]  ? security_socket_sendmsg+0x80/0xa0
[  420.371774][ T8068]  sock_write_iter+0x2df/0x420
[  420.376561][ T8068]  ? sock_read_iter+0x3e0/0x3e0
[  420.381425][ T8068]  ? common_file_perm+0x198/0x1f0
[  420.386483][ T8068]  vfs_write+0x46c/0x990
[  420.390767][ T8068]  ? file_end_write+0x250/0x250
[  420.395657][ T8068]  ? __fget_files+0x43d/0x4b0
[  420.400361][ T8068]  ? __fdget_pos+0x1d8/0x330
[  420.404977][ T8068]  ? ksys_write+0x75/0x260
[  420.409448][ T8068]  ksys_write+0x150/0x260
[  420.413805][ T8068]  ? __ia32_sys_read+0x90/0x90
[  420.418586][ T8068]  ? lockdep_hardirqs_on+0x98/0x150
[  420.423899][ T8068]  do_syscall_64+0x55/0xa0
[  420.428350][ T8068]  ? clear_bhb_loop+0x40/0x90
[  420.433056][ T8068]  ? clear_bhb_loop+0x40/0x90
[  420.437753][ T8068]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.443660][ T8068] RIP: 0033:0x7fcb7a59c799
[  420.448087][ T8068] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  420.467708][ T8068] RSP: 002b:00007fcb7b476028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  420.476239][ T8068] RAX: ffffffffffffffda RBX: 00007fcb7a815fa0 RCX: 00007fcb7a59c799
[  420.484266][ T8068] RDX: 000000000000000d RSI: 0000200000000000 RDI: 0000000000000004
[  420.492265][ T8068] RBP: 00007fcb7b476090 R08: 0000000000000000 R09: 0000000000000000
[  420.500316][ T8068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  420.508311][ T8068] R13: 00007fcb7a816038 R14: 00007fcb7a815fa0 R15: 00007fffae1543d8
[  420.516319][ T8068]  </TASK>
[  420.653283][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.318793][ T7991] kernel write not supported for file /vcsa (pid: 7991 comm: kworker/1:18)
[  422.378533][ T8078] loop4: detected capacity change from 0 to 256
[  423.733525][ T8085] loop3: detected capacity change from 0 to 128
[  423.799229][ T8085] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  423.861654][ T8085] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  423.887240][ T8085] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  423.924433][ T8085] UDF-fs: Scanning with blocksize 512 failed
[  423.951361][ T8085] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  423.976684][ T8085] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512
[  424.002019][ T8085] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  424.009742][ T8085] UDF-fs: Scanning with blocksize 1024 failed
[  424.035405][ T8085] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  424.054310][ T8085] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512
[  424.071751][ T8085] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  424.079547][ T8085] UDF-fs: Scanning with blocksize 2048 failed
[  424.102753][ T8085] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  424.127519][ T8085] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512
[  424.151900][ T8085] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  424.159696][ T8085] UDF-fs: Scanning with blocksize 4096 failed
[  424.172058][ T7991] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  424.179993][ T8085] UDF-fs: warning (device loop3): udf_fill_super: No partition found (1)
[  424.315172][ T8085] loop3: detected capacity change from 0 to 512
[  424.371657][ T7991] usb 5-1: Using ep0 maxpacket: 8
[  424.382692][ T8085] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  424.403380][ T7991] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  424.431608][ T7991] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  424.441431][ T7991] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  424.472755][ T8085] EXT4-fs (loop3): can't mount with data_err=abort, fs mounted w/o journal
[  424.511846][ T7991] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  424.552639][ T7991] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  424.591674][ T7991] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  424.856916][ T7991] usb 5-1: GET_CAPABILITIES returned 0
[  424.871884][ T7991] usbtmc 5-1:16.0: can't read capabilities
[  425.165906][ T8103] FAULT_INJECTION: forcing a failure.
[  425.165906][ T8103] name failslab, interval 1, probability 0, space 0, times 0
[  425.224408][ T8103] CPU: 0 PID: 8103 Comm: syz.1.460 Not tainted syzkaller #0
[  425.231870][ T8103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  425.241975][ T8103] Call Trace:
[  425.245303][ T8103]  <TASK>
[  425.248365][ T8103]  dump_stack_lvl+0x18c/0x250
[  425.253116][ T8103]  ? show_regs_print_info+0x20/0x20
[  425.258561][ T8103]  ? load_image+0x400/0x400
[  425.263122][ T8103]  ? __might_sleep+0xe0/0xe0
[  425.267774][ T8103]  ? __lock_acquire+0x7d40/0x7d40
[  425.272941][ T8103]  should_fail_ex+0x39d/0x4d0
[  425.277686][ T8103]  should_failslab+0x9/0x20
[  425.282248][ T8103]  slab_pre_alloc_hook+0x59/0x310
[  425.287331][ T8103]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  425.293098][ T8103]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  425.298861][ T8103]  __kmem_cache_alloc_node+0x53/0x250
[  425.304356][ T8103]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  425.310121][ T8103]  __kmalloc+0xa4/0x230
[  425.314333][ T8103]  tomoyo_realpath_from_path+0xe3/0x5d0
[  425.319945][ T8103]  tomoyo_path_number_perm+0x248/0x620
[  425.325467][ T8103]  ? tomoyo_path_number_perm+0x217/0x620
[  425.331157][ T8103]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  425.336682][ T8103]  ? ksys_write+0x1c4/0x260
[  425.341279][ T8103]  ? __fget_files+0x28/0x4b0
[  425.345918][ T8103]  ? __fget_files+0x28/0x4b0
[  425.350597][ T8103]  security_file_ioctl+0x70/0xa0
[  425.355594][ T8103]  __se_sys_ioctl+0x48/0x170
[  425.360237][ T8103]  do_syscall_64+0x55/0xa0
[  425.364709][ T8103]  ? clear_bhb_loop+0x40/0x90
[  425.369452][ T8103]  ? clear_bhb_loop+0x40/0x90
[  425.374188][ T8103]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  425.380155][ T8103] RIP: 0033:0x7f54db99c799
[  425.384651][ T8103] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  425.404384][ T8103] RSP: 002b:00007f54dc8e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  425.412907][ T8103] RAX: ffffffffffffffda RBX: 00007f54dbc15fa0 RCX: 00007f54db99c799
[  425.420975][ T8103] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  425.429009][ T8103] RBP: 00007f54dc8e3090 R08: 0000000000000000 R09: 0000000000000000
[  425.437118][ T8103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.445148][ T8103] R13: 00007f54dbc16038 R14: 00007f54dbc15fa0 R15: 00007ffd395419d8
[  425.453189][ T8103]  </TASK>
[  425.477862][ T8103] ERROR: Out of memory at tomoyo_realpath_from_path.
[  425.619676][ T8113] can0: slcan on ttyS3.
[  425.842060][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.851674][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.861263][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.871411][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.880999][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.890581][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.900511][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.910811][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.920596][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.930520][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.940151][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.949993][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.959999][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.969597][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.979513][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  425.989589][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  426.062236][ T8113] can0 (unregistered): slcan off ttyS3.
[  426.533727][ T8121] autofs4:pid:8121:autofs_fill_super: called with bogus options
[  426.547394][ T8120] FAULT_INJECTION: forcing a failure.
[  426.547394][ T8120] name failslab, interval 1, probability 0, space 0, times 0
[  426.575366][ T8120] CPU: 0 PID: 8120 Comm: syz.1.465 Not tainted syzkaller #0
[  426.582737][ T8120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  426.592849][ T8120] Call Trace:
[  426.596175][ T8120]  <TASK>
[  426.599156][ T8120]  dump_stack_lvl+0x18c/0x250
[  426.603903][ T8120]  ? show_regs_print_info+0x20/0x20
[  426.609171][ T8120]  ? load_image+0x400/0x400
[  426.613754][ T8120]  ? __might_sleep+0xe0/0xe0
[  426.618501][ T8120]  ? __lock_acquire+0x7d40/0x7d40
[  426.623589][ T8120]  should_fail_ex+0x39d/0x4d0
[  426.628343][ T8120]  should_failslab+0x9/0x20
[  426.632912][ T8120]  slab_pre_alloc_hook+0x59/0x310
[  426.638063][ T8120]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  426.643851][ T8120]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  426.649628][ T8120]  __kmem_cache_alloc_node+0x53/0x250
[  426.655087][ T8120]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  426.660865][ T8120]  __kmalloc+0xa4/0x230
[  426.665180][ T8120]  tomoyo_realpath_from_path+0xe3/0x5d0
[  426.670796][ T8120]  tomoyo_path_number_perm+0x248/0x620
[  426.676336][ T8120]  ? tomoyo_path_number_perm+0x217/0x620
[  426.682035][ T8120]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  426.687551][ T8120]  ? __seccomp_filter+0x48b/0x1c90
[  426.692777][ T8120]  ? __fget_files+0x28/0x4b0
[  426.697427][ T8120]  ? __fget_files+0x28/0x4b0
[  426.702092][ T8120]  security_file_ioctl+0x70/0xa0
[  426.707107][ T8120]  __se_sys_ioctl+0x48/0x170
[  426.711755][ T8120]  do_syscall_64+0x55/0xa0
[  426.716232][ T8120]  ? clear_bhb_loop+0x40/0x90
[  426.720957][ T8120]  ? clear_bhb_loop+0x40/0x90
[  426.725700][ T8120]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  426.731694][ T8120] RIP: 0033:0x7f54db99c799
[  426.736340][ T8120] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  426.755998][ T8120] RSP: 002b:00007f54dc8e3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  426.764476][ T8120] RAX: ffffffffffffffda RBX: 00007f54dbc15fa0 RCX: 00007f54db99c799
[  426.772681][ T8120] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  426.780729][ T8120] RBP: 00007f54dc8e3090 R08: 0000000000000000 R09: 0000000000000000
[  426.788838][ T8120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  426.796864][ T8120] R13: 00007f54dbc16038 R14: 00007f54dbc15fa0 R15: 00007ffd395419d8
[  426.804937][ T8120]  </TASK>
[  426.811169][ T8120] ERROR: Out of memory at tomoyo_realpath_from_path.
[  428.658358][ T5812] usb 5-1: USB disconnect, device number 20
[  429.989910][ T8137] damon-dbgfs: DAMON debugfs interface is deprecated, so users should move to DAMON_SYSFS. If you cannot, please report your usecase to damon@lists.linux.dev and linux-mm@kvack.org.
[  430.558631][ T8135] loop4: detected capacity change from 0 to 32768
[  430.586203][ T8135] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 scanned by syz.4.471 (8135)
[  430.673496][ T8135] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  430.701643][ T8135] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  430.712475][ T8135] BTRFS info (device loop4): force zlib compression, level 3
[  430.721845][ T8135] BTRFS info (device loop4): force clearing of disk cache
[  430.729036][ T8135] BTRFS info (device loop4): setting nodatasum
[  430.753173][ T8135] BTRFS info (device loop4): allowing degraded mounts
[  430.760310][ T8135] BTRFS info (device loop4): enabling disk space caching
[  430.782683][ T8135] BTRFS info (device loop4): disk space caching is enabled
[  431.050875][ T8139] loop0: detected capacity change from 0 to 32768
[  431.061900][ T8135] BTRFS info (device loop4): auto enabling async discard
[  431.109950][ T8135] BTRFS info (device loop4): rebuilding free space tree
[  431.229662][ T5812] kernel write not supported for file /vcsa (pid: 5812 comm: kworker/1:5)
[  431.280795][ T8135] BTRFS info (device loop4): disabling free space tree
[  431.288843][ T8135] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  431.301237][ T8135] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  431.423227][ T8135] BTRFS error (device loop4): balance: mixed groups data and metadata options must be the same
[  433.186884][ T5812] IPVS: starting estimator thread 0...
[  433.281839][ T8173] IPVS: using max 16 ests per chain, 38400 per kthread
[  433.707033][ T8159] loop1: detected capacity change from 0 to 32768
[  433.751307][ T8159] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by syz.1.472 (8159)
[  433.836002][ T7880] I/O error, dev loop1, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  436.111798][ T6568] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  436.312004][ T6568] usb 4-1: Using ep0 maxpacket: 8
[  436.323771][ T6568] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  436.342182][ T6568] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  436.376951][ T6568] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  436.399060][ T6568] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  436.429654][ T6568] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  436.465234][ T6568] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  436.715169][ T6568] usb 4-1: GET_CAPABILITIES returned 0
[  436.740997][ T6568] usbtmc 4-1:16.0: can't read capabilities
[  437.088735][ T5993] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  437.182196][ T8193] can0: slcan on ttyS3.
[  437.388823][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.398738][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.408654][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.418310][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.428318][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.437990][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.447778][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.457760][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.467445][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.476962][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.486910][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.496514][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.506263][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.516203][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.526124][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  437.535718][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  439.902838][ T8193] can0 (unregistered): slcan off ttyS3.
[  440.018612][ T5812] usb 4-1: USB disconnect, device number 23
[  440.426999][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  440.433846][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  440.664498][ T8215] loop4: detected capacity change from 0 to 256
[  440.704978][ T7880] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  440.727967][ T8215] tmpfs: Bad value for 'mpol'
[  440.943148][ T8217] input: syz0 as /devices/virtual/input/input14
[  441.133733][ T8224] loop3: detected capacity change from 0 to 8
[  441.167201][ T5812] kernel write not supported for file /vcsa (pid: 5812 comm: kworker/1:5)
[  442.057740][ T8228] can0: slcan on ptm0.
[  442.264958][ T8227] can0 (unregistered): slcan off ptm0.
[  442.353054][ T8234] FAULT_INJECTION: forcing a failure.
[  442.353054][ T8234] name failslab, interval 1, probability 0, space 0, times 0
[  442.407899][ T8234] CPU: 0 PID: 8234 Comm: syz.4.493 Not tainted syzkaller #0
[  442.415264][ T8234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  442.425373][ T8234] Call Trace:
[  442.428723][ T8234]  <TASK>
[  442.431708][ T8234]  dump_stack_lvl+0x18c/0x250
[  442.436672][ T8234]  ? show_regs_print_info+0x20/0x20
[  442.442041][ T8234]  ? load_image+0x400/0x400
[  442.446745][ T8234]  ? __might_sleep+0xe0/0xe0
[  442.451398][ T8234]  ? __lock_acquire+0x7d40/0x7d40
[  442.456508][ T8234]  should_fail_ex+0x39d/0x4d0
[  442.461259][ T8234]  should_failslab+0x9/0x20
[  442.465823][ T8234]  slab_pre_alloc_hook+0x59/0x310
[  442.470914][ T8234]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  442.476693][ T8234]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  442.482479][ T8234]  __kmem_cache_alloc_node+0x53/0x250
[  442.487922][ T8234]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  442.493704][ T8234]  __kmalloc+0xa4/0x230
[  442.497932][ T8234]  tomoyo_realpath_from_path+0xe3/0x5d0
[  442.503556][ T8234]  tomoyo_path_number_perm+0x248/0x620
[  442.509095][ T8234]  ? tomoyo_path_number_perm+0x217/0x620
[  442.514796][ T8234]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  442.520471][ T8234]  ? ksys_write+0x1c4/0x260
[  442.525099][ T8234]  ? __fget_files+0x28/0x4b0
[  442.527416][ T8237] fuse: Bad value for 'fd'
[  442.529818][ T8234]  ? __fget_files+0x28/0x4b0
[  442.529867][ T8234]  security_file_ioctl+0x70/0xa0
[  442.543894][ T8234]  __se_sys_ioctl+0x48/0x170
[  442.548646][ T8234]  do_syscall_64+0x55/0xa0
[  442.553127][ T8234]  ? clear_bhb_loop+0x40/0x90
[  442.557947][ T8234]  ? clear_bhb_loop+0x40/0x90
[  442.562686][ T8234]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  442.568618][ T8234] RIP: 0033:0x7fcb7a59c799
[  442.573079][ T8234] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  442.592809][ T8234] RSP: 002b:00007fcb7b476028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  442.601266][ T8234] RAX: ffffffffffffffda RBX: 00007fcb7a815fa0 RCX: 00007fcb7a59c799
[  442.609352][ T8234] RDX: 0000000000000000 RSI: 0000000080104d12 RDI: 0000000000000004
[  442.617370][ T8234] RBP: 00007fcb7b476090 R08: 0000000000000000 R09: 0000000000000000
[  442.625382][ T8234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.633430][ T8234] R13: 00007fcb7a816038 R14: 00007fcb7a815fa0 R15: 00007fffae1543d8
[  442.641478][ T8234]  </TASK>
[  442.671404][ T8234] ERROR: Out of memory at tomoyo_realpath_from_path.
[  444.096647][ T8244] netlink: 4 bytes leftover after parsing attributes in process `syz.4.497'.
[  444.666099][ T8245] can0: slcan on ptm0.
[  444.823074][ T8243] can0 (unregistered): slcan off ptm0.
[  445.313441][ T8252] loop4: detected capacity change from 0 to 1024
[  445.339191][ T8252] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  445.423350][ T8252] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  446.715494][ T5993] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.731596][ T5812] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  446.857421][ T8268] FAULT_INJECTION: forcing a failure.
[  446.857421][ T8268] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  446.906455][ T8268] CPU: 1 PID: 8268 Comm: syz.3.501 Not tainted syzkaller #0
[  446.913916][ T8268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  446.924042][ T8268] Call Trace:
[  446.927380][ T8268]  <TASK>
[  446.930362][ T8268]  dump_stack_lvl+0x18c/0x250
[  446.935111][ T8268]  ? show_regs_print_info+0x20/0x20
[  446.940377][ T8268]  ? load_image+0x400/0x400
[  446.944941][ T8268]  ? __might_fault+0xaa/0x120
[  446.949711][ T8268]  ? __lock_acquire+0x7d40/0x7d40
[  446.954980][ T8268]  should_fail_ex+0x39d/0x4d0
[  446.959736][ T8268]  _copy_from_user+0x2f/0xe0
[  446.964398][ T8268]  kstrtouint_from_user+0xde/0x170
[  446.969670][ T8268]  ? kstrtol_from_user+0x190/0x190
[  446.974876][ T8268]  proc_fail_nth_write+0x8f/0x250
[  446.979989][ T8268]  ? proc_fail_nth_read+0x260/0x260
[  446.985244][ T8268]  ? proc_fail_nth_read+0x260/0x260
[  446.990578][ T8268]  vfs_write+0x296/0x990
[  446.994872][ T8268]  ? file_end_write+0x250/0x250
[  446.999775][ T8268]  ? __fget_files+0x28/0x4b0
[  447.004431][ T8268]  ? __fget_files+0x28/0x4b0
[  447.009064][ T8268]  ? __fget_files+0x43d/0x4b0
[  447.013807][ T8268]  ? __fdget_pos+0x2a3/0x330
[  447.018431][ T8268]  ? ksys_write+0x75/0x260
[  447.022918][ T8268]  ksys_write+0x150/0x260
[  447.027287][ T8268]  ? __ia32_sys_read+0x90/0x90
[  447.032091][ T8268]  ? lockdep_hardirqs_on+0x98/0x150
[  447.037320][ T8268]  do_syscall_64+0x55/0xa0
[  447.041769][ T8268]  ? clear_bhb_loop+0x40/0x90
[  447.046477][ T8268]  ? clear_bhb_loop+0x40/0x90
[  447.051185][ T8268]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  447.057113][ T8268] RIP: 0033:0x7fad4e15cfce
[  447.061571][ T8268] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  447.081219][ T8268] RSP: 002b:00007fad4f06afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  447.089672][ T8268] RAX: ffffffffffffffda RBX: 00007fad4f06b6c0 RCX: 00007fad4e15cfce
[  447.097854][ T8268] RDX: 0000000000000001 RSI: 00007fad4f06b0a0 RDI: 0000000000000005
[  447.106142][ T8268] RBP: 00007fad4f06b090 R08: 0000000000000000 R09: 0000000000000000
[  447.114139][ T8268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  447.122136][ T8268] R13: 00007fad4e416038 R14: 00007fad4e415fa0 R15: 00007ffe7b3ca268
[  447.130175][ T8268]  </TASK>
[  447.191873][ T5812] usb 1-1: Using ep0 maxpacket: 32
[  447.633614][ T8277] autofs4:pid:8277:autofs_fill_super: called with bogus options
[  448.029958][ T5812] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  448.049238][ T5812] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  448.063515][ T5812] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  448.073011][ T5812] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  448.081415][ T5812] usb 1-1: Product: syz
[  448.086227][ T5812] usb 1-1: Manufacturer: syz
[  448.105945][ T5812] hub 1-1:4.0: USB hub found
Stopping sshd: [  448.475900][ T5812] hub 1-1:4.0: config failed, can't read hub descriptor (err -22)
[  449.251669][ T5812] usb 1-1: USB disconnect, device number 19
stopped /usr/sbin/sshd (pid 5530)
OK
[  449.469106][ T8302] FAULT_INJECTION: forcing a failure.
[  449.469106][ T8302] name failslab, interval 1, probability 0, space 0, times 0
[  449.482297][ T8302] CPU: 0 PID: 8302 Comm: syz.3.506 Not tainted syzkaller #0
[  449.489769][ T8302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  449.499886][ T8302] Call Trace:
[  449.503285][ T8302]  <TASK>
[  449.506243][ T8302]  dump_stack_lvl+0x18c/0x250
[  449.510974][ T8302]  ? show_regs_print_info+0x20/0x20
[  449.516558][ T8302]  ? load_image+0x400/0x400
[  449.521188][ T8302]  ? __might_sleep+0xe0/0xe0
[  449.525817][ T8302]  ? __lock_acquire+0x7d40/0x7d40
[  449.530916][ T8302]  ? mark_lock+0x94/0x320
[  449.535291][ T8302]  should_fail_ex+0x39d/0x4d0
[  449.540018][ T8302]  should_failslab+0x9/0x20
[  449.544580][ T8302]  slab_pre_alloc_hook+0x59/0x310
[  449.549674][ T8302]  ? __get_vm_area_node+0x125/0x370
[  449.555005][ T8302]  __kmem_cache_alloc_node+0x53/0x250
[  449.560501][ T8302]  ? __get_vm_area_node+0x125/0x370
[  449.565829][ T8302]  kmalloc_node_trace+0x26/0xe0
[  449.570916][ T8302]  __get_vm_area_node+0x125/0x370
[  449.575976][ T8302]  __vmalloc_node_range+0x36e/0x1330
[  449.581300][ T8302]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  449.586875][ T8302]  ? mark_lock+0x94/0x320
[  449.591326][ T8302]  ? __lock_acquire+0x1347/0x7d40
[  449.596386][ T8302]  ? verify_lock_unused+0x140/0x140
[  449.601631][ T8302]  ? free_vm_area+0x50/0x50
[  449.606175][ T8302]  ? end_current_label_crit_section+0x170/0x170
[  449.612496][ T8302]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  449.618097][ T8302]  __vmalloc+0x7a/0x90
[  449.622204][ T8302]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  449.627793][ T8302]  bpf_prog_alloc_no_stats+0x47/0x440
[  449.633211][ T8302]  ? bpf_prog_alloc+0x2b/0x1a0
[  449.638005][ T8302]  bpf_prog_alloc+0x3d/0x1a0
[  449.642634][ T8302]  bpf_prog_load+0x6eb/0x1670
[  449.647360][ T8302]  ? map_freeze+0x420/0x420
[  449.651995][ T8302]  ? __might_fault+0xaa/0x120
[  449.656724][ T8302]  ? __lock_acquire+0x7d40/0x7d40
[  449.661781][ T8302]  ? file_end_write+0x159/0x250
[  449.666682][ T8302]  ? __might_fault+0xaa/0x120
[  449.671410][ T8302]  ? __might_fault+0xc6/0x120
[  449.676146][ T8302]  ? __might_fault+0xaa/0x120
[  449.680895][ T8302]  ? bpf_lsm_bpf+0x9/0x10
[  449.685277][ T8302]  ? security_bpf+0x7e/0xa0
[  449.689836][ T8302]  __sys_bpf+0x5ba/0x890
[  449.694135][ T8302]  ? bpf_link_show_fdinfo+0x390/0x390
[  449.699558][ T8302]  ? lock_chain_count+0x20/0x20
[  449.704497][ T8302]  __x64_sys_bpf+0x7c/0x90
[  449.708948][ T8302]  do_syscall_64+0x55/0xa0
[  449.713469][ T8302]  ? clear_bhb_loop+0x40/0x90
[  449.718186][ T8302]  ? clear_bhb_loop+0x40/0x90
[  449.722896][ T8302]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  449.728820][ T8302] RIP: 0033:0x7fad4e19c799
[  449.733357][ T8302] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  449.753007][ T8302] RSP: 002b:00007fad4f029028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  449.762860][ T8302] RAX: ffffffffffffffda RBX: 00007fad4e416180 RCX: 00007fad4e19c799
[  449.770965][ T8302] RDX: 0000000000000094 RSI: 0000200000000840 RDI: 0000000000000005
[  449.778997][ T8302] RBP: 00007fad4f029090 R08: 0000000000000000 R09: 0000000000000000
[  449.787012][ T8302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  449.795020][ T8302] R13: 00007fad4e416218 R14: 00007fad4e416180 R15: 00007ffe7b3ca268
[  449.803219][ T8302]  </TASK>
[  449.808406][ T8302] syz.3.506: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  449.824836][ T8302] CPU: 0 PID: 8302 Comm: syz.3.506 Not tainted syzkaller #0
[  449.832253][ T8302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  449.842350][ T8302] Call Trace:
[  449.845766][ T8302]  <TASK>
[  449.848772][ T8302]  dump_stack_lvl+0x18c/0x250
[  449.853601][ T8302]  ? show_regs_print_info+0x20/0x20
[  449.858841][ T8302]  ? load_image+0x400/0x400
[  449.863382][ T8302]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  449.869836][ T8302]  ? cpuset_print_current_mems_allowed+0x2e7/0x360
[  449.876387][ T8302]  warn_alloc+0x246/0x340
[  449.880779][ T8302]  ? __get_vm_area_node+0x125/0x370
[  449.886044][ T8302]  ? zone_watermark_ok_safe+0x230/0x230
[  449.891640][ T8302]  ? rcu_is_watching+0x15/0xb0
[  449.896476][ T8302]  ? __get_vm_area_node+0x356/0x370
[  449.901732][ T8302]  __vmalloc_node_range+0x393/0x1330
[  449.907069][ T8302]  ? mark_lock+0x94/0x320
[  449.911538][ T8302]  ? __lock_acquire+0x1347/0x7d40
[  449.916726][ T8302]  ? verify_lock_unused+0x140/0x140
[  449.921975][ T8302]  ? free_vm_area+0x50/0x50
[  449.926705][ T8302]  ? end_current_label_crit_section+0x170/0x170
[  449.933079][ T8302]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  449.938653][ T8302]  __vmalloc+0x7a/0x90
[  449.942761][ T8302]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  449.948340][ T8302]  bpf_prog_alloc_no_stats+0x47/0x440
[  449.953787][ T8302]  ? bpf_prog_alloc+0x2b/0x1a0
[  449.958688][ T8302]  bpf_prog_alloc+0x3d/0x1a0
[  449.963322][ T8302]  bpf_prog_load+0x6eb/0x1670
[  449.968047][ T8302]  ? map_freeze+0x420/0x420
[  449.972594][ T8302]  ? __might_fault+0xaa/0x120
[  449.977306][ T8302]  ? __lock_acquire+0x7d40/0x7d40
[  449.982377][ T8302]  ? file_end_write+0x159/0x250
[  449.987268][ T8302]  ? __might_fault+0xaa/0x120
[  449.992064][ T8302]  ? __might_fault+0xc6/0x120
[  449.996775][ T8302]  ? __might_fault+0xaa/0x120
[  450.001475][ T8302]  ? bpf_lsm_bpf+0x9/0x10
[  450.005852][ T8302]  ? security_bpf+0x7e/0xa0
[  450.010385][ T8302]  __sys_bpf+0x5ba/0x890
[  450.014752][ T8302]  ? bpf_link_show_fdinfo+0x390/0x390
[  450.020168][ T8302]  ? lock_chain_count+0x20/0x20
[  450.025055][ T8302]  __x64_sys_bpf+0x7c/0x90
[  450.029504][ T8302]  do_syscall_64+0x55/0xa0
[  450.033950][ T8302]  ? clear_bhb_loop+0x40/0x90
[  450.038666][ T8302]  ? clear_bhb_loop+0x40/0x90
[  450.043405][ T8302]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  450.049334][ T8302] RIP: 0033:0x7fad4e19c799
[  450.053789][ T8302] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  450.073518][ T8302] RSP: 002b:00007fad4f029028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  450.081963][ T8302] RAX: ffffffffffffffda RBX: 00007fad4e416180 RCX: 00007fad4e19c799
[  450.089964][ T8302] RDX: 0000000000000094 RSI: 0000200000000840 RDI: 0000000000000005
[  450.097957][ T8302] RBP: 00007fad4f029090 R08: 0000000000000000 R09: 0000000000000000
[  450.105986][ T8302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  450.113989][ T8302] R13: 00007fad4e416218 R14: 00007fad4e416180 R15: 00007ffe7b3ca268
[  450.122089][ T8302]  </TASK>
[  450.127885][ T8302] Mem-Info:
[  450.131093][ T8302] active_anon:8386 inactive_anon:0 isolated_anon:0
[  450.131093][ T8302]  active_file:24534 inactive_file:40489 isolated_file:0
[  450.131093][ T8302]  unevictable:0 dirty:20 writeback:0
[  450.131093][ T8302]  slab_reclaimable:11840 slab_unreclaimable:92354
[  450.131093][ T8302]  mapped:27365 shmem:2956 pagetables:716
[  450.131093][ T8302]  sec_pagetables:0 bounce:0
[  450.131093][ T8302]  kernel_misc_reclaimable:0
[  450.131093][ T8302]  free:1336457 free_pcp:10347 free_cma:0
[  450.176546][ T8302] Node 0 active_anon:32008kB inactive_anon:0kB active_file:98136kB inactive_file:161752kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:109460kB dirty:80kB writeback:0kB shmem:10288kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11996kB pagetables:2864kB sec_pagetables:0kB all_unreclaimable? no
[  450.209218][ T8302] Node 1 active_anon:1536kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  450.240040][ T8302] Node 0 DMA free:15328kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  450.268169][ T8302] lowmem_reserve[]: 0 2521 2522 2522 2522
[  450.274061][ T8302] Node 0 DMA32 free:1441628kB boost:0kB min:34644kB low:43304kB high:51964kB reserved_highatomic:0KB active_anon:32068kB inactive_anon:0kB active_file:98136kB inactive_file:160932kB unevictable:0kB writepending:80kB present:3129332kB managed:2586964kB mlocked:0kB bounce:0kB free_pcp:18668kB local_pcp:6132kB free_cma:0kB
[  450.304820][ T8302] lowmem_reserve[]: 0 0 0 0 0
[  450.309628][ T8302] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:820kB unevictable:0kB writepending:0kB present:1048576kB managed:872kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:0kB free_cma:0kB
[  450.336971][ T8302] lowmem_reserve[]: 0 0 0 0 0
[  450.341899][ T8302] Node 1 Normal free:3888872kB boost:0kB min:55244kB low:69052kB high:82860kB reserved_highatomic:0KB active_anon:1536kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:0kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:22688kB local_pcp:15104kB free_cma:0kB
[  450.371994][ T8302] lowmem_reserve[]: 0 0 0 0 0
[  450.376797][ T8302] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 1*2048kB (M) 3*4096kB (M) = 15328kB
[  450.391051][ T8302] Node 0 DMA32: 823*4kB (U) 1578*8kB (UM) 1233*16kB (UM) 873*32kB (UM) 322*64kB (UME) 139*128kB (UM) 107*256kB (UME) 63*512kB (UME) 28*1024kB (UM) 17*2048kB (UM) 297*4096kB (UM) = 1441628kB
[  450.410401][ T8302] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  450.422073][ T8302] Node 1 Normal: 254*4kB (UM) 56*8kB (UME) 47*16kB (UME) 80*32kB (UME) 23*64kB (UME) 13*128kB (UME) 2*256kB (ME) 1*512kB (E) 1*1024kB (U) 2*2048kB (UE) 946*4096kB (M) = 3888872kB
[  450.440471][ T8302] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  450.450133][ T8302] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  450.459509][ T8302] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  450.469806][ T8302] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  450.479192][ T8302] 67960 total pagecache pages
[  450.484047][ T8302] 0 pages in swap cache
[  450.488244][ T8302] Free swap  = 124672kB
[  450.492823][ T8302] Total swap = 124996kB
[  450.497031][ T8302] 2097051 pages RAM
[  450.500912][ T8302] 0 pages HighMem/MovableOnly
[  450.505717][ T8302] 416924 pages reserved
[  450.509949][ T8302] 0 pages cma reserved
Stopping crond: [  450.927852][ T8304] FAULT_INJECTION: forcing a failure.
[  450.927852][ T8304] name failslab, interval 1, probability 0, space 0, times 0
[  450.971961][ T8304] CPU: 1 PID: 8304 Comm: syz.0.508 Not tainted syzkaller #0
[  450.979338][ T8304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  450.989439][ T8304] Call Trace:
[  450.992764][ T8304]  <TASK>
[  450.995737][ T8304]  dump_stack_lvl+0x18c/0x250
[  451.000483][ T8304]  ? show_regs_print_info+0x20/0x20
[  451.005744][ T8304]  ? load_image+0x400/0x400
[  451.010305][ T8304]  ? __might_sleep+0xe0/0xe0
[  451.014941][ T8304]  ? __lock_acquire+0x7d40/0x7d40
[  451.020012][ T8304]  ? prepend_path+0x4b/0x960
[  451.024660][ T8304]  should_fail_ex+0x39d/0x4d0
[  451.029440][ T8304]  should_failslab+0x9/0x20
[  451.034066][ T8304]  slab_pre_alloc_hook+0x59/0x310
[  451.039156][ T8304]  ? __asan_memcpy+0x40/0x70
[  451.043798][ T8304]  ? tomoyo_encode+0x28b/0x540
[  451.048601][ T8304]  ? tomoyo_encode+0x28b/0x540
[  451.053415][ T8304]  __kmem_cache_alloc_node+0x53/0x250
[  451.058849][ T8304]  ? prepend_path+0x4b/0x960
[  451.063497][ T8304]  ? tomoyo_encode+0x28b/0x540
[  451.070921][ T8304]  __kmalloc+0xa4/0x230
[  451.075795][ T8304]  tomoyo_encode+0x28b/0x540
[  451.080440][ T8304]  tomoyo_realpath_from_path+0x592/0x5d0
[  451.086148][ T8304]  tomoyo_path_number_perm+0x248/0x620
[  451.091681][ T8304]  ? tomoyo_path_number_perm+0x217/0x620
[  451.097640][ T8304]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  451.103181][ T8304]  ? ksys_write+0x1c4/0x260
[  451.107815][ T8304]  ? __fget_files+0x28/0x4b0
[  451.112477][ T8304]  ? __fget_files+0x28/0x4b0
[  451.117142][ T8304]  security_file_ioctl+0x70/0xa0
[  451.122144][ T8304]  __se_sys_ioctl+0x48/0x170
[  451.126781][ T8304]  do_syscall_64+0x55/0xa0
[  451.131243][ T8304]  ? clear_bhb_loop+0x40/0x90
[  451.136068][ T8304]  ? clear_bhb_loop+0x40/0x90
[  451.140804][ T8304]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  451.146883][ T8304] RIP: 0033:0x7f1becd9c799
[  451.151349][ T8304] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  451.172146][ T8304] RSP: 002b:00007f1bedc19028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  451.180591][ T8304] RAX: ffffffffffffffda RBX: 00007f1bed015fa0 RCX: 00007f1becd9c799
[  451.188576][ T8304] RDX: 0000200000000040 RSI: 00000000c0045516 RDI: 0000000000000003
[  451.196574][ T8304] RBP: 00007f1bedc19090 R08: 0000000000000000 R09: 0000000000000000
[  451.204566][ T8304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  451.212568][ T8304] R13: 00007f1bed016038 R14: 00007f1bed015fa0 R15: 00007ffda80c2ed8
[  451.220565][ T8304]  </TASK>
stopped /usr/sbin/crond (pid 5514)
[  451.353882][ T8304] ERROR: Out of memory at tomoyo_realpath_from_path.
OK
[  451.666537][ T8312] loop1: detected capacity change from 0 to 1024
[  451.746693][ T8297] loop4: detected capacity change from 0 to 40427
[  451.786297][ T8312] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  451.801589][ T8297] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  451.809458][ T8297] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
Stopping dhcpcd...
stopped /sbin/dh[  451.931999][ T6568] usb 1-1: new high-speed USB device number 20 using dummy_hcd
cpcd (pid 5433)
[  451.952118][ T8297] F2FS-fs (loop4): invalid crc value
[  452.022716][ T8297] F2FS-fs (loop4): Found nat_bits in checkpoint
[  452.323895][ T6568] usb 1-1: Using ep0 maxpacket: 8
[  452.467877][ T6568] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  452.654859][ T6568] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  452.720306][ T6568] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  452.792098][ T6568] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  452.864693][ T6568] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  452.891196][ T6568] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  452.902940][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
Stopping network: [  453.161714][ T6568] usb 1-1: GET_CAPABILITIES returned 0
[  453.167316][ T6568] usbtmc 1-1:16.0: can't read capabilities
[  453.305235][ T8307] loop3: detected capacity change from 0 to 32768
[  453.426385][ T8307] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  453.630002][ T8347] loop1: detected capacity change from 0 to 1024
[  453.742180][ T8349] can0: slcan on ttyS3.
[  453.968888][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  453.978751][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  453.988513][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  453.998500][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.008130][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.018014][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.028082][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.037589][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.047098][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.057394][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.066910][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.076396][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.086568][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.096466][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.106110][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.116010][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  454.492387][ T8307] XFS (loop3): Ending clean mount
[  454.508069][ T8347] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  454.524153][ T8349] can0 (unregistered): slcan off ttyS3.
[  454.755504][ T8359] FAULT_INJECTION: forcing a failure.
[  454.755504][ T8359] name failslab, interval 1, probability 0, space 0, times 0
[  454.770172][ T8359] CPU: 0 PID: 8359 Comm: syz.1.514 Not tainted syzkaller #0
[  454.777523][ T8359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  454.788349][ T8359] Call Trace:
[  454.791768][ T8359]  <TASK>
[  454.794742][ T8359]  dump_stack_lvl+0x18c/0x250
[  454.799490][ T8359]  ? show_regs_print_info+0x20/0x20
[  454.804764][ T8359]  ? load_image+0x400/0x400
[  454.809327][ T8359]  ? __lock_acquire+0x7d40/0x7d40
[  454.814414][ T8359]  should_fail_ex+0x39d/0x4d0
[  454.819207][ T8359]  should_failslab+0x9/0x20
[  454.823774][ T8359]  slab_pre_alloc_hook+0x59/0x310
[  454.828858][ T8359]  ? lock_chain_count+0x20/0x20
[  454.833765][ T8359]  ? ext4_find_extent+0x36b/0xe00
[  454.838864][ T8359]  ? ext4_find_extent+0x36b/0xe00
[  454.844003][ T8359]  __kmem_cache_alloc_node+0x53/0x250
[  454.849551][ T8359]  ? ext4_find_extent+0x36b/0xe00
[  454.854642][ T8359]  __kmalloc+0xa4/0x230
[  454.858871][ T8359]  ext4_find_extent+0x36b/0xe00
[  454.863805][ T8359]  ? ext4_ext_map_blocks+0x21e/0x6570
[  454.869269][ T8359]  ext4_ext_map_blocks+0x285/0x6570
[  454.874540][ T8359]  ? verify_lock_unused+0x140/0x140
[  454.879797][ T8359]  ? mark_lock+0x94/0x320
[  454.884182][ T8359]  ? lock_chain_count+0x20/0x20
[  454.889085][ T8359]  ? ext4_ext_release+0x10/0x10
[  454.893981][ T8359]  ? __schedule+0x155b/0x45a0
[  454.898698][ T8359]  ? __might_sleep+0xe0/0xe0
[  454.903342][ T8359]  ? down_read+0x1ac/0x2e0
[  454.907788][ T8359]  ext4_map_blocks+0x3ac/0x1b80
[  454.912688][ T8359]  ? ext4_issue_zeroout+0x250/0x250
[  454.917917][ T8359]  ? preempt_schedule_common+0x82/0xc0
[  454.923417][ T8359]  ? preempt_schedule+0xc0/0xd0
[  454.928396][ T8359]  _ext4_get_block+0x1eb/0x480
[  454.933200][ T8359]  ? ext4_get_block+0x40/0x40
[  454.937912][ T8359]  ? folio_create_empty_buffers+0x538/0x720
[  454.943850][ T8359]  __block_write_begin_int+0x57f/0x1af0
[  454.949463][ T8359]  ? ext4_es_is_delayed+0x40/0x40
[  454.954523][ T8359]  ? folio_zero_new_buffers+0x550/0x550
[  454.960118][ T8359]  ? __block_write_begin+0x64/0x150
[  454.965445][ T8359]  ext4_try_to_write_inline_data+0x89b/0x1350
[  454.971660][ T8359]  ? folio_zero_segment+0x2c0/0x2c0
[  454.976897][ T8359]  ? lockdep_hardirqs_on+0x98/0x150
[  454.982139][ T8359]  ? ext4_inode_journal_mode+0x193/0x470
[  454.987895][ T8359]  ? ext4_writepage_trans_blocks+0x29b/0x310
[  454.993911][ T8359]  ext4_write_begin+0x25a/0x1070
[  454.998985][ T8359]  ? asan.module_dtor+0x20/0x20
[  455.003870][ T8359]  ? mark_lock+0x94/0x320
[  455.008326][ T8359]  ? ext4_readahead+0x110/0x110
[  455.013215][ T8359]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  455.019231][ T8359]  ext4_da_write_begin+0x2df/0x9c0
[  455.024420][ T8359]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  455.030435][ T8359]  ? ext4_dirty_folio+0x300/0x300
[  455.035671][ T8359]  ? fault_in_readable+0x11c/0x150
[  455.040835][ T8359]  ? fault_in_iov_iter_readable+0xbf/0x2e0
[  455.046713][ T8359]  generic_perform_write+0x2fe/0x5c0
[  455.052084][ T8359]  ? generic_file_direct_write+0x3e0/0x3e0
[  455.057949][ T8359]  ? file_modified_flags+0x267/0x2a0
[  455.063353][ T8359]  ? ext4_write_checks+0x24d/0x2c0
[  455.068499][ T8359]  ext4_buffered_write_iter+0xcc/0x350
[  455.074022][ T8359]  ext4_file_write_iter+0x1d9/0x1880
[  455.079369][ T8359]  ? rcu_read_lock_any_held+0xb4/0x140
[  455.084859][ T8359]  ? ext4_file_read_iter+0x670/0x670
[  455.090186][ T8359]  vfs_write+0x46c/0x990
[  455.094473][ T8359]  ? file_end_write+0x250/0x250
[  455.099367][ T8359]  ? __fget_files+0x43d/0x4b0
[  455.104176][ T8359]  ? __fdget+0x180/0x210
[  455.108451][ T8359]  ? __x64_sys_pwrite64+0xf6/0x230
[  455.113603][ T8359]  __x64_sys_pwrite64+0x19b/0x230
[  455.118679][ T8359]  ? ksys_pwrite64+0x1c0/0x1c0
[  455.123482][ T8359]  ? lockdep_hardirqs_on+0x98/0x150
[  455.128710][ T8359]  do_syscall_64+0x55/0xa0
[  455.133171][ T8359]  ? clear_bhb_loop+0x40/0x90
[  455.137898][ T8359]  ? clear_bhb_loop+0x40/0x90
[  455.142603][ T8359]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  455.148525][ T8359] RIP: 0033:0x7f54db99c799
[  455.152981][ T8359] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  455.172638][ T8359] RSP: 002b:00007f54dc8c2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  455.181102][ T8359] RAX: ffffffffffffffda RBX: 00007f54dbc16090 RCX: 00007f54db99c799
[  455.189117][ T8359] RDX: 00000000ffffff07 RSI: 0000200000000140 RDI: 0000000000000004
[  455.197206][ T8359] RBP: 00007f54dc8c2090 R08: 0000000000000000 R09: 0000000000000000
[  455.205387][ T8359] R10: 0000000008000c61 R11: 0000000000000246 R12: 0000000000000001
[  455.213391][ T8359] R13: 00007f54dbc16128 R14: 00007f54dbc16090 R15: 00007ffd395419d8
[  455.221410][ T8359]  </TASK>
[  455.528832][ T5773] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  455.713272][ T7991] usb 1-1: USB disconnect, device number 20
[  455.960768][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.049145][ T8364] loop0: detected capacity change from 0 to 1024
[  456.408443][ T8373] FAULT_INJECTION: forcing a failure.
[  456.408443][ T8373] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  456.451927][ T8373] CPU: 0 PID: 8373 Comm: syz.1.517 Not tainted syzkaller #0
[  456.459310][ T8373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  456.469424][ T8373] Call Trace:
[  456.472768][ T8373]  <TASK>
[  456.475750][ T8373]  dump_stack_lvl+0x18c/0x250
[  456.480500][ T8373]  ? show_regs_print_info+0x20/0x20
[  456.485944][ T8373]  ? load_image+0x400/0x400
[  456.490735][ T8373]  ? __might_fault+0xaa/0x120
[  456.495469][ T8373]  ? __lock_acquire+0x7d40/0x7d40
[  456.500591][ T8373]  should_fail_ex+0x39d/0x4d0
[  456.505356][ T8373]  _copy_from_user+0x2f/0xe0
[  456.510184][ T8373]  kstrtouint_from_user+0xde/0x170
[  456.515383][ T8373]  ? kstrtol_from_user+0x190/0x190
[  456.520577][ T8373]  proc_fail_nth_write+0x8f/0x250
[  456.525656][ T8373]  ? proc_fail_nth_read+0x260/0x260
[  456.530895][ T8373]  ? proc_fail_nth_read+0x260/0x260
[  456.536126][ T8373]  vfs_write+0x296/0x990
[  456.540410][ T8373]  ? file_end_write+0x250/0x250
[  456.545312][ T8373]  ? __fget_files+0x28/0x4b0
[  456.549937][ T8373]  ? __fget_files+0x28/0x4b0
[  456.554567][ T8373]  ? __fget_files+0x43d/0x4b0
[  456.559285][ T8373]  ? __fdget_pos+0x2a3/0x330
[  456.563918][ T8373]  ? ksys_write+0x75/0x260
[  456.568383][ T8373]  ksys_write+0x150/0x260
[  456.572747][ T8373]  ? __ia32_sys_read+0x90/0x90
[  456.577560][ T8373]  ? lockdep_hardirqs_on+0x98/0x150
[  456.582792][ T8373]  do_syscall_64+0x55/0xa0
[  456.587249][ T8373]  ? clear_bhb_loop+0x40/0x90
[  456.591956][ T8373]  ? clear_bhb_loop+0x40/0x90
[  456.596679][ T8373]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  456.602611][ T8373] RIP: 0033:0x7f54db95cfce
[  456.607059][ T8373] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  456.626701][ T8373] RSP: 002b:00007f54dc8c1fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  456.635145][ T8373] RAX: ffffffffffffffda RBX: 00007f54dc8c26c0 RCX: 00007f54db95cfce
[  456.643165][ T8373] RDX: 0000000000000001 RSI: 00007f54dc8c20a0 RDI: 0000000000000005
[  456.651182][ T8373] RBP: 00007f54dc8c2090 R08: 0000000000000000 R09: 0000000000000000
[  456.659467][ T8373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  456.667488][ T8373] R13: 00007f54dbc16128 R14: 00007f54dbc16090 R15: 00007ffd395419d8
[  456.675624][ T8373]  </TASK>
OK
Stopping iptables: OK
[  458.936343][ T8393] loop3: detected capacity change from 0 to 1024
[  458.995003][ T8393] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
Stopping system message bus: [  459.107234][ T8393] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.663872][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.981371][ T5812] kernel write not supported for file /vcsa (pid: 5812 comm: kworker/1:5)
[  460.101703][    T9] usb 1-1: new high-speed USB device number 21 using dummy_hcd
done
[  460.301858][    T9] usb 1-1: Using ep0 maxpacket: 8
[  460.333452][    T9] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  460.374079][    T9] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  460.411758][    T9] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  460.441104][    T9] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  460.464558][ T8431] FAULT_INJECTION: forcing a failure.
[  460.464558][ T8431] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  460.508857][    T9] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  460.531652][ T8431] CPU: 0 PID: 8431 Comm: syz.1.528 Not tainted syzkaller #0
[  460.539054][ T8431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  460.549157][ T8431] Call Trace:
[  460.552513][ T8431]  <TASK>
[  460.555562][ T8431]  dump_stack_lvl+0x18c/0x250
[  460.560277][ T8431]  ? show_regs_print_info+0x20/0x20
[  460.565505][ T8431]  ? load_image+0x400/0x400
[  460.570032][ T8431]  ? __might_fault+0xaa/0x120
[  460.574735][ T8431]  ? __lock_acquire+0x7d40/0x7d40
[  460.579779][ T8431]  should_fail_ex+0x39d/0x4d0
[  460.584483][ T8431]  _copy_from_user+0x2f/0xe0
[  460.589094][ T8431]  kstrtouint_from_user+0xde/0x170
[  460.594234][ T8431]  ? kstrtol_from_user+0x190/0x190
[  460.599382][ T8431]  proc_fail_nth_write+0x8f/0x250
[  460.604525][ T8431]  ? proc_fail_nth_read+0x260/0x260
[  460.609754][ T8431]  ? proc_fail_nth_read+0x260/0x260
[  460.614984][ T8431]  vfs_write+0x296/0x990
[  460.619300][ T8431]  ? file_end_write+0x250/0x250
[  460.624179][ T8431]  ? __fget_files+0x28/0x4b0
[  460.628795][ T8431]  ? __fget_files+0x28/0x4b0
[  460.633433][ T8431]  ? __fget_files+0x43d/0x4b0
[  460.638150][ T8431]  ? __fdget_pos+0x2a3/0x330
[  460.642776][ T8431]  ? ksys_write+0x75/0x260
[  460.647263][ T8431]  ksys_write+0x150/0x260
[  460.651642][ T8431]  ? __ia32_sys_read+0x90/0x90
[  460.656436][ T8431]  ? lockdep_hardirqs_on+0x98/0x150
[  460.661741][ T8431]  do_syscall_64+0x55/0xa0
[  460.666182][ T8431]  ? clear_bhb_loop+0x40/0x90
[  460.670886][ T8431]  ? clear_bhb_loop+0x40/0x90
[  460.675591][ T8431]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  460.681681][ T8431] RIP: 0033:0x7f54db95cfce
[  460.686145][ T8431] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  460.705984][ T8431] RSP: 002b:00007f54dc8c1fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  460.714420][ T8431] RAX: ffffffffffffffda RBX: 00007f54dc8c26c0 RCX: 00007f54db95cfce
[  460.722416][ T8431] RDX: 0000000000000001 RSI: 00007f54dc8c20a0 RDI: 0000000000000003
[  460.730410][ T8431] RBP: 00007f54dc8c2090 R08: 0000000000000000 R09: 0000000000000000
[  460.738616][ T8431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  460.746716][ T8431] R13: 00007f54dbc16128 R14: 00007f54dbc16090 R15: 00007ffd395419d8
[  460.754821][ T8431]  </TASK>
[  460.761755][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  461.099231][    T9] usb 1-1: GET_CAPABILITIES returned 0
[  461.121960][    T9] usbtmc 1-1:16.0: can't read capabilities
[  461.280022][ T6580] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  461.607228][ T6580] usb 5-1: Using ep0 maxpacket: 16
[  461.639144][ T8442] can0: slcan on ttyS3.
[  461.780144][ T6580] usb 5-1: New USB device found, idVendor=0763, idProduct=2030, bcdDevice= 0.40
[  462.562014][ T6580] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.570109][ T6580] usb 5-1: Product: syz
[  462.733101][ T8442] can0 (unregistered): slcan off ttyS3.
[  462.763121][ T6580] usb 5-1: Manufacturer: syz
[  462.772700][ T6580] usb 5-1: SerialNumber: syz
[  463.009631][ T6580] usb 5-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  463.025488][ T6580] usb 5-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  463.142057][ T6580] usb 5-1: USB disconnect, device number 21
[  463.881962][ T7991] usb 1-1: USB disconnect, device number 21
[  464.443516][ T8463] FAULT_INJECTION: forcing a failure.
[  464.443516][ T8463] name failslab, interval 1, probability 0, space 0, times 0
[  464.469274][ T8465] loop1: detected capacity change from 0 to 1024
[  464.497307][ T8465] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  464.535207][ T8463] CPU: 0 PID: 8463 Comm: syz.0.535 Not tainted syzkaller #0
[  464.542597][ T8463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  464.552709][ T8463] Call Trace:
[  464.556052][ T8463]  <TASK>
[  464.559119][ T8463]  dump_stack_lvl+0x18c/0x250
[  464.563861][ T8463]  ? show_regs_print_info+0x20/0x20
[  464.569116][ T8463]  ? load_image+0x400/0x400
[  464.573674][ T8463]  ? __lock_acquire+0x7d40/0x7d40
[  464.578756][ T8463]  should_fail_ex+0x39d/0x4d0
[  464.583508][ T8463]  should_failslab+0x9/0x20
[  464.588081][ T8463]  slab_pre_alloc_hook+0x59/0x310
[  464.593290][ T8463]  ? alloc_pipe_info+0xe8/0x4c0
[  464.598298][ T8463]  __kmem_cache_alloc_node+0x53/0x250
[  464.603837][ T8463]  ? alloc_pipe_info+0xe8/0x4c0
[  464.608899][ T8463]  kmalloc_trace+0x2a/0xe0
[  464.613390][ T8463]  alloc_pipe_info+0xe8/0x4c0
[  464.618132][ T8463]  splice_direct_to_actor+0x711/0x8c0
[  464.623573][ T8463]  ? aa_path_link+0xf70/0xf70
[  464.628316][ T8463]  ? aa_file_perm+0x11b/0xee0
[  464.633055][ T8463]  ? aa_file_perm+0x3e3/0xee0
[  464.637798][ T8463]  ? direct_file_splice_eof+0xb0/0xb0
[  464.643245][ T8463]  ? end_current_label_crit_section+0x149/0x170
[  464.649559][ T8463]  ? warn_unsupported+0xc0/0xc0
[  464.654482][ T8463]  ? common_file_perm+0x198/0x1f0
[  464.659667][ T8463]  ? fsnotify_perm+0x5d/0x5e0
[  464.664441][ T8463]  ? security_file_permission+0x79/0xa0
[  464.670059][ T8463]  do_splice_direct+0x1d5/0x2f0
[  464.674988][ T8463]  ? splice_direct_to_actor+0x8c0/0x8c0
[  464.680602][ T8463]  ? do_splice_direct+0x2f0/0x2f0
[  464.685708][ T8463]  ? common_file_perm+0x198/0x1f0
[  464.690809][ T8463]  ? fsnotify_perm+0x5d/0x5e0
[  464.695551][ T8463]  ? security_file_permission+0x79/0xa0
[  464.701167][ T8463]  do_sendfile+0x5f2/0xef0
[  464.705672][ T8463]  ? do_pwritev+0x3a0/0x3a0
[  464.710261][ T8463]  __se_sys_sendfile64+0x145/0x1a0
[  464.715442][ T8463]  ? lock_chain_count+0x20/0x20
[  464.720348][ T8463]  ? __x64_sys_sendfile64+0xb0/0xb0
[  464.725785][ T8463]  ? lockdep_hardirqs_on+0x98/0x150
[  464.731046][ T8463]  do_syscall_64+0x55/0xa0
[  464.735526][ T8463]  ? clear_bhb_loop+0x40/0x90
[  464.740255][ T8463]  ? clear_bhb_loop+0x40/0x90
[  464.744993][ T8463]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  464.751039][ T8463] RIP: 0033:0x7f1becd9c799
[  464.755559][ T8463] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  464.775319][ T8463] RSP: 002b:00007f1bedc19028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  464.783807][ T8463] RAX: ffffffffffffffda RBX: 00007f1bed015fa0 RCX: 00007f1becd9c799
[  464.791844][ T8463] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006
[  464.799871][ T8463] RBP: 00007f1bedc19090 R08: 0000000000000000 R09: 0000000000000000
[  464.808074][ T8463] R10: 000000007ffff004 R11: 0000000000000246 R12: 0000000000000001
[  464.813377][ T5839] kernel write not supported for file /vcsa (pid: 5839 comm: kworker/1:8)
[  464.816091][ T8463] R13: 00007f1bed016038 R14: 00007f1bed015fa0 R15: 00007ffda80c2ed8
[  464.816128][ T8463]  </TASK>
[  465.122592][ T8465] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  465.501085][ T8477] loop3: detected capacity change from 0 to 512
[  465.600771][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.649348][ T8477] EXT4-fs: Ignoring removed bh option
[  466.250839][ T8477] EXT4-fs (loop3): 1 truncate cleaned up
[  466.278790][ T8477] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
Stopping klogd: OK
[  466.602044][ T5839] usb 2-1: new high-speed USB device number 21 using dummy_hcd
Stopping acpid: [  466.801754][ T5839] usb 2-1: Using ep0 maxpacket: 8
[  466.815997][ T5839] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  466.838476][ T5839] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  466.863667][ T5839] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  466.890455][ T5839] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  466.918792][ T5839] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  466.928784][ T5839] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.133921][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.179748][ T5839] usb 2-1: GET_CAPABILITIES returned 0
[  467.190549][ T5839] usbtmc 2-1:16.0: can't read capabilities
[  467.662325][ T8503] can0: slcan on ttyS3.
[  467.862174][ T5839] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  467.973507][ T8503] can0 (unregistered): slcan off ttyS3.
[  468.021748][ T5839] usb 1-1: device descriptor read/64, error -71
OK
[  468.383361][ T5839] usb 1-1: new high-speed USB device number 23 using dummy_hcd
Stopping syslogd: [  468.631729][ T5839] usb 1-1: device descriptor read/64, error -71
stopped /sbin/syslogd (pid 5121)
[  468.764521][ T5839] usb usb1-port1: attempt power cycle
OK
[  469.181924][ T5839] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  469.232532][ T5839] usb 1-1: device descriptor read/8, error -71
[  469.298097][ T8523] FAULT_INJECTION: forcing a failure.
[  469.298097][ T8523] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  469.315297][ T8523] CPU: 1 PID: 8523 Comm: syz.3.546 Not tainted syzkaller #0
[  469.322730][ T8523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  469.333020][ T8523] Call Trace:
[  469.336360][ T8523]  <TASK>
[  469.339344][ T8523]  dump_stack_lvl+0x18c/0x250
[  469.344191][ T8523]  ? show_regs_print_info+0x20/0x20
[  469.349573][ T8523]  ? load_image+0x400/0x400
[  469.354158][ T8523]  ? __might_fault+0xaa/0x120
[  469.358895][ T8523]  ? __lock_acquire+0x7d40/0x7d40
[  469.363993][ T8523]  should_fail_ex+0x39d/0x4d0
[  469.368755][ T8523]  _copy_from_user+0x2f/0xe0
[  469.373417][ T8523]  kstrtouint_from_user+0xde/0x170
[  469.378598][ T8523]  ? kstrtol_from_user+0x190/0x190
[  469.383795][ T8523]  proc_fail_nth_write+0x8f/0x250
[  469.388890][ T8523]  ? proc_fail_nth_read+0x260/0x260
[  469.394158][ T8523]  ? proc_fail_nth_read+0x260/0x260
[  469.399433][ T8523]  vfs_write+0x296/0x990
[  469.403759][ T8523]  ? file_end_write+0x250/0x250
[  469.408671][ T8523]  ? __fget_files+0x28/0x4b0
[  469.413326][ T8523]  ? __fget_files+0x28/0x4b0
[  469.417977][ T8523]  ? __fget_files+0x43d/0x4b0
[  469.422806][ T8523]  ? __fdget_pos+0x2a3/0x330
[  469.427449][ T8523]  ? ksys_write+0x75/0x260
[  469.431922][ T8523]  ksys_write+0x150/0x260
[  469.436487][ T8523]  ? __ia32_sys_read+0x90/0x90
[  469.441493][ T8523]  ? lockdep_hardirqs_on+0x98/0x150
[  469.446754][ T8523]  do_syscall_64+0x55/0xa0
[  469.451235][ T8523]  ? clear_bhb_loop+0x40/0x90
[  469.455966][ T8523]  ? clear_bhb_loop+0x40/0x90
[  469.460705][ T8523]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  469.466681][ T8523] RIP: 0033:0x7fad4e15cfce
[  469.471244][ T8523] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  469.491086][ T8523] RSP: 002b:00007fad4f049fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  469.499685][ T8523] RAX: ffffffffffffffda RBX: 00007fad4f04a6c0 RCX: 00007fad4e15cfce
[  469.507719][ T8523] RDX: 0000000000000001 RSI: 00007fad4f04a0a0 RDI: 0000000000000005
[  469.515759][ T8523] RBP: 00007fad4f04a090 R08: 0000000000000000 R09: 0000000000000000
[  469.524695][ T8523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  469.532744][ T8523] R13: 00007fad4e416128 R14: 00007fad4e416090 R15: 00007ffe7b3ca268
[  469.540802][ T8523]  </TASK>
[  469.690874][ T6580] usb 2-1: USB disconnect, device number 21
[  469.761640][ T5839] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  469.801165][ T5839] usb 1-1: device descriptor read/8, error -71
umount: can't remount debugfs read-only
[  469.927902][ T5839] usb usb1-port1: unable to enumerate USB device
[  470.302087][ T8530] loop3: detected capacity change from 0 to 1024
[  470.312509][ T8533] loop4: detected capacity change from 0 to 1024
[  470.333006][ T8531] loop1: detected capacity change from 0 to 1024
[  470.351850][ T8531] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  470.405202][ T8531] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  470.439010][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.440583][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.452261][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.468029][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.475562][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.487239][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.497463][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.505141][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.514015][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.521387][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.529615][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.537345][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.555789][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.695870][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.705471][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.713187][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.720665][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.731598][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.739062][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.753690][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.843772][ T8533] hfsplus: request for non-existent node 33554434 in B*Tree
[  470.851341][ T8530] hfsplus: request for non-existent node 33554434 in B*Tree
serialport: VM disconnected.