last executing test programs:

5.635578216s ago: executing program 3 (id=1432):
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000080)='./cgroup\x00', &(0x7f00000000c0)='hpfs\x00', 0x80002, 0x0)

5.610955173s ago: executing program 3 (id=1433):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioprio_set$pid(0x1, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f00000006c0)={{0x12, 0x1, 0x0, 0x8f, 0x2, 0x53, 0x40, 0xc45, 0x8003, 0xd6bb, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x6e, 0xe4, 0x4e}}]}}]}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f0000000c80)=""/89, 0x59}, {&(0x7f0000000280)=""/78, 0x4e}, {&(0x7f0000001fc0)=""/4102, 0x1006}, {&(0x7f0000000480)=""/112, 0x70}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/64, 0x4a}, {&(0x7f00000007c0)=""/138, 0x8a}, {&(0x7f0000000140)=""/53, 0x35}, {&(0x7f0000000540)=""/165, 0xac}, {&(0x7f0000001800)=""/192, 0xc4}, {&(0x7f0000001900)=""/153, 0x99}, {&(0x7f00000019c0)=""/147, 0x8f}, {&(0x7f00000000c0)=""/65, 0x41}], 0xd}}], 0xa9435cc28b025e07, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)
exit(0x0)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4000, 0x6, &(0x7f0000ffc000/0x4000)=nil)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x141342, 0x0)
sendfile(r1, r1, 0x0, 0x7ffff000)

4.900714087s ago: executing program 0 (id=1435):
r0 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x40000000048601, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0884113, &(0x7f00000000c0)={0x1, 0x0, 0x1fb, 0x10001, 0xfffffffffffffffe, 0x6, 0xfffffffffffffffd, 0x1fc, 0x9, 0x102002c, 0x49200000})
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r2, 0xc0984124, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

3.996397311s ago: executing program 0 (id=1438):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x60a00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x4, 0x20011, r0, 0xd6baf000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0)
rt_sigqueueinfo(0x0, 0x16, &(0x7f0000000fc0)={0x0, 0x0, 0x200})
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000740)=ANY=[@ANYBLOB="12010000ed3ec908cd0cb300042e010203010902120001000000000904"], 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mremap(&(0x7f00000c0000/0xa000)=nil, 0xa000, 0x2000, 0x3, &(0x7f00000b4000/0x2000)=nil)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3)

3.758575613s ago: executing program 2 (id=1441):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x1a8)
clock_gettime(0x0, &(0x7f0000000080)={<r1=>0x0, <r2=>0x0})
utimensat(r0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={{}, {r1, r2/1000+60000}}, 0x0)
pselect6(0x40, &(0x7f0000000100)={0xffffffff80000001, 0x80, 0x54, 0xffff, 0x59a3, 0x81, 0x3, 0xcba}, &(0x7f0000000140)={0x3, 0x2, 0x80, 0x4, 0x51b4, 0x196, 0x10}, &(0x7f0000000180)={0x8000, 0x125, 0xd, 0x7, 0x100, 0xb, 0xed73, 0xc414}, &(0x7f00000001c0), &(0x7f0000000240)={&(0x7f0000000200)={[0x3]}, 0x8})
clock_gettime(0x4, &(0x7f0000000280))
getsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
recvmsg$can_bcm(r0, &(0x7f00000017c0)={&(0x7f0000000340)=@l2tp={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000001680)=[{&(0x7f00000003c0)=""/9, 0x9}, {&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000001400)=""/80, 0x50}, {&(0x7f0000001480)=""/81, 0x51}, {&(0x7f0000001500)=""/164, 0xa4}, {&(0x7f00000015c0)=""/94, 0x5e}, {&(0x7f0000001640)=""/35, 0x23}], 0x7, &(0x7f0000001700)=""/173, 0xad}, 0x20261)
mkdir(&(0x7f0000001800)='./file0/file0\x00', 0x12)
mount$bind(&(0x7f0000001840)='./file1\x00', &(0x7f0000001880)='./file0/file0\x00', &(0x7f00000018c0), 0x42, 0x0)
r3 = accept4(r0, &(0x7f0000001900), &(0x7f0000001980)=0x80, 0x80000)
recvfrom(r3, &(0x7f00000019c0)=""/21, 0x15, 0x10000, &(0x7f0000001a00)=@caif=@dgm={0x25, 0x5, 0x8}, 0x80)
sendmsg$rds(0xffffffffffffffff, &(0x7f00000030c0)={&(0x7f0000001a80)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000003000)=[{&(0x7f0000001ac0)=""/80, 0x50}, {&(0x7f0000001b40)=""/184, 0xb8}, {&(0x7f0000001c00)=""/45, 0x2d}, {&(0x7f0000001c40)=""/242, 0xf2}, {&(0x7f0000001d40)=""/4096, 0x1000}, {&(0x7f0000002d40)=""/24, 0x18}, {&(0x7f0000002d80)=""/89, 0x59}, {&(0x7f0000002e00)=""/16, 0x10}, {&(0x7f0000002e40)=""/151, 0x97}, {&(0x7f0000002f00)=""/250, 0xfa}], 0xa, 0x0, 0x0, 0x4040040}, 0x400c004)
getdents64(r0, &(0x7f0000003100)=""/195, 0xc3)
r4 = gettid()
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000005500)={{{@in6=@private1, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@dev}, 0x0, @in6=@local}}, &(0x7f0000005600)=0xe8)
newfstatat(0xffffffffffffff9c, &(0x7f0000005640)='./file0/file0\x00', &(0x7f0000005680)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x6000)
r7 = geteuid()
getgroups(0x6, &(0x7f0000005780)=[0xee01, 0x0, 0xee00, 0x0, 0xee01, <r8=>0xee00])
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000058c0)={{{@in=@private, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@remote}}}, &(0x7f00000059c0)=0xe8)
lstat(&(0x7f0000005a00)='./file0/file0\x00', &(0x7f0000005a40)={0x0, 0x0, 0x0, 0x0, <r10=>0x0})
stat(&(0x7f0000005ac0)='./file0/file0\x00', &(0x7f0000005b00)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
getresgid(&(0x7f0000005b80), &(0x7f0000005bc0)=<r12=>0x0, &(0x7f0000005c00))
lstat(&(0x7f0000005f00)='./file0\x00', &(0x7f0000005f40)={0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0})
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f00000060c0)=<r14=>0x0)
statx(r0, &(0x7f0000006100)='./file0\x00', 0x2000, 0x8, &(0x7f0000006140)={0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0})
syz_fuse_handle_req(r0, &(0x7f0000003200)="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", 0x2000, &(0x7f0000006380)={&(0x7f0000005200)={0x50, 0xa394b3252e3ab0df, 0x1, {0x7, 0x2b, 0x8, 0x1, 0x2, 0x1, 0x1, 0x7f, 0x0, 0x0, 0x100, 0x1000}}, &(0x7f0000005280)={0x18, 0x0, 0x4, {0xfffffffffffffffb}}, &(0x7f00000052c0)={0x18, 0xfffffffffffffffe, 0xe, {0x7}}, &(0x7f0000005300)={0x18, 0x0, 0x87, {0x200}}, &(0x7f0000005340)={0x18, 0x0, 0x8000, {0xc3d3}}, &(0x7f0000005380)={0x28, 0xffffffffffffffda, 0x8000000000000001, {{0x0, 0xba9d, 0x2, r4}}}, &(0x7f00000053c0)={0x60, 0x0, 0x7, {{0x100000000, 0x200000000, 0x1, 0xffffffffffffffff, 0x7, 0x4, 0x1, 0x80}}}, &(0x7f0000005440)={0x18, 0x0, 0x2, {0x3}}, &(0x7f0000005480)={0x17, 0x0, 0xffff, {'pipefs\x00'}}, &(0x7f00000054c0)={0x20, 0x0, 0x400, {0x0, 0x9}}, &(0x7f0000005700)={0x78, 0xfffffffffffffffe, 0xafe4, {0x6, 0x401, 0x0, {0x6, 0x6, 0x0, 0x9, 0x7, 0x1c, 0x80000000, 0x8, 0x3, 0x8000, 0x0, r5, r6, 0x6}}}, &(0x7f00000057c0)={0x90, 0x0, 0x8, {0x3, 0x1, 0x1, 0x100000000, 0x4, 0x6, {0x0, 0x2, 0x8, 0x4, 0x9, 0x6, 0x5, 0x1, 0x80000000, 0x6000, 0x4, r7, r8, 0x0, 0x4}}}, &(0x7f0000005880)={0x30, 0x0, 0x6, [{0x5, 0x8000000000000000, 0x7, 0x5, 'pipefs\x00'}]}, &(0x7f0000005c40)={0x290, 0x0, 0xffffffff80000000, [{{0x3, 0x0, 0x12, 0x9, 0xcf08, 0x6, {0x1, 0xff, 0xd5a, 0x0, 0xffffffffffffb9dd, 0x8, 0x9, 0xbf8, 0x8, 0x1000, 0xc94, 0xee00, 0x0, 0xbf, 0x757}}, {0x5, 0x0, 0x1, 0xa86, '.'}}, {{0x5, 0x2, 0x3, 0x5, 0x80000001, 0xfffffff8, {0x5, 0x3, 0x6090, 0xf0, 0x6, 0x200, 0xfffffffc, 0x0, 0x9, 0x1000, 0x7, r9, 0xffffffffffffffff, 0xa, 0x6}}, {0x0, 0x7f, 0x7, 0x200, 'pipefs\x00'}}, {{0x6, 0x2, 0x8, 0x2, 0x9, 0x7, {0x2, 0x5, 0x0, 0x9, 0x100, 0x7, 0x6, 0x3ff, 0x400, 0x1000, 0xfffffff7, r10, r11, 0x5, 0x2}}, {0x4, 0x9, 0x2, 0x6, '\x01-'}}, {{0x0, 0x3, 0x0, 0xff, 0x7, 0x0, {0x0, 0x100, 0x8, 0x400, 0x661f, 0x8, 0x6, 0x1ff, 0x5, 0x6000, 0x0, 0xee00, r12, 0x0, 0x8}}, {0x0, 0x0, 0x7, 0xfffffffc, 'pipefs\x00'}}]}, &(0x7f0000005fc0)={0xa0, 0xfffffffffffffffe, 0x100, {{0x3, 0x1, 0x7d8, 0x7f, 0xfffffff7, 0x8, {0x2, 0x7338, 0x10000, 0x2b30855d, 0x5, 0xcf, 0x7, 0x5, 0x7, 0xa000, 0x6, 0xffffffffffffffff, r13, 0x9}}, {0x0, 0x1}}}, &(0x7f0000006080)={0x20, 0xfffffffffffffff5, 0x4, {0x0, 0x0, 0x101, 0x8000}}, &(0x7f0000006240)={0x130, 0xfffffffffffffffe, 0x100000000, {0x6, 0x5, 0x0, '\x00', {0x2000, 0x7, 0x6, 0x800, r14, r15, 0xc000, '\x00', 0x10, 0x10, 0x4, 0x6, {0x3, 0x2}, {0xa, 0x5}, {0xfffffffffffffff7, 0xb}, {0x5}, 0x8, 0xa553, 0x1, 0x2}}}})
setresuid(r5, r5, r9)
truncate(&(0x7f0000006440)='./file0\x00', 0x9)
statfs(&(0x7f0000006480)='./file0/file0\x00', &(0x7f00000064c0)=""/21)
socket$nl_netfilter(0x10, 0x3, 0xc)

3.595332096s ago: executing program 2 (id=1442):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x7, 0x10, 0x0, 0x0, 0xb47, 0x9, 0x8, 0xffffeff9, 0x3}, 0x0)
landlock_restrict_self(0xffffffffffffffff, 0x0)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r2 = socket(0x8000000010, 0x2, 0x0)
write(r2, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e07", 0xdd)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000000)={0x60, 0x0, &(0x7f000056e000/0x3000)=nil, &(0x7f000056e000/0x2000)=nil, 0x4, 0x0, 0x0, 0xe, 0x0, 0x10, 0x1d, 0x58})
connect$inet(0xffffffffffffffff, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000180)={{0x2, 0x4e23, @empty}, {0x20000010304, @local}, 0x4, {0x2, 0x4e20, @rand_addr=0x64010102}})

2.507279899s ago: executing program 3 (id=1443):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004200)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x20, 0x0, 0x4000000000009, {0x0, 0xe}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
acct(&(0x7f00000001c0)='./file0\x00')
umount2(&(0x7f0000000000)='./file0\x00', 0x0)
acct(0x0)

2.359742829s ago: executing program 2 (id=1444):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000900)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3f}, @NFTA_SET_EXPRESSIONS={0x18, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xa4}, 0x1, 0x0, 0x0, 0x8000}, 0x20050800)
ioprio_set$pid(0x1, 0x0, 0x2007)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x141342, 0x0)
sendfile(r1, r1, 0x0, 0x7ffff000)

2.350378233s ago: executing program 3 (id=1445):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000140), 0x8900, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}, 0x1, 0x0, 0x0, 0x20040840}, 0x0)
fadvise64(r0, 0x92, 0x5, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x22052, r0, 0x93771000)

1.871160252s ago: executing program 3 (id=1446):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x60a00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x59327139ae2673af, 0x12, r0, 0x57789000)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='devpts\x00', 0x0, 0x0)
mount$binder(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0xe2ca6, &(0x7f0000000200)=ANY=[@ANYBLOB='max='])
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x3, 0x40)
syz_usb_disconnect(r2)
syz_usb_connect(0x6, 0x24, &(0x7f0000000100)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r2, 0x550c, &(0x7f0000000180)=0x8000)
ptrace$cont(0x20, r1, 0x0, 0x0)
lsetxattr$security_evm(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000240)=@md5={0x1, "1ab444a0d51c61dada425bf67b2035ff"}, 0x11, 0x2)
ptrace$cont(0x20, r1, 0x1, 0x3)
syz_open_procfs(r1, &(0x7f0000000000)='attr/prev\x00')
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

1.47447122s ago: executing program 2 (id=1447):
r0 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x40000000048601, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0884113, &(0x7f00000000c0)={0x1, 0x0, 0x1fb, 0x10001, 0xfffffffffffffffe, 0x6, 0xfffffffffffffffd, 0x1fc, 0x9, 0x102002c, 0x49200000})
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r2, 0xc0984124, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

1.15540461s ago: executing program 1 (id=1449):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x103080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
write(0xffffffffffffffff, &(0x7f0000000040)="3a03000018002551075c0165ff0ffc0280200003001e030500e1000c0400070080000900", 0x33a)
quotactl_fd$Q_QUOTAON(r0, 0xffffffff80000202, 0x0, &(0x7f0000000040)='./file0\x00')
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.151088018s ago: executing program 1 (id=1450):
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='fusectl\x00', 0x200808, 0x0)

1.148377498s ago: executing program 1 (id=1451):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r0)
sendmsg$IEEE802154_LLSEC_ADD_KEY(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x14, r1, 0x1, 0x70bd27, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8080}, 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000180)={0x2, &(0x7f0000000140)=[{0xc7a0, 0x40, 0x0, 0x1}, {0xeb5, 0x4, 0x8, 0xffc00000}]})
mount(&(0x7f0000000100)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='cifs\x00', 0x200000, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x1c, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x1, &(0x7f0000000080)=[0x0])
read$FUSE(r3, &(0x7f0000003440)={0x2020}, 0x2020)
ioctl$SG_GET_PACK_ID(r2, 0x227c, &(0x7f00000000c0))

1.105384493s ago: executing program 1 (id=1452):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x60a00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x4, 0x20011, r0, 0xd6baf000)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000780)={0x18, 0x5e, 0x101, 0x0, 0x0, "", [@typed={0x8, 0x41, 0x0, 0x0, @uid}]}, 0x18}], 0x1}, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3)
mremap(&(0x7f000085f000/0x1000)=nil, 0x1000, 0x13000, 0x4, &(0x7f0000018000/0x13000)=nil)

1.078391289s ago: executing program 1 (id=1453):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x7, 0x10, 0x0, 0x0, 0xb47, 0x9, 0x8, 0xffffeff9, 0x3}, 0x0)
landlock_restrict_self(0xffffffffffffffff, 0x0)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r2 = socket(0x8000000010, 0x2, 0x0)
write(r2, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801f", 0xed)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000000)={0x60, 0x0, &(0x7f000056e000/0x3000)=nil, &(0x7f000056e000/0x2000)=nil, 0x4, 0x0, 0x0, 0xe, 0x0, 0x10, 0x1d, 0x58})
connect$inet(0xffffffffffffffff, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000180)={{0x2, 0x4e23, @empty}, {0x20000010304, @local}, 0x4, {0x2, 0x4e20, @rand_addr=0x64010102}})

651.374209ms ago: executing program 0 (id=1454):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004200)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x20, 0x0, 0x4000000000009, {0x0, 0xe}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
acct(&(0x7f00000001c0)='./file0\x00')
umount2(&(0x7f0000000000)='./file0\x00', 0x0)
acct(0x0)

650.509233ms ago: executing program 3 (id=1455):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0207e80702"], 0x10}}, 0x40044)
r1 = socket$inet6(0xa, 0x3, 0x84)
getsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f0000000100)={@remote, <r2=>0x0}, &(0x7f0000000140)=0x14)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in=@multicast1, @in6=@empty, 0x0, 0x56, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, r2}, {0x0, 0x0, 0x0, 0x2, 0xfffffffffffffff6, 0x2000000, 0x1}, {0x7, 0x0, 0x4}, 0x3, 0x0, 0x1}, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x6c}, 0xa, @in=@loopback, 0x3507, 0x4, 0x0, 0x0, 0xffffffff, 0x8, 0x4}}, 0xe8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xff}}}, 0x1c)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x66002, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
ioctl$TIOCSWINSZ(r1, 0x5414, &(0x7f0000000040)={0x0, 0x2, 0x4, 0x2})
fstat(r4, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setreuid(0x0, r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x22052, r3, 0x2000)

521.351493ms ago: executing program 2 (id=1456):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
mount(&(0x7f0000000100)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='udf\x00', 0x0, 0x0)

461.340626ms ago: executing program 2 (id=1457):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa0242, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x13)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder1\x00', 0x0, 0x0)
socket$igmp(0x2, 0x3, 0x2)
close(0xffffffffffffffff)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r3, 0x0)
r4 = creat(&(0x7f0000000080)='./file0\x00', 0x2a)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000280)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3", @ANYRES8=r4, @ANYRES64=r4], 0x0)
openat$cgroup_ro(r4, &(0x7f0000000040)='cpuset.memory_pressure\x00', 0x0, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="58000000140019234083feff040d8c560a06580200ff0000000000000020ffff00000000000064009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000b0c10000000224effffffff", 0x58}], 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x22052, r0, 0xa4717000)

441.304854ms ago: executing program 0 (id=1458):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$cgroup2(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x800010, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
pivot_root(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000240)='./file0/../file0\x00')
chroot(&(0x7f00000000c0)='./file0/../file0\x00')
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @local}, 0x10)
preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000280)=""/212, 0xfffffed3}], 0x1, 0xffeffffb, 0x1007)

231.440984ms ago: executing program 0 (id=1459):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x103080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
write(0xffffffffffffffff, &(0x7f0000000040)="3a03000018002551075c0165ff0ffc0280200003001e030500e1000c0400070080000900", 0x33a)
quotactl_fd$Q_QUOTAON(r0, 0xffffffff80000202, 0x0, &(0x7f0000000040)='./file0\x00')
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

41.513241ms ago: executing program 1 (id=1460):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000300)={0x54, 0x2, 0x6, 0x3, 0x0, 0x0, {0x3, 0x0, 0x8}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0x1}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'list:set\x00'}]}, 0x54}}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = dup(r1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
sendmsg$inet6(r1, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000780)=[{&(0x7f0000000a40)="88", 0x1}], 0x1}, 0x20048843)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x85, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e24, 0x7f, @loopback, 0x8}}, 0x6, 0x2}, 0x90)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000480), 0x48241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r4 = socket$kcm(0x2, 0xa, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a310000000014000480080002400000000008000140000000000900010073797a300000000070000000060a010400000000000000000100000048000480240001800b00010072656a65637400001400028008000140000000000500020000000000200001800700010072740000140002800800014000000009080002400000000008000b40000000000900010073797a300000000014000000110001"], 0xf8}, 0x1, 0x0, 0x0, 0x2040441}, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="aaaaaaaaaa3b1f00000000004325bdc988a8000081"], 0x18)
mount(&(0x7f0000000200)=@filename='./cgroup\x00', &(0x7f00000000c0)='./cgroup\x00', &(0x7f00000001c0)='ubifs\x00', 0x2228846, 0x0)

0s ago: executing program 0 (id=1461):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x141342, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
sched_setscheduler(0x0, 0x5, &(0x7f0000000100)) (async)
syz_usb_connect(0x0, 0x35, &(0x7f0000000000)=ANY=[@ANYBLOB="120100003215124099043e10184e01020301090223000100000000090400000800000000082403010000000009050f", @ANYRES16], 0x0)
ioctl$BLKCRYPTOGENERATEKEY(r0, 0xc030128a, &(0x7f0000000040)={&(0x7f0000000000)=""/12, 0xc}) (async)
r2 = syz_open_dev$loop(&(0x7f0000000100), 0x8, 0x0) (async)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000400)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000002c0)={r4, 0x0, {0x2a00, 0x80010000, 0x0, 0x402, 0xffffffffffffff86, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab0200000000000000072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000101900", [0x0, 0x7f]}}) (async)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r4, 0x5761, &(0x7f0000000140)=ANY=[@ANYBLOB="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"]) (async)
sendfile(r1, r0, 0x0, 0x7ffff000)
signalfd4(r4, &(0x7f0000000080)={[0x8]}, 0x8, 0x0)

kernel console output (not intermixed with test programs):

 197.510450][ T8549]  ? __pfx____ratelimit+0x10/0x10
[  197.510469][ T8549]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.510490][ T8549]  ? __pfx__printk+0x10/0x10
[  197.510512][ T8549]  ? __pfx___might_resched+0x10/0x10
[  197.510527][ T8549]  ? lock_acquire+0x5f/0x360
[  197.510549][ T8549]  should_fail_ex+0x414/0x560
[  197.510579][ T8549]  should_failslab+0xa8/0x100
[  197.510599][ T8549]  __kmalloc_noprof+0xcb/0x4b0
[  197.510627][ T8549]  ? tomoyo_encode+0x28b/0x550
[  197.510647][ T8549]  tomoyo_encode+0x28b/0x550
[  197.510667][ T8549]  tomoyo_realpath_from_path+0x58d/0x5d0
[  197.510687][ T8549]  ? tomoyo_domain+0xd9/0x130
[  197.510708][ T8549]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  197.510773][ T8549]  tomoyo_path_number_perm+0x1e8/0x5a0
[  197.510789][ T8549]  ? lock_release+0x4b/0x3e0
[  197.510802][ T8549]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  197.510819][ T8549]  ? rcu_is_watching+0x15/0xb0
[  197.510836][ T8549]  ? lock_release+0x4b/0x3e0
[  197.510848][ T8549]  ? vfs_write+0x956/0xb30
[  197.510863][ T8549]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  197.510894][ T8549]  ? __fget_files+0x3a0/0x420
[  197.510910][ T8549]  ? __fget_files+0x2a/0x420
[  197.510928][ T8549]  security_file_ioctl+0xcb/0x2d0
[  197.510943][ T8549]  __se_sys_ioctl+0x47/0x170
[  197.510966][ T8549]  do_syscall_64+0xfa/0xfa0
[  197.510987][ T8549]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.511002][ T8549]  ? clear_bhb_loop+0x60/0xb0
[  197.511017][ T8549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.511033][ T8549] RIP: 0033:0x7fabd378ebe9
[  197.511046][ T8549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.511059][ T8549] RSP: 002b:00007fabd46d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  197.511075][ T8549] RAX: ffffffffffffffda RBX: 00007fabd39c5fa0 RCX: 00007fabd378ebe9
[  197.511086][ T8549] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  197.511094][ T8549] RBP: 00007fabd46d9090 R08: 0000000000000000 R09: 0000000000000000
[  197.511103][ T8549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  197.511112][ T8549] R13: 00007fabd39c6038 R14: 00007fabd39c5fa0 R15: 00007ffd8397d638
[  197.511128][ T8549]  </TASK>
[  197.511164][ T8549] ERROR: Out of memory at tomoyo_realpath_from_path.
[  198.021827][ T5187] Bluetooth: hci3: unexpected event for opcode 0x042c
[  198.029618][ T8565] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  198.354336][ T8587] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  198.361333][ T8587] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  198.368796][ T8587] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  198.523065][ T5908] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  198.612044][   T10] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  198.674034][ T5908] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  198.686104][ T5908] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  198.695275][ T5908] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.704049][ T5908] usb 3-1: Product: syz
[  198.708321][ T5908] usb 3-1: Manufacturer: syz
[  198.713647][ T5908] usb 3-1: SerialNumber: syz
[  198.719943][ T5908] usb 3-1: config 0 descriptor??
[  198.728706][ T5908] yurex 3-1:0.0: Could not find endpoints
[  198.762142][   T10] usb 4-1: Using ep0 maxpacket: 8
[  198.775273][   T10] usb 4-1: config 0 has an invalid interface number: 55 but max is 0
[  198.783818][   T10] usb 4-1: config 0 has no interface number 0
[  198.790067][   T10] usb 4-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  198.801172][   T10] usb 4-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  198.813023][   T10] usb 4-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  198.824832][   T10] usb 4-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  198.838158][   T10] usb 4-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  198.847392][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.868664][   T10] usb 4-1: config 0 descriptor??
[  198.889791][   T10] ldusb 4-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  198.901198][ T8593] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  198.967799][   T10] usb 3-1: USB disconnect, device number 10
[  198.995314][ T8595] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  199.027763][ T8595] CIFS mount error: No usable UNC path provided in device string!
[  199.027763][ T8595] 
[  199.038201][ T8595] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  199.053774][ T8595] fuse: Bad value for 'user_id'
[  199.058685][ T8595] fuse: Bad value for 'user_id'
[  199.152879][ T5187] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  199.322096][ T3096] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  199.482170][ T3096] usb 1-1: Using ep0 maxpacket: 8
[  199.489003][ T3096] usb 1-1: config 0 has an invalid interface number: 44 but max is 0
[  199.497626][ T3096] usb 1-1: config 0 has no interface number 0
[  199.504306][ T3096] usb 1-1: config 0 interface 44 altsetting 129 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  199.517506][ T3096] usb 1-1: config 0 interface 44 has no altsetting 0
[  199.526173][ T3096] usb 1-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  199.548420][ T3096] usb 1-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  199.550085][   T24] usb 4-1: USB disconnect, device number 18
[  199.560710][ T3096] usb 1-1: Product: syz
[  199.574602][ T3096] usb 1-1: Manufacturer: syz
[  199.582005][ T3096] usb 1-1: SerialNumber: syz
[  199.590947][   T24] ldusb 4-1:0.55: LD USB Device #0 now disconnected
[  199.591639][ T3096] usb 1-1: config 0 descriptor??
[  199.621800][ T3096] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[  199.657635][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  199.664081][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  200.018966][ T8614] capability: warning: `syz.1.999' uses deprecated v2 capabilities in a way that may be insecure
[  200.226778][ T3096] input: gspca_zc3xx as /devices/platform/dummy_hcd.0/usb1/1-1/input/input14
[  200.428572][ T3096] usb 1-1: USB disconnect, device number 17
[  200.530298][ T8621] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  200.655546][   T30] audit: type=1326 audit(1756861377.168:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8622 comm="syz.2.1002" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efc4bb8ebe9 code=0x0
[  200.677253][    C0] vkms_vblank_simulate: vblank timer overrun
[  200.916314][ T8629] ucma_write: process 671 (syz.3.1004) changed security contexts after opening file descriptor, this is not allowed.
[  200.932116][ T3096] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  201.093631][ T3096] usb 2-1: Using ep0 maxpacket: 8
[  201.100374][ T3096] usb 2-1: config 127 has an invalid descriptor of length 0, skipping remainder of the config
[  201.113640][ T3096] usb 2-1: config 127 has 1 interface, different from the descriptor's value: 2
[  201.127462][ T3096] usb 2-1: New USB device found, idVendor=04e2, idProduct=1414, bcdDevice=c5.b9
[  201.139588][ T3096] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.155178][ T3096] usb 2-1: Product: syz
[  201.160666][ T3096] usb 2-1: Manufacturer: syz
[  201.168838][ T3096] usb 2-1: SerialNumber: syz
[  201.198606][ T8638] binder: 8637:8638 ioctl c0306201 200000000680 returned -14
[  201.294100][   T24] Process accounting resumed
[  201.353436][ T8644] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  201.390865][ T3096] xr_serial 2-1:127.0: failed to claim sibling interface: -16
[  201.401051][ T3096] xr_serial 2-1:127.0: probe with driver xr_serial failed with error -16
[  201.435883][ T3096] usb 2-1: USB disconnect, device number 15
[  201.483630][ T8647] FAULT_INJECTION: forcing a failure.
[  201.483630][ T8647] name failslab, interval 1, probability 0, space 0, times 0
[  201.533247][ T8647] CPU: 0 UID: 0 PID: 8647 Comm: syz.0.1012 Not tainted syzkaller #0 PREEMPT(full) 
[  201.533276][ T8647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  201.533289][ T8647] Call Trace:
[  201.533297][ T8647]  <TASK>
[  201.533305][ T8647]  dump_stack_lvl+0x189/0x250
[  201.533346][ T8647]  ? __pfx____ratelimit+0x10/0x10
[  201.533371][ T8647]  ? __pfx_dump_stack_lvl+0x10/0x10
[  201.533397][ T8647]  ? __pfx__printk+0x10/0x10
[  201.533425][ T8647]  ? __pfx___might_resched+0x10/0x10
[  201.533459][ T8647]  ? lock_acquire+0x5f/0x360
[  201.533479][ T8647]  should_fail_ex+0x414/0x560
[  201.533508][ T8647]  should_failslab+0xa8/0x100
[  201.533527][ T8647]  __kmalloc_noprof+0xcb/0x4b0
[  201.533556][ T8647]  ? kfree+0x4d/0x440
[  201.533580][ T8647]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  201.533610][ T8647]  tomoyo_realpath_from_path+0xe3/0x5d0
[  201.533640][ T8647]  ? tomoyo_domain+0xd9/0x130
[  201.533668][ T8647]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  201.533688][ T8647]  tomoyo_path_number_perm+0x1e8/0x5a0
[  201.533709][ T8647]  ? lock_release+0x4b/0x3e0
[  201.533729][ T8647]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  201.533753][ T8647]  ? rcu_is_watching+0x15/0xb0
[  201.533775][ T8647]  ? lock_release+0x4b/0x3e0
[  201.533792][ T8647]  ? vfs_write+0x956/0xb30
[  201.533814][ T8647]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  201.533857][ T8647]  ? __fget_files+0x3a0/0x420
[  201.533879][ T8647]  ? __fget_files+0x2a/0x420
[  201.533904][ T8647]  security_file_ioctl+0xcb/0x2d0
[  201.533925][ T8647]  __se_sys_ioctl+0x47/0x170
[  201.533956][ T8647]  do_syscall_64+0xfa/0xfa0
[  201.533983][ T8647]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.534003][ T8647]  ? clear_bhb_loop+0x60/0xb0
[  201.534024][ T8647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.534043][ T8647] RIP: 0033:0x7fe20538ebe9
[  201.534061][ T8647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.534078][ T8647] RSP: 002b:00007fe2061a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  201.534099][ T8647] RAX: ffffffffffffffda RBX: 00007fe2055c5fa0 RCX: 00007fe20538ebe9
[  201.534113][ T8647] RDX: 0000200000000000 RSI: 000000008028640c RDI: 0000000000000003
[  201.534126][ T8647] RBP: 00007fe2061a5090 R08: 0000000000000000 R09: 0000000000000000
[  201.534139][ T8647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.534150][ T8647] R13: 00007fe2055c6038 R14: 00007fe2055c5fa0 R15: 00007fff35e0f288
[  201.534173][ T8647]  </TASK>
[  201.534207][ T8647] ERROR: Out of memory at tomoyo_realpath_from_path.
[  201.732368][ T8651] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1013'.
[  202.216317][ T8660] netlink: 'syz.0.1016': attribute type 1 has an invalid length.
[  202.290002][ T8664] binder: 8663:8664 ioctl c0306201 200000000680 returned -14
[  202.371796][ T5866] Process accounting resumed
[  202.430503][ T5187] Bluetooth: hci3: unexpected event for opcode 0x042c
[  202.530248][ T8673] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1024'.
[  202.558920][ T8674] FAULT_INJECTION: forcing a failure.
[  202.558920][ T8674] name failslab, interval 1, probability 0, space 0, times 0
[  202.575447][ T8674] CPU: 1 UID: 0 PID: 8674 Comm: syz.1.1021 Not tainted syzkaller #0 PREEMPT(full) 
[  202.575474][ T8674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  202.575486][ T8674] Call Trace:
[  202.575494][ T8674]  <TASK>
[  202.575502][ T8674]  dump_stack_lvl+0x189/0x250
[  202.575537][ T8674]  ? __pfx____ratelimit+0x10/0x10
[  202.575562][ T8674]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.575592][ T8674]  ? __pfx__printk+0x10/0x10
[  202.575622][ T8674]  ? __pfx___might_resched+0x10/0x10
[  202.575644][ T8674]  ? lock_acquire+0x5f/0x360
[  202.575664][ T8674]  should_fail_ex+0x414/0x560
[  202.575693][ T8674]  should_failslab+0xa8/0x100
[  202.575714][ T8674]  __kmalloc_noprof+0xcb/0x4b0
[  202.575742][ T8674]  ? kfree+0x4d/0x440
[  202.575765][ T8674]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  202.575797][ T8674]  tomoyo_realpath_from_path+0xe3/0x5d0
[  202.575831][ T8674]  tomoyo_check_open_permission+0x1c1/0x3b0
[  202.575853][ T8674]  ? kmem_cache_alloc_noprof+0x1ad/0x390
[  202.575881][ T8674]  ? tomoyo_check_open_permission+0x16a/0x3b0
[  202.575903][ T8674]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  202.575925][ T8674]  ? __x64_sys_open+0x11e/0x150
[  202.575969][ T8674]  ? rcu_is_watching+0x15/0xb0
[  202.575992][ T8674]  ? tomoyo_file_open+0x165/0x220
[  202.576022][ T8674]  security_file_open+0xb1/0x270
[  202.576044][ T8674]  do_dentry_open+0x384/0x13f0
[  202.576074][ T8674]  ? vfs_open+0x31/0x340
[  202.576100][ T8674]  vfs_open+0x3b/0x340
[  202.576124][ T8674]  ? path_openat+0x2ecd/0x3830
[  202.576142][ T8674]  path_openat+0x2ee5/0x3830
[  202.576158][ T8674]  ? arch_stack_walk+0xfc/0x150
[  202.576192][ T8674]  ? stack_depot_save_flags+0x40/0x860
[  202.576224][ T8674]  ? __pfx_path_openat+0x10/0x10
[  202.576251][ T8674]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.576281][ T8674]  do_filp_open+0x1fa/0x410
[  202.576320][ T8674]  ? __pfx_do_filp_open+0x10/0x10
[  202.576359][ T8674]  ? _raw_spin_unlock+0x28/0x50
[  202.576383][ T8674]  ? alloc_fd+0x64c/0x6c0
[  202.576409][ T8674]  do_sys_openat2+0x121/0x1c0
[  202.576436][ T8674]  ? __pfx_do_sys_openat2+0x10/0x10
[  202.576462][ T8674]  ? ksys_write+0x22a/0x250
[  202.576482][ T8674]  ? __pfx_ksys_write+0x10/0x10
[  202.576500][ T8674]  __x64_sys_open+0x11e/0x150
[  202.576528][ T8674]  do_syscall_64+0xfa/0xfa0
[  202.576555][ T8674]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.576575][ T8674]  ? clear_bhb_loop+0x60/0xb0
[  202.576596][ T8674]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.576615][ T8674] RIP: 0033:0x7fabd378ebe9
[  202.576632][ T8674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.576650][ T8674] RSP: 002b:00007fabd46d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  202.576672][ T8674] RAX: ffffffffffffffda RBX: 00007fabd39c5fa0 RCX: 00007fabd378ebe9
[  202.576686][ T8674] RDX: 0000000000000003 RSI: 0000000000000900 RDI: 0000200000000300
[  202.576699][ T8674] RBP: 00007fabd46d9090 R08: 0000000000000000 R09: 0000000000000000
[  202.576711][ T8674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.576722][ T8674] R13: 00007fabd39c6038 R14: 00007fabd39c5fa0 R15: 00007ffd8397d638
[  202.576745][ T8674]  </TASK>
[  202.576794][ T8674] ERROR: Out of memory at tomoyo_realpath_from_path.
[  202.727761][ T8670] FAULT_INJECTION: forcing a failure.
[  202.727761][ T8670] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.842145][    C0] vkms_vblank_simulate: vblank timer overrun
[  202.925178][ T8670] CPU: 0 UID: 0 PID: 8670 Comm: syz.3.1022 Not tainted syzkaller #0 PREEMPT(full) 
[  202.925207][ T8670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  202.925219][ T8670] Call Trace:
[  202.925226][ T8670]  <TASK>
[  202.925234][ T8670]  dump_stack_lvl+0x189/0x250
[  202.925270][ T8670]  ? __pfx____ratelimit+0x10/0x10
[  202.925294][ T8670]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.925324][ T8670]  ? __pfx__printk+0x10/0x10
[  202.925350][ T8670]  ? rcu_is_watching+0x15/0xb0
[  202.925373][ T8670]  ? lock_acquire+0x5f/0x360
[  202.925392][ T8670]  ? vmx_get_segment+0x1ee/0x690
[  202.925422][ T8670]  ? rcu_is_watching+0x15/0xb0
[  202.925445][ T8670]  should_fail_ex+0x414/0x560
[  202.925475][ T8670]  __kvm_read_guest_page+0x18d/0x240
[  202.925496][ T8670]  kvm_fetch_guest_virt+0x12b/0x170
[  202.925534][ T8670]  ? __pfx_kvm_fetch_guest_virt+0x10/0x10
[  202.925560][ T8670]  __do_insn_fetch_bytes+0x2fc/0x6d0
[  202.925583][ T8670]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[  202.925606][ T8670]  ? get_user_pages_unlocked+0x60a/0x720
[  202.925638][ T8670]  x86_decode_insn+0x33c/0x5310
[  202.925657][ T8670]  ? kvm_is_mmio_pfn+0x169/0x730
[  202.925686][ T8670]  ? rcu_is_watching+0x15/0xb0
[  202.925708][ T8670]  ? kvm_is_mmio_pfn+0x169/0x730
[  202.925742][ T8670]  ? handle_changed_spte+0x1cd/0x10a0
[  202.925770][ T8670]  ? __pfx_x86_decode_insn+0x10/0x10
[  202.925795][ T8670]  ? __asan_memset+0x22/0x50
[  202.925821][ T8670]  ? init_decode_cache+0x78/0x90
[  202.925841][ T8670]  ? init_emulate_ctxt+0x4d6/0x660
[  202.925871][ T8670]  ? __pfx_init_emulate_ctxt+0x10/0x10
[  202.925903][ T8670]  ? trace_rcu_utilization+0x47/0x1d0
[  202.925928][ T8670]  x86_emulate_instruction+0x61b/0x1f90
[  202.925961][ T8670]  ? lock_release+0x4b/0x3e0
[  202.925979][ T8670]  ? kvm_set_page_dirty+0x141/0x3e0
[  202.926011][ T8670]  ? _raw_read_unlock+0x28/0x50
[  202.926035][ T8670]  ? __pfx_x86_emulate_instruction+0x10/0x10
[  202.926063][ T8670]  ? __get_current_cr3_fast+0x90/0x150
[  202.926094][ T8670]  ? clear_bhb_loop+0x60/0xb0
[  202.926113][ T8670]  ? clear_bhb_loop+0x60/0xb0
[  202.926133][ T8670]  ? vmx_vcpu_run+0xe92/0x2b70
[  202.926157][ T8670]  ? __vmx_complete_interrupts+0xe7/0x690
[  202.926187][ T8670]  handle_ud+0x142/0x590
[  202.926216][ T8670]  ? __pfx_handle_ud+0x10/0x10
[  202.926242][ T8670]  ? vmx_handle_exit_irqoff+0x61e/0x940
[  202.926266][ T8670]  ? __pfx_current_save_fsgs+0x10/0x10
[  202.926303][ T8670]  ? __pfx_handle_exception_nmi+0x10/0x10
[  202.926331][ T8670]  vmx_handle_exit+0x10a1/0x18c0
[  202.926354][ T8670]  ? vcpu_run+0x35f2/0x6fa0
[  202.926374][ T8670]  ? lock_acquire+0x5f/0x360
[  202.926392][ T8670]  ? rcu_is_watching+0x15/0xb0
[  202.926419][ T8670]  vcpu_run+0x434f/0x6fa0
[  202.926448][ T8670]  ? vcpu_run+0x35f2/0x6fa0
[  202.926491][ T8670]  ? __pfx_vcpu_run+0x10/0x10
[  202.926510][ T8670]  ? __local_bh_enable_ip+0x12d/0x1c0
[  202.926566][ T8670]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  202.926587][ T8670]  ? rcu_is_watching+0x15/0xb0
[  202.926609][ T8670]  ? lock_acquire+0x5f/0x360
[  202.926630][ T8670]  ? rcu_is_watching+0x15/0xb0
[  202.926652][ T8670]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  202.926676][ T8670]  ? __mutex_trylock_common+0x153/0x260
[  202.926702][ T8670]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  202.926724][ T8670]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  202.926746][ T8670]  ? rcu_is_watching+0x15/0xb0
[  202.926767][ T8670]  ? trace_contention_end+0x39/0x120
[  202.926791][ T8670]  ? __mutex_lock+0x335/0x1350
[  202.926825][ T8670]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  202.926845][ T8670]  ? __pfx___mutex_lock+0x10/0x10
[  202.926871][ T8670]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  202.926897][ T8670]  ? do_vfs_ioctl+0xbe8/0x1430
[  202.926915][ T8670]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  202.926936][ T8670]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  202.926969][ T8670]  kvm_vcpu_ioctl+0x95c/0xe90
[  202.926990][ T8670]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  202.927009][ T8670]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  202.927048][ T8670]  ? __fget_files+0x3a0/0x420
[  202.927067][ T8670]  ? __fget_files+0x2a/0x420
[  202.927087][ T8670]  ? bpf_lsm_file_ioctl+0x9/0x20
[  202.927109][ T8670]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  202.927124][ T8670]  __se_sys_ioctl+0xf9/0x170
[  202.927149][ T8670]  do_syscall_64+0xfa/0xfa0
[  202.927172][ T8670]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.927188][ T8670]  ? clear_bhb_loop+0x60/0xb0
[  202.927206][ T8670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.927221][ T8670] RIP: 0033:0x7f800c98ebe9
[  202.927236][ T8670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.927251][ T8670] RSP: 002b:00007f800d7cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  202.927269][ T8670] RAX: ffffffffffffffda RBX: 00007f800cbc5fa0 RCX: 00007f800c98ebe9
[  202.927283][ T8670] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  202.927293][ T8670] RBP: 00007f800d7cb090 R08: 0000000000000000 R09: 0000000000000000
[  202.927303][ T8670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  202.927312][ T8670] R13: 00007f800cbc6038 R14: 00007f800cbc5fa0 R15: 00007ffc2f8312e8
[  202.927331][ T8670]  </TASK>
[  203.429496][    C0] vkms_vblank_simulate: vblank timer overrun
[  203.589353][ T5866] Process accounting resumed
[  203.668514][ T8697] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1031'.
[  203.703972][ T8700] omfs: Invalid superblock (0)
[  203.776493][ T8703] program syz.1.1032 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  203.837830][ T5187] Bluetooth: hci2: unexpected event for opcode 0x042c
[  203.957140][ T8713] UDF-fs: warning (device rnullb0): udf_load_vrs: No VRS found
[  203.965654][ T8713] UDF-fs: Scanning with blocksize 4096 failed
[  204.188463][ T8723] EXT4-fs (rnullb0): VFS: Can't find ext4 filesystem
[  204.344664][ T5187] Bluetooth: hci0: unexpected event for opcode 0x042c
[  204.389381][ T8732] binder: 8730:8732 ioctl c0306201 200000000680 returned -14
[  204.389458][ T8733] program syz.1.1044 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  204.450733][ T8736] FAULT_INJECTION: forcing a failure.
[  204.450733][ T8736] name failslab, interval 1, probability 0, space 0, times 0
[  204.473362][ T8736] CPU: 0 UID: 0 PID: 8736 Comm: syz.2.1045 Not tainted syzkaller #0 PREEMPT(full) 
[  204.473391][ T8736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  204.473404][ T8736] Call Trace:
[  204.473412][ T8736]  <TASK>
[  204.473420][ T8736]  dump_stack_lvl+0x189/0x250
[  204.473456][ T8736]  ? __pfx____ratelimit+0x10/0x10
[  204.473482][ T8736]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.473513][ T8736]  ? __pfx__printk+0x10/0x10
[  204.473539][ T8736]  ? read_seqbegin+0x1ac/0x250
[  204.473571][ T8736]  ? __pfx___might_resched+0x10/0x10
[  204.473592][ T8736]  ? lock_acquire+0x5f/0x360
[  204.473610][ T8736]  should_fail_ex+0x414/0x560
[  204.473639][ T8736]  should_failslab+0xa8/0x100
[  204.473658][ T8736]  __kmalloc_noprof+0xcb/0x4b0
[  204.473687][ T8736]  ? tomoyo_encode+0x28b/0x550
[  204.473715][ T8736]  tomoyo_encode+0x28b/0x550
[  204.473744][ T8736]  tomoyo_realpath_from_path+0x58d/0x5d0
[  204.473777][ T8736]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  204.473798][ T8736]  tomoyo_path_number_perm+0x1e8/0x5a0
[  204.473820][ T8736]  ? lock_release+0x4b/0x3e0
[  204.473839][ T8736]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  204.473863][ T8736]  ? rcu_is_watching+0x15/0xb0
[  204.473884][ T8736]  ? lock_release+0x4b/0x3e0
[  204.473901][ T8736]  ? vfs_write+0x956/0xb30
[  204.473923][ T8736]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  204.473965][ T8736]  ? __fget_files+0x3a0/0x420
[  204.473988][ T8736]  ? __fget_files+0x2a/0x420
[  204.474012][ T8736]  security_file_ioctl+0xcb/0x2d0
[  204.474034][ T8736]  __se_sys_ioctl+0x47/0x170
[  204.474065][ T8736]  do_syscall_64+0xfa/0xfa0
[  204.474092][ T8736]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.474112][ T8736]  ? clear_bhb_loop+0x60/0xb0
[  204.474133][ T8736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.474162][ T8736] RIP: 0033:0x7efc4bb8ebe9
[  204.474180][ T8736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.474198][ T8736] RSP: 002b:00007efc49df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  204.474224][ T8736] RAX: ffffffffffffffda RBX: 00007efc4bdc5fa0 RCX: 00007efc4bb8ebe9
[  204.474239][ T8736] RDX: 0000200000000000 RSI: 000000008028640c RDI: 0000000000000003
[  204.474252][ T8736] RBP: 00007efc49df6090 R08: 0000000000000000 R09: 0000000000000000
[  204.474264][ T8736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.474276][ T8736] R13: 00007efc4bdc6038 R14: 00007efc4bdc5fa0 R15: 00007fffe7cca6a8
[  204.474300][ T8736]  </TASK>
[  204.474589][ T8736] ERROR: Out of memory at tomoyo_realpath_from_path.
[  204.925502][ T5187] Bluetooth: hci0: unexpected event for opcode 0x042c
[  204.938300][ T8751] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'.
[  205.001340][ T8757] binder: 8756:8757 ioctl c0306201 200000000680 returned -14
[  205.017489][ T8759] program syz.1.1055 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  205.089453][ T8762] FAULT_INJECTION: forcing a failure.
[  205.089453][ T8762] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  205.103843][ T8762] CPU: 0 UID: 0 PID: 8762 Comm: syz.2.1056 Not tainted syzkaller #0 PREEMPT(full) 
[  205.103874][ T8762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  205.103887][ T8762] Call Trace:
[  205.103896][ T8762]  <TASK>
[  205.103905][ T8762]  dump_stack_lvl+0x189/0x250
[  205.103944][ T8762]  ? __pfx____ratelimit+0x10/0x10
[  205.103972][ T8762]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.104004][ T8762]  ? __pfx__printk+0x10/0x10
[  205.104032][ T8762]  ? rcu_is_watching+0x15/0xb0
[  205.104056][ T8762]  ? lock_acquire+0x5f/0x360
[  205.104076][ T8762]  ? vmx_get_segment+0x1ee/0x690
[  205.104119][ T8762]  ? rcu_is_watching+0x15/0xb0
[  205.104142][ T8762]  should_fail_ex+0x414/0x560
[  205.104171][ T8762]  __kvm_read_guest_page+0x18d/0x240
[  205.104192][ T8762]  kvm_fetch_guest_virt+0x12b/0x170
[  205.104221][ T8762]  ? __pfx_kvm_fetch_guest_virt+0x10/0x10
[  205.104247][ T8762]  __do_insn_fetch_bytes+0x2fc/0x6d0
[  205.104271][ T8762]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[  205.104293][ T8762]  ? __asan_memcpy+0x40/0x70
[  205.104319][ T8762]  ? decode_register+0x30c/0x520
[  205.104344][ T8762]  x86_decode_insn+0x33c/0x5310
[  205.104364][ T8762]  ? kvm_is_mmio_pfn+0x169/0x730
[  205.104398][ T8762]  ? rcu_is_watching+0x15/0xb0
[  205.104433][ T8762]  ? __pfx_x86_decode_insn+0x10/0x10
[  205.104460][ T8762]  ? __asan_memset+0x22/0x50
[  205.104485][ T8762]  ? init_decode_cache+0x78/0x90
[  205.104505][ T8762]  ? init_emulate_ctxt+0x4d6/0x660
[  205.104536][ T8762]  ? __pfx_init_emulate_ctxt+0x10/0x10
[  205.104568][ T8762]  ? trace_rcu_utilization+0x47/0x1d0
[  205.104592][ T8762]  x86_emulate_instruction+0x61b/0x1f90
[  205.104631][ T8762]  ? __pfx_x86_emulate_instruction+0x10/0x10
[  205.104660][ T8762]  ? __get_current_cr3_fast+0x90/0x150
[  205.104692][ T8762]  ? clear_bhb_loop+0x60/0xb0
[  205.104712][ T8762]  ? clear_bhb_loop+0x60/0xb0
[  205.104733][ T8762]  ? vmx_vcpu_run+0xe92/0x2b70
[  205.104756][ T8762]  ? __vmx_complete_interrupts+0xe7/0x690
[  205.104785][ T8762]  handle_ud+0x142/0x590
[  205.104814][ T8762]  ? __pfx_handle_ud+0x10/0x10
[  205.104840][ T8762]  ? vmx_handle_exit_irqoff+0x61e/0x940
[  205.104870][ T8762]  ? __pfx_handle_exception_nmi+0x10/0x10
[  205.104897][ T8762]  vmx_handle_exit+0x10a1/0x18c0
[  205.104919][ T8762]  ? vcpu_run+0x35f2/0x6fa0
[  205.104940][ T8762]  ? lock_acquire+0x5f/0x360
[  205.104958][ T8762]  ? rcu_is_watching+0x15/0xb0
[  205.104984][ T8762]  vcpu_run+0x434f/0x6fa0
[  205.105013][ T8762]  ? vcpu_run+0x35f2/0x6fa0
[  205.105056][ T8762]  ? __pfx_vcpu_run+0x10/0x10
[  205.105075][ T8762]  ? __local_bh_enable_ip+0x12d/0x1c0
[  205.105105][ T8762]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  205.105125][ T8762]  ? rcu_is_watching+0x15/0xb0
[  205.105146][ T8762]  ? lock_acquire+0x5f/0x360
[  205.105167][ T8762]  ? rcu_is_watching+0x15/0xb0
[  205.105190][ T8762]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  205.105212][ T8762]  ? __mutex_trylock_common+0x153/0x260
[  205.105237][ T8762]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  205.105258][ T8762]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  205.105280][ T8762]  ? rcu_is_watching+0x15/0xb0
[  205.105301][ T8762]  ? trace_contention_end+0x39/0x120
[  205.105326][ T8762]  ? __mutex_lock+0x335/0x1350
[  205.105359][ T8762]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  205.105380][ T8762]  ? __pfx___mutex_lock+0x10/0x10
[  205.105406][ T8762]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  205.105432][ T8762]  ? do_vfs_ioctl+0xbe8/0x1430
[  205.105449][ T8762]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  205.105471][ T8762]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  205.105502][ T8762]  kvm_vcpu_ioctl+0x95c/0xe90
[  205.105523][ T8762]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  205.105542][ T8762]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  205.105583][ T8762]  ? __fget_files+0x3a0/0x420
[  205.105606][ T8762]  ? __fget_files+0x2a/0x420
[  205.105631][ T8762]  ? bpf_lsm_file_ioctl+0x9/0x20
[  205.105659][ T8762]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  205.105678][ T8762]  __se_sys_ioctl+0xf9/0x170
[  205.105708][ T8762]  do_syscall_64+0xfa/0xfa0
[  205.105736][ T8762]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.105756][ T8762]  ? clear_bhb_loop+0x60/0xb0
[  205.105776][ T8762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.105795][ T8762] RIP: 0033:0x7efc4bb8ebe9
[  205.105813][ T8762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.105831][ T8762] RSP: 002b:00007efc49df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  205.105853][ T8762] RAX: ffffffffffffffda RBX: 00007efc4bdc5fa0 RCX: 00007efc4bb8ebe9
[  205.105868][ T8762] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  205.105880][ T8762] RBP: 00007efc49df6090 R08: 0000000000000000 R09: 0000000000000000
[  205.105892][ T8762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  205.105903][ T8762] R13: 00007efc4bdc6038 R14: 00007efc4bdc5fa0 R15: 00007fffe7cca6a8
[  205.105926][ T8762]  </TASK>
[  205.110253][ T5187] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  205.909567][ T5187] Bluetooth: hci3: unexpected event for opcode 0x042c
[  205.970537][ T3096] Process accounting resumed
[  205.982056][  T981] usb 4-1: new full-speed USB device number 19 using dummy_hcd
[  206.029717][ T8786] binder: BINDER_SET_CONTEXT_MGR already set
[  206.036417][ T8786] binder: 8785:8786 ioctl 4018620d 200000000100 returned -16
[  206.045764][ T8786] binder: BINDER_SET_CONTEXT_MGR already set
[  206.051852][ T8786] binder: 8785:8786 ioctl 4018620d 2000000002c0 returned -16
[  206.153353][  T981] usb 4-1: config 1 interface 0 has no altsetting 0
[  206.163600][  T981] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  206.172902][  T981] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.180970][  T981] usb 4-1: Product: syz
[  206.185336][  T981] usb 4-1: Manufacturer: syz
[  206.190033][  T981] usb 4-1: SerialNumber: syz
[  206.225641][ T8791] program syz.1.1067 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  206.335980][ T8793] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  206.348683][ T8793] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  206.355382][ T8793] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  206.364169][ T8793] vhci_hcd vhci_hcd.0: Device attached
[  206.371460][ T8794] usbip_core: unknown command
[  206.379004][ T8794] vhci_hcd: unknown pdu 1650553953
[  206.384381][ T8794] usbip_core: unknown command
[  206.389460][ T3014] vhci_hcd: stop threads
[  206.394017][ T3014] vhci_hcd: release socket
[  206.398511][ T3014] vhci_hcd: disconnect device
[  206.685104][ T8799] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1070'.
[  206.920776][  T981] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 19 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  206.942945][  T981] usb 4-1: USB disconnect, device number 19
[  206.949169][ T5187] Bluetooth: hci0: unexpected event for opcode 0x042c
[  206.967970][  T981] usblp0: removed
[  207.000392][ T3096] Process accounting resumed
[  207.087374][ T8812] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  207.139771][ T8816] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1075'.
[  207.458672][ T8818] program syz.3.1076 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  207.611656][ T8824] FAULT_INJECTION: forcing a failure.
[  207.611656][ T8824] name failslab, interval 1, probability 0, space 0, times 0
[  207.625284][ T8824] CPU: 0 UID: 0 PID: 8824 Comm: syz.3.1079 Not tainted syzkaller #0 PREEMPT(full) 
[  207.625314][ T8824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  207.625327][ T8824] Call Trace:
[  207.625334][ T8824]  <TASK>
[  207.625342][ T8824]  dump_stack_lvl+0x189/0x250
[  207.625378][ T8824]  ? __pfx____ratelimit+0x10/0x10
[  207.625403][ T8824]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.625434][ T8824]  ? __pfx__printk+0x10/0x10
[  207.625464][ T8824]  ? fs_reclaim_acquire+0x7d/0x100
[  207.625485][ T8824]  ? __pfx___might_resched+0x10/0x10
[  207.625507][ T8824]  ? lock_acquire+0x5f/0x360
[  207.625527][ T8824]  should_fail_ex+0x414/0x560
[  207.625557][ T8824]  should_failslab+0xa8/0x100
[  207.625577][ T8824]  kmem_cache_alloc_noprof+0x73/0x390
[  207.625606][ T8824]  ? alloc_pid+0x9f/0xab0
[  207.625629][ T8824]  ? copy_thread+0x4c6/0x9a0
[  207.625653][ T8824]  alloc_pid+0x9f/0xab0
[  207.625681][ T8824]  copy_process+0x198e/0x3c00
[  207.625713][ T8824]  ? copy_process+0x97f/0x3c00
[  207.625740][ T8824]  ? __pfx_copy_process+0x10/0x10
[  207.625763][ T8824]  ? __raw_spin_lock_init+0x45/0x100
[  207.625792][ T8824]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  207.625831][ T8824]  vhost_task_create+0x1c4/0x290
[  207.625857][ T8824]  ? arch_stack_walk+0xfc/0x150
[  207.625875][ T8824]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  207.625904][ T8824]  ? __pfx_vhost_task_create+0x10/0x10
[  207.625927][ T8824]  ? __pfx_vhost_task_fn+0x10/0x10
[  207.625958][ T8824]  ? kasan_save_track+0x4f/0x80
[  207.625987][ T8824]  kvm_mmu_post_init_vm+0x14c/0x300
[  207.626009][ T8824]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  207.626033][ T8824]  ? __mutex_trylock_common+0x153/0x260
[  207.626059][ T8824]  ? __pfx___mutex_trylock_common+0x10/0x10
[  207.626082][ T8824]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  207.626105][ T8824]  ? rcu_is_watching+0x15/0xb0
[  207.626121][ T8824]  ? trace_contention_end+0x39/0x120
[  207.626139][ T8824]  ? __mutex_lock+0x335/0x1350
[  207.626164][ T8824]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  207.626181][ T8824]  ? rcu_is_watching+0x15/0xb0
[  207.626196][ T8824]  ? lock_release+0x4b/0x3e0
[  207.626209][ T8824]  ? get_task_pid+0x22/0x310
[  207.626230][ T8824]  kvm_vcpu_ioctl+0x95c/0xe90
[  207.626246][ T8824]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  207.626259][ T8824]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  207.626289][ T8824]  ? __fget_files+0x3a0/0x420
[  207.626305][ T8824]  ? __fget_files+0x2a/0x420
[  207.626323][ T8824]  ? bpf_lsm_file_ioctl+0x9/0x20
[  207.626343][ T8824]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  207.626355][ T8824]  __se_sys_ioctl+0xf9/0x170
[  207.626378][ T8824]  do_syscall_64+0xfa/0xfa0
[  207.626397][ T8824]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.626411][ T8824]  ? clear_bhb_loop+0x60/0xb0
[  207.626427][ T8824]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.626440][ T8824] RIP: 0033:0x7f800c98ebe9
[  207.626454][ T8824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.626466][ T8824] RSP: 002b:00007f800d7cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  207.626481][ T8824] RAX: ffffffffffffffda RBX: 00007f800cbc5fa0 RCX: 00007f800c98ebe9
[  207.626492][ T8824] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  207.626500][ T8824] RBP: 00007f800d7cb090 R08: 0000000000000000 R09: 0000000000000000
[  207.626509][ T8824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.626517][ T8824] R13: 00007f800cbc6038 R14: 00007f800cbc5fa0 R15: 00007ffc2f8312e8
[  207.626534][ T8824]  </TASK>
[  208.011651][ T8827] binder: 8826:8827 ioctl c0306201 0 returned -14
[  208.147519][ T8833] fuse: Unknown parameter 'grou00000000000000000000'
[  208.157104][ T5908] Process accounting resumed
[  208.264844][ T8845] program syz.0.1086 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  208.276709][ T8840] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1085'.
[  208.358197][ T8848] netlink: 'syz.1.1084': attribute type 12 has an invalid length.
[  208.540922][ T8854] sg_write: data in/out 44713/14 bytes for SCSI command 0x0-- guessing data in;
[  208.540922][ T8854]    program syz.0.1088 not setting count and/or reply_len properly
[  208.684909][ T5187] Bluetooth: hci3: unexpected event for opcode 0x042c
[  209.329884][ T8875] fuse: Unknown parameter 'grou00000000000000000000'
[  209.343934][ T5908] Process accounting resumed
[  209.496057][ T8884] program syz.2.1096 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  209.568794][ T5187] Bluetooth: hci1: unexpected event for opcode 0x042c
[  209.956624][ T8902] netlink: 'syz.0.1101': attribute type 12 has an invalid length.
[  210.408339][ T8910] fuse: Unknown parameter 'grou00000000000000000000'
[  210.416933][  T981] Process accounting resumed
[  210.508692][ T8913] FAULT_INJECTION: forcing a failure.
[  210.508692][ T8913] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  210.531219][ T8913] CPU: 0 UID: 0 PID: 8913 Comm: syz.3.1105 Not tainted syzkaller #0 PREEMPT(full) 
[  210.531248][ T8913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  210.531262][ T8913] Call Trace:
[  210.531270][ T8913]  <TASK>
[  210.531278][ T8913]  dump_stack_lvl+0x189/0x250
[  210.531314][ T8913]  ? __pfx____ratelimit+0x10/0x10
[  210.531340][ T8913]  ? __pfx_dump_stack_lvl+0x10/0x10
[  210.531370][ T8913]  ? __pfx__printk+0x10/0x10
[  210.531400][ T8913]  ? lock_acquire+0x5f/0x360
[  210.531423][ T8913]  should_fail_ex+0x414/0x560
[  210.531453][ T8913]  prepare_alloc_pages+0x213/0x610
[  210.531479][ T8913]  __alloc_frozen_pages_noprof+0x123/0x370
[  210.531504][ T8913]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  210.531532][ T8913]  ? policy_nodemask+0x27c/0x720
[  210.531562][ T8913]  ? __pfx_free_vmap_area_rb_augment_cb_rotate+0x10/0x10
[  210.531585][ T8913]  ? free_vmap_area_rb_augment_cb_rotate+0x16e/0x180
[  210.531611][ T8913]  alloc_pages_mpol+0x232/0x4a0
[  210.531631][ T8913]  alloc_pages_noprof+0xa9/0x190
[  210.531650][ T8913]  get_free_pages_noprof+0xf/0x80
[  210.531671][ T8913]  kasan_populate_vmalloc+0x33/0x1a0
[  210.531698][ T8913]  ? do_raw_spin_unlock+0x122/0x240
[  210.531727][ T8913]  alloc_vmap_area+0xd51/0x1490
[  210.531764][ T8913]  ? __pfx_alloc_vmap_area+0x10/0x10
[  210.531792][ T8913]  ? __kasan_kmalloc+0x93/0xb0
[  210.531822][ T8913]  ? __kmalloc_cache_node_noprof+0x220/0x3a0
[  210.531861][ T8913]  ? __get_vm_area_node+0x13f/0x300
[  210.531890][ T8913]  ? copy_process+0x54b/0x3c00
[  210.531918][ T8913]  __get_vm_area_node+0x1f8/0x300
[  210.531949][ T8913]  __vmalloc_node_range_noprof+0x301/0x12f0
[  210.531967][ T8913]  ? copy_process+0x54b/0x3c00
[  210.531989][ T8913]  ? rcu_is_watching+0x15/0xb0
[  210.532012][ T8913]  ? percpu_ref_get_many+0x19/0x140
[  210.532033][ T8913]  ? percpu_ref_get_many+0x19/0x140
[  210.532057][ T8913]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  210.532078][ T8913]  ? memcpy_and_pad+0x48/0x80
[  210.532106][ T8913]  __vmalloc_node_noprof+0xc2/0x110
[  210.532124][ T8913]  ? copy_process+0x54b/0x3c00
[  210.532146][ T8913]  ? copy_process+0x54b/0x3c00
[  210.532170][ T8913]  dup_task_struct+0x3e7/0x860
[  210.532195][ T8913]  copy_process+0x54b/0x3c00
[  210.532233][ T8913]  ? __pfx_copy_process+0x10/0x10
[  210.532258][ T8913]  ? __raw_spin_lock_init+0x45/0x100
[  210.532287][ T8913]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  210.532318][ T8913]  vhost_task_create+0x1c4/0x290
[  210.532344][ T8913]  ? arch_stack_walk+0xfc/0x150
[  210.532369][ T8913]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  210.532401][ T8913]  ? __pfx_vhost_task_create+0x10/0x10
[  210.532431][ T8913]  ? __pfx_vhost_task_fn+0x10/0x10
[  210.532462][ T8913]  ? kasan_save_track+0x4f/0x80
[  210.532490][ T8913]  kvm_mmu_post_init_vm+0x14c/0x300
[  210.532512][ T8913]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  210.532536][ T8913]  ? __mutex_trylock_common+0x153/0x260
[  210.532562][ T8913]  ? __pfx___mutex_trylock_common+0x10/0x10
[  210.532588][ T8913]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  210.532611][ T8913]  ? rcu_is_watching+0x15/0xb0
[  210.532632][ T8913]  ? trace_contention_end+0x39/0x120
[  210.532656][ T8913]  ? __mutex_lock+0x335/0x1350
[  210.532690][ T8913]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  210.532715][ T8913]  ? rcu_is_watching+0x15/0xb0
[  210.532737][ T8913]  ? lock_release+0x4b/0x3e0
[  210.532755][ T8913]  ? get_task_pid+0x22/0x310
[  210.532784][ T8913]  kvm_vcpu_ioctl+0x95c/0xe90
[  210.532807][ T8913]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  210.532825][ T8913]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  210.532874][ T8913]  ? __fget_files+0x3a0/0x420
[  210.532898][ T8913]  ? __fget_files+0x2a/0x420
[  210.532923][ T8913]  ? bpf_lsm_file_ioctl+0x9/0x20
[  210.532951][ T8913]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  210.532970][ T8913]  __se_sys_ioctl+0xf9/0x170
[  210.533002][ T8913]  do_syscall_64+0xfa/0xfa0
[  210.533029][ T8913]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.533048][ T8913]  ? clear_bhb_loop+0x60/0xb0
[  210.533071][ T8913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.533089][ T8913] RIP: 0033:0x7f800c98ebe9
[  210.533106][ T8913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.533123][ T8913] RSP: 002b:00007f800d7cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  210.533145][ T8913] RAX: ffffffffffffffda RBX: 00007f800cbc5fa0 RCX: 00007f800c98ebe9
[  210.533160][ T8913] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  210.533172][ T8913] RBP: 00007f800d7cb090 R08: 0000000000000000 R09: 0000000000000000
[  210.533184][ T8913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  210.533196][ T8913] R13: 00007f800cbc6038 R14: 00007f800cbc5fa0 R15: 00007ffc2f8312e8
[  210.533219][ T8913]  </TASK>
[  211.164045][ T8913] syz.3.1105: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  211.183386][ T8913] CPU: 0 UID: 0 PID: 8913 Comm: syz.3.1105 Not tainted syzkaller #0 PREEMPT(full) 
[  211.183412][ T5187] Bluetooth: hci0: unexpected event for opcode 0x042c
[  211.183416][ T8913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  211.183431][ T8913] Call Trace:
[  211.183438][ T8913]  <TASK>
[  211.183447][ T8913]  dump_stack_lvl+0x189/0x250
[  211.183481][ T8913]  ? __pfx_dump_stack_lvl+0x10/0x10
[  211.183512][ T8913]  ? __pfx__printk+0x10/0x10
[  211.183557][ T8913]  ? lock_release+0x4b/0x3e0
[  211.183581][ T8913]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  211.183611][ T8913]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  211.183643][ T8913]  warn_alloc+0x214/0x310
[  211.183664][ T8913]  ? rcu_is_watching+0x15/0xb0
[  211.183692][ T8913]  ? __pfx_warn_alloc+0x10/0x10
[  211.183716][ T8913]  ? kfree+0x18e/0x440
[  211.183744][ T8913]  ? __get_vm_area_node+0x13f/0x300
[  211.183778][ T8913]  ? copy_process+0x54b/0x3c00
[  211.183803][ T8913]  ? __get_vm_area_node+0x211/0x300
[  211.183839][ T8913]  __vmalloc_node_range_noprof+0x326/0x12f0
[  211.183862][ T8913]  ? rcu_is_watching+0x15/0xb0
[  211.183888][ T8913]  ? percpu_ref_get_many+0x19/0x140
[  211.183912][ T8913]  ? percpu_ref_get_many+0x19/0x140
[  211.183940][ T8913]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  211.183963][ T8913]  ? memcpy_and_pad+0x48/0x80
[  211.183996][ T8913]  __vmalloc_node_noprof+0xc2/0x110
[  211.184016][ T8913]  ? copy_process+0x54b/0x3c00
[  211.184041][ T8913]  ? copy_process+0x54b/0x3c00
[  211.184066][ T8913]  dup_task_struct+0x3e7/0x860
[  211.184094][ T8913]  copy_process+0x54b/0x3c00
[  211.184135][ T8913]  ? __pfx_copy_process+0x10/0x10
[  211.184161][ T8913]  ? __raw_spin_lock_init+0x45/0x100
[  211.184194][ T8913]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  211.184229][ T8913]  vhost_task_create+0x1c4/0x290
[  211.184258][ T8913]  ? arch_stack_walk+0xfc/0x150
[  211.184286][ T8913]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  211.184321][ T8913]  ? __pfx_vhost_task_create+0x10/0x10
[  211.184355][ T8913]  ? __pfx_vhost_task_fn+0x10/0x10
[  211.184390][ T8913]  ? kasan_save_track+0x4f/0x80
[  211.184421][ T8913]  kvm_mmu_post_init_vm+0x14c/0x300
[  211.184446][ T8913]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  211.184473][ T8913]  ? __mutex_trylock_common+0x153/0x260
[  211.184501][ T8913]  ? __pfx___mutex_trylock_common+0x10/0x10
[  211.184536][ T8913]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  211.184562][ T8913]  ? rcu_is_watching+0x15/0xb0
[  211.184585][ T8913]  ? trace_contention_end+0x39/0x120
[  211.184612][ T8913]  ? __mutex_lock+0x335/0x1350
[  211.184651][ T8913]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  211.184678][ T8913]  ? rcu_is_watching+0x15/0xb0
[  211.184701][ T8913]  ? lock_release+0x4b/0x3e0
[  211.184721][ T8913]  ? get_task_pid+0x22/0x310
[  211.184754][ T8913]  kvm_vcpu_ioctl+0x95c/0xe90
[  211.184777][ T8913]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  211.184800][ T8913]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  211.184846][ T8913]  ? __fget_files+0x3a0/0x420
[  211.184872][ T8913]  ? __fget_files+0x2a/0x420
[  211.184899][ T8913]  ? bpf_lsm_file_ioctl+0x9/0x20
[  211.184931][ T8913]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  211.184952][ T8913]  __se_sys_ioctl+0xf9/0x170
[  211.184989][ T8913]  do_syscall_64+0xfa/0xfa0
[  211.185020][ T8913]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.185043][ T8913]  ? clear_bhb_loop+0x60/0xb0
[  211.185069][ T8913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.185090][ T8913] RIP: 0033:0x7f800c98ebe9
[  211.185111][ T8913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.185130][ T8913] RSP: 002b:00007f800d7cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  211.185153][ T8913] RAX: ffffffffffffffda RBX: 00007f800cbc5fa0 RCX: 00007f800c98ebe9
[  211.185171][ T8913] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  211.185185][ T8913] RBP: 00007f800d7cb090 R08: 0000000000000000 R09: 0000000000000000
[  211.185199][ T8913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  211.185213][ T8913] R13: 00007f800cbc6038 R14: 00007f800cbc5fa0 R15: 00007ffc2f8312e8
[  211.185238][ T8913]  </TASK>
[  211.185262][ T8913] Mem-Info:
[  211.468996][ T8928] FAULT_INJECTION: forcing a failure.
[  211.468996][ T8928] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  211.519098][ T8913] active_anon:6609 inactive_anon:0 isolated_anon:0
[  211.519098][ T8913]  active_file:21708 inactive_file:40486 isolated_file:0
[  211.519098][ T8913]  unevictable:3638 dirty:75 writeback:0
[  211.519098][ T8913]  slab_reclaimable:11834 slab_unreclaimable:90830
[  211.519098][ T8913]  mapped:26379 shmem:1357 pagetables:1239
[  211.519098][ T8913]  sec_pagetables:0 bounce:0
[  211.519098][ T8913]  kernel_misc_reclaimable:0
[  211.519098][ T8913]  free:1318544 free_pcp:19213 free_cma:0
[  211.569685][ T8928] CPU: 1 UID: 0 PID: 8928 Comm: syz.0.1109 Not tainted syzkaller #0 PREEMPT(full) 
[  211.569717][ T8928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  211.569732][ T8928] Call Trace:
[  211.569740][ T8928]  <TASK>
[  211.569750][ T8928]  dump_stack_lvl+0x189/0x250
[  211.569797][ T8928]  ? __pfx____ratelimit+0x10/0x10
[  211.569826][ T8928]  ? __pfx_dump_stack_lvl+0x10/0x10
[  211.569860][ T8928]  ? __pfx__printk+0x10/0x10
[  211.569894][ T8928]  ? lock_acquire+0x5f/0x360
[  211.569918][ T8928]  should_fail_ex+0x414/0x560
[  211.569951][ T8928]  prepare_alloc_pages+0x213/0x610
[  211.569981][ T8928]  __alloc_frozen_pages_noprof+0x123/0x370
[  211.570011][ T8928]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  211.570041][ T8928]  ? policy_nodemask+0x27c/0x720
[  211.570074][ T8928]  ? pfn_valid+0xba/0x490
[  211.570105][ T8928]  ? rcu_is_watching+0x15/0xb0
[  211.570132][ T8928]  alloc_pages_mpol+0x232/0x4a0
[  211.570154][ T8928]  vma_alloc_folio_noprof+0xe4/0x200
[  211.570177][ T8928]  ? rcu_read_lock_held+0xa/0x50
[  211.570203][ T8928]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  211.570225][ T8928]  ? rcu_is_watching+0x15/0xb0
[  211.570250][ T8928]  ? lock_release+0x4b/0x3e0
[  211.570270][ T8928]  folio_prealloc+0x30/0x180
[  211.570291][ T8928]  __handle_mm_fault+0x2a8b/0x5400
[  211.570322][ T8928]  ? rcu_is_watching+0x15/0xb0
[  211.570355][ T8928]  ? __pfx___handle_mm_fault+0x10/0x10
[  211.570394][ T8928]  ? follow_page_pte+0x7ef/0x13e0
[  211.570431][ T8928]  handle_mm_fault+0x40a/0x8e0
[  211.570469][ T8928]  __get_user_pages+0x1699/0x2ce0
[  211.570520][ T8928]  get_user_pages_unlocked+0x1e3/0x720
[  211.570553][ T8928]  hva_to_pfn+0x313/0xc90
[  211.570586][ T8928]  ? kvm_is_mmio_pfn+0x169/0x730
[  211.570622][ T8928]  ? __pfx_hva_to_pfn+0x10/0x10
[  211.570655][ T8928]  ? trace_kvm_tdp_mmu_spte_changed+0x8a/0x220
[  211.570679][ T8928]  ? handle_changed_spte+0x1cd/0x10a0
[  211.570712][ T8928]  ? xas_start+0x390/0x770
[  211.570740][ T8928]  ? xa_load+0x60/0x210
[  211.570769][ T8928]  ? rcu_is_watching+0x15/0xb0
[  211.570799][ T8928]  ? xa_load+0x60/0x210
[  211.570829][ T8928]  ? lock_release+0x4b/0x3e0
[  211.570850][ T8928]  ? kvm_follow_pfn+0x21a/0x3c0
[  211.570885][ T8928]  __kvm_faultin_pfn+0xaa/0x100
[  211.570922][ T8928]  kvm_mmu_faultin_pfn+0x765/0x1d10
[  211.570958][ T8928]  ? __pfx_kvm_mmu_faultin_pfn+0x10/0x10
[  211.570984][ T8928]  ? __pfx_fast_page_fault+0x10/0x10
[  211.571009][ T8928]  ? __kvm_mmu_topup_memory_cache+0x31a/0x610
[  211.571040][ T8928]  ? lock_release+0x4b/0x3e0
[  211.571063][ T8928]  kvm_tdp_page_fault+0x273/0x370
[  211.571095][ T8928]  kvm_mmu_do_page_fault+0x2c5/0x640
[  211.571123][ T8928]  ? vmx_vcpu_run+0xe92/0x2b70
[  211.571152][ T8928]  ? __pfx_kvm_mmu_do_page_fault+0x10/0x10
[  211.571188][ T8928]  ? vmx_handle_exit_irqoff+0x2a3/0x940
[  211.571217][ T8928]  kvm_mmu_page_fault+0x22f/0xb70
[  211.571249][ T8928]  ? __pfx_handle_ept_violation+0x10/0x10
[  211.571283][ T8928]  vmx_handle_exit+0x10a1/0x18c0
[  211.571307][ T8928]  ? vcpu_run+0x35f2/0x6fa0
[  211.571330][ T8928]  ? lock_acquire+0x5f/0x360
[  211.571350][ T8928]  ? rcu_is_watching+0x15/0xb0
[  211.571379][ T8928]  vcpu_run+0x434f/0x6fa0
[  211.571411][ T8928]  ? vcpu_run+0x35f2/0x6fa0
[  211.571459][ T8928]  ? __pfx_vcpu_run+0x10/0x10
[  211.571480][ T8928]  ? __local_bh_enable_ip+0x12d/0x1c0
[  211.571507][ T8928]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  211.571529][ T8928]  ? rcu_is_watching+0x15/0xb0
[  211.571553][ T8928]  ? lock_acquire+0x5f/0x360
[  211.571577][ T8928]  ? rcu_is_watching+0x15/0xb0
[  211.571603][ T8928]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  211.571630][ T8928]  ? __mutex_trylock_common+0x153/0x260
[  211.571659][ T8928]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  211.571684][ T8928]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  211.571707][ T8928]  ? rcu_is_watching+0x15/0xb0
[  211.571732][ T8928]  ? trace_contention_end+0x39/0x120
[  211.571758][ T8928]  ? __mutex_lock+0x335/0x1350
[  211.571806][ T8928]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  211.571830][ T8928]  ? __pfx___mutex_lock+0x10/0x10
[  211.571861][ T8928]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  211.571889][ T8928]  ? do_vfs_ioctl+0xbe8/0x1430
[  211.571908][ T8928]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  211.571934][ T8928]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  211.571970][ T8928]  kvm_vcpu_ioctl+0x95c/0xe90
[  211.571994][ T8928]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  211.572015][ T8928]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  211.572060][ T8928]  ? __fget_files+0x3a0/0x420
[  211.572086][ T8928]  ? __fget_files+0x2a/0x420
[  211.572113][ T8928]  ? bpf_lsm_file_ioctl+0x9/0x20
[  211.572143][ T8928]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  211.572165][ T8928]  __se_sys_ioctl+0xf9/0x170
[  211.572198][ T8928]  do_syscall_64+0xfa/0xfa0
[  211.572230][ T8928]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.572251][ T8928]  ? clear_bhb_loop+0x60/0xb0
[  211.572276][ T8928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.572297][ T8928] RIP: 0033:0x7fe20538ebe9
[  211.572316][ T8928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.572337][ T8928] RSP: 002b:00007fe206163038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  211.572361][ T8928] RAX: ffffffffffffffda RBX: 00007fe2055c6180 RCX: 00007fe20538ebe9
[  211.572378][ T8928] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  211.572393][ T8928] RBP: 00007fe206163090 R08: 0000000000000000 R09: 0000000000000000
[  211.572406][ T8928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  211.572419][ T8928] R13: 00007fe2055c6218 R14: 00007fe2055c6180 R15: 00007fff35e0f288
[  211.572445][ T8928]  </TASK>
[  211.792005][   T24] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  211.797366][ T8913] Node 0 active_anon:26636kB inactive_anon:0kB active_file:86832kB inactive_file:161740kB unevictable:13016kB isolated(anon):0kB isolated(file):0kB mapped:105516kB dirty:296kB writeback:0kB shmem:3892kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11960kB pagetables:5048kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  211.973622][   T24] usb 2-1: config 0 has an invalid interface number: 156 but max is 0
[  211.975542][ T8913] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:108kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  211.981893][   T24] usb 2-1: config 0 has no interface number 0
[  211.985929][ T8913] Node 0 
[  212.003792][   T24] usb 2-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  212.005819][ T8913] DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  212.018736][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.023250][ T8913] lowmem_reserve[]: 0 2495 2496 2496 2496
[  212.023299][ T8913] Node 0 DMA32 free:1374988kB boost:0kB min:34216kB low:42768kB high:51320kB reserved_highatomic:0KB free_highatomic:0KB active_anon:26592kB inactive_anon:0kB active_file:86832kB inactive_file:160672kB unevictable:13016kB writepending:296kB present:3129332kB managed:2555588kB mlocked:11480kB bounce:0kB free_pcp:48220kB local_pcp:25096kB free_cma:0kB
[  212.023361][ T8913] lowmem_reserve[]: 0 0
[  212.143200][   T24] usb 2-1: config 0 descriptor??
[  212.157415][ T8913]  1
[  212.228065][   T24] gspca_main: spca561-2.14.0 probing abcd:cdee
[  212.290214][ T8913]  1 1
[  212.403953][ T8913] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1068kB unevictable:0kB writepending:0kB present:1048580kB managed:1132kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  212.433097][ T8913] lowmem_reserve[]: 0 0 0 0 0
[  212.433291][   T24] spca561 2-1:0.156: probe with driver spca561 failed with error -22
[  212.434363][ T8913] 
[  212.439071][   T24] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  212.446237][ T8913] Node 1 Normal free:3883924kB boost:0kB min:55668kB low:69584kB high:83500kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:27720kB local_pcp:10204kB free_cma:0kB
[  212.446303][ T8913] lowmem_reserve[]: 0 0 0 0 0
[  212.446343][ T8913] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  212.451131][   T24] usb 2-1: MIDIStreaming interface descriptor not found
[  212.456213][ T8913] Node 0 DMA32: 707*4kB (UM) 1325*8kB (UM) 617*16kB (UME) 468*32kB (UME) 141*64kB (UME) 104*128kB (ME) 61*256kB (UM) 12*512kB (UM) 12*1024kB (UM) 1*2048kB (U) 313*4096kB (UM) = 1378756kB
[  212.456400][ T8913] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  212.456522][ T8913] Node 1 Normal: 169*4kB (UME) 5*8kB (UME) 3*16kB (M) 54*32kB (UM) 31*64kB (UME) 13*128kB (UME) 6*256kB (UM) 5*512kB (UM) 3*1024kB (ME) 2*2048kB (UE) 944*4096kB (UM) = 3884028kB
[  212.456709][ T8913] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  212.456727][ T8913] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  212.456744][ T8913] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  212.456761][ T8913] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  212.456778][ T8913] 63547 total pagecache pages
[  212.456791][ T8913] 0 pages in swap cache
[  212.456799][ T8913] Free swap  = 124996kB
[  212.456807][ T8913] Total swap = 124996kB
[  212.456816][ T8913] 2097051 pages RAM
[  212.456824][ T8913] 0 pages HighMem/MovableOnly
[  212.456832][ T8913] 426256 pages reserved
[  212.456840][ T8913] 0 pages cma reserved
[  212.662229][   T24] usb 2-1: USB disconnect, device number 16
[  212.732347][ T8938] fuse: Unknown parameter 'group_i00000000000000000000'
[  212.745330][ T5866] Process accounting resumed
[  212.762028][  T981] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  212.861806][ T5187] Bluetooth: hci1: unexpected event for opcode 0x042c
[  212.913703][  T981] usb 1-1: Using ep0 maxpacket: 16
[  212.926708][  T981] usb 1-1: config 0 has an invalid interface number: 251 but max is 0
[  212.935235][  T981] usb 1-1: config 0 has no interface number 0
[  212.941360][  T981] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  212.951575][  T981] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  213.003905][  T981] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  213.013070][  T981] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.021084][  T981] usb 1-1: Product: syz
[  213.025343][  T981] usb 1-1: Manufacturer: syz
[  213.029979][  T981] usb 1-1: SerialNumber: syz
[  213.036341][  T981] usb 1-1: config 0 descriptor??
[  213.043865][ T8933] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  213.051165][ T8933] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  213.123162][ T8957] netlink: 'syz.3.1117': attribute type 12 has an invalid length.
[  213.172227][ T6407] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[  213.230602][ T8959] program syz.1.1119 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  213.265134][ T8933] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  213.272550][ T8933] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  213.354873][ T8954] kvm: user requested TSC rate below hardware speed
[  213.479074][ T6407] usb 3-1: unable to get BOS descriptor or descriptor too short
[  213.489295][ T6407] usb 3-1: unable to read config index 0 descriptor/start: -71
[  213.499298][ T6407] usb 3-1: can't read configurations, error -71
[  213.880036][ T8966] fuse: Unknown parameter 'group_i00000000000000000000'
[  213.890081][ T5866] Process accounting resumed
[  213.891130][ T8933] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  213.905350][ T8933] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  213.915686][  T981] asix 1-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  213.930111][  T981] asix 1-1:0.251 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  213.941884][  T981] asix 1-1:0.251: probe with driver asix failed with error -71
[  213.957748][  T981] usb 1-1: USB disconnect, device number 18
[  213.971063][ T8968] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1122'.
[  214.029158][ T8970] binder: BINDER_SET_CONTEXT_MGR already set
[  214.037195][ T8970] binder: 8969:8970 ioctl 4018620d 200000000100 returned -16
[  214.046669][ T8970] binder: BINDER_SET_CONTEXT_MGR already set
[  214.053475][ T8970] binder: 8969:8970 ioctl 4018620d 2000000002c0 returned -16
[  214.127115][ T5187] Bluetooth: hci2: unexpected event for opcode 0x042c
[  214.315137][ T8982] XFS (rnullb0): Invalid superblock magic number
[  214.359633][ T8982] XFS (rnullb0): Invalid superblock magic number
[  214.584781][ T9006] netlink: 'syz.1.1130': attribute type 12 has an invalid length.
[  214.741984][ T6407] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  214.851381][ T9009] FAULT_INJECTION: forcing a failure.
[  214.851381][ T9009] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  214.864816][ T9009] CPU: 1 UID: 0 PID: 9009 Comm: syz.3.1133 Not tainted syzkaller #0 PREEMPT(full) 
[  214.864837][ T9009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  214.864847][ T9009] Call Trace:
[  214.864852][ T9009]  <TASK>
[  214.864858][ T9009]  dump_stack_lvl+0x189/0x250
[  214.864885][ T9009]  ? __pfx____ratelimit+0x10/0x10
[  214.864903][ T9009]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.864924][ T9009]  ? __pfx__printk+0x10/0x10
[  214.864945][ T9009]  ? lock_acquire+0x5f/0x360
[  214.864961][ T9009]  should_fail_ex+0x414/0x560
[  214.864982][ T9009]  prepare_alloc_pages+0x213/0x610
[  214.865000][ T9009]  __alloc_frozen_pages_noprof+0x123/0x370
[  214.865018][ T9009]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  214.865038][ T9009]  ? policy_nodemask+0x27c/0x720
[  214.865059][ T9009]  ? pfn_valid+0xba/0x490
[  214.865079][ T9009]  ? rcu_is_watching+0x15/0xb0
[  214.865096][ T9009]  alloc_pages_mpol+0x232/0x4a0
[  214.865111][ T9009]  vma_alloc_folio_noprof+0xe4/0x200
[  214.865123][ T9009]  ? rcu_read_lock_held+0xa/0x50
[  214.865140][ T9009]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  214.865154][ T9009]  ? rcu_is_watching+0x15/0xb0
[  214.865169][ T9009]  ? lock_release+0x4b/0x3e0
[  214.865183][ T9009]  folio_prealloc+0x30/0x180
[  214.865196][ T9009]  __handle_mm_fault+0x2a8b/0x5400
[  214.865216][ T9009]  ? rcu_is_watching+0x15/0xb0
[  214.865237][ T9009]  ? __pfx___handle_mm_fault+0x10/0x10
[  214.865265][ T9009]  ? follow_page_pte+0x7ef/0x13e0
[  214.865288][ T9009]  handle_mm_fault+0x40a/0x8e0
[  214.865312][ T9009]  __get_user_pages+0x1699/0x2ce0
[  214.865342][ T9009]  get_user_pages_unlocked+0x1e3/0x720
[  214.865365][ T9009]  hva_to_pfn+0x313/0xc90
[  214.865386][ T9009]  ? kvm_is_mmio_pfn+0x169/0x730
[  214.865409][ T9009]  ? __pfx_hva_to_pfn+0x10/0x10
[  214.865430][ T9009]  ? trace_kvm_tdp_mmu_spte_changed+0x8a/0x220
[  214.865445][ T9009]  ? handle_changed_spte+0x1cd/0x10a0
[  214.865462][ T9009]  ? xas_start+0x390/0x770
[  214.865480][ T9009]  ? xa_load+0x60/0x210
[  214.865507][ T9009]  ? rcu_is_watching+0x15/0xb0
[  214.865522][ T9009]  ? xa_load+0x60/0x210
[  214.865541][ T9009]  ? lock_release+0x4b/0x3e0
[  214.865560][ T9009]  ? kvm_follow_pfn+0x21a/0x3c0
[  214.865593][ T9009]  __kvm_faultin_pfn+0xaa/0x100
[  214.865627][ T9009]  kvm_mmu_faultin_pfn+0x765/0x1d10
[  214.865654][ T9009]  ? __pfx_kvm_mmu_faultin_pfn+0x10/0x10
[  214.865671][ T9009]  ? __pfx_fast_page_fault+0x10/0x10
[  214.865687][ T9009]  ? __kvm_mmu_topup_memory_cache+0x31a/0x610
[  214.865707][ T9009]  ? lock_release+0x4b/0x3e0
[  214.865723][ T9009]  kvm_tdp_page_fault+0x273/0x370
[  214.865743][ T9009]  kvm_mmu_do_page_fault+0x2c5/0x640
[  214.865762][ T9009]  ? vmx_vcpu_run+0xe92/0x2b70
[  214.865781][ T9009]  ? __pfx_kvm_mmu_do_page_fault+0x10/0x10
[  214.865804][ T9009]  ? vmx_handle_exit_irqoff+0x2a3/0x940
[  214.865823][ T9009]  kvm_mmu_page_fault+0x22f/0xb70
[  214.865844][ T9009]  ? __pfx_handle_ept_violation+0x10/0x10
[  214.865865][ T9009]  vmx_handle_exit+0x10a1/0x18c0
[  214.865880][ T9009]  ? vcpu_run+0x35f2/0x6fa0
[  214.865895][ T9009]  ? lock_acquire+0x5f/0x360
[  214.865907][ T9009]  ? rcu_is_watching+0x15/0xb0
[  214.865926][ T9009]  vcpu_run+0x434f/0x6fa0
[  214.865947][ T9009]  ? vcpu_run+0x35f2/0x6fa0
[  214.865977][ T9009]  ? __pfx_vcpu_run+0x10/0x10
[  214.865990][ T9009]  ? __local_bh_enable_ip+0x12d/0x1c0
[  214.866007][ T9009]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  214.866022][ T9009]  ? rcu_is_watching+0x15/0xb0
[  214.866037][ T9009]  ? lock_acquire+0x5f/0x360
[  214.866052][ T9009]  ? rcu_is_watching+0x15/0xb0
[  214.866068][ T9009]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  214.866085][ T9009]  ? __mutex_trylock_common+0x153/0x260
[  214.866103][ T9009]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  214.866119][ T9009]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  214.866134][ T9009]  ? rcu_is_watching+0x15/0xb0
[  214.866149][ T9009]  ? trace_contention_end+0x39/0x120
[  214.866166][ T9009]  ? __mutex_lock+0x335/0x1350
[  214.866190][ T9009]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  214.866204][ T9009]  ? __pfx___mutex_lock+0x10/0x10
[  214.866223][ T9009]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  214.866243][ T9009]  ? do_vfs_ioctl+0xbe8/0x1430
[  214.866255][ T9009]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  214.866271][ T9009]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  214.866294][ T9009]  kvm_vcpu_ioctl+0x95c/0xe90
[  214.866309][ T9009]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  214.866323][ T9009]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  214.866352][ T9009]  ? __fget_files+0x3a0/0x420
[  214.866369][ T9009]  ? __fget_files+0x2a/0x420
[  214.866386][ T9009]  ? bpf_lsm_file_ioctl+0x9/0x20
[  214.866405][ T9009]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  214.866418][ T9009]  __se_sys_ioctl+0xf9/0x170
[  214.866439][ T9009]  do_syscall_64+0xfa/0xfa0
[  214.866458][ T9009]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.866472][ T9009]  ? clear_bhb_loop+0x60/0xb0
[  214.866493][ T9009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.866507][ T9009] RIP: 0033:0x7f800c98ebe9
[  214.866519][ T9009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.866532][ T9009] RSP: 002b:00007f800d7cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  214.866548][ T9009] RAX: ffffffffffffffda RBX: 00007f800cbc5fa0 RCX: 00007f800c98ebe9
[  214.866559][ T9009] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  214.866567][ T9009] RBP: 00007f800d7cb090 R08: 0000000000000000 R09: 0000000000000000
[  214.866576][ T9009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  214.866585][ T9009] R13: 00007f800cbc6038 R14: 00007f800cbc5fa0 R15: 00007ffc2f8312e8
[  214.866602][ T9009]  </TASK>
[  214.903628][ T6407] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  215.544604][ T6407] usb 3-1: config 0 has no interface number 0
[  215.552804][ T6407] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  215.554697][ T5187] Bluetooth: hci3: unexpected event for opcode 0x042c
[  215.611338][ T6407] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.664353][ T6407] usb 3-1: Product: syz
[  215.676088][ T6407] usb 3-1: Manufacturer: syz
[  215.690312][ T6407] usb 3-1: SerialNumber: syz
[  215.698177][ T6407] usb 3-1: config 0 descriptor??
[  215.715948][ T9020] FAULT_INJECTION: forcing a failure.
[  215.715948][ T9020] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.729321][ T9020] CPU: 1 UID: 0 PID: 9020 Comm: syz.1.1138 Not tainted syzkaller #0 PREEMPT(full) 
[  215.729343][ T9020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  215.729356][ T9020] Call Trace:
[  215.729364][ T9020]  <TASK>
[  215.729372][ T9020]  dump_stack_lvl+0x189/0x250
[  215.729407][ T9020]  ? __pfx____ratelimit+0x10/0x10
[  215.729442][ T9020]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.729464][ T9020]  ? __pfx__printk+0x10/0x10
[  215.729487][ T9020]  ? rcu_is_watching+0x15/0xb0
[  215.729508][ T9020]  should_fail_ex+0x414/0x560
[  215.729538][ T9020]  _copy_to_user+0x31/0xb0
[  215.729562][ T9020]  simple_read_from_buffer+0xe1/0x170
[  215.729585][ T9020]  proc_fail_nth_read+0x1b3/0x220
[  215.729611][ T9020]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  215.729632][ T9020]  ? rw_verify_area+0x2a6/0x4d0
[  215.729645][ T9020]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  215.729674][ T9020]  vfs_read+0x200/0xa30
[  215.729692][ T9020]  ? fdget_pos+0x247/0x320
[  215.729716][ T9020]  ? __pfx___mutex_lock+0x10/0x10
[  215.729745][ T9020]  ? __pfx_vfs_read+0x10/0x10
[  215.729761][ T9020]  ? __fget_files+0x3a0/0x420
[  215.729777][ T9020]  ? __fget_files+0x2a/0x420
[  215.729797][ T9020]  ksys_read+0x145/0x250
[  215.729817][ T9020]  ? __fget_files+0x2a/0x420
[  215.729841][ T9020]  ? __pfx_ksys_read+0x10/0x10
[  215.729857][ T9020]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  215.729891][ T9020]  ? rcu_is_watching+0x15/0xb0
[  215.729908][ T9020]  do_syscall_64+0xfa/0xfa0
[  215.729929][ T9020]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.729943][ T9020]  ? clear_bhb_loop+0x60/0xb0
[  215.729965][ T9020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.729986][ T9020] RIP: 0033:0x7fabd378d5fc
[  215.730003][ T9020] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  215.730020][ T9020] RSP: 002b:00007fabd46d9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  215.730043][ T9020] RAX: ffffffffffffffda RBX: 00007fabd39c5fa0 RCX: 00007fabd378d5fc
[  215.730055][ T9020] RDX: 000000000000000f RSI: 00007fabd46d90a0 RDI: 0000000000000004
[  215.730064][ T9020] RBP: 00007fabd46d9090 R08: 0000000000000000 R09: 0000000000000000
[  215.730073][ T9020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.730082][ T9020] R13: 00007fabd39c6038 R14: 00007fabd39c5fa0 R15: 00007ffd8397d638
[  215.730099][ T9020]  </TASK>
[  215.982057][ T6407] usb 3-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  215.995384][ T6407] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  216.005935][ T6407] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  216.017403][ T6407] usb 3-1: media controller created
[  216.031867][ T6407] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  216.092100][ T3096] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  216.102357][  T981] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  216.179271][ T8999] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  216.188567][ T8999] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  216.232346][   T24] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  216.242986][ T3096] usb 1-1: too many configurations: 9, using maximum allowed: 8
[  216.251737][ T3096] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9
[  216.261875][ T3096] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  216.262000][  T981] usb 4-1: Using ep0 maxpacket: 16
[  216.274461][ T3096] usb 1-1: config 0 interface 0 has no altsetting 0
[  216.280878][  T981] usb 4-1: config 0 has an invalid interface number: 149 but max is 0
[  216.287205][ T3096] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9
[  216.298432][  T981] usb 4-1: config 0 has no interface number 0
[  216.308949][  T981] usb 4-1: config 0 interface 149 altsetting 0 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  216.321152][ T3096] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  216.321605][  T981] usb 4-1: config 0 interface 149 altsetting 0 endpoint 0xB has invalid maxpacket 1024, setting to 64
[  216.332616][ T3096] usb 1-1: config 0 interface 0 has no altsetting 0
[  216.347903][  T981] usb 4-1: New USB device found, idVendor=06f8, idProduct=0001, bcdDevice=7d.3b
[  216.350841][ T3096] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9
[  216.359245][  T981] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.368193][ T3096] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  216.381435][  T981] usb 4-1: Product: syz
[  216.389019][ T3096] usb 1-1: config 0 interface 0 has no altsetting 0
[  216.391561][  T981] usb 4-1: Manufacturer: syz
[  216.399135][ T3096] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9
[  216.402803][   T24] usb 2-1: Using ep0 maxpacket: 32
[  216.411651][ T3096] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  216.429226][ T3096] usb 1-1: config 0 interface 0 has no altsetting 0
[  216.433611][  T981] usb 4-1: SerialNumber: syz
[  216.437280][ T3096] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9
[  216.444557][ T5866] usb 3-1: USB disconnect, device number 13
[  216.454392][ T3096] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  216.463654][   T24] usb 2-1: config 0 has an invalid interface number: 67 but max is 0
[  216.473752][ T3096] usb 1-1: config 0 interface 0 has no altsetting 0
[  216.474943][   T24] usb 2-1: config 0 has no interface number 0
[  216.486200][ T3096] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9
[  216.490646][  T981] usb 4-1: config 0 descriptor??
[  216.501612][ T3096] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  216.504659][   T24] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  216.516565][ T3096] usb 1-1: config 0 interface 0 has no altsetting 0
[  216.528545][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.528572][   T24] usb 2-1: Product: syz
[  216.528587][   T24] usb 2-1: Manufacturer: syz
[  216.547392][   T24] usb 2-1: SerialNumber: syz
[  216.559542][ T3096] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9
[  216.561404][   T24] usb 2-1: config 0 descriptor??
[  216.570196][ T3096] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  216.577094][   T24] smsc95xx v2.0.0
[  216.589465][ T3096] usb 1-1: config 0 interface 0 has no altsetting 0
[  216.597371][ T3096] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9
[  216.607129][ T3096] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  216.618161][ T3096] usb 1-1: config 0 interface 0 has no altsetting 0
[  216.626834][ T3096] usb 1-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  216.636155][ T3096] usb 1-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  216.645997][ T3096] usb 1-1: Product: syz
[  216.650306][ T3096] usb 1-1: Manufacturer: syz
[  216.654971][ T3096] usb 1-1: SerialNumber: syz
[  216.666904][ T3096] usb 1-1: config 0 descriptor??
[  216.675997][ T3096] yurex 1-1:0.0: USB YUREX device now attached to Yurex #0
[  216.890150][ T5866] usb 4-1: USB disconnect, device number 20
[  216.891696][ T9016] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.903728][ T9016] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.913413][ T9016] bridge0: entered promiscuous mode
[  216.918684][ T9016] bridge0: entered allmulticast mode
[  216.946874][ T9016] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.954075][ T9016] bridge0: port 2(bridge_slave_1) entered forwarding state
[  216.961571][ T9016] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.968741][ T9016] bridge0: port 1(bridge_slave_0) entered forwarding state
[  216.979186][   T24] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  216.997590][   T24] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  217.262005][  T981] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  217.432564][  T981] usb 3-1: Using ep0 maxpacket: 16
[  217.443540][  T981] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  217.457042][  T981] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  217.471547][  T981] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  217.487727][  T981] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.507007][  T981] usb 3-1: Product: syz
[  217.513738][  T981] usb 3-1: Manufacturer: syz
[  217.518486][  T981] usb 3-1: SerialNumber: syz
[  217.528636][  T981] usb 3-1: config 0 descriptor??
[  217.542200][  T981] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  217.551758][  T981] em28xx 3-1:0.0: Audio interface 0 found (Vendor Class)
[  217.687596][ T3096] usb 1-1: USB disconnect, device number 19
[  217.697537][ T3096] yurex 1-1:0.0: USB YUREX #0 now disconnected
[  217.728353][ T5187] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  218.148307][ T9026] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  218.158664][ T9026] 9p: Unknown parameter 'mmap'
[  218.168274][  T981] em28xx 3-1:0.0: unknown em28xx chip ID (0)
[  218.176811][  T981] em28xx 3-1:0.0: Config register raw data: 0xfffffffb
[  218.184463][  T981] em28xx 3-1:0.0: AC97 chip type couldn't be determined
[  218.191530][  T981] em28xx 3-1:0.0: No AC97 audio processor
[  218.204808][  T981] usb 3-1: USB disconnect, device number 14
[  218.216515][  T981] em28xx 3-1:0.0: Disconnecting em28xx
[  218.223477][  T981] em28xx 3-1:0.0: Freeing device
[  218.229928][   T24] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  218.242196][   T24] smsc95xx 2-1:0.67: probe with driver smsc95xx failed with error -71
[  218.255620][   T24] usb 2-1: USB disconnect, device number 17
[  218.299885][ T9035] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1143'.
[  218.323929][ T9035] XFS (rnullb0): Invalid superblock magic number
[  218.683926][ T9050] program syz.3.1147 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  218.740407][ T9053] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1148'.
[  219.590382][ T9059] binder: BINDER_SET_CONTEXT_MGR already set
[  219.596745][ T9059] binder: 9058:9059 ioctl 4018620d 200000000100 returned -16
[  219.608421][ T9059] binder: BINDER_SET_CONTEXT_MGR already set
[  219.615110][ T9059] binder: 9058:9059 ioctl 4018620d 2000000002c0 returned -16
[  219.892057][ T5915] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  220.062009][ T5915] usb 4-1: Using ep0 maxpacket: 8
[  220.068768][ T5915] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  220.079742][ T5915] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  220.088920][ T5915] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.099615][ T5915] usb 4-1: config 0 descriptor??
[  220.310359][ T5915] iowarrior 4-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  220.513312][    C1] iowarrior 4-1:0.0: iowarrior_callback - usb_submit_urb failed with result -19
[  220.522787][ T5915] usb 4-1: USB disconnect, device number 21
[  220.599635][ T9081] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1159'.
[  220.682162][ T9083] program syz.0.1160 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  220.733873][ T5187] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  220.788216][ T5187] Bluetooth: hci3: unexpected event for opcode 0x042c
[  220.824418][ T3096] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  220.831283][ T9088] binder: BINDER_SET_CONTEXT_MGR already set
[  220.838124][ T9088] binder: 9087:9088 ioctl 4018620d 200000000100 returned -16
[  220.848831][ T9088] binder: BINDER_SET_CONTEXT_MGR already set
[  220.858472][ T9088] binder: 9087:9088 ioctl 4018620d 2000000002c0 returned -16
[  220.982852][ T3096] usb 2-1: Using ep0 maxpacket: 16
[  220.991676][ T3096] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  220.999777][ T3096] usb 2-1: config 0 has no interface number 0
[  221.005992][ T3096] usb 2-1: config 0 interface 1 has no altsetting 0
[  221.014890][ T3096] usb 2-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d
[  221.024268][ T3096] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.032642][ T3096] usb 2-1: Product: syz
[  221.036860][ T3096] usb 2-1: Manufacturer: syz
[  221.041478][ T3096] usb 2-1: SerialNumber: syz
[  221.048110][ T3096] usb 2-1: config 0 descriptor??
[  221.056073][ T3096] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  221.070365][ T3096] snd-usb-audio 2-1:0.1: probe with driver snd-usb-audio failed with error -2
[  221.095933][ T5869] udevd[5869]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  221.267609][ T9091] fuse: Bad value for 'group_id'
[  221.272856][ T9091] fuse: Bad value for 'group_id'
[  222.039840][ T9103] netlink: 'syz.0.1166': attribute type 12 has an invalid length.
[  222.238296][ T9106] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1167'.
[  222.334542][ T9112] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1169'.
[  222.388771][ T9117] fuse: Bad value for 'user_id'
[  222.400256][ T5187] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  222.410011][ T9117] fuse: Bad value for 'user_id'
[  222.417035][ T5915] Process accounting resumed
[  222.554724][ T9120] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1172'.
[  222.662591][ T5187] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  222.826287][ T9130] comedi comedi1: bad chanlist[0]=0x80000000 chan=0 range length=4
[  222.965809][ T9132] FAULT_INJECTION: forcing a failure.
[  222.965809][ T9132] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  222.991118][ T9132] CPU: 0 UID: 0 PID: 9132 Comm: syz.1.1178 Not tainted syzkaller #0 PREEMPT(full) 
[  222.991146][ T9132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  222.991159][ T9132] Call Trace:
[  222.991167][ T9132]  <TASK>
[  222.991175][ T9132]  dump_stack_lvl+0x189/0x250
[  222.991210][ T9132]  ? __pfx____ratelimit+0x10/0x10
[  222.991236][ T9132]  ? __pfx_dump_stack_lvl+0x10/0x10
[  222.991265][ T9132]  ? __pfx__printk+0x10/0x10
[  222.991291][ T9132]  ? __might_fault+0xb0/0x130
[  222.991323][ T9132]  ? vmx_get_segment+0x1ee/0x690
[  222.991355][ T9132]  ? rcu_is_watching+0x15/0xb0
[  222.991378][ T9132]  should_fail_ex+0x414/0x560
[  222.991408][ T9132]  __kvm_read_guest_page+0x18d/0x240
[  222.991429][ T9132]  kvm_vcpu_read_guest+0x75/0x150
[  222.991450][ T9132]  read_emulate+0x2c/0x50
[  222.991468][ T9132]  emulator_read_write_onepage+0x6a3/0xa10
[  222.991506][ T9132]  emulator_read_write+0x1c9/0x560
[  222.991539][ T9132]  ? __pfx_emulator_read_emulated+0x10/0x10
[  222.991564][ T9132]  segmented_read+0x1b7/0x3f0
[  222.991589][ T9132]  x86_emulate_insn+0x2e6/0x3bd0
[  222.991615][ T9132]  x86_emulate_instruction+0xdbb/0x1f90
[  222.991655][ T9132]  ? __pfx_x86_emulate_instruction+0x10/0x10
[  222.991685][ T9132]  ? vmx_handle_exit_irqoff+0x2a3/0x940
[  222.991710][ T9132]  ? __pfx_current_save_fsgs+0x10/0x10
[  222.991751][ T9132]  ? __pfx_vmx_handle_exit_irqoff+0x10/0x10
[  222.991777][ T9132]  ? handle_io+0x1e3/0x270
[  222.991805][ T9132]  ? __pfx_handle_io+0x10/0x10
[  222.991832][ T9132]  vmx_handle_exit+0x10a1/0x18c0
[  222.991854][ T9132]  ? vcpu_run+0x35f2/0x6fa0
[  222.991874][ T9132]  ? lock_acquire+0x5f/0x360
[  222.991896][ T9132]  ? rcu_is_watching+0x15/0xb0
[  222.991922][ T9132]  vcpu_run+0x434f/0x6fa0
[  222.991950][ T9132]  ? vcpu_run+0x35f2/0x6fa0
[  222.991993][ T9132]  ? __pfx_vcpu_run+0x10/0x10
[  222.992012][ T9132]  ? __local_bh_enable_ip+0x12d/0x1c0
[  222.992036][ T9132]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  222.992057][ T9132]  ? rcu_is_watching+0x15/0xb0
[  222.992079][ T9132]  ? lock_acquire+0x5f/0x360
[  222.992099][ T9132]  ? rcu_is_watching+0x15/0xb0
[  222.992123][ T9132]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  222.992146][ T9132]  ? __mutex_trylock_common+0x153/0x260
[  222.992172][ T9132]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  222.992192][ T9132]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  222.992214][ T9132]  ? rcu_is_watching+0x15/0xb0
[  222.992235][ T9132]  ? trace_contention_end+0x39/0x120
[  222.992259][ T9132]  ? __mutex_lock+0x335/0x1350
[  222.992293][ T9132]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  222.992313][ T9132]  ? __pfx___mutex_lock+0x10/0x10
[  222.992340][ T9132]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  222.992366][ T9132]  ? do_vfs_ioctl+0xbe8/0x1430
[  222.992383][ T9132]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  222.992405][ T9132]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  222.992437][ T9132]  kvm_vcpu_ioctl+0x95c/0xe90
[  222.992459][ T9132]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  222.992478][ T9132]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  222.992518][ T9132]  ? __fget_files+0x3a0/0x420
[  222.992541][ T9132]  ? __fget_files+0x2a/0x420
[  222.992565][ T9132]  ? bpf_lsm_file_ioctl+0x9/0x20
[  222.992594][ T9132]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  222.992612][ T9132]  __se_sys_ioctl+0xf9/0x170
[  222.992641][ T9132]  do_syscall_64+0xfa/0xfa0
[  222.992669][ T9132]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.992689][ T9132]  ? clear_bhb_loop+0x60/0xb0
[  222.992711][ T9132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.992742][ T9132] RIP: 0033:0x7fabd378ebe9
[  222.992761][ T9132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.992778][ T9132] RSP: 002b:00007fabd46d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  222.992799][ T9132] RAX: ffffffffffffffda RBX: 00007fabd39c5fa0 RCX: 00007fabd378ebe9
[  222.992814][ T9132] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  222.992827][ T9132] RBP: 00007fabd46d9090 R08: 0000000000000000 R09: 0000000000000000
[  222.992838][ T9132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  222.992850][ T9132] R13: 00007fabd39c6038 R14: 00007fabd39c5fa0 R15: 00007ffd8397d638
[  222.992872][ T9132]  </TASK>
[  222.994938][ T9135] fuse: Bad value for 'user_id'
[  223.017990][ T9137] program syz.0.1179 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  223.091880][ T9135] fuse: Bad value for 'user_id'
[  223.435241][ T3096] Process accounting resumed
[  223.496550][ T5187] Bluetooth: hci1: unexpected event for opcode 0x042c
[  223.550743][ T9145] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  223.562896][ T9145] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  223.584657][ T9145] netlink: 'syz.1.1183': attribute type 21 has an invalid length.
[  223.595047][ T9145] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1183'.
[  223.604467][ T9145] netlink: 'syz.1.1183': attribute type 6 has an invalid length.
[  223.643597][ T5187] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  223.656568][ T9145] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1183'.
[  223.688799][ T9153] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1185'.
[  223.746521][ T9159] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  223.757793][ T9159] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  223.782703][ T9159] block nbd1: Attempted send on invalid socket
[  223.790517][ T9159] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  223.800838][ T9159] vxfs: unable to read disk superblock at 1
[  223.890652][ T9159] block nbd1: Attempted send on invalid socket
[  223.899767][ T9166] netlink: 'syz.0.1187': attribute type 12 has an invalid length.
[  223.923204][ T9159] I/O error, dev nbd1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  224.118397][ T9159] vxfs: unable to read disk superblock at 8
[  224.172769][ T9159] vxfs: can't find superblock.
[  224.735773][ T9178] fuse: Bad value for 'fd'
[  224.741311][ T3096] Process accounting resumed
[  224.874504][   T30] audit: type=1326 audit(1756861401.388:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9179 comm="syz.3.1191" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f800c98ebe9 code=0x0
[  224.896030][    C1] vkms_vblank_simulate: vblank timer overrun
[  224.917557][ T9185] program syz.1.1193 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  224.937407][ T9188] comedi comedi0: comedi_config --init_data is deprecated
[  225.152020][ T3096] usb 3-1: new full-speed USB device number 15 using dummy_hcd
[  225.303550][ T3096] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  225.324884][ T3096] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  225.346040][ T3096] usb 3-1: New USB device found, idVendor=28bd, idProduct=0055, bcdDevice= 0.00
[  225.362018][ T3096] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.382914][ T3096] usb 3-1: config 0 descriptor??
[  225.391073][ T9184] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  225.816687][ T3096] uclogic 0003:28BD:0055.0007: interface is invalid, ignoring
[  225.899089][ T9204] fuse: Bad value for 'fd'
[  225.906649][  T981] Process accounting resumed
[  226.004978][ T5908] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  226.013673][ T9207] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  226.025810][ T9207] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  226.030637][ T3096] usb 3-1: USB disconnect, device number 15
[  226.164872][ T5908] usb 4-1: Using ep0 maxpacket: 16
[  226.171709][ T5908] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.184498][ T5908] usb 4-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00
[  226.193799][ T5908] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.204999][ T5908] usb 4-1: config 0 descriptor??
[  226.623154][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.633414][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.640769][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.648593][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.657396][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.665171][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.674045][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.681408][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.689179][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.697663][ T5908] greenasia 0003:0E8F:0012.0008: unknown main item tag 0x0
[  226.706168][ T5908] greenasia 0003:0E8F:0012.0008: item fetching failed at offset 62/161
[  226.722542][ T5908] greenasia 0003:0E8F:0012.0008: parse failed
[  226.729454][ T5908] greenasia 0003:0E8F:0012.0008: probe with driver greenasia failed with error -22
[  226.781548][ T9215] netlink: 'syz.2.1203': attribute type 12 has an invalid length.
[  226.833307][ T9200] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  226.842030][ T9200] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  226.910334][ T5915] usb 4-1: USB disconnect, device number 22
[  227.387350][ T5187] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  227.476891][ T9225] binder: BINDER_SET_CONTEXT_MGR already set
[  227.483213][ T9225] binder: 9224:9225 ioctl 4018620d 200000000100 returned -16
[  227.493409][ T9225] binder: BINDER_SET_CONTEXT_MGR already set
[  227.499625][ T9225] binder: 9224:9225 ioctl 4018620d 200000004a80 returned -16
[  227.563851][ T9227] program syz.3.1208 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  227.699459][ T9232] fuse: Bad value for 'fd'
[  227.707056][ T3096] Process accounting resumed
[  227.780264][ T9234] comedi comedi3: bad chanlist[0]=0x80000020 chan=32 range length=1
[  227.885962][ T9238] /dev/rnullb0: Can't open blockdev
[  228.333368][ T3096] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  228.505410][ T3096] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  228.515258][ T3096] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  228.523645][ T3096] usb 3-1: Product: syz
[  228.527972][ T3096] usb 3-1: Manufacturer: syz
[  228.532675][ T3096] usb 3-1: SerialNumber: syz
[  228.643716][   T24] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  228.803516][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  228.816467][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  228.827857][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  228.842700][   T24] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  228.855092][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  228.891052][   T24] usb 1-1: config 0 descriptor??
[  229.056740][ T9256] fuse: Bad value for 'fd'
[  229.065393][ T6407] Process accounting resumed
[  229.162534][ T9259] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  229.171559][ T9259] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  229.268934][ T9264] comedi comedi3: bad chanlist[0]=0x80000092 chan=146 range length=1
[  229.311994][   T24] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  229.793944][   T24] usb 1-1: USB disconnect, device number 20
[  230.641128][ T9280] program syz.0.1226 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  230.764985][ T9244] binder: BINDER_SET_CONTEXT_MGR already set
[  230.779902][ T9244] binder: 9243:9244 ioctl 4018620d 2000000000c0 returned -16
[  230.859453][ T3096] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000044. ret = -EPROTO
[  230.872386][ T3096] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPROTO
[  230.889684][ T3096] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[  230.908666][ T3096] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  230.920329][ T3096] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  230.948206][ T9283] /dev/rnullb0: Can't open blockdev
[  230.995218][ T9285] fuse: Bad value for 'fd'
[  231.000834][ T6407] Process accounting resumed
[  231.082638][ T3096] lan78xx 3-1:1.0: probe with driver lan78xx failed with error -71
[  231.098117][ T3096] usb 3-1: USB disconnect, device number 16
[  231.268022][ T9292] comedi comedi3: bad chanlist[0]=0x80002000 chan=8192 range length=1
[  231.491559][ T9296] omfs: Invalid superblock (0)
[  231.631679][   T30] audit: type=1400 audit(1756861408.138:6): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=9299 comm="syz.1.1235"
[  231.657995][ T9301] /dev/rnullb0: Can't open blockdev
[  231.798268][ T9306] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  231.820456][ T9306] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  232.181165][ T9310] fuse: Bad value for 'fd'
[  232.187290][ T3096] Process accounting resumed
[  232.254012][ T5915] hid_parser_main: 67 callbacks suppressed
[  232.254029][ T5915] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  232.285189][ T5915] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  232.518610][ T9315] comedi comedi3: bad chanlist[0]=0x800092ff chan=37631 range length=1
[  232.545259][ T9312] fuse: Unknown parameter '0x0000000000000009'
[  232.584102][ T9321] netlink: 'syz.2.1241': attribute type 5 has an invalid length.
[  232.727496][ T9328] program syz.0.1244 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  232.836087][ T9335] fuse: Invalid rootmode
[  232.841434][   T24] Process accounting resumed
[  233.868899][ T9357] comedi comedi3: bad chanlist[0]=0x8000ff92 chan=65426 range length=1
[  234.339849][ T9366] fuse: Invalid rootmode
[  234.346666][ T6407] Process accounting resumed
[  234.437125][ T9370] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1256'.
[  234.455755][ T9369] program syz.0.1257 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  234.589318][ T9381] netlink: 'syz.3.1259': attribute type 4 has an invalid length.
[  234.604041][ T9381] netlink: 'syz.3.1259': attribute type 4 has an invalid length.
[  234.617247][ T9381] binder: 9377:9381 ioctl c018620c 200000000640 returned -1
[  234.919228][ T9397] fuse: Invalid rootmode
[  234.924474][   T24] Process accounting resumed
[  235.091180][ T9399] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1267'.
[  235.338583][ T9409] program syz.1.1269 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  235.450312][ T9412] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1270'.
[  235.710976][ T9424] /dev/rnullb0: Can't open blockdev
[  235.830164][ T9428] fuse: Bad value for 'rootmode'
[  235.868883][   T10] Process accounting resumed
[  235.955960][ T9436] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1277'.
[  235.973716][ T9432] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1277'.
[  236.003145][ T9439] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  236.015970][ T9439] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  236.027794][ T9439] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  236.062600][ T9439] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  236.079807][ T9441] program syz.0.1280 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  236.134754][ T9439] /dev/rnullb0: Can't open blockdev
[  236.770396][ T9447] /dev/rnullb0: Can't open blockdev
[  236.951005][ T9459] netlink: 45 bytes leftover after parsing attributes in process `syz.2.1285'.
[  236.994718][ T9461] fuse: Bad value for 'rootmode'
[  237.000876][ T5915] Process accounting resumed
[  237.121994][ T6407] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  237.286643][ T6407] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  237.308925][ T6407] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  237.322079][ T6407] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  237.335301][ T6407] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  237.345472][ T6407] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.357168][ T6407] usb 4-1: config 0 descriptor??
[  237.412072][   T10] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  237.572643][   T10] usb 3-1: Using ep0 maxpacket: 16
[  237.581353][   T10] usb 3-1: config 9 has an invalid interface number: 194 but max is 1
[  237.602835][   T10] usb 3-1: config 9 contains an unexpected descriptor of type 0x2, skipping
[  237.615547][   T10] usb 3-1: config 9 has an invalid interface number: 148 but max is 1
[  237.625095][   T10] usb 3-1: config 9 contains an unexpected descriptor of type 0x1, skipping
[  237.634215][   T10] usb 3-1: config 9 has no interface number 0
[  237.660583][   T10] usb 3-1: config 9 has no interface number 1
[  237.682144][   T10] usb 3-1: config 9 interface 194 altsetting 4 has a duplicate endpoint with address 0xC, skipping
[  237.724178][   T10] usb 3-1: config 9 interface 194 altsetting 4 bulk endpoint 0x2 has invalid maxpacket 1024
[  237.735201][ T9477] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  237.750112][ T9477] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  237.774225][   T10] usb 3-1: config 9 interface 148 altsetting 2 has an invalid descriptor for endpoint zero, skipping
[  237.786744][   T10] usb 3-1: config 9 interface 194 has no altsetting 0
[  237.795309][ T6407] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  237.849732][   T10] usb 3-1: config 9 interface 148 has no altsetting 0
[  237.864671][   T10] usb 3-1: Dual-Role OTG device on HNP port
[  237.870988][   T10] usb 3-1: New USB device found, idVendor=1c9e, idProduct=9605, bcdDevice=c8.1a
[  237.880195][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.890987][   T10] usb 3-1: Product: ⸏꓉㿰霠䚲ﺺ緒ⴲ锋呋入擁㌕ᘿ霩ᢑ췡緷ࣦ鹸엔Ⓗ藓쁭ᚐ鑴艸ꡀ塚⩳⨓밌꥿ꆷ簠鲸鰶앯钭萚
[  237.925982][   T10] usb 3-1: Manufacturer: ᒅ藂ᐬ䁖蓏蒣㛞ኻ豒䇑⨩⽸⽵ꈢ㊖⽜늒颕敁
[  237.954112][   T10] usb 3-1: SerialNumber: 䰊
[  237.962575][ T9459] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  238.089581][ T5915] usb 4-1: USB disconnect, device number 23
[  238.176375][ T9459] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  238.186734][ T9459] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  238.224869][   T10] option 3-1:9.194: GSM modem (1-port) converter detected
[  238.237078][   T10] option 3-1:9.148: GSM modem (1-port) converter detected
[  238.255039][   T10] usb 3-1: USB disconnect, device number 17
[  238.263158][   T10] option 3-1:9.194: device disconnected
[  238.277200][   T10] option 3-1:9.148: device disconnected
[  238.562154][ T6407] usb 1-1: new full-speed USB device number 21 using dummy_hcd
[  238.575634][ T9487] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1292'.
[  238.714358][ T6407] usb 1-1: unable to get BOS descriptor or descriptor too short
[  238.724055][ T6407] usb 1-1: not running at top speed; connect to a high speed hub
[  238.733892][ T6407] usb 1-1: config 129 has an invalid interface number: 28 but max is 0
[  238.744239][ T6407] usb 1-1: config 129 has no interface number 0
[  238.750627][ T6407] usb 1-1: config 129 interface 28 altsetting 250 has an endpoint descriptor with address 0xFD, changing to 0x8D
[  238.766294][ T6407] usb 1-1: config 129 interface 28 altsetting 250 endpoint 0x8D has invalid maxpacket 18502, setting to 64
[  238.766730][ T9490] capability: warning: `syz.3.1293' uses 32-bit capabilities (legacy support in use)
[  238.784810][ T6407] usb 1-1: config 129 interface 28 altsetting 250 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  238.804420][ T6407] usb 1-1: config 129 interface 28 has no altsetting 0
[  238.816911][ T6407] usb 1-1: New USB device found, idVendor=108c, idProduct=0159, bcdDevice=db.57
[  238.832083][ T6407] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.840132][ T6407] usb 1-1: Product: syz
[  238.844731][ T6407] usb 1-1: Manufacturer: syz
[  238.849697][ T6407] usb 1-1: SerialNumber: syz
[  238.879519][ T9482] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  238.894862][ T9493] program syz.2.1294 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  239.008169][ T9497] fuse: Bad value for 'rootmode'
[  239.018225][   T24] Process accounting resumed
[  239.066922][ T9499] /dev/rnullb0: Can't open blockdev
[  240.191038][ T9522] /dev/rnullb0: Can't open blockdev
[  240.540355][ T9527] fuse: Unknown parameter 'use00000000000000000000'
[  240.549731][ T3096] Process accounting resumed
[  240.936056][ T9537] /dev/rnullb0: Can't open blockdev
[  241.224941][ T9543] program syz.3.1309 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  241.460480][ T6407] etas_es58x 1-1:129.28: Starting syz syz (Serial Number syz)
[  241.483070][ T6407] etas_es58x 1-1:129.28: could not retrieve the product info string
[  242.076448][ T6407] usb 1-1: USB disconnect, device number 21
[  242.085855][ T6407] etas_es58x 1-1:129.28: Disconnecting syz syz
[  242.195940][ T9557] fuse: Unknown parameter 'use00000000000000000000'
[  242.205074][ T5915] Process accounting resumed
[  242.380546][ T9564] netlink: 'syz.1.1317': attribute type 11 has an invalid length.
[  242.441401][ T9567] (syz.0.1316,9567,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  242.450566][ T9567] (syz.0.1316,9567,0):ocfs2_fill_super:1177 ERROR: status = -22
[  242.799271][ T9571] sctp: [Deprecated]: syz.0.1318 (pid 9571) Use of struct sctp_assoc_value in delayed_ack socket option.
[  242.799271][ T9571] Use struct sctp_sack_info instead
[  242.853205][ T9572] /dev/rnullb0: Can't open blockdev
[  243.275822][ T9578] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  243.303591][ T9578] /dev/rnullb0: Can't open blockdev
[  243.312674][ T9583] /dev/rnullb0: Can't open blockdev
[  243.406017][ T9584] program syz.1.1322 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  243.447704][ T9588] fuse: Unknown parameter 'use00000000000000000000'
[  243.465865][ T5915] Process accounting resumed
[  243.592903][ T5915] libceph: connect (1)[c::]:6789 error -101
[  243.599171][ T5915] libceph: mon0 (1)[c::]:6789 connect error
[  243.862172][ T6407] usb 4-1: new full-speed USB device number 24 using dummy_hcd
[  243.863268][ T5915] libceph: connect (1)[c::]:6789 error -101
[  243.875927][ T5915] libceph: mon0 (1)[c::]:6789 connect error
[  244.035390][ T6407] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  244.045334][ T6407] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.054058][ T6407] usb 4-1: Product: syz
[  244.058350][ T6407] usb 4-1: Manufacturer: syz
[  244.063021][ T6407] usb 4-1: SerialNumber: syz
[  244.068921][ T6407] usb 4-1: config 0 descriptor??
[  244.276301][ T6407] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  244.403670][  T981] libceph: connect (1)[c::]:6789 error -101
[  244.409842][  T981] libceph: mon0 (1)[c::]:6789 connect error
[  244.482879][ T9593] ceph: No mds server is up or the cluster is laggy
[  244.528646][ T9608] /dev/rnullb0: Can't open blockdev
[  244.574209][ T9610] /dev/rnullb0: Can't open blockdev
[  244.617102][ T9610] CUSE: info not properly terminated
[  244.632585][ T3096] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  244.681153][ T6407] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  244.703946][  T981] usb 4-1: USB disconnect, device number 24
[  244.732330][ T9622] fuse: Unknown parameter 'user_i00000000000000000000'
[  244.740284][   T24] Process accounting resumed
[  244.793555][ T3096] usb 1-1: Using ep0 maxpacket: 32
[  244.800554][ T3096] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  244.811567][ T3096] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  244.821446][ T3096] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  244.830674][ T3096] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.851273][ T3096] usb 1-1: config 0 descriptor??
[  244.912252][ T5915] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  245.062004][ T5915] usb 3-1: Using ep0 maxpacket: 32
[  245.080857][ T5915] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[  245.089561][ T5915] usb 3-1: config 0 has no interface number 0
[  245.097579][ T5915] usb 3-1: config 0 interface 12 has no altsetting 0
[  245.107014][ T5915] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  245.116350][ T5915] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  245.124936][ T5915] usb 3-1: Product: syz
[  245.129318][ T5915] usb 3-1: Manufacturer: syz
[  245.134147][ T5915] usb 3-1: SerialNumber: syz
[  245.142667][ T5915] usb 3-1: config 0 descriptor??
[  245.262069][ T3096] koneplus 0003:1E7D:2D51.000C: unknown main item tag 0x0
[  245.270446][ T3096] koneplus 0003:1E7D:2D51.000C: unknown main item tag 0x0
[  245.281029][ T3096] koneplus 0003:1E7D:2D51.000C: unknown main item tag 0x0
[  245.290038][ T3096] koneplus 0003:1E7D:2D51.000C: unknown main item tag 0x0
[  245.297595][ T3096] koneplus 0003:1E7D:2D51.000C: unknown main item tag 0x0
[  245.309504][ T3096] koneplus 0003:1E7D:2D51.000C: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.0-1/input0
[  245.393396][ T5915] f81534 3-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[  245.414715][ T5915] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71
[  245.427393][ T5915] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  245.439968][ T5915] f81534 3-1:0.12: probe with driver f81534 failed with error -71
[  245.457012][ T5915] usb 3-1: USB disconnect, device number 18
[  245.570474][ T9632] program syz.1.1336 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  245.663170][ T3096] usb 1-1: USB disconnect, device number 22
[  245.991014][ T9647] /dev/rnullb0: Can't open blockdev
[  246.037247][ T9649] fuse: Unknown parameter 'user_i00000000000000000000'
[  246.048510][ T6407] Process accounting resumed
[  246.125005][ T9653] program syz.3.1345 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  246.421979][ T5915] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  246.594535][ T5915] usb 4-1: config 0 interface 0 has no altsetting 0
[  246.631300][ T5915] usb 4-1: New USB device found, idVendor=2a39, idProduct=3f8c, bcdDevice=94.24
[  246.644545][ T5915] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.659891][ T5915] usb 4-1: Product: syz
[  246.682841][ T5915] usb 4-1: Manufacturer: syz
[  246.701523][ T5915] usb 4-1: SerialNumber: syz
[  246.710819][ T5915] usb 4-1: config 0 descriptor??
[  246.756088][ T9663] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1348'.
[  246.959790][ T9656] process 'syz.3.1346' launched '/dev/fd/4' with NULL argv: empty string added
[  247.448393][ T5915] snd-usb-audio 4-1:0.0: probe with driver snd-usb-audio failed with error -22
[  247.472931][ T9683] fuse: Unknown parameter 'user_i00000000000000000000'
[  247.481762][ T5915] usb 4-1: USB disconnect, device number 25
[  247.522135][  T981] Process accounting resumed
[  247.525911][ T5869] udevd[5869]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  247.823801][ T5873] Bluetooth: hci2: command 0x0406 tx timeout
[  248.262482][ T5915] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  248.442696][ T5915] usb 4-1: Using ep0 maxpacket: 32
[  248.457315][ T5915] usb 4-1: New USB device found, idVendor=04e8, idProduct=6601, bcdDevice=81.9b
[  248.468375][ T5915] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.480051][ T5915] usb 4-1: Product: syz
[  248.501980][ T5915] usb 4-1: Manufacturer: syz
[  248.506743][ T5915] usb 4-1: SerialNumber: syz
[  248.570214][ T9708] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  248.624501][ T9713] /dev/rnullb0: Can't open blockdev
[  248.637976][ T9716] /dev/rnullb0: Can't open blockdev
[  248.652151][ T9708] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  248.745672][ T9721] fuse: Unknown parameter 'user_id00000000000000000000'
[  248.756078][ T5915] visor 4-1:1.0: Handspring Visor / Palm OS converter detected
[  248.774068][ T5915] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  248.800229][ T5915] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  248.819077][ T9727] /dev/rnullb0: Can't open blockdev
[  248.821342][ T3096] Process accounting resumed
[  248.973024][ T5915] usb 4-1: USB disconnect, device number 26
[  248.980731][ T5915] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  249.092307][ T5915] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  249.156653][ T5915] visor 4-1:1.0: device disconnected
[  249.283865][ T9743] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  249.295123][ T9743] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  249.315543][ T9743] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  249.328619][ T9743] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  249.481983][ T5866] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  249.633329][ T5866] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  249.643713][ T5866] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  249.653705][ T5866] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  249.663133][ T5866] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  249.671252][ T5866] usb 1-1: SerialNumber: syz
[  249.886344][ T5866] usb 1-1: 0:2 : does not exist
[  249.891325][ T5866] usb 1-1: unit 5: unexpected type 0x0e
[  249.906999][ T5866] usb 1-1: USB disconnect, device number 23
[  249.936835][ T5869] udevd[5869]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  250.209448][ T9755] netlink: 'syz.1.1374': attribute type 3 has an invalid length.
[  250.217643][ T9755] netlink: 766 bytes leftover after parsing attributes in process `syz.1.1374'.
[  250.230711][ T9755] /dev/rnullb0: Can't open blockdev
[  250.278938][ T9758] wlan1 speed is unknown, defaulting to 1000
[  250.287681][ T9758] wlan1 speed is unknown, defaulting to 1000
[  250.294882][ T9758] wlan1 speed is unknown, defaulting to 1000
[  250.484210][ T9758] infiniband syz0: set down
[  250.488847][ T6407] wlan1 speed is unknown, defaulting to 1000
[  250.495804][ T9758] infiniband syz0: added wlan1
[  250.506303][ T9763] fuse: Unknown parameter 'user_id00000000000000000000'
[  250.536050][ T9758] RDS/IB: syz0: added
[  250.560048][ T9758] smc: adding ib device syz0 with port count 1
[  250.571314][ T6407] Process accounting resumed
[  250.620021][ T9758] smc:    ib device syz0 port 1 has pnetid 
[  250.645151][ T9758] wlan1 speed is unknown, defaulting to 1000
[  250.657582][ T6407] wlan1 speed is unknown, defaulting to 1000
[  250.841875][ T9758] wlan1 speed is unknown, defaulting to 1000
[  250.935580][ T9782] overlay: ./file0 is not a directory
[  251.052588][ T9758] wlan1 speed is unknown, defaulting to 1000
[  251.159390][ T9758] wlan1 speed is unknown, defaulting to 1000
[  251.263282][ T5866] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  251.398262][ T9793] /dev/rnullb0: Can't open blockdev
[  251.432621][ T5866] usb 3-1: Using ep0 maxpacket: 8
[  251.441246][ T5866] usb 3-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  251.451994][ T5866] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.465561][ T5866] usb 3-1: Product: syz
[  251.473157][ T5866] usb 3-1: Manufacturer: syz
[  251.480321][ T5866] usb 3-1: SerialNumber: syz
[  251.500413][ T5866] usb 3-1: config 0 descriptor??
[  251.708587][ T5866] usb read operation failed. (-32)
[  251.819021][ T5866] usb write operation failed. (-71)
[  251.832508][ T9799] fuse: Unknown parameter 'user_id00000000000000000000'
[  251.849059][ T5866] usb write operation failed. (-71)
[  251.857508][ T6407] Process accounting resumed
[  251.932121][ T5866] usb write operation failed. (-71)
[  251.937397][ T5866] usb 3-1: dvb_usb_v2: found a 'Terratec H7' in cold state
[  251.947277][ T5866] usb 3-1: Direct firmware load for dvb-usb-terratec-h7-az6007.fw failed with error -2
[  251.965348][ T5866] usb 3-1: Falling back to sysfs fallback for: dvb-usb-terratec-h7-az6007.fw
[  252.484164][ T9824] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  252.493002][ T9824] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  252.504761][ T9824] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  252.514010][ T6407] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  252.522126][ T9824] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  252.672007][ T6407] usb 1-1: Using ep0 maxpacket: 32
[  252.678776][ T6407] usb 1-1: config 1 interface 0 altsetting 121 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  252.693164][ T6407] usb 1-1: config 1 interface 0 has no altsetting 0
[  252.703554][ T6407] usb 1-1: New USB device found, idVendor=16c0, idProduct=05e1, bcdDevice= 0.40
[  252.714709][ T6407] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  252.722924][ T6407] usb 1-1: Product: syz
[  252.727345][ T6407] usb 1-1: Manufacturer: Ѕ
[  252.736370][ T6407] usb 1-1: SerialNumber: syz
[  252.950505][ T9816] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  252.961246][ T9816] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  253.188472][ T9816] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  253.214601][ T9816] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  253.439194][ T6407] usbhid 1-1:1.0: can't add hid device: -71
[  253.447899][ T6407] usbhid 1-1:1.0: probe with driver usbhid failed with error -71
[  253.456268][   T10] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  253.470454][ T6407] usb 1-1: USB disconnect, device number 24
[  253.615808][   T10] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  253.627282][   T10] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  253.640322][   T10] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  253.652940][   T10] usb 4-1: config 1 has no interface number 1
[  253.659080][   T10] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  253.673497][   T10] usb 4-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  253.690478][   T10] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  253.701701][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  253.710560][   T10] usb 4-1: Product: syz
[  253.716241][   T10] usb 4-1: Manufacturer: syz
[  253.720878][   T10] usb 4-1: SerialNumber: syz
[  253.943841][   T10] usb 4-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  253.964725][   T10] usb 4-1: MIDIStreaming interface descriptor not found
[  254.018221][   T10] usb 4-1: USB disconnect, device number 27
[  254.045836][ T9830] fuse: Bad value for 'fd'
[  254.054591][ T5915] Process accounting resumed
[  254.086852][ T5967] udevd[5967]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  254.128904][ T9832] /dev/rnullb0: Can't open blockdev
[  254.472071][ T5915] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  254.643497][ T5915] usb 1-1: config 0 has an invalid interface number: 156 but max is 0
[  254.656012][ T5915] usb 1-1: config 0 has no interface number 0
[  254.679715][ T5915] usb 1-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  254.689136][ T5915] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  254.748713][ T5915] usb 1-1: config 0 descriptor??
[  254.772916][ T5915] gspca_main: spca561-2.14.0 probing abcd:cdee
[  254.988443][ T5915] spca561 1-1:0.156: probe with driver spca561 failed with error -22
[  255.013552][ T5915] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  255.063059][ T5915] usb 1-1: MIDIStreaming interface descriptor not found
[  255.185716][ T5915] usb 1-1: USB disconnect, device number 25
[  255.715391][ T9858] fuse: Bad value for 'fd'
[  255.731592][ T6407] Process accounting resumed
[  255.804092][ T9862] /dev/rnullb0: Can't open blockdev
[  255.977533][ T9869] /dev/rnullb0: Can't open blockdev
[  256.040545][ T9871] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1411'.
[  256.068998][ T9871] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1411'.
[  256.079051][ T9871] /dev/rnullb0: Can't open blockdev
[  256.721993][   T10] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  256.749871][ T9884] fuse: Bad value for 'fd'
[  256.756894][ T5915] Process accounting resumed
[  256.892258][   T10] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  256.904045][   T10] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  256.915905][   T10] usb 4-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  256.929419][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  256.938161][   T10] usb 4-1: Product: syz
[  256.944165][   T10] usb 4-1: Manufacturer: syz
[  256.948931][   T10] usb 4-1: SerialNumber: syz
[  256.949038][ T9887] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1416'.
[  256.956378][   T10] usb 4-1: config 0 descriptor??
[  257.000879][ T9887] wlan1 speed is unknown, defaulting to 1000
[  257.973634][ T9902] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  258.741760][ T9918] fuse: Unknown parameter '0x0000000000000003'
[  258.749199][   T10] Process accounting resumed
[  258.764133][ T6407] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  258.921981][ T6407] usb 1-1: Using ep0 maxpacket: 8
[  258.928504][ T6407] usb 1-1: config 1 has an invalid interface number: 7 but max is 1
[  258.938330][ T6407] usb 1-1: config 1 has an invalid descriptor of length 74, skipping remainder of the config
[  258.948632][ T6407] usb 1-1: config 1 has no interface number 0
[  258.954828][ T6407] usb 1-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  258.965790][ T6407] usb 1-1: too many endpoints for config 1 interface 1 altsetting 1: 251, using maximum allowed: 30
[  258.977889][ T6407] usb 1-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 251
[  258.993969][ T6407] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[  259.003197][ T6407] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  259.011236][ T6407] usb 1-1: Product: syz
[  259.015552][ T6407] usb 1-1: Manufacturer: syz
[  259.020178][ T6407] usb 1-1: SerialNumber: syz
[  259.304572][ T6407] cdc_ncm 1-1:1.7: bind() failure
[  259.313575][ T6407] usbtest 1-1:1.7: couldn't get endpoints, -22
[  259.320063][ T6407] usbtest 1-1:1.7: probe with driver usbtest failed with error -22
[  259.330701][ T6407] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  259.340291][ T6407] cdc_ncm 1-1:1.1: bind() failure
[  259.347063][ T6407] usbtest 1-1:1.1: couldn't get endpoints, -22
[  259.354241][ T6407] usbtest 1-1:1.1: probe with driver usbtest failed with error -22
[  259.364934][ T6407] usb 1-1: USB disconnect, device number 26
[  259.507215][   T24] usb 4-1: USB disconnect, device number 28
[  260.077897][ T9933] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  260.122253][ T9933] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  260.539307][ T9945] overlayfs: missing 'lowerdir'
[  261.022011][   T10] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  261.104893][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  261.185174][   T10] usb 4-1: New USB device found, idVendor=0c45, idProduct=8003, bcdDevice=d6.bb
[  261.203235][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.221540][   T10] usb 4-1: Product: syz
[  261.234166][   T10] usb 4-1: Manufacturer: syz
[  261.249000][   T10] usb 4-1: SerialNumber: syz
[  261.269928][   T10] usb 4-1: config 0 descriptor??
[  261.287149][   T10] gspca_main: sn9c2028-2.14.0 probing 0c45:8003
[  261.358969][ T9951] fuse: Unknown parameter '0x0000000000000003'
[  261.366301][  T981] Process accounting resumed
[  261.812185][   T10] gspca_sn9c2028: read1 error -110
[  261.836996][   T10] gspca_sn9c2028: read1 error -32
[  261.857189][   T10] gspca_sn9c2028: read1 error -32
[  261.869297][   T10] sn9c2028 4-1:0.0: probe with driver sn9c2028 failed with error -32
[  261.894139][ T9958] Sensor A: =================  START STATUS  =================
[  261.910019][ T9958] Sensor A: Test Pattern: 75% Colorbar
[  261.917200][ T9958] Sensor A: Show Information: All
[  261.922534][ T9958] Sensor A: Vertical Flip: false
[  261.927721][ T9958] Sensor A: Horizontal Flip: false
[  261.949047][ T9958] Sensor A: Brightness: 128
[  261.962896][ T9958] Sensor A: Contrast: 128
[  261.977533][ T9958] Sensor A: Hue: 0
[  261.990286][ T9958] Sensor A: Saturation: 128
[  262.007317][ T9958] Sensor A: ==================  END STATUS  ==================
[  262.622295][   T24] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  262.772147][   T24] usb 1-1: device descriptor read/64, error -71
[  263.033150][   T24] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  263.172009][   T24] usb 1-1: device descriptor read/64, error -71
[  263.282735][   T24] usb usb1-port1: attempt power cycle
[  263.651971][   T24] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  263.682689][   T24] usb 1-1: device descriptor read/8, error -71
[  263.768361][ T5915] usb 4-1: USB disconnect, device number 29
[  263.825520][ T9979] fuse: Unknown parameter '0x0000000000000003'
[  263.862133][ T3096] Process accounting resumed
[  263.936302][   T24] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  263.983104][   T24] usb 1-1: device descriptor read/8, error -71
[  264.141987][   T24] usb usb1-port1: unable to enumerate USB device
[  264.411067][ T9985] devpts: Bad value for 'max'
[  265.040372][ T9930] kexec: Could not allocate control_code_buffer
[  265.153751][ T9997] Malformed UNC in devname
[  265.153751][ T9997] 
[  265.160446][ T9997] CIFS: VFS: Malformed UNC in devname
[  265.780209][T10009] fuse: Unknown parameter '0x0000000000000003'
[  265.787003][T10008] /dev/rnullb0: Can't open blockdev
[  265.803492][   T10] Process accounting resumed
[  266.303582][   T36] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.382737][   T36] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.462893][   T36] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.555444][   T36] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.605497][    C0] ------------[ cut here ]------------
[  266.611072][    C0] WARNING: ./include/linux/skbuff.h:1165 at nf_send_unreach6+0x828/0xa20, CPU#0: syz.1.1460/10025
[  266.621843][    C0] Modules linked in:
[  266.625823][    C0] CPU: 0 UID: 0 PID: 10025 Comm: syz.1.1460 Not tainted syzkaller #0 PREEMPT(full) 
[  266.635282][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  266.645432][    C0] RIP: 0010:nf_send_unreach6+0x828/0xa20
[  266.651117][    C0] Code: 85 f6 74 0a e8 39 1b 6f f7 e9 c8 fc ff ff e8 2f 1b 6f f7 4c 8b 7c 24 18 e9 34 fa ff ff e8 20 1b 6f f7 eb 9b e8 19 1b 6f f7 90 <0f> 0b 90 e9 c7 fb ff ff 48 85 db 0f 84 81 00 00 00 4c 8d a4 24 20
[  266.670839][    C0] RSP: 0018:ffffc900000073c0 EFLAGS: 00010246
[  266.676977][    C0] RAX: ffffffff8a51b3b7 RBX: ffff888062ec7a00 RCX: ffff88802bea3c00
[  266.685214][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  266.693266][    C0] RBP: ffffc90000007568 R08: ffff888078b1d183 R09: 1ffff1100f163a30
[  266.701276][    C0] R10: dffffc0000000000 R11: ffffed100f163a31 R12: ffff88807dab2101
[  266.709347][    C0] R13: dffffc0000000001 R14: 1ffff1100c5d8f4b R15: 0000000000000000
[  266.717397][    C0] FS:  00005555561a3500(0000) GS:ffff8881257c4000(0000) knlGS:0000000000000000
[  266.726508][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  266.733156][    C0] CR2: 00007fabd4675f98 CR3: 000000002fb80000 CR4: 00000000003526f0
[  266.741189][    C0] Call Trace:
[  266.744562][    C0]  <IRQ>
[  266.747443][    C0]  ? __pfx_nf_send_unreach6+0x10/0x10
[  266.752913][    C0]  ? rcu_is_watching+0x15/0xb0
[  266.757712][    C0]  ? ieee80211_rx_handlers+0xb6f3/0xb760
[  266.763434][    C0]  ? __local_bh_enable_ip+0x12d/0x1c0
[  266.768849][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  266.774666][    C0]  nft_reject_inet_eval+0x441/0x690
[  266.779920][    C0]  nft_do_chain+0x40c/0x1920
[  266.784611][    C0]  ? rcu_is_watching+0x15/0xb0
[  266.789426][    C0]  ? __pfx_nft_do_chain+0x10/0x10
[  266.794527][    C0]  ? ipv6_find_hdr+0xc78/0x1050
[  266.799437][    C0]  ? __kernel_text_address+0xd/0x40
[  266.804738][    C0]  nft_do_chain_inet+0x25d/0x340
[  266.809722][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  266.815278][    C0]  ? NF_HOOK+0x9a/0x3a0
[  266.819480][    C0]  ? rcu_is_watching+0x15/0xb0
[  266.824344][    C0]  ? lock_acquire+0x5f/0x360
[  266.828964][    C0]  ? ip_sabotage_in+0x57/0x270
[  266.833818][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  266.839345][    C0]  nf_hook_slow+0xc5/0x220
[  266.843877][    C0]  NF_HOOK+0x206/0x3a0
[  266.847993][    C0]  ? skb_orphan+0xaf/0xd0
[  266.852403][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  266.857647][    C0]  ? NF_HOOK+0x9a/0x3a0
[  266.861844][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[  266.866529][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  266.871774][    C0]  __netif_receive_skb+0xd3/0x380
[  266.876920][    C0]  ? process_backlog+0x2d5/0x14f0
[  266.882038][    C0]  process_backlog+0x60e/0x14f0
[  266.886949][    C0]  ? __pfx_process_backlog+0x10/0x10
[  266.892323][    C0]  ? do_raw_spin_lock+0x121/0x290
[  266.897403][    C0]  __napi_poll+0xc4/0x360
[  266.901767][    C0]  ? rcu_is_watching+0x15/0xb0
[  266.906618][    C0]  net_rx_action+0x707/0xe30
[  266.911252][    C0]  ? rcu_is_watching+0x15/0xb0
[  266.916094][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  266.921252][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  266.927614][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  266.932904][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  266.938241][    C0]  handle_softirqs+0x283/0x870
[  266.943118][    C0]  ? do_softirq+0xec/0x180
[  266.947576][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  266.952934][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  266.958164][    C0]  do_softirq+0xec/0x180
[  266.962496][    C0]  </IRQ>
[  266.965451][    C0]  <TASK>
[  266.968405][    C0]  ? __pfx_do_softirq+0x10/0x10
[  266.973340][    C0]  ? rcu_is_watching+0x15/0xb0
[  266.978142][    C0]  __local_bh_enable_ip+0x17d/0x1c0
[  266.983434][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  266.989195][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  266.994401][    C0]  ? lock_release+0x4b/0x3e0
[  266.999031][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  267.004244][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  267.009400][    C0]  __dev_queue_xmit+0x1d79/0x3b50
[  267.014529][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  267.019682][    C0]  ? rt6_find_cached_rt+0x21c/0x270
[  267.025312][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.030121][    C0]  ? unwind_next_frame+0xa5/0x2390
[  267.035332][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  267.040748][    C0]  ? unwind_next_frame+0xa5/0x2390
[  267.045942][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.050756][    C0]  ? unwind_next_frame+0xa5/0x2390
[  267.055963][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.060773][    C0]  ? unwind_next_frame+0xa5/0x2390
[  267.066301][    C0]  ? nf_hook+0x9d/0x380
[  267.070495][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.075346][    C0]  ? ip6_xmit+0x107a/0x1840
[  267.079883][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.084722][    C0]  ? ip6_xmit+0x107a/0x1840
[  267.089263][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.094411][    C0]  ? ip6_xmit+0x107a/0x1840
[  267.098954][    C0]  ? ip6_finish_output2+0xf99/0x16a0
[  267.104347][    C0]  ip6_finish_output2+0x11bc/0x16a0
[  267.109587][    C0]  ? ip6_finish_output2+0x701/0x16a0
[  267.114968][    C0]  ? __pfx_ip6_finish_output2+0x10/0x10
[  267.120558][    C0]  ? ip6_mtu+0x7d/0x3f0
[  267.124810][    C0]  ? ip6_finish_output+0x2ef/0x4e0
[  267.129956][    C0]  ip6_xmit+0x107a/0x1840
[  267.134388][    C0]  ? __pfx_ip6_xmit+0x10/0x10
[  267.139098][    C0]  ? __kasan_save_free_info+0x46/0x50
[  267.144572][    C0]  ? __kasan_slab_free+0x5b/0x80
[  267.149550][    C0]  ? kmem_cache_free+0x18f/0x400
[  267.154588][    C0]  ? sctp_v6_xmit+0x65e/0x1350
[  267.159392][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.164236][    C0]  ? lock_acquire+0x5f/0x360
[  267.168862][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.175040][    C0]  ? sctp_v6_xmit+0x65e/0x1350
[  267.179943][    C0]  sctp_v6_xmit+0xa81/0x1350
[  267.184749][    C0]  ? __pfx_sctp_v6_xmit+0x10/0x10
[  267.189820][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.194681][    C0]  ? kmem_cache_free+0x18f/0x400
[  267.199670][    C0]  sctp_packet_transmit+0x257e/0x2bb0
[  267.205187][    C0]  ? sctp_outq_flush+0xbef/0x3140
[  267.210336][    C0]  sctp_outq_flush+0xecb/0x3140
[  267.215274][    C0]  ? sctp_ulpq_tail_event+0x4c7/0xb70
[  267.220693][    C0]  ? sctp_outq_flush+0xbef/0x3140
[  267.225823][    C0]  ? sock_def_wakeup+0x20/0x260
[  267.230723][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.235573][    C0]  ? __pfx_sctp_outq_flush+0x10/0x10
[  267.240900][    C0]  ? sock_def_wakeup+0x20/0x260
[  267.245849][    C0]  ? sctp_outq_uncork+0x4d/0xa0
[  267.250735][    C0]  sctp_do_sm+0x195f/0x5a20
[  267.255339][    C0]  ? __pfx_sctp_do_sm+0x10/0x10
[  267.260241][    C0]  ? sctp_make_abort_user+0x4ae/0x620
[  267.265721][    C0]  ? __pfx_sctp_make_abort_user+0x10/0x10
[  267.271479][    C0]  sctp_primitive_ABORT+0x98/0xc0
[  267.276599][    C0]  sctp_close+0x2d6/0x900
[  267.280997][    C0]  ? __pfx_sctp_close+0x10/0x10
[  267.285943][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.290761][    C0]  ? down_write+0x162/0x1f0
[  267.295349][    C0]  ? __pfx_down_write+0x10/0x10
[  267.300226][    C0]  ? ip_mc_drop_socket+0x25a/0x270
[  267.305427][    C0]  inet_release+0x141/0x190
[  267.309969][    C0]  sock_close+0xc0/0x240
[  267.314300][    C0]  ? __pfx_sock_close+0x10/0x10
[  267.319189][    C0]  __fput+0x449/0xa70
[  267.323264][    C0]  task_work_run+0x1d4/0x260
[  267.327900][    C0]  ? __pfx_task_work_run+0x10/0x10
[  267.333116][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.337923][    C0]  exit_to_user_mode_loop+0xec/0x130
[  267.343292][    C0]  do_syscall_64+0x2bd/0xfa0
[  267.347927][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.352769][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.358870][    C0]  ? clear_bhb_loop+0x60/0xb0
[  267.363623][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.369557][    C0] RIP: 0033:0x7fabd378ebe9
[  267.374164][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.393954][    C0] RSP: 002b:00007ffd8397d798 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  267.402459][    C0] RAX: 0000000000000000 RBX: 0000000000040fe1 RCX: 00007fabd378ebe9
[  267.410473][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  267.418542][    C0] RBP: 00007fabd39c7da0 R08: 0000000000000001 R09: 0000000f8397da8f
[  267.426585][    C0] R10: 0000001b31f20000 R11: 0000000000000246 R12: 00007fabd39c5fac
[  267.434650][    C0] R13: 00007fabd39c5fa0 R14: ffffffffffffffff R15: 00007ffd8397d8b0
[  267.442704][    C0]  </TASK>
[  267.445769][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  267.453073][    C0] CPU: 0 UID: 0 PID: 10025 Comm: syz.1.1460 Not tainted syzkaller #0 PREEMPT(full) 
[  267.462473][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  267.472567][    C0] Call Trace:
[  267.475878][    C0]  <IRQ>
[  267.478753][    C0]  dump_stack_lvl+0x99/0x250
[  267.483389][    C0]  ? __asan_memcpy+0x40/0x70
[  267.488018][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  267.493267][    C0]  ? __pfx__printk+0x10/0x10
[  267.497906][    C0]  vpanic+0x281/0x750
[  267.501940][    C0]  ? __pfx_vpanic+0x10/0x10
[  267.506481][    C0]  ? is_bpf_text_address+0x292/0x2b0
[  267.511793][    C0]  ? is_bpf_text_address+0x26/0x2b0
[  267.517032][    C0]  panic+0xb9/0xc0
[  267.520793][    C0]  ? __pfx_panic+0x10/0x10
[  267.525256][    C0]  __warn+0x334/0x4c0
[  267.529272][    C0]  ? nf_send_unreach6+0x828/0xa20
[  267.534336][    C0]  ? nf_send_unreach6+0x828/0xa20
[  267.539400][    C0]  report_bug+0x2be/0x4f0
[  267.543767][    C0]  ? nf_send_unreach6+0x828/0xa20
[  267.548828][    C0]  ? nf_send_unreach6+0x828/0xa20
[  267.553899][    C0]  ? nf_send_unreach6+0x82a/0xa20
[  267.558965][    C0]  handle_bug+0x84/0x160
[  267.563241][    C0]  exc_invalid_op+0x1a/0x50
[  267.567770][    C0]  asm_exc_invalid_op+0x1a/0x20
[  267.572644][    C0] RIP: 0010:nf_send_unreach6+0x828/0xa20
[  267.578317][    C0] Code: 85 f6 74 0a e8 39 1b 6f f7 e9 c8 fc ff ff e8 2f 1b 6f f7 4c 8b 7c 24 18 e9 34 fa ff ff e8 20 1b 6f f7 eb 9b e8 19 1b 6f f7 90 <0f> 0b 90 e9 c7 fb ff ff 48 85 db 0f 84 81 00 00 00 4c 8d a4 24 20
[  267.597958][    C0] RSP: 0018:ffffc900000073c0 EFLAGS: 00010246
[  267.604073][    C0] RAX: ffffffff8a51b3b7 RBX: ffff888062ec7a00 RCX: ffff88802bea3c00
[  267.612080][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  267.620088][    C0] RBP: ffffc90000007568 R08: ffff888078b1d183 R09: 1ffff1100f163a30
[  267.628095][    C0] R10: dffffc0000000000 R11: ffffed100f163a31 R12: ffff88807dab2101
[  267.636100][    C0] R13: dffffc0000000001 R14: 1ffff1100c5d8f4b R15: 0000000000000000
[  267.644114][    C0]  ? nf_send_unreach6+0x827/0xa20
[  267.649193][    C0]  ? __pfx_nf_send_unreach6+0x10/0x10
[  267.654610][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.659500][    C0]  ? ieee80211_rx_handlers+0xb6f3/0xb760
[  267.665170][    C0]  ? __local_bh_enable_ip+0x12d/0x1c0
[  267.670589][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  267.676352][    C0]  nft_reject_inet_eval+0x441/0x690
[  267.681588][    C0]  nft_do_chain+0x40c/0x1920
[  267.686234][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.691041][    C0]  ? __pfx_nft_do_chain+0x10/0x10
[  267.696098][    C0]  ? ipv6_find_hdr+0xc78/0x1050
[  267.701002][    C0]  ? __kernel_text_address+0xd/0x40
[  267.706341][    C0]  nft_do_chain_inet+0x25d/0x340
[  267.711322][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  267.716818][    C0]  ? NF_HOOK+0x9a/0x3a0
[  267.721011][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.725816][    C0]  ? lock_acquire+0x5f/0x360
[  267.730441][    C0]  ? ip_sabotage_in+0x57/0x270
[  267.735246][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  267.740736][    C0]  nf_hook_slow+0xc5/0x220
[  267.745286][    C0]  NF_HOOK+0x206/0x3a0
[  267.749391][    C0]  ? skb_orphan+0xaf/0xd0
[  267.753757][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  267.758991][    C0]  ? NF_HOOK+0x9a/0x3a0
[  267.763177][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[  267.767804][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  267.773130][    C0]  __netif_receive_skb+0xd3/0x380
[  267.778189][    C0]  ? process_backlog+0x2d5/0x14f0
[  267.783252][    C0]  process_backlog+0x60e/0x14f0
[  267.788148][    C0]  ? __pfx_process_backlog+0x10/0x10
[  267.793494][    C0]  ? do_raw_spin_lock+0x121/0x290
[  267.798572][    C0]  __napi_poll+0xc4/0x360
[  267.802960][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.807763][    C0]  net_rx_action+0x707/0xe30
[  267.812389][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.817183][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  267.822323][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  267.828592][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  267.833818][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  267.839136][    C0]  handle_softirqs+0x283/0x870
[  267.844013][    C0]  ? do_softirq+0xec/0x180
[  267.848442][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  267.853739][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  267.858861][    C0]  do_softirq+0xec/0x180
[  267.863112][    C0]  </IRQ>
[  267.866132][    C0]  <TASK>
[  267.869066][    C0]  ? __pfx_do_softirq+0x10/0x10
[  267.873926][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.878698][    C0]  __local_bh_enable_ip+0x17d/0x1c0
[  267.883902][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  267.889630][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  267.894771][    C0]  ? lock_release+0x4b/0x3e0
[  267.899382][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  267.904521][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  267.909675][    C0]  __dev_queue_xmit+0x1d79/0x3b50
[  267.914717][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  267.919835][    C0]  ? rt6_find_cached_rt+0x21c/0x270
[  267.925052][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.929926][    C0]  ? unwind_next_frame+0xa5/0x2390
[  267.935049][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  267.940427][    C0]  ? unwind_next_frame+0xa5/0x2390
[  267.945543][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.950312][    C0]  ? unwind_next_frame+0xa5/0x2390
[  267.955447][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.960224][    C0]  ? unwind_next_frame+0xa5/0x2390
[  267.965352][    C0]  ? nf_hook+0x9d/0x380
[  267.969516][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.974291][    C0]  ? ip6_xmit+0x107a/0x1840
[  267.978802][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.983576][    C0]  ? ip6_xmit+0x107a/0x1840
[  267.988087][    C0]  ? rcu_is_watching+0x15/0xb0
[  267.992861][    C0]  ? ip6_xmit+0x107a/0x1840
[  267.997371][    C0]  ? ip6_finish_output2+0xf99/0x16a0
[  268.002666][    C0]  ip6_finish_output2+0x11bc/0x16a0
[  268.007880][    C0]  ? ip6_finish_output2+0x701/0x16a0
[  268.013176][    C0]  ? __pfx_ip6_finish_output2+0x10/0x10
[  268.018735][    C0]  ? ip6_mtu+0x7d/0x3f0
[  268.022896][    C0]  ? ip6_finish_output+0x2ef/0x4e0
[  268.028032][    C0]  ip6_xmit+0x107a/0x1840
[  268.032392][    C0]  ? __pfx_ip6_xmit+0x10/0x10
[  268.037087][    C0]  ? __kasan_save_free_info+0x46/0x50
[  268.042477][    C0]  ? __kasan_slab_free+0x5b/0x80
[  268.047437][    C0]  ? kmem_cache_free+0x18f/0x400
[  268.052406][    C0]  ? sctp_v6_xmit+0x65e/0x1350
[  268.057179][    C0]  ? rcu_is_watching+0x15/0xb0
[  268.061952][    C0]  ? lock_acquire+0x5f/0x360
[  268.066551][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.072627][    C0]  ? sctp_v6_xmit+0x65e/0x1350
[  268.077406][    C0]  sctp_v6_xmit+0xa81/0x1350
[  268.082013][    C0]  ? __pfx_sctp_v6_xmit+0x10/0x10
[  268.087048][    C0]  ? rcu_is_watching+0x15/0xb0
[  268.091825][    C0]  ? kmem_cache_free+0x18f/0x400
[  268.096785][    C0]  sctp_packet_transmit+0x257e/0x2bb0
[  268.102191][    C0]  ? sctp_outq_flush+0xbef/0x3140
[  268.107227][    C0]  sctp_outq_flush+0xecb/0x3140
[  268.112104][    C0]  ? sctp_ulpq_tail_event+0x4c7/0xb70
[  268.117481][    C0]  ? sctp_outq_flush+0xbef/0x3140
[  268.122516][    C0]  ? sock_def_wakeup+0x20/0x260
[  268.127376][    C0]  ? rcu_is_watching+0x15/0xb0
[  268.132150][    C0]  ? __pfx_sctp_outq_flush+0x10/0x10
[  268.137440][    C0]  ? sock_def_wakeup+0x20/0x260
[  268.142303][    C0]  ? sctp_outq_uncork+0x4d/0xa0
[  268.147160][    C0]  sctp_do_sm+0x195f/0x5a20
[  268.151704][    C0]  ? __pfx_sctp_do_sm+0x10/0x10
[  268.156665][    C0]  ? sctp_make_abort_user+0x4ae/0x620
[  268.162060][    C0]  ? __pfx_sctp_make_abort_user+0x10/0x10
[  268.167791][    C0]  sctp_primitive_ABORT+0x98/0xc0
[  268.172845][    C0]  sctp_close+0x2d6/0x900
[  268.177191][    C0]  ? __pfx_sctp_close+0x10/0x10
[  268.182054][    C0]  ? rcu_is_watching+0x15/0xb0
[  268.186828][    C0]  ? down_write+0x162/0x1f0
[  268.191340][    C0]  ? __pfx_down_write+0x10/0x10
[  268.196192][    C0]  ? ip_mc_drop_socket+0x25a/0x270
[  268.201319][    C0]  inet_release+0x141/0x190
[  268.205827][    C0]  sock_close+0xc0/0x240
[  268.210085][    C0]  ? __pfx_sock_close+0x10/0x10
[  268.214939][    C0]  __fput+0x449/0xa70
[  268.218952][    C0]  task_work_run+0x1d4/0x260
[  268.223563][    C0]  ? __pfx_task_work_run+0x10/0x10
[  268.228688][    C0]  ? rcu_is_watching+0x15/0xb0
[  268.233463][    C0]  exit_to_user_mode_loop+0xec/0x130
[  268.238752][    C0]  do_syscall_64+0x2bd/0xfa0
[  268.243365][    C0]  ? rcu_is_watching+0x15/0xb0
[  268.248134][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.254205][    C0]  ? clear_bhb_loop+0x60/0xb0
[  268.258889][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.264785][    C0] RIP: 0033:0x7fabd378ebe9
[  268.269216][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.288833][    C0] RSP: 002b:00007ffd8397d798 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  268.297261][    C0] RAX: 0000000000000000 RBX: 0000000000040fe1 RCX: 00007fabd378ebe9
[  268.305239][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  268.313220][    C0] RBP: 00007fabd39c7da0 R08: 0000000000000001 R09: 0000000f8397da8f
[  268.321196][    C0] R10: 0000001b31f20000 R11: 0000000000000246 R12: 00007fabd39c5fac
[  268.329172][    C0] R13: 00007fabd39c5fa0 R14: ffffffffffffffff R15: 00007ffd8397d8b0
[  268.337163][    C0]  </TASK>
[  268.340681][    C0] Kernel Offset: disabled
[  268.345013][    C0] Rebooting in 86400 seconds..