last executing test programs:

20.217604445s ago: executing program 2 (id=564):
r0 = syz_usb_connect$cdc_ncm(0x2, 0x76, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010000000904010001020d0000052406000105240000000d240f0100000000000000000006241a00000008241c00000008000905810300020000000904010000020d00000904010102020d00000905820200020000000905", @ANYBLOB="a8"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000074"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000101010200000040000000000a0000000c00198008000200050000000600124000030004380002802c00018014000300fe8000000000000000000000000000bb14000400fe88000c77000000000000000000"], 0x60}}, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0)
mount$fuse(0x0, &(0x7f00000022c0)='./file0\x00', 0x0, 0x0, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r8, 0x1, 0x2a, 0x0, 0x0)
ioctl$MON_IOCH_MFLUSH(r1, 0x9208, 0x2)
syz_open_dev$usbfs(0x0, 0x205, 0x44680)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x80, 0x1c, {0x2, 0x0, 0xe, 0x1, 0xfffd, 0x3, 0x17, 0x1040, 0x6, 0xffff, 0x0, 0x1000}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

15.486788719s ago: executing program 1 (id=580):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1400000046"], 0x14}, 0x1, 0x0, 0x0, 0x4048011}, 0xc080)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0xbdb], 0x25000, 0x304})
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x0, &(0x7f0000000200)})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000400000000010000000900010073797a30000000002c000000030a0102000000000000000001000000090001"], 0xa4}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

15.148768191s ago: executing program 3 (id=584):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb3b0000ce220000000004000000e3"], 0xfdef)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=@newsa={0x13c, 0x10, 0x1, 0x4, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x64}, {@in, 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x35}, {}, {0xfffffffffffffffd, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xcd}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}, 0x0, 0x18}}]}, 0x13c}}, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x3}}, './file0\x00'})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1100}, 0x48)
syz_usb_connect(0x5, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791000000000000063000000000000009500050000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0x26, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10}, 0x23)
ioctl$IOCTL_STATUS_ACCEL_DEV(0xffffffffffffffff, 0x40046103, 0x0)

14.978548604s ago: executing program 2 (id=587):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000400)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)="580000001400add427323b472545b4560a117fff0b0082001b59000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000020000", 0x56}, {&(0x7f00000001c0)="ee64", 0x2}], 0x2)

14.815095137s ago: executing program 0 (id=589):
r0 = syz_usb_connect$cdc_ncm(0x2, 0x76, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010000000904010001020d0000052406000105240000000d240f0100000000000000000006241a00000008241c00000008000905810300020000000904010000020d00000904010102020d00000905820200020000000905", @ANYBLOB="a8"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000074"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000101010200000040000000000a0000000c00198008000200050000000600124000030004380002802c00018014000300fe8000000000000000000000000000bb14"], 0x60}}, 0x0)

13.860679991s ago: executing program 2 (id=594):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace$getregs(0xc, r1, 0x7, &(0x7f0000000240)=""/74)
sched_setscheduler(0x0, 0x2, &(0x7f00000002c0)=0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001480)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c383032313100f58965f119cc126753b031a7b853d042666cf768bebe72b11c91f6e7bc6d0e32e9d47cec95a610e2a020376872c26056d965af0f902f1ef8179fd9647f3ebdaf305fbf41e7a3d2ec4189b8822a2b96befba64422ea9d8330cc715e5c73efdeccea69ad662be0605ae603b24c4e6b37ecb77fe89955273343bee3ba"], 0x20}}, 0x0)
recvmmsg(r4, &(0x7f0000001b40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/189, 0xbd}, {&(0x7f00000003c0)=""/152, 0x98}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x3}}], 0x7, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
r5 = creat(&(0x7f00000000c0)='./file0\x00', 0xdafbe5d6891b6e4)
write$binfmt_elf32(r5, &(0x7f0000010280)=ANY=[@ANYBLOB="0702"], 0x69)
close(r5)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

11.780880681s ago: executing program 2 (id=597):
r0 = syz_usb_connect$cdc_ncm(0x2, 0x76, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010000000904010001020d0000052406000105240000000d240f0100000000000000000006241a00000008241c00000008000905810300020000000904010000020d00000904010102020d00000905820200020000000905", @ANYBLOB="a8"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000074"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000101010200000040000000000a0000000c00198008000200050000000600124000030004380002802c00018014000300fe8000000000000000000000000000bb14000400fe88000c77000000000000000000000106"], 0x60}}, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0)
mount$fuse(0x0, &(0x7f00000022c0)='./file0\x00', 0x0, 0x0, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r8, 0x1, 0x2a, 0x0, 0x0)
ioctl$MON_IOCH_MFLUSH(r1, 0x9208, 0x2)
syz_open_dev$usbfs(0x0, 0x205, 0x44680)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x80, 0x1c, {0x2, 0x0, 0xe, 0x1, 0xfffd, 0x3, 0x17, 0x1040, 0x6, 0xffff, 0x0, 0x1000}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

11.646774755s ago: executing program 3 (id=599):
syz_open_procfs(0x0, &(0x7f0000000300)='net/raw6\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r1, 0x400, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2060, 0x0)

11.529098531s ago: executing program 1 (id=601):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x5, 0x349400)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r2 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000380)={0x0, &(0x7f0000000640)=[@rdmsr={0x66, 0x18, {0xb20e2ccc2aa60ef0}}, @cpuid={0x64, 0x18, {0xfffffbe6, 0x1}}, @cpuid={0x64, 0x18, {0x2, 0x1}}, @wr_crn={0x67, 0x20, {0x0, 0x761}}, @nested_vmresume={0x130, 0x18, 0x1}, @wr_drn={0x68, 0x20, {0x7, 0xf}}, @uexit={0x0, 0x18, 0x8}, @out_dx={0x6a, 0x28, {0x4319, 0x1, 0xfff}}, @nested_vmresume={0x130, 0x18, 0x1}, @in_dx={0x69, 0x20, {0x1e0d, 0x4}}, @nested_amd_vmcb_write_mask={0x17c, 0x38, {0x2, @save_area=0x4ec, 0xfffffffffffffff8, 0x6, 0x4}}, @code={0xa, 0x46, {"66baa000ec3e26400f617f00450f22c7f3466dc482f3f6248a66baa100ec3e410f01fa66460f38825d000fc79c652a5e7daf410f09"}}, @in_dx={0x69, 0x20, {0x51a9, 0x2}}, @nested_intel_vmwrite_mask={0x154, 0x38, {0x1, @host_nat=0x6c06, 0x7, 0x4f67, 0x9}}, @code={0xa, 0x57, {"b9f20b00000f3264f243f4660f3881444f8566ba420066b800a066ef66b842000f00d0660fc7350300000026f326460f005600260f01c33646dbbd457b6b9e66b850000f00d0"}}, @nested_vmlaunch={0x12f, 0x18}, @nested_create_vm={0x12d, 0x18, 0x1}, @nested_vmresume={0x130, 0x18, 0x2}, @wr_drn={0x68, 0x20, {0x5, 0x6}}, @nested_vmresume={0x130, 0x18, 0x2}, @wr_crn={0x67, 0x20, {0x2, 0x2}}, @wr_crn={0x67, 0x20, {0x0, 0xc}}, @nested_intel_vmwrite_mask={0x154, 0x38, {0x3, @guest16=0x80e, 0xf5dc, 0x4, 0x5}}, @code={0xa, 0x4b, {"64660fd43167460f5728c4c25109e2c1e00d66baf80cb82ea46980ef66bafc0c66b8010066ef3e0f01cf0f222566440f38813a460f0d1f42d9ff"}}, @wrmsr={0x65, 0x20, {0x943, 0x68a}}, @out_dx={0x6a, 0x28, {0x5ff4, 0x0, 0x7}}, @nested_intel_vmwrite_mask={0x154, 0x38, {0x1, @control_nat=0x600c, 0x9, 0x3, 0x8}}, @enable_nested={0x12c, 0x18}, @nested_create_vm={0x12d, 0x18, 0x3}], 0x438})
ioctl$KVM_KVMCLOCK_CTRL(r2, 0xaead)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0), 0x60001, 0x0)
r4 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000300)=@o_path={&(0x7f00000002c0)='./file0\x00', 0x0, 0x10, r1}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000340)={{0x1, 0x1, 0x18, r4, {0x8}}, './file0\x00'})
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0xffffffffffffffff)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x6, 0x5, &(0x7f0000000b40)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r9, 0xc0a85352, &(0x7f0000000200)={{0x3, 0x7f}, 'port1\x00', 0x80, 0x14, 0x4800000, 0xfffffeff, 0x0, 0xc, 0x200000, 0x0, 0x4875c99660ff2b2d})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r8, 0x0, 0xe1b, 0x0, &(0x7f0000000080)="c14eb0800060d308098e00000000fbd1c168f956014ef772cbd4e89b8a937462a87eaffd19fb6c8b994df281ef4e51df22025c98e8da", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x1c)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x4845}, 0x2004c094)
r10 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
write$binfmt_misc(r10, &(0x7f0000000080)="148d4bfb967c5cc8660e876697cb6540485825cbf2bbeab9c1eeb1454359650732dd20d9f36a1965a45a695531022cf864c12c4bf2486e60c71f3bc85913b79b3e016d32417d0cedda6cf10bf166ba", 0x4f)

10.351396453s ago: executing program 3 (id=605):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000"], 0x14}, 0x1, 0x0, 0x0, 0x4048011}, 0xc080)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x4, 0x0, 0x91, 0x4, 0x4, 0x17, 0x2, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x3, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x2, 0x9, 0x95, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0xfffffffe, 0xffff, 0x3, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x4, 0x1, 0x8000003, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x8000, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3437, 0x3, 0x9, 0xfd, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c84, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x3, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0xbdb], 0x25000, 0x304})
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x0, 0x0})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000400000000010000000900010073797a30000000002c000000030a010200000000000000000100000009000100"], 0xa4}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

10.21647271s ago: executing program 1 (id=606):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000"], 0x14}, 0x1, 0x0, 0x0, 0x4048011}, 0xc080)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x4, 0x0, 0x91, 0x4, 0x4, 0x17, 0x2, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x3, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x2, 0x9, 0x95, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0xfffffffe, 0xffff, 0x3, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x4, 0x1, 0x8000003, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x8000, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3437, 0x3, 0x9, 0xfd, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c84, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x3, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0xbdb], 0x25000, 0x304})
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x0, 0x0})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

10.214512454s ago: executing program 0 (id=607):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000010d804dd00000000000001090224000100000000090400000103000000092105000001220500090581030002"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, &(0x7f0000000000)={0x0, 0x5, 0x3e, {0x3e, 0x22, "f4767bcbc781f2629b4a0a4f0f7ebcf63ca8030d8d3cb0b06ffdb3577c6126807d28a75f89b0fa8a90e8164b7ce5d1e78668b5460ac9cef6e5856718"}}, &(0x7f0000000080)={0x0, 0x3, 0xf, @string={0xf, 0x3, "5479d81b8e08147c85b694b079"}}, &(0x7f00000000c0)={0x0, 0x22, 0x2, {[@main=@item_012={0x1, 0x0, 0xc, "9f"}]}}, &(0x7f0000000180)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3, 0x4c, 0x1, {0x22, 0xa18}}}}, &(0x7f00000004c0)={0x2c, &(0x7f0000000200)={0x40, 0x31, 0xdd, "1718617f1dfbc98d640bc67c13b3363b5e34f7286deccf48062c81ab4699719c09d2405a113724eacd105357524ec03cbbbe5440d4952935d3ad12c78cf418d2f5432d7ad025c5104e26667a469cd2678f38d16e41903e46d4a3bb61ccd567c5ec315786359b69336ecb96db0032402894a723a8835aaca8f8cad3928735235d0cb12ba42d28d0dfd7f4e1a793dae59bc673b7db72b2e00986cce5142d8b4ded5e030608cb230d84c613525a927eea21e95025037599aa50f5d7c53f4f1692c927d3bb1d53b0fe23fe7705cc92fb058c63d795bae4f322501ee65f2dd4"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0xb}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0xb}, &(0x7f0000000400)={0x20, 0x1, 0x8b, "ae120df44173f89e49e2ffc6cb646239603a43a73fb9eecff9c9951d1512049a5c978f705f42e98a4a7dacaa4386f9dd5ecec50d3f05ae7c5fdfa00761ed671609fa2ec10ba5ad966eb67425cb9e30d98908f56542dfb23326f07ce2747c9e577bc9510152074f5ff5a2a8936da5b313b5f0b58b50cfc29081ee689db9da50766819666967f099944621bf"}, &(0x7f0000000380)={0x20, 0x3, 0x1, 0x3}})
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
close(0x3)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
sendmmsg$inet6(r2, &(0x7f0000001e40)=[{{&(0x7f0000002180)={0xa, 0x4e21, 0x8, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x25}}, 0x8}, 0x1c, &(0x7f0000000b00)=[{&(0x7f0000000100)='D', 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x240880d1)
io_setup(0x40, &(0x7f0000000040)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000140)=[&(0x7f0000002f00)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000580)=@assoc_value, &(0x7f00000005c0)=0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x57)
r5 = socket$kcm(0x29, 0x2, 0x0)
write$cgroup_pressure(r5, &(0x7f0000000140)={'some', 0x20, 0x0, 0x20, 0x100000000000000}, 0x2f)
sendmsg$kcm(r5, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x20000818)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x702, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="1b0400020000000082"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x5, 0xb, &(0x7f0000000540)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES16, @ANYRES32=0x0, @ANYRES8=r6], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r7 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a0003010000000904000000010100000a24010000000201020c24020800000000000800000524050000082407000000009ef6230700000000a3a82f07070d240701060000fd800000001a4824030000000001"], 0x0)
syz_usb_control_io(r7, &(0x7f0000000140)={0x2c, 0x0, &(0x7f0000007680)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x180c}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r7, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000180)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1401}}}, 0x0)
syz_usb_control_io(r7, 0x0, &(0x7f0000000c80)={0x84, &(0x7f0000000500)={0x20, 0x15, 0x2, "c04e"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r7, 0x0, &(0x7f00000009c0)={0x44, &(0x7f0000000340)={0x0, 0xc, 0x2, "ee3c"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), r6)
sendmsg$DEVLINK_CMD_TRAP_GET(r8, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000540)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000fbfbdf25270000000e0001006e655f64657673696d0000000f0002006e657464657673696d3000001c0053"], 0x50}, 0x1, 0x0, 0x0, 0x24040011}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x1, &(0x7f0000000840)="91")

7.550608881s ago: executing program 1 (id=614):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1400000046"], 0x14}, 0x1, 0x0, 0x0, 0x4048011}, 0xc080)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0xbdb], 0x25000, 0x304})
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x0, 0x0})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000400000000010000000900010073797a30000000002c000000030a"], 0xa4}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

7.425736351s ago: executing program 3 (id=616):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
syz_create_resource$binfmt(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
socket$inet6(0xa, 0x3, 0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB="06000c003c2000000092003f", @ANYRES32=0x0, @ANYBLOB, @ANYRES64=0x0], 0x20)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES8], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000500)=ANY=[@ANYRES32=r4, @ANYRES8=r2], 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_subtree(r5, &(0x7f0000000200), 0x2, 0x0)
rmdir(&(0x7f0000000080)='./cgroup/../file0\x00')
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0xcc75, 0x0, 0x3}, &(0x7f00000000c0)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_ASYNC_CANCEL)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r6, 0x13, 0x0, 0x2)

7.053215447s ago: executing program 1 (id=621):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000000400)=""/102400, 0x19000)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x400448e1, &(0x7f0000000080))

5.667451023s ago: executing program 1 (id=622):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x4, 0x0, 0x91, 0x4, 0x4, 0x17, 0x2, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x3, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x2, 0x9, 0x95, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0xfffffffe, 0xffff, 0x3, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x4, 0x1, 0x8000003, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x8000, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3437, 0x3, 0x9, 0xfd, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c84, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x3, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0xbdb], 0x25000, 0x304})
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x0, &(0x7f0000000200)})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000400000000010000000900010073797a30000000002c000000030a0102000000000000000001000000090001"], 0xa4}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

5.666858287s ago: executing program 0 (id=623):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="f6fc0000020601020000100000000000000000000c000780080012400006000013000300686173683a6e65742c69666163650000050005000a0000000000050005000005000100070000000000000000009caa828c000000"], 0x58}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20040080)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x4)
capset(&(0x7f0000000900)={0x20071026}, &(0x7f0000000940)={0x2, 0xf, 0x4, 0x800, 0x10000, 0x9})
writev(r6, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427323b470c45b4560a067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1)
bind$alg(r4, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r7 = accept$alg(r4, 0x0, 0x0)
sendmsg$alg(r7, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@assoc={0x18, 0x117, 0x4, 0x100}, @assoc={0x18, 0x117, 0x4, 0xfffffffa}], 0x30}, 0x0)
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_SEND_PRIO(r8, 0x6b, 0x3, &(0x7f0000000280), 0x4)
write$binfmt_script(r7, &(0x7f0000000600), 0xfec8)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000001c0)=@o_path={&(0x7f0000000100)='./file0\x00', 0x1, 0x4000, r1}, 0x18)

5.647740918s ago: executing program 2 (id=624):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xb0000011, 0x300})

5.54522107s ago: executing program 3 (id=625):
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040), 0x202000, 0x0)
bind(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r1, 0x18000000000002a0, 0xd, 0x0, &(0x7f00000002c0)="f6eb094549002060009b8538a4", 0x0, 0x806, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = msgget$private(0x0, 0x5)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x2, 0x0)
r4 = getpid()
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = syz_open_dev$sg(&(0x7f00000000c0), 0x80000001, 0x1)
ioctl$BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000140)={'\x00', 0xf, 0x3b, 0x0, 0x7ff, 0x6, r4})
setsockopt$inet_int(r5, 0x0, 0x20, &(0x7f0000000000), 0x4)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r7=>0x0)
syz_open_procfs$pagemap(r7, &(0x7f0000000680))
sched_setscheduler(r4, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x99a26000)
r8 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r8, 0x1, 0x0)
r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r9, &(0x7f0000019680)=""/102392, 0x18ff8)
r10 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='./cgroup.net/cgroup.procs\x00', 0x0, 0x82)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
process_vm_writev(0x0, &(0x7f0000000400), 0x0, &(0x7f0000000640)=[{&(0x7f0000000440)=""/125, 0x7d}, {0x0}], 0x2, 0x0)
open_by_handle_at(r10, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0)
msgrcv(r2, 0x0, 0x0, 0x2, 0x3000)

3.473277143s ago: executing program 3 (id=628):
r0 = syz_usb_connect$cdc_ncm(0x2, 0x76, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010000000904010001020d0000052406000105240000000d240f0100000000000000000006241a00000008241c00000008000905810300020000000904010000020d00000904010102020d00000905820200020000000905", @ANYBLOB="a8"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000074"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000101010200000040000000000a0000000c00198008000200050000000600124000030004380002802c00018014000300fe8000000000000000000000000000bb14"], 0x60}}, 0x0)

3.337386599s ago: executing program 0 (id=630):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace$getregs(0xc, r1, 0x7, &(0x7f0000000240)=""/74)
sched_setscheduler(0x0, 0x2, &(0x7f00000002c0)=0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001480)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c383032313100f58965f119cc126753b031a7b853d042666cf768bebe72b11c91f6e7bc6d0e32e9d47cec95a610e2a020376872c26056d965af0f902f1ef8179fd9647f3ebdaf305fbf41e7a3d2ec4189b8822a2b96befba64422ea9d8330cc715e5c73efdeccea69ad662be0605ae603b24c4e6b37ecb77fe89955273343bee3ba"], 0x20}}, 0x0)
recvmmsg(r4, &(0x7f0000001b40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/189, 0xbd}, {&(0x7f00000003c0)=""/152, 0x98}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x3}}], 0x7, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
r5 = creat(&(0x7f00000000c0)='./file0\x00', 0xdafbe5d6891b6e4)
write$binfmt_elf32(r5, &(0x7f0000010280)=ANY=[@ANYBLOB="07025c"], 0x69)
close(r5)
execve(0x0, 0x0, 0x0)

2.385144629s ago: executing program 2 (id=631):
syz_usb_connect(0x5, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0x29, 0x6f, 0xb6, 0x8, 0x9022, 0xd484, 0xff88, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x4, 0x95, 0x0, 0x81, [{{0x9, 0x4, 0x1e, 0x80, 0x0, 0x56, 0xa7, 0xf6, 0x2}}]}}]}}, &(0x7f0000001700)={0xffffffa0, 0x0, 0x0, 0x0, 0x16})
r0 = syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x2003)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000080)={&(0x7f0000000480)=[{0x1a00, 0x9211, 0x0, 0x0}, {0x9, 0xa200, 0x0, 0x0}, {0xfffe, 0x800, 0x0, 0x0}], 0x3})

2.284598157s ago: executing program 0 (id=632):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000000400)=""/102400, 0x19000)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x400448e1, &(0x7f0000000080))

1.135068542s ago: executing program 0 (id=634):
r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
fsetxattr$security_ima(r0, &(0x7f0000000080), &(0x7f0000001200)=ANY=[@ANYBLOB="0405"], 0x2, 0x0)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (fail_nth: 3)

1.037097954s ago: executing program 4 (id=635):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x2000, &(0x7f0000000000)={&(0x7f0000000240)=@newsa={0x138, 0x10, 0x1, 0xbffffffd, 0x25dfdbfd, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@mcast1, 0x1, 0x794, 0x4e23, 0x5, 0x2, 0x0, 0x20, 0x3a}, {@in=@broadcast, 0x4d4, 0x6c}, @in=@loopback, {0xffffffff, 0x9, 0x1ff, 0xffff, 0x8251d, 0xfffffffffffffffe, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x3, 0x1, 0x1ff}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3, 0x2, 0x1, 0xfd, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x10)

967.472917ms ago: executing program 4 (id=636):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8ab8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000010000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0xe, 0x0, &(0x7f0000000300)="e0b9547ed387dbe98d5c48b9d5f0", 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (fail_nth: 5)

333.828047ms ago: executing program 4 (id=637):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000"], 0x14}, 0x1, 0x0, 0x0, 0x4048011}, 0xc080)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x4, 0x0, 0x91, 0x4, 0x4, 0x17, 0x2, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x3, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x2, 0x9, 0x95, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0xfffffffe, 0xffff, 0x3, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x4, 0x1, 0x8000003, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x8000, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3437, 0x3, 0x9, 0xfd, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c84, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x3, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0xbdb], 0x25000, 0x304})
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x0, 0x0})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000400000000010000000900010073797a30000000002c000000030a010200000000000000000100000009000100"], 0xa4}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

89.354366ms ago: executing program 4 (id=638):
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000002040)={0xaa, 0x22c})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000339000/0x1000)=nil, 0x800000, 0x41})

82.753524ms ago: executing program 4 (id=639):
read$FUSE(0xffffffffffffffff, &(0x7f0000003800)={0x2020}, 0x2020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r1, 0x400, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2060, 0x0)

0s ago: executing program 4 (id=640):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r1)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r4=>r0, {<r5=>r1, r2}}, './file0\x00'})
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000040)={{{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4e22, 0x9412, 0x4e23, 0x7f, 0x2, 0xa0, 0xc0, 0x3c, 0x0, r5}, {0x3, 0x5, 0xc, 0x3, 0x80000000, 0x8737, 0x8, 0x3b0}, {0x98f, 0x1, 0x5, 0x7}, 0x800, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@broadcast, 0x4d5, 0x2b}, 0x2, @in=@loopback, 0x3507, 0x4, 0x0, 0x8, 0x1}}, 0xe8)
ioctl$GIO_SCRNMAP(r4, 0x4b40, &(0x7f0000000140)=""/151)
setresuid(0xee01, r1, r1)

kernel console output (not intermixed with test programs):

 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.048531][ T6193] RSP: 002b:00007f85aec8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  114.048550][ T6193] RAX: ffffffffffffffda RBX: 00007f85b0c85fa0 RCX: 00007f85b0a2f749
[  114.048563][ T6193] RDX: 00002000000000c0 RSI: 0000000040086200 RDI: 0000000000000005
[  114.048575][ T6193] RBP: 00007f85aec8e090 R08: 0000000000000000 R09: 0000000000000000
[  114.048586][ T6193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.048596][ T6193] R13: 00007f85b0c86038 R14: 00007f85b0c85fa0 R15: 00007ffda5b71228
[  114.048628][ T6193]  </TASK>
[  114.884719][ T5854] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  116.319724][ T5854] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  116.319759][ T5854] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  116.319811][ T5854] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  116.319832][ T5854] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.376634][ T6200] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  116.404188][ T5854] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  116.498193][ T1391] wlan1: Creating new IBSS network, BSSID 46:ea:8e:94:1f:4c
[  116.781801][ T6223] kAFS: unable to lookup cell 'syz1'
[  116.887116][ T6204] syz.1.82 (6204) used greatest stack depth: 16720 bytes left
[  117.662753][ T5885] usb 1-1: USB disconnect, device number 6
[  119.267882][ T6240] kvm: kvm [6238]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x1000011bc
[  119.478749][ T6254] blktrace: Concurrent blktraces are not allowed on sg0
[  120.325346][ T6265] FAULT_INJECTION: forcing a failure.
[  120.325346][ T6265] name failslab, interval 1, probability 0, space 0, times 0
[  120.325378][ T6265] CPU: 0 UID: 0 PID: 6265 Comm: syz.4.105 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  120.325399][ T6265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  120.325409][ T6265] Call Trace:
[  120.325417][ T6265]  <TASK>
[  120.325424][ T6265]  dump_stack_lvl+0x189/0x250
[  120.325451][ T6265]  ? __pfx____ratelimit+0x10/0x10
[  120.325477][ T6265]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.325499][ T6265]  ? __pfx__printk+0x10/0x10
[  120.325524][ T6265]  ? __pfx___might_resched+0x10/0x10
[  120.325543][ T6265]  ? fs_reclaim_acquire+0x7d/0x100
[  120.325565][ T6265]  should_fail_ex+0x46c/0x600
[  120.325593][ T6265]  should_failslab+0xa8/0x100
[  120.325613][ T6265]  __kmalloc_noprof+0xe0/0x7e0
[  120.325636][ T6265]  ? __list_lru_init+0x528/0x600
[  120.325653][ T6265]  ? __list_lru_init+0xbe/0x600
[  120.325677][ T6265]  __list_lru_init+0xbe/0x600
[  120.325710][ T6265]  alloc_super+0x8bd/0xab0
[  120.325733][ T6265]  ? rt_spin_unlock+0x161/0x200
[  120.325759][ T6265]  sget_fc+0x329/0xa40
[  120.325782][ T6265]  ? __pfx_set_anon_super_fc+0x10/0x10
[  120.325802][ T6265]  ? __pfx_proc_fill_super+0x10/0x10
[  120.325822][ T6265]  get_tree_nodev+0x2a/0x150
[  120.325845][ T6265]  vfs_get_tree+0x92/0x2a0
[  120.325870][ T6265]  vfs_cmd_create+0xa2/0x200
[  120.325895][ T6265]  __se_sys_fsconfig+0x794/0x8e0
[  120.325923][ T6265]  ? __pfx___se_sys_fsconfig+0x10/0x10
[  120.325943][ T6265]  ? ksys_write+0x230/0x260
[  120.325968][ T6265]  ? __pfx_ksys_write+0x10/0x10
[  120.325993][ T6265]  ? do_syscall_64+0xbe/0xf80
[  120.326007][ T6265]  ? __x64_sys_fsconfig+0x20/0xc0
[  120.326031][ T6265]  do_syscall_64+0xfa/0xf80
[  120.326047][ T6265]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.326064][ T6265]  ? clear_bhb_loop+0x60/0xb0
[  120.326084][ T6265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.326100][ T6265] RIP: 0033:0x7f22d05af749
[  120.326118][ T6265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.326130][ T6265] RSP: 002b:00007f22ce80e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  120.326146][ T6265] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05af749
[  120.326157][ T6265] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[  120.326166][ T6265] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  120.326176][ T6265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.326184][ T6265] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  120.326213][ T6265]  </TASK>
[  120.938770][ T5885] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  121.046331][ T6125] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  122.293955][ T5885] usb 2-1: unable to get BOS descriptor or descriptor too short
[  122.297020][ T5885] usb 2-1: config 6 has an invalid interface number: 86 but max is 0
[  122.297044][ T5885] usb 2-1: config 6 has no interface number 0
[  122.297408][ T5885] usb 2-1: config 6 interface 86 has no altsetting 0
[  122.304460][ T5885] usb 2-1: New USB device found, idVendor=0c45, idProduct=628e, bcdDevice=b0.8b
[  122.304486][ T5885] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  122.304511][ T5885] usb 2-1: Product: syz
[  122.304524][ T5885] usb 2-1: Manufacturer: syz
[  122.304538][ T5885] usb 2-1: SerialNumber: syz
[  122.370160][ T6125] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  122.370251][ T6125] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  122.370291][ T6125] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  122.370312][ T6125] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.648797][ T5885] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:628e
[  122.663767][ T5885] gspca_sn9c20x: Write register 1000 failed -71
[  122.663791][ T5885] gspca_sn9c20x: Device initialization failed
[  122.664549][ T5885] gspca_sn9c20x 2-1:6.86: probe with driver gspca_sn9c20x failed with error -71
[  122.697571][ T6279] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  122.740472][ T5885] usb 2-1: USB disconnect, device number 3
[  122.800845][ T6125] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  123.576367][   T31] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  123.733811][   T31] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  123.733841][   T31] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.733861][   T31] usb 2-1: Product: syz
[  123.733875][   T31] usb 2-1: Manufacturer: syz
[  123.733888][   T31] usb 2-1: SerialNumber: syz
[  123.811644][   T31] usb 2-1: config 0 descriptor??
[  123.978561][ T6110] usb 4-1: USB disconnect, device number 2
[  124.046389][   T31] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  124.397872][ T5885] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  124.598913][ T6315] blktrace: Concurrent blktraces are not allowed on sg0
[  125.174069][ T5885] usb 1-1: not running at top speed; connect to a high speed hub
[  125.185842][ T5885] usb 1-1: config 8 has an invalid interface number: 138 but max is 3
[  125.185869][ T5885] usb 1-1: config 8 has an invalid interface number: 136 but max is 3
[  125.185890][ T5885] usb 1-1: config 8 has an invalid interface number: 135 but max is 3
[  125.185909][ T5885] usb 1-1: config 8 has an invalid interface number: 80 but max is 3
[  125.185927][ T5885] usb 1-1: config 8 has an invalid interface number: 57 but max is 3
[  125.185945][ T5885] usb 1-1: config 8 has an invalid interface number: 194 but max is 3
[  125.185963][ T5885] usb 1-1: config 8 has 6 interfaces, different from the descriptor's value: 4
[  125.185981][ T5885] usb 1-1: config 8 has no interface number 0
[  125.185995][ T5885] usb 1-1: config 8 has no interface number 1
[  125.186010][ T5885] usb 1-1: config 8 has no interface number 2
[  125.186024][ T5885] usb 1-1: config 8 has no interface number 3
[  125.186038][ T5885] usb 1-1: config 8 has no interface number 4
[  125.186053][ T5885] usb 1-1: config 8 has no interface number 5
[  125.187739][ T5885] usb 1-1: config 8 interface 138 altsetting 0 endpoint 0xF has invalid maxpacket 512, setting to 64
[  125.187768][ T5885] usb 1-1: config 8 interface 138 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  125.187789][ T5885] usb 1-1: config 8 interface 138 altsetting 0 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[  125.187814][ T5885] usb 1-1: config 8 interface 138 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  125.187834][ T5885] usb 1-1: config 8 interface 138 altsetting 0 endpoint 0x8 has invalid maxpacket 1024, setting to 64
[  125.187858][ T5885] usb 1-1: config 8 interface 138 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  125.187905][ T5885] usb 1-1: config 8 interface 135 altsetting 251 has a duplicate endpoint with address 0x1, skipping
[  125.187926][ T5885] usb 1-1: config 8 interface 135 altsetting 251 has a duplicate endpoint with address 0x1, skipping
[  125.187948][ T5885] usb 1-1: config 8 interface 135 altsetting 251 endpoint 0x9 has invalid maxpacket 1024, setting to 64
[  125.187973][ T5885] usb 1-1: config 8 interface 135 altsetting 251 has 5 endpoint descriptors, different from the interface descriptor's value: 12
[  125.187998][ T5885] usb 1-1: too many endpoints for config 8 interface 80 altsetting 114: 33, using maximum allowed: 30
[  125.188034][ T5885] usb 1-1: config 8 interface 80 altsetting 114 has a duplicate endpoint with address 0x2, skipping
[  125.188059][ T5885] usb 1-1: config 8 interface 80 altsetting 114 has a duplicate endpoint with address 0x85, skipping
[  125.188080][ T5885] usb 1-1: config 8 interface 80 altsetting 114 has an invalid descriptor for endpoint zero, skipping
[  125.188098][ T5885] usb 1-1: config 8 interface 80 altsetting 114 has 6 endpoint descriptors, different from the interface descriptor's value: 33
[  125.188123][ T5885] usb 1-1: too many endpoints for config 8 interface 57 altsetting 49: 179, using maximum allowed: 30
[  125.188160][ T5885] usb 1-1: config 8 interface 57 altsetting 49 has 1 endpoint descriptor, different from the interface descriptor's value: 179
[  125.188207][ T5885] usb 1-1: config 8 interface 194 altsetting 5 has a duplicate endpoint with address 0x6, skipping
[  125.188228][ T5885] usb 1-1: config 8 interface 194 altsetting 5 has a duplicate endpoint with address 0x7, skipping
[  125.188250][ T5885] usb 1-1: config 8 interface 194 altsetting 5 endpoint 0x4 has invalid maxpacket 1024, setting to 64
[  125.188274][ T5885] usb 1-1: config 8 interface 136 has no altsetting 0
[  125.188291][ T5885] usb 1-1: config 8 interface 135 has no altsetting 0
[  125.188307][ T5885] usb 1-1: config 8 interface 80 has no altsetting 0
[  125.188323][ T5885] usb 1-1: config 8 interface 57 has no altsetting 0
[  125.188339][ T5885] usb 1-1: config 8 interface 194 has no altsetting 0
[  125.217998][ T5885] usb 1-1: New USB device found, idVendor=0b62, idProduct=0059, bcdDevice=c1.2e
[  125.218026][ T5885] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.218044][ T5885] usb 1-1: Product: ꟈ訳츺糾礔�ᵣ�㬶�ฉ죑�䨆䦎ꆦ鎉�鑒趨㒦筓㴋ⳮ毇�免钘䣟怟��쬘⤕�庎☨ㆡ�Пᾢ褻羫꣘߆虓¯᠀繢�龭邆튣㫖缣ᒛ贛敵��鲺歺｡骥㪀紤���앧䡥먥蛋ሯ理濉郫棷ᾬ뮢�錨츣짢㷊쪽斗੄緧瘦탉ᕞ⨅蕢�ⱆ�
[  125.218071][ T5885] usb 1-1: Manufacturer: ᖯ瑽힓觽�슞퉖�Ճ圃䮇뺤⒩渵⪛䄕⎸�煮Ⅵ劉彘ꨢ�耟㲮䤀鬛�ˌꡓ��ﲄ��혒�＊哠ሎ≄얅򤿤䶃쳱倹堒耷ܾᑶ㲨掗䥗는䎈붽崟�僔緅矡箸뛬뼚絎巤桵舃�걣帇螓ᙼ잊૨⟗谬洎ꖉ㻵穕슃虎즕莲뵼﷯ꑾ綉�퓓弮�YἜꊇᓋ嶰눾
[  125.218101][ T5885] usb 1-1: SerialNumber: Я
[  125.246300][ T6308] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  125.415009][ T6321] FAULT_INJECTION: forcing a failure.
[  125.415009][ T6321] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.415061][ T6321] CPU: 0 UID: 0 PID: 6321 Comm: syz.4.125 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  125.415081][ T6321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  125.415091][ T6321] Call Trace:
[  125.415098][ T6321]  <TASK>
[  125.415106][ T6321]  dump_stack_lvl+0x189/0x250
[  125.415148][ T6321]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.415170][ T6321]  ? __pfx__printk+0x10/0x10
[  125.415206][ T6321]  should_fail_ex+0x46c/0x600
[  125.415233][ T6321]  _copy_from_user+0x2d/0xb0
[  125.415252][ T6321]  do_fcntl+0x5b6/0x1820
[  125.415277][ T6321]  ? __pfx_do_fcntl+0x10/0x10
[  125.415295][ T6321]  ? smack_file_fcntl+0x13a/0x2f0
[  125.415319][ T6321]  ? __pfx_smack_file_fcntl+0x10/0x10
[  125.415350][ T6321]  ? tomoyo_file_fcntl+0x7b/0x220
[  125.415371][ T6321]  ? bpf_lsm_file_fcntl+0x9/0x20
[  125.415399][ T6321]  __se_sys_fcntl+0xcb/0x160
[  125.415423][ T6321]  do_syscall_64+0xfa/0xf80
[  125.415441][ T6321]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.415459][ T6321]  ? clear_bhb_loop+0x60/0xb0
[  125.415479][ T6321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.415495][ T6321] RIP: 0033:0x7f22d05af749
[  125.415515][ T6321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.415529][ T6321] RSP: 002b:00007f22ce80e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  125.415552][ T6321] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05af749
[  125.415565][ T6321] RDX: 0000200000000100 RSI: 0000000000000024 RDI: 0000000000000003
[  125.415576][ T6321] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  125.415586][ T6321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.415596][ T6321] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  125.415626][ T6321]  </TASK>
[  125.717506][ T6302] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  125.718010][ T6302] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  126.113553][   T31] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  126.140609][   T31] usb 2-1: USB disconnect, device number 4
[  126.411021][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.411715][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.411742][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.411814][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.411836][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.411859][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.411881][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.411905][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.411997][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.412022][ T6286] hid-generic 2CC6:0008:0009.0001: unknown main item tag 0x0
[  126.825689][ T6286] hid-generic 2CC6:0008:0009.0001: hidraw0: <UNKNOWN> HID v0.05 Device [syz0] on syz0
[  129.257749][ T5920] usb 1-1: USB disconnect, device number 7
[  129.296852][    T9] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  129.411052][ T6361] btrfs: Unknown parameter 'norecoveryYs²vÍyX·>¢!·ýVx¾¿T­'î•Ò®ë5d‚ÿFu'
[  129.442245][ T6364] FAULT_INJECTION: forcing a failure.
[  129.442245][ T6364] name failslab, interval 1, probability 0, space 0, times 0
[  129.442277][ T6364] CPU: 1 UID: 0 PID: 6364 Comm: syz.0.138 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  129.442298][ T6364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  129.442309][ T6364] Call Trace:
[  129.442316][ T6364]  <TASK>
[  129.442324][ T6364]  dump_stack_lvl+0x189/0x250
[  129.442351][ T6364]  ? __pfx____ratelimit+0x10/0x10
[  129.442376][ T6364]  ? __pfx_dump_stack_lvl+0x10/0x10
[  129.442398][ T6364]  ? __pfx__printk+0x10/0x10
[  129.442423][ T6364]  ? __pfx___might_resched+0x10/0x10
[  129.442446][ T6364]  should_fail_ex+0x46c/0x600
[  129.442475][ T6364]  should_failslab+0xa8/0x100
[  129.442494][ T6364]  __kmalloc_noprof+0xe0/0x7e0
[  129.442517][ T6364]  ? kfree+0x4d/0x900
[  129.442535][ T6364]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  129.442560][ T6364]  tomoyo_realpath_from_path+0xe3/0x5d0
[  129.442580][ T6364]  ? tomoyo_domain+0xd9/0x130
[  129.442603][ T6364]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  129.442625][ T6364]  tomoyo_path_number_perm+0x1e8/0x5a0
[  129.442651][ T6364]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  129.442679][ T6364]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  129.442697][ T6364]  ? lockdep_hardirqs_on+0x98/0x140
[  129.442751][ T6364]  ? __fget_files+0x2a/0x420
[  129.442775][ T6364]  ? __fget_files+0x3a6/0x420
[  129.442792][ T6364]  ? __fget_files+0x2a/0x420
[  129.442814][ T6364]  security_file_ioctl+0xcb/0x2d0
[  129.442840][ T6364]  __se_sys_ioctl+0x47/0x170
[  129.442866][ T6364]  do_syscall_64+0xfa/0xf80
[  129.442884][ T6364]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.442901][ T6364]  ? clear_bhb_loop+0x60/0xb0
[  129.442924][ T6364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.442941][ T6364] RIP: 0033:0x7fed80edf749
[  129.442957][ T6364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.442971][ T6364] RSP: 002b:00007fed7f146038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  129.442991][ T6364] RAX: ffffffffffffffda RBX: 00007fed81135fa0 RCX: 00007fed80edf749
[  129.443004][ T6364] RDX: 0000200000000080 RSI: 0000000000002284 RDI: 0000000000000003
[  129.443015][ T6364] RBP: 00007fed7f146090 R08: 0000000000000000 R09: 0000000000000000
[  129.443026][ T6364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.443037][ T6364] R13: 00007fed81136038 R14: 00007fed81135fa0 R15: 00007ffef9d89ea8
[  129.443069][ T6364]  </TASK>
[  129.443077][ T6364] ERROR: Out of memory at tomoyo_realpath_from_path.
[  129.466470][    T9] usb 3-1: Using ep0 maxpacket: 32
[  129.487380][    T9] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  129.487405][    T9] usb 3-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[  129.489782][    T9] usb 3-1: New USB device found, idVendor=0499, idProduct=a9a2, bcdDevice=c4.e8
[  129.489806][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.489824][    T9] usb 3-1: Product: syz
[  129.489837][    T9] usb 3-1: Manufacturer: syz
[  129.489850][    T9] usb 3-1: SerialNumber: syz
[  131.465677][ T6400] netlink: 260 bytes leftover after parsing attributes in process `syz.1.151'.
[  131.498912][ T6400] netlink: 12 bytes leftover after parsing attributes in process `syz.1.151'.
[  131.796318][ T6286] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  131.956208][ T6286] usb 2-1: Using ep0 maxpacket: 8
[  131.959026][ T6286] usb 2-1: config 32 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  131.959070][ T6286] usb 2-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[  131.959092][ T6286] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.129672][    T9] usb 3-1: USB disconnect, device number 7
[  132.222477][ T6286] usb 2-1: string descriptor 0 read error: -71
[  132.316546][ T5862] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  132.346498][ T6286] usb 2-1: USB disconnect, device number 5
[  133.239192][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  133.239280][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  133.297205][ T5963] udevd[5963]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:32.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  133.338075][ T5862] usb 4-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[  133.338106][ T5862] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.338125][ T5862] usb 4-1: Product: syz
[  133.338139][ T5862] usb 4-1: Manufacturer: syz
[  133.338153][ T5862] usb 4-1: SerialNumber: syz
[  133.359300][ T5862] usb 4-1: config 0 descriptor??
[  133.623240][ T6437] Bluetooth: hci0: invalid length 0, exp 2 for type 10
[  134.036443][ T6446] process 'syz.2.171' launched './file0' with NULL argv: empty string added
[  135.129041][ T5862] usb 4-1: f81604_write: reg: 105 data: 17 failed: -EPROTO
[  135.129071][ T5862] f81604 4-1:0.0: Setting termination of CH#1 failed: -EPROTO
[  135.129107][ T5862] f81604 4-1:0.0: probe with driver f81604 failed with error -71
[  135.299771][ T5862] usb 4-1: USB disconnect, device number 3
[  135.344008][ T5920] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  136.167331][ T6459] FAULT_INJECTION: forcing a failure.
[  136.167331][ T6459] name failslab, interval 1, probability 0, space 0, times 0
[  136.167363][ T6459] CPU: 0 UID: 0 PID: 6459 Comm: syz.4.175 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  136.167384][ T6459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  136.167395][ T6459] Call Trace:
[  136.167402][ T6459]  <TASK>
[  136.167411][ T6459]  dump_stack_lvl+0x189/0x250
[  136.167438][ T6459]  ? __pfx____ratelimit+0x10/0x10
[  136.167464][ T6459]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.167487][ T6459]  ? __pfx__printk+0x10/0x10
[  136.167502][ T6459]  ? __kasan_slab_alloc+0x6c/0x80
[  136.167530][ T6459]  ? __lock_acquire+0x6b6/0x2cf0
[  136.167562][ T6459]  should_fail_ex+0x46c/0x600
[  136.167589][ T6459]  ? skb_clone+0x212/0x3a0
[  136.167610][ T6459]  should_failslab+0xa8/0x100
[  136.167629][ T6459]  ? skb_clone+0x212/0x3a0
[  136.167648][ T6459]  kmem_cache_alloc_noprof+0x84/0x6c0
[  136.167670][ T6459]  ? __netlink_lookup+0xbd/0x8a0
[  136.167701][ T6459]  skb_clone+0x212/0x3a0
[  136.167726][ T6459]  __netlink_deliver_tap+0x404/0x850
[  136.167761][ T6459]  ? netlink_deliver_tap+0x2e/0x1b0
[  136.167784][ T6459]  netlink_deliver_tap+0x19c/0x1b0
[  136.167807][ T6459]  netlink_unicast+0x811/0xa10
[  136.167837][ T6459]  ? __pfx_netlink_unicast+0x10/0x10
[  136.167859][ T6459]  ? netlink_sendmsg+0x642/0xb30
[  136.167879][ T6459]  ? skb_put+0x11b/0x210
[  136.167903][ T6459]  netlink_sendmsg+0x805/0xb30
[  136.167935][ T6459]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.167966][ T6459]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  136.167988][ T6459]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.168011][ T6459]  __sock_sendmsg+0x21c/0x270
[  136.168046][ T6459]  ____sys_sendmsg+0x508/0x810
[  136.168073][ T6459]  ? __pfx_____sys_sendmsg+0x10/0x10
[  136.168104][ T6459]  ? import_iovec+0x74/0xa0
[  136.168125][ T6459]  ___sys_sendmsg+0x21f/0x2a0
[  136.168150][ T6459]  ? __pfx____sys_sendmsg+0x10/0x10
[  136.168213][ T6459]  ? __fget_files+0x2a/0x420
[  136.168231][ T6459]  ? __fget_files+0x3a6/0x420
[  136.168260][ T6459]  __x64_sys_sendmsg+0x1a1/0x260
[  136.168284][ T6459]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  136.168316][ T6459]  ? __pfx_ksys_write+0x10/0x10
[  136.168344][ T6459]  ? do_syscall_64+0xbe/0xf80
[  136.168365][ T6459]  do_syscall_64+0xfa/0xf80
[  136.168384][ T6459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.168402][ T6459]  ? clear_bhb_loop+0x60/0xb0
[  136.168423][ T6459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.168441][ T6459] RIP: 0033:0x7f22d05af749
[  136.168457][ T6459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.168471][ T6459] RSP: 002b:00007f22ce80e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  136.168490][ T6459] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05af749
[  136.168503][ T6459] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  136.168514][ T6459] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  136.168525][ T6459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  136.168536][ T6459] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  136.168567][ T6459]  </TASK>
[  136.306263][ T5920] usb 3-1: Using ep0 maxpacket: 32
[  136.308274][ T5920] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  136.308297][ T5920] usb 3-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[  136.317321][ T5920] usb 3-1: New USB device found, idVendor=0499, idProduct=a9a2, bcdDevice=c4.e8
[  136.317349][ T5920] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.317368][ T5920] usb 3-1: Product: syz
[  136.317380][ T5920] usb 3-1: Manufacturer: syz
[  136.317394][ T5920] usb 3-1: SerialNumber: syz
[  136.922634][ T6474] FAULT_INJECTION: forcing a failure.
[  136.922634][ T6474] name failslab, interval 1, probability 0, space 0, times 0
[  136.922665][ T6474] CPU: 0 UID: 0 PID: 6474 Comm: syz.4.182 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  136.922686][ T6474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  136.922698][ T6474] Call Trace:
[  136.922704][ T6474]  <TASK>
[  136.922712][ T6474]  dump_stack_lvl+0x189/0x250
[  136.922740][ T6474]  ? __pfx____ratelimit+0x10/0x10
[  136.922766][ T6474]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.922788][ T6474]  ? __pfx__printk+0x10/0x10
[  136.922803][ T6474]  ? __kasan_slab_alloc+0x6c/0x80
[  136.922833][ T6474]  ? __lock_acquire+0x6b6/0x2cf0
[  136.922865][ T6474]  should_fail_ex+0x46c/0x600
[  136.922891][ T6474]  ? skb_clone+0x212/0x3a0
[  136.922912][ T6474]  should_failslab+0xa8/0x100
[  136.922930][ T6474]  ? skb_clone+0x212/0x3a0
[  136.922949][ T6474]  kmem_cache_alloc_noprof+0x84/0x6c0
[  136.922977][ T6474]  ? __netlink_lookup+0xbd/0x8a0
[  136.923007][ T6474]  skb_clone+0x212/0x3a0
[  136.923033][ T6474]  __netlink_deliver_tap+0x404/0x850
[  136.923068][ T6474]  ? netlink_deliver_tap+0x2e/0x1b0
[  136.923092][ T6474]  netlink_deliver_tap+0x19c/0x1b0
[  136.923115][ T6474]  netlink_unicast+0x811/0xa10
[  136.923144][ T6474]  ? __pfx_netlink_unicast+0x10/0x10
[  136.923167][ T6474]  ? netlink_sendmsg+0x642/0xb30
[  136.923187][ T6474]  ? skb_put+0x11b/0x210
[  136.923211][ T6474]  netlink_sendmsg+0x805/0xb30
[  136.923243][ T6474]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.923274][ T6474]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  136.923296][ T6474]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.923319][ T6474]  __sock_sendmsg+0x21c/0x270
[  136.923347][ T6474]  ____sys_sendmsg+0x508/0x810
[  136.923373][ T6474]  ? __pfx_____sys_sendmsg+0x10/0x10
[  136.923405][ T6474]  ? import_iovec+0x74/0xa0
[  136.923426][ T6474]  ___sys_sendmsg+0x21f/0x2a0
[  136.923450][ T6474]  ? __pfx____sys_sendmsg+0x10/0x10
[  136.923510][ T6474]  ? __fget_files+0x2a/0x420
[  136.923529][ T6474]  ? __fget_files+0x3a6/0x420
[  136.923559][ T6474]  __x64_sys_sendmsg+0x1a1/0x260
[  136.923584][ T6474]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  136.923616][ T6474]  ? __pfx_ksys_write+0x10/0x10
[  136.923644][ T6474]  ? do_syscall_64+0xbe/0xf80
[  136.923667][ T6474]  do_syscall_64+0xfa/0xf80
[  136.923685][ T6474]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.923703][ T6474]  ? clear_bhb_loop+0x60/0xb0
[  136.923724][ T6474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.923742][ T6474] RIP: 0033:0x7f22d05af749
[  136.923758][ T6474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.923772][ T6474] RSP: 002b:00007f22ce80e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  136.923792][ T6474] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05af749
[  136.923805][ T6474] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000b
[  136.923816][ T6474] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  136.923827][ T6474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  136.923837][ T6474] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  136.923868][ T6474]  </TASK>
[  137.241678][ T6476] capability: warning: `syz.4.183' uses 32-bit capabilities (legacy support in use)
[  138.365373][ T6053] usb 3-1: USB disconnect, device number 8
[  138.656295][ T5854] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  138.806233][ T5854] usb 1-1: Using ep0 maxpacket: 16
[  138.808720][ T5854] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[  138.808750][ T5854] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.808771][ T5854] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  138.808812][ T5854] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  138.808834][ T5854] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.515854][ T5854] usb 1-1: config 0 descriptor??
[  139.696239][ T5862] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  139.858234][ T5862] usb 4-1: Using ep0 maxpacket: 16
[  139.865848][ T5862] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  139.865874][ T5862] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  139.889446][ T5862] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  139.889476][ T5862] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.889495][ T5862] usb 4-1: Product: syz
[  139.889508][ T5862] usb 4-1: Manufacturer: syz
[  139.889521][ T5862] usb 4-1: SerialNumber: syz
[  140.129057][ T6488] binder: 6483:6488 ioctl c0306201 200000000640 returned -22
[  140.172613][ T5854] usbhid 1-1:0.0: can't add hid device: -71
[  140.172743][ T5854] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  140.249951][ T5854] usb 1-1: USB disconnect, device number 8
[  140.300964][ T6505] tmpfs: Unknown parameter 'gspquota_block_har'
[  141.256267][ T5885] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  141.429724][ T5885] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  141.429746][ T5885] usb 3-1: config 0 has no interface number 0
[  141.450637][ T5885] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  141.450653][ T5885] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.450663][ T5885] usb 3-1: Product: syz
[  141.450671][ T5885] usb 3-1: Manufacturer: syz
[  141.450678][ T5885] usb 3-1: SerialNumber: syz
[  141.510486][ T5885] usb 3-1: config 0 descriptor??
[  141.791388][ T5885] usb 3-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  141.864285][ T5885] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  141.865567][ T5885] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  141.865667][ T5885] usb 3-1: media controller created
[  141.920720][ T5885] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  142.240605][ T5885] usb 3-1: USB disconnect, device number 9
[  142.870288][ T6509] syz.2.190 (6509) used greatest stack depth: 16384 bytes left
[  142.969358][ T5854] usb 4-1: USB disconnect, device number 4
[  143.284569][ T6580] comedi comedi1: adq12b: I/O port conflict (0xffffffffffffffff,16)
[  144.870178][   T37] audit: type=1326 audit(1765949102.121:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0c58f749 code=0x7ffc0000
[  144.870236][   T37] audit: type=1326 audit(1765949102.121:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=145 compat=0 ip=0x7fdd0c58f749 code=0x7ffc0000
[  144.870277][   T37] audit: type=1326 audit(1765949102.121:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0c58f749 code=0x7ffc0000
[  144.870317][   T37] audit: type=1326 audit(1765949102.121:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0c58f749 code=0x7ffc0000
[  144.870357][   T37] audit: type=1326 audit(1765949102.121:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdd0c58f749 code=0x7ffc0000
[  144.870396][   T37] audit: type=1326 audit(1765949102.121:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0c58f749 code=0x7ffc0000
[  144.870435][   T37] audit: type=1326 audit(1765949102.121:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0c58f749 code=0x7ffc0000
[  144.870475][   T37] audit: type=1326 audit(1765949102.121:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdd0c591667 code=0x7ffc0000
[  144.870515][   T37] audit: type=1326 audit(1765949102.121:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fdd0c5915dc code=0x7ffc0000
[  144.870554][   T37] audit: type=1326 audit(1765949102.131:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6618 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fdd0c591514 code=0x7ffc0000
[  145.776758][ T6624] FAULT_INJECTION: forcing a failure.
[  145.776758][ T6624] name failslab, interval 1, probability 0, space 0, times 0
[  145.776826][ T6624] CPU: 1 UID: 0 PID: 6624 Comm: syz.2.234 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  145.776851][ T6624] Tainted: [L]=SOFTLOCKUP
[  145.776858][ T6624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  145.776868][ T6624] Call Trace:
[  145.776875][ T6624]  <TASK>
[  145.776884][ T6624]  dump_stack_lvl+0x189/0x250
[  145.776911][ T6624]  ? __pfx____ratelimit+0x10/0x10
[  145.776937][ T6624]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.776960][ T6624]  ? __pfx__printk+0x10/0x10
[  145.776984][ T6624]  ? __pfx___might_resched+0x10/0x10
[  145.777008][ T6624]  should_fail_ex+0x46c/0x600
[  145.777037][ T6624]  should_failslab+0xa8/0x100
[  145.777056][ T6624]  __kvmalloc_node_noprof+0x181/0x940
[  145.777081][ T6624]  ? udmabuf_create+0x351/0xf90
[  145.777112][ T6624]  udmabuf_create+0x351/0xf90
[  145.777148][ T6624]  ? do_vfs_ioctl+0xbeb/0x1440
[  145.777180][ T6624]  ? __pfx_udmabuf_create+0x10/0x10
[  145.777223][ T6624]  udmabuf_ioctl+0x1d4/0x2d0
[  145.777246][ T6624]  ? lockdep_hardirqs_on+0x98/0x140
[  145.777264][ T6624]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  145.777285][ T6624]  ? irqentry_exit+0x5dd/0x660
[  145.777300][ T6624]  ? rcu_is_watching+0x15/0xb0
[  145.777337][ T6624]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  145.777360][ T6624]  __se_sys_ioctl+0xff/0x170
[  145.777385][ T6624]  do_syscall_64+0xfa/0xf80
[  145.777402][ T6624]  ? rcu_is_watching+0x15/0xb0
[  145.777418][ T6624]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.777435][ T6624]  ? clear_bhb_loop+0x60/0xb0
[  145.777456][ T6624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.777473][ T6624] RIP: 0033:0x7f81f2caf749
[  145.777489][ T6624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.777503][ T6624] RSP: 002b:00007f81f0ef5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  145.777522][ T6624] RAX: ffffffffffffffda RBX: 00007f81f2f06090 RCX: 00007f81f2caf749
[  145.777535][ T6624] RDX: 0000200000000000 RSI: 0000000040187542 RDI: 0000000000000005
[  145.777547][ T6624] RBP: 00007f81f0ef5090 R08: 0000000000000000 R09: 0000000000000000
[  145.777558][ T6624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.777568][ T6624] R13: 00007f81f2f06128 R14: 00007f81f2f06090 R15: 00007ffdb6090da8
[  145.777599][ T6624]  </TASK>
[  146.215323][ T6628] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  146.532918][ T3515] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  147.716279][ T6038] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[  147.869052][ T6038] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  147.869077][ T6038] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  147.869127][ T6038] usb 1-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  147.869150][ T6038] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.551004][ T6038] usb 1-1: config 0 descriptor??
[  148.573926][ T6038] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  148.586873][ T6038] dvb-usb: bulk message failed: -22 (3/0)
[  148.640548][ T6038] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  148.657887][ T6038] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  148.657954][ T6038] usb 1-1: media controller created
[  148.714294][ T6038] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  148.788910][ T6038] dvb-usb: bulk message failed: -22 (6/0)
[  148.789045][ T6038] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  148.853853][ T6038] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input7
[  148.867994][ T6647] dvb-usb: bulk message failed: -22 (2/0)
[  148.908612][ T6038] dvb-usb: schedule remote query interval to 150 msecs.
[  148.908636][ T6038] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  148.944793][   T31] usb 1-1: USB disconnect, device number 9
[  149.122715][ T6681] FAULT_INJECTION: forcing a failure.
[  149.122715][ T6681] name failslab, interval 1, probability 0, space 0, times 0
[  149.122751][ T6681] CPU: 1 UID: 0 PID: 6681 Comm: syz.3.254 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  149.122775][ T6681] Tainted: [L]=SOFTLOCKUP
[  149.122781][ T6681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  149.122792][ T6681] Call Trace:
[  149.122799][ T6681]  <TASK>
[  149.122807][ T6681]  dump_stack_lvl+0x189/0x250
[  149.122833][ T6681]  ? __pfx____ratelimit+0x10/0x10
[  149.122860][ T6681]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.122882][ T6681]  ? __pfx__printk+0x10/0x10
[  149.122906][ T6681]  ? __pfx___might_resched+0x10/0x10
[  149.122925][ T6681]  ? fs_reclaim_acquire+0x7d/0x100
[  149.122946][ T6681]  should_fail_ex+0x46c/0x600
[  149.122974][ T6681]  should_failslab+0xa8/0x100
[  149.122993][ T6681]  __kmalloc_noprof+0xe0/0x7e0
[  149.123016][ T6681]  ? rcu_is_watching+0x15/0xb0
[  149.123033][ T6681]  ? security_sk_alloc+0x52/0x390
[  149.123053][ T6681]  ? sk_prot_alloc+0x57/0x220
[  149.123074][ T6681]  security_sk_alloc+0x52/0x390
[  149.123095][ T6681]  sk_prot_alloc+0x101/0x220
[  149.123117][ T6681]  sk_alloc+0x3a/0x390
[  149.123140][ T6681]  unix_create1+0xb0/0x7d0
[  149.123167][ T6681]  unix_create+0x16b/0x210
[  149.123186][ T6681]  __sock_create+0x4b3/0x9d0
[  149.123210][ T6681]  __sys_socketpair+0x1c5/0x560
[  149.123234][ T6681]  __x64_sys_socketpair+0x9b/0xb0
[  149.123254][ T6681]  do_syscall_64+0xfa/0xf80
[  149.123272][ T6681]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.123289][ T6681]  ? clear_bhb_loop+0x60/0xb0
[  149.123310][ T6681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.123326][ T6681] RIP: 0033:0x7fdd0c58f749
[  149.123342][ T6681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.123356][ T6681] RSP: 002b:00007fdd0a7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  149.123375][ T6681] RAX: ffffffffffffffda RBX: 00007fdd0c7e5fa0 RCX: 00007fdd0c58f749
[  149.123388][ T6681] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000001
[  149.123397][ T6681] RBP: 00007fdd0a7f6090 R08: 0000000000000000 R09: 0000000000000000
[  149.123407][ T6681] R10: 00002000000029c0 R11: 0000000000000246 R12: 0000000000000001
[  149.123417][ T6681] R13: 00007fdd0c7e6038 R14: 00007fdd0c7e5fa0 R15: 00007ffc6d03c038
[  149.123447][ T6681]  </TASK>
[  149.272914][   T31] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  149.353540][ T6687] capability: warning: `syz.4.257' uses deprecated v2 capabilities in a way that may be insecure
[  150.930347][ T6708] netlink: 16 bytes leftover after parsing attributes in process `syz.3.263'.
[  153.596317][ T5894] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  153.680115][   T37] kauditd_printk_skb: 6 callbacks suppressed
[  153.680132][   T37] audit: type=1326 audit(1765949110.961:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6739 comm="syz.4.273" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22d05af749 code=0x0
[  153.746278][ T5894] usb 4-1: Using ep0 maxpacket: 16
[  153.749183][ T5894] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  153.749221][ T5894] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  153.749243][ T5894] usb 4-1: config 0 interface 0 has no altsetting 0
[  153.749275][ T5894] usb 4-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  153.749297][ T5894] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.817051][ T5894] usb 4-1: config 0 descriptor??
[  154.166720][   T31] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  154.273783][ T5894] cougar 0003:060B:500A.0002: unexpected long global item
[  154.274690][ T5894] cougar 0003:060B:500A.0002: parse failed
[  154.274796][ T5894] cougar 0003:060B:500A.0002: probe with driver cougar failed with error -22
[  154.338106][   T31] usb 2-1: Using ep0 maxpacket: 16
[  154.344732][   T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[  154.344764][   T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.344786][   T31] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  154.344827][   T31] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  154.344850][   T31] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.357811][   T31] usb 2-1: config 0 descriptor??
[  154.452974][ T6729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  154.453488][ T6729] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  154.475662][ T6729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  154.485629][ T6729] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  154.510486][  T806] usb 4-1: USB disconnect, device number 5
[  154.681531][ T6749] Illegal XDP return value 645683904 on prog  (id 28) dev N/A, expect packet loss!
[  154.718140][ T6749] tmpfs: User quota inode hardlimit too large.
[  154.817687][ T6754] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  154.890393][   T31] usbhid 2-1:0.0: can't add hid device: -71
[  154.890469][   T31] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  155.797063][   T31] usb 2-1: USB disconnect, device number 6
[  161.496329][ T5894] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  161.660724][ T5894] usb 3-1: Using ep0 maxpacket: 16
[  161.663244][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[  161.663275][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  161.663297][ T5894] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  161.663337][ T5894] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  161.663359][ T5894] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.730336][ T5894] usb 3-1: config 0 descriptor??
[  161.786286][ T6286] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  161.876384][   T54] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  161.951686][ T6286] usb 2-1: config 6 has an invalid interface number: 190 but max is 0
[  161.951714][ T6286] usb 2-1: config 6 has no interface number 0
[  161.951815][ T6286] usb 2-1: config 6 interface 190 altsetting 252 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  161.951844][ T6286] usb 2-1: config 6 interface 190 has no altsetting 0
[  161.990206][ T6286] usb 2-1: New USB device found, idVendor=0d8e, idProduct=7803, bcdDevice=a4.1e
[  161.990291][ T6286] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.990312][ T6286] usb 2-1: Product: syz
[  161.990325][ T6286] usb 2-1: Manufacturer: syz
[  161.990346][ T6286] usb 2-1: SerialNumber: syz
[  162.033855][   T54] usb 4-1: config index 0 descriptor too short (expected 4495, got 71)
[  162.033882][   T54] usb 4-1: config 0 has an invalid interface number: 105 but max is 0
[  162.033902][   T54] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  162.033920][   T54] usb 4-1: config 0 has no interface number 0
[  162.046877][   T54] usb 4-1: New USB device found, idVendor=046c, idProduct=14e0, bcdDevice= 0.01
[  162.046906][   T54] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.046925][   T54] usb 4-1: Product: syz
[  162.046939][   T54] usb 4-1: Manufacturer: syz
[  162.046952][   T54] usb 4-1: SerialNumber: syz
[  162.110147][   T54] usb 4-1: config 0 descriptor??
[  162.257238][ T5894] usbhid 3-1:0.0: can't add hid device: -71
[  162.257414][ T5894] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  162.290805][ T5894] usb 3-1: USB disconnect, device number 10
[  162.624846][ T6821] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  162.629490][ T6821] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  162.789559][ T6834] netlink: 28 bytes leftover after parsing attributes in process `syz.0.306'.
[  162.789652][ T6834] netlink: 28 bytes leftover after parsing attributes in process `syz.0.306'.
[  163.376636][   T54] uvcvideo 4-1:0.105: Found UVC 0.00 device syz (046c:14e0)
[  163.376680][   T54] uvcvideo 4-1:0.105: No valid video chain found.
[  163.399332][   T54] usb 4-1: USB disconnect, device number 6
[  163.796860][ T6286] usb 2-1: Could not find all expected endpoints
[  163.829538][ T6286] usb 2-1: USB disconnect, device number 7
[  164.131866][ T6851] FAULT_INJECTION: forcing a failure.
[  164.131866][ T6851] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.131902][ T6851] CPU: 0 UID: 0 PID: 6851 Comm: syz.3.311 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  164.131926][ T6851] Tainted: [L]=SOFTLOCKUP
[  164.131933][ T6851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  164.131943][ T6851] Call Trace:
[  164.131950][ T6851]  <TASK>
[  164.131958][ T6851]  dump_stack_lvl+0x189/0x250
[  164.131984][ T6851]  ? __pfx____ratelimit+0x10/0x10
[  164.132010][ T6851]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.132032][ T6851]  ? __pfx__printk+0x10/0x10
[  164.132051][ T6851]  ? __might_fault+0xb0/0x130
[  164.132090][ T6851]  should_fail_ex+0x46c/0x600
[  164.132124][ T6851]  _copy_from_user+0x2d/0xb0
[  164.132143][ T6851]  __se_sys_mount+0x18b/0x410
[  164.132169][ T6851]  ? __pfx___se_sys_mount+0x10/0x10
[  164.132192][ T6851]  ? do_syscall_64+0xbe/0xf80
[  164.132208][ T6851]  ? __x64_sys_mount+0x20/0xc0
[  164.132228][ T6851]  do_syscall_64+0xfa/0xf80
[  164.132246][ T6851]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.132264][ T6851]  ? clear_bhb_loop+0x60/0xb0
[  164.132286][ T6851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.132303][ T6851] RIP: 0033:0x7fdd0c58f749
[  164.132318][ T6851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.132332][ T6851] RSP: 002b:00007fdd0a7f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  164.132351][ T6851] RAX: ffffffffffffffda RBX: 00007fdd0c7e5fa0 RCX: 00007fdd0c58f749
[  164.132364][ T6851] RDX: 0000200000000180 RSI: 0000200000000080 RDI: 0000000000000000
[  164.132376][ T6851] RBP: 00007fdd0a7f6090 R08: 00002000000002c0 R09: 0000000000000000
[  164.132388][ T6851] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001
[  164.132399][ T6851] R13: 00007fdd0c7e6038 R14: 00007fdd0c7e5fa0 R15: 00007ffc6d03c038
[  164.132431][ T6851]  </TASK>
[  164.169424][ T6851] tmpfs: Bad value for 'nr_blocks'
[  164.349283][ T6286] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  164.738976][ T6286] usb 2-1: Using ep0 maxpacket: 16
[  164.810787][ T6286] usb 2-1: config 12 has an invalid interface number: 33 but max is 1
[  164.810816][ T6286] usb 2-1: config 12 has no interface number 1
[  164.810881][ T6286] usb 2-1: config 12 interface 33 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  164.810918][ T6286] usb 2-1: config 12 interface 0 altsetting 8 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  164.810942][ T6286] usb 2-1: config 12 interface 33 has no altsetting 0
[  164.810958][ T6286] usb 2-1: config 12 interface 0 has no altsetting 0
[  164.813514][ T6286] usb 2-1: New USB device found, idVendor=04ca, idProduct=300b, bcdDevice=b1.4c
[  164.813539][ T6286] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.813558][ T6286] usb 2-1: Product: syz
[  164.813572][ T6286] usb 2-1: Manufacturer: ᱑֮礡硚ᗫ࿡�⃸塛⑼왳�퀭窹훓ꮤ셞
[  164.813588][ T6286] usb 2-1: SerialNumber: syz
[  165.439903][ T6286] usb 2-1: USB disconnect, device number 8
[  166.020059][ T6880] FAULT_INJECTION: forcing a failure.
[  166.020059][ T6880] name failslab, interval 1, probability 0, space 0, times 0
[  166.020093][ T6880] CPU: 1 UID: 0 PID: 6880 Comm: syz.2.321 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  166.020117][ T6880] Tainted: [L]=SOFTLOCKUP
[  166.020123][ T6880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  166.020133][ T6880] Call Trace:
[  166.020140][ T6880]  <TASK>
[  166.020147][ T6880]  dump_stack_lvl+0x189/0x250
[  166.020174][ T6880]  ? __pfx____ratelimit+0x10/0x10
[  166.020199][ T6880]  ? __pfx_dump_stack_lvl+0x10/0x10
[  166.020219][ T6880]  ? __pfx__printk+0x10/0x10
[  166.020242][ T6880]  ? __pfx___might_resched+0x10/0x10
[  166.020259][ T6880]  ? fs_reclaim_acquire+0x7d/0x100
[  166.020279][ T6880]  should_fail_ex+0x46c/0x600
[  166.020308][ T6880]  should_failslab+0xa8/0x100
[  166.020327][ T6880]  __kvmalloc_node_noprof+0x181/0x940
[  166.020352][ T6880]  ? seq_read_iter+0x203/0xe20
[  166.020373][ T6880]  ? mutex_lock_nested+0x154/0x1d0
[  166.020394][ T6880]  ? seq_read_iter+0xb8/0xe20
[  166.020419][ T6880]  seq_read_iter+0x203/0xe20
[  166.020441][ T6880]  ? _parse_integer_limit+0x1ae/0x1f0
[  166.020471][ T6880]  ? __asan_memset+0x22/0x50
[  166.020500][ T6880]  seq_read+0x36c/0x480
[  166.020530][ T6880]  ? __pfx_seq_read+0x10/0x10
[  166.020568][ T6880]  ? __pfx_seq_read+0x10/0x10
[  166.020587][ T6880]  proc_reg_read+0x1f6/0x2f0
[  166.020603][ T6880]  ? __pfx_proc_reg_read+0x10/0x10
[  166.020620][ T6880]  vfs_read+0x206/0xa30
[  166.020650][ T6880]  ? __pfx_vfs_read+0x10/0x10
[  166.020668][ T6880]  ? try_to_take_rt_mutex+0x7fd/0xac0
[  166.020699][ T6880]  ? mutex_lock_nested+0x154/0x1d0
[  166.020718][ T6880]  ? fdget_pos+0x253/0x320
[  166.020745][ T6880]  ksys_read+0x14b/0x260
[  166.020777][ T6880]  ? __pfx_ksys_read+0x10/0x10
[  166.020803][ T6880]  ? do_syscall_64+0xbe/0xf80
[  166.020825][ T6880]  do_syscall_64+0xfa/0xf80
[  166.020842][ T6880]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.020860][ T6880]  ? clear_bhb_loop+0x60/0xb0
[  166.020881][ T6880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.020898][ T6880] RIP: 0033:0x7f81f2caf749
[  166.020913][ T6880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.020926][ T6880] RSP: 002b:00007f81f0ef5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  166.020944][ T6880] RAX: ffffffffffffffda RBX: 00007f81f2f06090 RCX: 00007f81f2caf749
[  166.020957][ T6880] RDX: 0000000000002020 RSI: 0000200000000580 RDI: 0000000000000008
[  166.020968][ T6880] RBP: 00007f81f0ef5090 R08: 0000000000000000 R09: 0000000000000000
[  166.020979][ T6880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.020988][ T6880] R13: 00007f81f2f06128 R14: 00007f81f2f06090 R15: 00007ffdb6090da8
[  166.021019][ T6880]  </TASK>
[  166.167636][ T6886] FAULT_INJECTION: forcing a failure.
[  166.167636][ T6886] name failslab, interval 1, probability 0, space 0, times 0
[  166.167669][ T6886] CPU: 1 UID: 0 PID: 6886 Comm: syz.1.325 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  166.167693][ T6886] Tainted: [L]=SOFTLOCKUP
[  166.167699][ T6886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  166.167709][ T6886] Call Trace:
[  166.167716][ T6886]  <TASK>
[  166.167723][ T6886]  dump_stack_lvl+0x189/0x250
[  166.167758][ T6886]  ? __pfx____ratelimit+0x10/0x10
[  166.167782][ T6886]  ? __pfx_dump_stack_lvl+0x10/0x10
[  166.167803][ T6886]  ? __pfx__printk+0x10/0x10
[  166.167826][ T6886]  ? __pfx___might_resched+0x10/0x10
[  166.167844][ T6886]  ? fs_reclaim_acquire+0x7d/0x100
[  166.167865][ T6886]  should_fail_ex+0x46c/0x600
[  166.167891][ T6886]  ? alloc_empty_file+0x55/0x1d0
[  166.167909][ T6886]  should_failslab+0xa8/0x100
[  166.167926][ T6886]  ? alloc_empty_file+0x55/0x1d0
[  166.167942][ T6886]  kmem_cache_alloc_noprof+0x84/0x6c0
[  166.167972][ T6886]  alloc_empty_file+0x55/0x1d0
[  166.167991][ T6886]  path_openat+0x10e/0x3df0
[  166.168022][ T6886]  ? __lock_acquire+0x6b6/0x2cf0
[  166.168053][ T6886]  ? __pfx_stack_trace_save+0x10/0x10
[  166.168080][ T6886]  ? __lock_acquire+0x6b6/0x2cf0
[  166.168102][ T6886]  ? __pfx_path_openat+0x10/0x10
[  166.168124][ T6886]  ? do_raw_spin_lock+0x121/0x290
[  166.168152][ T6886]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  166.168170][ T6886]  ? lockdep_hardirqs_on+0x98/0x140
[  166.168187][ T6886]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  166.168211][ T6886]  do_filp_open+0x1fa/0x410
[  166.168234][ T6886]  ? __pfx_do_filp_open+0x10/0x10
[  166.168253][ T6886]  ? rt_mutex_slowunlock+0x493/0x8a0
[  166.168297][ T6886]  ? alloc_fd+0x64f/0x6c0
[  166.168325][ T6886]  do_sys_openat2+0x121/0x200
[  166.168346][ T6886]  ? __pfx_do_sys_openat2+0x10/0x10
[  166.168368][ T6886]  ? exc_page_fault+0x82/0x100
[  166.168393][ T6886]  __x64_sys_openat+0x138/0x170
[  166.168417][ T6886]  do_syscall_64+0xfa/0xf80
[  166.168434][ T6886]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.168450][ T6886]  ? clear_bhb_loop+0x60/0xb0
[  166.168471][ T6886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.168487][ T6886] RIP: 0033:0x7f85b0a2df90
[  166.168503][ T6886] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44
[  166.168516][ T6886] RSP: 002b:00007f85aec8bef0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  166.168534][ T6886] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f85b0a2df90
[  166.168546][ T6886] RDX: 0000000000000002 RSI: 00007f85b0ab3c6c RDI: 00000000ffffff9c
[  166.168557][ T6886] RBP: 00007f85b0ab3c6c R08: 0000000000000000 R09: 0000000000000000
[  166.168567][ T6886] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  166.168577][ T6886] R13: 0000000000000036 R14: 0000200000002a40 R15: 00007ffda5b71228
[  166.168606][ T6886]  </TASK>
[  166.456356][ T6897] FAULT_INJECTION: forcing a failure.
[  166.456356][ T6897] name failslab, interval 1, probability 0, space 0, times 0
[  166.456388][ T6897] CPU: 1 UID: 0 PID: 6897 Comm: syz.4.329 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  166.456412][ T6897] Tainted: [L]=SOFTLOCKUP
[  166.456418][ T6897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  166.456428][ T6897] Call Trace:
[  166.456435][ T6897]  <TASK>
[  166.456442][ T6897]  dump_stack_lvl+0x189/0x250
[  166.456467][ T6897]  ? __pfx____ratelimit+0x10/0x10
[  166.456492][ T6897]  ? __pfx_dump_stack_lvl+0x10/0x10
[  166.456513][ T6897]  ? __pfx__printk+0x10/0x10
[  166.456536][ T6897]  ? __pfx___might_resched+0x10/0x10
[  166.456558][ T6897]  should_fail_ex+0x46c/0x600
[  166.456586][ T6897]  should_failslab+0xa8/0x100
[  166.456613][ T6897]  __kmalloc_node_track_caller_noprof+0xe2/0x810
[  166.456640][ T6897]  ? kasprintf+0xd4/0x120
[  166.456661][ T6897]  kvasprintf+0xdc/0x190
[  166.456679][ T6897]  ? __pfx_kvasprintf+0x10/0x10
[  166.456697][ T6897]  ? unwind_get_return_address+0x4d/0x90
[  166.456719][ T6897]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  166.456748][ T6897]  kasprintf+0xd4/0x120
[  166.456771][ T6897]  ? __pfx_kasprintf+0x10/0x10
[  166.456789][ T6897]  ? stack_depot_save_flags+0x40/0x850
[  166.456809][ T6897]  ? lockdep_hardirqs_on+0x98/0x140
[  166.456834][ T6897]  logfc+0x142/0x4f0
[  166.456856][ T6897]  ? __lock_acquire+0x6b6/0x2cf0
[  166.456881][ T6897]  ? __pfx_logfc+0x10/0x10
[  166.456897][ T6897]  ? _parse_integer_limit+0x1ae/0x1f0
[  166.456923][ T6897]  ? kstrtoull+0x10b/0x1d0
[  166.456952][ T6897]  fs_param_is_u32+0x1aa/0x230
[  166.456976][ T6897]  __fs_parse+0x3bc/0x730
[  166.457007][ T6897]  affs_parse_param+0xbb/0x690
[  166.457028][ T6897]  ? __pfx_affs_parse_param+0x10/0x10
[  166.457054][ T6897]  ? static_key_count+0x41/0x70
[  166.457073][ T6897]  vfs_parse_fs_param+0x1a9/0x420
[  166.457096][ T6897]  __se_sys_fsconfig+0x794/0x8e0
[  166.457124][ T6897]  ? __pfx___se_sys_fsconfig+0x10/0x10
[  166.457142][ T6897]  ? ksys_write+0x230/0x260
[  166.457165][ T6897]  ? __pfx_ksys_write+0x10/0x10
[  166.457187][ T6897]  ? do_syscall_64+0xbe/0xf80
[  166.457202][ T6897]  ? __x64_sys_fsconfig+0x20/0xc0
[  166.457227][ T6897]  do_syscall_64+0xfa/0xf80
[  166.457245][ T6897]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.457261][ T6897]  ? clear_bhb_loop+0x60/0xb0
[  166.457284][ T6897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.457301][ T6897] RIP: 0033:0x7f22d05af749
[  166.457317][ T6897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.457331][ T6897] RSP: 002b:00007f22ce80e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  166.457348][ T6897] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05af749
[  166.457359][ T6897] RDX: 0000200000000100 RSI: 0000000000000001 RDI: 0000000000000004
[  166.457368][ T6897] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  166.457377][ T6897] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[  166.457388][ T6897] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  166.457419][ T6897]  </TASK>
[  169.294264][ T6921] FAULT_INJECTION: forcing a failure.
[  169.294264][ T6921] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  169.294300][ T6921] CPU: 0 UID: 0 PID: 6921 Comm: syz.4.338 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  169.294338][ T6921] Tainted: [L]=SOFTLOCKUP
[  169.294344][ T6921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  169.294353][ T6921] Call Trace:
[  169.294359][ T6921]  <TASK>
[  169.294366][ T6921]  dump_stack_lvl+0x189/0x250
[  169.294387][ T6921]  ? __pfx____ratelimit+0x10/0x10
[  169.294408][ T6921]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.294428][ T6921]  ? __pfx__printk+0x10/0x10
[  169.294445][ T6921]  ? __might_fault+0xb0/0x130
[  169.294475][ T6921]  should_fail_ex+0x46c/0x600
[  169.294502][ T6921]  _copy_from_iter+0x1cd/0x1630
[  169.294531][ T6921]  ? __build_skb_around+0x22d/0x3c0
[  169.294556][ T6921]  ? __pfx__copy_from_iter+0x10/0x10
[  169.294577][ T6921]  ? __alloc_skb+0x2f1/0x430
[  169.294605][ T6921]  ? __pfx___alloc_skb+0x10/0x10
[  169.294624][ T6921]  ? smack_socket_getpeersec_dgram+0x266/0x430
[  169.294652][ T6921]  ? netlink_sendmsg+0x642/0xb30
[  169.294672][ T6921]  ? skb_put+0x11b/0x210
[  169.294696][ T6921]  netlink_sendmsg+0x6b2/0xb30
[  169.294727][ T6921]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.294758][ T6921]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  169.294781][ T6921]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.294804][ T6921]  __sock_sendmsg+0x21c/0x270
[  169.294832][ T6921]  ____sys_sendmsg+0x508/0x810
[  169.294859][ T6921]  ? __pfx_____sys_sendmsg+0x10/0x10
[  169.294890][ T6921]  ? import_iovec+0x74/0xa0
[  169.294911][ T6921]  ___sys_sendmsg+0x21f/0x2a0
[  169.294935][ T6921]  ? __pfx____sys_sendmsg+0x10/0x10
[  169.294988][ T6921]  ? __fget_files+0x2a/0x420
[  169.295005][ T6921]  ? __fget_files+0x3a6/0x420
[  169.295032][ T6921]  __x64_sys_sendmsg+0x1a1/0x260
[  169.295056][ T6921]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  169.295087][ T6921]  ? __pfx_ksys_write+0x10/0x10
[  169.295115][ T6921]  ? do_syscall_64+0xbe/0xf80
[  169.295137][ T6921]  do_syscall_64+0xfa/0xf80
[  169.295155][ T6921]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.295172][ T6921]  ? clear_bhb_loop+0x60/0xb0
[  169.295194][ T6921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.295211][ T6921] RIP: 0033:0x7f22d05af749
[  169.295227][ T6921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.295241][ T6921] RSP: 002b:00007f22ce7ed038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  169.295260][ T6921] RAX: ffffffffffffffda RBX: 00007f22d0806090 RCX: 00007f22d05af749
[  169.295273][ T6921] RDX: 0000000004000000 RSI: 00002000000019c0 RDI: 0000000000000004
[  169.295285][ T6921] RBP: 00007f22ce7ed090 R08: 0000000000000000 R09: 0000000000000000
[  169.295296][ T6921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.295307][ T6921] R13: 00007f22d0806128 R14: 00007f22d0806090 R15: 00007fffce81cdf8
[  169.295337][ T6921]  </TASK>
[  169.844152][ T6941] syz.1.342 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  170.106302][  T806] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  170.278718][  T806] usb 2-1: Using ep0 maxpacket: 32
[  170.294143][  T806] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  170.294169][  T806] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  170.294188][  T806] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  170.294207][  T806] usb 2-1: config 1 has no interface number 0
[  170.295621][  T806] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  170.295650][  T806] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  170.295671][  T806] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  170.295713][  T806] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  170.295735][  T806] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.341515][  T806] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  170.534265][  T806] snd_usb_pod 2-1:1.1: set_interface failed
[  170.534586][  T806] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  170.534799][  T806] snd_usb_pod 2-1:1.1: probe with driver snd_usb_pod failed with error -71
[  170.587673][  T806] usb 2-1: USB disconnect, device number 9
[  170.761333][ T6038] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  170.916344][ T6038] usb 1-1: Using ep0 maxpacket: 16
[  170.935650][ T6038] usb 1-1: config 0 has an invalid interface number: 8 but max is 0
[  170.935677][ T6038] usb 1-1: config 0 has no interface number 0
[  170.935724][ T6038] usb 1-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0x9F, changing to 0x8F
[  170.935748][ T6038] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  170.983635][ T6038] usb 1-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  170.984742][ T6038] usb 1-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  170.984762][ T6038] usb 1-1: Product: syz
[  170.984775][ T6038] usb 1-1: SerialNumber: syz
[  171.021999][ T6038] usb 1-1: config 0 descriptor??
[  171.047048][ T6038] cm109 1-1:0.8: invalid payload size 33, expected 4
[  171.052207][ T6038] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.8/input/input9
[  171.230715][    C0] cm109 1-1:0.8: cm109_urb_irq_callback: urb status -71
[  171.523785][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  171.538700][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  171.542108][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  171.544416][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  171.545724][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  171.546355][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  171.547048][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  171.549224][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  171.550591][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  171.551031][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  172.193764][   T54] usb 1-1: USB disconnect, device number 10
[  172.193841][    C0] cm109 1-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  172.374311][   T54] cm109 1-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  172.489752][ T6957] FAULT_INJECTION: forcing a failure.
[  172.489752][ T6957] name failslab, interval 1, probability 0, space 0, times 0
[  172.489786][ T6957] CPU: 0 UID: 0 PID: 6957 Comm: syz.2.349 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  172.489809][ T6957] Tainted: [L]=SOFTLOCKUP
[  172.489815][ T6957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  172.489825][ T6957] Call Trace:
[  172.489832][ T6957]  <TASK>
[  172.489840][ T6957]  dump_stack_lvl+0x189/0x250
[  172.489866][ T6957]  ? __pfx____ratelimit+0x10/0x10
[  172.489891][ T6957]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.489912][ T6957]  ? __pfx__printk+0x10/0x10
[  172.489927][ T6957]  ? __kasan_slab_alloc+0x6c/0x80
[  172.489955][ T6957]  ? __lock_acquire+0x6b6/0x2cf0
[  172.489986][ T6957]  should_fail_ex+0x46c/0x600
[  172.490011][ T6957]  ? skb_clone+0x212/0x3a0
[  172.490032][ T6957]  should_failslab+0xa8/0x100
[  172.490049][ T6957]  ? skb_clone+0x212/0x3a0
[  172.490068][ T6957]  kmem_cache_alloc_noprof+0x84/0x6c0
[  172.490089][ T6957]  ? __netlink_lookup+0xbd/0x8a0
[  172.490117][ T6957]  skb_clone+0x212/0x3a0
[  172.490141][ T6957]  __netlink_deliver_tap+0x404/0x850
[  172.490173][ T6957]  ? netlink_deliver_tap+0x2e/0x1b0
[  172.490196][ T6957]  netlink_deliver_tap+0x19c/0x1b0
[  172.490219][ T6957]  netlink_unicast+0x811/0xa10
[  172.490248][ T6957]  ? __pfx_netlink_unicast+0x10/0x10
[  172.490267][ T6957]  ? smack_socket_getpeersec_dgram+0x266/0x430
[  172.490293][ T6957]  ? netlink_sendmsg+0x642/0xb30
[  172.490312][ T6957]  ? skb_put+0x11b/0x210
[  172.490343][ T6957]  netlink_sendmsg+0x805/0xb30
[  172.490375][ T6957]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.490405][ T6957]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  172.490427][ T6957]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.490450][ T6957]  __sock_sendmsg+0x21c/0x270
[  172.490479][ T6957]  ____sys_sendmsg+0x508/0x810
[  172.490507][ T6957]  ? __pfx_____sys_sendmsg+0x10/0x10
[  172.490538][ T6957]  ? import_iovec+0x74/0xa0
[  172.490559][ T6957]  ___sys_sendmsg+0x21f/0x2a0
[  172.490583][ T6957]  ? __pfx____sys_sendmsg+0x10/0x10
[  172.490642][ T6957]  ? __fget_files+0x2a/0x420
[  172.490660][ T6957]  ? __fget_files+0x3a6/0x420
[  172.490689][ T6957]  __x64_sys_sendmsg+0x1a1/0x260
[  172.490714][ T6957]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  172.490746][ T6957]  ? __pfx_ksys_write+0x10/0x10
[  172.490773][ T6957]  ? do_syscall_64+0xbe/0xf80
[  172.490795][ T6957]  do_syscall_64+0xfa/0xf80
[  172.490813][ T6957]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.490830][ T6957]  ? clear_bhb_loop+0x60/0xb0
[  172.490852][ T6957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.490869][ T6957] RIP: 0033:0x7f81f2caf749
[  172.490885][ T6957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.490898][ T6957] RSP: 002b:00007f81f0f16038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  172.490917][ T6957] RAX: ffffffffffffffda RBX: 00007f81f2f05fa0 RCX: 00007f81f2caf749
[  172.490930][ T6957] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  172.490941][ T6957] RBP: 00007f81f0f16090 R08: 0000000000000000 R09: 0000000000000000
[  172.490952][ T6957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.490962][ T6957] R13: 00007f81f2f06038 R14: 00007f81f2f05fa0 R15: 00007ffdb6090da8
[  172.490994][ T6957]  </TASK>
[  177.554782][ T7024] ICMPv6: Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc.
[  177.562164][ T7024] FAULT_INJECTION: forcing a failure.
[  177.562164][ T7024] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.562198][ T7024] CPU: 1 UID: 0 PID: 7024 Comm: syz.1.370 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  177.562222][ T7024] Tainted: [L]=SOFTLOCKUP
[  177.562228][ T7024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  177.562238][ T7024] Call Trace:
[  177.562245][ T7024]  <TASK>
[  177.562252][ T7024]  dump_stack_lvl+0x189/0x250
[  177.562278][ T7024]  ? __pfx____ratelimit+0x10/0x10
[  177.562303][ T7024]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.562325][ T7024]  ? __pfx__printk+0x10/0x10
[  177.562341][ T7024]  ? __might_fault+0xb0/0x130
[  177.562375][ T7024]  should_fail_ex+0x46c/0x600
[  177.562402][ T7024]  _copy_from_iter+0x1cd/0x1630
[  177.562429][ T7024]  ? __build_skb_around+0x22d/0x3c0
[  177.562461][ T7024]  ? __pfx__copy_from_iter+0x10/0x10
[  177.562481][ T7024]  ? __alloc_skb+0x2f1/0x430
[  177.562502][ T7024]  ? __pfx___alloc_skb+0x10/0x10
[  177.562520][ T7024]  ? smack_socket_getpeersec_dgram+0x266/0x430
[  177.562545][ T7024]  ? netlink_sendmsg+0x642/0xb30
[  177.562566][ T7024]  ? skb_put+0x11b/0x210
[  177.562588][ T7024]  netlink_sendmsg+0x6b2/0xb30
[  177.562618][ T7024]  ? __pfx_netlink_sendmsg+0x10/0x10
[  177.562646][ T7024]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  177.562667][ T7024]  ? __pfx_netlink_sendmsg+0x10/0x10
[  177.562690][ T7024]  __sock_sendmsg+0x21c/0x270
[  177.562718][ T7024]  ____sys_sendmsg+0x508/0x810
[  177.562743][ T7024]  ? __pfx_____sys_sendmsg+0x10/0x10
[  177.562773][ T7024]  ? import_iovec+0x74/0xa0
[  177.562792][ T7024]  ___sys_sendmsg+0x21f/0x2a0
[  177.562815][ T7024]  ? __pfx____sys_sendmsg+0x10/0x10
[  177.562869][ T7024]  ? __fget_files+0x2a/0x420
[  177.562886][ T7024]  ? __fget_files+0x3a6/0x420
[  177.562914][ T7024]  __x64_sys_sendmsg+0x1a1/0x260
[  177.562936][ T7024]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  177.562966][ T7024]  ? __pfx_ksys_write+0x10/0x10
[  177.562992][ T7024]  ? do_syscall_64+0xbe/0xf80
[  177.563013][ T7024]  do_syscall_64+0xfa/0xf80
[  177.563030][ T7024]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.563046][ T7024]  ? clear_bhb_loop+0x60/0xb0
[  177.563067][ T7024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.563083][ T7024] RIP: 0033:0x7f85b0a2f749
[  177.563100][ T7024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.563113][ T7024] RSP: 002b:00007f85aec8e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  177.563131][ T7024] RAX: ffffffffffffffda RBX: 00007f85b0c85fa0 RCX: 00007f85b0a2f749
[  177.563144][ T7024] RDX: 0000000000000000 RSI: 0000200000001540 RDI: 0000000000000003
[  177.563154][ T7024] RBP: 00007f85aec8e090 R08: 0000000000000000 R09: 0000000000000000
[  177.563165][ T7024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.563175][ T7024] R13: 00007f85b0c86038 R14: 00007f85b0c85fa0 R15: 00007ffda5b71228
[  177.563205][ T7024]  </TASK>
[  177.806327][   T54] usb 4-1: new full-speed USB device number 7 using dummy_hcd
[  177.964199][   T54] usb 4-1: config 0 has no interfaces?
[  177.964235][   T54] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  177.964444][   T54] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.986036][   T54] usb 4-1: config 0 descriptor??
[  178.118815][   T31] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  178.195160][ T7021] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  178.195709][ T7021] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  178.226758][ T5894] usb 4-1: USB disconnect, device number 7
[  178.286887][   T31] usb 2-1: Using ep0 maxpacket: 8
[  178.292077][   T31] usb 2-1: unable to get BOS descriptor or descriptor too short
[  178.293289][   T31] usb 2-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  178.293316][   T31] usb 2-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  178.293338][   T31] usb 2-1: config 1 interface 0 has no altsetting 0
[  178.318599][   T31] usb 2-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  178.318627][   T31] usb 2-1: New USB device strings: Mfr=1, Product=231, SerialNumber=3
[  178.318645][   T31] usb 2-1: Product: syz
[  178.318658][   T31] usb 2-1: Manufacturer: syz
[  178.318671][   T31] usb 2-1: SerialNumber: syz
[  178.329528][ T7031] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  178.329715][ T7031] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  178.539371][   T31] usblp0: Disabling reads from problematic bidirectional printer
[  178.563917][   T31] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 10 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[  178.608973][   T31] usb 2-1: USB disconnect, device number 10
[  178.628845][   T31] usblp0: removed
[  178.727998][ T7050] =======================================================
[  178.727998][ T7050] WARNING: The mand mount option has been deprecated and
[  178.727998][ T7050]          and is ignored by this kernel. Remove the mand
[  178.727998][ T7050]          option from the mount to silence this warning.
[  178.727998][ T7050] =======================================================
[  178.814355][ T7053] netlink: 2 bytes leftover after parsing attributes in process `syz.3.383'.
[  178.861596][ T7053] netlink: 4 bytes leftover after parsing attributes in process `syz.3.383'.
[  178.992533][ T2134] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  179.048608][   T54] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  180.127166][   T54] usb 3-1: Using ep0 maxpacket: 8
[  180.130685][   T54] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  180.130711][   T54] usb 3-1: config 0 has no interfaces?
[  180.135860][   T54] usb 3-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  180.135890][   T54] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  180.135910][   T54] usb 3-1: Product: syz
[  180.135924][   T54] usb 3-1: Manufacturer: syz
[  180.135938][   T54] usb 3-1: SerialNumber: syz
[  180.658356][   T54] usb 3-1: config 0 descriptor??
[  182.446326][ T6110] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[  182.520607][ T6286] usb 3-1: USB disconnect, device number 11
[  182.601018][ T6110] usb 2-1: config 0 has no interfaces?
[  182.601056][ T6110] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  182.601079][ T6110] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.630680][ T6110] usb 2-1: config 0 descriptor??
[  183.772174][ T7089] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  183.774600][ T7089] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  183.778005][ T6286] usb 2-1: USB disconnect, device number 11
[  185.136777][   T54] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  185.286671][   T54] usb 3-1: Using ep0 maxpacket: 16
[  185.586688][   T54] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  185.586789][   T54] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  185.586858][   T54] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  185.779848][   T54] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  185.779879][   T54] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.779895][   T54] usb 3-1: Product: syz
[  185.779908][   T54] usb 3-1: Manufacturer: syz
[  185.779920][   T54] usb 3-1: SerialNumber: syz
[  186.882958][   T54] usb 3-1: 0:2 : does not exist
[  187.071642][ T7183] FAULT_INJECTION: forcing a failure.
[  187.071642][ T7183] name failslab, interval 1, probability 0, space 0, times 0
[  187.071678][ T7183] CPU: 1 UID: 0 PID: 7183 Comm: syz.3.423 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  187.071710][ T7183] Tainted: [L]=SOFTLOCKUP
[  187.071716][ T7183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  187.071726][ T7183] Call Trace:
[  187.071734][ T7183]  <TASK>
[  187.071744][ T7183]  dump_stack_lvl+0x189/0x250
[  187.071773][ T7183]  ? __pfx____ratelimit+0x10/0x10
[  187.071796][ T7183]  ? __pfx_dump_stack_lvl+0x10/0x10
[  187.071818][ T7183]  ? __pfx__printk+0x10/0x10
[  187.071834][ T7183]  ? rcu_preempt_deferred_qs_irqrestore+0x89c/0xce0
[  187.071874][ T7183]  should_fail_ex+0x46c/0x600
[  187.071901][ T7183]  ? skb_clone+0x212/0x3a0
[  187.071922][ T7183]  should_failslab+0xa8/0x100
[  187.071942][ T7183]  ? skb_clone+0x212/0x3a0
[  187.071961][ T7183]  kmem_cache_alloc_noprof+0x84/0x6c0
[  187.071994][ T7183]  skb_clone+0x212/0x3a0
[  187.072019][ T7183]  __netlink_deliver_tap+0x404/0x850
[  187.072055][ T7183]  ? netlink_deliver_tap+0x2e/0x1b0
[  187.072079][ T7183]  netlink_deliver_tap+0x19c/0x1b0
[  187.072109][ T7183]  netlink_unicast+0x811/0xa10
[  187.072139][ T7183]  ? __pfx_netlink_unicast+0x10/0x10
[  187.072161][ T7183]  ? netlink_sendmsg+0x642/0xb30
[  187.072181][ T7183]  ? skb_put+0x11b/0x210
[  187.072204][ T7183]  netlink_sendmsg+0x805/0xb30
[  187.072237][ T7183]  ? __pfx_netlink_sendmsg+0x10/0x10
[  187.072268][ T7183]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  187.072291][ T7183]  ? __pfx_netlink_sendmsg+0x10/0x10
[  187.072314][ T7183]  __sock_sendmsg+0x21c/0x270
[  187.072344][ T7183]  ____sys_sendmsg+0x508/0x810
[  187.072372][ T7183]  ? __pfx_____sys_sendmsg+0x10/0x10
[  187.072403][ T7183]  ? import_iovec+0x74/0xa0
[  187.072424][ T7183]  ___sys_sendmsg+0x21f/0x2a0
[  187.072447][ T7183]  ? __pfx____sys_sendmsg+0x10/0x10
[  187.072506][ T7183]  ? __fget_files+0x2a/0x420
[  187.072523][ T7183]  ? __fget_files+0x3a6/0x420
[  187.072552][ T7183]  __x64_sys_sendmsg+0x1a1/0x260
[  187.072576][ T7183]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  187.072607][ T7183]  ? __pfx_ksys_write+0x10/0x10
[  187.072636][ T7183]  ? do_syscall_64+0xbe/0xf80
[  187.072658][ T7183]  do_syscall_64+0xfa/0xf80
[  187.072676][ T7183]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.072705][ T7183]  ? clear_bhb_loop+0x60/0xb0
[  187.072728][ T7183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.072745][ T7183] RIP: 0033:0x7fdd0c58f749
[  187.072762][ T7183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.072778][ T7183] RSP: 002b:00007fdd0a7f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.072798][ T7183] RAX: ffffffffffffffda RBX: 00007fdd0c7e5fa0 RCX: 00007fdd0c58f749
[  187.072811][ T7183] RDX: 0000000000000000 RSI: 0000200000000800 RDI: 0000000000000003
[  187.072822][ T7183] RBP: 00007fdd0a7f6090 R08: 0000000000000000 R09: 0000000000000000
[  187.072833][ T7183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.072844][ T7183] R13: 00007fdd0c7e6038 R14: 00007fdd0c7e5fa0 R15: 00007ffc6d03c038
[  187.072876][ T7183]  </TASK>
[  187.609786][   T54] usb 3-1: 1:0: failed to get current value for ch 0 (-22)
[  187.766771][   T54] usb 3-1: USB disconnect, device number 12
[  187.814234][ T5963] udevd[5963]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  188.178163][ T7207] FAULT_INJECTION: forcing a failure.
[  188.178163][ T7207] name failslab, interval 1, probability 0, space 0, times 0
[  188.178197][ T7207] CPU: 0 UID: 0 PID: 7207 Comm: syz.2.431 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  188.178221][ T7207] Tainted: [L]=SOFTLOCKUP
[  188.178227][ T7207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  188.178238][ T7207] Call Trace:
[  188.178244][ T7207]  <TASK>
[  188.178253][ T7207]  dump_stack_lvl+0x189/0x250
[  188.178279][ T7207]  ? __pfx____ratelimit+0x10/0x10
[  188.178303][ T7207]  ? __pfx_dump_stack_lvl+0x10/0x10
[  188.178325][ T7207]  ? __pfx__printk+0x10/0x10
[  188.178357][ T7207]  ? __pfx___might_resched+0x10/0x10
[  188.178380][ T7207]  should_fail_ex+0x46c/0x600
[  188.178409][ T7207]  should_failslab+0xa8/0x100
[  188.178429][ T7207]  __kmalloc_noprof+0xe0/0x7e0
[  188.178452][ T7207]  ? kfree+0x4d/0x900
[  188.178470][ T7207]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  188.178495][ T7207]  tomoyo_realpath_from_path+0xe3/0x5d0
[  188.178514][ T7207]  ? tomoyo_domain+0xd9/0x130
[  188.178538][ T7207]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  188.178561][ T7207]  tomoyo_path_number_perm+0x1e8/0x5a0
[  188.178587][ T7207]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  188.178614][ T7207]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  188.178633][ T7207]  ? lockdep_hardirqs_on+0x98/0x140
[  188.178675][ T7207]  ? __fget_files+0x2a/0x420
[  188.178698][ T7207]  ? __fget_files+0x3a6/0x420
[  188.178715][ T7207]  ? __fget_files+0x2a/0x420
[  188.178737][ T7207]  security_file_ioctl+0xcb/0x2d0
[  188.178764][ T7207]  __se_sys_ioctl+0x47/0x170
[  188.178789][ T7207]  do_syscall_64+0xfa/0xf80
[  188.178808][ T7207]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.178826][ T7207]  ? clear_bhb_loop+0x60/0xb0
[  188.178846][ T7207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.178863][ T7207] RIP: 0033:0x7f81f2caf749
[  188.178879][ T7207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.178894][ T7207] RSP: 002b:00007f81f0f16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  188.178913][ T7207] RAX: ffffffffffffffda RBX: 00007f81f2f05fa0 RCX: 00007f81f2caf749
[  188.178927][ T7207] RDX: 0000200000000100 RSI: 00000000c0585604 RDI: 0000000000000003
[  188.178938][ T7207] RBP: 00007f81f0f16090 R08: 0000000000000000 R09: 0000000000000000
[  188.178949][ T7207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.178959][ T7207] R13: 00007f81f2f06038 R14: 00007f81f2f05fa0 R15: 00007ffdb6090da8
[  188.178990][ T7207]  </TASK>
[  188.178997][ T7207] ERROR: Out of memory at tomoyo_realpath_from_path.
[  188.226357][ T5854] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[  188.430554][ T5854] usb 1-1: config 0 has no interfaces?
[  188.430599][ T5854] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  188.430621][ T5854] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.489696][ T5854] usb 1-1: config 0 descriptor??
[  189.419645][ T7205] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  189.471378][ T7205] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  189.493182][ T6038] usb 1-1: USB disconnect, device number 11
[  190.069619][ T7215] blktrace: Concurrent blktraces are not allowed on sg0
[  192.476058][ T5854] usb 2-1: new full-speed USB device number 12 using dummy_hcd
[  192.578238][ T7252] blktrace: Concurrent blktraces are not allowed on sg0
[  192.665669][ T5854] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  192.665698][ T5854] usb 2-1: config 1 has no interface number 0
[  192.665746][ T5854] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  192.665768][ T5854] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  192.665789][ T5854] usb 2-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  192.665822][ T5854] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  192.665843][ T5854] usb 2-1: config 1 interface 1 altsetting 1 has an endpoint descriptor with address 0xA8, changing to 0x88
[  192.665863][ T5854] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x88 has invalid wMaxPacketSize 0
[  192.754308][ T5854] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  192.754326][ T5854] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.754337][ T5854] usb 2-1: Product: syz
[  192.754344][ T5854] usb 2-1: Manufacturer: syz
[  192.754351][ T5854] usb 2-1: SerialNumber: syz
[  192.809444][ T7231] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  192.847067][ T6038] usb 1-1: new full-speed USB device number 12 using dummy_hcd
[  193.015920][ T6038] usb 1-1: config 0 has no interfaces?
[  193.015957][ T6038] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  193.015980][ T6038] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.033080][ T6038] usb 1-1: config 0 descriptor??
[  193.037094][ T7231] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  193.245765][ T7256] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  193.426343][ T7256] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  193.548395][ T6038] usb 1-1: USB disconnect, device number 12
[  193.743345][ T7281] netlink: 8 bytes leftover after parsing attributes in process `syz.1.441'.
[  194.381437][ T7280] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  194.459877][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  194.459946][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  196.931879][ T5854] cdc_ncm 2-1:1.1: bind() failure
[  197.056635][ T5854] usb 2-1: USB disconnect, device number 12
[  199.172218][    T9] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  199.335941][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  199.335970][    T9] usb 4-1: config 1 has no interface number 0
[  199.336017][    T9] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  199.336042][    T9] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  199.336067][    T9] usb 4-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  199.336101][    T9] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  199.370415][    T9] usb 4-1: config 1 interface 1 altsetting 1 has an endpoint descriptor with address 0xA8, changing to 0x88
[  199.370455][    T9] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x88 has invalid wMaxPacketSize 0
[  199.455440][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  199.455470][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.455489][    T9] usb 4-1: Product: syz
[  199.455503][    T9] usb 4-1: Manufacturer: syz
[  199.455517][    T9] usb 4-1: SerialNumber: syz
[  199.521773][ T7319] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  200.043208][ T6211] usb 2-1: new full-speed USB device number 13 using dummy_hcd
[  200.469377][ T7330] syz.0.475 (7330) used greatest stack depth: 14320 bytes left
[  200.647538][    T9] cdc_ncm 4-1:1.1: bind() failure
[  200.718463][ T6211] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  200.718494][ T6211] usb 2-1: config 1 has no interface number 0
[  200.718538][ T6211] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  200.718564][ T6211] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  200.718590][ T6211] usb 2-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  200.718623][ T6211] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  200.718648][ T6211] usb 2-1: config 1 interface 1 altsetting 1 has an endpoint descriptor with address 0xA8, changing to 0x88
[  200.718672][ T6211] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x88 has invalid wMaxPacketSize 0
[  200.723725][ T6211] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  200.723754][ T6211] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.723773][ T6211] usb 2-1: Product: syz
[  200.723787][ T6211] usb 2-1: Manufacturer: syz
[  200.723801][ T6211] usb 2-1: SerialNumber: syz
[  200.727225][    T9] usb 4-1: USB disconnect, device number 8
[  200.878707][ T7345] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  201.121774][ T7345] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  201.980616][ T5815] Bluetooth: hci3: command 0x0406 tx timeout
[  201.982601][ T5815] Bluetooth: hci1: command 0x0406 tx timeout
[  201.982701][ T5815] Bluetooth: hci0: command 0x080f tx timeout
[  201.983508][ T5815] Bluetooth: hci2: command 0x0406 tx timeout
[  201.984624][ T5121] Bluetooth: hci4: command 0x0406 tx timeout
[  202.407407][ T7364] netlink: 8 bytes leftover after parsing attributes in process `syz.1.480'.
[  204.669898][ T6211] cdc_ncm 2-1:1.1: bind() failure
[  204.717548][ T6211] usb 2-1: USB disconnect, device number 13
[  205.239775][ T6211] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  205.396271][ T6211] usb 2-1: Using ep0 maxpacket: 32
[  205.398657][ T6211] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  205.398688][ T6211] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  205.398726][ T6211] usb 2-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00
[  205.398749][ T6211] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.455771][ T6211] usb 2-1: config 0 descriptor??
[  205.647397][ T7390] FAULT_INJECTION: forcing a failure.
[  205.647397][ T7390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  205.647432][ T7390] CPU: 0 UID: 0 PID: 7390 Comm: syz.4.502 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  205.647456][ T7390] Tainted: [L]=SOFTLOCKUP
[  205.647462][ T7390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  205.647473][ T7390] Call Trace:
[  205.647480][ T7390]  <TASK>
[  205.647488][ T7390]  dump_stack_lvl+0x189/0x250
[  205.647516][ T7390]  ? __pfx____ratelimit+0x10/0x10
[  205.647541][ T7390]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.647561][ T7390]  ? __pfx__printk+0x10/0x10
[  205.647580][ T7390]  ? __might_fault+0xb0/0x130
[  205.647612][ T7390]  should_fail_ex+0x46c/0x600
[  205.647640][ T7390]  _copy_from_user+0x2d/0xb0
[  205.647657][ T7390]  kvmemdup_bpfptr_noprof+0x86/0xf0
[  205.647683][ T7390]  map_update_elem+0x45c/0x6a0
[  205.647711][ T7390]  __sys_bpf+0x619/0x860
[  205.647732][ T7390]  ? __pfx___sys_bpf+0x10/0x10
[  205.647748][ T7390]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  205.647784][ T7390]  ? ksys_write+0x230/0x260
[  205.647817][ T7390]  ? __pfx_ksys_write+0x10/0x10
[  205.647846][ T7390]  __x64_sys_bpf+0x7c/0x90
[  205.647865][ T7390]  do_syscall_64+0xfa/0xf80
[  205.647884][ T7390]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.647901][ T7390]  ? clear_bhb_loop+0x60/0xb0
[  205.647921][ T7390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.647938][ T7390] RIP: 0033:0x7f22d05af749
[  205.647954][ T7390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.647969][ T7390] RSP: 002b:00007f22ce80e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  205.647989][ T7390] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05af749
[  205.648002][ T7390] RDX: 0000000000000020 RSI: 0000200000000200 RDI: 0000000000000002
[  205.648013][ T7390] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  205.648024][ T7390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.648034][ T7390] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  205.648064][ T7390]  </TASK>
[  206.270057][ T6211] uclogic 0003:5543:0522.0003: hidraw0: USB HID v0.01 Device [HID 5543:0522] on usb-dummy_hcd.1-1/input0
[  206.369440][ T6211] usb 2-1: USB disconnect, device number 14
[  206.429652][ T7399] fido_id[7399]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory
[  207.097381][ T6038] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  207.388268][ T6038] usb 4-1: Using ep0 maxpacket: 16
[  207.507650][ T6038] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[  207.508118][ T6038] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  207.508262][ T6038] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  207.508793][ T6038] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  207.508839][ T6038] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.681654][ T6038] usb 4-1: config 0 descriptor??
[  207.898913][ T7422] FAULT_INJECTION: forcing a failure.
[  207.898913][ T7422] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.898955][ T7422] CPU: 1 UID: 0 PID: 7422 Comm: syz.1.511 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  207.898982][ T7422] Tainted: [L]=SOFTLOCKUP
[  207.898989][ T7422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  207.898999][ T7422] Call Trace:
[  207.899007][ T7422]  <TASK>
[  207.899015][ T7422]  dump_stack_lvl+0x189/0x250
[  207.899042][ T7422]  ? __pfx____ratelimit+0x10/0x10
[  207.899069][ T7422]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.899091][ T7422]  ? __pfx__printk+0x10/0x10
[  207.899109][ T7422]  ? __might_fault+0xb0/0x130
[  207.899145][ T7422]  should_fail_ex+0x46c/0x600
[  207.899175][ T7422]  _copy_from_user+0x2d/0xb0
[  207.899193][ T7422]  ___sys_sendmsg+0x158/0x2a0
[  207.899219][ T7422]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.899287][ T7422]  ? __fget_files+0x2a/0x420
[  207.899305][ T7422]  ? __fget_files+0x3a6/0x420
[  207.899334][ T7422]  __x64_sys_sendmsg+0x1a1/0x260
[  207.899359][ T7422]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  207.899393][ T7422]  ? __secure_computing+0xe2/0x2a0
[  207.899425][ T7422]  do_syscall_64+0xfa/0xf80
[  207.899442][ T7422]  ? rcu_is_watching+0x15/0xb0
[  207.899458][ T7422]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.899475][ T7422]  ? clear_bhb_loop+0x60/0xb0
[  207.899491][ T7422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.899504][ T7422] RIP: 0033:0x7f85b0a2f749
[  207.899518][ T7422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.899530][ T7422] RSP: 002b:00007f85aec4c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  207.899545][ T7422] RAX: ffffffffffffffda RBX: 00007f85b0c86180 RCX: 00007f85b0a2f749
[  207.899555][ T7422] RDX: 0000000000000000 RSI: 00002000000015c0 RDI: 0000000000000006
[  207.899564][ T7422] RBP: 00007f85aec4c090 R08: 0000000000000000 R09: 0000000000000000
[  207.899572][ T7422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.899580][ T7422] R13: 00007f85b0c86218 R14: 00007f85b0c86180 R15: 00007ffda5b71228
[  207.899604][ T7422]  </TASK>
[  208.860108][ T7413] binder: 7412:7413 ioctl 40044591 0 returned -22
[  208.860315][ T7413] binder: 7412:7413 ioctl c0306201 200000000640 returned -22
[  208.903167][ T6038] usbhid 4-1:0.0: can't add hid device: -71
[  208.903290][ T6038] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  208.915411][ T6038] usb 4-1: USB disconnect, device number 9
[  209.040409][ T7435] overlayfs: failed to decode file handle (len=6, type=6, flags=0, err=-22)
[  209.040458][ T7435] FAULT_INJECTION: forcing a failure.
[  209.040458][ T7435] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  209.040488][ T7435] CPU: 0 UID: 0 PID: 7435 Comm: syz.4.516 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  209.040514][ T7435] Tainted: [L]=SOFTLOCKUP
[  209.040520][ T7435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  209.040531][ T7435] Call Trace:
[  209.040539][ T7435]  <TASK>
[  209.040546][ T7435]  dump_stack_lvl+0x189/0x250
[  209.040574][ T7435]  ? __pfx____ratelimit+0x10/0x10
[  209.040600][ T7435]  ? __pfx_dump_stack_lvl+0x10/0x10
[  209.040623][ T7435]  ? __pfx__printk+0x10/0x10
[  209.040657][ T7435]  should_fail_ex+0x46c/0x600
[  209.040686][ T7435]  _copy_to_user+0x31/0xb0
[  209.040706][ T7435]  simple_read_from_buffer+0xe1/0x170
[  209.040731][ T7435]  proc_fail_nth_read+0x1b6/0x220
[  209.040759][ T7435]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  209.040787][ T7435]  ? rw_verify_area+0x2ac/0x4e0
[  209.040809][ T7435]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  209.040835][ T7435]  vfs_read+0x206/0xa30
[  209.040866][ T7435]  ? __pfx_vfs_read+0x10/0x10
[  209.040885][ T7435]  ? try_to_take_rt_mutex+0x7fd/0xac0
[  209.040918][ T7435]  ? mutex_lock_nested+0x154/0x1d0
[  209.040938][ T7435]  ? fdget_pos+0x253/0x320
[  209.040966][ T7435]  ksys_read+0x14b/0x260
[  209.040991][ T7435]  ? __pfx_ksys_read+0x10/0x10
[  209.041016][ T7435]  ? do_syscall_64+0xbe/0xf80
[  209.041038][ T7435]  do_syscall_64+0xfa/0xf80
[  209.041056][ T7435]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.041075][ T7435]  ? clear_bhb_loop+0x60/0xb0
[  209.041096][ T7435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.041113][ T7435] RIP: 0033:0x7f22d05ae15c
[  209.041130][ T7435] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  209.041144][ T7435] RSP: 002b:00007f22ce80e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  209.041164][ T7435] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05ae15c
[  209.041177][ T7435] RDX: 000000000000000f RSI: 00007f22ce80e0a0 RDI: 0000000000000004
[  209.041189][ T7435] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  209.041200][ T7435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  209.041211][ T7435] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  209.041240][ T7435]  </TASK>
[  209.056340][ T5862] usb 3-1: new full-speed USB device number 13 using dummy_hcd
[  209.124332][ T7437] netlink: 8 bytes leftover after parsing attributes in process `syz.1.517'.
[  209.218621][ T5862] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  209.218648][ T5862] usb 3-1: config 1 has no interface number 0
[  209.218696][ T5862] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  209.218722][ T5862] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  209.218747][ T5862] usb 3-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  209.218779][ T5862] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  209.218804][ T5862] usb 3-1: config 1 interface 1 altsetting 1 has an endpoint descriptor with address 0xA8, changing to 0x88
[  209.218828][ T5862] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x88 has invalid wMaxPacketSize 0
[  209.221507][ T5862] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  209.221532][ T5862] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  209.221551][ T5862] usb 3-1: Product: syz
[  209.221564][ T5862] usb 3-1: Manufacturer: syz
[  209.221577][ T5862] usb 3-1: SerialNumber: syz
[  209.240968][ T7427] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  209.452090][ T7427] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  211.004294][ T7441] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  211.113990][ T7442] netlink: 8 bytes leftover after parsing attributes in process `syz.2.510'.
[  212.072226][ T7441] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  212.091100][ T5862] cdc_ncm 3-1:1.1: bind() failure
[  212.193570][ T7451] netlink: 20 bytes leftover after parsing attributes in process `syz.3.521'.
[  213.849712][ T7368] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  213.853847][  T142] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  213.965324][ T6038] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[  214.000794][   T54] usb 3-1: USB disconnect, device number 13
[  214.061591][ T7456] sch_tbf: burst 7710 is lower than device lo mtu (65550) !
[  214.096924][ T6038] usb 1-1: device descriptor read/64, error -71
[  214.132846][ T7368] usb 2-1: unable to read config index 0 descriptor/start: -71
[  214.132892][ T7368] usb 2-1: can't read configurations, error -71
[  214.417092][ T6038] usb 1-1: new full-speed USB device number 14 using dummy_hcd
[  214.476274][   T54] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  214.556468][ T6038] usb 1-1: device descriptor read/64, error -71
[  214.648169][   T54] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  214.648339][   T54] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  214.648364][   T54] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  214.648389][   T54] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  214.668563][ T6038] usb usb1-port1: attempt power cycle
[  214.717587][   T54] usb 3-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  214.717617][   T54] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.717637][   T54] usb 3-1: Product: syz
[  214.717651][   T54] usb 3-1: Manufacturer: syz
[  214.717665][   T54] usb 3-1: SerialNumber: syz
[  214.723288][   T54] usb 3-1: config 0 descriptor??
[  214.823174][ T7500] netlink: 12 bytes leftover after parsing attributes in process `syz.1.545'.
[  214.998447][ T7476] usb usb9: usbfs: process 7476 (syz.2.532) did not claim interface 0 before use
[  215.027753][ T6038] usb 1-1: new full-speed USB device number 15 using dummy_hcd
[  215.047145][ T6038] usb 1-1: device descriptor read/8, error -71
[  215.196068][ T7507] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  215.199051][ T7507] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  215.297706][   T54] adutux 3-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  215.325235][ T7511] openvswitch: netlink: IP tunnel TTL not specified.
[  216.925760][ T5821] Bluetooth: hci4: unexpected event for opcode 0x5956
[  217.063656][ T7524] netlink: 12 bytes leftover after parsing attributes in process `syz.1.555'.
[  217.063966][ T7524] netlink: 12 bytes leftover after parsing attributes in process `syz.1.555'.
[  217.250210][ T7533] FAULT_INJECTION: forcing a failure.
[  217.250210][ T7533] name failslab, interval 1, probability 0, space 0, times 0
[  217.250245][ T7533] CPU: 1 UID: 0 PID: 7533 Comm: syz.3.541 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  217.250271][ T7533] Tainted: [L]=SOFTLOCKUP
[  217.250277][ T7533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  217.250296][ T7533] Call Trace:
[  217.250303][ T7533]  <TASK>
[  217.250311][ T7533]  dump_stack_lvl+0x189/0x250
[  217.250338][ T7533]  ? __pfx____ratelimit+0x10/0x10
[  217.250363][ T7533]  ? __pfx_dump_stack_lvl+0x10/0x10
[  217.250386][ T7533]  ? __pfx__printk+0x10/0x10
[  217.250411][ T7533]  ? __pfx___might_resched+0x10/0x10
[  217.250434][ T7533]  should_fail_ex+0x46c/0x600
[  217.250467][ T7533]  should_failslab+0xa8/0x100
[  217.250487][ T7533]  __kmalloc_noprof+0xe0/0x7e0
[  217.250511][ T7533]  ? kfree+0x4d/0x900
[  217.250529][ T7533]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  217.250555][ T7533]  tomoyo_realpath_from_path+0xe3/0x5d0
[  217.250575][ T7533]  ? tomoyo_domain+0xd9/0x130
[  217.250599][ T7533]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  217.250623][ T7533]  tomoyo_path_number_perm+0x1e8/0x5a0
[  217.250649][ T7533]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  217.250678][ T7533]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  217.250696][ T7533]  ? lockdep_hardirqs_on+0x98/0x140
[  217.250746][ T7533]  ? __fget_files+0x2a/0x420
[  217.250771][ T7533]  ? __fget_files+0x3a6/0x420
[  217.250788][ T7533]  ? __fget_files+0x2a/0x420
[  217.250811][ T7533]  security_file_ioctl+0xcb/0x2d0
[  217.250837][ T7533]  __se_sys_ioctl+0x47/0x170
[  217.250864][ T7533]  do_syscall_64+0xfa/0xf80
[  217.250882][ T7533]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.250899][ T7533]  ? clear_bhb_loop+0x60/0xb0
[  217.250921][ T7533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.250938][ T7533] RIP: 0033:0x7fdd0c58f749
[  217.250955][ T7533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.250971][ T7533] RSP: 002b:00007fdd0a7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  217.250990][ T7533] RAX: ffffffffffffffda RBX: 00007fdd0c7e5fa0 RCX: 00007fdd0c58f749
[  217.251002][ T7533] RDX: 0000200000000340 RSI: 000000004010640d RDI: 0000000000000003
[  217.251015][ T7533] RBP: 00007fdd0a7f6090 R08: 0000000000000000 R09: 0000000000000000
[  217.251025][ T7533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  217.251036][ T7533] R13: 00007fdd0c7e6038 R14: 00007fdd0c7e5fa0 R15: 00007ffc6d03c038
[  217.251070][ T7533]  </TASK>
[  217.318022][ T7533] ERROR: Out of memory at tomoyo_realpath_from_path.
[  217.631765][   T54] usb 3-1: USB disconnect, device number 14
[  219.331888][    T9] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[  219.486290][ T5854] usb 3-1: new full-speed USB device number 15 using dummy_hcd
[  219.504794][    T9] usb 4-1: config 0 has no interfaces?
[  219.504830][    T9] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  219.504851][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  219.509545][    T9] usb 4-1: config 0 descriptor??
[  219.696256][ T5854] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  219.696284][ T5854] usb 3-1: config 1 has no interface number 0
[  219.696331][ T5854] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  219.696357][ T5854] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  219.696383][ T5854] usb 3-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  219.696416][ T5854] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  219.696440][ T5854] usb 3-1: config 1 interface 1 altsetting 1 has an endpoint descriptor with address 0xA8, changing to 0x88
[  219.696464][ T5854] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x88 has invalid wMaxPacketSize 0
[  219.721902][ T5854] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  219.721931][ T5854] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.721950][ T5854] usb 3-1: Product: syz
[  219.721964][ T5854] usb 3-1: Manufacturer: syz
[  219.721977][ T5854] usb 3-1: SerialNumber: syz
[  219.794867][ T7541] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  219.795361][ T7541] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  219.809178][    T9] usb 4-1: USB disconnect, device number 10
[  219.852845][ T7553] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  220.067643][ T7553] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  220.899924][ T7574] netlink: 8 bytes leftover after parsing attributes in process `syz.2.564'.
[  221.573177][ T7572] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  221.694433][ T7577] overlayfs: failed to resolve './file0': -2
[  222.389524][ T7586] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  222.394814][ T5854] cdc_ncm 3-1:1.1: bind() failure
[  222.427510][ T7588] comedi comedi3: comedi_test: 10 microvolt, 2046 microsecond waveform attached
[  223.053165][ T5854] usb 3-1: USB disconnect, device number 15
[  223.157220][ T7615] FAULT_INJECTION: forcing a failure.
[  223.157220][ T7615] name failslab, interval 1, probability 0, space 0, times 0
[  223.157256][ T7615] CPU: 1 UID: 0 PID: 7615 Comm: syz.4.586 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  223.157281][ T7615] Tainted: [L]=SOFTLOCKUP
[  223.157287][ T7615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  223.157298][ T7615] Call Trace:
[  223.157306][ T7615]  <TASK>
[  223.157314][ T7615]  dump_stack_lvl+0x189/0x250
[  223.157341][ T7615]  ? __pfx____ratelimit+0x10/0x10
[  223.157367][ T7615]  ? __pfx_dump_stack_lvl+0x10/0x10
[  223.157388][ T7615]  ? __pfx__printk+0x10/0x10
[  223.157404][ T7615]  ? __kasan_slab_alloc+0x6c/0x80
[  223.157432][ T7615]  ? __lock_acquire+0x6b6/0x2cf0
[  223.157464][ T7615]  should_fail_ex+0x46c/0x600
[  223.157491][ T7615]  ? skb_clone+0x212/0x3a0
[  223.157513][ T7615]  should_failslab+0xa8/0x100
[  223.157531][ T7615]  ? skb_clone+0x212/0x3a0
[  223.157551][ T7615]  kmem_cache_alloc_noprof+0x84/0x6c0
[  223.157574][ T7615]  ? __netlink_lookup+0xbd/0x8a0
[  223.157604][ T7615]  skb_clone+0x212/0x3a0
[  223.157631][ T7615]  __netlink_deliver_tap+0x404/0x850
[  223.157673][ T7615]  ? netlink_deliver_tap+0x2e/0x1b0
[  223.157697][ T7615]  netlink_deliver_tap+0x19c/0x1b0
[  223.157721][ T7615]  netlink_unicast+0x811/0xa10
[  223.157750][ T7615]  ? __pfx_netlink_unicast+0x10/0x10
[  223.157773][ T7615]  ? netlink_sendmsg+0x642/0xb30
[  223.157793][ T7615]  ? skb_put+0x11b/0x210
[  223.157816][ T7615]  netlink_sendmsg+0x805/0xb30
[  223.157848][ T7615]  ? __pfx_netlink_sendmsg+0x10/0x10
[  223.157880][ T7615]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  223.157902][ T7615]  ? __pfx_netlink_sendmsg+0x10/0x10
[  223.157925][ T7615]  __sock_sendmsg+0x21c/0x270
[  223.157954][ T7615]  ____sys_sendmsg+0x508/0x810
[  223.157984][ T7615]  ? __pfx_____sys_sendmsg+0x10/0x10
[  223.158015][ T7615]  ? import_iovec+0x74/0xa0
[  223.158037][ T7615]  ___sys_sendmsg+0x21f/0x2a0
[  223.158062][ T7615]  ? __pfx____sys_sendmsg+0x10/0x10
[  223.158121][ T7615]  ? __fget_files+0x2a/0x420
[  223.158138][ T7615]  ? __fget_files+0x3a6/0x420
[  223.158167][ T7615]  __x64_sys_sendmsg+0x1a1/0x260
[  223.158192][ T7615]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  223.158224][ T7615]  ? __pfx_ksys_write+0x10/0x10
[  223.158252][ T7615]  ? do_syscall_64+0xbe/0xf80
[  223.158274][ T7615]  do_syscall_64+0xfa/0xf80
[  223.158292][ T7615]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.158310][ T7615]  ? clear_bhb_loop+0x60/0xb0
[  223.158332][ T7615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.158349][ T7615] RIP: 0033:0x7f22d05af749
[  223.158365][ T7615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.158381][ T7615] RSP: 002b:00007f22ce80e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  223.158400][ T7615] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05af749
[  223.158413][ T7615] RDX: 0000000004008094 RSI: 0000200000000100 RDI: 0000000000000003
[  223.158425][ T7615] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  223.158436][ T7615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.158447][ T7615] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  223.158479][ T7615]  </TASK>
[  223.158700][ T7615] openvswitch: netlink: IPv4 tunnel dst address is zero
[  223.918422][    T9] usb 1-1: new full-speed USB device number 17 using dummy_hcd
[  224.179399][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  224.179428][    T9] usb 1-1: config 1 has no interface number 0
[  224.179479][    T9] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  224.179506][    T9] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  224.179536][    T9] usb 1-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  224.179644][    T9] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  224.179670][    T9] usb 1-1: config 1 interface 1 altsetting 1 has an endpoint descriptor with address 0xA8, changing to 0x88
[  224.179695][    T9] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x88 has invalid wMaxPacketSize 0
[  224.186539][    T9] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  224.186634][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.186658][    T9] usb 1-1: Product: syz
[  224.186673][    T9] usb 1-1: Manufacturer: syz
[  224.186687][    T9] usb 1-1: SerialNumber: syz
[  224.240420][ T7620] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  224.522640][ T7620] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  226.936342][ T5854] usb 3-1: new full-speed USB device number 16 using dummy_hcd
[  227.731430][    T9] cdc_ncm 1-1:1.1: bind() failure
[  227.769711][    T9] usb 1-1: USB disconnect, device number 17
[  227.797145][ T5963] udevd[5963]: setting mode of /dev/bus/usb/001/017 to 020664 failed: No such file or directory
[  227.802862][ T5963] udevd[5963]: setting owner of /dev/bus/usb/001/017 to uid=0, gid=0 failed: No such file or directory
[  227.803268][ T5854] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  227.803294][ T5854] usb 3-1: config 1 has no interface number 0
[  227.803342][ T5854] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  227.803369][ T5854] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  227.803396][ T5854] usb 3-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  227.803437][ T5854] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  227.803462][ T5854] usb 3-1: config 1 interface 1 altsetting 1 has an endpoint descriptor with address 0xA8, changing to 0x88
[  227.803485][ T5854] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x88 has invalid wMaxPacketSize 0
[  227.859939][ T5854] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  227.859968][ T5854] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  227.859986][ T5854] usb 3-1: Product: syz
[  227.860000][ T5854] usb 3-1: Manufacturer: syz
[  227.860013][ T5854] usb 3-1: SerialNumber: syz
[  227.967283][ T7647] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  228.016989][ T7671] FAULT_INJECTION: forcing a failure.
[  228.016989][ T7671] name failslab, interval 1, probability 0, space 0, times 0
[  228.017023][ T7671] CPU: 0 UID: 0 PID: 7671 Comm: syz.4.609 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  228.017047][ T7671] Tainted: [L]=SOFTLOCKUP
[  228.017053][ T7671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  228.017063][ T7671] Call Trace:
[  228.017071][ T7671]  <TASK>
[  228.017078][ T7671]  dump_stack_lvl+0x189/0x250
[  228.017104][ T7671]  ? __pfx____ratelimit+0x10/0x10
[  228.017129][ T7671]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.017152][ T7671]  ? __pfx__printk+0x10/0x10
[  228.017184][ T7671]  ? __pfx___might_resched+0x10/0x10
[  228.017201][ T7671]  ? fs_reclaim_acquire+0x7d/0x100
[  228.017220][ T7671]  should_fail_ex+0x46c/0x600
[  228.017249][ T7671]  should_failslab+0xa8/0x100
[  228.017268][ T7671]  __kmalloc_node_noprof+0xe7/0x820
[  228.017293][ T7671]  ? alloc_slab_obj_exts+0x3e/0x100
[  228.017319][ T7671]  alloc_slab_obj_exts+0x3e/0x100
[  228.017342][ T7671]  __memcg_slab_post_alloc_hook+0x394/0x7d0
[  228.017381][ T7671]  ? ep_insert+0x521/0x1750
[  228.017399][ T7671]  kmem_cache_alloc_noprof+0x42b/0x6c0
[  228.017429][ T7671]  ep_insert+0x521/0x1750
[  228.017464][ T7671]  ? __pfx_ep_insert+0x10/0x10
[  228.017483][ T7671]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  228.017501][ T7671]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  228.017519][ T7671]  ? cap_capable+0x123/0x440
[  228.017548][ T7671]  ? mutex_lock_nested+0x154/0x1d0
[  228.017568][ T7671]  ? do_epoll_ctl+0x3d2/0xe90
[  228.017590][ T7671]  do_epoll_ctl+0x7fd/0xe90
[  228.017619][ T7671]  __x64_sys_epoll_ctl+0x163/0x1a0
[  228.017641][ T7671]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  228.017664][ T7671]  ? do_syscall_64+0xbe/0xf80
[  228.017685][ T7671]  do_syscall_64+0xfa/0xf80
[  228.017702][ T7671]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.017719][ T7671]  ? clear_bhb_loop+0x60/0xb0
[  228.017741][ T7671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.017758][ T7671] RIP: 0033:0x7f22d05af749
[  228.017774][ T7671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.017790][ T7671] RSP: 002b:00007f22ce80e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  228.017809][ T7671] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05af749
[  228.017822][ T7671] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[  228.017833][ T7671] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  228.017844][ T7671] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  228.017856][ T7671] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  228.017885][ T7671]  </TASK>
[  228.187322][ T7647] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  228.366275][ T7556] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  228.637057][ T7556] usb 1-1: Using ep0 maxpacket: 16
[  228.644627][ T7556] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  228.644734][ T7556] usb 1-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  228.644760][ T7556] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.631820][ T7556] usb 1-1: config 0 descriptor??
[  229.704400][ T7683] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  229.759433][ T7684] input: syz1 as /devices/virtual/input/input10
[  230.410534][ T7685] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  230.455286][ T5854] cdc_ncm 3-1:1.1: bind() failure
[  230.801028][ T7556] usbhid 1-1:0.0: can't add hid device: -71
[  230.801155][ T7556] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  230.829184][ T7556] usb 1-1: USB disconnect, device number 18
[  231.956541][ T7708] Bluetooth: hci0: Opcode 0x080f failed: -4
[  232.319931][ T7556] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  232.456704][    T9] usb 3-1: USB disconnect, device number 16
[  233.205711][ T7721] trusted_key: syz.0.623 sent an empty control message without MSG_MORE.
[  234.564095][ T5821] Bluetooth: hci0: command 0x080f tx timeout
[  236.746303][ T7740] Bluetooth: hci0: Opcode 0x080f failed: -4
[  237.067700][ T6037] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  237.186349][ T7747] FAULT_INJECTION: forcing a failure.
[  237.186349][ T7747] name failslab, interval 1, probability 0, space 0, times 0
[  237.186459][ T7747] CPU: 1 UID: 0 PID: 7747 Comm: syz.4.636 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  237.186485][ T7747] Tainted: [L]=SOFTLOCKUP
[  237.186492][ T7747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  237.186510][ T7747] Call Trace:
[  237.186518][ T7747]  <TASK>
[  237.186526][ T7747]  dump_stack_lvl+0x189/0x250
[  237.186554][ T7747]  ? __pfx____ratelimit+0x10/0x10
[  237.186581][ T7747]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.186604][ T7747]  ? __pfx__printk+0x10/0x10
[  237.186627][ T7747]  ? __pfx___might_resched+0x10/0x10
[  237.186646][ T7747]  ? fs_reclaim_acquire+0x7d/0x100
[  237.186668][ T7747]  should_fail_ex+0x46c/0x600
[  237.186697][ T7747]  should_failslab+0xa8/0x100
[  237.186716][ T7747]  __kvmalloc_node_noprof+0x181/0x940
[  237.186743][ T7747]  ? bpf_test_run_xdp_live+0x1ba/0x1b20
[  237.186774][ T7747]  bpf_test_run_xdp_live+0x1ba/0x1b20
[  237.186797][ T7747]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  237.186816][ T7747]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  237.186846][ T7747]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  237.186868][ T7747]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  237.186894][ T7747]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  237.186939][ T7747]  ? 0xffffffffa0201660
[  237.186984][ T7747]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  237.187017][ T7747]  ? _copy_from_user+0x94/0xb0
[  237.187035][ T7747]  ? bpf_test_init+0x113/0x150
[  237.187055][ T7747]  ? xdp_convert_md_to_buff+0x5b/0x330
[  237.187079][ T7747]  bpf_prog_test_run_xdp+0x7c0/0x10e0
[  237.187118][ T7747]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  237.187147][ T7747]  ? __fget_files+0x2a/0x420
[  237.187171][ T7747]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  237.187195][ T7747]  bpf_prog_test_run+0x2cd/0x340
[  237.187221][ T7747]  __sys_bpf+0x562/0x860
[  237.187244][ T7747]  ? __pfx___sys_bpf+0x10/0x10
[  237.187259][ T7747]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  237.187299][ T7747]  ? ksys_write+0x230/0x260
[  237.187326][ T7747]  ? __pfx_ksys_write+0x10/0x10
[  237.187355][ T7747]  __x64_sys_bpf+0x7c/0x90
[  237.187375][ T7747]  do_syscall_64+0xfa/0xf80
[  237.187394][ T7747]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.187412][ T7747]  ? clear_bhb_loop+0x60/0xb0
[  237.187434][ T7747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.187451][ T7747] RIP: 0033:0x7f22d05af749
[  237.187468][ T7747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.187483][ T7747] RSP: 002b:00007f22ce80e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  237.187508][ T7747] RAX: ffffffffffffffda RBX: 00007f22d0805fa0 RCX: 00007f22d05af749
[  237.187521][ T7747] RDX: 0000000000000050 RSI: 0000200000000500 RDI: 000000000000000a
[  237.187532][ T7747] RBP: 00007f22ce80e090 R08: 0000000000000000 R09: 0000000000000000
[  237.187544][ T7747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  237.187555][ T7747] R13: 00007f22d0806038 R14: 00007f22d0805fa0 R15: 00007fffce81cdf8
[  237.187587][ T7747]  </TASK>
[  237.216273][ T6037] usb 3-1: Using ep0 maxpacket: 8
[  237.238339][ T6037] usb 3-1: unable to get BOS descriptor or descriptor too short
[  237.240476][ T6037] usb 3-1: config 4 has an invalid interface number: 30 but max is 0
[  237.240571][ T6037] usb 3-1: config 4 has no interface number 0
[  237.240617][ T6037] usb 3-1: config 4 interface 30 has no altsetting 0
[  237.349583][ T6037] usb 3-1: string descriptor 0 read error: -22
[  237.349727][ T6037] usb 3-1: New USB device found, idVendor=9022, idProduct=d484, bcdDevice=ff.88
[  237.349750][ T6037] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.594293][ T6037] dvb-usb: found a 'TeVii S482 (tuner 2)' in warm state.
[  237.594347][ T6037] dw2102: su3000_power_ctrl: 1, initialized 0
[  237.594772][ T6037] dvb-usb: bulk message failed: -22 (2/0)
[  237.627921][ T6037] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  237.647068][ T6037] dvbdev: DVB: registering new adapter (TeVii S482 (tuner 2))
[  237.647131][ T6037] usb 3-1: media controller created
[  237.647444][ T6037] dvb-usb: bulk message failed: -22 (6/0)
[  237.647460][ T6037] dw2102: i2c transfer failed.
[  237.647483][ T6037] dvb-usb: bulk message failed: -22 (6/0)
[  237.647496][ T6037] dw2102: i2c transfer failed.
[  237.647512][ T6037] dvb-usb: bulk message failed: -22 (6/0)
[  237.647526][ T6037] dw2102: i2c transfer failed.
[  237.647543][ T6037] dvb-usb: bulk message failed: -22 (6/0)
[  237.647555][ T6037] dw2102: i2c transfer failed.
[  237.647572][ T6037] dvb-usb: bulk message failed: -22 (6/0)
[  237.647585][ T6037] dw2102: i2c transfer failed.
[  237.647601][ T6037] dvb-usb: bulk message failed: -22 (6/0)
[  237.647614][ T6037] dw2102: i2c transfer failed.
[  237.647624][ T6037] dvb-usb: MAC address: 02:02:02:02:02:02
[  237.754841][ T6037] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  237.786085][ T6037] dvb-usb: bulk message failed: -22 (3/0)
[  237.786106][ T6037] dw2102: command 0x0e transfer failed.
[  237.803167][ T6037] dvb-usb: bulk message failed: -22 (3/0)
[  237.803186][ T6037] dw2102: command 0x0e transfer failed.
[  238.106470][ T6037] dvb-usb: bulk message failed: -22 (3/0)
[  238.106494][ T6037] dw2102: command 0x0e transfer failed.
[  238.106504][ T6037] dvb-usb: bulk message failed: -22 (3/0)
[  238.106516][ T6037] dw2102: command 0x0e transfer failed.
[  238.106525][ T6037] dvb-usb: bulk message failed: -22 (1/0)
[  238.106538][ T6037] dw2102: command 0x51 transfer failed.
[  238.106548][ T6037] dvb-usb: bulk message failed: -22 (5/0)
[  238.106561][ T6037] dw2102: i2c probe for address 0x68 failed.
[  238.110051][ T6037] dvb-usb: bulk message failed: -22 (5/0)
[  238.110073][ T6037] dw2102: i2c probe for address 0x69 failed.
[  238.110086][ T6037] dvb-usb: bulk message failed: -22 (5/0)
[  238.110099][ T6037] dw2102: i2c probe for address 0x6a failed.
[  238.110137][ T6037] dw2102: probing for demodulator failed. Is the external power switched on?
[  238.110148][ T6037] dvb-usb: no frontend was attached by 'TeVii S482 (tuner 2)'
[  238.110236][ T7737] dvb-usb: bulk message failed: -22 (1/0)
[  238.110252][ T7737] dw2102: i2c transfer failed.
[  238.110325][ T7737] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] SMP KASAN PTI
[  238.110346][ T7737] KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]
[  238.110376][ T7737] CPU: 0 UID: 0 PID: 7737 Comm: syz.2.631 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  238.110404][ T7737] Tainted: [L]=SOFTLOCKUP
[  238.110410][ T7737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  238.110422][ T7737] RIP: 0010:su3000_i2c_transfer+0x2e3/0xfd0
[  238.110448][ T7737] Code: 0f b6 18 49 83 c7 08 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 3a 49 ea fa 4d 8b 37 49 ff c6 4c 89 f0 48 c1 e8 03 <42> 0f b6 04 28 84 c0 0f 85 7a 08 00 00 41 88 1e 48 8b 44 24 48 42
[  238.110465][ T7737] RSP: 0018:ffffc9001daffa88 EFLAGS: 00010202
[  238.110481][ T7737] RAX: 0000000000000002 RBX: 0000000000000010 RCX: 2cdba51e9915f000
[  238.110494][ T7737] RDX: ffffc9000d659000 RSI: 00000000000006a5 RDI: 00000000000006a6
[  238.110508][ T7737] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  238.110520][ T7737] R10: dffffc0000000000 R11: ffffed1017104923 R12: 0000000000000003
[  238.110534][ T7737] R13: dffffc0000000000 R14: 0000000000000011 R15: ffff888030e16208
[  238.110550][ T7737] FS:  00007f81f0f166c0(0000) GS:ffff888126d03000(0000) knlGS:0000000000000000
[  238.110567][ T7737] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  238.110581][ T7737] CR2: 0000001b2f61fff8 CR3: 00000000341d0000 CR4: 00000000003526f0
[  238.110599][ T7737] Call Trace:
[  238.110606][ T7737]  <TASK>
[  238.110622][ T7737]  __i2c_transfer+0x871/0x2110
[  238.110648][ T7737]  ? lockdep_hardirqs_on+0x98/0x140
[  238.110670][ T7737]  ? __pfx___i2c_transfer+0x10/0x10
[  238.110696][ T7737]  ? rt_mutex_lock_nested+0x15e/0x1e0
[  238.110717][ T7737]  ? i2c_transfer+0x120/0x3a0
[  238.110739][ T7737]  i2c_transfer+0x25b/0x3a0
[  238.110761][ T7737]  ? __pfx_i2c_transfer+0x10/0x10
[  238.110784][ T7737]  ? _copy_from_user+0x94/0xb0
[  238.110803][ T7737]  i2cdev_ioctl_rdwr+0x460/0x740
[  238.110830][ T7737]  i2cdev_ioctl+0x64e/0x820
[  238.110851][ T7737]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  238.110873][ T7737]  ? __fget_files+0x3a6/0x420
[  238.110894][ T7737]  ? __fget_files+0x2a/0x420
[  238.110914][ T7737]  ? bpf_lsm_file_ioctl+0x9/0x20
[  238.110943][ T7737]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  238.110964][ T7737]  __se_sys_ioctl+0xff/0x170
[  238.110989][ T7737]  do_syscall_64+0xfa/0xf80
[  238.111009][ T7737]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.111027][ T7737]  ? clear_bhb_loop+0x60/0xb0
[  238.111049][ T7737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.111067][ T7737] RIP: 0033:0x7f81f2caf749
[  238.111083][ T7737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.111098][ T7737] RSP: 002b:00007f81f0f16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  238.111118][ T7737] RAX: ffffffffffffffda RBX: 00007f81f2f05fa0 RCX: 00007f81f2caf749
[  238.111132][ T7737] RDX: 0000200000000080 RSI: 0000000000000707 RDI: 0000000000000004
[  238.111145][ T7737] RBP: 00007f81f2d33f91 R08: 0000000000000000 R09: 0000000000000000
[  238.111158][ T7737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  238.111169][ T7737] R13: 00007f81f2f06038 R14: 00007f81f2f05fa0 R15: 00007ffdb6090da8
[  238.111192][ T7737]  </TASK>
[  238.111199][ T7737] Modules linked in:
[  238.111232][ T7737] ---[ end trace 0000000000000000 ]---
[  238.111306][ T7737] RIP: 0010:su3000_i2c_transfer+0x2e3/0xfd0
[  238.111331][ T7737] Code: 0f b6 18 49 83 c7 08 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 3a 49 ea fa 4d 8b 37 49 ff c6 4c 89 f0 48 c1 e8 03 <42> 0f b6 04 28 84 c0 0f 85 7a 08 00 00 41 88 1e 48 8b 44 24 48 42
[  238.111347][ T7737] RSP: 0018:ffffc9001daffa88 EFLAGS: 00010202
[  238.111364][ T7737] RAX: 0000000000000002 RBX: 0000000000000010 RCX: 2cdba51e9915f000
[  238.111384][ T7737] RDX: ffffc9000d659000 RSI: 00000000000006a5 RDI: 00000000000006a6
[  238.111397][ T7737] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  238.111408][ T7737] R10: dffffc0000000000 R11: ffffed1017104923 R12: 0000000000000003
[  238.111421][ T7737] R13: dffffc0000000000 R14: 0000000000000011 R15: ffff888030e16208
[  238.111434][ T7737] FS:  00007f81f0f166c0(0000) GS:ffff888126d03000(0000) knlGS:0000000000000000
[  238.111450][ T7737] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  238.111461][ T7737] CR2: 0000001b2f61fff8 CR3: 00000000341d0000 CR4: 00000000003526f0
[  238.111480][ T7737] Kernel panic - not syncing: Fatal exception
[  238.111815][ T7737] Kernel Offset: disabled