last executing test programs:

6.990700069s ago: executing program 3 (id=1043):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{0x807, 0x0, 0x0, 0x7fff0000}]})
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000440)={'bridge0\x00', <r2=>0x0})
syz_usb_connect(0x0, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000751c2010e60f00989ad1110203010902120001000000000904290200b48cbb005bb5dc5f7b00f9e74594c42a8cf39560658bb41ba152e5df88e22775d858c055593cf48003bae57319b2cd3bb3ec7f518ec2f4bd9083fa2aad22d21a8cc1941522512bf5f82404c530a88e8c4b9a52146995aa53178326fa1c52c75c"], 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000400)={'bridge_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000005c0)=ANY=[@ANYBLOB="3800000054000100010000000000000007000000", @ANYRES32=r2, @ANYBLOB="20000100", @ANYRES32=r4, @ANYBLOB="010003007f"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r5 = socket$kcm(0xa, 0x6, 0x0)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
writev(r6, &(0x7f0000000200)=[{&(0x7f0000000100)="19", 0x3a4e1e905c56cdb7}], 0x1)
write$rfkill(r6, &(0x7f0000000080)={0x1, 0x8, 0x0, 0x1}, 0x8)
listen(r5, 0x3)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000007c0)='memory.events\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r5, 0x10d, 0xa, &(0x7f0000000000)=r7, 0x4)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/unix\x00')
lseek(r8, 0x38, 0x0)
syz_clone3(&(0x7f0000000400)={0x3360100, 0x0, 0x0, 0x0, {0x37}, 0x0, 0x0, 0x0, 0x0, 0x0, {r8}}, 0x58)

6.379644819s ago: executing program 0 (id=1045):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c00000010000304000000000000000100000300", @ANYRES32=0x0, @ANYBLOB="000000000000000014001280090001007663616e0000000004000280080040"], 0x3c}}, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_emit_vhci(&(0x7f0000000380)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0xb, 0x1, 0x804}}}, 0x7)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, 0x0, 0x0)

5.615740612s ago: executing program 2 (id=1048):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), r0)
sendmsg$TIPC_NL_BEARER_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)={0x14, r1, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) (fail_nth: 1)

5.073528783s ago: executing program 2 (id=1052):
socket(0x15, 0x5, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a001fffffffff7f0000000080000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\b\x00', @ANYRES32=r0], 0x24}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), r1)
sendmsg$TIPC_NL_BEARER_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)={0x14, r2, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)

5.073335435s ago: executing program 0 (id=1053):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)={0x1c, r0, 0x1, 0x80, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

4.974262291s ago: executing program 2 (id=1054):
r0 = syz_mount_image$fuse(&(0x7f0000000280), &(0x7f0000002780)='./file0\x00', 0x80008, &(0x7f00000027c0)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@blksize={'blksize', 0x3d, 0x1200}}], [{@permit_directio}, {@context={'context', 0x3d, 'sysadm_u'}}, {@dont_measure}, {@context={'context', 0x3d, 'root'}}, {@appraise_type}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}]}}, 0x1, 0x0, &(0x7f0000002900)="28e416f686f67d4d5dad9df45c7cb6d1cee46b2e353d40d921952b541503df353ee2d0a3aa1b97dbacc85fc8404d7ec462825664c6293ab52fd082a383f4eee1890d51017ea16bbf295a574863a7734cff271f2c6aedb6bf3b3f5c92cacd46ea52cec845143209307e08e7")
mkdirat(r0, &(0x7f0000002040)='./file0\x00', 0x12)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000540)={{}, {0x4}}, 0x24, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, 0x0)
poll(0x0, 0x0, 0x9)
r3 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r3, &(0x7f0000000400)={0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="00de00f7e39bb182b053c4d3b45c9233813d3778590f8ff38b501402a9b49ca979028b0ed10617d7e80af5b50d435e967cbec9103bd427f6993c3a849b82a46d8eaa67987e3576cb890bed68cc8961832f49a1bd887a94db5099ce"], 0x0, 0x0, 0x0}, 0x0)
r4 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r4, 0x4020565a, &(0x7f0000000000)={0x2, 0x40})
read$FUSE(0xffffffffffffffff, &(0x7f0000000740)={0x2020, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
syz_open_procfs(r5, &(0x7f0000000140)='net/hci\x00')
ioctl$VIDIOC_SUBSCRIBE_EVENT(r4, 0x4020565a, &(0x7f0000000040)={0x5})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000e40)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r6, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)={0x1c, r7, 0xf21, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x4000)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x2f)
r9 = io_uring_setup(0x191a, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r9, 0x0, 0x0, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000380)='cgroup.procs\x00', 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r10 = syz_clone(0x4200000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_usb_connect$hid(0x2, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x10, 0x458, 0x5010, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x7, 0x0, 0x1, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x1, 0x2, 0x8, {0x9, 0x21, 0x7, 0x5, 0x1, {0x22, 0xc4a}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x0, 0x1c}}}}}]}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x110, 0x8, 0xc, 0x8, 0x30, 0xb1}, 0x41, &(0x7f00000006c0)={0x5, 0xf, 0x41, 0x3, [@ss_container_id={0x14, 0x10, 0x4, 0x8, "6bb6681029b62f027e5f2ea2ca17d4be"}, @ss_container_id={0x14, 0x10, 0x4, 0x7, "a751b64b3dd81afa9ea4c06ad584e754"}, @ssp_cap={0x14, 0x10, 0xa, 0x4, 0x2, 0x3, 0x0, 0x0, [0xcf, 0x0]}]}, 0xa, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x300a}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x3009}}, {0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x425}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x1407}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x40d}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x421}}, {0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x300a}}, {0x84, &(0x7f0000000480)=ANY=[@ANYBLOB="8403594efcc845565655aa96f68cc7b793f3f6ac03a886a836fc30f51bbeae9671fdff1cc490f0ffbcab6619270b3115c2c91f8b3f620792da148a2275573fab79da604e5af495a9321f938efd40054dd4190264a457ba2c5c484d69844c1f2d56f2aed6dd28844b4ca87090517ee8f7b82e7d919b9a5d8fb352d85ec3a03c3eeafddabc"]}, {0xb0, &(0x7f0000000540)=@string={0xb0, 0x3, "c0a71bf0834afbeb4673a7ded57d3ffb0cc03c997dc861426b66cb7e53d1b20d9e293b6240b6b160d117a368bfc19d57a25611331d55b9d08a0c4e5a4eb6bf98b4771ff0f8e7888e4b8cd134a67e5afe2de6f407964eab9295c936df6fc865661df1805bb065ad0510141faae3015777df614aeed0280b78d069790257b87449f70e863335007eb9d3da4159f17e5399b4ec2754c09c028bbaea22e93d2c212adb6abea083572ccce83c6427b1f9"}}, {0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x1c20}}]})
wait4(r10, &(0x7f00000003c0), 0x40000000, &(0x7f0000000400))

4.896265151s ago: executing program 0 (id=1055):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)={0x1c, r0, 0x1, 0x80, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (fail_nth: 1)

4.60250544s ago: executing program 0 (id=1058):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)

3.700607232s ago: executing program 0 (id=1063):
r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000242000/0x3000)=nil, 0x3000, 0x6ba6d50efda34f88, 0x1010, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f00000009c0)=@IORING_OP_FADVISE={0x18, 0x6, 0x0, @fd, 0x1, 0x0, 0x2, 0x0, 0x1})
r1 = syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r1, 0x40305652, &(0x7f00000000c0)={0x0, 0x1, 0xffffff45, 0x0, 0x0, 0xfa000, 0x65f40})
r2 = syz_usb_connect(0x0, 0x36, &(0x7f0000000280)={{0x12, 0x1, 0x141, 0xf2, 0xc5, 0x96, 0x20, 0x16d0, 0x10b8, 0xde8e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x2, 0x0, 0x83, 0xec, 0x0, [], [{{0x9, 0x5, 0x6, 0x2, 0x200, 0x2, 0x0, 0xa}}, {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x1, 0x10}}]}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r2, 0x0, 0x0)
syz_usb_control_io(r2, 0x0, &(0x7f0000000780)={0x84, &(0x7f0000000000)=ANY=[@ANYBLOB="f7ffffff0000a583be08a53c9bf9bec073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r2, 0x0, &(0x7f0000000a40)={0x44, &(0x7f0000000840)={0x20, 0xe, 0x28, "f4aacec3362af1dd528df8fecdc4a32736c4c123e97d09406b8983621cf5091465fa0160441ce727"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'geneve0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r3, 0x400454c9, 0xba98575a95aeb70d)
ioctl$SIOCGIFHWADDR(r3, 0x8927, &(0x7f0000000140)={'nicvf0\x00'})
syz_usb_control_io$printer(r2, 0x0, &(0x7f0000000380)={0x34, &(0x7f0000000540)={0x40, 0xe, 0x4, "befabaa1"}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r2, 0x0, &(0x7f0000000580)={0x24, &(0x7f00000001c0)={0x40, 0x0, 0xc, "31601aae5ae3b6469dd1850e"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="4a7a7caf0f0690713cee8b2dc3f1ce1852407a6a8a426097297d5431c998c929bd7d5d1bd75e37be9cfb9c5873daf8aa67a81f6715e496c22c2269ce035e6647f103686f71f3de947988b7d876"], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x4044040)
ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000080)={'veth0_virt_wifi\x00'})
r4 = syz_usb_connect(0x2, 0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000544fb2f00090582eb1000000001020009050276"], 0x0)
syz_usb_control_io$cdc_ecm(r4, &(0x7f0000000180)={0x14, 0x0, &(0x7f0000000000)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f00000002c0), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x8, 0x11012, r5, 0xffffd000)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)
r7 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r6, 0x4004af07, &(0x7f0000000240)=r7)
ioctl$VHOST_SET_VRING_KICK(r6, 0x4008af20, &(0x7f0000000040)={0x1, r7})
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r6, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r6, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$VHOST_SET_VRING_KICK(r6, 0x4008af20, &(0x7f00000001c0)={0x0, r7})

3.650793392s ago: executing program 3 (id=1064):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet6(0xa, 0x800000000000002, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x2000000000903, 0x0, 0x0, 0xfffd}, 0x20)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x814400, &(0x7f0000000100)=ANY=[@ANYBLOB='Gd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(0x0, 0x0, 0x814400, &(0x7f0000000100)=ANY=[@ANYBLOB='Gd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new default trusted:syz -922337'], 0x2d, 0xfffffffffffffff9) (async)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new default trusted:syz -922337'], 0x2d, 0xfffffffffffffff9)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000080)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r1, @ANYBLOB="05"], 0x0)
r2 = dup(r0)
getpeername$packet(r2, 0x0, 0x0) (async)
getpeername$packet(r2, 0x0, 0x0)

3.07861093s ago: executing program 4 (id=1067):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x60080, 0x0)
write$dsp(r0, &(0x7f00000001c0)="5cba91a4", 0xffffffd9) (async)
ioctl$SNDCTL_DSP_RESET(r0, 0x5000, 0x0) (async)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000140)=0xdd2)

3.051939268s ago: executing program 4 (id=1068):
unshare(0x22020600)
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet6(r0, 0x0, 0x0)

3.000911289s ago: executing program 1 (id=1069):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$cdc_ncm(0x0, 0x5, &(0x7f0000000680)=ANY=[], 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$EVIOCRMFF(r0, 0x4004550e, 0x0)

2.936359361s ago: executing program 4 (id=1070):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = getpgid(0x0)
syz_pidfd_open(r1, 0x0)
write(r0, &(0x7f0000000000)="6c917233011c0675df8226658f6c4d214ca538a2adfbe0d9ce37ac1003173b72bec7d11b0546bdd9ef296c6d989d5e35d53f99d3ba74afd38bb1067a7b236e39889f6b3848fef2de748c92cdffb1737df13679dac8d84febb412c89a84a11eb21ef2d77c9b3aefb0157b50fa545f82be4a8c5342247947a22aa6f4b47cd2404559f1dd31b9a87c08a8ac26264ae8802be80cc21f90921deb8225d466224574bce984f71ec1fa", 0xa6)
sendmsg$kcm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000c00)="d800000018007b29e00212ba0d8105040a821800fea08217df31194adc9c0600b80006990600000017000500fe", 0x2d}, {&(0x7f0000000f40)="0137e2a0f6b1317e967020328e8c76da20b23f2fb8aa7aa58c7329481cf2f8c656e1dc04fe4436a2043a692cf1c142c9f31a2917c4ca0c26daa275734d9cbfecabb58cc1187a3735d584bb8dddf8edfd3dab83e3b681c5bb701f6c03f90d895542191a97021cdfbd5c92bff0e9d726506df3a693f5872deec33b55d0ae48cfa5be4012409918350168125326a990621f1acbb3e53b7a6c242a12fa7b5402c47817996a218b6bd44efb4c94", 0xab}], 0x2, 0x0, 0x0, 0x2663}, 0x84)

2.770824265s ago: executing program 4 (id=1071):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='f2fs_direct_IO_enter\x00', 0xffffffffffffffff, 0x0, 0x8}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_dccp(0xa, 0x6, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a0, 0x0, 0x2b8, 0x182, 0x0, 0x0, 0x1d8, 0x3a8, 0x3a8, 0x1d8, 0x3a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xa4, 0xec, 0x0, {0x0, 0xe0ffff00000000}}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xf7db, 'syz1\x00'}}}, {{@uncond, 0x0, 0xa4, 0xec}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x100, 'syz1\x00'}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x2fc)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000006c0)=ANY=[@ANYBLOB, @ANYBLOB="0100000000000000000001000000140002007767320000000000000000000000000006000600224e0000"], 0x30}, 0x1, 0x0, 0x0, 0x4084}, 0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
ioctl$SNDRV_TIMER_IOCTL_START(r2, 0x400454a4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a000000060001"], 0x1c}}, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r4, 0x40505330, &(0x7f0000000bc0)={{0x0, 0x1}, {0xe}, 0x2, 0x0, 0x7f})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000000000000f0070000000900010073797a300000000080000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d3c00128014000180090001006c617374000000000400028010000180090001006c61737400000000140001800c000100636f756e746572000400028008000340000001"], 0xc8}, 0x1, 0x0, 0x0, 0x40000}, 0x20050800)

2.742203863s ago: executing program 4 (id=1072):
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="02c92012000e00050014060a000100080015cc1e"], 0x17)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000400)={{0x1, 0x0, 0xfffffffe}})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x40585414)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f00000000c0)={0x0, 0x7077, 0x80}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000000)={<r4=>0x0, @in6={{0xa, 0x4e23, 0x3, @local, 0x200}}}, &(0x7f00000000c0)=0x84)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x40, 0x1cd)
io_setup(0x3, &(0x7f0000000500)=<r6=>0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = syz_usb_connect$printer(0x6, 0x36, &(0x7f00000001c0)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0xc0, 0x35, [{{0x9, 0x4, 0x0, 0x5, 0x1, 0x7, 0x1, 0x2, 0x80, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0x7, 0x81, 0xaa}}, [{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x0, 0x7, 0x5}}]}}}]}}]}}, &(0x7f0000000a80)={0xa, &(0x7f0000000200)={0xa, 0x6, 0x110, 0xb, 0x6, 0x3, 0xff, 0x6}, 0x104, &(0x7f0000000380)={0x5, 0xf, 0x104, 0x6, [@wireless={0xb, 0x10, 0x1, 0x4, 0x2, 0x9, 0x72, 0xfec3, 0x43}, @generic={0xc7, 0x10, 0xa, "ea52719a01ef4cff1b149a9c3c9eac466ca12a04c7966239cf95e0208279f5c781aa644b02bef89442ef81f7bd1d17f870c6702fe28f49d7ec57af4bd9990df8e5965d18d3475173eaf8bbdb6e238e30e50606fa86e0de9d0eca99643ad139b5a4b1f4694b34f915ad8f5dee8398cb5cd2a39e2afae43f12ead38c44b83cd98214475441d4d3d9802cace252d23d65bd2d46e45c43f03561b2c7de80965d78a4e909706529c9b1b6db78e8457c345d5d0a86a071924c0202e08054e252b1386da941ca63"}, @wireless={0xb, 0x10, 0x1, 0x4, 0x30, 0x7, 0x1, 0x5, 0xe}, @ext_cap={0x7, 0x10, 0x2, 0xa, 0x7, 0x6, 0x1000}, @ptm_cap={0x3}, @ssp_cap={0x18, 0x10, 0xa, 0x1, 0x3, 0x3, 0xf000, 0x0, [0xff00cf, 0xf, 0x0]}]}, 0x5, [{0x86, &(0x7f0000000540)=@string={0x86, 0x3, "96abdfa8237b70d8128b39fdb8b1b0712ccb24b90d1be3398a512e614ef823324fc68a80620c063fb3c18804028261f052af766a4dcc5353c612d97714c710ddc2053db0d2b97ae03abd099df42e52e210cda16cc63c63129c1697f0103354a188c354c1252c73461b737a7fd14eda996510d20d6ba346583a93bf547128e82fffe967d7"}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x40a}}, {0xce, &(0x7f0000000600)=@string={0xce, 0x3, "ceb22b0b9e87530f90876616e3094d17b43eb4395c103ed093294835e5154c3e00f20056393a9ccd30e18edf9154be1ea70908cc4eacc3a37e31cb39194c92576d498ff382618e578112094fa006923cc2187b0b04012cb92345ee856e2a8df703be58ffd72fe30159cb7510e5afdb5e4ab895c7f342bfb70e8558f7db28bc7946d4659bb99a2d9e5c2f52d3d8c599fbe22be408790159ca2356ab324f753265f139299bcd1999a6ed61bff76fd52d9a582f36ef356bae279e6e6aa20fa4efb432c1addb6c052b77344b52ba"}}, {0x4, &(0x7f00000009c0)=@lang_id={0x4, 0x3, 0x83e}}, {0x0, 0x0}]})
syz_usb_control_io$printer(r7, &(0x7f0000000780)={0xc, &(0x7f0000000700)={0x40, 0x9, 0x5f, {0x5f, 0xf, "fb48bed978fba69ab05b8232bda707a9b3fcbc08801614b9d1d4dc2a6bd0477ae5688c199ba9ba65077f87cc6ff83c5c50d7077f69078486cdcf44ede5719d837bdf64b74095b9b0f39181cc96f176b079d4aa47e54ee5b906f9d2fd8e"}}, &(0x7f00000004c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x44b}}}, &(0x7f0000000980)={0x1c, &(0x7f00000007c0)={0x40, 0x6, 0x3a, "a239c166c34ca65bb8ef86f3cef2d1c7b7bb1a7dc949f961f8c5ee5aec0c4239cc2edbc1ccf8021b10e5c85b907923199d64e2496dc11f492efb"}, &(0x7f0000000800)={0x0, 0xa, 0x1, 0xb5}, &(0x7f0000000840)={0x0, 0x8, 0x1, 0x4}, &(0x7f0000000880)={0x20, 0x0, 0x6b, {0x69, "8d3cd0644850a65157aad0ab5dca8a7b2f181d43e9dcd4ec4b3b5ac77292ca5113f3fd38cc2f9931030ede12b1dc863929a7685ac15460e1fee567e987e865028679b3084109acce4f251ed4f0255463ce9a7c49a07feb9a6e50e34973ed0422940b35bccfb990bfc2"}}, &(0x7f0000000900)={0x20, 0x1, 0x1, 0x5}, &(0x7f0000000940)={0x20, 0x0, 0x1}})
r8 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
close(r8)
pselect6(0x40, &(0x7f0000002140)={0x2, 0x433, 0x3c10, 0x6, 0x8, 0x3, 0xffffffffffff7fff, 0x9}, 0x0, &(0x7f00000021c0)={0x9, 0x580000000000000, 0xfffffffffffffffe, 0x3, 0x200, 0xfa58, 0x400, 0x7}, &(0x7f0000002200)={0x0, 0x989680}, 0x0)
io_submit(r6, 0x1, &(0x7f0000000cc0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x32a5, r5, 0x0, 0x0, 0x10, 0x0, 0x2, r5}])
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000100)={r4, 0x6}, &(0x7f0000000140)=0x8)

2.16084403s ago: executing program 1 (id=1073):
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x300, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
r0 = gettid()
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r2, 0x0, {0x0, 0x0, 0x4}, 0x1}, 0x18)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000400)="81b641f1f3843704b6", 0x9}], 0x1}, 0x8000)
r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r3, 0xc01864c6, &(0x7f0000000100)={0x0, 0x0, 0x800, 0x0, <r4=>0xffffffffffffffff})
ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc010643a, &(0x7f0000000080)={0x20000000, 0x3, 0x9})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
ioctl$VHOST_SET_VRING_ERR(r5, 0x4008af22, &(0x7f0000000580)={0x0, r6})
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close_range(r6, r1, 0x0)

2.046687235s ago: executing program 3 (id=1074):
r0 = syz_io_uring_setup(0x23a, &(0x7f00000000c0)={0x0, 0x4533, 0x10100, 0xffffdffe}, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = gettid()
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
capget(&(0x7f0000000140)={0x20080522, r3}, &(0x7f0000000180)={0x3, 0xffffffff, 0x5, 0x80000001, 0x3, 0x5})
io_uring_enter(r0, 0x2ded, 0x4000, 0x26, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRESDEC, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES16=0x0, @ANYRES16=r0, @ANYRESHEX=r1, @ANYRES16=r2], 0x8)

2.011769079s ago: executing program 1 (id=1075):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000006c0)={0x38, r1, 0xc4fc9e906872338b, 0x0, 0x0, {{0x15}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4, 0x3, 0x0, 0x0}]}]}]}]}, 0x38}}, 0x0)

2.003181605s ago: executing program 4 (id=1076):
syz_usb_connect(0x2, 0x2d, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000940))
r2 = getpid()
syz_pidfd_open(r2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$alg(0x26, 0x5, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00'})
sendmsg$nl_generic(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}}, 0x4000)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
recvmmsg(r3, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x8101}, {{0x0, 0x0, 0x0}, 0xc}, {{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f00000000c0)=""/32, 0x20}, {&(0x7f0000000940)=""/4089, 0xff9}, {&(0x7f00000006c0)=""/243, 0xf3}], 0x3}, 0x80000000}], 0x3, 0x20, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000e50000000a20000000000a01010000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000c08000640ffffff0008000340000000084c0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000200003801c0000800800034000000002100002800c00028008000180fffffffb140000001000010000000000000000000084000a"], 0xe0}}, 0x4080)

1.778630929s ago: executing program 1 (id=1077):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0104000000000000ecff1100000008000300", @ANYRES32=r2, @ANYBLOB="0a0006"], 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000003c0)=@newlink={0x44, 0x10, 0x403, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x4, 0x0, 0x300}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x4, 0x8000}, @IFLA_BR_MCAST_IGMP_VERSION={0x5, 0x2b, 0x3}]}}}]}, 0x44}}, 0x0)

1.777871769s ago: executing program 2 (id=1078):
socket$inet6(0xa, 0x4, 0x3ff)
r0 = syz_io_uring_setup(0x7959, &(0x7f0000000000)={0x0, 0x9ee7, 0x8, 0x1, 0x306}, &(0x7f0000000080), &(0x7f00000000c0))
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r1, 0x0, 0xcc, &(0x7f0000000100)={@empty, @multicast1, 0x0, "8cd7b4fbe711c758a45a38676c4ca547d9284e4902801aec09c1a6dfc6d1f353", 0x235, 0xd, 0x8, 0xa82}, 0x3c)
ioctl$SIOCGETSGCNT_IN6(r1, 0x89e1, &(0x7f0000000140)={@remote, @mcast1})
r2 = dup(r0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r3=>0x0})
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f00000001c0)={<r4=>0x0, 0x1}, &(0x7f0000000200)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000240)={r4, 0xa}, 0x8)
r5 = socket$tipc(0x1e, 0x2, 0x0)
ioctl$SIOCGETLINKNAME(r5, 0x89e0, &(0x7f0000000280)={0x2})
r6 = openat$sndseq(0xffffff9c, &(0x7f0000000300), 0x2000)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r6, 0x404c534a, &(0x7f0000000340)={0x6, 0xa1, 0xe})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r6, 0x404c534a, &(0x7f00000003c0)={0x68, 0x8000, 0x5})
r7 = openat$tun(0xffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000480)={'pimreg0\x00', 0x6aca408e769b8244})
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r8, 0x8982, &(0x7f00000004c0)={0x2, 'wlan0\x00', {0x8d4}, 0xa6eb})
r9 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r9, 0x0, 0xc8, &(0x7f0000000500), 0x4)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000940)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000900)={&(0x7f0000000580)=@delchain={0x370, 0x65, 0x4, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x7, 0xffe0}, {0xc, 0xf}, {0x0, 0xfff3}}, [@filter_kind_options=@f_fw={{0x7}, {0x38, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0xffff, 0xffff}}, @TCA_FW_MASK={0x8, 0x5, 0x4}, @TCA_FW_INDEV={0x14, 0x3, 'pimreg0\x00'}, @TCA_FW_MASK={0x8, 0x5, 0x9}, @TCA_FW_MASK={0x8, 0x5, 0x78}]}}, @TCA_RATE={0x6, 0x5, {0x7f, 0xcc}}, @TCA_RATE={0x6, 0x5, {0x2, 0x2}}, @TCA_CHAIN={0x8, 0xb, 0x2}, @TCA_RATE={0x6, 0x5, {0x6}}, @TCA_CHAIN={0x8, 0xb, 0xfffffff9}, @TCA_RATE={0x6, 0x5, {0x10, 0x80}}, @filter_kind_options=@f_basic={{0xa}, {0x2c0, 0x2, [@TCA_BASIC_EMATCHES={0x2b4, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xff}}, @TCA_EMATCH_TREE_LIST={0x20c, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x6, 0x3, 0x8}, {0x3ff, 0x0, 0x9, 0xf47}}}, @TCF_EM_IPT={0xd8, 0x2, 0x0, 0x0, {{0x5, 0x9, 0x3}, [@TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_MATCH_DATA={0xbd, 0x5, "6fe386c43dfc090ad615ab1c52e3cbf4329dda8a79dac6a5fffac986e5438504acea2e9efcec5c506f2825553e1d75d3f336616127d0f2670d4ed9eb128cc4cf778f920c51260e9a2fc9ed515d848c0d70c8d33efe608220a9655cd2a9d8d09fbe4d411e54e3cf4a5d442b19ca094dfbff9fa573fefd5272a449adbc1308a3cc5efab95984cd5f436d79dfc4678ef5264c42beebb608b62742c34c1944c12e888a721c18bead237b917068cbbd8ea05aa8474f4c1acee3c42e"}]}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x8}, {0x6, 0x9, 0x0, 0x1, 0xb, 0x0, 0x1}}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x2b20, 0x7, 0x2}, {{0x3, 0x1, 0x1}, {0x4}}}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x9, 0x3, 0xad08}, {0x3, 0x7, 0x800, 0x2}}}, @TCF_EM_META={0x30, 0x2, 0x0, 0x0, {{0xf, 0x4, 0xb}, [@TCA_EM_META_RVALUE={0x21, 0x3, [@TCF_META_TYPE_INT=0x8, @TCF_META_TYPE_VAR="3b8f09513f", @TCF_META_TYPE_VAR="a7195fd46b3057b71ebb", @TCF_META_TYPE_VAR="c6be16d1106c", @TCF_META_TYPE_INT=0x4]}]}}, @TCF_EM_CONTAINER={0x9c, 0x3, 0x0, 0x0, {{0x5, 0x0, 0x7}, "a973be17937a9dd46222c824f37a675af615ec3604e703f600f177da5c81cb4fde4b19fc287cfbba38fe326103b511046aa117a49c41b6ba5685419e735750f3207e9e6fdada08963aaf06f77c2e93a46e98e788e6ba01eb2cce685ecc8b0b6b8a7653a482a18c91d8663d863ea89774a9d9f432ea9a34ab237d1674fe83b7d0ba882d08b60651d1030e91cb6864e9"}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x94, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0xfff, 0x7, 0x8}, {{0x2}, {0x4, 0x1}}}}, @TCF_EM_IPT={0x18, 0x1, 0x0, 0x0, {{0x0, 0x9, 0x7}, [@TCA_EM_IPT_MATCH_NAME={0xb}]}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0xffff, 0x1, 0x6}, {0x9, 0xffffffff, 0x0, 0x5, 0x9, 0x2, 0x2}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xe647}, {0x1063, 0x7, 0x9, 0x7, 0x9, 0x1, 0x1}}}, @TCF_EM_NBYTE={0x18, 0x1, 0x0, 0x0, {{0x6, 0x2, 0x716}, {0xa, 0x6, 0x2, "a77fd0e62836"}}}, @TCF_EM_U32={0x1c, 0x2, 0x0, 0x0, {{0x101, 0x3, 0x8}, {0x1000, 0x2, 0x5, 0x9}}}]}]}, @TCA_BASIC_CLASSID={0x8, 0x1, {0xffe0, 0x1}}]}}, @TCA_CHAIN={0x8, 0xb, 0x400}, @TCA_CHAIN={0x8, 0xb, 0xfffffff7}]}, 0x370}, 0x1, 0x0, 0x0, 0x4}, 0x44008001)
r11 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000a00)={0x0, r10}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000980)=@bloom_filter={0x1e, 0x400, 0x1, 0x921, 0x10000, r2, 0x400, '\x00', r3, r2, 0x1, 0x4, 0x3, 0xe, @void, @value, @value=r11}, 0x50)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$AUTOFS_IOC_EXPIRE(r12, 0x810c9365, &(0x7f0000000a40)={{0xd, 0x9}, 0x100, './file0\x00'})
getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000b80)={'HL\x00'}, &(0x7f0000000bc0)=0x1e)
fanotify_init(0x0, 0x2)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000c00)={0x0, @rand_addr=0x64010101, 0x4e21, 0x0, 'wrr\x00', 0x8, 0x5, 0x62}, 0x2c)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000c40)=0x80000)

1.410805978s ago: executing program 1 (id=1079):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
syz_open_dev$video(&(0x7f0000000000), 0x200, 0x800)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f00000004c0)=0x27)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000100)={r2, 0xb}, 0x8)

1.211998741s ago: executing program 1 (id=1080):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000000)={'macsec0\x00', 0x100})
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, 0x0)
pipe(&(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r10, &(0x7f00000002c0)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r11, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x880}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=@delchain={0x50, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {0x9, 0xffe0}, {0x10, 0xffff}, {0xffe0}}, [@filter_kind_options=@f_flower={{0xb}, {0x20, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @mcast1}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}]}}]}, 0x50}}, 0x0)
write(r7, &(0x7f0000000340), 0x11000)
vmsplice(r7, &(0x7f0000000280)=[{0x0}], 0x1, 0x0)
r12 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, 0xffffffffffffffff, &(0x7f0000000040))
vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)

1.211338537s ago: executing program 2 (id=1081):
openat$vnet(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
rename(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
socket$rxrpc(0x21, 0x2, 0x2)
r2 = syz_io_uring_setup(0x6d8a, &(0x7f0000000300)={0x0, 0x8a5, 0x10100}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0})
io_uring_enter(r2, 0x2def, 0x4000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r6, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000000)={@host})
userfaultfd(0x80801)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r7, 0x8916, &(0x7f0000000200)={'lo\x00', {0x2, 0x4e23, @broadcast}})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

1.092832493s ago: executing program 3 (id=1082):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x120}}, 0x4)

1.002864376s ago: executing program 3 (id=1083):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
syz_open_dev$video(&(0x7f0000000000), 0x200, 0x800)
fsopen(&(0x7f0000000040)='adfs\x00', 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f00000004c0)=0x27)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000100)={r2, 0xb}, 0x8)

976.742896ms ago: executing program 3 (id=1084):
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000034276d20402003c68e010000000109021200010000000009040001"], 0x0)
write$FUSE_WRITE(0xffffffffffffffff, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x42)
sendfile(r0, r0, 0x0, 0x80000000)
getpgrp(0x0)
statx(0xffffffffffffff9c, &(0x7f0000002340)='./file0\x00', 0x800, 0x100, &(0x7f0000002380))
getresgid(&(0x7f0000002480), &(0x7f00000024c0), &(0x7f0000002500))
geteuid()
read$FUSE(0xffffffffffffffff, &(0x7f00000025c0)={0x2020}, 0x2020)
stat(&(0x7f0000004780)='./file0\x00', &(0x7f00000047c0))
stat(&(0x7f0000004840)='./file0\x00', &(0x7f0000004880))
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000004900))
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000004940)={{{@in, @in=@empty}}, {{@in=@private}, 0x0, @in=@remote}}, &(0x7f0000004b40)=0x125)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000004a80), &(0x7f0000004ac0)=0xc)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f000000e280)={0x2020, 0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000380)={0x50, 0x0, r2, {0x7, 0x29, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x6}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x90, 0x0, 0x0, {0x1, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0xbffffffe, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0xfffffffd, 0xc000, 0x0, r3}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000004b00)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'})
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f0000008280)={0x2020, 0x0, 0x0, <r5=>0x0}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f0000006280)="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", 0x2000, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2000000020, 0xfffffffffffffffd, 0x80000000000, 0x0, 0x10, 0x4, 0x0, 0x8000, 0x2, r5}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
read(r6, 0x0, 0xfffffffffffffffd)

543.070303ms ago: executing program 0 (id=1085):
syz_usb_connect(0x5, 0x24, &(0x7f0000000780)={{0x12, 0x1, 0x0, 0x9, 0xdb, 0x2a, 0x8, 0xbda, 0x8156, 0x2179, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0xfc, 0x0, 0x80, 0x0, [{{0x9, 0x4, 0x70, 0x0, 0x0, 0xbc, 0x3b, 0x3d, 0x57}}]}}]}}, 0x0)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r0, 0x800000010d, 0x2, &(0x7f00000002c0)="922b22c06d", 0x5)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x28, 0x3, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x28}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000ac0)=@newlink={0x1f0, 0x10, 0x49920d862a92153b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x11044}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x2010, 0x20000}}}}}}, @IFLA_VF_PORTS={0x1a0, 0x18, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "a8afd178bfb1a238ff5a8a90ce4d14ef"}, @IFLA_PORT_PROFILE={0x5, 0x2, '\x00'}, @IFLA_PORT_VF={0x8, 0x1, 0x1ff}, @IFLA_PORT_REQUEST={0x5, 0x6, 0xf}]}, {0x60, 0x1, 0x0, 0x1, [@IFLA_PORT_VF={0x8, 0x1, 0x4}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "a59a14d0f953f01fb5281fdace513332"}, @IFLA_PORT_VF={0x8, 0x1, 0xffffffff}, @IFLA_PORT_VF={0x8, 0x1, 0x1}, @IFLA_PORT_PROFILE={0x7, 0x2, '-B\x00'}, @IFLA_PORT_VF={0x8, 0x1, 0x6aad8000}, @IFLA_PORT_PROFILE={0x8, 0x2, '^-(\x00'}, @IFLA_PORT_PROFILE={0x16, 0x2, 'blkio.bfq.sectors\x00'}]}, {0x74, 0x1, 0x0, 0x1, [@IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "24453ba6d3553fea60622f0bb6d298c6"}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "398c986dfa4415614d399c8233107561"}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x6}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "ef46b833d21bc2a8c0f2074fc9f5878d"}, @IFLA_PORT_VF={0x8, 0x1, 0x9}, @IFLA_PORT_VF={0x8, 0x1, 0x4}, @IFLA_PORT_PROFILE={0xc, 0x2, 'syztnl0\x00'}, @IFLA_PORT_PROFILE={0xd, 0x2, 'mptcp_pm\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@IFLA_PORT_VF={0x8, 0x1, 0x7}, @IFLA_PORT_PROFILE={0x11, 0x2, '^\xeb:^/]$-d[\'-\x00'}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x53}]}, {0xc, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5}]}, {0x3c, 0x1, 0x0, 0x1, [@IFLA_PORT_REQUEST={0x5, 0x6, 0x8}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "da1256e1d370da44d82eeeb3df2b6046"}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "1f11fc9af64f4a010d6498043839b9b1"}, @IFLA_PORT_VF={0x8, 0x1, 0x9}]}, {0x28, 0x1, 0x0, 0x1, [@IFLA_PORT_VF={0x8, 0x1, 0x4}, @IFLA_PORT_REQUEST={0x5}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "91743bfdc04c1936fe31c4874868a137"}]}]}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x2ed3d}]}, 0x1f0}, 0x1, 0x0, 0x0, 0x8084}, 0x0)
close(r1)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x9)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendto$inet(r4, &(0x7f0000000040)="a6", 0xffffff4c, 0x0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), r5)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="010000020c00fbdbdf25010000000800020000000000050005000000000008000300010000004800018005000200200000000600010002000000080006000a000000080003"], 0x84}}, 0x0)
r7 = mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r8 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r8, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r8, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000140)="e403402e6d69aa1cef9ef9a6a8a811114a73730561f86ec24fbd20a031516af10645443ba1ea91a31e618c729fb36241fc852cf7795cc3c0d78ae4de1e5110eafba42f764d048680", 0x0, 0x48)
ioctl$UFFDIO_WAKE(r8, 0x8010aa02, &(0x7f0000000080)={&(0x7f0000ffa000/0x2000)=nil, 0x2000})

0s ago: executing program 2 (id=1086):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000000)={'macsec0\x00', 0x100})
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, 0x0)
pipe(&(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r10, &(0x7f00000002c0)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r11, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x880}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=@delchain={0x50, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {0x9, 0xffe0}, {0x10, 0xffff}, {0xffe0}}, [@filter_kind_options=@f_flower={{0xb}, {0x20, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @mcast1}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}]}}]}, 0x50}}, 0x0)
write(r7, &(0x7f0000000340), 0x11000)
vmsplice(r7, &(0x7f0000000280)=[{0x0}], 0x1, 0x0)
r12 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, 0xffffffffffffffff, &(0x7f0000000040))
vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

onfig 0 has an invalid interface number: 184 but max is 0
[  271.008398][  T979] usb 5-1: config 0 has no interface number 0
[  271.014779][  T979] usb 5-1: config 0 interface 184 has no altsetting 0
[  271.029041][  T979] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  271.044368][  T979] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  271.065218][  T979] usb 5-1: Product: syz
[  271.069711][  T979] usb 5-1: Manufacturer: syz
[  271.074582][  T979] usb 5-1: SerialNumber: syz
[  271.093621][  T979] usb 5-1: config 0 descriptor??
[  271.108596][  T979] smsc75xx v1.0.0
[  271.171971][ T8301] Cannot find add_set index 0 as target
[  271.296401][ T8309] netlink: 36 bytes leftover after parsing attributes in process `syz.2.796'.
[  271.312791][ T8309] netlink: 16 bytes leftover after parsing attributes in process `syz.2.796'.
[  271.329186][ T8309] netlink: 36 bytes leftover after parsing attributes in process `syz.2.796'.
[  271.339571][ T8309] netlink: 36 bytes leftover after parsing attributes in process `syz.2.796'.
[  271.515306][ T8311] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  271.532284][ T8311] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  271.835942][   T30] audit: type=1326 audit(1743800778.498:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  271.957331][   T30] audit: type=1326 audit(1743800778.498:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  272.101772][   T30] audit: type=1326 audit(1743800778.498:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=256 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  272.219673][   T30] audit: type=1326 audit(1743800778.498:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  272.301707][   T30] audit: type=1326 audit(1743800778.498:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  272.407790][   T30] audit: type=1326 audit(1743800778.548:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  272.469287][   T30] audit: type=1326 audit(1743800778.548:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  272.541854][   T30] audit: type=1326 audit(1743800778.648:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  272.765541][  T979] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000040: -71
[  272.791650][   T30] audit: type=1326 audit(1743800778.648:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  272.815506][  T979] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Error writing E2P_CMD
[  272.902306][ T5838] hub 3-1:252.112: bad descriptor, ignoring hub
[  272.911768][  T979] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  272.941566][  T979] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  272.951416][ T5838] hub 3-1:252.112: probe with driver hub failed with error -5
[  272.952494][   T30] audit: type=1326 audit(1743800778.648:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.3.808" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  273.032994][  T979] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[  273.082808][ T5838] r8152-cfgselector 3-1: USB disconnect, device number 30
[  273.087729][  T979] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  273.154385][  T979] smsc75xx 5-1:0.184: probe with driver smsc75xx failed with error -71
[  273.253926][  T979] usb 5-1: USB disconnect, device number 16
[  273.968803][ T8321] FAULT_INJECTION: forcing a failure.
[  273.968803][ T8321] name failslab, interval 1, probability 0, space 0, times 0
[  274.010602][ T8333] block device autoloading is deprecated and will be removed.
[  274.021036][ T8321] CPU: 1 UID: 0 PID: 8321 Comm: syz.0.811 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  274.021065][ T8321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  274.021077][ T8321] Call Trace:
[  274.021085][ T8321]  <TASK>
[  274.021093][ T8321]  dump_stack_lvl+0x241/0x360
[  274.021127][ T8321]  ? __pfx_dump_stack_lvl+0x10/0x10
[  274.021154][ T8321]  ? __pfx__printk+0x10/0x10
[  274.021185][ T8321]  ? __pfx___might_resched+0x10/0x10
[  274.021215][ T8321]  should_fail_ex+0x424/0x570
[  274.021241][ T8321]  should_failslab+0xac/0x100
[  274.021270][ T8321]  __kmalloc_noprof+0xdf/0x4d0
[  274.021294][ T8321]  ? kernfs_fop_write_iter+0x15a/0x510
[  274.021324][ T8321]  kernfs_fop_write_iter+0x15a/0x510
[  274.021357][ T8321]  vfs_write+0x70f/0xd10
[  274.021387][ T8321]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  274.021414][ T8321]  ? __pfx_vfs_write+0x10/0x10
[  274.021440][ T8321]  ? __fget_files+0x2a/0x420
[  274.021462][ T8321]  ? __fget_files+0x2a/0x420
[  274.021491][ T8321]  ksys_write+0x19d/0x2d0
[  274.021519][ T8321]  ? __pfx_ksys_write+0x10/0x10
[  274.021544][ T8321]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  274.021565][ T8321]  ? lockdep_hardirqs_on+0x9d/0x150
[  274.021588][ T8321]  __do_fast_syscall_32+0xb4/0x110
[  274.021609][ T8321]  ? exc_page_fault+0x5f8/0x920
[  274.021635][ T8321]  do_fast_syscall_32+0x34/0x80
[  274.021657][ T8321]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  274.021679][ T8321] RIP: 0023:0xf73bd579
[  274.021697][ T8321] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  274.021714][ T8321] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000004
[  274.021737][ T8321] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040
[  274.021750][ T8321] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[  274.021762][ T8321] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  274.021773][ T8321] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  274.021785][ T8321] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  274.021816][ T8321]  </TASK>
[  274.238311][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.299765][ T8337] netlink: 2672 bytes leftover after parsing attributes in process `syz.3.808'.
[  275.321253][ T8339] netlink: 60 bytes leftover after parsing attributes in process `syz.4.814'.
[  275.611690][  T976] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  276.012355][  T976] usb 5-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  276.120029][  T976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.145040][  T976] usb 5-1: config 0 descriptor??
[  276.161049][ T8345] Cannot find add_set index 0 as target
[  276.220947][ T8348] FAULT_INJECTION: forcing a failure.
[  276.220947][ T8348] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  276.242362][ T8348] CPU: 1 UID: 0 PID: 8348 Comm: syz.3.818 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  276.242397][ T8348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  276.242408][ T8348] Call Trace:
[  276.242417][ T8348]  <TASK>
[  276.242426][ T8348]  dump_stack_lvl+0x241/0x360
[  276.242466][ T8348]  ? __pfx_dump_stack_lvl+0x10/0x10
[  276.242490][ T8348]  ? __pfx__printk+0x10/0x10
[  276.242528][ T8348]  should_fail_ex+0x424/0x570
[  276.242553][ T8348]  _copy_from_user+0x2d/0xb0
[  276.242582][ T8348]  get_compat_msghdr+0xb3/0x730
[  276.242613][ T8348]  ? __fget_files+0x2a/0x420
[  276.242633][ T8348]  ? __pfx_get_compat_msghdr+0x10/0x10
[  276.242670][ T8348]  __sys_sendmsg+0x23b/0x360
[  276.242698][ T8348]  ? __pfx___sys_sendmsg+0x10/0x10
[  276.242769][ T8348]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  276.242790][ T8348]  ? lockdep_hardirqs_on+0x9d/0x150
[  276.242815][ T8348]  __do_fast_syscall_32+0xb4/0x110
[  276.242837][ T8348]  ? exc_page_fault+0x5f8/0x920
[  276.242863][ T8348]  do_fast_syscall_32+0x34/0x80
[  276.242886][ T8348]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  276.242908][ T8348] RIP: 0023:0xf7fa3579
[  276.242938][ T8348] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  276.242955][ T8348] RSP: 002b:00000000f50c655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  276.242977][ T8348] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  276.242992][ T8348] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  276.243004][ T8348] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  276.243016][ T8348] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  276.243027][ T8348] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  276.243057][ T8348]  </TASK>
[  276.439295][    C1] vkms_vblank_simulate: vblank timer overrun
[  276.750193][  T976] [drm:udl_init] *ERROR* Selecting channel failed
[  276.852115][  T976] [drm] Initialized udl 0.0.1 for 5-1:0.0 on minor 2
[  276.859129][  T976] [drm] Initialized udl on minor 2
[  276.866125][  T976] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  276.877949][  T976] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  276.905236][   T24] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  276.940969][  T976] usb 5-1: USB disconnect, device number 17
[  276.954386][   T24] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  277.022468][ T8356] FAULT_INJECTION: forcing a failure.
[  277.022468][ T8356] name failslab, interval 1, probability 0, space 0, times 0
[  277.124474][ T8356] CPU: 1 UID: 0 PID: 8356 Comm: syz.2.820 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  277.124504][ T8356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  277.124516][ T8356] Call Trace:
[  277.124525][ T8356]  <TASK>
[  277.124534][ T8356]  dump_stack_lvl+0x241/0x360
[  277.124568][ T8356]  ? __pfx_dump_stack_lvl+0x10/0x10
[  277.124594][ T8356]  ? __pfx__printk+0x10/0x10
[  277.124624][ T8356]  ? __pfx___might_resched+0x10/0x10
[  277.124650][ T8356]  should_fail_ex+0x424/0x570
[  277.124675][ T8356]  should_failslab+0xac/0x100
[  277.124702][ T8356]  __kmalloc_noprof+0xdf/0x4d0
[  277.124723][ T8356]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[  277.124749][ T8356]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  277.124782][ T8356]  tomoyo_realpath_from_path+0xcf/0x5e0
[  277.124829][ T8356]  tomoyo_path_number_perm+0x245/0x790
[  277.124853][ T8356]  ? __lock_acquire+0xad5/0xd80
[  277.124875][ T8356]  ? tomoyo_path_number_perm+0x215/0x790
[  277.124901][ T8356]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  277.124966][ T8356]  ? __fget_files+0x2a/0x420
[  277.124983][ T8356]  ? __fget_files+0x2a/0x420
[  277.125004][ T8356]  ? __fget_files+0x2a/0x420
[  277.125027][ T8356]  security_file_ioctl_compat+0xc6/0x2a0
[  277.125050][ T8356]  __se_compat_sys_ioctl+0xd8/0xc30
[  277.125073][ T8356]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  277.125098][ T8356]  ? __pfx___se_compat_sys_ioctl+0x10/0x10
[  277.125121][ T8356]  ? __fget_files+0x2a/0x420
[  277.125146][ T8356]  ? fput+0x9b/0xd0
[  277.125165][ T8356]  ? ksys_write+0x275/0x2d0
[  277.125197][ T8356]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  277.125218][ T8356]  ? lockdep_hardirqs_on+0x9d/0x150
[  277.125242][ T8356]  __do_fast_syscall_32+0xb4/0x110
[  277.125262][ T8356]  ? exc_page_fault+0x5f8/0x920
[  277.125288][ T8356]  do_fast_syscall_32+0x34/0x80
[  277.125310][ T8356]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  277.125333][ T8356] RIP: 0023:0xf73bd579
[  277.125351][ T8356] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  277.125367][ T8356] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  277.125389][ T8356] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040046109
[  277.125403][ T8356] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  277.125414][ T8356] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  277.125426][ T8356] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  277.125437][ T8356] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  277.125468][ T8356]  </TASK>
[  277.125477][ T8356] ERROR: Out of memory at tomoyo_realpath_from_path.
[  277.160257][ T8362] FAULT_INJECTION: forcing a failure.
[  277.160257][ T8362] name failslab, interval 1, probability 0, space 0, times 0
[  277.471673][ T8362] CPU: 1 UID: 0 PID: 8362 Comm: syz.3.823 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  277.471704][ T8362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  277.471716][ T8362] Call Trace:
[  277.471724][ T8362]  <TASK>
[  277.471733][ T8362]  dump_stack_lvl+0x241/0x360
[  277.471769][ T8362]  ? __pfx_dump_stack_lvl+0x10/0x10
[  277.471795][ T8362]  ? __pfx__printk+0x10/0x10
[  277.471826][ T8362]  ? __pfx___might_resched+0x10/0x10
[  277.471855][ T8362]  should_fail_ex+0x424/0x570
[  277.471881][ T8362]  should_failslab+0xac/0x100
[  277.471909][ T8362]  __kmalloc_noprof+0xdf/0x4d0
[  277.471934][ T8362]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[  277.471961][ T8362]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  277.471994][ T8362]  tomoyo_realpath_from_path+0xcf/0x5e0
[  277.472037][ T8362]  tomoyo_path_number_perm+0x245/0x790
[  277.472070][ T8362]  ? __lock_acquire+0xad5/0xd80
[  277.472099][ T8362]  ? tomoyo_path_number_perm+0x215/0x790
[  277.472125][ T8362]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  277.472167][ T8362]  ? __fget_files+0x2a/0x420
[  277.472177][ T8362]  ? __fget_files+0x2a/0x420
[  277.472189][ T8362]  ? __fget_files+0x2a/0x420
[  277.472202][ T8362]  security_file_ioctl_compat+0xc6/0x2a0
[  277.472217][ T8362]  __se_compat_sys_ioctl+0xd8/0xc30
[  277.472231][ T8362]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  277.472246][ T8362]  ? __pfx___se_compat_sys_ioctl+0x10/0x10
[  277.472260][ T8362]  ? __fget_files+0x2a/0x420
[  277.472274][ T8362]  ? fput+0x9b/0xd0
[  277.472285][ T8362]  ? ksys_write+0x275/0x2d0
[  277.472303][ T8362]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  277.472315][ T8362]  ? lockdep_hardirqs_on+0x9d/0x150
[  277.472329][ T8362]  __do_fast_syscall_32+0xb4/0x110
[  277.472342][ T8362]  ? exc_page_fault+0x5f8/0x920
[  277.472357][ T8362]  do_fast_syscall_32+0x34/0x80
[  277.472371][ T8362]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  277.472384][ T8362] RIP: 0023:0xf7fa3579
[  277.472395][ T8362] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  277.472405][ T8362] RSP: 002b:00000000f50c655c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  277.472421][ T8362] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008955
[  277.472429][ T8362] RDX: 0000000080002500 RSI: 0000000000000000 RDI: 0000000000000000
[  277.472436][ T8362] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  277.472443][ T8362] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  277.472450][ T8362] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  277.472467][ T8362]  </TASK>
[  277.472945][ T8362] ERROR: Out of memory at tomoyo_realpath_from_path.
[  277.551655][ T5896] usb 2-1: new full-speed USB device number 25 using dummy_hcd
[  277.913938][ T5896] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 242, using maximum allowed: 30
[  277.936538][ T5896] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  277.952267][ T5896] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 242
[  277.966213][ T5896] usb 2-1: New USB device found, idVendor=17ef, idProduct=60a3, bcdDevice= 0.00
[  277.975465][ T5896] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.000003][ T5896] usb 2-1: config 0 descriptor??
[  278.131883][ T5838] usb 5-1: new full-speed USB device number 18 using dummy_hcd
[  278.283030][ T5896] usbhid 2-1:0.0: can't add hid device: -71
[  278.289414][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  278.301279][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  278.312920][ T5838] usb 5-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00
[  278.322272][ T5838] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  278.322809][ T5896] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  278.340435][ T5838] usb 5-1: Manufacturer: syz
[  278.348901][ T5838] usb 5-1: config 0 descriptor??
[  278.409277][ T5896] usb 2-1: USB disconnect, device number 25
[  278.537543][   T30] kauditd_printk_skb: 26 callbacks suppressed
[  278.537595][   T30] audit: type=1326 audit(1743800785.198:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000
[  278.580892][ T5153] Bluetooth: hci3: unexpected event for opcode 0x0411
[  278.640660][   T30] audit: type=1326 audit(1743800785.198:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000
[  278.681686][   T30] audit: type=1326 audit(1743800785.238:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=256 compat=1 ip=0xf745d579 code=0x7ffc0000
[  278.814655][   T30] audit: type=1326 audit(1743800785.238:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000
[  278.842171][   T30] audit: type=1326 audit(1743800785.238:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf745d579 code=0x7ffc0000
[  278.864330][   T30] audit: type=1326 audit(1743800785.238:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000
[  278.886381][   T30] audit: type=1326 audit(1743800785.238:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf745d579 code=0x7ffc0000
[  278.910000][ T5838] cougar 0003:060B:700A.0003: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  278.956024][   T30] audit: type=1326 audit(1743800785.258:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000
[  279.046874][   T30] audit: type=1326 audit(1743800785.258:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000
[  279.144517][   T30] audit: type=1326 audit(1743800785.258:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.1.828" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf745d579 code=0x7ffc0000
[  279.158727][ T5838] usb 5-1: USB disconnect, device number 18
[  280.252540][ T8402] netlink: 2672 bytes leftover after parsing attributes in process `syz.1.828'.
[  280.491593][ T8398] netlink: 'syz.4.833': attribute type 10 has an invalid length.
[  280.506299][ T8398] syz_tun: entered promiscuous mode
[  280.569938][ T8398] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  280.931219][ T8406] netlink: 24 bytes leftover after parsing attributes in process `syz.0.834'.
[  281.209212][ T8408] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  281.283177][ T8408] kvm: pic: non byte read
[  281.288053][ T8408] kvm: pic: level sensitive irq not supported
[  281.288113][ T8408] kvm: pic: non byte read
[  281.301106][ T8408] kvm: pic: level sensitive irq not supported
[  281.301229][ T8408] kvm: pic: non byte read
[  282.091726][ T5896] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  282.141726][ T5838] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  282.245167][ T5896] usb 5-1: config 0 has no interfaces?
[  282.251409][ T5896] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  282.305682][ T5838] usb 2-1: Using ep0 maxpacket: 8
[  282.328302][ T5838] usb 2-1: config 252 has an invalid interface number: 112 but max is 0
[  282.331589][ T5896] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.367738][ T5838] usb 2-1: config 252 has no interface number 0
[  282.415907][ T5896] usb 5-1: config 0 descriptor??
[  282.419087][ T5838] usb 2-1: New USB device found, idVendor=0bda, idProduct=8156, bcdDevice=21.79
[  282.474417][ T5838] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.501490][ T5838] usb 2-1: Product: syz
[  282.516441][ T5838] usb 2-1: Manufacturer: syz
[  282.537491][ T5838] usb 2-1: SerialNumber: syz
[  282.560629][ T5838] r8152-cfgselector 2-1: Unknown version 0x0000
[  282.658991][  T979] usb 5-1: USB disconnect, device number 19
[  282.967934][ T8424] netlink: 36 bytes leftover after parsing attributes in process `syz.1.838'.
[  282.997520][ T8424] netlink: 16 bytes leftover after parsing attributes in process `syz.1.838'.
[  283.045609][ T8424] netlink: 36 bytes leftover after parsing attributes in process `syz.1.838'.
[  283.093727][ T8424] netlink: 36 bytes leftover after parsing attributes in process `syz.1.838'.
[  283.281905][ T8448] netlink: 4 bytes leftover after parsing attributes in process `syz.4.845'.
[  283.332358][ T8449] netlink: 4 bytes leftover after parsing attributes in process `syz.4.845'.
[  283.440173][ T8424] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  283.454282][ T8424] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  283.642381][ T8458] FAULT_INJECTION: forcing a failure.
[  283.642381][ T8458] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  283.658868][ T8458] CPU: 0 UID: 0 PID: 8458 Comm: syz.4.846 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  283.658898][ T8458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  283.658909][ T8458] Call Trace:
[  283.658917][ T8458]  <TASK>
[  283.658926][ T8458]  dump_stack_lvl+0x241/0x360
[  283.658962][ T8458]  ? __pfx_dump_stack_lvl+0x10/0x10
[  283.658990][ T8458]  ? __pfx__printk+0x10/0x10
[  283.659027][ T8458]  should_fail_ex+0x424/0x570
[  283.659053][ T8458]  _copy_to_user+0x31/0xb0
[  283.659081][ T8458]  simple_read_from_buffer+0xc4/0x170
[  283.659112][ T8458]  proc_fail_nth_read+0x1ef/0x260
[  283.659136][ T8458]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  283.659160][ T8458]  ? rw_verify_area+0x246/0x630
[  283.659180][ T8458]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  283.659201][ T8458]  vfs_read+0x21f/0xb90
[  283.659227][ T8458]  ? __pfx___mutex_lock+0x10/0x10
[  283.659250][ T8458]  ? __pfx_vfs_read+0x10/0x10
[  283.659274][ T8458]  ? __fget_files+0x2a/0x420
[  283.659294][ T8458]  ? __fget_files+0x39d/0x420
[  283.659310][ T8458]  ? __fget_files+0x2a/0x420
[  283.659338][ T8458]  ksys_read+0x19d/0x2d0
[  283.659362][ T8458]  ? __pfx_ksys_read+0x10/0x10
[  283.659387][ T8458]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  283.659408][ T8458]  ? lockdep_hardirqs_on+0x9d/0x150
[  283.659432][ T8458]  __do_fast_syscall_32+0xb4/0x110
[  283.659452][ T8458]  ? exc_page_fault+0x5f8/0x920
[  283.659477][ T8458]  do_fast_syscall_32+0x34/0x80
[  283.659500][ T8458]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  283.659522][ T8458] RIP: 0023:0xf748d579
[  283.659540][ T8458] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  283.659557][ T8458] RSP: 002b:00000000f5116590 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[  283.659578][ T8458] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5116620
[  283.659591][ T8458] RDX: 000000000000000f RSI: 00000000f747cff4 RDI: 0000000000000000
[  283.659603][ T8458] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  283.659615][ T8458] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  283.659626][ T8458] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  283.659654][ T8458]  </TASK>
[  283.887996][   T24] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  284.021646][   T24] usb 4-1: device descriptor read/64, error -71
[  284.272005][   T24] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  284.481656][   T24] usb 4-1: device descriptor read/64, error -71
[  284.602122][   T24] usb usb4-port1: attempt power cycle
[  284.674867][ T5838] hub 2-1:252.112: bad descriptor, ignoring hub
[  284.697086][ T5838] hub 2-1:252.112: probe with driver hub failed with error -5
[  284.709108][ T8468] FAULT_INJECTION: forcing a failure.
[  284.709108][ T8468] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  284.741801][ T8468] CPU: 1 UID: 0 PID: 8468 Comm: syz.0.851 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  284.741831][ T8468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  284.741842][ T8468] Call Trace:
[  284.741850][ T8468]  <TASK>
[  284.741858][ T8468]  dump_stack_lvl+0x241/0x360
[  284.741892][ T8468]  ? __pfx_dump_stack_lvl+0x10/0x10
[  284.741919][ T8468]  ? __pfx__printk+0x10/0x10
[  284.741957][ T8468]  should_fail_ex+0x424/0x570
[  284.741982][ T8468]  _copy_to_user+0x31/0xb0
[  284.742011][ T8468]  simple_read_from_buffer+0xc4/0x170
[  284.742042][ T8468]  proc_fail_nth_read+0x1ef/0x260
[  284.742067][ T8468]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  284.742097][ T8468]  ? rw_verify_area+0x246/0x630
[  284.742118][ T8468]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  284.742140][ T8468]  vfs_read+0x21f/0xb90
[  284.742167][ T8468]  ? __pfx___mutex_lock+0x10/0x10
[  284.742190][ T8468]  ? __pfx_vfs_read+0x10/0x10
[  284.742215][ T8468]  ? __fget_files+0x2a/0x420
[  284.742235][ T8468]  ? __fget_files+0x39d/0x420
[  284.742251][ T8468]  ? __fget_files+0x2a/0x420
[  284.742279][ T8468]  ksys_read+0x19d/0x2d0
[  284.742304][ T8468]  ? __pfx_ksys_read+0x10/0x10
[  284.742329][ T8468]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  284.742349][ T8468]  ? lockdep_hardirqs_on+0x9d/0x150
[  284.742373][ T8468]  __do_fast_syscall_32+0xb4/0x110
[  284.742394][ T8468]  ? exc_page_fault+0x5f8/0x920
[  284.742420][ T8468]  do_fast_syscall_32+0x34/0x80
[  284.742443][ T8468]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  284.742465][ T8468] RIP: 0023:0xf73bd579
[  284.742482][ T8468] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  284.742499][ T8468] RSP: 002b:00000000f5046590 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[  284.742521][ T8468] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5046620
[  284.742534][ T8468] RDX: 000000000000000f RSI: 00000000f73acff4 RDI: 0000000000000000
[  284.742546][ T8468] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  284.742557][ T8468] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  284.742569][ T8468] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  284.742599][ T8468]  </TASK>
[  285.031780][  T979] usb 5-1: new full-speed USB device number 20 using dummy_hcd
[  285.209735][  T979] usb 5-1: config 0 has an invalid interface number: 19 but max is 0
[  285.232880][ T5838] r8152-cfgselector 2-1: USB disconnect, device number 26
[  285.260096][  T979] usb 5-1: config 0 has no interface number 0
[  285.280386][  T979] usb 5-1: config 0 interface 19 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 28
[  285.311614][   T24] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  285.336589][ T8476] loop8: detected capacity change from 0 to 7
[  285.353466][  T979] usb 5-1: New USB device found, idVendor=0403, idProduct=da70, bcdDevice=6f.f6
[  285.369669][  T979] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  285.382033][ T8476] Dev loop8: unable to read RDB block 7
[  285.394407][ T8476]  loop8: AHDI p1 p3 p4
[  285.419255][  T979] usb 5-1: Product: syz
[  285.431964][ T8476] loop8: partition table partially beyond EOD, truncated
[  285.444912][  T979] usb 5-1: Manufacturer: syz
[  285.461885][  T979] usb 5-1: SerialNumber: syz
[  285.477904][ T8476] loop8: p1 start 975770946 is beyond EOD, truncated
[  285.505413][  T979] usb 5-1: config 0 descriptor??
[  285.524682][ T8476] loop8: p3 start 6514546 is beyond EOD, truncated
[  285.541206][  T979] usb 5-1: NDI device with a latency value of 1
[  285.746773][ T8460] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  285.771709][ T8460] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  285.783653][   T24] usb 4-1: device descriptor read/8, error -71
[  285.880482][  T979] ftdi_sio 5-1:0.19: FTDI USB Serial Device converter detected
[  285.918073][  T979] ftdi_sio ttyUSB0: unknown device type: 0x6ff6
[  285.956679][  T979] usb 5-1: USB disconnect, device number 20
[  285.966600][  T979] ftdi_sio 5-1:0.19: device disconnected
[  286.062789][ T8486] FAULT_INJECTION: forcing a failure.
[  286.062789][ T8486] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  286.078335][ T8486] CPU: 0 UID: 0 PID: 8486 Comm: syz.3.857 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  286.078365][ T8486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  286.078376][ T8486] Call Trace:
[  286.078384][ T8486]  <TASK>
[  286.078392][ T8486]  dump_stack_lvl+0x241/0x360
[  286.078427][ T8486]  ? __pfx_dump_stack_lvl+0x10/0x10
[  286.078454][ T8486]  ? __pfx__printk+0x10/0x10
[  286.078494][ T8486]  should_fail_ex+0x424/0x570
[  286.078521][ T8486]  _copy_from_user+0x2d/0xb0
[  286.078549][ T8486]  sk_getsockopt+0x1d3/0x34f0
[  286.078578][ T8486]  ? __pfx_sk_getsockopt+0x10/0x10
[  286.078599][ T8486]  ? __pfx___might_resched+0x10/0x10
[  286.078641][ T8486]  ? aa_sk_perm+0x96f/0xac0
[  286.078674][ T8486]  ? __pfx_aa_sk_perm+0x10/0x10
[  286.078696][ T8486]  ? __lock_acquire+0xad5/0xd80
[  286.078717][ T8486]  ? aa_sock_opt_perm+0x79/0x120
[  286.078749][ T8486]  do_sock_getsockopt+0x2a0/0x740
[  286.078777][ T8486]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  286.078794][ T8486]  ? __fget_files+0x2a/0x420
[  286.078814][ T8486]  ? __fget_files+0x39d/0x420
[  286.078829][ T8486]  ? __fget_files+0x2a/0x420
[  286.078855][ T8486]  __ia32_sys_getsockopt+0x2a1/0x370
[  286.078883][ T8486]  ? __pfx___ia32_sys_getsockopt+0x10/0x10
[  286.078916][ T8486]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  286.078939][ T8486]  ? lockdep_hardirqs_on+0x9d/0x150
[  286.078963][ T8486]  __do_fast_syscall_32+0xb4/0x110
[  286.078984][ T8486]  ? exc_page_fault+0x5f8/0x920
[  286.079010][ T8486]  do_fast_syscall_32+0x34/0x80
[  286.079032][ T8486]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  286.079052][ T8486] RIP: 0023:0xf7fa3579
[  286.079071][ T8486] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  286.079087][ T8486] RSP: 002b:00000000f50c655c EFLAGS: 00000206 ORIG_RAX: 000000000000016d
[  286.079109][ T8486] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001
[  286.079122][ T8486] RDX: 0000000000000037 RSI: 00000000800004c0 RDI: 00000000800014c0
[  286.079136][ T8486] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  286.079146][ T8486] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  286.079158][ T8486] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  286.079188][ T8486]  </TASK>
[  287.221824][   T24] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  287.296952][   T24] usb 4-1: Using ep0 maxpacket: 32
[  287.334385][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[  287.349999][   T24] usb 4-1: New USB device found, idVendor=2040, idProduct=c603, bcdDevice= 1.8e
[  287.378527][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.463265][   T24] usb 4-1: config 0 descriptor??
[  287.483749][   T24] usb 4-1: dvb_usb_v2: found a 'Hauppauge 126xxx ATSC+' in warm state
[  287.500492][ T8502] FAULT_INJECTION: forcing a failure.
[  287.500492][ T8502] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  287.538650][ T8502] CPU: 0 UID: 0 PID: 8502 Comm: syz.2.862 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  287.538681][ T8502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  287.538693][ T8502] Call Trace:
[  287.538701][ T8502]  <TASK>
[  287.538710][ T8502]  dump_stack_lvl+0x241/0x360
[  287.538745][ T8502]  ? __pfx_dump_stack_lvl+0x10/0x10
[  287.538772][ T8502]  ? __pfx__printk+0x10/0x10
[  287.538814][ T8502]  should_fail_ex+0x424/0x570
[  287.538850][ T8502]  _copy_from_user+0x2d/0xb0
[  287.538877][ T8502]  get_compat_msghdr+0xb3/0x730
[  287.538906][ T8502]  ? __fget_files+0x2a/0x420
[  287.538926][ T8502]  ? __pfx_get_compat_msghdr+0x10/0x10
[  287.538967][ T8502]  __sys_sendmsg+0x23b/0x360
[  287.538996][ T8502]  ? __pfx___sys_sendmsg+0x10/0x10
[  287.539076][ T8502]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  287.539098][ T8502]  ? lockdep_hardirqs_on+0x9d/0x150
[  287.539123][ T8502]  __do_fast_syscall_32+0xb4/0x110
[  287.539144][ T8502]  ? exc_page_fault+0x5f8/0x920
[  287.539171][ T8502]  do_fast_syscall_32+0x34/0x80
[  287.539193][ T8502]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  287.539215][ T8502] RIP: 0023:0xf73bd579
[  287.539232][ T8502] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  287.539247][ T8502] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  287.539271][ T8502] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[  287.539285][ T8502] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  287.539296][ T8502] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  287.539307][ T8502] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  287.539319][ T8502] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  287.539349][ T8502]  </TASK>
[  287.739295][ T8497] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  287.749689][ T8497] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  287.785558][   T24] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  287.867940][   T24] dvbdev: DVB: registering new adapter (Hauppauge 126xxx ATSC+)
[  287.897274][   T24] usb 4-1: media controller created
[  287.990329][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  288.080828][   T24] set interface failed
[  288.081173][   T24] usb 4-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  288.123052][   T24] error writing reg: 0xff, val: 0x00
[  288.223537][   T24] dvb_usb_mxl111sf 4-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  288.271133][   T24] usb 4-1: USB disconnect, device number 36
[  288.570801][ T8519] FAULT_INJECTION: forcing a failure.
[  288.570801][ T8519] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.608104][ T8519] CPU: 1 UID: 0 PID: 8519 Comm: syz.1.870 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  288.608136][ T8519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  288.608148][ T8519] Call Trace:
[  288.608156][ T8519]  <TASK>
[  288.608165][ T8519]  dump_stack_lvl+0x241/0x360
[  288.608202][ T8519]  ? __pfx_dump_stack_lvl+0x10/0x10
[  288.608229][ T8519]  ? __pfx__printk+0x10/0x10
[  288.608269][ T8519]  should_fail_ex+0x424/0x570
[  288.608295][ T8519]  _copy_from_user+0x2d/0xb0
[  288.608324][ T8519]  move_addr_to_kernel+0x7f/0x170
[  288.608351][ T8519]  __sys_bind+0x12e/0x290
[  288.608380][ T8519]  ? __pfx___sys_bind+0x10/0x10
[  288.608403][ T8519]  ? lock_vma_under_rcu+0x1f0/0x9a0
[  288.608454][ T8519]  __ia32_sys_bind+0x7a/0x90
[  288.608483][ T8519]  __do_fast_syscall_32+0xb4/0x110
[  288.608512][ T8519]  ? exc_page_fault+0x5f8/0x920
[  288.608540][ T8519]  do_fast_syscall_32+0x34/0x80
[  288.608562][ T8519]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  288.608585][ T8519] RIP: 0023:0xf745d579
[  288.608604][ T8519] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  288.608622][ T8519] RSP: 002b:00000000f50e655c EFLAGS: 00000206 ORIG_RAX: 0000000000000169
[  288.608644][ T8519] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  288.608658][ T8519] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[  288.608671][ T8519] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  288.608681][ T8519] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  288.608692][ T8519] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  288.608720][ T8519]  </TASK>
[  289.051969][ T8523] random: crng reseeded on system resumption
[  290.414821][ T8552] FAULT_INJECTION: forcing a failure.
[  290.414821][ T8552] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  290.461691][ T8552] CPU: 1 UID: 0 PID: 8552 Comm: syz.3.878 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  290.461723][ T8552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  290.461736][ T8552] Call Trace:
[  290.461743][ T8552]  <TASK>
[  290.461752][ T8552]  dump_stack_lvl+0x241/0x360
[  290.461788][ T8552]  ? __pfx_dump_stack_lvl+0x10/0x10
[  290.461815][ T8552]  ? __pfx__printk+0x10/0x10
[  290.461857][ T8552]  should_fail_ex+0x424/0x570
[  290.461882][ T8552]  _copy_from_user+0x2d/0xb0
[  290.461910][ T8552]  __sys_bpf+0x1c5/0x8b0
[  290.461941][ T8552]  ? __pfx___sys_bpf+0x10/0x10
[  290.461975][ T8552]  ? ksys_write+0x275/0x2d0
[  290.462011][ T8552]  __ia32_sys_bpf+0x7c/0x90
[  290.462041][ T8552]  __do_fast_syscall_32+0xb4/0x110
[  290.462068][ T8552]  ? exc_page_fault+0x5f8/0x920
[  290.462095][ T8552]  do_fast_syscall_32+0x34/0x80
[  290.462118][ T8552]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  290.462149][ T8552] RIP: 0023:0xf7fa3579
[  290.462167][ T8552] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  290.462184][ T8552] RSP: 002b:00000000f50a555c EFLAGS: 00000206 ORIG_RAX: 0000000000000165
[  290.462206][ T8552] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000080
[  290.462220][ T8552] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[  290.462232][ T8552] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  290.462244][ T8552] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  290.462256][ T8552] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  290.462285][ T8552]  </TASK>
[  291.297884][ T8561] netlink: 12 bytes leftover after parsing attributes in process `syz.3.880'.
[  292.493382][ T8577] FAULT_INJECTION: forcing a failure.
[  292.493382][ T8577] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.541067][ T8577] CPU: 0 UID: 0 PID: 8577 Comm: syz.3.885 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  292.541098][ T8577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  292.541110][ T8577] Call Trace:
[  292.541118][ T8577]  <TASK>
[  292.541126][ T8577]  dump_stack_lvl+0x241/0x360
[  292.541163][ T8577]  ? __pfx_dump_stack_lvl+0x10/0x10
[  292.541190][ T8577]  ? __pfx__printk+0x10/0x10
[  292.541231][ T8577]  should_fail_ex+0x424/0x570
[  292.541258][ T8577]  _copy_from_user+0x2d/0xb0
[  292.541286][ T8577]  get_compat_msghdr+0xb3/0x730
[  292.541316][ T8577]  ? __fget_files+0x2a/0x420
[  292.541336][ T8577]  ? __pfx_get_compat_msghdr+0x10/0x10
[  292.541383][ T8577]  do_recvmmsg+0x4d5/0xab0
[  292.541418][ T8577]  ? __pfx_do_recvmmsg+0x10/0x10
[  292.541464][ T8577]  ? rcu_read_lock_any_held+0xbb/0x160
[  292.541507][ T8577]  ? ksys_write+0x24e/0x2d0
[  292.541555][ T8577]  __sys_recvmmsg+0x1aa/0x280
[  292.541575][ T8577]  ? fput+0x9b/0xd0
[  292.541591][ T8577]  ? __pfx___sys_recvmmsg+0x10/0x10
[  292.541608][ T8577]  ? ksys_write+0x275/0x2d0
[  292.541638][ T8577]  __ia32_compat_sys_recvmmsg_time32+0xbf/0xd0
[  292.541671][ T8577]  __do_fast_syscall_32+0xb4/0x110
[  292.541693][ T8577]  ? exc_page_fault+0x5f8/0x920
[  292.541720][ T8577]  do_fast_syscall_32+0x34/0x80
[  292.541743][ T8577]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  292.541765][ T8577] RIP: 0023:0xf7fa3579
[  292.541781][ T8577] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  292.541798][ T8577] RSP: 002b:00000000f50c655c EFLAGS: 00000206 ORIG_RAX: 0000000000000151
[  292.541828][ T8577] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800086c0
[  292.541841][ T8577] RDX: 0000000000000004 RSI: 0000000000000020 RDI: 0000000000000000
[  292.541853][ T8577] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  292.541864][ T8577] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  292.541873][ T8577] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  292.541901][ T8577]  </TASK>
[  292.750566][    C0] vkms_vblank_simulate: vblank timer overrun
[  293.191658][  T979] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  293.355671][  T979] usb 3-1: device descriptor read/64, error -71
[  293.639275][  T979] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  293.841906][  T979] usb 3-1: device descriptor read/64, error -71
[  293.952390][  T979] usb usb3-port1: attempt power cycle
[  294.311692][  T979] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  294.332324][  T979] usb 3-1: device descriptor read/8, error -71
[  294.581701][  T979] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  294.617191][  T979] usb 3-1: device descriptor read/8, error -71
[  294.742637][  T979] usb usb3-port1: unable to enumerate USB device
[  294.863568][ T8607] netlink: 8 bytes leftover after parsing attributes in process `syz.4.893'.
[  294.876462][ T8607] netlink: 12 bytes leftover after parsing attributes in process `syz.4.893'.
[  294.933201][ T8610] FAULT_INJECTION: forcing a failure.
[  294.933201][ T8610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  294.947207][ T8610] CPU: 1 UID: 0 PID: 8610 Comm: syz.4.894 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  294.947236][ T8610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  294.947247][ T8610] Call Trace:
[  294.947256][ T8610]  <TASK>
[  294.947265][ T8610]  dump_stack_lvl+0x241/0x360
[  294.947297][ T8610]  ? __pfx_dump_stack_lvl+0x10/0x10
[  294.947322][ T8610]  ? __pfx__printk+0x10/0x10
[  294.947360][ T8610]  should_fail_ex+0x424/0x570
[  294.947386][ T8610]  _copy_from_user+0x2d/0xb0
[  294.947411][ T8610]  get_compat_msghdr+0xb3/0x730
[  294.947439][ T8610]  ? __fget_files+0x2a/0x420
[  294.947457][ T8610]  ? __pfx_get_compat_msghdr+0x10/0x10
[  294.947495][ T8610]  __sys_sendmsg+0x23b/0x360
[  294.947519][ T8610]  ? __pfx___sys_sendmsg+0x10/0x10
[  294.947593][ T8610]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  294.947614][ T8610]  ? lockdep_hardirqs_on+0x9d/0x150
[  294.947639][ T8610]  __do_fast_syscall_32+0xb4/0x110
[  294.947660][ T8610]  ? exc_page_fault+0x5f8/0x920
[  294.947686][ T8610]  do_fast_syscall_32+0x34/0x80
[  294.947709][ T8610]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  294.947731][ T8610] RIP: 0023:0xf748d579
[  294.947749][ T8610] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  294.947764][ T8610] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  294.947788][ T8610] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  294.947801][ T8610] RDX: 0000000004000044 RSI: 0000000000000000 RDI: 0000000000000000
[  294.947813][ T8610] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  294.947824][ T8610] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  294.947847][ T8610] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  294.947877][ T8610]  </TASK>
[  295.637252][ T8617] FAULT_INJECTION: forcing a failure.
[  295.637252][ T8617] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  295.662115][ T8617] CPU: 1 UID: 0 PID: 8617 Comm: syz.1.897 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  295.662151][ T8617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  295.662163][ T8617] Call Trace:
[  295.662171][ T8617]  <TASK>
[  295.662180][ T8617]  dump_stack_lvl+0x241/0x360
[  295.662228][ T8617]  ? __pfx_dump_stack_lvl+0x10/0x10
[  295.662254][ T8617]  ? __pfx__printk+0x10/0x10
[  295.662294][ T8617]  should_fail_ex+0x424/0x570
[  295.662322][ T8617]  _copy_from_user+0x2d/0xb0
[  295.662352][ T8617]  get_old_timespec32+0x115/0x280
[  295.662378][ T8617]  ? __pfx_get_old_timespec32+0x10/0x10
[  295.662397][ T8617]  ? __fget_files+0x2a/0x420
[  295.662426][ T8617]  __sys_recvmmsg+0xfe/0x280
[  295.662449][ T8617]  ? fput+0x9b/0xd0
[  295.662467][ T8617]  ? __pfx___sys_recvmmsg+0x10/0x10
[  295.662483][ T8617]  ? ksys_write+0x275/0x2d0
[  295.662515][ T8617]  __ia32_compat_sys_recvmmsg_time32+0xbf/0xd0
[  295.662551][ T8617]  __do_fast_syscall_32+0xb4/0x110
[  295.662574][ T8617]  ? exc_page_fault+0x5f8/0x920
[  295.662599][ T8617]  do_fast_syscall_32+0x34/0x80
[  295.662620][ T8617]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  295.662642][ T8617] RIP: 0023:0xf745d579
[  295.662660][ T8617] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  295.662677][ T8617] RSP: 002b:00000000f50e655c EFLAGS: 00000206 ORIG_RAX: 0000000000000151
[  295.662700][ T8617] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800037c0
[  295.662714][ T8617] RDX: 00000000000003b4 RSI: 0000000000000000 RDI: 0000000080003700
[  295.662726][ T8617] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  295.662737][ T8617] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  295.662748][ T8617] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  295.662778][ T8617]  </TASK>
[  296.298434][ T8633] FAULT_INJECTION: forcing a failure.
[  296.298434][ T8633] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  296.313749][ T8633] CPU: 1 UID: 0 PID: 8633 Comm: syz.0.902 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  296.313779][ T8633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  296.313786][ T8633] Call Trace:
[  296.313794][ T8633]  <TASK>
[  296.313800][ T8633]  dump_stack_lvl+0x241/0x360
[  296.313829][ T8633]  ? __pfx_dump_stack_lvl+0x10/0x10
[  296.313846][ T8633]  ? __pfx__printk+0x10/0x10
[  296.313868][ T8633]  should_fail_ex+0x424/0x570
[  296.313885][ T8633]  _copy_from_user+0x2d/0xb0
[  296.313903][ T8633]  get_old_timespec32+0x115/0x280
[  296.313918][ T8633]  ? __pfx_get_old_timespec32+0x10/0x10
[  296.313929][ T8633]  ? __fget_files+0x2a/0x420
[  296.313945][ T8633]  __sys_recvmmsg+0xfe/0x280
[  296.313958][ T8633]  ? fput+0x9b/0xd0
[  296.313969][ T8633]  ? __pfx___sys_recvmmsg+0x10/0x10
[  296.313979][ T8633]  ? ksys_write+0x275/0x2d0
[  296.313997][ T8633]  __ia32_compat_sys_recvmmsg_time32+0xbf/0xd0
[  296.314018][ T8633]  __do_fast_syscall_32+0xb4/0x110
[  296.314031][ T8633]  ? exc_page_fault+0x5f8/0x920
[  296.314047][ T8633]  do_fast_syscall_32+0x34/0x80
[  296.314067][ T8633]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  296.314081][ T8633] RIP: 0023:0xf73bd579
[  296.314092][ T8633] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  296.314102][ T8633] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000151
[  296.314116][ T8633] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800037c0
[  296.314124][ T8633] RDX: 00000000000003b4 RSI: 0000000000000000 RDI: 0000000080003700
[  296.314131][ T8633] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  296.314138][ T8633] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  296.314145][ T8633] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  296.314161][ T8633]  </TASK>
[  296.711641][  T976] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  296.847231][   T30] kauditd_printk_skb: 31 callbacks suppressed
[  296.847256][   T30] audit: type=1400 audit(1743800803.508:121): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=8638 comm="syz.4.904"
[  296.881944][ T8639] netlink: 16 bytes leftover after parsing attributes in process `syz.4.904'.
[  296.937002][  T976] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  296.949248][  T976] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.958447][  T976] usb 3-1: Product: syz
[  296.976262][  T976] usb 3-1: Manufacturer: syz
[  296.993799][  T976] usb 3-1: SerialNumber: syz
[  297.010673][  T976] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  297.092373][ T5838] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  297.429263][ T8647] FAULT_INJECTION: forcing a failure.
[  297.429263][ T8647] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.464496][  T976] usb 3-1: USB disconnect, device number 35
[  297.490467][ T8647] CPU: 0 UID: 0 PID: 8647 Comm: syz.4.907 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  297.490504][ T8647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  297.490516][ T8647] Call Trace:
[  297.490524][ T8647]  <TASK>
[  297.490533][ T8647]  dump_stack_lvl+0x241/0x360
[  297.490571][ T8647]  ? __pfx_dump_stack_lvl+0x10/0x10
[  297.490599][ T8647]  ? __pfx__printk+0x10/0x10
[  297.490638][ T8647]  should_fail_ex+0x424/0x570
[  297.490666][ T8647]  strncpy_from_user+0x36/0x280
[  297.490690][ T8647]  __se_sys_prctl+0xed1/0x4190
[  297.490713][ T8647]  ? page_table_check_set+0x164/0x700
[  297.490736][ T8647]  ? page_table_check_set+0x4d2/0x700
[  297.490758][ T8647]  ? page_table_check_set+0x164/0x700
[  297.490793][ T8647]  ? _parse_integer_limit+0x1b4/0x200
[  297.490823][ T8647]  ? kstrtoull+0x1d3/0x2f0
[  297.490845][ T8647]  ? __pfx_kstrtoull+0x10/0x10
[  297.490866][ T8647]  ? __pfx___se_sys_prctl+0x10/0x10
[  297.490896][ T8647]  ? kstrtouint+0xfc/0x190
[  297.490923][ T8647]  ? __lock_acquire+0xad5/0xd80
[  297.490974][ T8647]  ? rcu_read_lock_any_held+0xbb/0x160
[  297.490999][ T8647]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  297.491027][ T8647]  ? vfs_write+0xb29/0xd10
[  297.491060][ T8647]  ? ksys_write+0x24e/0x2d0
[  297.491085][ T8647]  ? __mutex_unlock_slowpath+0x229/0x800
[  297.491120][ T8647]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  297.491141][ T8647]  ? __fget_files+0x2a/0x420
[  297.491171][ T8647]  ? __fget_files+0x2a/0x420
[  297.491195][ T8647]  ? fput+0x9b/0xd0
[  297.491213][ T8647]  ? ksys_write+0x275/0x2d0
[  297.491243][ T8647]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  297.491264][ T8647]  ? lockdep_hardirqs_on+0x9d/0x150
[  297.491282][ T8647]  ? __ia32_sys_prctl+0x20/0xc0
[  297.491303][ T8647]  __do_fast_syscall_32+0xb4/0x110
[  297.491325][ T8647]  ? exc_page_fault+0x5f8/0x920
[  297.491350][ T8647]  do_fast_syscall_32+0x34/0x80
[  297.491373][ T8647]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  297.491396][ T8647] RIP: 0023:0xf748d579
[  297.491414][ T8647] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  297.491432][ T8647] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 00000000000000ac
[  297.491457][ T8647] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 0000000080000040
[  297.491471][ T8647] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  297.491483][ T8647] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  297.491495][ T8647] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  297.491504][ T8647] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  297.491530][ T8647]  </TASK>
[  298.202352][ T5838] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  298.224199][ T5838] ath9k_htc: Failed to initialize the device
[  298.257816][ T8658] netlink: 304 bytes leftover after parsing attributes in process `syz.4.910'.
[  298.261374][  T976] usb 3-1: ath9k_htc: USB layer deinitialized
[  298.323295][ T8661] FAULT_INJECTION: forcing a failure.
[  298.323295][ T8661] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  298.358924][ T8661] CPU: 0 UID: 0 PID: 8661 Comm: syz.0.911 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  298.358957][ T8661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  298.358969][ T8661] Call Trace:
[  298.358978][ T8661]  <TASK>
[  298.358987][ T8661]  dump_stack_lvl+0x241/0x360
[  298.359023][ T8661]  ? __pfx_dump_stack_lvl+0x10/0x10
[  298.359050][ T8661]  ? __pfx__printk+0x10/0x10
[  298.359089][ T8661]  should_fail_ex+0x424/0x570
[  298.359127][ T8661]  _copy_to_user+0x31/0xb0
[  298.359157][ T8661]  simple_read_from_buffer+0xc4/0x170
[  298.359191][ T8661]  proc_fail_nth_read+0x1ef/0x260
[  298.359216][ T8661]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  298.359241][ T8661]  ? rw_verify_area+0x246/0x630
[  298.359263][ T8661]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  298.359284][ T8661]  vfs_read+0x21f/0xb90
[  298.359311][ T8661]  ? __pfx___mutex_lock+0x10/0x10
[  298.359335][ T8661]  ? __pfx_vfs_read+0x10/0x10
[  298.359360][ T8661]  ? __fget_files+0x2a/0x420
[  298.359381][ T8661]  ? __fget_files+0x39d/0x420
[  298.359396][ T8661]  ? __fget_files+0x2a/0x420
[  298.359424][ T8661]  ksys_read+0x19d/0x2d0
[  298.359448][ T8661]  ? __pfx_ksys_read+0x10/0x10
[  298.359470][ T8661]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  298.359491][ T8661]  ? lockdep_hardirqs_on+0x9d/0x150
[  298.359516][ T8661]  __do_fast_syscall_32+0xb4/0x110
[  298.359538][ T8661]  ? exc_page_fault+0x5f8/0x920
[  298.359564][ T8661]  do_fast_syscall_32+0x34/0x80
[  298.359586][ T8661]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  298.359609][ T8661] RIP: 0023:0xf73bd579
[  298.359627][ T8661] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  298.359644][ T8661] RSP: 002b:00000000f5046590 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[  298.359667][ T8661] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5046620
[  298.359681][ T8661] RDX: 000000000000000f RSI: 00000000f73acff4 RDI: 0000000000000000
[  298.359692][ T8661] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  298.359703][ T8661] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  298.359714][ T8661] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  298.359750][ T8661]  </TASK>
[  299.042192][ T5838] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  299.113906][ T8672] veth1_macvtap: left promiscuous mode
[  299.120444][ T8672] macsec0: entered promiscuous mode
[  299.141713][ T8672] netlink: 24 bytes leftover after parsing attributes in process `syz.2.915'.
[  299.426517][ T5838] usb 4-1: Using ep0 maxpacket: 32
[  299.440413][ T5838] usb 4-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  299.451829][ T5838] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  299.468120][ T5838] usb 4-1: config 0 descriptor??
[  299.488540][ T5838] gspca_main: sq930x-2.14.0 probing 041e:403c
[  299.499586][   T30] audit: type=1326 audit(1743800805.978:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8673 comm="syz.4.917" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748d579 code=0x7ffc0000
[  299.553883][   T30] audit: type=1326 audit(1743800805.978:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8673 comm="syz.4.917" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748d579 code=0x7ffc0000
[  299.583302][ T8681] netlink: 8 bytes leftover after parsing attributes in process `syz.1.916'.
[  299.608240][   T30] audit: type=1326 audit(1743800806.078:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8673 comm="syz.4.917" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf748d579 code=0x7ffc0000
[  299.625851][ T8681] netlink: 8 bytes leftover after parsing attributes in process `syz.1.916'.
[  299.650451][   T30] audit: type=1326 audit(1743800806.078:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8673 comm="syz.4.917" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748d579 code=0x7ffc0000
[  299.706396][   T30] audit: type=1326 audit(1743800806.078:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8673 comm="syz.4.917" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748d579 code=0x7ffc0000
[  299.730969][   T30] audit: type=1326 audit(1743800806.078:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8673 comm="syz.4.917" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf748d579 code=0x7ffc0000
[  299.754314][   T30] audit: type=1326 audit(1743800806.078:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8673 comm="syz.4.917" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf748d579 code=0x7ffc0000
[  299.811199][   T30] audit: type=1326 audit(1743800806.078:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8673 comm="syz.4.917" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf748d579 code=0x7ffc0000
[  299.981904][   T30] audit: type=1326 audit(1743800806.078:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8673 comm="syz.4.917" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf748d579 code=0x7ffc0000
[  300.238078][ T8689] veth1_macvtap: left promiscuous mode
[  300.265527][ T8689] macsec0: entered promiscuous mode
[  300.306415][ T8665] netlink: 28 bytes leftover after parsing attributes in process `syz.3.913'.
[  300.376685][ T5838] gspca_sq930x: reg_w 0105 bf00 failed -71
[  300.441700][ T5838] sq930x 4-1:0.0: probe with driver sq930x failed with error -71
[  300.468567][ T5838] usb 4-1: USB disconnect, device number 37
[  300.486460][ T5946] udevd[5946]: setting mode of /dev/bus/usb/004/037 to 020664 failed: No such file or directory
[  300.507585][ T8689] netlink: 24 bytes leftover after parsing attributes in process `syz.4.918'.
[  300.528078][ T5946] udevd[5946]: setting owner of /dev/bus/usb/004/037 to uid=0, gid=0 failed: No such file or directory
[  300.621730][   T24] usb 2-1: new full-speed USB device number 27 using dummy_hcd
[  300.762055][   T24] usb 2-1: device descriptor read/64, error -71
[  300.774596][ T8699] FAULT_INJECTION: forcing a failure.
[  300.774596][ T8699] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  300.798319][ T8699] CPU: 1 UID: 0 PID: 8699 Comm: syz.2.921 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  300.798349][ T8699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  300.798362][ T8699] Call Trace:
[  300.798370][ T8699]  <TASK>
[  300.798380][ T8699]  dump_stack_lvl+0x241/0x360
[  300.798415][ T8699]  ? __pfx_dump_stack_lvl+0x10/0x10
[  300.798441][ T8699]  ? __pfx__printk+0x10/0x10
[  300.798481][ T8699]  should_fail_ex+0x424/0x570
[  300.798507][ T8699]  _copy_from_user+0x2d/0xb0
[  300.798535][ T8699]  get_compat_msghdr+0xb3/0x730
[  300.798564][ T8699]  ? __fget_files+0x2a/0x420
[  300.798585][ T8699]  ? __pfx_get_compat_msghdr+0x10/0x10
[  300.798625][ T8699]  do_recvmmsg+0x4d5/0xab0
[  300.798659][ T8699]  ? __pfx_do_recvmmsg+0x10/0x10
[  300.798705][ T8699]  ? rcu_read_lock_any_held+0xbb/0x160
[  300.798749][ T8699]  ? ksys_write+0x24e/0x2d0
[  300.798803][ T8699]  __sys_recvmmsg+0x1aa/0x280
[  300.798824][ T8699]  ? fput+0x9b/0xd0
[  300.798840][ T8699]  ? __pfx___sys_recvmmsg+0x10/0x10
[  300.798858][ T8699]  ? ksys_write+0x275/0x2d0
[  300.798890][ T8699]  __ia32_compat_sys_recvmmsg_time32+0xbf/0xd0
[  300.798922][ T8699]  __do_fast_syscall_32+0xb4/0x110
[  300.798943][ T8699]  ? exc_page_fault+0x5f8/0x920
[  300.798970][ T8699]  do_fast_syscall_32+0x34/0x80
[  300.798991][ T8699]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  300.799021][ T8699] RIP: 0023:0xf73bd579
[  300.799035][ T8699] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  300.799049][ T8699] RSP: 002b:00000000f500455c EFLAGS: 00000206 ORIG_RAX: 0000000000000151
[  300.799066][ T8699] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800034c0
[  300.799077][ T8699] RDX: 000000000000013c RSI: 0000000000000700 RDI: 0000000000000000
[  300.799087][ T8699] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  300.799096][ T8699] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  300.799104][ T8699] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  300.799127][ T8699]  </TASK>
[  301.371660][   T24] usb 2-1: new full-speed USB device number 28 using dummy_hcd
[  301.521677][   T24] usb 2-1: device descriptor read/64, error -71
[  301.541634][  T976] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  301.632081][   T24] usb usb2-port1: attempt power cycle
[  301.695690][  T976] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  301.718437][  T976] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.747815][  T976] usb 4-1: config 0 descriptor??
[  301.769705][  T976] cp210x 4-1:0.0: cp210x converter detected
[  301.984148][   T24] usb 2-1: new full-speed USB device number 29 using dummy_hcd
[  302.004388][  T976] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: -121
[  302.014244][   T24] usb 2-1: device descriptor read/8, error -71
[  302.023152][  T976] cp210x 4-1:0.0: querying part number failed
[  302.045624][  T976] usb 4-1: cp210x converter now attached to ttyUSB0
[  302.053209][ T8714] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  302.277470][   T24] usb 2-1: new full-speed USB device number 30 using dummy_hcd
[  302.312537][   T24] usb 2-1: device descriptor read/8, error -71
[  302.438339][   T24] usb usb2-port1: unable to enumerate USB device
[  303.181620][   T10] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  303.332678][   T10] usb 5-1: Using ep0 maxpacket: 32
[  303.339724][   T10] usb 5-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  303.349995][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.387012][   T10] usb 5-1: config 0 descriptor??
[  303.398705][   T10] gspca_main: nw80x-2.14.0 probing 055f:d001
[  303.429748][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  303.429797][   T30] audit: type=1400 audit(1743800810.088:161): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=8724 comm="syz.1.930"
[  303.439771][ T8725] netlink: 16 bytes leftover after parsing attributes in process `syz.1.930'.
[  304.051653][  T976] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  304.202743][  T976] usb 2-1: too many configurations: 89, using maximum allowed: 8
[  304.215628][  T976] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  304.229445][  T976] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  304.245637][  T976] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  304.257160][  T976] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  304.269066][  T976] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  304.281007][  T976] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  304.293517][  T976] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  304.320713][  T976] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  304.336140][  T976] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  304.359709][   T24] usb 4-1: USB disconnect, device number 38
[  304.366556][  T976] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.388729][   T24] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  304.408899][  T976] usb 2-1: Product: syz
[  304.429009][   T24] cp210x 4-1:0.0: device disconnected
[  304.437289][  T976] usb 2-1: Manufacturer: syz
[  304.449707][  T976] usb 2-1: SerialNumber: syz
[  304.469008][ T8729] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  304.480341][  T976] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  304.505404][ T5838] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  304.911932][   T10] gspca_nw80x: reg_w err -110
[  304.912029][   T10] nw80x 5-1:0.0: probe with driver nw80x failed with error -110
[  305.030028][ T5153] Bluetooth: hci3: ACL packet for unknown connection handle 0
[  305.072552][   T24] usb 2-1: USB disconnect, device number 31
[  305.253790][ T8736] netlink: 24 bytes leftover after parsing attributes in process `syz.2.934'.
[  305.655894][ T8741] FAULT_INJECTION: forcing a failure.
[  305.655894][ T8741] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  305.717779][ T8741] CPU: 0 UID: 0 PID: 8741 Comm: syz.0.936 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  305.717814][ T8741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  305.717827][ T8741] Call Trace:
[  305.717836][ T8741]  <TASK>
[  305.717846][ T8741]  dump_stack_lvl+0x241/0x360
[  305.717883][ T8741]  ? __pfx_dump_stack_lvl+0x10/0x10
[  305.717911][ T8741]  ? __pfx__printk+0x10/0x10
[  305.717949][ T8741]  should_fail_ex+0x424/0x570
[  305.717976][ T8741]  _copy_to_user+0x31/0xb0
[  305.718006][ T8741]  simple_read_from_buffer+0xc4/0x170
[  305.718039][ T8741]  proc_fail_nth_read+0x1ef/0x260
[  305.718064][ T8741]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  305.718088][ T8741]  ? rw_verify_area+0x246/0x630
[  305.718118][ T8741]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  305.718140][ T8741]  vfs_read+0x21f/0xb90
[  305.718172][ T8741]  ? __pfx_vfs_read+0x10/0x10
[  305.718199][ T8741]  ? __pfx_do_sendfile+0x10/0x10
[  305.718227][ T8741]  ? __pfx_handle_mm_fault+0x10/0x10
[  305.718256][ T8741]  ? lock_vma_under_rcu+0x1f0/0x9a0
[  305.718290][ T8741]  ksys_read+0x19d/0x2d0
[  305.718314][ T8741]  ? __pfx_ksys_read+0x10/0x10
[  305.718339][ T8741]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  305.718362][ T8741]  ? lockdep_hardirqs_on+0x9d/0x150
[  305.718387][ T8741]  __do_fast_syscall_32+0xb4/0x110
[  305.718410][ T8741]  ? exc_page_fault+0x5f8/0x920
[  305.718436][ T8741]  do_fast_syscall_32+0x34/0x80
[  305.718459][ T8741]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  305.718483][ T8741] RIP: 0023:0xf73bd579
[  305.718501][ T8741] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  305.718518][ T8741] RSP: 002b:00000000f5046590 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[  305.718541][ T8741] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5046620
[  305.718555][ T8741] RDX: 000000000000000f RSI: 00000000f73acff4 RDI: 0000000000000000
[  305.718568][ T8741] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  305.718579][ T8741] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  305.718592][ T8741] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  305.718623][ T8741]  </TASK>
[  305.952470][ T5838] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  305.960365][ T5838] ath9k_htc: Failed to initialize the device
[  305.973024][   T24] usb 2-1: ath9k_htc: USB layer deinitialized
[  306.072875][ T5896] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  306.076903][ T5890] usb 5-1: USB disconnect, device number 21
[  306.232833][ T5896] usb 4-1: Using ep0 maxpacket: 8
[  306.255944][ T5896] usb 4-1: config 252 has an invalid interface number: 112 but max is 0
[  306.298771][ T5896] usb 4-1: config 252 has no interface number 0
[  306.315270][ T5896] usb 4-1: New USB device found, idVendor=0bda, idProduct=8156, bcdDevice=21.79
[  306.338789][ T5896] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  306.361710][ T5896] usb 4-1: Product: syz
[  306.365955][ T5896] usb 4-1: Manufacturer: syz
[  306.407754][ T5896] usb 4-1: SerialNumber: syz
[  306.458606][ T5896] r8152-cfgselector 4-1: Unknown version 0x0000
[  306.862767][ T8766] netlink: 36 bytes leftover after parsing attributes in process `syz.3.935'.
[  306.872713][ T8766] netlink: 16 bytes leftover after parsing attributes in process `syz.3.935'.
[  306.883759][ T8766] netlink: 36 bytes leftover after parsing attributes in process `syz.3.935'.
[  306.896420][ T8766] netlink: 36 bytes leftover after parsing attributes in process `syz.3.935'.
[  308.632554][ T5896] hub 4-1:252.112: bad descriptor, ignoring hub
[  308.646639][ T5896] hub 4-1:252.112: probe with driver hub failed with error -5
[  308.761875][   T10] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  308.921778][   T10] usb 2-1: Using ep0 maxpacket: 32
[  308.933107][   T10] usb 2-1: config index 0 descriptor too short (expected 9, got 0)
[  308.941902][   T10] usb 2-1: can't read configurations, error -22
[  308.962508][ T5896] r8152-cfgselector 4-1: reset high-speed USB device number 39 using dummy_hcd
[  308.995954][ T5896] r8152-cfgselector 4-1: device reset changed ep0 maxpacket size!
[  309.016062][ T5896] r8152-cfgselector 4-1: USB disconnect, device number 39
[  309.081870][   T10] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  309.247112][   T10] usb 2-1: Using ep0 maxpacket: 32
[  309.257394][   T10] usb 2-1: config index 0 descriptor too short (expected 9, got 0)
[  309.265828][   T10] usb 2-1: can't read configurations, error -22
[  309.277689][   T10] usb usb2-port1: attempt power cycle
[  309.431926][ T5896] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  309.618206][ T5896] usb 4-1: too many configurations: 9, using maximum allowed: 8
[  309.631935][  T979] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  309.642068][ T5896] usb 4-1: config index 0 descriptor too short (expected 65120, got 72)
[  309.651929][   T10] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  309.669797][ T5896] usb 4-1: config index 1 descriptor too short (expected 65120, got 72)
[  309.679761][   T10] usb 2-1: Using ep0 maxpacket: 32
[  309.687729][   T10] usb 2-1: config index 0 descriptor too short (expected 9, got 0)
[  309.699523][   T10] usb 2-1: can't read configurations, error -22
[  309.699877][ T5896] usb 4-1: config index 2 descriptor too short (expected 65120, got 72)
[  309.783868][ T5896] usb 4-1: config index 3 descriptor too short (expected 65120, got 72)
[  309.797190][ T5896] usb 4-1: config index 4 descriptor too short (expected 65120, got 72)
[  309.812469][ T5896] usb 4-1: config index 5 descriptor too short (expected 65120, got 72)
[  309.822374][ T5896] usb 4-1: config index 6 descriptor too short (expected 65120, got 72)
[  309.832434][ T5896] usb 4-1: config index 7 descriptor too short (expected 65120, got 72)
[  309.841632][   T10] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  309.852283][ T5896] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  309.861775][  T979] usb 5-1: Using ep0 maxpacket: 32
[  309.897225][   T10] usb 2-1: Using ep0 maxpacket: 32
[  309.914418][  T979] usb 5-1: config 0 interface 0 has no altsetting 0
[  309.923856][   T10] usb 2-1: config index 0 descriptor too short (expected 9, got 0)
[  309.941791][  T979] usb 5-1: New USB device found, idVendor=2040, idProduct=c603, bcdDevice= 1.8e
[  309.962183][ T5896] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  309.971843][   T10] usb 2-1: can't read configurations, error -22
[  309.979334][ T5896] usb 4-1: Product: syz
[  309.992375][   T10] usb usb2-port1: unable to enumerate USB device
[  309.998942][  T979] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.007684][ T5896] usb 4-1: Manufacturer: syz
[  310.016702][ T5896] usb 4-1: SerialNumber: syz
[  310.023485][  T979] usb 5-1: config 0 descriptor??
[  310.034539][  T979] usb 5-1: dvb_usb_v2: found a 'Hauppauge 126xxx ATSC+' in warm state
[  310.050045][ T5896] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  310.070729][   T10] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  310.090639][  T979] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  310.108869][  T979] dvbdev: DVB: registering new adapter (Hauppauge 126xxx ATSC+)
[  310.116802][  T979] usb 5-1: media controller created
[  310.157646][  T979] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  310.198763][ T8807] netlink: 24 bytes leftover after parsing attributes in process `syz.0.955'.
[  310.297376][ T8794] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  310.344914][ T8794] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  310.370998][  T979] set interface failed
[  310.371027][  T979] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  310.383817][  T979] error writing reg: 0xff, val: 0x00
[  310.444310][  T979] dvb_usb_mxl111sf 5-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  310.528809][  T979] usb 5-1: USB disconnect, device number 22
[  311.232028][   T10] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  311.267919][ T8814] netlink: 12 bytes leftover after parsing attributes in process `syz.2.956'.
[  311.289627][ T8814] FAULT_INJECTION: forcing a failure.
[  311.289627][ T8814] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  311.290760][   T10] ath9k_htc: Failed to initialize the device
[  311.336972][ T8814] CPU: 1 UID: 0 PID: 8814 Comm: syz.2.956 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  311.337002][ T8814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  311.337012][ T8814] Call Trace:
[  311.337017][ T8814]  <TASK>
[  311.337023][ T8814]  dump_stack_lvl+0x241/0x360
[  311.337048][ T8814]  ? __pfx_dump_stack_lvl+0x10/0x10
[  311.337073][ T8814]  ? __pfx__printk+0x10/0x10
[  311.337112][ T8814]  should_fail_ex+0x424/0x570
[  311.337137][ T8814]  _copy_from_user+0x2d/0xb0
[  311.337163][ T8814]  get_compat_msghdr+0xb3/0x730
[  311.337186][ T8814]  ? __fget_files+0x2a/0x420
[  311.337198][ T8814]  ? __pfx_get_compat_msghdr+0x10/0x10
[  311.337221][ T8814]  __sys_sendmsg+0x23b/0x360
[  311.337243][ T8814]  ? __pfx___sys_sendmsg+0x10/0x10
[  311.337315][ T8814]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  311.337335][ T8814]  ? lockdep_hardirqs_on+0x9d/0x150
[  311.337355][ T8814]  __do_fast_syscall_32+0xb4/0x110
[  311.337368][ T8814]  ? exc_page_fault+0x5f8/0x920
[  311.337383][ T8814]  do_fast_syscall_32+0x34/0x80
[  311.337396][ T8814]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  311.337413][ T8814] RIP: 0023:0xf73bd579
[  311.337429][ T8814] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  311.337445][ T8814] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  311.337466][ T8814] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800003c0
[  311.337479][ T8814] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  311.337489][ T8814] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  311.337500][ T8814] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  311.337511][ T8814] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  311.337537][ T8814]  </TASK>
[  311.526637][    C1] vkms_vblank_simulate: vblank timer overrun
[  311.707935][   T10] usb 4-1: ath9k_htc: USB layer deinitialized
[  311.939100][ T8823] netlink: 24 bytes leftover after parsing attributes in process `syz.4.957'.
[  312.377858][ T8833] FAULT_INJECTION: forcing a failure.
[  312.377858][ T8833] name failslab, interval 1, probability 0, space 0, times 0
[  312.429527][ T8833] CPU: 1 UID: 0 PID: 8833 Comm: syz.1.962 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  312.429559][ T8833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  312.429572][ T8833] Call Trace:
[  312.429580][ T8833]  <TASK>
[  312.429588][ T8833]  dump_stack_lvl+0x241/0x360
[  312.429626][ T8833]  ? __pfx_dump_stack_lvl+0x10/0x10
[  312.429651][ T8833]  ? __pfx__printk+0x10/0x10
[  312.429683][ T8833]  ? __pfx___might_resched+0x10/0x10
[  312.429712][ T8833]  should_fail_ex+0x424/0x570
[  312.429738][ T8833]  should_failslab+0xac/0x100
[  312.429877][ T8833]  __kvmalloc_node_noprof+0x170/0x5a0
[  312.429905][ T8833]  ? file_tty_write+0x2c1/0x9d0
[  312.429930][ T8833]  file_tty_write+0x2c1/0x9d0
[  312.429961][ T8833]  vfs_write+0x70f/0xd10
[  312.429991][ T8833]  ? __pfx_tty_write+0x10/0x10
[  312.430013][ T8833]  ? __pfx_vfs_write+0x10/0x10
[  312.430035][ T8833]  ? __fget_files+0x2a/0x420
[  312.430053][ T8833]  ? __fget_files+0x2a/0x420
[  312.430080][ T8833]  ksys_write+0x19d/0x2d0
[  312.430104][ T8833]  ? __pfx_ksys_write+0x10/0x10
[  312.430136][ T8833]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  312.430158][ T8833]  ? lockdep_hardirqs_on+0x9d/0x150
[  312.430181][ T8833]  __do_fast_syscall_32+0xb4/0x110
[  312.430205][ T8833]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  312.430223][ T8833]  ? lockdep_hardirqs_on+0x9d/0x150
[  312.430246][ T8833]  do_fast_syscall_32+0x34/0x80
[  312.430267][ T8833]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  312.430299][ T8833] RIP: 0023:0xf745d579
[  312.430316][ T8833] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  312.430334][ T8833] RSP: 002b:00000000f50a455c EFLAGS: 00000206 ORIG_RAX: 0000000000000004
[  312.430356][ T8833] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080001980
[  312.430369][ T8833] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000
[  312.430380][ T8833] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  312.430390][ T8833] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  312.430401][ T8833] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  312.430432][ T8833]  </TASK>
[  312.650528][    C1] vkms_vblank_simulate: vblank timer overrun
[  313.169687][ T5923] usb 4-1: USB disconnect, device number 40
[  313.242008][ T5838] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  313.448321][ T5838] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  313.469571][ T5838] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.501096][ T5838] usb 3-1: config 0 descriptor??
[  313.544461][ T5838] cp210x 3-1:0.0: cp210x converter detected
[  314.461095][ T5838] cp210x 3-1:0.0: failed to get vendor val 0x370b size 1: -71
[  314.493745][ T5838] cp210x 3-1:0.0: querying part number failed
[  314.553429][ T5838] usb 3-1: cp210x converter now attached to ttyUSB0
[  314.609343][ T5838] usb 3-1: USB disconnect, device number 36
[  314.627995][ T5838] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  314.653128][ T5838] cp210x 3-1:0.0: device disconnected
[  314.792015][ T5923] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  314.857691][ T8860] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  314.971695][ T5923] usb 5-1: Using ep0 maxpacket: 32
[  315.018457][ T5923] usb 5-1: config 0 interface 0 has no altsetting 0
[  315.100584][ T5923] usb 5-1: New USB device found, idVendor=2040, idProduct=c603, bcdDevice= 1.8e
[  315.130846][ T5923] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  315.169269][ T5923] usb 5-1: config 0 descriptor??
[  315.212596][ T5923] usb 5-1: dvb_usb_v2: found a 'Hauppauge 126xxx ATSC+' in warm state
[  315.241696][ T5838] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  315.250895][ T5923] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  315.289991][ T5923] dvbdev: DVB: registering new adapter (Hauppauge 126xxx ATSC+)
[  315.302729][ T5923] usb 5-1: media controller created
[  315.337251][ T5923] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  315.394863][ T5838] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  315.403338][ T8855] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  315.414525][ T8855] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  315.510736][ T8869] veth1_macvtap: left promiscuous mode
[  315.559932][ T5923] set interface failed
[  315.559962][ T5923] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  315.572048][ T8869] macsec0: entered promiscuous mode
[  315.581981][ T5923] error writing reg: 0xff, val: 0x00
[  315.645545][ T5838] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  315.669033][ T8869] netlink: 24 bytes leftover after parsing attributes in process `syz.1.971'.
[  315.769118][ T5838] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  315.779670][ T5838] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  315.839638][ T5923] dvb_usb_mxl111sf 5-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  315.856807][ T5838] usb 3-1: SerialNumber: syz
[  315.999839][ T5923] usb 5-1: USB disconnect, device number 23
[  316.264341][ T5838] usb 3-1: 0:2 : does not exist
[  316.355185][ T5838] usb 3-1: USB disconnect, device number 37
[  316.778009][ T5946] udevd[5946]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  317.330666][ T8882] netlink: 24 bytes leftover after parsing attributes in process `syz.2.975'.
[  317.407986][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  317.414453][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  317.619157][ T8887] FAULT_INJECTION: forcing a failure.
[  317.619157][ T8887] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.704469][ T8887] CPU: 0 UID: 0 PID: 8887 Comm: syz.3.976 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  317.704500][ T8887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  317.704511][ T8887] Call Trace:
[  317.704519][ T8887]  <TASK>
[  317.704528][ T8887]  dump_stack_lvl+0x241/0x360
[  317.704561][ T8887]  ? __pfx_dump_stack_lvl+0x10/0x10
[  317.704586][ T8887]  ? __pfx__printk+0x10/0x10
[  317.704623][ T8887]  should_fail_ex+0x424/0x570
[  317.704648][ T8887]  _copy_from_user+0x2d/0xb0
[  317.704674][ T8887]  get_compat_msghdr+0xb3/0x730
[  317.704702][ T8887]  ? __fget_files+0x2a/0x420
[  317.704720][ T8887]  ? __pfx_get_compat_msghdr+0x10/0x10
[  317.704764][ T8887]  do_recvmmsg+0x4d5/0xab0
[  317.704797][ T8887]  ? __pfx_do_recvmmsg+0x10/0x10
[  317.704838][ T8887]  ? rcu_read_lock_any_held+0xbb/0x160
[  317.704882][ T8887]  ? ksys_write+0x24e/0x2d0
[  317.704936][ T8887]  __sys_recvmmsg+0x1aa/0x280
[  317.704955][ T8887]  ? fput+0x9b/0xd0
[  317.704971][ T8887]  ? __pfx___sys_recvmmsg+0x10/0x10
[  317.704988][ T8887]  ? ksys_write+0x275/0x2d0
[  317.705017][ T8887]  __ia32_compat_sys_recvmmsg_time32+0xbf/0xd0
[  317.705087][ T8887]  __do_fast_syscall_32+0xb4/0x110
[  317.705108][ T8887]  ? exc_page_fault+0x5f8/0x920
[  317.705134][ T8887]  do_fast_syscall_32+0x34/0x80
[  317.705156][ T8887]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  317.705178][ T8887] RIP: 0023:0xf7fa3579
[  317.705195][ T8887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  317.705211][ T8887] RSP: 002b:00000000f50c655c EFLAGS: 00000206 ORIG_RAX: 0000000000000151
[  317.705232][ T8887] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001dc0
[  317.705245][ T8887] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  317.705257][ T8887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  317.705268][ T8887] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  317.705280][ T8887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  317.705309][ T8887]  </TASK>
[  320.148115][ T8918] FAULT_INJECTION: forcing a failure.
[  320.148115][ T8918] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.168743][ T8918] CPU: 1 UID: 0 PID: 8918 Comm: syz.2.986 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  320.168783][ T8918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  320.168796][ T8918] Call Trace:
[  320.168805][ T8918]  <TASK>
[  320.168814][ T8918]  dump_stack_lvl+0x241/0x360
[  320.168849][ T8918]  ? __pfx_dump_stack_lvl+0x10/0x10
[  320.168876][ T8918]  ? __pfx__printk+0x10/0x10
[  320.168916][ T8918]  should_fail_ex+0x424/0x570
[  320.168942][ T8918]  _copy_from_user+0x2d/0xb0
[  320.168970][ T8918]  get_compat_msghdr+0xb3/0x730
[  320.168999][ T8918]  ? __fget_files+0x2a/0x420
[  320.169019][ T8918]  ? __pfx_get_compat_msghdr+0x10/0x10
[  320.169058][ T8918]  __sys_sendmsg+0x23b/0x360
[  320.169085][ T8918]  ? __pfx___sys_sendmsg+0x10/0x10
[  320.169159][ T8918]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  320.169179][ T8918]  ? lockdep_hardirqs_on+0x9d/0x150
[  320.169203][ T8918]  __do_fast_syscall_32+0xb4/0x110
[  320.169224][ T8918]  ? exc_page_fault+0x5f8/0x920
[  320.169250][ T8918]  do_fast_syscall_32+0x34/0x80
[  320.169271][ T8918]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  320.169294][ T8918] RIP: 0023:0xf73bd579
[  320.169312][ T8918] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  320.169329][ T8918] RSP: 002b:00000000f500455c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  320.169353][ T8918] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080000080
[  320.169367][ T8918] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  320.169378][ T8918] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  320.169390][ T8918] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  320.169401][ T8918] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  320.169430][ T8918]  </TASK>
[  320.366353][ T8919] wg1: entered promiscuous mode
[  320.371341][ T8919] wg1: entered allmulticast mode
[  321.981769][   T10] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  322.226068][ T8944] netlink: 728 bytes leftover after parsing attributes in process `syz.4.996'.
[  322.301655][   T10] usb 3-1: Using ep0 maxpacket: 32
[  322.313550][   T10] usb 3-1: config 0 interface 0 altsetting 56 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  322.329069][   T10] usb 3-1: config 0 interface 0 altsetting 56 endpoint 0x81 has invalid wMaxPacketSize 0
[  322.356041][   T10] usb 3-1: config 0 interface 0 has no altsetting 0
[  322.365643][   T10] usb 3-1: New USB device found, idVendor=046d, idProduct=c283, bcdDevice= 0.00
[  322.381888][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.398471][   T10] usb 3-1: config 0 descriptor??
[  322.662669][   T10] usbhid 3-1:0.0: can't add hid device: -71
[  322.662752][   T10] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  322.669006][   T10] usb 3-1: USB disconnect, device number 38
[  322.721805][ T5893] usb 2-1: new full-speed USB device number 36 using dummy_hcd
[  322.923747][ T5893] usb 2-1: unable to get BOS descriptor or descriptor too short
[  322.932956][ T5893] usb 2-1: not running at top speed; connect to a high speed hub
[  322.942321][ T5923] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  322.964013][ T5893] usb 2-1: config 219 has an invalid descriptor of length 0, skipping remainder of the config
[  322.990033][ T5893] usb 2-1: config 219 has 1 interface, different from the descriptor's value: 2
[  323.039307][ T5893] usb 2-1: config 219 interface 0 has no altsetting 0
[  323.054423][ T5893] usb 2-1: config 219 interface 0 has no altsetting 1
[  323.083480][ T5893] usb 2-1: New USB device found, idVendor=2b73, idProduct=0017, bcdDevice=a2.0e
[  323.096223][ T5893] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.105202][ T5893] usb 2-1: Product: syz
[  323.113151][ T5923] usb 5-1: too many configurations: 89, using maximum allowed: 8
[  323.123366][ T5923] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  323.135226][ T5893] usb 2-1: Manufacturer: syz
[  323.147393][ T5893] usb 2-1: SerialNumber: syz
[  323.154405][ T5923] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  323.174133][ T5923] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  323.194279][ T5923] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  323.213227][ T5923] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  323.225456][ T5923] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  323.250610][ T5923] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  323.323482][ T5923] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 541
[  323.343898][ T5923] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  323.371981][ T5923] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.421849][ T5923] usb 5-1: Product: syz
[  323.426106][ T5923] usb 5-1: Manufacturer: syz
[  323.475451][ T5923] usb 5-1: SerialNumber: syz
[  323.515781][ T8958] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  323.602534][ T5923] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  323.640390][   T10] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  324.486507][ T5893] snd-usb-audio 2-1:219.0: probe with driver snd-usb-audio failed with error -22
[  324.774136][   T10] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  324.817232][   T10] ath9k_htc: Failed to initialize the device
[  324.864728][ T5893] usb 2-1: USB disconnect, device number 36
[  324.939255][   T10] usb 5-1: ath9k_htc: USB layer deinitialized
[  324.981116][ T5153] Bluetooth: hci2: ACL packet for unknown connection handle 0
[  325.028871][ T5946] udevd[5946]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:219.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  325.089167][ T5890] usb 5-1: USB disconnect, device number 24
[  325.475137][ T8974] SET target dimension over the limit!
[  325.922185][ T5890] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  326.064454][ T8988] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  326.081934][ T5890] usb 3-1: Using ep0 maxpacket: 32
[  326.098094][ T8976] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  326.107059][ T5893] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  326.123849][ T8976] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  326.231315][ T8976] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  326.243349][ T8976] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  326.254988][ T5838] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  326.284435][ T5893] usb 5-1: config 0 has no interfaces?
[  326.321345][ T5893] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  326.331420][ T5893] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.331466][ T8976] program syz.2.1005 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  326.349779][ T5893] usb 5-1: Product: syz
[  326.370039][ T5893] usb 5-1: Manufacturer: syz
[  326.377597][ T5890] usb 3-1: unable to get BOS descriptor or descriptor too short
[  326.386162][ T5893] usb 5-1: SerialNumber: syz
[  326.393994][ T5890] usb 3-1: unable to read config index 0 descriptor/start: -71
[  326.403076][ T5890] usb 3-1: can't read configurations, error -71
[  326.411739][ T5838] usb 4-1: Using ep0 maxpacket: 32
[  326.421663][ T5893] usb 5-1: config 0 descriptor??
[  326.437525][ T8985] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  326.449746][ T8985] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  326.468800][ T8985] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  326.478732][ T8985] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  326.506349][ T8985] FAULT_INJECTION: forcing a failure.
[  326.506349][ T8985] name failslab, interval 1, probability 0, space 0, times 0
[  326.522091][  T979] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  326.532891][ T8985] CPU: 0 UID: 0 PID: 8985 Comm: syz.3.1009 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  326.532921][ T8985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  326.532933][ T8985] Call Trace:
[  326.532942][ T8985]  <TASK>
[  326.532951][ T8985]  dump_stack_lvl+0x241/0x360
[  326.533078][ T8985]  ? __pfx_dump_stack_lvl+0x10/0x10
[  326.533105][ T8985]  ? __pfx__printk+0x10/0x10
[  326.533134][ T8985]  ? __pfx___might_resched+0x10/0x10
[  326.533158][ T8985]  should_fail_ex+0x424/0x570
[  326.533207][ T8985]  should_failslab+0xac/0x100
[  326.533234][ T8985]  __kmalloc_noprof+0xdf/0x4d0
[  326.533258][ T8985]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[  326.533285][ T8985]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  326.533318][ T8985]  tomoyo_realpath_from_path+0xcf/0x5e0
[  326.533360][ T8985]  tomoyo_path_number_perm+0x245/0x790
[  326.533383][ T8985]  ? __lock_acquire+0xad5/0xd80
[  326.533406][ T8985]  ? tomoyo_path_number_perm+0x215/0x790
[  326.533434][ T8985]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  326.533500][ T8985]  ? __fget_files+0x2a/0x420
[  326.533525][ T8985]  ? __fget_files+0x2a/0x420
[  326.533552][ T8985]  ? __fget_files+0x2a/0x420
[  326.533576][ T8985]  security_file_ioctl_compat+0xc6/0x2a0
[  326.533602][ T8985]  __se_compat_sys_ioctl+0xd8/0xc30
[  326.533625][ T8985]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  326.533648][ T8985]  ? __pfx___se_compat_sys_ioctl+0x10/0x10
[  326.533671][ T8985]  ? __fget_files+0x2a/0x420
[  326.533696][ T8985]  ? fput+0x9b/0xd0
[  326.533714][ T8985]  ? ksys_write+0x275/0x2d0
[  326.533745][ T8985]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  326.533766][ T8985]  ? lockdep_hardirqs_on+0x9d/0x150
[  326.533790][ T8985]  __do_fast_syscall_32+0xb4/0x110
[  326.534090][ T8985]  ? exc_page_fault+0x5f8/0x920
[  326.534123][ T8985]  do_fast_syscall_32+0x34/0x80
[  326.534145][ T8985]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  326.534208][ T8985] RIP: 0023:0xf7fa3579
[  326.534235][ T8985] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  326.534252][ T8985] RSP: 002b:00000000f50c655c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  326.534276][ T8985] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 0000000000000001
[  326.534289][ T8985] RDX: 0000000080000200 RSI: 0000000000000000 RDI: 0000000000000000
[  326.534302][ T8985] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  326.534313][ T8985] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  326.534324][ T8985] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  326.534355][ T8985]  </TASK>
[  326.540482][ T8985] ERROR: Out of memory at tomoyo_realpath_from_path.
[  326.821119][ T8985] program syz.3.1009 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  326.840664][ T5838] usb 4-1: unable to get BOS descriptor or descriptor too short
[  326.854001][ T5838] usb 4-1: unable to read config index 0 descriptor/start: -71
[  326.862238][ T5838] usb 4-1: can't read configurations, error -71
[  326.874855][  T979] usb 2-1: device descriptor read/64, error -71
[  326.980056][ T8995] FAULT_INJECTION: forcing a failure.
[  326.980056][ T8995] name failslab, interval 1, probability 0, space 0, times 0
[  326.999315][ T8995] CPU: 1 UID: 0 PID: 8995 Comm: syz.0.1014 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  326.999347][ T8995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  326.999359][ T8995] Call Trace:
[  326.999367][ T8995]  <TASK>
[  326.999376][ T8995]  dump_stack_lvl+0x241/0x360
[  326.999413][ T8995]  ? __pfx_dump_stack_lvl+0x10/0x10
[  326.999440][ T8995]  ? __pfx__printk+0x10/0x10
[  326.999473][ T8995]  ? __pfx___might_resched+0x10/0x10
[  326.999500][ T8995]  should_fail_ex+0x424/0x570
[  326.999526][ T8995]  should_failslab+0xac/0x100
[  326.999555][ T8995]  __kmalloc_noprof+0xdf/0x4d0
[  326.999579][ T8995]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[  326.999606][ T8995]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  326.999640][ T8995]  tomoyo_realpath_from_path+0xcf/0x5e0
[  326.999682][ T8995]  tomoyo_path_number_perm+0x245/0x790
[  326.999705][ T8995]  ? __lock_acquire+0xad5/0xd80
[  326.999727][ T8995]  ? tomoyo_path_number_perm+0x215/0x790
[  326.999755][ T8995]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  326.999831][ T8995]  ? __fget_files+0x2a/0x420
[  326.999849][ T8995]  ? __fget_files+0x2a/0x420
[  326.999870][ T8995]  ? __fget_files+0x2a/0x420
[  326.999893][ T8995]  security_file_ioctl_compat+0xc6/0x2a0
[  326.999919][ T8995]  __se_compat_sys_ioctl+0xd8/0xc30
[  326.999943][ T8995]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  326.999968][ T8995]  ? __pfx___se_compat_sys_ioctl+0x10/0x10
[  326.999993][ T8995]  ? __fget_files+0x2a/0x420
[  327.000017][ T8995]  ? fput+0x9b/0xd0
[  327.000034][ T8995]  ? ksys_write+0x275/0x2d0
[  327.000065][ T8995]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  327.000087][ T8995]  ? lockdep_hardirqs_on+0x9d/0x150
[  327.000111][ T8995]  __do_fast_syscall_32+0xb4/0x110
[  327.000133][ T8995]  ? exc_page_fault+0x5f8/0x920
[  327.000159][ T8995]  do_fast_syscall_32+0x34/0x80
[  327.000181][ T8995]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  327.000204][ T8995] RIP: 0023:0xf73bd579
[  327.000221][ T8995] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  327.000238][ T8995] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  327.000262][ T8995] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004b4a
[  327.000276][ T8995] RDX: 0000000080000340 RSI: 0000000000000000 RDI: 0000000000000000
[  327.000288][ T8995] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  327.000300][ T8995] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  327.000311][ T8995] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  327.000342][ T8995]  </TASK>
[  327.000351][ T8995] ERROR: Out of memory at tomoyo_realpath_from_path.
[  327.234848][  T979] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  327.420274][ T5153] Bluetooth: hci4: ACL packet for unknown connection handle 201
[  327.475080][  T979] usb 2-1: device descriptor read/64, error -71
[  327.605293][ T9005] Cannot find add_set index 0 as target
[  327.632165][  T979] usb usb2-port1: attempt power cycle
[  327.659450][ T9006] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1017'.
[  327.981841][  T979] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  328.002573][  T979] usb 2-1: device descriptor read/8, error -71
[  328.261907][  T979] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  328.302982][ T5153] Bluetooth: hci4: ACL packet for unknown connection handle 201
[  328.345246][  T979] usb 2-1: device descriptor read/8, error -71
[  328.504301][  T979] usb usb2-port1: unable to enumerate USB device
[  328.790311][  T979] usb 5-1: USB disconnect, device number 25
[  328.981710][   T30] audit: type=1326 audit(1743800835.628:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9014 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  329.047477][   T30] audit: type=1326 audit(1743800835.628:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9014 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  329.201782][   T30] audit: type=1326 audit(1743800835.628:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9014 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  329.283071][   T30] audit: type=1326 audit(1743800835.628:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9014 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  329.444091][   T30] audit: type=1326 audit(1743800835.698:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9014 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  329.538146][ T9028] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  329.548381][   T30] audit: type=1326 audit(1743800835.698:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9014 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  329.592919][ T9032] FAULT_INJECTION: forcing a failure.
[  329.592919][ T9032] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  329.634535][ T9032] CPU: 0 UID: 0 PID: 9032 Comm: syz.4.1027 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  329.634568][ T9032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  329.634579][ T9032] Call Trace:
[  329.634586][ T9032]  <TASK>
[  329.634594][ T9032]  dump_stack_lvl+0x241/0x360
[  329.634628][ T9032]  ? __pfx_dump_stack_lvl+0x10/0x10
[  329.634653][ T9032]  ? __pfx__printk+0x10/0x10
[  329.634691][ T9032]  should_fail_ex+0x424/0x570
[  329.634717][ T9032]  _copy_from_user+0x2d/0xb0
[  329.634742][ T9032]  __sys_bpf+0x1c5/0x8b0
[  329.634766][ T9032]  ? __pfx___sys_bpf+0x10/0x10
[  329.634811][ T9032]  ? ksys_write+0x275/0x2d0
[  329.634847][ T9032]  __ia32_sys_bpf+0x7c/0x90
[  329.634877][ T9032]  __do_fast_syscall_32+0xb4/0x110
[  329.634899][ T9032]  ? exc_page_fault+0x5f8/0x920
[  329.634926][ T9032]  do_fast_syscall_32+0x34/0x80
[  329.634949][ T9032]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  329.634971][ T9032] RIP: 0023:0xf748d579
[  329.634989][ T9032] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  329.635005][ T9032] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000165
[  329.635027][ T9032] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000200
[  329.635041][ T9032] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  329.635054][ T9032] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  329.635065][ T9032] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  329.635077][ T9032] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  329.635107][ T9032]  </TASK>
[  329.638282][   T30] audit: type=1326 audit(1743800835.698:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9020 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  329.873121][   T30] audit: type=1326 audit(1743800835.768:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9014 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=446 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  329.905127][ T9038] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  329.915768][ T9038] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  329.977090][   T30] audit: type=1326 audit(1743800835.768:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9014 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  330.015866][   T30] audit: type=1326 audit(1743800835.768:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9014 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000
[  330.089358][ T9041] Cannot find add_set index 0 as target
[  330.151782][ T5890] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  330.323334][ T5890] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  330.352811][ T5890] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  330.421186][ T5890] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  330.448534][ T5890] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  330.475778][ T5890] usb 2-1: SerialNumber: syz
[  330.755199][ T5890] usb 2-1: 0:2 : does not exist
[  330.826521][ T5890] usb 2-1: USB disconnect, device number 41
[  330.940816][ T9048] FAULT_INJECTION: forcing a failure.
[  330.940816][ T9048] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  330.997349][ T9048] CPU: 0 UID: 0 PID: 9048 Comm: syz.4.1032 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  330.997382][ T9048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  330.997394][ T9048] Call Trace:
[  330.997402][ T9048]  <TASK>
[  330.997410][ T9048]  dump_stack_lvl+0x241/0x360
[  330.997445][ T9048]  ? __pfx_dump_stack_lvl+0x10/0x10
[  330.997470][ T9048]  ? __pfx__printk+0x10/0x10
[  330.997508][ T9048]  should_fail_ex+0x424/0x570
[  330.997533][ T9048]  _copy_from_user+0x2d/0xb0
[  330.997559][ T9048]  move_addr_to_kernel+0x7f/0x170
[  330.997589][ T9048]  __sys_connect+0xb8/0x2d0
[  330.997614][ T9048]  ? __pfx_handle_mm_fault+0x10/0x10
[  330.997640][ T9048]  ? __pfx___sys_connect+0x10/0x10
[  330.997661][ T9048]  ? lock_vma_under_rcu+0x1f0/0x9a0
[  330.997697][ T9048]  __ia32_sys_connect+0x7a/0x90
[  330.997724][ T9048]  __do_fast_syscall_32+0xb4/0x110
[  330.997745][ T9048]  ? exc_page_fault+0x5f8/0x920
[  330.997769][ T9048]  do_fast_syscall_32+0x34/0x80
[  330.997791][ T9048]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  330.997811][ T9048] RIP: 0023:0xf748d579
[  330.997827][ T9048] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  330.997843][ T9048] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 000000000000016a
[  330.997862][ T9048] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  330.997871][ T9048] RDX: 000000000000006e RSI: 0000000000000000 RDI: 0000000000000000
[  330.997878][ T9048] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  330.997884][ T9048] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  330.997891][ T9048] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  330.997908][ T9048]  </TASK>
[  331.228664][ T5946] udevd[5946]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  331.477220][ T5153] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  332.663355][ T9073] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1041'.
[  333.131633][ T5890] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  333.259091][ T9082] FAULT_INJECTION: forcing a failure.
[  333.259091][ T9082] name failslab, interval 1, probability 0, space 0, times 0
[  333.300218][ T5890] usb 4-1: Using ep0 maxpacket: 16
[  333.317838][ T9082] CPU: 1 UID: 0 PID: 9082 Comm: syz.2.1042 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  333.317869][ T9082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  333.317880][ T9082] Call Trace:
[  333.317888][ T9082]  <TASK>
[  333.317896][ T9082]  dump_stack_lvl+0x241/0x360
[  333.317930][ T9082]  ? __pfx_dump_stack_lvl+0x10/0x10
[  333.317956][ T9082]  ? __pfx__printk+0x10/0x10
[  333.317996][ T9082]  ? __pfx___might_resched+0x10/0x10
[  333.318023][ T9082]  should_fail_ex+0x424/0x570
[  333.318048][ T9082]  should_failslab+0xac/0x100
[  333.318076][ T9082]  __kmalloc_noprof+0xdf/0x4d0
[  333.318099][ T9082]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[  333.318124][ T9082]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  333.318158][ T9082]  tomoyo_realpath_from_path+0xcf/0x5e0
[  333.318194][ T9082]  tomoyo_path_number_perm+0x245/0x790
[  333.318217][ T9082]  ? __lock_acquire+0xad5/0xd80
[  333.318239][ T9082]  ? tomoyo_path_number_perm+0x215/0x790
[  333.318266][ T9082]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  333.318333][ T9082]  ? __fget_files+0x2a/0x420
[  333.318349][ T9082]  ? __fget_files+0x2a/0x420
[  333.318370][ T9082]  ? __fget_files+0x2a/0x420
[  333.318394][ T9082]  security_file_ioctl_compat+0xc6/0x2a0
[  333.318419][ T9082]  __se_compat_sys_ioctl+0xd8/0xc30
[  333.318441][ T9082]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  333.318466][ T9082]  ? __pfx___se_compat_sys_ioctl+0x10/0x10
[  333.318491][ T9082]  ? __fget_files+0x2a/0x420
[  333.318516][ T9082]  ? fput+0x9b/0xd0
[  333.318533][ T9082]  ? ksys_write+0x275/0x2d0
[  333.318564][ T9082]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  333.318584][ T9082]  ? lockdep_hardirqs_on+0x9d/0x150
[  333.318608][ T9082]  __do_fast_syscall_32+0xb4/0x110
[  333.318630][ T9082]  ? exc_page_fault+0x5f8/0x920
[  333.318657][ T9082]  do_fast_syscall_32+0x34/0x80
[  333.318680][ T9082]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.318700][ T9082] RIP: 0023:0xf73bd579
[  333.318716][ T9082] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  333.318730][ T9082] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  333.318751][ T9082] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004048aecb
[  333.318765][ T9082] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  333.318777][ T9082] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.318788][ T9082] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  333.318799][ T9082] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.318830][ T9082]  </TASK>
[  333.319131][ T9082] ERROR: Out of memory at tomoyo_realpath_from_path.
[  333.642446][ T5890] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[  333.650858][ T5890] usb 4-1: config 0 has no interface number 0
[  333.661608][ T5890] usb 4-1: config 0 interface 41 has no altsetting 0
[  333.712430][ T5890] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  333.724015][ T5890] usb 4-1: New USB device strings: Mfr=17, Product=2, SerialNumber=3
[  333.757710][ T5890] usb 4-1: Product: syz
[  333.771926][ T5890] usb 4-1: Manufacturer: syz
[  333.776625][ T5890] usb 4-1: SerialNumber: syz
[  333.802969][ T5890] usb 4-1: config 0 descriptor??
[  333.816106][ T5890] CoreChips 4-1:0.41: probe with driver CoreChips failed with error -22
[  334.175892][ T5153] Bluetooth: hci0: unexpected event for opcode 0x0804
[  334.214349][ T9097] FAULT_INJECTION: forcing a failure.
[  334.214349][ T9097] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  334.279753][ T9097] CPU: 0 UID: 0 PID: 9097 Comm: syz.2.1048 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  334.279784][ T9097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  334.279796][ T9097] Call Trace:
[  334.279804][ T9097]  <TASK>
[  334.279813][ T9097]  dump_stack_lvl+0x241/0x360
[  334.279849][ T9097]  ? __pfx_dump_stack_lvl+0x10/0x10
[  334.279876][ T9097]  ? __pfx__printk+0x10/0x10
[  334.279917][ T9097]  should_fail_ex+0x424/0x570
[  334.279943][ T9097]  _copy_from_user+0x2d/0xb0
[  334.279971][ T9097]  get_compat_msghdr+0xb3/0x730
[  334.280000][ T9097]  ? __fget_files+0x2a/0x420
[  334.280020][ T9097]  ? __pfx_get_compat_msghdr+0x10/0x10
[  334.280062][ T9097]  __sys_sendmsg+0x23b/0x360
[  334.280090][ T9097]  ? __pfx___sys_sendmsg+0x10/0x10
[  334.280166][ T9097]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  334.280188][ T9097]  ? lockdep_hardirqs_on+0x9d/0x150
[  334.280218][ T9097]  __do_fast_syscall_32+0xb4/0x110
[  334.280240][ T9097]  ? exc_page_fault+0x5f8/0x920
[  334.280267][ T9097]  do_fast_syscall_32+0x34/0x80
[  334.280288][ T9097]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  334.280311][ T9097] RIP: 0023:0xf73bd579
[  334.280329][ T9097] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  334.280346][ T9097] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  334.280369][ T9097] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000400
[  334.280383][ T9097] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  334.280395][ T9097] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  334.280406][ T9097] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  334.280418][ T9097] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  334.280448][ T9097]  </TASK>
[  334.671397][ T5153] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  334.800014][ T9111] FAULT_INJECTION: forcing a failure.
[  334.800014][ T9111] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  334.836358][ T9111] CPU: 1 UID: 0 PID: 9111 Comm: syz.0.1055 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  334.836390][ T9111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  334.836402][ T9111] Call Trace:
[  334.836411][ T9111]  <TASK>
[  334.836419][ T9111]  dump_stack_lvl+0x241/0x360
[  334.836453][ T9111]  ? __pfx_dump_stack_lvl+0x10/0x10
[  334.836478][ T9111]  ? __pfx__printk+0x10/0x10
[  334.836517][ T9111]  should_fail_ex+0x424/0x570
[  334.836544][ T9111]  _copy_from_user+0x2d/0xb0
[  334.836577][ T9111]  get_compat_msghdr+0xb3/0x730
[  334.836606][ T9111]  ? __fget_files+0x2a/0x420
[  334.836626][ T9111]  ? __pfx_get_compat_msghdr+0x10/0x10
[  334.836667][ T9111]  __sys_sendmsg+0x23b/0x360
[  334.836704][ T9111]  ? __pfx___sys_sendmsg+0x10/0x10
[  334.836778][ T9111]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  334.836801][ T9111]  ? lockdep_hardirqs_on+0x9d/0x150
[  334.836824][ T9111]  __do_fast_syscall_32+0xb4/0x110
[  334.836845][ T9111]  ? exc_page_fault+0x5f8/0x920
[  334.836870][ T9111]  do_fast_syscall_32+0x34/0x80
[  334.836892][ T9111]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  334.836913][ T9111] RIP: 0023:0xf73bd579
[  334.836930][ T9111] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  334.836946][ T9111] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  334.836969][ T9111] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  334.836983][ T9111] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  334.836995][ T9111] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  334.837006][ T9111] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  334.837017][ T9111] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  334.837046][ T9111]  </TASK>
[  335.126394][ T9120] FAULT_INJECTION: forcing a failure.
[  335.126394][ T9120] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.145015][ T9120] CPU: 1 UID: 0 PID: 9120 Comm: syz.4.1059 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  335.145049][ T9120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  335.145061][ T9120] Call Trace:
[  335.145069][ T9120]  <TASK>
[  335.145078][ T9120]  dump_stack_lvl+0x241/0x360
[  335.145114][ T9120]  ? __pfx_dump_stack_lvl+0x10/0x10
[  335.145141][ T9120]  ? __pfx__printk+0x10/0x10
[  335.145180][ T9120]  should_fail_ex+0x424/0x570
[  335.145206][ T9120]  _copy_from_user+0x2d/0xb0
[  335.145234][ T9120]  move_addr_to_kernel+0x7f/0x170
[  335.145261][ T9120]  __sys_sendto+0x26a/0x4c0
[  335.145295][ T9120]  ? __pfx___sys_sendto+0x10/0x10
[  335.145338][ T9120]  ? __fget_files+0x2a/0x420
[  335.145366][ T9120]  ? ksys_write+0x275/0x2d0
[  335.145399][ T9120]  __ia32_sys_sendto+0xdd/0x100
[  335.145431][ T9120]  __do_fast_syscall_32+0xb4/0x110
[  335.145455][ T9120]  ? exc_page_fault+0x5f8/0x920
[  335.145483][ T9120]  do_fast_syscall_32+0x34/0x80
[  335.145504][ T9120]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  335.145527][ T9120] RIP: 0023:0xf748d579
[  335.145544][ T9120] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  335.145560][ T9120] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000171
[  335.145583][ T9120] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  335.145596][ T9120] RDX: 0000000000000000 RSI: 0000000020000800 RDI: 0000000080000080
[  335.145608][ T9120] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  335.145619][ T9120] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  335.145630][ T9120] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  335.145659][ T9120]  </TASK>
[  335.330362][ T5896] usb 3-1: new full-speed USB device number 41 using dummy_hcd
[  335.544260][ T5896] usb 3-1: not running at top speed; connect to a high speed hub
[  335.558311][ T5896] usb 3-1: config 1 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  335.578343][ T5896] usb 3-1: config 1 interface 0 has no altsetting 0
[  335.589203][ T5896] usb 3-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.40
[  335.602683][ T5896] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  335.610904][ T5896] usb 3-1: Product: Х
[  335.616142][ T5896] usb 3-1: Manufacturer: 〉
[  335.620935][ T5896] usb 3-1: SerialNumber: ᐇ
[  335.632772][ T9126] sit0: entered promiscuous mode
[  335.670014][ T9126] netlink: 'syz.4.1061': attribute type 1 has an invalid length.
[  335.713361][ T9126] netlink: 1 bytes leftover after parsing attributes in process `syz.4.1061'.
[  335.918550][  T979] usb 4-1: USB disconnect, device number 43
[  336.188376][ T9136] FAULT_INJECTION: forcing a failure.
[  336.188376][ T9136] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  336.203330][ T9136] CPU: 1 UID: 0 PID: 9136 Comm: syz.4.1065 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  336.203361][ T9136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  336.203373][ T9136] Call Trace:
[  336.203382][ T9136]  <TASK>
[  336.203390][ T9136]  dump_stack_lvl+0x241/0x360
[  336.203425][ T9136]  ? __pfx_dump_stack_lvl+0x10/0x10
[  336.203450][ T9136]  ? __pfx__printk+0x10/0x10
[  336.203488][ T9136]  should_fail_ex+0x424/0x570
[  336.203514][ T9136]  _copy_to_user+0x31/0xb0
[  336.203543][ T9136]  simple_read_from_buffer+0xc4/0x170
[  336.203575][ T9136]  proc_fail_nth_read+0x1ef/0x260
[  336.203598][ T9136]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  336.203620][ T9136]  ? rw_verify_area+0x246/0x630
[  336.203641][ T9136]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  336.203662][ T9136]  vfs_read+0x21f/0xb90
[  336.203701][ T9136]  ? __pfx_vfs_read+0x10/0x10
[  336.203727][ T9136]  ? __sys_bind+0x202/0x290
[  336.203756][ T9136]  ? __pfx___sys_bind+0x10/0x10
[  336.203778][ T9136]  ? lock_vma_under_rcu+0x1f0/0x9a0
[  336.203813][ T9136]  ksys_read+0x19d/0x2d0
[  336.203836][ T9136]  ? __pfx_ksys_read+0x10/0x10
[  336.203860][ T9136]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  336.203880][ T9136]  ? lockdep_hardirqs_on+0x9d/0x150
[  336.203903][ T9136]  __do_fast_syscall_32+0xb4/0x110
[  336.203924][ T9136]  ? exc_page_fault+0x5f8/0x920
[  336.203949][ T9136]  do_fast_syscall_32+0x34/0x80
[  336.203971][ T9136]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  336.203993][ T9136] RIP: 0023:0xf748d579
[  336.204009][ T9136] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  336.204026][ T9136] RSP: 002b:00000000f5116590 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[  336.204049][ T9136] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5116620
[  336.204063][ T9136] RDX: 000000000000000f RSI: 00000000f747cff4 RDI: 0000000000000000
[  336.204075][ T9136] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  336.204086][ T9136] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  336.204098][ T9136] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  336.204128][ T9136]  </TASK>
[  336.536419][  T979] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  336.734238][  T979] usb 4-1: config 1 has an invalid descriptor of length 121, skipping remainder of the config
[  336.749040][  T979] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  336.751043][ T9147] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1070'.
[  336.760056][  T979] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  336.786528][  T979] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  336.795591][  T979] usb 4-1: SerialNumber: syz
[  336.932174][ T5153] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  337.027429][  T979] usb 4-1: 0:2 : does not exist
[  337.047804][  T979] usb 4-1: USB disconnect, device number 44
[  337.293105][ T5946] udevd[5946]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  337.776311][   T30] kauditd_printk_skb: 28 callbacks suppressed
[  337.776336][   T30] audit: type=1326 audit(1743800844.438:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9155 comm="syz.3.1074" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x0
[  337.921711][ T5896] usbhid 3-1:1.0: can't add hid device: -71
[  337.931039][ T5896] usbhid 3-1:1.0: probe with driver usbhid failed with error -71
[  337.967431][ T5896] usb 3-1: USB disconnect, device number 41
[  338.067712][ T9167] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1077'.
[  338.092648][ T9167] bridge1: entered promiscuous mode
[  338.098247][ T9167] bridge1: entered allmulticast mode
[  338.843259][ T9182] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1080'.
[  339.151757][ T5838] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  339.341833][ T5838] usb 4-1: Using ep0 maxpacket: 32
[  339.351986][ T5838] usb 4-1: config 0 interface 0 has no altsetting 0
[  339.360804][ T5838] usb 4-1: New USB device found, idVendor=2040, idProduct=c603, bcdDevice= 1.8e
[  339.374074][ T5838] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  339.628381][ T5838] usb 4-1: config 0 descriptor??
[  339.654295][ T5838] usb 4-1: dvb_usb_v2: found a 'Hauppauge 126xxx ATSC+' in warm state
[  339.680223][ T5838] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  339.765401][ T5838] dvbdev: DVB: registering new adapter (Hauppauge 126xxx ATSC+)
[  339.780729][ T5838] usb 4-1: media controller created
[  339.837691][ T5838] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  339.866061][ T9184] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000019: 0000 [#1] SMP KASAN PTI
[  339.878012][ T9184] KASAN: null-ptr-deref in range [0x00000000000000c8-0x00000000000000cf]
[  339.886437][ T9184] CPU: 1 UID: 0 PID: 9184 Comm: syz.3.1084 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  339.898069][ T9184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  339.908123][ T9184] RIP: 0010:__mutex_lock+0x15d/0x10c0
[  339.913630][ T9184] Code: c0 80 b6 73 9a 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 07 0e 00 00 83 3d 60 1a 42 0e 00 75 21 49 8d 7e 60 48 89 f8 48 c1 e8 03 <42> 80 3c 38 00 74 05 e8 b7 e4 fb f5 4d 39 76 60 0f 85 81 0d 00 00
[  339.933335][ T9184] RSP: 0018:ffffc90005336f60 EFLAGS: 00010202
[  339.939435][ T9184] RAX: 0000000000000019 RBX: ffffc90005337020 RCX: ffffffff9a73b603
[  339.948066][ T9184] RDX: ffff88807f331e00 RSI: ffffffff8e4fc7de RDI: 00000000000000c8
[  339.956139][ T9184] RBP: ffffc900053370f8 R08: ffffc90005337067 R09: 0000000000000000
[  339.964310][ T9184] R10: ffffc90005337040 R11: fffff52000a66e0d R12: 0000000000000000
[  339.972577][ T9184] R13: ffffc90005337028 R14: 0000000000000068 R15: dffffc0000000000
[  339.980661][ T9184] FS:  0000000000000000(0000) GS:ffff888125097000(0063) knlGS:00000000f50c6b40
[  339.989609][ T9184] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  339.996582][ T9184] CR2: 0000000080008000 CR3: 000000007dbd6000 CR4: 00000000003526f0
[  340.004594][ T9184] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  340.012764][ T9184] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  340.020861][ T9184] Call Trace:
[  340.024178][ T9184]  <TASK>
[  340.027145][ T9184]  ? __mutex_lock+0x380/0x10c0
[  340.032032][ T9184]  ? __lock_acquire+0xad5/0xd80
[  340.037182][ T9184]  ? dvb_usbv2_generic_write+0x26/0x50
[  340.042684][ T9184]  ? __pfx___mutex_lock+0x10/0x10
[  340.047757][ T9184]  ? __pfx___mutex_lock+0x10/0x10
[  340.052817][ T9184]  ? trace_contention_end+0x3c/0x120
[  340.058490][ T9184]  ? __mutex_lock+0x380/0x10c0
[  340.063319][ T9184]  dvb_usbv2_generic_write+0x26/0x50
[  340.068976][ T9184]  mxl111sf_ctrl_msg+0x172/0x2e0
[  340.074060][ T9184]  mxl111sf_write_reg+0xda/0x1f0
[  340.079060][ T9184]  ? __pfx_mxl111sf_write_reg+0x10/0x10
[  340.084748][ T9184]  ? is_bpf_text_address+0x26/0x2a0
[  340.090145][ T9184]  ? is_bpf_text_address+0x288/0x2a0
[  340.095591][ T9184]  mxl111sf_i2c_xfer+0x923/0x8aa0
[  340.101119][ T9184]  ? cgroup_rstat_updated+0x144/0xc40
[  340.106736][ T9184]  ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[  340.113826][ T9184]  ? __switch_to+0xe97/0x1c30
[  340.118988][ T9184]  ? __pfx_mxl111sf_i2c_xfer+0x10/0x10
[  340.124683][ T9184]  ? __lock_acquire+0xad5/0xd80
[  340.129576][ T9184]  ? __lock_acquire+0xad5/0xd80
[  340.134467][ T9184]  ? __lock_acquire+0xad5/0xd80
[  340.139348][ T9184]  ? do_raw_spin_lock+0x151/0x370
[  340.144519][ T9184]  ? _raw_spin_unlock_irqrestore+0x90/0x140
[  340.150716][ T9184]  ? look_up_lock_class+0x7b/0x170
[  340.155876][ T9184]  ? register_lock_class+0x54/0x330
[  340.161210][ T9184]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  340.167585][ T9184]  ? __lock_acquire+0xad5/0xd80
[  340.172475][ T9184]  ? do_raw_spin_lock+0x151/0x370
[  340.177721][ T9184]  ? __pfx_mxl111sf_i2c_xfer+0x10/0x10
[  340.183224][ T9184]  __i2c_transfer+0x859/0x2250
[  340.188106][ T9184]  ? _raw_spin_unlock_irqrestore+0x90/0x140
[  340.194216][ T9184]  ? lockdep_hardirqs_on+0x9d/0x150
[  340.200183][ T9184]  ? __pfx___i2c_transfer+0x10/0x10
[  340.206180][ T9184]  ? rt_mutex_lock_nested+0x15e/0x1e0
[  340.211915][ T9184]  ? i2c_transfer+0x12d/0x430
[  340.217175][ T9184]  i2c_transfer+0x2c2/0x430
[  340.221732][ T9184]  ? __pfx_i2c_transfer+0x10/0x10
[  340.227051][ T9184]  i2c_transfer_buffer_flags+0x182/0x260
[  340.232996][ T9184]  ? __pfx_i2c_transfer_buffer_flags+0x10/0x10
[  340.239387][ T9184]  ? rcu_is_watching+0x15/0xb0
[  340.244209][ T9184]  ? trace_kmalloc+0x1f/0xd0
[  340.248856][ T9184]  ? i2cdev_read+0xe6/0x220
[  340.253388][ T9184]  i2cdev_read+0x10a/0x220
[  340.258024][ T9184]  ? __pfx_i2cdev_read+0x10/0x10
[  340.263076][ T9184]  vfs_read+0x21f/0xb90
[  340.267285][ T9184]  ? __pfx_vfs_read+0x10/0x10
[  340.272227][ T9184]  ? __fget_files+0x2a/0x420
[  340.276864][ T9184]  ? __fget_files+0x2a/0x420
[  340.281594][ T9184]  ? __fget_files+0x39d/0x420
[  340.286421][ T9184]  ? __fget_files+0x2a/0x420
[  340.291160][ T9184]  ksys_read+0x19d/0x2d0
[  340.295554][ T9184]  ? __pfx_ksys_read+0x10/0x10
[  340.300368][ T9184]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  340.307166][ T9184]  ? lockdep_hardirqs_on+0x9d/0x150
[  340.312415][ T9184]  __do_fast_syscall_32+0xb4/0x110
[  340.317577][ T9184]  ? exc_page_fault+0x5f8/0x920
[  340.322462][ T9184]  do_fast_syscall_32+0x34/0x80
[  340.327353][ T9184]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  340.333723][ T9184] RIP: 0023:0xf7fa3579
[  340.337825][ T9184] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  340.357567][ T9184] RSP: 002b:00000000f50c655c EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[  340.366241][ T9184] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000000
[  340.374344][ T9184] RDX: 00000000fffffffd RSI: 0000000000000000 RDI: 0000000000000000
[  340.382376][ T9184] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  340.390386][ T9184] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  340.398563][ T9184] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  340.406884][ T9184]  </TASK>
[  340.409928][ T9184] Modules linked in:
[  340.414096][    C1] vkms_vblank_simulate: vblank timer overrun
[  340.421592][ T9184] ---[ end trace 0000000000000000 ]---
[  340.431134][ T9192] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1086'.
[  340.607616][ T9184] RIP: 0010:__mutex_lock+0x15d/0x10c0
[  340.616554][ T9184] Code: c0 80 b6 73 9a 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 07 0e 00 00 83 3d 60 1a 42 0e 00 75 21 49 8d 7e 60 48 89 f8 48 c1 e8 03 <42> 80 3c 38 00 74 05 e8 b7 e4 fb f5 4d 39 76 60 0f 85 81 0d 00 00
[  340.669108][ T9184] RSP: 0018:ffffc90005336f60 EFLAGS: 00010202
[  340.691024][ T9184] RAX: 0000000000000019 RBX: ffffc90005337020 RCX: ffffffff9a73b603
[  340.724098][ T9184] RDX: ffff88807f331e00 RSI: ffffffff8e4fc7de RDI: 00000000000000c8
[  340.733729][ T9184] RBP: ffffc900053370f8 R08: ffffc90005337067 R09: 0000000000000000
[  340.742559][ T9184] R10: ffffc90005337040 R11: fffff52000a66e0d R12: 0000000000000000
[  340.752218][ T9184] R13: ffffc90005337028 R14: 0000000000000068 R15: dffffc0000000000
[  340.760893][ T9184] FS:  0000000000000000(0000) GS:ffff888124f97000(0063) knlGS:00000000f50c6b40
[  340.770794][ T9184] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  340.778808][ T9184] CR2: 0000000080202018 CR3: 000000007dbd6000 CR4: 00000000003526f0
[  340.807532][ T9184] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  340.895192][ T9184] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  340.903702][ T9184] Kernel panic - not syncing: Fatal exception
[  340.910238][ T9184] Kernel Offset: disabled
[  340.914578][ T9184] Rebooting in 86400 seconds..