last executing test programs:

3.304664695s ago: executing program 3 (id=293):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) (async)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
r3 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/keycreate\x00', 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) (async)
write$selinux_attr(r3, 0x0, 0x0) (async)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})

2.419962836s ago: executing program 3 (id=299):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000001018610f4205ae06d6c011703010902240001010000000904690202ff5aa30009050402100000fa000905820240"], 0x0)
r1 = syz_usb_connect(0x5, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="120100007856bb40da0b53813de20102030109021200010000000009040000000206"], 0x0)
syz_usb_control_io$rtl8150(r1, &(0x7f00000000c0)={0x14, &(0x7f0000000000)={0x60, 0x23, 0x2, {0x2, 0x24}}, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"]}, &(0x7f0000000300)={0x2c, &(0x7f0000000380)={0x20, 0x14, 0xbe, "ed48a654e1a212a4550bc22b583e97bc8910374c27528fcd2d2d3c81a1d13f68ed87187db772e3cdaf5c31407389516bc6a782bff5163bcea52c8fbde5d2b6f2ad24a02626904f7309ebb6b72d06fc0b75c4d2b185228c08ff6cc6b4d4d23faf05ccfd047fc49f22909f6299ee0f9662a50fc114a9b17cbc2335fb714b4d53894714f7b6b2eb08a0502ade26fcf9b78f0903ea9ee2112779e0420e621e06e58e5dfc812cdd395fed1f6115e640b6182642a51cc1bde1794178f08143b0e4"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0xd}, &(0x7f0000000340)={0x0, 0x8, 0x1}, &(0x7f0000000240)={0xc0, 0x5, 0x3, "56ee13"}, &(0x7f00000002c0)})
syz_usb_control_io$uac1(r1, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000280)=ANY=[@ANYBLOB="01000400000012"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_connect$printer(0x1, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x7, 0x60, 0x1, "", [{{0x9, 0x4, 0x0, 0x6d, 0x2, 0x7, 0x1, 0x1, 0x9, "", {{{0x9, 0x5, 0x1, 0x2, 0x20, 0x6, 0x7, 0xf}}, [{{0x9, 0x5, 0x82, 0x2, 0x10, 0x1, 0x8, 0x6}}]}}}]}}]}}, &(0x7f00000009c0)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x110, 0x2, 0x7, 0x4f, 0x10, 0x99}, 0x61, &(0x7f0000000480)={0x5, 0xf, 0x61, 0x5, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x8, 0x7f, 0x69, 0x5}, @ss_container_id={0x14, 0x10, 0x4, 0x3e, "d8fdbe02521078d2e07d8772dd3eb29f"}, @ssp_cap={0x1c, 0x10, 0xa, 0x0, 0x4, 0xc, 0x0, 0x0, [0xffc000, 0xffc000, 0x30, 0xff00]}, @ssp_cap={0x18, 0x10, 0xa, 0x10, 0x3, 0x2, 0xf0f, 0x9, [0x30, 0x30, 0x3fc0]}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xc, 0xf9, 0xf, 0x1}]}, 0x9, [{0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x444}}, {0x6e, &(0x7f0000000600)=@string={0x6e, 0x3, "08f628006bbd0de776a6e49a3bee4a07f1f9ea0aea78f4e25b7e63f0cf65f2ece4ce11bb11f292ca842ef1054375f58610692d4fc0ddc686d22878cde9c8661038b6860c630531372ba96a84d72951ae49db011e77f7365581f6c4241be8e39c8eced5d5363826f070eba3fb"}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x415}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x804}}, {0xfc, &(0x7f0000000700)=@string={0xfc, 0x3, "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"}}, {0xdd, &(0x7f0000000800)=@string={0xdd, 0x3, "17ea0ac9836545853fcfc178909b6ca39c15781fafe908cc7e27211ecfcb242d9fcde70673c39fd9904f3504aafed1399a7c1f2d3d5154ce92f32ddadb88af352d1528afc4153c750fb4618e59cd52a77d3e6765b38b762f7b4cde3821e0fcfd141b9c9941c48de8a36511f09a9efea3f21311c2f16d0ced6fc55eb1b05eb19f6982469659fa7b924a327d42f1b5cb99ddcd87b5498e6da4e61bc5ff5dec185e50a86f430688c364768e65a51e5b30e42e3e9f477b3e8147a1b0cf69822166485e282d5734d37d2690c3b59cf528811891b30204a9b9b18a5dac5b"}}, {0x4, &(0x7f0000000900)=@lang_id={0x4, 0x3, 0x820}}, {0x4, &(0x7f0000000940)=@lang_id={0x4, 0x3, 0xf8ff}}, {0x4, &(0x7f0000000980)=@lang_id={0x4, 0x3, 0xc1a}}]})
r2 = syz_usb_connect$printer(0x6, 0x36, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0x7, 0x1, 0x3, 0x0, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xa2, 0x10, 0x5, "", [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x81, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0x6, 0x3, 0xc}}, [{{0x9, 0x5, 0x82, 0x2, 0x400, 0x1, 0x1c, 0x3}}]}}}]}}]}}, &(0x7f0000000c40)={0xa, &(0x7f0000000200)={0xa, 0x6, 0x200, 0x6, 0xc0, 0xfc, 0x8, 0xa}, 0x4c, &(0x7f0000000a80)={0x5, 0xf, 0x4c, 0x5, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x5, 0x2, 0x7ff}, @ssp_cap={0x14, 0x10, 0xa, 0x9, 0x2, 0x9, 0xff0f, 0xf1c8, [0xff0000, 0xc0]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x9, 0x3, 0x8, 0x1ff}, @wireless={0xb, 0x10, 0x1, 0x2, 0x80, 0x1e, 0x80, 0x7, 0x2}, @ss_container_id={0x14, 0x10, 0x4, 0x2, "08c9b2eac377d3ee1b97039446ed12bd"}]}, 0x5, [{0x4, &(0x7f0000000b00)=@lang_id={0x4, 0x3, 0x200a}}, {0x4, &(0x7f0000000b40)=@lang_id={0x4, 0x3, 0x457}}, {0x4, &(0x7f0000000b80)=@lang_id={0x4, 0x3, 0x419}}, {0x4, &(0x7f0000000bc0)=@lang_id={0x4, 0x3, 0x3c0a}}, {0x4, &(0x7f0000000c00)=@lang_id={0x4, 0x3, 0x412}}]})
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8a401, 0x0)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000100)={0x800, 0xb, 0x7, 0x3ff, 0x17, "465e4b0e84e161d7"})
write(r3, &(0x7f0000001400)="3932b0fe77b6a40a8f7f13f54aa5b7be458d2d0cf3cd38a43bfba2b045027541807a27cef7851a693365acd4b76f9a5713fe27619e4cfab4876b9d63b9ec70e24560be26895f232c8f3bcd48ce470794a92471ed11c220bab2f3e8af4f3592234dcc5b770d", 0x65)
syz_usb_control_io$printer(r2, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, &(0x7f0000000400)={0x2c, &(0x7f0000000280)={0x0, 0x31, 0x6, "ff089f013949"}, 0x0, 0x0, 0x0, 0x0})
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/vlan/vlan0\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8923, &(0x7f0000000000)={'vlan0\x00', @local})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000002, 0x1010, r4, 0x8000000)
syz_usb_control_io$rtl8150(r0, 0x0, &(0x7f0000000300)={0x2c, &(0x7f00000002c0)={0x20, 0x16, 0xf, "394c60771ca927dbf8d5b90eafd5de"}, 0x0, 0x0, 0x0, 0x0})

1.306944925s ago: executing program 1 (id=304):
ptrace$setregset(0x4205, 0x0, 0x1, &(0x7f0000000100)={&(0x7f0000000040)="dcef58b7f29c1f7c93d183044aedba283413e674c7719c33a4b17f028f68610a6c55bb2bf8282853f3e16f8394a8676ff55a3507e2ad50248c6130863b0f7433c7fbc9b978a39eae88bffd05d139cedbee444f7c98e1f92b0f64462b4b470bedced2125e0b1f38fbaa348c6d75aa1a4011e9cdae15ecb9309b", 0x79})
add_key$user(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x5a000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3, 0x0, 0x8, 0x6, 0x40}, {0xffffa7ff, 0x54000, 0xa, 0x3, 0x2, 0x0, 0x0, 0x0, 0x5, 0xff}, {0x6000, 0xc000, 0xa, 0x0, 0x7, 0xc4, 0x0, 0x0, 0x48, 0x3, 0x0, 0xfc}, {0x4, 0x1000, 0xa, 0x0, 0x1, 0x0, 0x7, 0x0, 0x8, 0xfe, 0x4, 0x4}, {0x6000, 0xffff1000, 0x10, 0x0, 0x0, 0x4, 0x0, 0xfd, 0x0, 0x3c}, {0x4, 0x0, 0xe, 0x78, 0x5, 0x80, 0x0, 0x0, 0x3, 0xff, 0x1}, {0x0, 0xeeee0000, 0xa, 0x4, 0x0, 0x0, 0xa1, 0x20, 0x0, 0x0, 0x8}, {0x30000, 0x6000, 0xc, 0x0, 0x0, 0x7, 0x8, 0x40, 0x26, 0x1, 0x0, 0x2}, {0x80a0000, 0x8cc}, {0xdddd1000}, 0x5dfdfff9, 0x0, 0x0, 0x114, 0x0, 0xf801, 0x0, [0x80000001, 0x0, 0x1]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.289074616s ago: executing program 1 (id=305):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000040)=0x4)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000080)={0x3, 0xbde, 0x0, &(0x7f0000000180)="a1984ec3aec3fc2e025f90eda6dbc903939aac644fd36f1e65174cae030c42cbacc392851a695f247112e91f059460a2c031929dc0515ac7cd20775ff9da9c2b6cb48968dcd6d8d982c492932c572f084d3af58650d207eec0794b3e47c5678c36b99eed61e1dbac68ce8a79aa21a51202018bdc4a51489844f785887083841d65c129992bbe5a51c71b95a9847d2bdede66c6e3184c386faf938fd6db888e73a5c0dcc69c3de7458e68ed33226a8d1c", 0x0, 0xb0})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x7, 0x8, 0xc5, 0x0, 0x6, 0x9, 0x4, 0x6, 0x1, 0xf8, 0x0, 0x9, 0x0, 0x3, 0x6, 0x6, 0x71, 0x4, 0xfe, '\x00', 0x4, 0x4})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.228913308s ago: executing program 1 (id=306):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000b, 0x204031, 0xffffffffffffffff, 0xffffd000)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x200})
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
ioctl$UFFDIO_MOVE(r0, 0xc028aa05, &(0x7f0000000180)={&(0x7f0000124000/0x3000)=nil, &(0x7f0000ed2000/0x3000)=nil, 0x3000})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2002, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x104, 0x40, 0x15}, 0x18)
ioctl$FS_IOC_GETFSLABEL(r4, 0x81009431, &(0x7f0000000300))
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x7c, 0x0, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x101301)
ioctl$USBDEVFS_RESET(r5, 0x5514)
r6 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$EXT4_IOC_SETFSUUID(r6, 0x4008662c, &(0x7f0000000040)={0x10, 0x0, "b46f84ab0365168bb4d5b997de102217"})
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000001c0)={{0x1000, 0x1000, 0x8, 0x9, 0xfb, 0xe4, 0x40, 0x7, 0x0, 0x2b, 0x15, 0x2c}, {0x5000, 0x2000, 0x10, 0x0, 0x40, 0x5, 0x6d, 0x6, 0x5, 0x3, 0x3, 0xb5}, {0xeeef0000, 0xf000, 0xe, 0x5, 0x3, 0x7, 0x7, 0x9, 0x11, 0xa7, 0x4, 0x81}, {0x80a0000, 0xeeee0000, 0xb, 0x3, 0x4, 0x42, 0xb, 0xff, 0x8, 0x7, 0xe}, {0x10000, 0xd000, 0xb, 0x3, 0x3, 0x6, 0xab, 0x7b, 0x0, 0x2, 0xdf, 0x83}, {0x1000, 0x100000, 0xc, 0xc, 0xb1, 0x8, 0x21, 0xa0, 0x82, 0x3, 0x1}, {0x3000, 0x8000000, 0x4, 0x5, 0x7, 0x1, 0x7, 0x3, 0x5, 0x81, 0x1, 0x70}, {0x100000, 0x1000, 0xd, 0x5, 0x81, 0x7, 0x1, 0x34, 0x2, 0xc, 0xb0, 0x9}, {0x80a0000, 0x1000}, {0x10000, 0x7}, 0x40000031, 0x0, 0x8000000, 0x2024, 0x3, 0x800, 0x3000, [0xaffe, 0x3, 0x80, 0xfff]})

1.106861582s ago: executing program 1 (id=307):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup(r3)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a0000f80180c2000002527bcee565f489066d"], 0xfdef)
getsockopt$sock_cred(r4, 0x1, 0x4d, 0x0, &(0x7f0000000380)=0xfffffffffffffff9)
getsockopt$inet6_tcp_int(r0, 0x6, 0x18, 0x0, &(0x7f0000000080))
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r5, 0x29, 0xb, 0x0, 0x0)
r6 = memfd_secret(0x80000)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x5e22, 0x0, @empty}, 0x1c)
listen(r7, 0x5)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000000200)={0xa, 0x4e22, 0x2, @empty, 0x8}, 0x1c)
listen(r8, 0x204)
r9 = socket$netlink(0x10, 0x3, 0x4)
writev(r9, &(0x7f00000015c0)=[{&(0x7f0000000100)="580000001500add427323b0c45b4560aa490ffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a09000000ffffffffe7ee00000000000000000200000aae4fb7b2745c964015b000ccbaab3df87a9c37fe6d65d17f9814f682bdaaf54bb1", 0x72}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="3dde903733570301de37ba382fad29df319730ccff00fe0cc88f24e46c873f0ec20a11a9dd698d4ebeafd9f422fe6974bcc7292eaf2fdbbea03a99741da4501558a4c982204a357faae36141b215a31e7df388c5027a0c4baf61fcc6804251eb2cd55c4f8d0322cd6d63b73bffd79fad0f78ad2671203c2d49fb4ce0b2d833f73fb71f9ea0e9880064bd590db7c61a51284c7c746c6510c3ca7bf601a9ffe7f485e39df4f887c703cfd11ab3982a2799aeb0d21cbc15", 0xb6}, {&(0x7f00000014c0)="b06b577896eabe1b07f7fb2bb81749775ac9187923c22e6bc0a5d7b6a68ed76c6d324c9eb1736eb6527faea42bf3a54aef3027cedc15b2f1d64baf6060feaf4e936438474d8374073df95c3222091c052ad48e621dcb1dc6514cee316efd772ebe0e324b234e6651c4b984ed4fb61ed0ad40e84cb378e65460b3d3fa3c72513783599dc035872816ef1de490111c84df5f707f91d12ca60807ff4585c4d2ceb2f9c809f8df631bd3307fd7bc625e48fb997e5fa2098f2ee30ab7edce3bd735f154aa4df66883778badce6bce21bc0c6999c128f0f250c660531785", 0xdb}], 0x4)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r6, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="d800000003010500732b00c0387d89000000000000000001000001240018800800034000000003080002400000000108000140000000020800014000000000140005800e0001006972632d32303030300000001c00198008000200100000000800020000000000080001004400000070000d802c000380060002004e210000060001004e200000060002004e230000060002004e210000060001004e22000008000100ac1e0001140004002001000000000000000000000000000114000500ff02000000000000000000000000000108000100ffffffff08000200e0000001"], 0xd8}}, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002380), 0xffffffffffffffff)
inotify_add_watch(r6, &(0x7f0000001600)='./file0\x00', 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000023c0)={'veth0_to_hsr\x00', <r12=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r10, &(0x7f0000002580)={0x0, 0x0, &(0x7f0000002540)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r11, @ANYRES16=r5, @ANYRES32=r12, @ANYRES16=r1], 0x2c}}, 0x0)
r13 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001640)='/proc/asound/seq/clients\x00', 0x0, 0x0)
preadv(r13, &(0x7f0000000040)=[{&(0x7f0000000180)=""/128, 0x80}], 0x16c, 0x29, 0x0)

1.080265793s ago: executing program 1 (id=308):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000040)=0xc, 0x4)
bind$bt_hci(r0, &(0x7f0000000000)={0x27}, 0x74)

973.461327ms ago: executing program 1 (id=309):
syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120141014813442024040075ee69010203"], 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x26e1, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x8901, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110c23003f)
write$cgroup_devices(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="80fd", @ANYRES64=r0], 0xa)

759.474434ms ago: executing program 2 (id=312):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101302, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000100)=[{0x6, 0xb, 0x0, 0x7fff0000}]})
socket$can_raw(0x1d, 0x3, 0x1)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r2, 0x400448cb, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
close_range(0xffffffffffffffff, r3, 0x2)

690.531167ms ago: executing program 2 (id=313):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300), 0x802, 0x0)
bind$802154_dgram(0xffffffffffffffff, &(0x7f0000000100)={0x24, @long={0x3, 0xffff}}, 0x14)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1100}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="0a080000000000000093ced5c95d7236869c9e39fd4cc0e55b0e566eff5fa83d90db4d04ca49fcceba350999bfa604e97e471424f2bf98", @ANYRES16=r1, @ANYBLOB="010026bd7000fcdbdf2512000000080006000300000008000800000010000800090065cb00000800070000000000080009000100010008000600a4010000"], 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r2 = socket$unix(0x1, 0x1, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
bind$unix(r2, &(0x7f0000000000)=@abs={0x1, 0x0, 0x4e24}, 0x2)
ioctl$UI_SET_MSCBIT(r0, 0x40045568, 0x27)

634.886548ms ago: executing program 2 (id=314):
ptrace$setregset(0x4205, 0x0, 0x1, &(0x7f0000000100)={&(0x7f0000000040)="dcef58b7f29c1f7c93d183044aedba283413e674c7719c33a4b17f028f68610a6c55bb2bf8282853f3e16f8394a8676ff55a3507e2ad50248c6130863b0f7433c7fbc9b978a39eae88bffd05d139cedbee444f7c98e1f92b0f64462b4b470bedced2125e0b1f38fbaa348c6d75aa1a4011e9cdae15ecb9309b", 0x79})
add_key$user(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x5a000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3, 0x0, 0x8, 0x6, 0x40}, {0xffffa7ff, 0x54000, 0xa, 0x3, 0x2, 0x0, 0x0, 0x0, 0x5, 0xff}, {0x6000, 0xc000, 0xa, 0x0, 0x7, 0xc4, 0x0, 0x0, 0x48, 0x3, 0x0, 0xfc}, {0x4, 0x1000, 0xa, 0x0, 0x1, 0x0, 0x7, 0x0, 0x8, 0xfe, 0x4, 0x4}, {0x6000, 0xffff1000, 0x10, 0x0, 0x0, 0x4, 0x0, 0xfd, 0x0, 0x3c}, {0x4, 0x0, 0xe, 0x78, 0x5, 0x80, 0x0, 0x0, 0x3, 0xff, 0x1}, {0x0, 0xeeee0000, 0xa, 0x4, 0x0, 0x0, 0xa1, 0x20, 0x0, 0x0, 0x8}, {0x30000, 0x6000, 0xc, 0x0, 0x0, 0x7, 0x8, 0x40, 0x26, 0x1, 0x0, 0x2}, {0x80a0000, 0x8cc}, {0xdddd1000}, 0x5dfdfff9, 0x0, 0x0, 0x114, 0x0, 0xf801, 0x0, [0x80000001, 0x0, 0x1]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

626.029329ms ago: executing program 2 (id=315):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000040)=0x4)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000080)={0x3, 0xbde, 0x0, &(0x7f0000000180)="a1984ec3aec3fc2e025f90eda6dbc903939aac644fd36f1e65174cae030c42cbacc392851a695f247112e91f059460a2c031929dc0515ac7cd20775ff9da9c2b6cb48968dcd6d8d982c492932c572f084d3af58650d207eec0794b3e47c5678c36b99eed61e1dbac68ce8a79aa21a51202018bdc4a51489844f785887083841d65c129992bbe5a51c71b95a9847d2bdede66c6e3184c386faf938fd6db888e73a5c0dcc69c3de7458e68ed33226a8d1c8e", 0x0, 0xb1})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x7, 0x8, 0xc5, 0x0, 0x6, 0x9, 0x4, 0x6, 0x1, 0xf8, 0x0, 0x9, 0x0, 0x3, 0x6, 0x6, 0x71, 0x4, 0xfe, '\x00', 0x4, 0x4})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

539.558622ms ago: executing program 2 (id=316):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8102, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="8ee8c9b8ee08b228660f3801b2d6353ec14b0081660f3882040f01cf0fc72d2626652e0f01ca67660fc7b1fdb600006635002000000f22e0", 0x38}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f00000022c0)=@vmx={0x0, 0x0, 0x2080, {0x0, 0x2000}, {"000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ddb0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400"}})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x30)

413.060646ms ago: executing program 0 (id=317):
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x2, &(0x7f0000000140)=@gcm_256={{0x303, 0x3a}, "c4d65ab71f5ef2fe", "9e8e0000b535277602c8be9a8567828f711330ff2bb17b550800", "dc5db43f", "80031f0000000200"}, 0x38)
rt_tgsigqueueinfo(0x0, 0x0, 0x1c, &(0x7f0000000140)={0xfffffffe, 0x4, 0x27})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'gre0\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000140)=0x8, 0x4)
signalfd(r0, &(0x7f0000004280)={[0x6]}, 0x8)
pipe(&(0x7f0000019480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
rt_sigprocmask(0x0, &(0x7f0000004200)={[0x5]}, &(0x7f0000004240), 0x8)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
r7 = ioctl$KVM_GET_STATS_FD_cpu(r6, 0xaece)
r8 = socket$inet6(0xa, 0x3, 0xff)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'veth0_to_bond\x00', <r9=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r8, 0x8916, &(0x7f0000000080)={@dev={0xfe, 0x80, '\x00', 0x34}, 0x5a, r9})
read$FUSE(r7, &(0x7f00000014c0)={0x2020}, 0x2020)
read$FUSE(r7, &(0x7f0000000080)={0x2020}, 0x2020)
splice(r2, 0x0, r3, 0x0, 0x10500, 0x0)
sendto$packet(r0, &(0x7f0000000340)="05030006e8fe091c6202a0ffffffff006003000000007f141434e3177f43055762cb80948864113b022543424aa608", 0xfef2, 0x0, &(0x7f0000000a80)={0x11, 0x88a8, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)
r10 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x147800, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r11, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c00000010000107000001000000000003000000060001"], 0x1c}}, 0x0)
r12 = open$dir(&(0x7f0000000000)='./file0\x00', 0x602000, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
setreuid(0xee01, 0xee01)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
mkdirat(r12, &(0x7f0000000040)='./file0\x00', 0x20)
readv(r10, &(0x7f00000031c0)=[{&(0x7f0000003200)=""/4096, 0x1000}], 0x1)

412.628406ms ago: executing program 3 (id=318):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020}, 0x2020)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}})

411.894626ms ago: executing program 3 (id=319):
ptrace$setregset(0x4205, 0x0, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x5a000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3, 0x0, 0x8, 0x6, 0x40}, {0xffffa7ff, 0x54000, 0xa, 0x3, 0x2, 0x0, 0x0, 0x0, 0x5, 0xff}, {0x6000, 0xc000, 0xa, 0x0, 0x7, 0xc4, 0x0, 0x0, 0x48, 0x3, 0x0, 0xfc}, {0x4, 0x1000, 0xa, 0x0, 0x1, 0x0, 0x7, 0x0, 0x8, 0xfe, 0x4, 0x4}, {0x6000, 0xffff1000, 0x10, 0x0, 0x0, 0x4, 0x0, 0xfd, 0x0, 0x3c}, {0x4, 0x0, 0xe, 0x78, 0x5, 0x80, 0x0, 0x0, 0x3, 0xff, 0x1}, {0x0, 0xeeee0000, 0xa, 0x4, 0x0, 0x0, 0xa1, 0x20, 0x0, 0x0, 0x8}, {0x30000, 0x6000, 0xc, 0x0, 0x0, 0x7, 0x8, 0x40, 0x26, 0x1, 0x0, 0x2}, {0x80a0000, 0x8cc}, {0xdddd1000}, 0x5dfdfff9, 0x0, 0x0, 0x114, 0x0, 0xf801, 0x0, [0x80000001, 0x0, 0x1]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

409.893976ms ago: executing program 2 (id=320):
r0 = syz_usb_connect(0x2, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000751c0110e60f00989ad1010203010902240001000000000904290202b48cbb0009050402100000fa000905820240"], 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac2(r0, &(0x7f0000000180)={0x14, &(0x7f0000000080)={0x40, 0xd, 0x71, {0x71, 0x22, "a14423a1d176106d4742ace97d8048ae690b41a5313112123d21359d64f0f874d8e9a6ebbd01f6244d64f3eab76fefed7fdb508695f7a24703790d20d1a1de9742882c51da1b4a103d3da0a5f734b12f248effcbb04cfb0dd617911359e719654f89e05316dd27c3d1f7a7693562a1"}}, &(0x7f0000000100)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xc01}}}, &(0x7f0000000480)={0x44, &(0x7f00000001c0)={0x40, 0x15, 0x62, "57de714d2d934e77d5663489ae61ae76afdd3a0f79570401d8e00318cfdf6a45fbf22b602b312ae6dcd0ba86a5e6fb74ae87a3c7e4d79694ac1fc3f600a60afd20d96a65eef67141103d40fec2f1cc54a12af96de12246202c26adfe59f60c10fd30"}, &(0x7f0000000240)={0x0, 0xa, 0x1, 0x18}, &(0x7f0000000280)={0x0, 0x8, 0x1, 0x9}, &(0x7f00000002c0)={0x20, 0x81, 0x3, "428ec2"}, &(0x7f0000000300)={0x20, 0x82, 0x1, "fa"}, &(0x7f0000000340)={0x20, 0x83, 0x1, 'j'}, &(0x7f0000000380)={0x20, 0x84, 0x3, "ba3bda"}, &(0x7f00000003c0)={0x20, 0x85, 0x3, "8369c7"}})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

385.149197ms ago: executing program 0 (id=321):
write(0xffffffffffffffff, &(0x7f0000000040)="1c0000001a009b8a14e5f4070042", 0xe)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x40ac0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev}, &(0x7f0000000080)=0x10)
signalfd(r2, &(0x7f0000000100)={[0xfffffffffffffff8]}, 0x8)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x2, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

367.164707ms ago: executing program 0 (id=322):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
futex(0x0, 0x80, 0xfffefffe, 0x0, 0x0, 0x1)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r2, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x3, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x2bf3, &(0x7f0000000040)={0x0, 0x1333, 0x4000, 0x3, 0x3cb}, 0x0, 0x0, &(0x7f0000000000))
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x1, 0x2, 0x1)
ioctl$SIOCGETLINKNAME(r4, 0x89e0, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a000028060001001a"], 0x1c}}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
write(r5, &(0x7f0000000000)="1c0000001a005f0014f9f40700090400810000000001400000000000", 0x1c)
r6 = socket(0x2, 0xa, 0x5)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r6, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000340)={&(0x7f0000000140)={0x1d4, 0x0, 0x16, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x36}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x5}, @NL80211_ATTR_IE={0x179, 0x2a, [@tim={0x5, 0x5a, {0x3, 0x24, 0x2, "84c1b3c3fc78af725fe91483abf4d5c920114a327efbc12ef9ef3264dfd9a61d22ba126d0d40989a28d91a2c56f20dbf5f1a7739a70ba78492c4804eaf0b09d1f9f036cff442e899df9ace7dbade117d31d6371f687de7"}}, @tim={0x5, 0xd1, {0x7, 0x2f, 0x80, "303b21fa18052fdcdfe4b3597f13c352e8e28e6fe287a5bd3e210febfb178864bf0547f07f66e0f7e08b6ba3523d087cbdd384abfed4ae50c5838607f24af3f5b32eaf31de95310d5318751a31e87cc1d40fb41cb0b5b8140f57c5e4531fe6fdf432cc9b0421810015d295e8381c0bd23cf331b8032be8407e353e122cafc73df52232a9252966843e2a2c03f42391b792ac7de3a2ab1b7c0bd9aee043bb6b1b920f98693c4d784253973af2d33547fc6c78a0bae762cf07c5c3cd4a909cc5ade217ddac700ac953b265e993d611"}}, @perr={0x84, 0x15, {0xff, 0x1, [{{0x0, 0x1}, @device_b, 0x8, @value=@device_b, 0x20}]}}, @tim={0x5, 0x28, {0x7, 0xdb, 0x4, "c0924a65faecbfe5ab56d6ce8286c9bf8b1e494aa2645e28d79a8128f8c4a884ee30edee23"}}, @channel_switch={0x25, 0x3, {0x1, 0x7c, 0x9}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x25}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x3c}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x1d4}, 0x1, 0x0, 0x0, 0x80}, 0x4000010)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) (async)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) (async)
futex(0x0, 0x80, 0xfffefffe, 0x0, 0x0, 0x1) (async)
socket$tipc(0x1e, 0x5, 0x0) (async)
bind$tipc(r0, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10) (async)
socket$tipc(0x1e, 0x5, 0x0) (async)
bind$tipc(r1, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10) (async)
socket$tipc(0x1e, 0x5, 0x0) (async)
sendmsg$tipc(r2, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x3, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) (async)
syz_io_uring_setup(0x2bf3, &(0x7f0000000040)={0x0, 0x1333, 0x4000, 0x3, 0x3cb}, 0x0, 0x0, &(0x7f0000000000)) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x1, 0x2, 0x1) (async)
ioctl$SIOCGETLINKNAME(r4, 0x89e0, 0x0) (async)
sendmsg$nl_generic(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a000028060001001a"], 0x1c}}, 0x0) (async)
socket(0x10, 0x3, 0x0) (async)
write(r5, &(0x7f0000000000)="1c0000001a005f0014f9f40700090400810000000001400000000000", 0x1c) (async)
socket(0x2, 0xa, 0x5) (async)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r6, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000340)={&(0x7f0000000140)={0x1d4, 0x0, 0x16, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x36}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x5}, @NL80211_ATTR_IE={0x179, 0x2a, [@tim={0x5, 0x5a, {0x3, 0x24, 0x2, "84c1b3c3fc78af725fe91483abf4d5c920114a327efbc12ef9ef3264dfd9a61d22ba126d0d40989a28d91a2c56f20dbf5f1a7739a70ba78492c4804eaf0b09d1f9f036cff442e899df9ace7dbade117d31d6371f687de7"}}, @tim={0x5, 0xd1, {0x7, 0x2f, 0x80, "303b21fa18052fdcdfe4b3597f13c352e8e28e6fe287a5bd3e210febfb178864bf0547f07f66e0f7e08b6ba3523d087cbdd384abfed4ae50c5838607f24af3f5b32eaf31de95310d5318751a31e87cc1d40fb41cb0b5b8140f57c5e4531fe6fdf432cc9b0421810015d295e8381c0bd23cf331b8032be8407e353e122cafc73df52232a9252966843e2a2c03f42391b792ac7de3a2ab1b7c0bd9aee043bb6b1b920f98693c4d784253973af2d33547fc6c78a0bae762cf07c5c3cd4a909cc5ade217ddac700ac953b265e993d611"}}, @perr={0x84, 0x15, {0xff, 0x1, [{{0x0, 0x1}, @device_b, 0x8, @value=@device_b, 0x20}]}}, @tim={0x5, 0x28, {0x7, 0xdb, 0x4, "c0924a65faecbfe5ab56d6ce8286c9bf8b1e494aa2645e28d79a8128f8c4a884ee30edee23"}}, @channel_switch={0x25, 0x3, {0x1, 0x7c, 0x9}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x25}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x3c}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x1d4}, 0x1, 0x0, 0x0, 0x80}, 0x4000010) (async)

298.98306ms ago: executing program 0 (id=323):
ptrace$setregset(0x4205, 0x0, 0x1, &(0x7f0000000100)={&(0x7f0000000040)="dcef58b7f29c1f7c93d183044aedba283413e674c7719c33a4b17f028f68610a6c55bb2bf8282853f3e16f8394a8676ff55a3507e2ad50248c6130863b0f7433c7fbc9b978a39eae88bffd05d139cedbee444f7c98e1f92b0f64462b4b470bedced2125e0b1f38fbaa348c6d75aa1a4011e9cdae15ecb9309b", 0x79})
add_key$user(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x5a000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3, 0x0, 0x8, 0x6, 0x40}, {0xffffa7ff, 0x54000, 0xa, 0x3, 0x2, 0x0, 0x0, 0x0, 0x5, 0xff}, {0x6000, 0xc000, 0xa, 0x0, 0x7, 0xc4, 0x0, 0x0, 0x48, 0x3, 0x0, 0xfc}, {0x4, 0x1000, 0xa, 0x0, 0x1, 0x0, 0x7, 0x0, 0x8, 0xfe, 0x4, 0x4}, {0x6000, 0xffff1000, 0x10, 0x0, 0x0, 0x4, 0x0, 0xfd, 0x0, 0x3c}, {0x4, 0x0, 0xe, 0x78, 0x5, 0x80, 0x0, 0x0, 0x3, 0xff, 0x1}, {0x0, 0xeeee0000, 0xa, 0x4, 0x0, 0x0, 0xa1, 0x20, 0x0, 0x0, 0x8}, {0x30000, 0x6000, 0xc, 0x0, 0x0, 0x7, 0x8, 0x40, 0x26, 0x1, 0x0, 0x2}, {0x80a0000, 0x8cc}, {0xdddd1000}, 0x5dfdfff9, 0x0, 0x0, 0x114, 0x0, 0xf801, 0x0, [0x80000001, 0x0, 0x1]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

296.79971ms ago: executing program 3 (id=324):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000040)=0x4)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000080)={0x3, 0xbde, 0x0, &(0x7f0000000180)="a1984ec3aec3fc2e025f90eda6dbc903939aac644fd36f1e65174cae030c42cbacc392851a695f247112e91f059460a2c031929dc0515ac7cd20775ff9da9c2b6cb48968dcd6d8d982c492932c572f084d3af58650d207eec0794b3e47c5678c36b99eed61e1dbac68ce8a79aa21a51202018bdc4a51489844f785887083841d65c129992bbe5a51c71b95a9847d2bdede66c6e3184c386faf938fd6db888e73a5c0dcc69c3de7458e68ed33226a8d1c8e", 0x0, 0xb1})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x7, 0x8, 0xc5, 0x0, 0x6, 0x9, 0x4, 0x6, 0x1, 0xf8, 0x0, 0x9, 0x0, 0x3, 0x6, 0x6, 0x71, 0x4, 0xfe, '\x00', 0x4, 0x4})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

254.907581ms ago: executing program 0 (id=325):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000003280)={0x73622a85, 0xa, 0x4})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0})
dup3(r1, r0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000540)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0xfffffffffffffffd})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0xffffffffffffff67, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000240)={0x30, 0x30, 0x30}}, 0x1040}], 0x0, 0x0, 0x0}) (fail_nth: 3)

175.339414ms ago: executing program 3 (id=326):
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=[@code={0xa, 0x75, {"f326460f019f00200000420f01c5470f01c248b8f61e0000000000000f23c80f21f835080030000f23f8c462bd9791040000000f07c7442400e3420000c744240264000000c7442406000000000f011c24c421e3d040000f009f082c000066660f388000"}}], 0x75})
sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x0, 0x0, 0x1, 0x7}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0xd000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3, 0x0, 0x8, 0x6, 0x40}, {0xffffffff, 0x10000, 0xa, 0x3, 0x2, 0x0, 0x0, 0x0, 0x7, 0xff}, {0x2000, 0x1000, 0xc, 0x0, 0x7, 0xc4, 0x0, 0x0, 0x48, 0x3, 0x0, 0xfc}, {0xeeef0000, 0x1000, 0xa, 0x0, 0x1, 0x0, 0x7, 0x0, 0x8, 0xfe, 0x4, 0x4}, {0x6000, 0xffff1000, 0xe, 0x0, 0x0, 0x4, 0x0, 0xfd, 0x0, 0x3c}, {0x4, 0x0, 0xb, 0x78, 0x5, 0x80, 0x0, 0x0, 0x3, 0xff, 0x1}, {0x0, 0xeeee0000, 0xa, 0x4, 0x0, 0x0, 0xa1, 0x20, 0x0, 0x0, 0x8}, {0x2, 0x6000, 0xc, 0x0, 0x0, 0x7, 0x8, 0x40, 0x26, 0x1, 0x0, 0x2}, {0x80a0000, 0x8cc}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x0, 0x114, 0x0, 0xf801, 0x0, [0x80000001, 0x0, 0x1]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x7ff)
setsockopt$inet6_MCAST_LEAVE_GROUP(r3, 0x29, 0x2d, &(0x7f0000000040)={0x76, {{0xa, 0x4e21, 0x1ff, @loopback, 0x171613cd}}}, 0x88)

0s ago: executing program 0 (id=327):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x2, 0x2, 0x3fffd, 0x3}})
userfaultfd(0x801) (async)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
r2 = syz_io_uring_setup(0x21c0, &(0x7f0000000340)={0x0, 0xca23, 0x200, 0xfffffff7, 0x182}, &(0x7f0000000300), &(0x7f0000ff4000), &(0x7f0000000000))
ioctl$UFFDIO_WRITEPROTECT(r1, 0xc018aa06, &(0x7f0000000280)={{&(0x7f0000ff0000/0xd000)=nil, 0xd000}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
fsetxattr(r2, &(0x7f0000000040)=@random={'osx.', '/dev/kvm\x00'}, &(0x7f0000000080)='\x00', 0x1, 0x0) (async)
fsetxattr(r2, &(0x7f0000000040)=@random={'osx.', '/dev/kvm\x00'}, &(0x7f0000000080)='\x00', 0x1, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {0x9, 0x1}, 0x3, 0x4, &(0x7f0000000040)={0x80, 0x5, 0x84b6, 0x4, 0x4}, 0x8, 0x7, 0x4, 0x0, 0x8001, 0xffffbffe, 0x0}) (async)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {0x9, 0x1}, 0x3, 0x4, &(0x7f0000000040)={0x80, 0x5, 0x84b6, 0x4, 0x4}, 0x8, 0x7, 0x4, 0x0, 0x8001, 0xffffbffe, 0x0})
r5 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r5, &(0x7f0000000280)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757813"], 0x65)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r6, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000000c0)={[0x1, 0x3, 0x100000008, 0x1, 0x1, 0x8000000, 0x2, 0xfffffffffffff804, 0x7db, 0x4, 0x4, 0x2000000000000, 0x7, 0x2, 0x1, 0xc], 0xeeef0000, 0x4fb40}) (async)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000000c0)={[0x1, 0x3, 0x100000008, 0x1, 0x1, 0x8000000, 0x2, 0xfffffffffffff804, 0x7db, 0x4, 0x4, 0x2000000000000, 0x7, 0x2, 0x1, 0xc], 0xeeef0000, 0x4fb40})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004000)={0x24, 0x49, 0x1, 0x0, 0x0, {0xa, 0x0, 0x6e80}, [@nested={0x10, 0xd7, 0x0, 0x1, [@nested={0xc, 0xbe, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @pid}]}]}]}, 0x24}}, 0x4008000) (async)
sendmsg$nl_generic(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004000)={0x24, 0x49, 0x1, 0x0, 0x0, {0xa, 0x0, 0x6e80}, [@nested={0x10, 0xd7, 0x0, 0x1, [@nested={0xc, 0xbe, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @pid}]}]}]}, 0x24}}, 0x4008000)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

read+0x145/0x260
[   35.385218][  T607]  ? __cfi_ksys_read+0x10/0x10
[   35.385230][  T607]  ? __kasan_check_read+0x15/0x20
[   35.385242][  T607]  __x64_sys_read+0x7f/0x90
[   35.385258][  T607]  x64_sys_call+0x2638/0x2ee0
[   35.385271][  T607]  do_syscall_64+0x57/0xf0
[   35.385284][  T607]  ? clear_bhb_loop+0x50/0xa0
[   35.385300][  T607]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   35.385314][  T607] RIP: 0033:0x7f07a0d5d04e
[   35.385325][  T607] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   35.385334][  T607] RSP: 002b:00007f07a1be4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   35.385346][  T607] RAX: ffffffffffffffda RBX: 00007f07a1be56c0 RCX: 00007f07a0d5d04e
[   35.385354][  T607] RDX: 000000000000000f RSI: 00007f07a1be50a0 RDI: 0000000000000006
[   35.385361][  T607] RBP: 00007f07a1be5090 R08: 0000000000000000 R09: 0000000000000000
[   35.385367][  T607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   35.385373][  T607] R13: 00007f07a1016038 R14: 00007f07a1015fa0 R15: 00007ffdd18d5998
[   35.385382][  T607]  </TASK>
[   35.690336][  T375] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[   35.760316][  T484] usb 1-1: device descriptor read/64, error -71
[   35.841405][  T375] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[   35.851214][  T375] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 255
[   35.862504][  T375] usb 2-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[   35.871596][  T375] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   35.879577][  T375] usb 2-1: Product: syz
[   35.883889][  T484] usb usb1-port1: attempt power cycle
[   35.889477][  T375] usb 2-1: Manufacturer: syz
[   35.890249][   T31] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   35.894120][  T375] usb 2-1: SerialNumber: syz
[   35.906767][  T375] usb 2-1: config 0 descriptor??
[   35.912070][  T605] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   35.919220][  T605] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   35.926710][   T45] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[   36.050300][   T31] usb 3-1: Using ep0 maxpacket: 16
[   36.056939][   T31] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   36.070705][   T31] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   36.079749][   T31] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   36.087780][   T31] usb 3-1: SerialNumber: syz
[   36.092476][   T45] usb 4-1: Using ep0 maxpacket: 32
[   36.100725][   T45] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   36.112221][   T45] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[   36.121315][   T45] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   36.129350][   T45] usb 4-1: Product: syz
[   36.133541][   T45] usb 4-1: Manufacturer: syz
[   36.138181][   T45] usb 4-1: SerialNumber: syz
[   36.138393][  T605] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   36.150442][  T605] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   36.150975][   T45] usb 4-1: config 0 descriptor??
[   36.167249][   T45] usb 4-1: bad CDC descriptors
[   36.172488][   T45] usb 4-1: unsupported MDLM descriptors
[   36.220274][  T484] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[   36.241590][  T484] usb 1-1: device descriptor read/8, error -71
[   36.320503][  T375] Error reading MAC address
[   36.326446][  T375] usb 2-1: USB disconnect, device number 8
[   36.370450][   T45] usb 4-1: USB disconnect, device number 7
[   36.372752][  T484] usb 1-1: device descriptor read/8, error -71
[   36.620289][  T484] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[   36.641276][  T484] usb 1-1: device descriptor read/8, error -71
[   36.703025][   T31] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42
[   36.771329][  T484] usb 1-1: device descriptor read/8, error -71
[   36.880486][  T484] usb usb1-port1: unable to enumerate USB device
[   36.906446][  T612] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   36.915163][  T612] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   36.947891][  T641] netlink: 'syz.3.89': attribute type 33 has an invalid length.
[   37.130288][   T10] usb 3-1: USB disconnect, device number 6
[   37.240770][   T10] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device
[   37.290990][    C1] dummy_hcd dummy_hcd.2: timer fired with no URBs pending?
[   37.490337][  T484] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[   37.641593][  T484] usb 1-1: config 0 has no interfaces?
[   37.648593][  T484] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[   37.657788][  T484] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[   37.670986][  T484] usb 1-1: Product: syz
[   37.675202][  T484] usb 1-1: Manufacturer: syz
[   37.679868][  T484] usb 1-1: SerialNumber: syz
[   37.686114][  T484] usb 1-1: config 0 descriptor??
[   37.821284][  T679] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   37.833996][   T36] kauditd_printk_skb: 22 callbacks suppressed
[   37.834011][   T36] audit: type=1400 audit(1775055605.310:229): avc:  denied  { setopt } for  pid=678 comm="syz.3.94" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   37.867552][  T681] FAULT_INJECTION: forcing a failure.
[   37.867552][  T681] name failslab, interval 1, probability 0, space 0, times 0
[   37.880320][  T681] CPU: 1 UID: 0 PID: 681 Comm: syz.3.95 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   37.880350][  T681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   37.880359][  T681] Call Trace:
[   37.880363][  T681]  <TASK>
[   37.880368][  T681]  __dump_stack+0x21/0x30
[   37.880392][  T681]  dump_stack_lvl+0x140/0x1c0
[   37.880404][  T681]  ? __cfi_dump_stack_lvl+0x10/0x10
[   37.880416][  T681]  ? __lruvec_stat_mod_folio+0x13f/0x1a0
[   37.880428][  T681]  dump_stack+0x19/0x20
[   37.880439][  T681]  should_fail_ex+0x3d7/0x530
[   37.880452][  T681]  should_failslab+0xac/0x100
[   37.880461][  T681]  kmem_cache_alloc_noprof+0x42/0x410
[   37.880475][  T681]  ? __pte_alloc+0x1ae/0x440
[   37.880487][  T681]  ? __anon_vma_prepare+0xac/0x560
[   37.880500][  T681]  __anon_vma_prepare+0xac/0x560
[   37.880512][  T681]  ? __cfi___alloc_pages_noprof+0x10/0x10
[   37.880523][  T681]  do_pte_missing+0x3445/0x44f0
[   37.880533][  T681]  ? __kasan_check_write+0x18/0x20
[   37.880547][  T681]  ? pte_marker_clear+0x1b0/0x1b0
[   37.880556][  T681]  ? __cfi___pmd_alloc+0x10/0x10
[   37.880566][  T681]  handle_mm_fault+0x11b8/0x1bf0
[   37.880577][  T681]  ? __cfi_handle_mm_fault+0x10/0x10
[   37.880587][  T681]  ? lock_mm_and_find_vma+0xb8/0x390
[   37.880596][  T681]  do_user_addr_fault+0x4c9/0x11e0
[   37.880612][  T681]  exc_page_fault+0x58/0xc0
[   37.880623][  T681]  asm_exc_page_fault+0x2b/0x30
[   37.880637][  T681] RIP: 0010:__put_user_4+0x11/0x30
[   37.880651][  T681] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 93 9a 02 00 90 90 90 90 90 90 90 90 90 90
[   37.880660][  T681] RSP: 0018:ffffc9000e5afc60 EFLAGS: 00050206
[   37.880671][  T681] RAX: 0000000000038000 RBX: 0000000000000000 RCX: 0000200000000000
[   37.880679][  T681] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88812063117c
[   37.880686][  T681] RBP: ffffc9000e5afc90 R08: ffff88812063117f R09: 1ffff110240c622f
[   37.880693][  T681] R10: dffffc0000000000 R11: ffffed10240c6230 R12: ffffffff8695d5a8
[   37.880701][  T681] R13: dffffc0000000000 R14: ffff88812063117c R15: 0000000000038000
[   37.880709][  T681]  ? bt_sock_ioctl+0x1a5/0x280
[   37.880720][  T681]  sock_do_ioctl+0x118/0x330
[   37.880730][  T681]  ? sock_show_fdinfo+0xd0/0xd0
[   37.880740][  T681]  ? __cfi_vfs_write+0x10/0x10
[   37.880753][  T681]  ? __kasan_check_write+0x18/0x20
[   37.880764][  T681]  ? mutex_unlock+0x90/0x240
[   37.880774][  T681]  sock_ioctl+0x5b5/0x7f0
[   37.880783][  T681]  ? __cfi_sock_ioctl+0x10/0x10
[   37.880792][  T681]  ? __fget_files+0x2c5/0x340
[   37.880801][  T681]  ? bpf_lsm_file_ioctl+0xd/0x20
[   37.880812][  T681]  ? security_file_ioctl+0x3e/0x110
[   37.880824][  T681]  ? __cfi_sock_ioctl+0x10/0x10
[   37.880832][  T681]  __se_sys_ioctl+0x132/0x1b0
[   37.880845][  T681]  __x64_sys_ioctl+0x7f/0xa0
[   37.880854][  T681]  x64_sys_call+0x1878/0x2ee0
[   37.880867][  T681]  do_syscall_64+0x57/0xf0
[   37.880879][  T681]  ? clear_bhb_loop+0x50/0xa0
[   37.880888][  T681]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   37.880900][  T681] RIP: 0033:0x7f07a0d9c819
[   37.880909][  T681] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   37.880917][  T681] RSP: 002b:00007f07a1be5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   37.880927][  T681] RAX: ffffffffffffffda RBX: 00007f07a1015fa0 RCX: 00007f07a0d9c819
[   37.880935][  T681] RDX: 0000200000000000 RSI: 0000000000005411 RDI: 0000000000000004
[   37.880941][  T681] RBP: 00007f07a1be5090 R08: 0000000000000000 R09: 0000000000000000
[   37.880948][  T681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   37.880954][  T681] R13: 00007f07a1016038 R14: 00007f07a1015fa0 R15: 00007ffdd18d5998
[   37.880962][  T681]  </TASK>
[   38.259733][   T45] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[   38.291470][   T36] audit: type=1400 audit(1775055605.770:230): avc:  denied  { read } for  pid=684 comm="syz.1.97" name="binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   38.316947][   T36] audit: type=1400 audit(1775055605.770:231): avc:  denied  { open } for  pid=684 comm="syz.1.97" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   38.340945][   T36] audit: type=1400 audit(1775055605.770:232): avc:  denied  { ioctl } for  pid=684 comm="syz.1.97" path="/dev/binderfs/binder0" dev="binder" ino=13 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   38.366023][   T36] audit: type=1400 audit(1775055605.770:233): avc:  denied  { set_context_mgr } for  pid=684 comm="syz.1.97" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   38.421995][   T45] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 2560, setting to 1024
[   38.433078][   T45] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024
[   38.443130][   T45] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   38.456911][   T45] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   38.466013][   T45] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   38.474048][   T45] usb 3-1: SerialNumber: syz
[   38.474545][  T643] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   38.487744][  T643] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   38.497436][   T10] usb 1-1: USB disconnect, device number 12
[   38.531273][  T693] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   38.630349][  T484] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[   38.668735][  T701] FAULT_INJECTION: forcing a failure.
[   38.668735][  T701] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   38.682892][  T701] CPU: 1 UID: 0 PID: 701 Comm: syz.3.102 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   38.682924][  T701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   38.682935][  T701] Call Trace:
[   38.682941][  T701]  <TASK>
[   38.682948][  T701]  __dump_stack+0x21/0x30
[   38.682976][  T701]  dump_stack_lvl+0x140/0x1c0
[   38.682997][  T701]  ? __cfi_dump_stack_lvl+0x10/0x10
[   38.683018][  T701]  dump_stack+0x19/0x20
[   38.683036][  T701]  should_fail_ex+0x3d7/0x530
[   38.683054][  T701]  should_fail+0xf/0x20
[   38.683071][  T701]  should_fail_usercopy+0x1e/0x30
[   38.683090][  T701]  strncpy_from_user+0x29/0x270
[   38.683110][  T701]  getname_flags+0x101/0x700
[   38.683131][  T701]  ? __cfi_mutex_unlock+0x10/0x10
[   38.683149][  T701]  getname+0x1b/0x30
[   38.683169][  T701]  do_sys_openat2+0xda/0x1d0
[   38.683188][  T701]  ? fput+0x1a4/0x240
[   38.683205][  T701]  ? do_sys_open+0x100/0x100
[   38.683221][  T701]  ? ksys_write+0x1f3/0x260
[   38.683240][  T701]  ? __cfi_ksys_write+0x10/0x10
[   38.683260][  T701]  __x64_sys_openat+0x13a/0x170
[   38.683273][  T701]  x64_sys_call+0xe69/0x2ee0
[   38.683286][  T701]  do_syscall_64+0x57/0xf0
[   38.683299][  T701]  ? clear_bhb_loop+0x50/0xa0
[   38.683308][  T701]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   38.683331][  T701] RIP: 0033:0x7f07a0d9c819
[   38.683341][  T701] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   38.683350][  T701] RSP: 002b:00007f07a1bc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   38.683363][  T701] RAX: ffffffffffffffda RBX: 00007f07a1016090 RCX: 00007f07a0d9c819
[   38.683371][  T701] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[   38.683378][  T701] RBP: 00007f07a1bc4090 R08: 0000000000000000 R09: 0000000000000000
[   38.683384][  T701] R10: 00000000000000a0 R11: 0000000000000246 R12: 0000000000000001
[   38.683390][  T701] R13: 00007f07a1016128 R14: 00007f07a1016090 R15: 00007ffdd18d5998
[   38.683399][  T701]  </TASK>
[   38.870463][  T484] usb 2-1: Using ep0 maxpacket: 32
[   38.896115][  T484] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   38.907636][  T484] usb 2-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[   38.916801][  T484] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   38.924814][  T484] usb 2-1: Product: syz
[   38.928972][  T484] usb 2-1: Manufacturer: syz
[   38.933591][  T484] usb 2-1: SerialNumber: syz
[   38.939019][  T484] usb 2-1: config 0 descriptor??
[   38.944844][  T484] usb 2-1: bad CDC descriptors
[   38.949789][  T484] usb 2-1: unsupported MDLM descriptors
[   39.087613][   T45] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22
[   39.147097][  T484] usb 2-1: USB disconnect, device number 9
[   39.185920][  T703] netlink: 'syz.0.103': attribute type 33 has an invalid length.
[   39.297299][   T45] usb 3-1: USB disconnect, device number 7
[   39.657965][  T708] netlink: 'syz.1.105': attribute type 3 has an invalid length.
[   39.920363][  T484] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[   39.956960][  T733] netlink: 'syz.0.116': attribute type 33 has an invalid length.
[   40.071362][  T484] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[   40.079547][  T484] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   40.089722][  T484] usb 2-1: config 0 has no interface number 0
[   40.095848][  T484] usb 2-1: config 0 interface 41 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   40.108779][  T484] usb 2-1: config 0 interface 41 has no altsetting 0
[   40.116888][  T484] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[   40.125989][  T484] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   40.134001][  T484] usb 2-1: Product: syz
[   40.138156][  T484] usb 2-1: Manufacturer: syz
[   40.142768][  T484] usb 2-1: SerialNumber: syz
[   40.147834][  T484] usb 2-1: config 0 descriptor??
[   40.150265][  T487] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[   40.153728][  T484] CoreChips 2-1:0.41: probe with driver CoreChips failed with error -22
[   40.310343][  T487] usb 3-1: Using ep0 maxpacket: 32
[   40.316700][  T487] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   40.328133][  T487] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[   40.337390][  T487] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   40.345652][  T487] usb 3-1: Product: syz
[   40.350001][  T487] usb 3-1: Manufacturer: syz
[   40.355075][  T487] usb 3-1: SerialNumber: syz
[   40.362702][  T487] usb 3-1: config 0 descriptor??
[   40.371673][  T487] usb 3-1: bad CDC descriptors
[   40.376642][  T487] usb 3-1: unsupported MDLM descriptors
[   40.571313][   T66] usb 3-1: USB disconnect, device number 8
[   40.619444][  T749] FAULT_INJECTION: forcing a failure.
[   40.619444][  T749] name failslab, interval 1, probability 0, space 0, times 0
[   40.632203][  T749] CPU: 1 UID: 0 PID: 749 Comm: syz.0.123 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   40.632302][  T749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   40.632309][  T749] Call Trace:
[   40.632313][  T749]  <TASK>
[   40.632319][  T749]  __dump_stack+0x21/0x30
[   40.632336][  T749]  dump_stack_lvl+0x140/0x1c0
[   40.632348][  T749]  ? __cfi_dump_stack_lvl+0x10/0x10
[   40.632361][  T749]  dump_stack+0x19/0x20
[   40.632378][  T749]  should_fail_ex+0x3d7/0x530
[   40.632392][  T749]  should_failslab+0xac/0x100
[   40.632402][  T749]  kmem_cache_alloc_noprof+0x42/0x410
[   40.632416][  T749]  ? security_file_alloc+0x49/0x220
[   40.632428][  T749]  ? kasan_save_alloc_info+0x40/0x50
[   40.632440][  T749]  security_file_alloc+0x49/0x220
[   40.632451][  T749]  init_file+0x9e/0x210
[   40.632461][  T749]  alloc_empty_file+0xd9/0x270
[   40.632471][  T749]  path_openat+0xfe/0x34f0
[   40.632481][  T749]  ? stack_depot_save_flags+0x38/0x800
[   40.632494][  T749]  ? kasan_save_track+0x3e/0x80
[   40.632507][  T749]  ? kasan_save_alloc_info+0x40/0x50
[   40.632517][  T749]  ? __kasan_slab_alloc+0x73/0x90
[   40.632526][  T749]  ? kmem_cache_alloc_noprof+0x1bf/0x410
[   40.632538][  T749]  ? getname+0x1b/0x30
[   40.632550][  T749]  ? do_sys_openat2+0xda/0x1d0
[   40.632560][  T749]  ? __x64_sys_openat+0x13a/0x170
[   40.632570][  T749]  ? x64_sys_call+0xe69/0x2ee0
[   40.632583][  T749]  ? do_syscall_64+0x57/0xf0
[   40.632596][  T749]  ? entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   40.632609][  T749]  ? do_filp_open+0x440/0x440
[   40.632620][  T749]  do_filp_open+0x1f5/0x440
[   40.632630][  T749]  ? __cfi_do_filp_open+0x10/0x10
[   40.632640][  T749]  ? alloc_fd+0x4e6/0x5a0
[   40.632654][  T749]  do_sys_openat2+0x134/0x1d0
[   40.632664][  T749]  ? fput+0x1a4/0x240
[   40.632673][  T749]  ? do_sys_open+0x100/0x100
[   40.632683][  T749]  ? ksys_write+0x1f3/0x260
[   40.632694][  T749]  ? __cfi_ksys_write+0x10/0x10
[   40.632707][  T749]  __x64_sys_openat+0x13a/0x170
[   40.632717][  T749]  x64_sys_call+0xe69/0x2ee0
[   40.632730][  T749]  do_syscall_64+0x57/0xf0
[   40.632744][  T749]  ? clear_bhb_loop+0x50/0xa0
[   40.632757][  T749]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   40.632890][  T749] RIP: 0033:0x7fcdf155d04e
[   40.632903][  T749] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   40.632913][  T749] RSP: 002b:00007fcdf2415f18 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   40.632926][  T749] RAX: ffffffffffffffda RBX: 00007fcdf24166c0 RCX: 00007fcdf155d04e
[   40.632934][  T749] RDX: 0000000000000000 RSI: 00007fcdf1632328 RDI: ffffffffffffff9c
[   40.632942][  T749] RBP: 00007fcdf2416090 R08: 0000000000000000 R09: 0000000000000000
[   40.632951][  T749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.632957][  T749] R13: 00007fcdf1816038 R14: 00007fcdf1815fa0 R15: 00007ffe3bf3d5c8
[   40.632966][  T749]  </TASK>
[   40.980270][  T487] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[   40.981969][   T36] audit: type=1400 audit(1775055608.460:234): avc:  denied  { ioctl } for  pid=754 comm="syz.0.125" path="/dev/fuse" dev="devtmpfs" ino=23 ioctlcmd=0x943c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   41.131480][  T487] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 2560, setting to 1024
[   41.142642][  T487] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024
[   41.152691][  T487] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   41.166303][  T487] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   41.175366][  T487] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   41.183372][  T487] usb 4-1: SerialNumber: syz
[   41.330275][   T10] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[   41.352899][  T769] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   41.415423][  T772] netlink: 'syz.2.131': attribute type 1 has an invalid length.
[   41.470288][   T10] usb 1-1: device descriptor read/64, error -71
[   41.710282][   T10] usb 1-1: device descriptor read/64, error -71
[   41.790693][  T487] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -22
[   41.800806][   T66] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[   41.952121][   T66] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[   41.960277][   T10] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[   41.960871][   T66] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   41.978672][   T66] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[   41.987764][   T66] usb 3-1: config 1 has no interface number 0
[   41.995168][   T45] usb 4-1: USB disconnect, device number 8
[   42.001799][   T66] usb 3-1: too many endpoints for config 1 interface 1 altsetting 1: 32, using maximum allowed: 30
[   42.013956][   T66] usb 3-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 32
[   42.028321][   T66] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   42.037666][   T66] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   42.045683][   T66] usb 3-1: Product: syz
[   42.049914][   T66] usb 3-1: Manufacturer: syz
[   42.054645][   T66] usb 3-1: SerialNumber: syz
[   42.090278][   T10] usb 1-1: device descriptor read/64, error -71
[   42.330278][   T10] usb 1-1: device descriptor read/64, error -71
[   42.440364][   T10] usb usb1-port1: attempt power cycle
[   42.465408][   T66] usb 3-1: USB disconnect, device number 9
[   42.517133][   T36] audit: type=1400 audit(1775055609.990:235): avc:  denied  { read } for  pid=783 comm="syz.3.135" name="usbmon7" dev="devtmpfs" ino=112 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   42.540687][   T36] audit: type=1400 audit(1775055609.990:236): avc:  denied  { open } for  pid=783 comm="syz.3.135" path="/dev/usbmon7" dev="devtmpfs" ino=112 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   42.566288][  T789] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   42.566474][   T36] audit: type=1400 audit(1775055610.010:237): avc:  denied  { ioctl } for  pid=783 comm="syz.3.135" path="/dev/usbmon7" dev="devtmpfs" ino=112 ioctlcmd=0x9205 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   42.603205][   T36] audit: type=1400 audit(1775055610.060:238): avc:  denied  { ioctl } for  pid=787 comm="syz.3.137" path="socket:[7705]" dev="sockfs" ino=7705 ioctlcmd=0x8955 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   42.661632][  T796] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   42.685457][   T66] usb 2-1: USB disconnect, device number 10
[   42.780286][   T10] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[   42.801341][   T10] usb 1-1: device descriptor read/8, error -71
[   42.931252][   T10] usb 1-1: device descriptor read/8, error -71
[   42.960279][  T484] usb 4-1: new full-speed USB device number 9 using dummy_hcd
[   43.111446][  T484] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   43.121665][  T484] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[   43.131387][  T484] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[   43.140533][  T484] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   43.148545][  T484] usb 4-1: SerialNumber: syz
[   43.154947][  T484] usb 4-1: 0:2 : does not exist
[   43.174976][   T10] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[   43.201285][   T10] usb 1-1: device descriptor read/8, error -71
[   43.331257][   T10] usb 1-1: device descriptor read/8, error -71
[   43.360455][  T801] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   43.368972][  T801] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   43.394036][  T484] usb 4-1: USB disconnect, device number 9
[   43.442736][   T10] usb usb1-port1: unable to enumerate USB device
[   43.543073][   T66] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[   43.701866][   T66] usb 3-1: unable to get BOS descriptor or descriptor too short
[   43.715149][   T66] usb 3-1: not running at top speed; connect to a high speed hub
[   43.725986][   T66] usb 3-1: New USB device found, idVendor=18d1, idProduct=2d04, bcdDevice= 0.40
[   43.735438][   T66] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   43.743617][   T66] usb 3-1: Product: syz
[   43.747874][   T66] usb 3-1: Manufacturer: syz
[   43.753827][   T66] usb 3-1: SerialNumber: syz
[   43.801162][  T834] FAULT_INJECTION: forcing a failure.
[   43.801162][  T834] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   43.814352][  T834] CPU: 1 UID: 0 PID: 834 Comm: syz.1.156 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   43.814370][  T834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   43.814377][  T834] Call Trace:
[   43.814381][  T834]  <TASK>
[   43.814385][  T834]  __dump_stack+0x21/0x30
[   43.814406][  T834]  dump_stack_lvl+0x140/0x1c0
[   43.814418][  T834]  ? __cfi_dump_stack_lvl+0x10/0x10
[   43.814431][  T834]  dump_stack+0x19/0x20
[   43.814442][  T834]  should_fail_ex+0x3d7/0x530
[   43.814455][  T834]  should_fail+0xf/0x20
[   43.814466][  T834]  should_fail_usercopy+0x1e/0x30
[   43.814479][  T834]  _copy_from_user+0x20/0xa0
[   43.814487][  T834]  procfs_procmap_ioctl+0x183/0xe90
[   43.814500][  T834]  ? __cfi_vfs_write+0x10/0x10
[   43.814512][  T834]  ? __cfi_procfs_procmap_ioctl+0x10/0x10
[   43.814524][  T834]  ? __fget_files+0x2c5/0x340
[   43.814533][  T834]  ? bpf_lsm_file_ioctl+0xd/0x20
[   43.814544][  T834]  ? security_file_ioctl+0x3e/0x110
[   43.814556][  T834]  ? __cfi_procfs_procmap_ioctl+0x10/0x10
[   43.814566][  T834]  __se_sys_ioctl+0x132/0x1b0
[   43.814576][  T834]  __x64_sys_ioctl+0x7f/0xa0
[   43.814585][  T834]  x64_sys_call+0x1878/0x2ee0
[   43.814598][  T834]  do_syscall_64+0x57/0xf0
[   43.814611][  T834]  ? clear_bhb_loop+0x50/0xa0
[   43.814620][  T834]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   43.814634][  T834] RIP: 0033:0x7f932259c819
[   43.814644][  T834] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   43.814652][  T834] RSP: 002b:00007f93233e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   43.814665][  T834] RAX: ffffffffffffffda RBX: 00007f9322815fa0 RCX: 00007f932259c819
[   43.814673][  T834] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000003
[   43.814679][  T834] RBP: 00007f93233e4090 R08: 0000000000000000 R09: 0000000000000000
[   43.814686][  T834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.814692][  T834] R13: 00007f9322816038 R14: 00007f9322815fa0 R15: 00007ffd6ee20ba8
[   43.814700][  T834]  </TASK>
[   44.110461][  T484] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[   44.160275][   T10] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[   44.271321][  T484] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   44.290990][   T36] kauditd_printk_skb: 1 callbacks suppressed
[   44.291017][   T36] audit: type=1400 audit(1775055611.760:240): avc:  denied  { read write } for  pid=848 comm="syz.0.162" name="uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   44.334075][  T484] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   44.348566][  T484] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   44.362229][  T484] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   44.372095][   T36] audit: type=1400 audit(1775055611.760:241): avc:  denied  { open } for  pid=848 comm="syz.0.162" path="/dev/uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   44.395701][   T36] audit: type=1400 audit(1775055611.760:242): avc:  denied  { write } for  pid=848 comm="syz.0.162" name="ppp" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   44.418526][  T484] usb 2-1: config 0 descriptor??
[   44.424009][   T36] audit: type=1400 audit(1775055611.760:243): avc:  denied  { append } for  pid=848 comm="syz.0.162" name="loop8" dev="devtmpfs" ino=57 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   44.424289][   T10] usb 4-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice= 0.40
[   44.448774][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   44.460804][   T66] usb 3-1: parse_audio_format_rates_v2v3(): unable to find clock source (clock -22)
[   44.473119][   T10] usb 4-1: Product: syz
[   44.483373][   T66] usb 3-1: failed to enable PITCH for EP 0x1
[   44.491736][   T66] usb 3-1: unit 2 not found!
[   44.496350][   T66] usb 3-1: unit 8 not found!
[   44.499246][   T10] usb 4-1: Manufacturer: syz
[   44.505729][   T10] usb 4-1: SerialNumber: syz
[   44.506198][   T66] usb 3-1: USB disconnect, device number 10
[   44.547587][  T311] udevd[311]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   44.746778][   T10] usb 4-1: MIDIStreaming interface descriptor not found
[   44.758124][   T10] usb 4-1: USB disconnect, device number 10
[   44.772770][  T314] udevd[314]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   44.927029][  T484] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x4
[   44.934763][  T484] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[   44.945546][  T484] plantronics 0003:047F:FFFF.0003: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   45.080334][  T484] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[   45.190638][   T36] audit: type=1400 audit(1775055612.670:244): avc:  denied  { getopt } for  pid=835 comm="syz.1.157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   45.191022][  T836] netlink: 9 bytes leftover after parsing attributes in process `syz.1.157'.
[   45.219320][  T836] gretap0: entered promiscuous mode
[   45.228785][  T836] netlink: 5 bytes leftover after parsing attributes in process `syz.1.157'.
[   45.237672][  T836] 0ªî{X¹¦: renamed from gretap0
[   45.241387][  T484] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[   45.250814][  T484] usb 1-1: config 0 has no interface number 0
[   45.251808][  T836] 0ªî{X¹¦: left promiscuous mode
[   45.256905][  T484] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   45.271950][  T836] 0ªî{X¹¦: entered allmulticast mode
[   45.274359][  T484] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   45.279814][  T836] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[   45.288996][  T484] usb 1-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[   45.304748][  T487] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[   45.313581][  T484] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   45.340608][  T484] usb 1-1: config 0 descriptor??
[   45.391495][   T66] usb 2-1: USB disconnect, device number 11
[   45.460316][  T487] usb 3-1: device descriptor read/64, error -71
[   45.580281][   T10] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[   45.700373][  T487] usb 3-1: device descriptor read/64, error -71
[   45.740265][   T10] usb 4-1: Using ep0 maxpacket: 16
[   45.746362][   T10] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   45.756536][   T10] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[   45.757057][  T863] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   45.766881][   T10] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   45.775490][  T863] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   45.784006][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   45.798952][   T10] usb 4-1: Product: syz
[   45.803162][   T10] usb 4-1: Manufacturer: syz
[   45.807777][   T10] usb 4-1: SerialNumber: syz
[   45.926472][   T36] audit: type=1400 audit(1775055613.400:245): avc:  denied  { write } for  pid=876 comm="syz.1.173" name="usbmon4" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   45.950558][  T487] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[   45.956791][  T881] netlink: 8 bytes leftover after parsing attributes in process `syz.1.175'.
[   46.003240][  T484] usbhid 1-1:0.1: can't add hid device: -71
[   46.009233][  T484] usbhid 1-1:0.1: probe with driver usbhid failed with error -71
[   46.024473][   T10] usb 4-1: 0:2 : does not exist
[   46.031461][  T484] usb 1-1: USB disconnect, device number 17
[   46.040073][   T10] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[   46.052477][   T10] usb 4-1: USB disconnect, device number 11
[   46.060761][  T503] udevd[503]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   46.080268][  T487] usb 3-1: device descriptor read/64, error -71
[   46.200325][  T893] FAULT_INJECTION: forcing a failure.
[   46.200325][  T893] name failslab, interval 1, probability 0, space 0, times 0
[   46.219223][  T893] CPU: 1 UID: 0 PID: 893 Comm: syz.1.180 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   46.219244][  T893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   46.219251][  T893] Call Trace:
[   46.219255][  T893]  <TASK>
[   46.219259][  T893]  __dump_stack+0x21/0x30
[   46.219277][  T893]  dump_stack_lvl+0x140/0x1c0
[   46.219289][  T893]  ? __cfi_dump_stack_lvl+0x10/0x10
[   46.219302][  T893]  dump_stack+0x19/0x20
[   46.219313][  T893]  should_fail_ex+0x3d7/0x530
[   46.219326][  T893]  should_failslab+0xac/0x100
[   46.219336][  T893]  kmem_cache_alloc_node_noprof+0x45/0x420
[   46.219350][  T893]  ? dup_task_struct+0xc1/0xd80
[   46.219361][  T893]  ? kasan_save_alloc_info+0x40/0x50
[   46.219372][  T893]  ? __kasan_kmalloc+0x96/0xb0
[   46.219381][  T893]  ? __kmalloc_cache_noprof+0x23c/0x470
[   46.219394][  T893]  dup_task_struct+0xc1/0xd80
[   46.219404][  T893]  ? __kasan_check_write+0x18/0x20
[   46.219416][  T893]  ? _raw_spin_lock_irq+0x93/0x120
[   46.219429][  T893]  ? copy_process+0x32a0/0x32a0
[   46.219439][  T893]  ? __kasan_check_write+0x18/0x20
[   46.219460][  T893]  copy_process+0x55a/0x32a0
[   46.219480][  T893]  ? __cfi_copy_process+0x10/0x10
[   46.219499][  T893]  ? __kmalloc_cache_noprof+0x23c/0x470
[   46.219514][  T893]  ? __kasan_check_write+0x18/0x20
[   46.219526][  T893]  ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   46.219537][  T893]  vhost_task_create+0x1f7/0x400
[   46.219547][  T893]  ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   46.219557][  T893]  ? __cfi_vhost_task_create+0x10/0x10
[   46.219567][  T893]  ? __cfi_vhost_task_fn+0x10/0x10
[   46.219576][  T893]  ? __kasan_check_write+0x18/0x20
[   46.219587][  T893]  ? mutex_lock+0x97/0x1d0
[   46.219597][  T893]  ? __cfi_mutex_lock+0x10/0x10
[   46.219606][  T893]  ? kernel_text_address+0xa9/0xe0
[   46.219618][  T893]  kvm_mmu_post_init_vm+0x161/0x300
[   46.219631][  T893]  kvm_arch_vcpu_ioctl_run+0xf3/0x1bd0
[   46.219644][  T893]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[   46.219656][  T893]  ? kstrtoull+0x13b/0x1e0
[   46.219667][  T893]  ? kstrtouint+0x78/0xf0
[   46.219677][  T893]  ? ioctl_has_perm+0x1bc/0x500
[   46.219690][  T893]  ? __asan_memcpy+0x5a/0x80
[   46.219702][  T893]  ? ioctl_has_perm+0x408/0x500
[   46.219713][  T893]  ? has_cap_mac_admin+0xd0/0xd0
[   46.219724][  T893]  ? __kasan_check_write+0x18/0x20
[   46.219736][  T893]  ? mutex_lock_killable+0x97/0x1d0
[   46.219746][  T893]  ? __cfi_mutex_lock_killable+0x10/0x10
[   46.219756][  T893]  ? proc_fail_nth_write+0x184/0x220
[   46.219769][  T893]  kvm_vcpu_ioctl+0xa48/0x1000
[   46.219782][  T893]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   46.219796][  T893]  ? __cfi_vfs_write+0x10/0x10
[   46.219814][  T893]  ? __kasan_check_write+0x18/0x20
[   46.219826][  T893]  ? mutex_unlock+0x90/0x240
[   46.219836][  T893]  ? __cfi_mutex_unlock+0x10/0x10
[   46.219845][  T893]  ? __fget_files+0x2c5/0x340
[   46.219855][  T893]  ? __fget_files+0x2c5/0x340
[   46.219864][  T893]  ? bpf_lsm_file_ioctl+0xd/0x20
[   46.219876][  T893]  ? security_file_ioctl+0x3e/0x110
[   46.219888][  T893]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   46.219901][  T893]  __se_sys_ioctl+0x132/0x1b0
[   46.219910][  T893]  __x64_sys_ioctl+0x7f/0xa0
[   46.219919][  T893]  x64_sys_call+0x1878/0x2ee0
[   46.219932][  T893]  do_syscall_64+0x57/0xf0
[   46.219944][  T893]  ? clear_bhb_loop+0x50/0xa0
[   46.219954][  T893]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   46.219971][  T893] RIP: 0033:0x7f932259c819
[   46.219982][  T893] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   46.219991][  T893] RSP: 002b:00007f93233e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   46.220004][  T893] RAX: ffffffffffffffda RBX: 00007f9322815fa0 RCX: 00007f932259c819
[   46.220012][  T893] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   46.220019][  T893] RBP: 00007f93233e4090 R08: 0000000000000000 R09: 0000000000000000
[   46.220026][  T893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.220032][  T893] R13: 00007f9322816038 R14: 00007f9322815fa0 R15: 00007ffd6ee20ba8
[   46.220041][  T893]  </TASK>
[   46.659442][  T895] FAULT_INJECTION: forcing a failure.
[   46.659442][  T895] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.670304][  T487] usb 3-1: device descriptor read/64, error -71
[   46.672523][  T895] CPU: 0 UID: 0 PID: 895 Comm: syz.1.181 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   46.672550][  T895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   46.672561][  T895] Call Trace:
[   46.672568][  T895]  <TASK>
[   46.672575][  T895]  __dump_stack+0x21/0x30
[   46.672602][  T895]  dump_stack_lvl+0x140/0x1c0
[   46.672623][  T895]  ? __cfi_dump_stack_lvl+0x10/0x10
[   46.672645][  T895]  ? check_stack_object+0x106/0x150
[   46.672668][  T895]  dump_stack+0x19/0x20
[   46.672687][  T895]  should_fail_ex+0x3d7/0x530
[   46.672709][  T895]  should_fail+0xf/0x20
[   46.672728][  T895]  should_fail_usercopy+0x1e/0x30
[   46.672749][  T895]  _copy_from_user+0x20/0xa0
[   46.672764][  T895]  uinput_abs_setup+0x12e/0x400
[   46.672784][  T895]  ? uinput_str_to_user+0xf0/0xf0
[   46.672804][  T895]  ? input_allocate_device+0x25a/0x400
[   46.672822][  T895]  uinput_ioctl_handler+0x8a3/0x1370
[   46.672841][  T895]  ? uinput_release+0x70/0x70
[   46.672858][  T895]  ? mutex_unlock+0x90/0x240
[   46.672879][  T895]  uinput_ioctl+0x2c/0x40
[   46.672896][  T895]  ? __cfi_uinput_ioctl+0x10/0x10
[   46.672914][  T895]  __se_sys_ioctl+0x132/0x1b0
[   46.672936][  T895]  __x64_sys_ioctl+0x7f/0xa0
[   46.672952][  T895]  x64_sys_call+0x1878/0x2ee0
[   46.672975][  T895]  do_syscall_64+0x57/0xf0
[   46.672997][  T895]  ? clear_bhb_loop+0x50/0xa0
[   46.673013][  T895]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   46.673037][  T895] RIP: 0033:0x7f932259c819
[   46.673054][  T895] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   46.673068][  T895] RSP: 002b:00007f93233e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   46.673088][  T895] RAX: ffffffffffffffda RBX: 00007f9322815fa0 RCX: 00007f932259c819
[   46.673102][  T895] RDX: 00002000000010c0 RSI: 00000000401c5504 RDI: 0000000000000003
[   46.673115][  T895] RBP: 00007f93233e4090 R08: 0000000000000000 R09: 0000000000000000
[   46.673127][  T895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.673138][  T895] R13: 00007f9322816038 R14: 00007f9322815fa0 R15: 00007ffd6ee20ba8
[   46.673153][  T895]  </TASK>
[   46.689560][   T36] audit: type=1400 audit(1775055614.150:246): avc:  denied  { unlink } for  pid=896 comm="syz.1.182" name="#2" dev="tmpfs" ino=223 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   46.810381][  T487] usb usb3-port1: attempt power cycle
[   46.816194][   T36] audit: type=1400 audit(1775055614.150:247): avc:  denied  { mount } for  pid=896 comm="syz.1.182" name="/" dev="overlay" ino=219 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   46.951465][  T905] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pid=905 comm=syz.0.186
[   47.019164][   T36] audit: type=1400 audit(1775055614.490:248): avc:  denied  { bind } for  pid=917 comm="syz.3.191" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   47.040141][   T36] audit: type=1400 audit(1775055614.490:249): avc:  denied  { setopt } for  pid=917 comm="syz.3.191" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   47.160277][  T487] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[   47.181296][  T487] usb 3-1: device descriptor read/8, error -71
[   47.280431][   T10] usb 2-1: new full-speed USB device number 12 using dummy_hcd
[   47.311224][  T487] usb 3-1: device descriptor read/8, error -71
[   47.360263][  T484] usb 1-1: new low-speed USB device number 18 using dummy_hcd
[   47.410338][  T100] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[   47.431395][   T10] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[   47.439491][   T10] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   47.449594][   T10] usb 2-1: config 0 has no interface number 0
[   47.455709][   T10] usb 2-1: config 0 interface 41 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   47.468595][   T10] usb 2-1: config 0 interface 41 has no altsetting 0
[   47.476658][   T10] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[   47.485813][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   47.493920][  T484] usb 1-1: device descriptor read/64, error -71
[   47.500171][   T10] usb 2-1: Product: syz
[   47.504353][   T10] usb 2-1: Manufacturer: syz
[   47.508942][   T10] usb 2-1: SerialNumber: syz
[   47.514046][   T10] usb 2-1: config 0 descriptor??
[   47.519695][   T10] CoreChips 2-1:0.41: probe with driver CoreChips failed with error -22
[   47.560309][  T487] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[   47.580247][  T100] usb 4-1: Using ep0 maxpacket: 16
[   47.581338][  T487] usb 3-1: device descriptor read/8, error -71
[   47.586627][  T100] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   47.601750][  T100] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[   47.612047][  T100] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   47.621153][  T100] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   47.629147][  T100] usb 4-1: Product: syz
[   47.633357][  T100] usb 4-1: Manufacturer: syz
[   47.637970][  T100] usb 4-1: SerialNumber: syz
[   47.721435][  T487] usb 3-1: device descriptor read/8, error -71
[   47.740264][  T484] usb 1-1: device descriptor read/64, error -71
[   47.830380][  T487] usb usb3-port1: unable to enumerate USB device
[   47.848676][  T100] usb 4-1: 0:2 : does not exist
[   47.855884][  T100] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[   47.866726][  T100] usb 4-1: USB disconnect, device number 12
[   47.874219][  T503] udevd[503]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   47.980329][  T484] usb 1-1: new low-speed USB device number 19 using dummy_hcd
[   48.110280][  T484] usb 1-1: device descriptor read/64, error -71
[   48.350277][  T484] usb 1-1: device descriptor read/64, error -71
[   48.406060][  T933] FAULT_INJECTION: forcing a failure.
[   48.406060][  T933] name failslab, interval 1, probability 0, space 0, times 0
[   48.418760][  T933] CPU: 1 UID: 0 PID: 933 Comm: syz.3.198 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   48.418782][  T933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   48.418789][  T933] Call Trace:
[   48.418794][  T933]  <TASK>
[   48.418798][  T933]  __dump_stack+0x21/0x30
[   48.418817][  T933]  dump_stack_lvl+0x140/0x1c0
[   48.418829][  T933]  ? __cfi_dump_stack_lvl+0x10/0x10
[   48.418842][  T933]  dump_stack+0x19/0x20
[   48.418853][  T933]  should_fail_ex+0x3d7/0x530
[   48.418866][  T933]  should_failslab+0xac/0x100
[   48.418876][  T933]  __kmalloc_cache_noprof+0x41/0x470
[   48.418890][  T933]  ? do_proc_control+0x24b/0xfd0
[   48.418902][  T933]  ? __kasan_check_write+0x18/0x20
[   48.418915][  T933]  ? usb_alloc_urb+0x9b/0x1f0
[   48.418927][  T933]  do_proc_control+0x24b/0xfd0
[   48.418938][  T933]  proc_control+0xd7/0x140
[   48.418947][  T933]  ? destroy_async+0x210/0x210
[   48.418956][  T933]  ? mutex_lock+0x97/0x1d0
[   48.418967][  T933]  ? __cfi_vfs_write+0x10/0x10
[   48.418980][  T933]  usbdev_ioctl+0xc4c/0x2110
[   48.418990][  T933]  ? __cfi_usbdev_ioctl+0x10/0x10
[   48.419000][  T933]  ? __fget_files+0x2c5/0x340
[   48.419009][  T933]  ? bpf_lsm_file_ioctl+0xd/0x20
[   48.419020][  T933]  ? security_file_ioctl+0x3e/0x110
[   48.419040][  T933]  ? __cfi_usbdev_ioctl+0x10/0x10
[   48.419049][  T933]  __se_sys_ioctl+0x132/0x1b0
[   48.419059][  T933]  __x64_sys_ioctl+0x7f/0xa0
[   48.419068][  T933]  x64_sys_call+0x1878/0x2ee0
[   48.419081][  T933]  do_syscall_64+0x57/0xf0
[   48.419094][  T933]  ? clear_bhb_loop+0x50/0xa0
[   48.419103][  T933]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   48.419117][  T933] RIP: 0033:0x7f07a0d9c819
[   48.419127][  T933] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   48.419136][  T933] RSP: 002b:00007f07a1be5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   48.419150][  T933] RAX: ffffffffffffffda RBX: 00007f07a1015fa0 RCX: 00007f07a0d9c819
[   48.419158][  T933] RDX: 0000200000000000 RSI: 00000000c0185500 RDI: 0000000000000003
[   48.419165][  T933] RBP: 00007f07a1be5090 R08: 0000000000000000 R09: 0000000000000000
[   48.419171][  T933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.419178][  T933] R13: 00007f07a1016038 R14: 00007f07a1015fa0 R15: 00007ffdd18d5998
[   48.419187][  T933]  </TASK>
[   48.510414][  T484] usb usb1-port1: attempt power cycle
[   48.514057][  T487] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[   48.790340][  T487] usb 3-1: device descriptor read/64, error -71
[   48.800280][  T100] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[   48.850300][  T484] usb 1-1: new low-speed USB device number 20 using dummy_hcd
[   48.871462][  T484] usb 1-1: device descriptor read/8, error -71
[   48.950316][  T100] usb 4-1: Using ep0 maxpacket: 32
[   48.955929][  T100] usb 4-1: no configurations
[   48.960572][  T100] usb 4-1: can't read configurations, error -22
[   49.001324][  T484] usb 1-1: device descriptor read/8, error -71
[   49.030435][  T487] usb 3-1: device descriptor read/64, error -71
[   49.090306][  T100] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[   49.240301][  T100] usb 4-1: Using ep0 maxpacket: 32
[   49.245497][  T484] usb 1-1: new low-speed USB device number 21 using dummy_hcd
[   49.253248][  T100] usb 4-1: no configurations
[   49.257854][  T100] usb 4-1: can't read configurations, error -22
[   49.264291][  T100] usb usb4-port1: attempt power cycle
[   49.270440][  T487] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[   49.281410][  T484] usb 1-1: device descriptor read/8, error -71
[   49.400276][  T487] usb 3-1: device descriptor read/64, error -71
[   49.411510][  T484] usb 1-1: device descriptor read/8, error -71
[   49.520347][  T484] usb usb1-port1: unable to enumerate USB device
[   49.600324][  T100] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[   49.620697][  T100] usb 4-1: Using ep0 maxpacket: 32
[   49.626237][  T100] usb 4-1: no configurations
[   49.630905][  T100] usb 4-1: can't read configurations, error -22
[   49.640348][  T487] usb 3-1: device descriptor read/64, error -71
[   49.750362][  T487] usb usb3-port1: attempt power cycle
[   49.770292][  T100] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[   49.790647][  T100] usb 4-1: Using ep0 maxpacket: 32
[   49.796205][  T100] usb 4-1: no configurations
[   49.800976][  T100] usb 4-1: can't read configurations, error -22
[   49.807333][  T100] usb usb4-port1: unable to enumerate USB device
[   50.028612][   T31] usb 2-1: USB disconnect, device number 12
[   50.090264][  T487] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[   50.122757][  T487] usb 3-1: device descriptor read/8, error -71
[   50.140725][   T36] kauditd_printk_skb: 4 callbacks suppressed
[   50.140742][   T36] audit: type=1400 audit(1775055617.620:254): avc:  denied  { map } for  pid=949 comm="syz.0.204" path="socket:[9874]" dev="sockfs" ino=9874 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[   50.251386][  T487] usb 3-1: device descriptor read/8, error -71
[   50.490316][   T31] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[   50.497989][  T487] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[   50.510280][   T45] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[   50.521452][  T487] usb 3-1: device descriptor read/8, error -71
[   50.630317][   T31] usb 2-1: device descriptor read/64, error -71
[   50.651395][  T487] usb 3-1: device descriptor read/8, error -71
[   50.660372][   T45] usb 1-1: Using ep0 maxpacket: 16
[   50.666605][   T45] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   50.676752][   T45] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[   50.686991][   T45] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   50.696135][   T45] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   50.704149][   T45] usb 1-1: Product: syz
[   50.708289][   T45] usb 1-1: Manufacturer: syz
[   50.712899][   T45] usb 1-1: SerialNumber: syz
[   50.760341][  T487] usb usb3-port1: unable to enumerate USB device
[   50.870261][   T31] usb 2-1: device descriptor read/64, error -71
[   50.920950][   T45] usb 1-1: 0:2 : does not exist
[   50.928238][   T45] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[   50.940063][   T45] usb 1-1: USB disconnect, device number 22
[   50.952334][  T503] udevd[503]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   51.110285][   T31] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[   51.132696][   T36] audit: type=1400 audit(1775055618.610:255): avc:  denied  { nlmsg_read } for  pid=959 comm="syz.2.208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[   51.153283][   T36] audit: type=1400 audit(1775055618.620:256): avc:  denied  { setopt } for  pid=959 comm="syz.2.208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   51.172646][   T36] audit: type=1400 audit(1775055618.620:257): avc:  denied  { write } for  pid=959 comm="syz.2.208" name="nf_conntrack_expect" dev="proc" ino=4026532345 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   51.250332][   T31] usb 2-1: device descriptor read/64, error -71
[   51.470178][   T36] audit: type=1400 audit(1775055618.940:258): avc:  denied  { map } for  pid=968 comm="syz.0.212" path="/dev/ashmem" dev="devtmpfs" ino=201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   51.493177][   T31] usb 2-1: device descriptor read/64, error -71
[   51.510328][   T45] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[   51.600330][   T31] usb usb2-port1: attempt power cycle
[   51.661729][   T45] usb 3-1: config 0 has an invalid interface number: 41 but max is 0
[   51.669930][   T45] usb 3-1: config 0 has no interface number 0
[   51.676187][   T45] usb 3-1: config 0 interface 41 altsetting 2 has an invalid descriptor for endpoint zero, skipping
[   51.687358][   T45] usb 3-1: config 0 interface 41 has no altsetting 0
[   51.695823][   T45] usb 3-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[   51.709779][   T45] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   51.718242][   T45] usb 3-1: Product: syz
[   51.722466][   T45] usb 3-1: Manufacturer: syz
[   51.727058][   T45] usb 3-1: SerialNumber: syz
[   51.732772][   T45] usb 3-1: config 0 descriptor??
[   51.738452][   T45] CoreChips 3-1:0.41: probe with driver CoreChips failed with error -22
[   51.780704][  T981] FAULT_INJECTION: forcing a failure.
[   51.780704][  T981] name failslab, interval 1, probability 0, space 0, times 0
[   51.793371][  T981] CPU: 1 UID: 0 PID: 981 Comm: syz.3.217 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   51.793392][  T981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   51.793400][  T981] Call Trace:
[   51.793403][  T981]  <TASK>
[   51.793408][  T981]  __dump_stack+0x21/0x30
[   51.793426][  T981]  dump_stack_lvl+0x140/0x1c0
[   51.793438][  T981]  ? __cfi_dump_stack_lvl+0x10/0x10
[   51.793450][  T981]  ? flush_workqueue_prep_pwqs+0x427/0x4a0
[   51.793463][  T981]  dump_stack+0x19/0x20
[   51.793475][  T981]  should_fail_ex+0x3d7/0x530
[   51.793488][  T981]  should_failslab+0xac/0x100
[   51.793498][  T981]  __kmalloc_cache_noprof+0x41/0x470
[   51.793512][  T981]  ? kvm_uevent_notify_change+0xd9/0x560
[   51.793525][  T981]  kvm_uevent_notify_change+0xd9/0x560
[   51.793536][  T981]  ? blocking_notifier_chain_unregister+0x6f/0xc0
[   51.793552][  T981]  kvm_put_kvm+0xa0/0x12c0
[   51.793564][  T981]  ? kvm_irqfd_release+0x1b0/0x1d0
[   51.793574][  T981]  ? __cfi_kvm_vm_release+0x10/0x10
[   51.793586][  T981]  kvm_vm_release+0x47/0x70
[   51.793597][  T981]  __fput+0x1fb/0xa00
[   51.793608][  T981]  ? __cfi__raw_spin_lock_irq+0x10/0x10
[   51.793632][  T981]  ____fput+0x20/0x30
[   51.793641][  T981]  task_work_run+0x1e5/0x260
[   51.793658][  T981]  ? __cfi_task_work_run+0x10/0x10
[   51.793669][  T981]  ? __kasan_check_read+0x15/0x20
[   51.793681][  T981]  resume_user_mode_work+0x35/0x50
[   51.793695][  T981]  syscall_exit_to_user_mode+0x63/0xb0
[   51.793707][  T981]  do_syscall_64+0x63/0xf0
[   51.793720][  T981]  ? clear_bhb_loop+0x50/0xa0
[   51.793729][  T981]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   51.793743][  T981] RIP: 0033:0x7f07a0d9c819
[   51.793753][  T981] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   51.793763][  T981] RSP: 002b:00007f07a1be5028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   51.793775][  T981] RAX: 0000000000000000 RBX: 00007f07a1015fa0 RCX: 00007f07a0d9c819
[   51.793783][  T981] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[   51.793789][  T981] RBP: 00007f07a1be5090 R08: 0000000000000000 R09: 0000000000000000
[   51.793796][  T981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   51.793802][  T981] R13: 00007f07a1016038 R14: 00007f07a1015fa0 R15: 00007ffdd18d5998
[   51.793811][  T981]  </TASK>
[   52.075863][  T983] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   52.090273][   T31] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[   52.111594][   T31] usb 2-1: device descriptor read/8, error -71
[   52.241547][   T31] usb 2-1: device descriptor read/8, error -71
[   52.251461][  T993] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   52.460352][  T100] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[   52.480354][   T31] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[   52.501549][   T31] usb 2-1: device descriptor read/8, error -71
[   52.531530][ T1011] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   52.610302][  T100] usb 4-1: Using ep0 maxpacket: 32
[   52.615884][  T100] usb 4-1: no configurations
[   52.620520][  T100] usb 4-1: can't read configurations, error -22
[   52.637560][   T31] usb 2-1: device descriptor read/8, error -71
[   52.750293][  T100] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[   52.750376][   T31] usb usb2-port1: unable to enumerate USB device
[   52.900259][  T100] usb 4-1: Using ep0 maxpacket: 32
[   52.905773][  T100] usb 4-1: no configurations
[   52.910434][  T100] usb 4-1: can't read configurations, error -22
[   52.916767][  T100] usb usb4-port1: attempt power cycle
[   53.228024][   T36] audit: type=1400 audit(1775055620.700:259): avc:  denied  { setopt } for  pid=1018 comm="syz.1.230" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   53.242118][ T1019] input: syz1 as /devices/virtual/input/input8
[   53.251421][   T36] audit: type=1400 audit(1775055620.710:260): avc:  denied  { write } for  pid=1018 comm="syz.1.230" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   53.274359][   T36] audit: type=1400 audit(1775055620.730:261): avc:  denied  { read } for  pid=95 comm="acpid" name="event3" dev="devtmpfs" ino=509 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   53.280718][  T100] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[   53.296883][   T36] audit: type=1400 audit(1775055620.730:262): avc:  denied  { open } for  pid=95 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=509 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   53.327700][   T36] audit: type=1400 audit(1775055620.730:263): avc:  denied  { ioctl } for  pid=95 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=509 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   53.331618][  T100] usb 4-1: Using ep0 maxpacket: 32
[   53.357987][  T100] usb 4-1: no configurations
[   53.362629][  T100] usb 4-1: can't read configurations, error -22
[   53.450798][ T1022] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   53.490495][  T100] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[   53.510644][  T100] usb 4-1: Using ep0 maxpacket: 32
[   53.516156][  T100] usb 4-1: no configurations
[   53.521027][  T100] usb 4-1: can't read configurations, error -22
[   53.527412][  T100] usb usb4-port1: unable to enumerate USB device
[   53.602301][ T1027] FAULT_INJECTION: forcing a failure.
[   53.602301][ T1027] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.610266][  T484] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[   53.615417][ T1027] CPU: 1 UID: 0 PID: 1027 Comm: syz.0.233 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   53.615445][ T1027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   53.615457][ T1027] Call Trace:
[   53.615465][ T1027]  <TASK>
[   53.615472][ T1027]  __dump_stack+0x21/0x30
[   53.615498][ T1027]  dump_stack_lvl+0x140/0x1c0
[   53.615520][ T1027]  ? __cfi_dump_stack_lvl+0x10/0x10
[   53.615542][ T1027]  ? __kasan_check_read+0x15/0x20
[   53.615571][ T1027]  dump_stack+0x19/0x20
[   53.615591][ T1027]  should_fail_ex+0x3d7/0x530
[   53.615613][ T1027]  should_fail+0xf/0x20
[   53.615632][ T1027]  should_fail_usercopy+0x1e/0x30
[   53.615654][ T1027]  __kvm_read_guest_page+0x177/0x210
[   53.615673][ T1027]  kvm_vcpu_read_guest_page+0x31a/0x400
[   53.615690][ T1027]  kvm_fetch_guest_virt+0x146/0x190
[   53.615714][ T1027]  ? __cfi_kvm_fetch_guest_virt+0x10/0x10
[   53.615737][ T1027]  __do_insn_fetch_bytes+0x341/0x760
[   53.615763][ T1027]  ? x86_decode_insn+0x5180/0x5180
[   53.615787][ T1027]  ? kvm_tdp_mmu_fast_pf_get_last_sptep+0x2d0/0x2d0
[   53.615812][ T1027]  x86_decode_insn+0x333/0x5180
[   53.615838][ T1027]  ? __cfi_kvm_tdp_mmu_map+0x10/0x10
[   53.615857][ T1027]  ? unwind_get_return_address+0x51/0x90
[   53.615877][ T1027]  ? __cfi_x86_decode_insn+0x10/0x10
[   53.615901][ T1027]  ? __kasan_check_write+0x18/0x20
[   53.615921][ T1027]  ? vmx_read_guest_seg_ar+0x1c8/0x350
[   53.615941][ T1027]  ? __asan_memset+0x39/0x50
[   53.615961][ T1027]  ? init_decode_cache+0x7c/0x90
[   53.615978][ T1027]  ? init_emulate_ctxt+0x421/0x560
[   53.615996][ T1027]  ? kvm_inject_realmode_interrupt+0x2e0/0x2e0
[   53.616014][ T1027]  ? kvm_mmu_do_page_fault+0x4f3/0x660
[   53.616034][ T1027]  x86_decode_emulated_instruction+0x66/0x180
[   53.616054][ T1027]  x86_emulate_instruction+0x2d9/0x1a30
[   53.616072][ T1027]  ? unwind_get_return_address+0x51/0x90
[   53.616091][ T1027]  ? __cfi_rcu_note_context_switch+0x10/0x10
[   53.616112][ T1027]  ? arch_stack_walk+0x10a/0x170
[   53.616136][ T1027]  ? clear_bhb_loop+0x50/0xa0
[   53.616151][ T1027]  ? clear_bhb_loop+0x50/0xa0
[   53.616166][ T1027]  ? clear_bhb_loop+0x50/0xa0
[   53.616181][ T1027]  ? clear_bhb_loop+0x50/0xa0
[   53.616195][ T1027]  ? clear_bhb_loop+0x12/0xa0
[   53.616211][ T1027]  kvm_emulate_instruction+0x26/0x30
[   53.616228][ T1027]  handle_io+0x10f/0x150
[   53.616244][ T1027]  ? __cfi_handle_io+0x10/0x10
[   53.616260][ T1027]  vmx_handle_exit+0x12c0/0x1b10
[   53.616281][ T1027]  ? kvm_deliver_exception_payload+0xd7/0x200
[   53.616302][ T1027]  ? __cfi_vmx_vcpu_run+0x10/0x10
[   53.616323][ T1027]  ? vmx_handle_exit_irqoff+0xe9/0x780
[   53.616346][ T1027]  vcpu_run+0x49f7/0x7840
[   53.616376][ T1027]  ? signal_pending+0xc0/0xc0
[   53.616395][ T1027]  ? __kasan_check_write+0x18/0x20
[   53.616416][ T1027]  ? xfd_validate_state+0x68/0x140
[   53.616437][ T1027]  ? fpu_swap_kvm_fpstate+0x92/0x5e0
[   53.616454][ T1027]  ? __kasan_check_write+0x18/0x20
[   53.616475][ T1027]  ? fpregs_mark_activate+0x68/0x160
[   53.616493][ T1027]  ? fpu_swap_kvm_fpstate+0x44c/0x5e0
[   53.616510][ T1027]  ? fpu_swap_kvm_fpstate+0x92/0x5e0
[   53.616529][ T1027]  kvm_arch_vcpu_ioctl_run+0x1167/0x1bd0
[   53.616556][ T1027]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[   53.616577][ T1027]  ? kstrtoull+0x13b/0x1e0
[   53.616596][ T1027]  ? kstrtouint+0x78/0xf0
[   53.616615][ T1027]  ? ioctl_has_perm+0x1bc/0x500
[   53.616636][ T1027]  ? __asan_memcpy+0x5a/0x80
[   53.616657][ T1027]  ? ioctl_has_perm+0x408/0x500
[   53.616678][ T1027]  ? has_cap_mac_admin+0xd0/0xd0
[   53.616698][ T1027]  ? __kasan_check_write+0x18/0x20
[   53.616719][ T1027]  ? mutex_lock_killable+0x97/0x1d0
[   53.616738][ T1027]  ? __cfi_mutex_lock_killable+0x10/0x10
[   53.616757][ T1027]  ? proc_fail_nth_write+0x184/0x220
[   53.616778][ T1027]  ? __cfi_proc_fail_nth_write+0x10/0x10
[   53.616798][ T1027]  kvm_vcpu_ioctl+0xa48/0x1000
[   53.616822][ T1027]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   53.616846][ T1027]  ? __cfi_vfs_write+0x10/0x10
[   53.616868][ T1027]  ? __kasan_check_write+0x18/0x20
[   53.616891][ T1027]  ? mutex_unlock+0x90/0x240
[   53.616907][ T1027]  ? __cfi_mutex_unlock+0x10/0x10
[   53.616925][ T1027]  ? __fget_files+0x2c5/0x340
[   53.616942][ T1027]  ? __fget_files+0x2c5/0x340
[   53.616958][ T1027]  ? bpf_lsm_file_ioctl+0xd/0x20
[   53.616976][ T1027]  ? security_file_ioctl+0x3e/0x110
[   53.616996][ T1027]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   53.617018][ T1027]  __se_sys_ioctl+0x132/0x1b0
[   53.617036][ T1027]  __x64_sys_ioctl+0x7f/0xa0
[   53.617051][ T1027]  x64_sys_call+0x1878/0x2ee0
[   53.617074][ T1027]  do_syscall_64+0x57/0xf0
[   53.617097][ T1027]  ? clear_bhb_loop+0x50/0xa0
[   53.617111][ T1027]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   53.617135][ T1027] RIP: 0033:0x7fcdf159c819
[   53.617151][ T1027] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   53.617166][ T1027] RSP: 002b:00007fcdf2416028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   53.617186][ T1027] RAX: ffffffffffffffda RBX: 00007fcdf1815fa0 RCX: 00007fcdf159c819
[   53.617200][ T1027] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   53.617211][ T1027] RBP: 00007fcdf2416090 R08: 0000000000000000 R09: 0000000000000000
[   53.617222][ T1027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.617233][ T1027] R13: 00007fcdf1816038 R14: 00007fcdf1815fa0 R15: 00007ffe3bf3d5c8
[   53.617249][ T1027]  </TASK>
[   54.191412][ T1032] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.200152][ T1032] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.280016][   T31] usb 3-1: USB disconnect, device number 19
[   54.290248][  T484] usb 2-1: Using ep0 maxpacket: 32
[   54.300089][  T484] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid maxpacket 1056, setting to 1024
[   54.308473][ T1035] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[   54.311112][ T1035] rust_binder: Read failure Err(EFAULT) in pid:129
[   54.311561][  T484] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 252, changing to 7
[   54.320515][ T1035] rust_binder: Got transaction with invalid offset.
[   54.327340][  T484] usb 2-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice= 0.40
[   54.336892][ T1035] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   54.343523][  T484] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   54.352461][ T1035] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:129
[   54.361874][  T484] usb 2-1: Product: syz
[   54.383353][  T484] usb 2-1: Manufacturer: syz
[   54.396831][  T484] usb 2-1: SerialNumber: syz
[   54.440370][  T375] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[   54.477603][ T1040] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[   54.591268][  T375] usb 1-1: Using ep0 maxpacket: 16
[   54.597491][  T375] usb 1-1: config 0 interface 0 altsetting 236 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   54.608983][  T375] usb 1-1: config 0 interface 0 altsetting 236 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[   54.622118][  T375] usb 1-1: config 0 interface 0 has no altsetting 0
[   54.629384][  T484] usb 2-1: unit 130 not found!
[   54.634590][  T375] usb 1-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[   54.644054][  T484] snd-usb-audio 2-1:1.0: probe with driver snd-usb-audio failed with error -22
[   54.653245][  T375] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.667405][  T484] usb 2-1: unit 130 not found!
[   54.673501][  T484] snd-usb-audio 2-1:1.1: probe with driver snd-usb-audio failed with error -22
[   54.682726][  T375] usb 1-1: config 0 descriptor??
[   54.689327][  T484] usb 2-1: unit 130 not found!
[   54.697276][  T484] snd-usb-audio 2-1:1.2: probe with driver snd-usb-audio failed with error -22
[   54.708528][  T484] usb 2-1: USB disconnect, device number 17
[   54.718521][  T314] udevd[314]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.2/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   54.888514][ T1033] ip6gre0: mtu less than device minimum
[   54.894647][ T1032] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.903195][ T1032] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   55.174271][  T375] usbhid 1-1:0.0: can't add hid device: -71
[   55.174960][ T1050] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   55.180378][  T375] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[   55.207156][  T375] usb 1-1: USB disconnect, device number 23
[   55.230450][   T36] kauditd_printk_skb: 3 callbacks suppressed
[   55.230466][   T36] audit: type=1400 audit(1775055622.700:267): avc:  denied  { mount } for  pid=1056 comm="syz.0.243" name="/" dev="ramfs" ino=11754 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   55.269526][ T1060] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3901428352 (7802856704 ns) > initial count (110847878 ns). Using initial count to start timer.
[   55.301641][ T1060] FAULT_INJECTION: forcing a failure.
[   55.301641][ T1060] name failslab, interval 1, probability 0, space 0, times 0
[   55.320371][ T1060] CPU: 1 UID: 0 PID: 1060 Comm: syz.3.244 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   55.320402][ T1060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   55.320414][ T1060] Call Trace:
[   55.320430][ T1060]  <TASK>
[   55.320438][ T1060]  __dump_stack+0x21/0x30
[   55.320465][ T1060]  dump_stack_lvl+0x140/0x1c0
[   55.320486][ T1060]  ? __cfi_dump_stack_lvl+0x10/0x10
[   55.320509][ T1060]  dump_stack+0x19/0x20
[   55.320530][ T1060]  should_fail_ex+0x3d7/0x530
[   55.320552][ T1060]  should_failslab+0xac/0x100
[   55.320570][ T1060]  __kmalloc_node_noprof+0x6c/0x4f0
[   55.320593][ T1060]  ? __kvmalloc_node_noprof+0x128/0x300
[   55.320614][ T1060]  ? __kasan_check_write+0x18/0x20
[   55.320637][ T1060]  __kvmalloc_node_noprof+0x128/0x300
[   55.320658][ T1060]  ? get_user_pages_fast_only+0x76/0xc0
[   55.320678][ T1060]  ? __cfi___kvmalloc_node_noprof+0x10/0x10
[   55.320697][ T1060]  ? hva_to_pfn+0x226/0xab0
[   55.320722][ T1060]  __kvm_mmu_topup_memory_cache+0x5e6/0x850
[   55.320746][ T1060]  ? folio_mark_accessed+0x34b/0x620
[   55.320765][ T1060]  ? __cfi_mutex_unlock+0x10/0x10
[   55.320785][ T1060]  kvm_mmu_topup_memory_cache+0x24/0x30
[   55.320808][ T1060]  kvm_mmu_load+0xa2/0x2890
[   55.320829][ T1060]  ? __kasan_check_read+0x15/0x20
[   55.320848][ T1060]  ? kvm_lapic_sync_to_vapic+0x2b8/0x850
[   55.320867][ T1060]  ? __cfi_kvm_lapic_sync_to_vapic+0x10/0x10
[   55.320916][ T1060]  vcpu_run+0x4dad/0x7840
[   55.320945][ T1060]  ? signal_pending+0xc0/0xc0
[   55.320963][ T1060]  ? __kasan_check_write+0x18/0x20
[   55.320983][ T1060]  ? xfd_validate_state+0x68/0x140
[   55.321004][ T1060]  ? fpu_swap_kvm_fpstate+0x92/0x5e0
[   55.321020][ T1060]  ? __kasan_check_write+0x18/0x20
[   55.321039][ T1060]  ? fpregs_mark_activate+0x68/0x160
[   55.321055][ T1060]  ? fpu_swap_kvm_fpstate+0x44c/0x5e0
[   55.321070][ T1060]  ? fpu_swap_kvm_fpstate+0x92/0x5e0
[   55.321085][ T1060]  kvm_arch_vcpu_ioctl_run+0x1167/0x1bd0
[   55.321106][ T1060]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[   55.321128][ T1060]  ? kstrtoull+0x13b/0x1e0
[   55.321147][ T1060]  ? kstrtouint+0x78/0xf0
[   55.321165][ T1060]  ? ioctl_has_perm+0x1bc/0x500
[   55.321185][ T1060]  ? __asan_memcpy+0x5a/0x80
[   55.321205][ T1060]  ? ioctl_has_perm+0x408/0x500
[   55.321225][ T1060]  ? has_cap_mac_admin+0xd0/0xd0
[   55.321246][ T1060]  ? __kasan_check_write+0x18/0x20
[   55.321266][ T1060]  ? mutex_lock_killable+0x97/0x1d0
[   55.321284][ T1060]  ? __cfi_mutex_lock_killable+0x10/0x10
[   55.321301][ T1060]  ? proc_fail_nth_write+0x184/0x220
[   55.321322][ T1060]  kvm_vcpu_ioctl+0xa48/0x1000
[   55.321345][ T1060]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   55.321369][ T1060]  ? __cfi_vfs_write+0x10/0x10
[   55.321392][ T1060]  ? __kasan_check_write+0x18/0x20
[   55.321414][ T1060]  ? mutex_unlock+0x90/0x240
[   55.321441][ T1060]  ? __cfi_mutex_unlock+0x10/0x10
[   55.321459][ T1060]  ? __fget_files+0x2c5/0x340
[   55.321477][ T1060]  ? __fget_files+0x2c5/0x340
[   55.321493][ T1060]  ? bpf_lsm_file_ioctl+0xd/0x20
[   55.321512][ T1060]  ? security_file_ioctl+0x3e/0x110
[   55.321533][ T1060]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   55.321557][ T1060]  __se_sys_ioctl+0x132/0x1b0
[   55.321575][ T1060]  __x64_sys_ioctl+0x7f/0xa0
[   55.321591][ T1060]  x64_sys_call+0x1878/0x2ee0
[   55.321615][ T1060]  do_syscall_64+0x57/0xf0
[   55.321639][ T1060]  ? clear_bhb_loop+0x50/0xa0
[   55.321656][ T1060]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   55.321678][ T1060] RIP: 0033:0x7f07a0d9c819
[   55.321788][ T1060] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   55.321804][ T1060] RSP: 002b:00007f07a1be5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   55.321825][ T1060] RAX: ffffffffffffffda RBX: 00007f07a1015fa0 RCX: 00007f07a0d9c819
[   55.321839][ T1060] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   55.321852][ T1060] RBP: 00007f07a1be5090 R08: 0000000000000000 R09: 0000000000000000
[   55.321864][ T1060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.321876][ T1060] R13: 00007f07a1016038 R14: 00007f07a1015fa0 R15: 00007ffdd18d5998
[   55.321892][ T1060]  </TASK>
[   55.777635][   T36] audit: type=1400 audit(1775055623.250:268): avc:  denied  { mounton } for  pid=1073 comm="syz.2.249" path="/53/file0" dev="incremental-fs" ino=291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   55.902292][ T1087] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   55.903431][   T36] audit: type=1326 audit(1775055623.380:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1084 comm="syz.1.253" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f932259c819 code=0x0
[   55.963329][   T36] audit: type=1400 audit(1775055623.430:270): avc:  denied  { node_bind } for  pid=1084 comm="syz.1.253" saddr=fe80::30 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   55.986053][   T36] audit: type=1400 audit(1775055623.430:271): avc:  denied  { setopt } for  pid=1084 comm="syz.1.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   56.007301][   T36] audit: type=1400 audit(1775055623.460:272): avc:  denied  { bind } for  pid=1084 comm="syz.1.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   56.130274][  T375] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[   56.280267][  T375] usb 1-1: Using ep0 maxpacket: 32
[   56.286560][  T375] usb 1-1: config 0 has no interfaces?
[   56.298753][  T375] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[   56.308860][  T375] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   56.317839][  T375] usb 1-1: Product: syz
[   56.322047][  T375] usb 1-1: Manufacturer: syz
[   56.326634][  T375] usb 1-1: SerialNumber: syz
[   56.332007][  T375] usb 1-1: config 0 descriptor??
[   56.411642][ T1114] FAULT_INJECTION: forcing a failure.
[   56.411642][ T1114] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.424804][ T1114] CPU: 1 UID: 0 PID: 1114 Comm: syz.2.263 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   56.424824][ T1114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   56.424832][ T1114] Call Trace:
[   56.424837][ T1114]  <TASK>
[   56.424842][ T1114]  __dump_stack+0x21/0x30
[   56.424859][ T1114]  dump_stack_lvl+0x140/0x1c0
[   56.424872][ T1114]  ? __cfi_dump_stack_lvl+0x10/0x10
[   56.424884][ T1114]  ? __check_object_size+0x527/0x830
[   56.424899][ T1114]  dump_stack+0x19/0x20
[   56.424910][ T1114]  should_fail_ex+0x3d7/0x530
[   56.424923][ T1114]  should_fail+0xf/0x20
[   56.424934][ T1114]  should_fail_usercopy+0x1e/0x30
[   56.424946][ T1114]  __kvm_read_guest_page+0x177/0x210
[   56.424957][ T1114]  kvm_vcpu_read_guest+0x3a6/0x510
[   56.424967][ T1114]  read_emulate+0x30/0x50
[   56.424978][ T1114]  emulator_read_write_onepage+0x7df/0xd20
[   56.424989][ T1114]  emulator_read_write+0x1ef/0x580
[   56.424999][ T1114]  emulator_read_emulated+0x40/0x50
[   56.425013][ T1114]  ? __cfi_emulator_read_emulated+0x10/0x10
[   56.425025][ T1114]  segmented_read+0x1c5/0x400
[   56.425035][ T1114]  x86_emulate_insn+0x302/0x3fe0
[   56.425044][ T1114]  ? kvm_inject_realmode_interrupt+0x2e0/0x2e0
[   56.425055][ T1114]  ? __kasan_check_write+0x18/0x20
[   56.425069][ T1114]  ? kvm_release_pfn_clean+0x31/0x60
[   56.425079][ T1114]  x86_emulate_instruction+0xb5c/0x1a30
[   56.425091][ T1114]  kvm_mmu_page_fault+0x336/0x970
[   56.425102][ T1114]  handle_ept_violation+0x256/0x450
[   56.425112][ T1114]  ? vmx_vcpu_run+0x1116/0x1f70
[   56.425125][ T1114]  ? __cfi_handle_ept_violation+0x10/0x10
[   56.425135][ T1114]  vmx_handle_exit+0x12c0/0x1b10
[   56.425146][ T1114]  ? kvm_deliver_exception_payload+0xd7/0x200
[   56.425158][ T1114]  ? __cfi_vmx_vcpu_run+0x10/0x10
[   56.425170][ T1114]  ? vmx_handle_exit_irqoff+0xe9/0x780
[   56.425183][ T1114]  vcpu_run+0x49f7/0x7840
[   56.425200][ T1114]  ? signal_pending+0xc0/0xc0
[   56.425212][ T1114]  ? complete_emulated_mmio+0x4fb/0x790
[   56.425223][ T1114]  kvm_arch_vcpu_ioctl_run+0x1167/0x1bd0
[   56.425235][ T1114]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[   56.425247][ T1114]  ? kstrtoull+0x13b/0x1e0
[   56.425258][ T1114]  ? kstrtouint+0x78/0xf0
[   56.425277][ T1114]  ? ioctl_has_perm+0x1bc/0x500
[   56.425289][ T1114]  ? __asan_memcpy+0x5a/0x80
[   56.425301][ T1114]  ? ioctl_has_perm+0x408/0x500
[   56.425313][ T1114]  ? has_cap_mac_admin+0xd0/0xd0
[   56.425324][ T1114]  ? __kasan_check_write+0x18/0x20
[   56.425336][ T1114]  ? mutex_lock_killable+0x97/0x1d0
[   56.425347][ T1114]  ? __cfi_mutex_lock_killable+0x10/0x10
[   56.425365][ T1114]  ? proc_fail_nth_write+0x184/0x220
[   56.425376][ T1114]  ? __cfi_proc_fail_nth_write+0x10/0x10
[   56.425388][ T1114]  kvm_vcpu_ioctl+0xa48/0x1000
[   56.425402][ T1114]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   56.425415][ T1114]  ? __cfi_vfs_write+0x10/0x10
[   56.425427][ T1114]  ? __kasan_check_write+0x18/0x20
[   56.425439][ T1114]  ? mutex_unlock+0x90/0x240
[   56.425449][ T1114]  ? __cfi_mutex_unlock+0x10/0x10
[   56.425458][ T1114]  ? __fget_files+0x2c5/0x340
[   56.425468][ T1114]  ? __fget_files+0x2c5/0x340
[   56.425477][ T1114]  ? bpf_lsm_file_ioctl+0xd/0x20
[   56.425488][ T1114]  ? security_file_ioctl+0x3e/0x110
[   56.425499][ T1114]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   56.425512][ T1114]  __se_sys_ioctl+0x132/0x1b0
[   56.425527][ T1114]  __x64_sys_ioctl+0x7f/0xa0
[   56.425541][ T1114]  x64_sys_call+0x1878/0x2ee0
[   56.425564][ T1114]  do_syscall_64+0x57/0xf0
[   56.425584][ T1114]  ? clear_bhb_loop+0x50/0xa0
[   56.425594][ T1114]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   56.425618][ T1114] RIP: 0033:0x7f079a99c819
[   56.425634][ T1114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   56.425650][ T1114] RSP: 002b:00007f079b80f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   56.425664][ T1114] RAX: ffffffffffffffda RBX: 00007f079ac15fa0 RCX: 00007f079a99c819
[   56.425672][ T1114] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   56.425679][ T1114] RBP: 00007f079b80f090 R08: 0000000000000000 R09: 0000000000000000
[   56.425685][ T1114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.425692][ T1114] R13: 00007f079ac16038 R14: 00007f079ac15fa0 R15: 00007ffec308f998
[   56.425701][ T1114]  </TASK>
[   56.864841][ T1117] FAULT_INJECTION: forcing a failure.
[   56.864841][ T1117] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.878107][ T1117] CPU: 0 UID: 0 PID: 1117 Comm: syz.2.264 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   56.878139][ T1117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   56.878151][ T1117] Call Trace:
[   56.878157][ T1117]  <TASK>
[   56.878164][ T1117]  __dump_stack+0x21/0x30
[   56.878193][ T1117]  dump_stack_lvl+0x140/0x1c0
[   56.878215][ T1117]  ? __cfi_dump_stack_lvl+0x10/0x10
[   56.878238][ T1117]  ? check_stack_object+0x12b/0x150
[   56.878263][ T1117]  dump_stack+0x19/0x20
[   56.878284][ T1117]  should_fail_ex+0x3d7/0x530
[   56.878307][ T1117]  should_fail+0xf/0x20
[   56.878327][ T1117]  should_fail_usercopy+0x1e/0x30
[   56.878357][ T1117]  _copy_to_user+0x24/0xa0
[   56.878374][ T1117]  simple_read_from_buffer+0xed/0x160
[   56.878394][ T1117]  proc_fail_nth_read+0x1aa/0x220
[   56.878415][ T1117]  ? __cfi_proc_fail_nth_read+0x10/0x10
[   56.878436][ T1117]  ? bpf_lsm_file_permission+0xd/0x20
[   56.878456][ T1117]  ? __cfi_proc_fail_nth_read+0x10/0x10
[   56.878477][ T1117]  vfs_read+0x289/0xcb0
[   56.878499][ T1117]  ? __cfi_selinux_file_ioctl+0x10/0x10
[   56.878523][ T1117]  ? __cfi_vfs_read+0x10/0x10
[   56.878545][ T1117]  ? __kasan_check_write+0x18/0x20
[   56.878567][ T1117]  ? mutex_lock+0x97/0x1d0
[   56.878586][ T1117]  ? __cfi_mutex_lock+0x10/0x10
[   56.878603][ T1117]  ? __fget_files+0x2c5/0x340
[   56.878622][ T1117]  ksys_read+0x145/0x260
[   56.878644][ T1117]  ? __cfi_ksys_read+0x10/0x10
[   56.878667][ T1117]  ? __kasan_check_write+0x18/0x20
[   56.878689][ T1117]  ? fpregs_restore_userregs+0x11c/0x260
[   56.878711][ T1117]  __x64_sys_read+0x7f/0x90
[   56.878733][ T1117]  x64_sys_call+0x2638/0x2ee0
[   56.878757][ T1117]  do_syscall_64+0x57/0xf0
[   56.878780][ T1117]  ? clear_bhb_loop+0x50/0xa0
[   56.878801][ T1117]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   56.878825][ T1117] RIP: 0033:0x7f079a95d04e
[   56.878841][ T1117] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   56.878857][ T1117] RSP: 002b:00007f079b80efe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   56.878879][ T1117] RAX: ffffffffffffffda RBX: 00007f079b80f6c0 RCX: 00007f079a95d04e
[   56.878897][ T1117] RDX: 000000000000000f RSI: 00007f079b80f0a0 RDI: 0000000000000007
[   56.878909][ T1117] RBP: 00007f079b80f090 R08: 0000000000000000 R09: 0000000000000000
[   56.878921][ T1117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.878933][ T1117] R13: 00007f079ac16038 R14: 00007f079ac15fa0 R15: 00007ffec308f998
[   56.878949][ T1117]  </TASK>
[   57.130303][  T487] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[   57.133721][  T375] usb 1-1: USB disconnect, device number 24
[   57.246784][ T1125] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   57.254499][ T1125] audit: out of memory in audit_log_start
[   57.271395][ T1127] ªªªªªª: renamed from vlan0 (while UP)
[   57.278772][   T36] audit: type=1400 audit(1775055624.750:273): avc:  denied  { write } for  pid=1126 comm="syz.2.269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   57.291366][  T487] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 2560, setting to 1024
[   57.309109][  T487] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024
[   57.324603][  T487] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   57.349954][  T487] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   57.359202][  T487] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   57.367357][  T487] usb 2-1: SerialNumber: syz
[   57.438020][ T1136] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   57.450248][  T375] usb 4-1: new full-speed USB device number 21 using dummy_hcd
[   57.486838][ T1141] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   57.580269][  T375] usb 4-1: device descriptor read/64, error -71
[   57.674769][ T1149] netlink: 12 bytes leftover after parsing attributes in process `syz.0.278'.
[   57.820283][  T375] usb 4-1: device descriptor read/64, error -71
[   57.920292][  T484] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[   57.983799][  T487] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22
[   58.060291][  T375] usb 4-1: new full-speed USB device number 22 using dummy_hcd
[   58.070259][  T484] usb 1-1: Using ep0 maxpacket: 32
[   58.078473][  T484] usb 1-1: New USB device found, idVendor=0a67, idProduct=5011, bcdDevice= 0.40
[   58.087555][  T484] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   58.095570][  T484] usb 1-1: Product: syz
[   58.099718][  T484] usb 1-1: Manufacturer: syz
[   58.104319][  T484] usb 1-1: SerialNumber: syz
[   58.187366][  T487] usb 2-1: USB disconnect, device number 18
[   58.190464][  T375] usb 4-1: device descriptor read/64, error -71
[   58.314217][  T484] usb 1-1: MIDIStreaming interface descriptor not found
[   58.323590][  T484] usb 1-1: USB disconnect, device number 25
[   58.440303][  T375] usb 4-1: device descriptor read/64, error -71
[   58.503360][ T1156] kvm: pic: single mode not supported
[   58.503411][ T1156] kvm: pic: non byte write
[   58.513529][ T1156] kvm: pic: non byte write
[   58.550470][  T375] usb usb4-port1: attempt power cycle
[   58.631645][ T1163] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   58.694594][ T1166] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   58.763115][   T36] audit: type=1400 audit(1775055626.240:274): avc:  denied  { setopt } for  pid=1170 comm="syz.2.286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   58.895120][ T1184] FAULT_INJECTION: forcing a failure.
[   58.895120][ T1184] name failslab, interval 1, probability 0, space 0, times 0
[   58.900331][  T375] usb 4-1: new full-speed USB device number 23 using dummy_hcd
[   58.907883][ T1184] CPU: 1 UID: 0 PID: 1184 Comm: syz.0.290 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   58.907912][ T1184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   58.907935][ T1184] Call Trace:
[   58.907943][ T1184]  <TASK>
[   58.907951][ T1184]  __dump_stack+0x21/0x30
[   58.907978][ T1184]  dump_stack_lvl+0x140/0x1c0
[   58.907999][ T1184]  ? __cfi_dump_stack_lvl+0x10/0x10
[   58.908021][ T1184]  ? kasan_save_track+0x4f/0x80
[   58.908045][ T1184]  ? kasan_save_alloc_info+0x40/0x50
[   58.908065][ T1184]  ? __kasan_kmalloc+0x96/0xb0
[   58.908081][ T1184]  ? __kmalloc_cache_node_noprof+0x225/0x430
[   58.908104][ T1184]  ? __vmalloc_node_range_noprof+0x30e/0x1480
[   58.908125][ T1184]  ? dup_task_struct+0x5d6/0xd80
[   58.908145][ T1184]  dump_stack+0x19/0x20
[   58.908164][ T1184]  should_fail_ex+0x3d7/0x530
[   58.908189][ T1184]  should_failslab+0xac/0x100
[   58.908206][ T1184]  kmem_cache_alloc_node_noprof+0x45/0x420
[   58.908232][ T1184]  ? alloc_vmap_area+0x230/0x26c0
[   58.908256][ T1184]  alloc_vmap_area+0x230/0x26c0
[   58.908336][ T1184]  ? kasan_save_alloc_info+0x40/0x50
[   58.908356][ T1184]  ? __kasan_kmalloc+0x96/0xb0
[   58.908372][ T1184]  ? vm_map_ram+0xdc0/0xdc0
[   58.908392][ T1184]  __get_vm_area_node+0x201/0x3d0
[   58.908412][ T1184]  __vmalloc_node_range_noprof+0x30e/0x1480
[   58.908433][ T1184]  ? copy_process+0x55a/0x32a0
[   58.908455][ T1184]  ? __cfi___vmalloc_node_range_noprof+0x10/0x10
[   58.908475][ T1184]  ? kasan_save_alloc_info+0x40/0x50
[   58.908496][ T1184]  ? __kasan_slab_alloc+0x73/0x90
[   58.908512][ T1184]  ? arch_dup_task_struct+0x5b/0xe0
[   58.908535][ T1184]  ? __asan_memcpy+0x5a/0x80
[   58.908557][ T1184]  dup_task_struct+0x5d6/0xd80
[   58.908575][ T1184]  ? copy_process+0x55a/0x32a0
[   58.908593][ T1184]  ? _raw_spin_lock_irq+0x93/0x120
[   58.908618][ T1184]  ? copy_process+0x32a0/0x32a0
[   58.908637][ T1184]  ? __kasan_check_write+0x18/0x20
[   58.908659][ T1184]  copy_process+0x55a/0x32a0
[   58.908680][ T1184]  ? __cfi_copy_process+0x10/0x10
[   58.908699][ T1184]  ? __kmalloc_cache_noprof+0x23c/0x470
[   58.908722][ T1184]  ? __kasan_check_write+0x18/0x20
[   58.908743][ T1184]  ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   58.908762][ T1184]  vhost_task_create+0x1f7/0x400
[   58.908777][ T1184]  ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   58.908796][ T1184]  ? __cfi_vhost_task_create+0x10/0x10
[   58.908814][ T1184]  ? __cfi_vhost_task_fn+0x10/0x10
[   58.908830][ T1184]  ? __kasan_check_write+0x18/0x20
[   58.908851][ T1184]  ? mutex_lock+0x97/0x1d0
[   58.908867][ T1184]  ? __cfi_mutex_lock+0x10/0x10
[   58.908888][ T1184]  ? kernel_text_address+0xa9/0xe0
[   58.908910][ T1184]  kvm_mmu_post_init_vm+0x161/0x300
[   58.908932][ T1184]  kvm_arch_vcpu_ioctl_run+0xf3/0x1bd0
[   58.908954][ T1184]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[   58.908975][ T1184]  ? kstrtoull+0x13b/0x1e0
[   58.908994][ T1184]  ? kstrtouint+0x78/0xf0
[   58.909013][ T1184]  ? ioctl_has_perm+0x1bc/0x500
[   58.909034][ T1184]  ? __asan_memcpy+0x5a/0x80
[   58.909056][ T1184]  ? ioctl_has_perm+0x408/0x500
[   58.909075][ T1184]  ? has_cap_mac_admin+0xd0/0xd0
[   58.909095][ T1184]  ? __kasan_check_write+0x18/0x20
[   58.909116][ T1184]  ? mutex_lock_killable+0x97/0x1d0
[   58.909135][ T1184]  ? __cfi_mutex_lock_killable+0x10/0x10
[   58.909153][ T1184]  ? proc_fail_nth_write+0x184/0x220
[   58.909175][ T1184]  kvm_vcpu_ioctl+0xa48/0x1000
[   58.909199][ T1184]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   58.909224][ T1184]  ? __cfi_vfs_write+0x10/0x10
[   58.909246][ T1184]  ? __kasan_check_write+0x18/0x20
[   58.909273][ T1184]  ? mutex_unlock+0x90/0x240
[   58.909290][ T1184]  ? __cfi_mutex_unlock+0x10/0x10
[   58.909307][ T1184]  ? __fget_files+0x2c5/0x340
[   58.909324][ T1184]  ? __fget_files+0x2c5/0x340
[   58.909340][ T1184]  ? bpf_lsm_file_ioctl+0xd/0x20
[   58.909358][ T1184]  ? security_file_ioctl+0x3e/0x110
[   58.909379][ T1184]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   58.909401][ T1184]  __se_sys_ioctl+0x132/0x1b0
[   58.909418][ T1184]  __x64_sys_ioctl+0x7f/0xa0
[   58.909434][ T1184]  x64_sys_call+0x1878/0x2ee0
[   58.909457][ T1184]  do_syscall_64+0x57/0xf0
[   58.909479][ T1184]  ? clear_bhb_loop+0x50/0xa0
[   58.909495][ T1184]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   58.909519][ T1184] RIP: 0033:0x7fcdf159c819
[   58.909542][ T1184] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   58.909556][ T1184] RSP: 002b:00007fcdf2416028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   58.909576][ T1184] RAX: ffffffffffffffda RBX: 00007fcdf1815fa0 RCX: 00007fcdf159c819
[   58.909590][ T1184] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   58.909601][ T1184] RBP: 00007fcdf2416090 R08: 0000000000000000 R09: 0000000000000000
[   58.909614][ T1184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.909625][ T1184] R13: 00007fcdf1816038 R14: 00007fcdf1815fa0 R15: 00007ffe3bf3d5c8
[   58.909640][ T1184]  </TASK>
[   58.909691][ T1184] syz.0.290: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[   58.941322][  T375] usb 4-1: device descriptor read/8, error -71
[   58.944293][ T1184] ,cpuset=
[   59.081356][  T375] usb 4-1: device descriptor read/8, error -71
[   59.084677][  T487] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[   59.089844][ T1184] syz0
[   59.240271][  T487] usb 2-1: Using ep0 maxpacket: 32
[   59.245167][ T1184] ,mems_allowed=0
[   59.250061][  T487] usb 2-1: no configurations
[   59.254766][ T1184] 
[   59.259306][  T487] usb 2-1: can't read configurations, error -22
[   59.264333][ T1184] CPU: 0 UID: 0 PID: 1184 Comm: syz.0.290 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   59.264359][ T1184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   59.264371][ T1184] Call Trace:
[   59.264378][ T1184]  <TASK>
[   59.264386][ T1184]  __dump_stack+0x21/0x30
[   59.264413][ T1184]  dump_stack_lvl+0x140/0x1c0
[   59.264433][ T1184]  ? __cfi_dump_stack_lvl+0x10/0x10
[   59.264479][ T1184]  dump_stack+0x19/0x20
[   59.264506][ T1184]  warn_alloc+0x1e7/0x2c0
[   59.264525][ T1184]  ? entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   59.264550][ T1184]  ? __cfi_warn_alloc+0x10/0x10
[   59.264568][ T1184]  ? kfree+0x158/0x440
[   59.264591][ T1184]  ? __get_vm_area_node+0x21a/0x3d0
[   59.264612][ T1184]  __vmalloc_node_range_noprof+0x333/0x1480
[   59.264637][ T1184]  ? __cfi___vmalloc_node_range_noprof+0x10/0x10
[   59.264658][ T1184]  ? kasan_save_alloc_info+0x40/0x50
[   59.264680][ T1184]  ? __kasan_slab_alloc+0x73/0x90
[   59.264696][ T1184]  ? arch_dup_task_struct+0x5b/0xe0
[   59.264719][ T1184]  ? __asan_memcpy+0x5a/0x80
[   59.264741][ T1184]  dup_task_struct+0x5d6/0xd80
[   59.264760][ T1184]  ? copy_process+0x55a/0x32a0
[   59.264779][ T1184]  ? _raw_spin_lock_irq+0x93/0x120
[   59.264802][ T1184]  ? copy_process+0x32a0/0x32a0
[   59.264821][ T1184]  ? __kasan_check_write+0x18/0x20
[   59.264842][ T1184]  copy_process+0x55a/0x32a0
[   59.264863][ T1184]  ? __cfi_copy_process+0x10/0x10
[   59.264882][ T1184]  ? __kmalloc_cache_noprof+0x23c/0x470
[   59.264906][ T1184]  ? __kasan_check_write+0x18/0x20
[   59.264927][ T1184]  ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   59.264945][ T1184]  vhost_task_create+0x1f7/0x400
[   59.264961][ T1184]  ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   59.264980][ T1184]  ? __cfi_vhost_task_create+0x10/0x10
[   59.264997][ T1184]  ? __cfi_vhost_task_fn+0x10/0x10
[   59.265013][ T1184]  ? __kasan_check_write+0x18/0x20
[   59.265034][ T1184]  ? mutex_lock+0x97/0x1d0
[   59.265051][ T1184]  ? __cfi_mutex_lock+0x10/0x10
[   59.265068][ T1184]  ? kernel_text_address+0xa9/0xe0
[   59.265089][ T1184]  kvm_mmu_post_init_vm+0x161/0x300
[   59.265111][ T1184]  kvm_arch_vcpu_ioctl_run+0xf3/0x1bd0
[   59.265133][ T1184]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[   59.265154][ T1184]  ? kstrtoull+0x13b/0x1e0
[   59.265174][ T1184]  ? kstrtouint+0x78/0xf0
[   59.265193][ T1184]  ? ioctl_has_perm+0x1bc/0x500
[   59.265213][ T1184]  ? __asan_memcpy+0x5a/0x80
[   59.265235][ T1184]  ? ioctl_has_perm+0x408/0x500
[   59.265255][ T1184]  ? has_cap_mac_admin+0xd0/0xd0
[   59.265275][ T1184]  ? __kasan_check_write+0x18/0x20
[   59.265296][ T1184]  ? mutex_lock_killable+0x97/0x1d0
[   59.265315][ T1184]  ? __cfi_mutex_lock_killable+0x10/0x10
[   59.265333][ T1184]  ? proc_fail_nth_write+0x184/0x220
[   59.265354][ T1184]  kvm_vcpu_ioctl+0xa48/0x1000
[   59.265378][ T1184]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   59.265401][ T1184]  ? __cfi_vfs_write+0x10/0x10
[   59.265422][ T1184]  ? __kasan_check_write+0x18/0x20
[   59.265443][ T1184]  ? mutex_unlock+0x90/0x240
[   59.265460][ T1184]  ? __cfi_mutex_unlock+0x10/0x10
[   59.265477][ T1184]  ? __fget_files+0x2c5/0x340
[   59.265493][ T1184]  ? __fget_files+0x2c5/0x340
[   59.265514][ T1184]  ? bpf_lsm_file_ioctl+0xd/0x20
[   59.265532][ T1184]  ? security_file_ioctl+0x3e/0x110
[   59.265552][ T1184]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   59.265574][ T1184]  __se_sys_ioctl+0x132/0x1b0
[   59.265591][ T1184]  __x64_sys_ioctl+0x7f/0xa0
[   59.265607][ T1184]  x64_sys_call+0x1878/0x2ee0
[   59.265629][ T1184]  do_syscall_64+0x57/0xf0
[   59.265651][ T1184]  ? clear_bhb_loop+0x50/0xa0
[   59.265666][ T1184]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   59.265689][ T1184] RIP: 0033:0x7fcdf159c819
[   59.265705][ T1184] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   59.265719][ T1184] RSP: 002b:00007fcdf2416028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   59.265739][ T1184] RAX: ffffffffffffffda RBX: 00007fcdf1815fa0 RCX: 00007fcdf159c819
[   59.265753][ T1184] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   59.265765][ T1184] RBP: 00007fcdf2416090 R08: 0000000000000000 R09: 0000000000000000
[   59.265776][ T1184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.265787][ T1184] R13: 00007fcdf1816038 R14: 00007fcdf1815fa0 R15: 00007ffe3bf3d5c8
[   59.265804][ T1184]  </TASK>
[   59.265821][ T1184] Mem-Info:
[   59.410250][  T487] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[   59.475351][ T1184] active_anon:6736 inactive_anon:0 isolated_anon:0
[   59.475351][ T1184]  active_file:18322 inactive_file:2300 isolated_file:0
[   59.475351][ T1184]  unevictable:0 dirty:89 writeback:0
[   59.475351][ T1184]  slab_reclaimable:5410 slab_unreclaimable:71067
[   59.475351][ T1184]  mapped:24973 shmem:165 pagetables:863
[   59.475351][ T1184]  sec_pagetables:0 bounce:0
[   59.475351][ T1184]  kernel_misc_reclaimable:0
[   59.475351][ T1184]  free:1524988 free_pcp:2430 free_cma:0
[   59.650246][  T487] usb 2-1: Using ep0 maxpacket: 32
[   59.671976][ T1184] Node 0 active_anon:26944kB inactive_anon:0kB active_file:73288kB inactive_file:9200kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:99892kB dirty:356kB writeback:0kB shmem:660kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:6496kB pagetables:3452kB sec_pagetables:0kB all_unreclaimable? no
[   59.676716][  T487] usb 2-1: no configurations
[   59.681154][ T1184] DMA32 free:2958164kB boost:0kB min:19080kB low:23848kB high:28616kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2963356kB mlocked:0kB bounce:0kB free_pcp:5192kB local_pcp:5192kB free_cma:0kB
[   59.685877][  T487] usb 2-1: can't read configurations, error -22
[   59.690616][ T1184] lowmem_reserve[]:
[   59.701094][  T487] usb usb2-port1: attempt power cycle
[   59.705935][ T1184]  0 3921
[   60.017564][  T375] usb 4-1: new full-speed USB device number 24 using dummy_hcd
[   60.017573][ T1184]  3921
[   60.028700][ T1184] 
[   60.031304][  T375] usb 4-1: device descriptor read/8, error -71
[   60.031657][ T1184] Normal free:3141788kB boost:0kB min:25972kB low:32464kB high:38956kB reserved_highatomic:0KB free_highatomic:0KB active_anon:26944kB inactive_anon:0kB active_file:73288kB inactive_file:9200kB unevictable:0kB writepending:356kB present:5242880kB managed:4015864kB mlocked:0kB bounce:0kB free_pcp:4528kB local_pcp:2052kB free_cma:0kB
[   60.071542][ T1184] lowmem_reserve[]: 0 0 0
[   60.075920][ T1184] DMA32: 5*4kB (M) 2*8kB (M) 3*16kB (M) 6*32kB (M) 5*64kB (M) 4*128kB (M) 5*256kB (M) 5*512kB (M) 4*1024kB (UM) 4*2048kB (M) 718*4096kB (M) = 2958164kB
[   60.091331][  T487] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[   60.096853][ T1184] Normal: 1*4kB (M) 509*8kB (UME) 637*16kB (UM) 469*32kB (UME) 321*64kB (UME) 38*128kB (UME) 29*256kB (UME) 11*512kB (UME) 4*1024kB (ME) 5*2048kB (ME) 747*4096kB (M) = 3141788kB
[   60.110629][  T487] usb 2-1: Using ep0 maxpacket: 32
[   60.116836][ T1184] 20783 total pagecache pages
[   60.126483][ T1184] 0 pages in swap cache
[   60.130726][ T1184] Free swap  = 124540kB
[   60.134879][ T1184] Total swap = 124996kB
[   60.139070][ T1184] 2097051 pages RAM
[   60.142996][ T1184] 0 pages HighMem/MovableOnly
[   60.147717][ T1184] 352246 pages reserved
[   60.148645][  T487] usb 2-1: no configurations
[   60.153207][ T1184] 0 pages cma reserved
[   60.160245][  T487] usb 2-1: can't read configurations, error -22
[   60.161591][  T375] usb 4-1: device descriptor read/8, error -71
[   60.168652][ T1188] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   60.174494][ T1184] Memory allocations:
[   60.186890][ T1184]          0 B        0 init/main.c:1477 func:do_initcalls
[   60.194183][ T1184]          0 B        0 init/do_mounts.c:186 func:mount_root_generic
[   60.203220][ T1184]          0 B        0 init/do_mounts.c:158 func:do_mount_root
[   60.211527][ T1184]          0 B        0 init/do_mounts.c:352 func:mount_nodev_root
[   60.219444][ T1184]          0 B        0 init/do_mounts_rd.c:241 func:rd_load_image
[   60.227386][ T1184]          0 B        0 init/do_mounts_rd.c:72 func:identify_ramdisk_image
[   60.236016][ T1184]          0 B        0 init/initramfs.c:507 func:unpack_to_rootfs
[   60.244465][ T1184]          0 B        0 init/initramfs.c:508 func:unpack_to_rootfs
[   60.252508][ T1184]          0 B        0 init/initramfs.c:509 func:unpack_to_rootfs
[   60.260476][ T1184]          0 B        0 init/initramfs.c:101 func:find_link
[   60.280346][  T375] usb usb4-port1: unable to enumerate USB device
[   60.290410][  T487] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[   60.303081][ T1195] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   60.320595][  T487] usb 2-1: Using ep0 maxpacket: 32
[   60.326176][  T487] usb 2-1: no configurations
[   60.330818][  T487] usb 2-1: can't read configurations, error -22
[   60.337450][  T487] usb usb2-port1: unable to enumerate USB device
[   60.426125][ T1202] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   60.434917][ T1202] FAULT_INJECTION: forcing a failure.
[   60.434917][ T1202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.448328][ T1202] CPU: 0 UID: 0 PID: 1202 Comm: syz.2.296 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   60.448355][ T1202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   60.448367][ T1202] Call Trace:
[   60.448373][ T1202]  <TASK>
[   60.448380][ T1202]  __dump_stack+0x21/0x30
[   60.448407][ T1202]  dump_stack_lvl+0x140/0x1c0
[   60.448429][ T1202]  ? __cfi_dump_stack_lvl+0x10/0x10
[   60.448452][ T1202]  ? check_stack_object+0x12b/0x150
[   60.448476][ T1202]  dump_stack+0x19/0x20
[   60.448496][ T1202]  should_fail_ex+0x3d7/0x530
[   60.448519][ T1202]  should_fail+0xf/0x20
[   60.448538][ T1202]  should_fail_usercopy+0x1e/0x30
[   60.448561][ T1202]  _copy_to_user+0x24/0xa0
[   60.448578][ T1202]  simple_read_from_buffer+0xed/0x160
[   60.448598][ T1202]  proc_fail_nth_read+0x1aa/0x220
[   60.448620][ T1202]  ? __cfi_proc_fail_nth_read+0x10/0x10
[   60.448640][ T1202]  ? bpf_lsm_file_permission+0xd/0x20
[   60.448657][ T1202]  ? __cfi_proc_fail_nth_read+0x10/0x10
[   60.448674][ T1202]  vfs_read+0x289/0xcb0
[   60.448694][ T1202]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   60.448715][ T1202]  ? __cfi_vfs_read+0x10/0x10
[   60.448736][ T1202]  ? __kasan_check_write+0x18/0x20
[   60.448757][ T1202]  ? mutex_lock+0x97/0x1d0
[   60.448773][ T1202]  ? __cfi_mutex_lock+0x10/0x10
[   60.448788][ T1202]  ? __fget_files+0x2c5/0x340
[   60.448806][ T1202]  ksys_read+0x145/0x260
[   60.448826][ T1202]  ? __cfi_ksys_read+0x10/0x10
[   60.448846][ T1202]  ? __kasan_check_read+0x15/0x20
[   60.448866][ T1202]  __x64_sys_read+0x7f/0x90
[   60.448886][ T1202]  x64_sys_call+0x2638/0x2ee0
[   60.448908][ T1202]  do_syscall_64+0x57/0xf0
[   60.448928][ T1202]  ? clear_bhb_loop+0x50/0xa0
[   60.448943][ T1202]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   60.448964][ T1202] RIP: 0033:0x7f079a95d04e
[   60.448979][ T1202] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   60.448993][ T1202] RSP: 002b:00007f079b80efe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   60.449011][ T1202] RAX: ffffffffffffffda RBX: 00007f079b80f6c0 RCX: 00007f079a95d04e
[   60.449024][ T1202] RDX: 000000000000000f RSI: 00007f079b80f0a0 RDI: 0000000000000006
[   60.449035][ T1202] RBP: 00007f079b80f090 R08: 0000000000000000 R09: 0000000000000000
[   60.449046][ T1202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.449056][ T1202] R13: 00007f079ac16038 R14: 00007f079ac15fa0 R15: 00007ffec308f998
[   60.449070][ T1202]  </TASK>
[   60.980264][  T375] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[   61.131406][  T375] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   61.143399][  T375] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   61.152555][  T375] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[   61.160577][  T375] usb 1-1: Product: syz
[   61.164750][  T375] usb 1-1: SerialNumber: syz
[   61.320250][  T484] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[   61.470240][  T484] usb 4-1: Using ep0 maxpacket: 16
[   61.476406][  T484] usb 4-1: config 1 has an invalid interface number: 105 but max is 0
[   61.484773][  T484] usb 4-1: config 1 has no interface number 0
[   61.490915][  T484] usb 4-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[   61.500839][  T484] usb 4-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[   61.510848][  T484] usb 4-1: config 1 interface 105 has no altsetting 0
[   61.518956][  T484] usb 4-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[   61.528150][  T484] usb 4-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[   61.536247][  T484] usb 4-1: Product: syz
[   61.540422][  T484] usb 4-1: Manufacturer: syz
[   61.545021][  T484] usb 4-1: SerialNumber: syz
[   61.550533][ T1210] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[   61.557815][ T1210] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[   61.766902][ T1210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.775974][ T1210] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.784780][ T1210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.793426][ T1210] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.822074][ T1217] FAULT_INJECTION: forcing a failure.
[   61.822074][ T1217] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.835190][ T1217] CPU: 1 UID: 0 PID: 1217 Comm: syz.1.302 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   61.835223][ T1217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   61.835234][ T1217] Call Trace:
[   61.835241][ T1217]  <TASK>
[   61.835249][ T1217]  __dump_stack+0x21/0x30
[   61.835275][ T1217]  dump_stack_lvl+0x140/0x1c0
[   61.835295][ T1217]  ? __cfi_dump_stack_lvl+0x10/0x10
[   61.835318][ T1217]  ? check_stack_object+0x12b/0x150
[   61.835343][ T1217]  dump_stack+0x19/0x20
[   61.835363][ T1217]  should_fail_ex+0x3d7/0x530
[   61.835380][ T1217]  should_fail+0xf/0x20
[   61.835390][ T1217]  should_fail_usercopy+0x1e/0x30
[   61.835403][ T1217]  _copy_to_user+0x24/0xa0
[   61.835412][ T1217]  simple_read_from_buffer+0xed/0x160
[   61.835423][ T1217]  proc_fail_nth_read+0x1aa/0x220
[   61.835441][ T1217]  ? __cfi_proc_fail_nth_read+0x10/0x10
[   61.835461][ T1217]  ? __cfi_dev_set_name+0x10/0x10
[   61.835484][ T1217]  ? bpf_lsm_file_permission+0xd/0x20
[   61.835504][ T1217]  ? __cfi_proc_fail_nth_read+0x10/0x10
[   61.835520][ T1217]  vfs_read+0x289/0xcb0
[   61.835533][ T1217]  ? input_allocate_device+0x25a/0x400
[   61.835544][ T1217]  ? __cfi_vfs_read+0x10/0x10
[   61.835556][ T1217]  ? __kasan_check_write+0x18/0x20
[   61.835569][ T1217]  ? mutex_lock+0x97/0x1d0
[   61.835583][ T1217]  ? __cfi_mutex_lock+0x10/0x10
[   61.835606][ T1217]  ? __fget_files+0x2c5/0x340
[   61.835628][ T1217]  ksys_read+0x145/0x260
[   61.835649][ T1217]  ? __cfi_ksys_read+0x10/0x10
[   61.835669][ T1217]  ? __kasan_check_read+0x15/0x20
[   61.835682][ T1217]  __x64_sys_read+0x7f/0x90
[   61.835694][ T1217]  x64_sys_call+0x2638/0x2ee0
[   61.835707][ T1217]  do_syscall_64+0x57/0xf0
[   61.835719][ T1217]  ? clear_bhb_loop+0x50/0xa0
[   61.835735][ T1217]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   61.835760][ T1217] RIP: 0033:0x7f932255d04e
[   61.835776][ T1217] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   61.835791][ T1217] RSP: 002b:00007f93233e3fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   61.835810][ T1217] RAX: ffffffffffffffda RBX: 00007f93233e46c0 RCX: 00007f932255d04e
[   61.835817][ T1217] RDX: 000000000000000f RSI: 00007f93233e40a0 RDI: 0000000000000004
[   61.835824][ T1217] RBP: 00007f93233e4090 R08: 0000000000000000 R09: 0000000000000000
[   61.835831][ T1217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.835837][ T1217] R13: 00007f9322816038 R14: 00007f9322815fa0 R15: 00007ffd6ee20ba8
[   61.835845][ T1217]  </TASK>
[   62.087975][ T1210] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[   62.095306][ T1210] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[   62.165987][ T1221] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   62.176879][  T375] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[   62.183407][  T375] cdc_ncm 1-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[   62.190931][  T375] cdc_ncm 1-1:1.0: setting rx_max = 2048
[   62.304286][ T1210] ªªªªªª: renamed from vlan0 (while UP)
[   62.378601][ T1205] netlink: 12 bytes leftover after parsing attributes in process `syz.0.297'.
[   62.388414][ T1205] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   62.397033][ T1205] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.408168][  T375] cdc_ncm 1-1:1.0: setting tx_max = 184
[   62.419543][  T375] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[   62.432735][   T36] kauditd_printk_skb: 1 callbacks suppressed
[   62.432752][   T36] audit: type=1400 audit(1775055629.910:276): avc:  denied  { create } for  pid=1232 comm="syz.1.308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   62.434665][  T375] usb 1-1: USB disconnect, device number 26
[   62.442018][   T36] audit: type=1400 audit(1775055629.910:277): avc:  denied  { setopt } for  pid=1232 comm="syz.1.308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   62.461935][  T375] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP)
[   62.466620][   T36] audit: type=1400 audit(1775055629.940:278): avc:  denied  { bind } for  pid=1232 comm="syz.1.308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   62.525962][  T484] aqc111 4-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[   62.537884][  T484] aqc111 4-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[   62.549056][  T484] aqc111 4-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[   62.577845][  T484] aqc111 4-1:1.105 eth1: register 'aqc111' at usb-dummy_hcd.3-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, 92:41:98:cf:b2:e3
[   62.593879][  T484] usb 4-1: USB disconnect, device number 25
[   62.604891][  T484] aqc111 4-1:1.105 eth1: unregister 'aqc111' usb-dummy_hcd.3-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[   62.676881][  T484] aqc111 4-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[   62.688267][  T484] aqc111 4-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[   62.697995][  T484] aqc111 4-1:1.105 eth1 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[   62.770263][  T487] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[   62.841565][ T1273] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   62.920425][  T487] usb 2-1: Using ep0 maxpacket: 32
[   62.926446][  T487] usb 2-1: no configurations
[   62.931299][  T487] usb 2-1: can't read configurations, error -22
[   63.060971][   T36] audit: type=1400 audit(1775055630.530:279): avc:  denied  { mounton } for  pid=1282 comm="syz.3.318" path="/85/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[   63.062708][  T487] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[   63.121914][ T1286] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   63.149760][ T1292] syz.0.322 uses obsolete (PF_INET,SOCK_PACKET)
[   63.177866][ T1297] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   63.240245][  T487] usb 2-1: Using ep0 maxpacket: 32
[   63.254220][  T487] usb 2-1: no configurations
[   63.255640][ T1303] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[   63.258863][ T1303] rust_binder: Read failure Err(EFAULT) in pid:201
[   63.259007][  T487] usb 2-1: can't read configurations, error -22
[   63.267247][ T1303] FAULT_INJECTION: forcing a failure.
[   63.267247][ T1303] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.274248][  T487] usb usb2-port1: attempt power cycle
[   63.279837][ T1303] CPU: 0 UID: 0 PID: 1303 Comm: syz.0.325 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   63.279866][ T1303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   63.279876][ T1303] Call Trace:
[   63.279882][ T1303]  <TASK>
[   63.279889][ T1303]  __dump_stack+0x21/0x30
[   63.279917][ T1303]  dump_stack_lvl+0x140/0x1c0
[   63.279938][ T1303]  ? __cfi_dump_stack_lvl+0x10/0x10
[   63.279962][ T1303]  dump_stack+0x19/0x20
[   63.279982][ T1303]  should_fail_ex+0x3d7/0x530
[   63.280004][ T1303]  should_fail+0xf/0x20
[   63.280023][ T1303]  should_fail_usercopy+0x1e/0x30
[   63.280045][ T1303]  _copy_from_user+0x20/0xa0
[   63.280068][ T1303]  _RNvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB5_6Thread5write+0x151a/0xaf80
[   63.280109][ T1303]  ? __cfi__RNvMs2_NtCskDQVOo9v79Q_16rust_binder_main6threadNtB5_6Thread5write+0x10/0x10
[   63.280174][ T1303]  ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x181/0x2d0
[   63.280213][ T1303]  ? __asan_memcpy+0x5a/0x80
[   63.280235][ T1303]  ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x1c8/0x2d0
[   63.280265][ T1303]  ? __cfi__RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x10/0x10
[   63.280294][ T1303]  ? _RNvMNtCs1ewLyjEZ7Le_6kernel5errorNtB2_5Error4name+0xf8/0x250
[   63.280323][ T1303]  ? __cfi__RNvMNtCs1ewLyjEZ7Le_6kernel5errorNtB2_5Error4name+0x10/0x10
[   63.280347][ T1303]  ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x1c8/0x2d0
[   63.280376][ T1303]  ? __cfi__RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x10/0x10
[   63.280406][ T1303]  ? _RNvMNtCs1ewLyjEZ7Le_6kernel5errorNtB2_5Error4name+0xf8/0x250
[   63.280436][ T1303]  ? _RNvMs9_NtCsb7ts3l0a5c3_4core3fmtNtB5_9Formatter11debug_tuple+0xab/0x170
[   63.280462][ T1303]  ? _RNvXs_NtCs1ewLyjEZ7Le_6kernel5errorNtB4_5ErrorNtNtCsb7ts3l0a5c3_4core3fmt5Debug3fmt+0xd1/0x210
[   63.280491][ T1303]  ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x1c8/0x2d0
[   63.280521][ T1303]  ? __cfi__RNvXs_NtCs1ewLyjEZ7Le_6kernel5errorNtB4_5ErrorNtNtCsb7ts3l0a5c3_4core3fmt5Debug3fmt+0x10/0x10
[   63.280549][ T1303]  ? _RNvXsiA_NtCse4H1uDrGHP9_8bindings12bindings_rawNtB6_11swap_headerNtNtCsb7ts3l0a5c3_4core7default7Default7default+0x30/0x30
[   63.280578][ T1303]  ? _RNvXs_NtCs1ewLyjEZ7Le_6kernel5errorNtB4_5ErrorNtNtCsb7ts3l0a5c3_4core3fmt5Debug3fmt+0xd1/0x210
[   63.280606][ T1303]  ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x181/0x2d0
[   63.280636][ T1303]  ? __asan_memcpy+0x5a/0x80
[   63.280658][ T1303]  ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x1c8/0x2d0
[   63.280687][ T1303]  ? __cfi__RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x10/0x10
[   63.280717][ T1303]  ? __asan_memcpy+0x5a/0x80
[   63.280739][ T1303]  ? _RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x1c8/0x2d0
[   63.280768][ T1303]  ? __cfi__RNvXsc_NtCs1ewLyjEZ7Le_6kernel3strNtB5_12RawFormatterNtNtCsb7ts3l0a5c3_4core3fmt5Write9write_str+0x10/0x10
[   63.280798][ T1303]  ? _RNvMs2_NtNtCsb7ts3l0a5c3_4core3fmt8buildersNtB5_10DebugTuple5field+0x224/0x5c0
[   63.280822][ T1303]  ? _RNvMs9_NtCsb7ts3l0a5c3_4core3fmtNtB5_9Formatter12pad_integral+0x309/0x810
[   63.280846][ T1303]  ? put_dec_trunc8+0x229/0x380
[   63.280870][ T1303]  ? put_dec+0xd7/0xf0
[   63.280890][ T1303]  ? __asan_memset+0x39/0x50
[   63.280911][ T1303]  ? move_right+0x8e/0xb0
[   63.280933][ T1303]  ? format_decode+0x1bb/0x1610
[   63.280955][ T1303]  ? vsnprintf+0x7b4/0x1ad0
[   63.280975][ T1303]  ? __asan_memcpy+0x5a/0x80
[   63.280996][ T1303]  ? vsnprintf+0x19ef/0x1ad0
[   63.281019][ T1303]  ? sprintf+0xe8/0x140
[   63.281040][ T1303]  ? __cfi_sprintf+0x10/0x10
[   63.281135][ T1303]  ? prb_first_seq+0x109/0x1d0
[   63.281159][ T1303]  ? desc_read+0x202/0x3e0
[   63.281176][ T1303]  ? info_print_prefix+0x269/0x4a0
[   63.281199][ T1303]  ? trace_raw_output_console+0xf0/0xf0
[   63.281228][ T1303]  ? _prb_read_valid+0xa71/0xa80
[   63.281245][ T1303]  ? record_print_text+0x290/0x450
[   63.281264][ T1303]  ? __asan_memcpy+0x5a/0x80
[   63.281287][ T1303]  ? record_print_text+0x319/0x450
[   63.281308][ T1303]  ? printk_get_next_message+0x9e0/0x9e0
[   63.281330][ T1303]  ? kvm_sched_clock_read+0x15/0x30
[   63.281350][ T1303]  ? sched_clock_noinstr+0xd/0x30
[   63.281369][ T1303]  ? __kasan_check_write+0x18/0x20
[   63.281390][ T1303]  ? _raw_spin_lock+0x92/0x120
[   63.281413][ T1303]  ? __cfi__raw_spin_lock+0x10/0x10
[   63.281435][ T1303]  ? plist_del+0x3e3/0x400
[   63.281457][ T1303]  ? __cfi___switch_to+0x10/0x10
[   63.281480][ T1303]  ? _raw_spin_unlock+0x45/0x60
[   63.281502][ T1303]  ? __asan_set_shadow_00+0x12/0x20
[   63.281521][ T1303]  ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process18get_current_thread+0x102f/0x1d80
[   63.281549][ T1303]  ? __kasan_check_write+0x18/0x20
[   63.281571][ T1303]  ? finish_task_switch+0x1d9/0x760
[   63.281590][ T1303]  ? __switch_to_asm+0x3d/0x70
[   63.281613][ T1303]  ? __schedule+0x13a1/0x1fa0
[   63.281629][ T1303]  ? __cfi__RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process18get_current_thread+0x10/0x10
[   63.281655][ T1303]  ? console_flush_all+0xa12/0xac0
[   63.281677][ T1303]  ? __sched_text_start+0x10/0x10
[   63.281694][ T1303]  ? __console_rewind_all+0x170/0x170
[   63.281716][ T1303]  ? __kasan_check_read+0x15/0x20
[   63.281738][ T1303]  ? is_printk_cpu_sync_owner+0x39/0x50
[   63.281759][ T1303]  ? is_printk_legacy_deferred+0x5c/0x70
[   63.281784][ T1303]  ? preempt_schedule_common+0x2d/0x60
[   63.281801][ T1303]  ? preempt_schedule+0xc5/0xe0
[   63.281817][ T1303]  ? __cfi_preempt_schedule+0x10/0x10
[   63.281833][ T1303]  ? __printk_safe_exit+0xd/0x20
[   63.281856][ T1303]  ? console_trylock+0x17e/0x220
[   63.281875][ T1303]  ? __cfi_console_trylock+0x10/0x10
[   63.281894][ T1303]  ? preempt_schedule_thunk+0x1a/0x40
[   63.281912][ T1303]  ? vprintk_emit+0x584/0x650
[   63.281931][ T1303]  ? vprintk_emit+0x3e3/0x650
[   63.281950][ T1303]  ? __cfi_vprintk_emit+0x10/0x10
[   63.281968][ T1303]  ? _RNvMs4_NtCskDQVOo9v79Q_16rust_binder_main7processNtB5_7Process14set_as_manager+0xd14/0x1030
[   63.282040][ T1303]  ? vprintk_default+0x2a/0x40
[   63.282061][ T1303]  ? vprintk+0x93/0xa0
[   63.282083][ T1303]  ? _printk+0xde/0x140
[   63.282101][ T1303]  ? asm_exc_page_fault+0x2b/0x30
[   63.282126][ T1303]  ? __kasan_check_write+0x18/0x20
[   63.282150][ T1303]  ? _raw_spin_lock+0x92/0x120
[   63.282183][ T1303]  ? _RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x113c/0x5c20
[   63.282206][ T1303]  ? __asan_memcpy+0x5a/0x80
[   63.282229][ T1303]  _RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x1192/0x5c20
[   63.282253][ T1303]  ? _raw_spin_unlock+0x45/0x60
[   63.282276][ T1303]  ? call_rcu_nocb+0x6d7/0xc80
[   63.282297][ T1303]  ? __cfi__RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x10/0x10
[   63.282319][ T1303]  ? swake_up_one_online_ipi+0x30/0x30
[   63.282341][ T1303]  ? __cfi_mt_free_rcu+0x10/0x10
[   63.282367][ T1303]  ? is_bpf_text_address+0x17b/0x1a0
[   63.282391][ T1303]  ? kernel_text_address+0xa9/0xe0
[   63.282413][ T1303]  ? __kernel_text_address+0x11/0x40
[   63.282434][ T1303]  ? unwind_get_return_address+0x51/0x90
[   63.282458][ T1303]  ? is_bpf_text_address+0x17b/0x1a0
[   63.282479][ T1303]  ? kernel_text_address+0xa9/0xe0
[   63.282501][ T1303]  ? __kernel_text_address+0x11/0x40
[   63.282521][ T1303]  ? unwind_get_return_address+0x51/0x90
[   63.282541][ T1303]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[   63.282560][ T1303]  ? arch_stack_walk+0x10a/0x170
[   63.282588][ T1303]  ? is_bpf_text_address+0x17b/0x1a0
[   63.282610][ T1303]  ? kernel_text_address+0xa9/0xe0
[   63.282631][ T1303]  ? __kernel_text_address+0x11/0x40
[   63.282650][ T1303]  ? unwind_get_return_address+0x51/0x90
[   63.282668][ T1303]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[   63.282689][ T1303]  ? stack_depot_save_flags+0x38/0x800
[   63.282713][ T1303]  ? stack_trace_save+0xaa/0x100
[   63.282730][ T1303]  ? kasan_save_track+0x4f/0x80
[   63.282755][ T1303]  ? kasan_save_track+0x3e/0x80
[   63.282777][ T1303]  ? kasan_save_alloc_info+0x40/0x50
[   63.282797][ T1303]  ? __kasan_slab_alloc+0x73/0x90
[   63.282813][ T1303]  ? kmem_cache_alloc_noprof+0x1bf/0x410
[   63.282834][ T1303]  ? security_inode_alloc+0x51/0x230
[   63.282859][ T1303]  ? inode_init_always_gfp+0x756/0x9e0
[   63.282883][ T1303]  ? alloc_inode+0xc5/0x270
[   63.282900][ T1303]  ? new_inode+0x25/0x1e0
[   63.282915][ T1303]  ? proc_pid_make_inode+0x25/0x140
[   63.282940][ T1303]  ? proc_pident_instantiate+0x6d/0x2c0
[   63.282956][ T1303]  ? proc_pident_lookup+0x1c7/0x270
[   63.282971][ T1303]  ? proc_tid_base_lookup+0x2f/0x40
[   63.282991][ T1303]  ? do_filp_open+0x1f5/0x440
[   63.283019][ T1303]  ? avc_has_perm_noaudit+0x26c/0x360
[   63.283044][ T1303]  ? __asan_memcpy+0x5a/0x80
[   63.283065][ T1303]  ? avc_has_perm_noaudit+0x28a/0x360
[   63.283089][ T1303]  ? avc_has_perm+0x155/0x240
[   63.283112][ T1303]  ? __cfi_avc_has_perm+0x10/0x10
[   63.283134][ T1303]  ? kasan_save_alloc_info+0x40/0x50
[   63.283156][ T1303]  ? selinux_file_open+0x46c/0x630
[   63.283177][ T1303]  ? __cfi_selinux_file_open+0x10/0x10
[   63.283201][ T1303]  ? avc_has_extended_perms+0x80b/0xe70
[   63.283223][ T1303]  ? __asan_memcpy+0x5a/0x80
[   63.283245][ T1303]  ? avc_has_extended_perms+0x969/0xe70
[   63.283269][ T1303]  ? __asan_set_shadow_00+0x12/0x20
[   63.283288][ T1303]  ? do_vfs_ioctl+0x182d/0x2010
[   63.283303][ T1303]  ? arch_stack_walk+0x10a/0x170
[   63.283327][ T1303]  ? __ia32_compat_sys_ioctl+0x920/0x920
[   63.283346][ T1303]  ? _parse_integer+0x2e/0x40
[   63.283367][ T1303]  ? ioctl_has_perm+0x39a/0x500
[   63.283389][ T1303]  ? has_cap_mac_admin+0xd0/0xd0
[   63.283409][ T1303]  ? proc_fail_nth_write+0x184/0x220
[   63.283429][ T1303]  ? __cfi_proc_fail_nth_write+0x10/0x10
[   63.283449][ T1303]  ? selinux_file_ioctl+0x732/0x1480
[   63.283470][ T1303]  ? vfs_write+0x9a4/0xf90
[   63.283490][ T1303]  ? __cfi_selinux_file_ioctl+0x10/0x10
[   63.283512][ T1303]  ? __cfi_vfs_write+0x10/0x10
[   63.283532][ T1303]  ? __kasan_check_write+0x18/0x20
[   63.283553][ T1303]  ? mutex_unlock+0x90/0x240
[   63.283570][ T1303]  ? __cfi_mutex_unlock+0x10/0x10
[   63.283587][ T1303]  ? __fget_files+0x2c5/0x340
[   63.283603][ T1303]  ? __fget_files+0x2c5/0x340
[   63.283618][ T1303]  ? bpf_lsm_file_ioctl+0xd/0x20
[   63.283637][ T1303]  ? security_file_ioctl+0x3e/0x110
[   63.283657][ T1303]  ? __cfi__RNvCskDQVOo9v79Q_16rust_binder_main17rust_binder_ioctl+0x10/0x10
[   63.283677][ T1303]  __se_sys_ioctl+0x132/0x1b0
[   63.283694][ T1303]  __x64_sys_ioctl+0x7f/0xa0
[   63.283710][ T1303]  x64_sys_call+0x1878/0x2ee0
[   63.283733][ T1303]  do_syscall_64+0x57/0xf0
[   63.283755][ T1303]  ? clear_bhb_loop+0x50/0xa0
[   63.283770][ T1303]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   63.283794][ T1303] RIP: 0033:0x7fcdf159c819
[   63.283811][ T1303] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   63.283827][ T1303] RSP: 002b:00007fcdf2416028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   63.283848][ T1303] RAX: ffffffffffffffda RBX: 00007fcdf1815fa0 RCX: 00007fcdf159c819
[   63.283862][ T1303] RDX: 00002000000001c0 RSI: 00000000c0306201 RDI: 0000000000000003
[   63.283874][ T1303] RBP: 00007fcdf2416090 R08: 0000000000000000 R09: 0000000000000000
[   63.283886][ T1303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.283897][ T1303] R13: 00007fcdf1816038 R14: 00007fcdf1815fa0 R15: 00007ffe3bf3d5c8
[   63.283913][ T1303]  </TASK>
[   63.283988][ T1303] rust_binder: Write failure EFAULT in pid:201
[   63.448245][ T1306] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   63.520261][  T484] usb 3-1: new full-speed USB device number 20 using dummy_hcd
[   63.555404][ T1311] ------------[ cut here ]------------
[   63.557633][   T36] audit: type=1400 audit(1775055631.030:280): avc:  denied  { load_policy } for  pid=1308 comm="syz.0.327" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   63.568521][ T1311] WARNING: CPU: 1 PID: 1311 at mm/page_alloc.c:5268 __alloc_pages_noprof+0x109/0x7e0
[   63.761391][  T484] usb 3-1: config 0 has an invalid interface number: 41 but max is 0
[   63.763359][ T1311] Modules linked in:
[   63.763386][ T1311] CPU: 1 UID: 0 PID: 1311 Comm: syz.0.327 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
[   63.774745][  T484] usb 3-1: config 0 has no interface number 0
[   63.779509][ T1311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   63.785073][  T484] usb 3-1: config 0 interface 41 has no altsetting 0
[   63.789491][ T1311] RIP: 0010:__alloc_pages_noprof+0x109/0x7e0
[   63.795888][  T484] usb 3-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[   63.805447][ T1311] Code: 00 0f 1f 44 00 00 83 fb 0b 72 28 b8 00 20 00 00 23 44 24 40 75 1d 80 3d da 88 0b 06 00 0f 85 c2 00 00 00 c6 05 cd 88 0b 06 01 <0f> 0b 31 c0 e9 b4 00 00 00 83 fb 0a 0f 87 a9 00 00 00 44 8b 64 24
[   63.810874][  T484] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   63.815586][ T1311] RSP: 0018:ffffc90010ee7520 EFLAGS: 00010246
[   63.821411][  T484] usb 3-1: Product: syz
[   63.826091][ T1311] 
[   63.826101][ T1311] RAX: 0000000000000000 RBX: 0000000000000016 RCX: 0000000000000000
[   63.832063][  T484] usb 3-1: Manufacturer: syz
[   63.837293][ T1311] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc90010ee75d8
[   63.843083][  T484] usb 3-1: SerialNumber: syz
[   63.847606][ T1311] RBP: ffffc90010ee7660 R08: ffffc90010ee75d7 R09: 0000000000000000
[   63.854285][  T484] usb 3-1: config 0 descriptor??
[   63.857963][ T1311] R10: ffffc90010ee75c0 R11: fffff520021dcebb R12: ffffc90010ee7560
[   64.467596][  T484] CoreChips 3-1:0.41: probe with driver CoreChips failed with error -32
[   64.475373][ T1311] R13: dffffc0000000000 R14: 1ffff920021dcea8 R15: 0000000000000000
[   64.475394][ T1311] FS:  00007fcdf23d46c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   64.640136][ T1311] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   64.646730][ T1311] CR2: 00007fcdf1472140 CR3: 00000001131ba000 CR4: 00000000003526b0
[   64.654728][ T1311] Call Trace:
[   64.658087][ T1311]  <TASK>
[   64.661032][ T1311]  ? vfs_write+0x3c5/0xf90
[   64.665450][ T1311]  ? ksys_write+0x145/0x260
[   64.669942][ T1311]  ? x64_sys_call+0x271c/0x2ee0
[   64.674855][ T1311]  ? __cfi___alloc_pages_noprof+0x10/0x10
[   64.680603][ T1311]  ? hashtab_init+0xdb/0x1f0
[   64.685194][ T1311]  ___kmalloc_large_node+0x81/0x210
[   64.690412][ T1311]  ? hashtab_init+0xdb/0x1f0
[   64.695093][ T1311]  __kmalloc_large_node_noprof+0x1e/0xd0
[   64.700762][ T1311]  ? hashtab_init+0xdb/0x1f0
[   64.705358][ T1311]  __kmalloc_noprof+0x326/0x500
[   64.710253][ T1311]  ? kasan_save_alloc_info+0x40/0x50
[   64.715554][ T1311]  hashtab_init+0xdb/0x1f0
[   64.719956][ T1311]  ? class_read+0x17f/0x8c0
[   64.724485][ T1311]  symtab_init+0x44/0x70
[   64.728726][ T1311]  class_read+0x20e/0x8c0
[   64.733078][ T1311]  ? __cfi_class_read+0x10/0x10
[   64.737988][ T1311]  ? hashtab_init+0x97/0x1f0
[   64.742589][ T1311]  policydb_read+0xabb/0x28b0
[   64.747280][ T1311]  ? __kasan_kmalloc+0x96/0xb0
[   64.752087][ T1311]  ? __cfi_policydb_read+0x10/0x10
[   64.757200][ T1311]  ? security_load_policy+0x130/0x12d0
[   64.762672][ T1311]  ? _raw_spin_lock+0x92/0x120
[   64.767468][ T1311]  security_load_policy+0x16a/0x12d0
[   64.772781][ T1311]  ? _raw_spin_unlock+0x45/0x60
[   64.777650][ T1311]  ? __check_object_size+0x527/0x830
[   64.782985][ T1311]  ? __cfi_security_load_policy+0x10/0x10
[   64.788707][ T1311]  ? __kasan_check_write+0x18/0x20
[   64.793832][ T1311]  sel_write_load+0x2a7/0x5f0
[   64.798519][ T1311]  ? __cfi_futex_wake+0x10/0x10
[   64.803414][ T1311]  ? __cfi_sel_write_load+0x10/0x10
[   64.808644][ T1311]  ? bpf_lsm_file_permission+0xd/0x20
[   64.814043][ T1311]  ? __cfi_sel_write_load+0x10/0x10
[   64.819243][ T1311]  vfs_write+0x3c5/0xf90
[   64.823504][ T1311]  ? __cfi_vfs_write+0x10/0x10
[   64.828270][ T1311]  ? __kasan_check_write+0x18/0x20
[   64.833410][ T1311]  ? mutex_lock+0x97/0x1d0
[   64.837835][ T1311]  ? __cfi_mutex_lock+0x10/0x10
[   64.842720][ T1311]  ? __fget_files+0x2c5/0x340
[   64.847397][ T1311]  ksys_write+0x145/0x260
[   64.851776][ T1311]  ? xfd_validate_state+0x68/0x140
[   64.856897][ T1311]  ? __cfi_ksys_write+0x10/0x10
[   64.861768][ T1311]  ? __kasan_check_write+0x18/0x20
[   64.866893][ T1311]  ? fpregs_restore_userregs+0x11c/0x260
[   64.872604][ T1311]  __x64_sys_write+0x7f/0x90
[   64.877200][ T1311]  x64_sys_call+0x271c/0x2ee0
[   64.881899][ T1311]  do_syscall_64+0x57/0xf0
[   64.886330][ T1311]  ? clear_bhb_loop+0x50/0xa0
[   64.891029][ T1311]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   64.896931][ T1311] RIP: 0033:0x7fcdf159c819
[   64.901381][ T1311] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   64.921098][ T1311] RSP: 002b:00007fcdf23d4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   64.929539][ T1311] RAX: ffffffffffffffda RBX: 00007fcdf1816180 RCX: 00007fcdf159c819
[   64.937539][ T1311] RDX: 0000000000000065 RSI: 0000200000000280 RDI: 0000000000000009
[   64.945530][ T1311] RBP: 00007fcdf1632c91 R08: 0000000000000000 R09: 0000000000000000
[   64.953559][ T1311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   64.961566][ T1311] R13: 00007fcdf1816218 R14: 00007fcdf1816180 R15: 00007ffe3bf3d5c8
[   64.969542][ T1311]  </TASK>
[   64.972573][ T1311] ---[ end trace 0000000000000000 ]---
[   64.978159][ T1311] SELinux: failed to load policy
[   65.040269][  T487] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[   65.060675][  T487] usb 2-1: Using ep0 maxpacket: 32
[   65.066154][  T487] usb 2-1: no configurations
[   65.070818][  T487] usb 2-1: can't read configurations, error -22
[   65.200329][  T487] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[   65.220626][  T487] usb 2-1: Using ep0 maxpacket: 32
[   65.226236][  T487] usb 2-1: no configurations
[   65.231052][  T487] usb 2-1: can't read configurations, error -22
[   65.237391][  T487] usb usb2-port1: unable to enumerate USB device
[   66.119217][  T375] usb 3-1: USB disconnect, device number 20