last executing test programs:

11.640265773s ago: executing program 0 (id=435):
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYRES8, @ANYRES32, @ANYBLOB="26524f1b7af046eb1c53d0255973ea1906000000e5a1e90000000000000000000060d91e05f2"], 0x24}}, 0x0)
add_key$fscrypt_v1(0x0, 0x0, &(0x7f0000000180)={0x0, "a26b0795360ec2fc9d845dd21fdc9add5e0fed1d7eca5f3f667e7809f41c6cc63abb916fbb9af47e889303cc48598ed93a17b94e61dedcbeba9f6d6ba6fbf6e7", 0x28}, 0x48, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(serpent)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)='>n', 0x1f)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000180)=@keyring={'key_or_keyring:', 0x0, 0x2})
syz_usb_connect(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1201100153a48e08f00a71729188010203010902240001060000000904000002ffffff0009050b0000000000000905ec"], 0x0)

10.340746975s ago: executing program 0 (id=439):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x2000, 0x0)
ioctl$COMEDI_INSNLIST(r0, 0x8010640b, &(0x7f00000000c0)={0x0, 0x0})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
bind$inet6(r1, &(0x7f0000000280)={0xa, 0x4e22, 0xd, @loopback, 0x6}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000080)=0x40, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
sendmmsg$inet6(r1, &(0x7f00000051c0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="11", 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x42, &(0x7f0000000100)=0x80000001, 0x4)
r3 = dup(r1)
sendmmsg$inet(r3, &(0x7f000000d4c0)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000380)="9e3b074a8988e293861a347e432f5979dc366a208834c6d2a000bc8c67a48d77135afb45fe124800911b188a404dbb73455a75862204ea9a0fedea6988408c58e85ba4d1a4e491a6de5c60edba18f1b7ea7a08a5561df73ef826a79dfde7e6cc23a80962e8d56d361457f106add67ca5afe80d98", 0x74}, {&(0x7f00000005c0)}], 0x2}}], 0x1, 0x95)
syz_usb_connect(0x2, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100002d3d6a08c6050592ac29000000010902240003"], 0x0)
recvmmsg(r2, &(0x7f0000006240)=[{{&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f00000000c0)=[{&(0x7f00000004c0)=""/196, 0xc4}, {&(0x7f0000006440)=""/101, 0x65}, {&(0x7f00000005c0)=""/4096, 0x1000}], 0x3, &(0x7f0000000400)=""/120, 0x78}, 0x3}, {{&(0x7f00000015c0)=@ax25={{0x3, @netrom}, [@remote, @remote, @null, @default, @bcast, @null, @default]}, 0x80, &(0x7f0000000180)=[{&(0x7f0000001640)=""/152, 0x98}, {&(0x7f0000001700)=""/96, 0x60}, {&(0x7f0000001780)=""/166, 0xa6}], 0x3}, 0x7}, {{&(0x7f0000001840)=@x25={0x9, @remote}, 0x80, &(0x7f0000002b40)=[{&(0x7f00000002c0)=""/92, 0x5c}, {&(0x7f0000001940)=""/112, 0x70}, {&(0x7f00000019c0)=""/180, 0xb4}, {&(0x7f0000001a80)=""/4096, 0x1000}, {&(0x7f0000002a80)=""/130, 0x82}], 0x5, &(0x7f0000002bc0)=""/133, 0x85}, 0x1}, {{&(0x7f0000002c80)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f0000004fc0)=[{&(0x7f0000002d00)=""/141, 0x8d}, {&(0x7f0000002dc0)=""/4096, 0x1000}, {&(0x7f0000003dc0)=""/183, 0xb7}, {&(0x7f0000003e80)=""/146, 0x92}, {&(0x7f0000003f40)=""/76, 0x4c}, {&(0x7f0000003fc0)=""/4096, 0x1000}], 0x6, &(0x7f0000000340)=""/56, 0x38}, 0x87e}, {{&(0x7f0000005040)=@tipc, 0x80, &(0x7f0000005380)=[{&(0x7f00000050c0)=""/82, 0x52}, {&(0x7f0000005200)=""/214, 0xd6}, {&(0x7f0000005140)=""/24, 0x18}, {&(0x7f0000005180)=""/64, 0x40}, {&(0x7f0000005300)=""/120, 0x78}], 0x5, &(0x7f0000005400)=""/103, 0x67}, 0x3}, {{&(0x7f0000005480)=@ethernet={0x0, @multicast}, 0x80, &(0x7f0000005940)=[{&(0x7f0000005500)=""/142, 0x8e}, {&(0x7f00000055c0)=""/129, 0x81}, {&(0x7f0000005680)=""/46, 0x2e}, {&(0x7f00000056c0)=""/180, 0xb4}, {&(0x7f0000005780)=""/134, 0x86}, {&(0x7f0000005840)=""/41, 0x29}, {&(0x7f0000005880)=""/2, 0x2}, {&(0x7f00000058c0)=""/119, 0x77}], 0x8, &(0x7f00000059c0)=""/24, 0x18}, 0x8}, {{&(0x7f0000005a00)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f00000060c0)=[{&(0x7f0000005a80)=""/194, 0xc2}, {&(0x7f0000005b80)=""/167, 0xa7}, {&(0x7f0000005c40)=""/154, 0x9a}, {&(0x7f0000005d00)=""/238, 0xee}, {&(0x7f0000005e00)=""/35, 0x23}, {&(0x7f0000005e40)=""/224, 0xe0}, {&(0x7f0000005f40)=""/92, 0x5c}, {&(0x7f0000005fc0)=""/211, 0xd3}], 0x8, &(0x7f0000006140)=""/193, 0xc1}, 0x5}], 0x7, 0x2000, &(0x7f0000006400)={0x0, 0x3938700})
read$FUSE(r3, &(0x7f00000075c0)={0x2020}, 0x2020)

7.314934595s ago: executing program 0 (id=455):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x3c, 0x3d, 0x9, 0x0, 0x800, {0x1}, [@typed={0x4}, @nested={0x1c, 0x1, 0x0, 0x1, [@nested={0x18, 0x10, 0x0, 0x1, [@typed={0x14, 0xc, 0x0, 0x0, @str='veth1_virt_wifi\x00'}]}]}, @typed={0x8, 0x2, 0x0, 0x0, @pid=0xffffffffffffffff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4080}, 0x0)

7.204951552s ago: executing program 0 (id=456):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x7)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text32={0x20, &(0x7f0000000040)="0f380320b805000000b9003000000f01d9660f38decc36f2661ce3b93b030000b8f4000000e0000f30b800200000ba000000000f30c4e3617de509c4e35d5d92fcffffffbe66baa000b80c0000000f01caf30f09", 0x54}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0xcf, 0x8b, 0xed, 0x20, 0xfd9, 0x25, 0x2940, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xca, 0xfb, 0x1a}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r3, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000000)=ANY=[@ANYBLOB="2072dc"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r3, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r3, 0x0, 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r3, &(0x7f00000001c0)={0x14, 0x0, 0x0}, 0x0)
syz_usb_control_io$sierra_net(r3, 0x0, 0x0)

4.324912992s ago: executing program 3 (id=469):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x801}], 0x1, 0x40800)
recvmsg$qrtr(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000000700)=""/195, 0xc3}], 0x1, 0x0, 0x0, 0x10000}, 0x38, 0x10020)

4.112293988s ago: executing program 3 (id=471):
r0 = syz_usb_connect$lan78xx(0x5, 0x3f, &(0x7f0000000dc0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x8031, 0xffffffffffffffff, 0xf6d0d000)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xf0ffffff)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000002, 0x28011, r1, 0xf5ce9000)
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000001140)={0x34, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000001540)={0x34, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
r2 = fsopen(&(0x7f0000000140)='cgroup2\x00', 0x0)
r3 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000001, 0x12, r3, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r2, 0x0, 0x0)
statx(r4, 0x0, 0x1000, 0x200, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000000)={0x34, &(0x7f0000000600)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000003f00)={0x84, &(0x7f0000003b00)={0x40, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000540)={0x34, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000a00)={0x84, &(0x7f0000000ac0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

4.100135954s ago: executing program 0 (id=473):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001640)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000060a0b04000000000000000002000000040005800900020073795a320000000018000480140001800c0001007061796c6f6164000400028618ae7954071963000000000000000000f500000a"], 0x64}}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e24, @empty}}, 0x5, 0x4, 0x203, 0x6, 0x11, 0x9, 0x24}, 0x9c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = fsopen(&(0x7f0000000540)='proc\x00', 0x1)
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="600200007d020000051f01030000000005800000000008000000000000000000404100000000dfe5000005000000000000001b00046e6f6465767b65766f6f7e0545c60005080037d93a8b920000003300704a86cec602007dfa673effeb09b5351f5bde054000000000187b8200b500002b595fcb1403f196a51cd5157adc8103b494e13700cfc36d07c500f04cd85f2a70f4e9930e5e989cd5ef4d51f60da7582c4a05c8f828f68dc1774d5de2e820862381f6686dd1bb8fd70000006700f8f669fb716dcf315ecaf385409ac65b9408678c3c3b7ba4a400b4b077dc74000000060000004007ec21cabff20f9c0089f9060000000000000000000000125b93a5d4db9ab2e016486581ea5b9cf9c4a28646bc7440971159a71bc076b06c4ac49ec76d5e86ea2c016f6465762f6eb17b2300f9daa5ee23266ecf85fea65e42d979a3fde5f475daf03b1372d97badc7095afd76fe4f0441f7f7741eac030000ecff0000dba0c2f7f09ff53c7e4d1ad66e2d070198019f30118447aa9a74f51685f506ae894806878267d5a1298d792c4a37f2e1cbbd2482929a0d8972b5cf732ea5b0d723859dba3f93aed3b42ee7cac07de09d1d68a60333a882467d2b31aacdf9188549b1125d6c4c9b18c2fb56c57d7dc626e43a0796a1eb48274669ab13f8b11d146059f310e2634d593fec65d529f382066664df244e4c90570a70049f399f061f75b7797ce1fe11ea919609d51a41dd3de304bd7c7ed0a456f0ae12516105c9ce887df5a6e0b6a77d596cf88ba6e5c6397c7d5021d7989528fd1739e1c2d87fff00"/596, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x260)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000004c0)='./binderfs2/custom1\x00', 0x2, 0x0)
r5 = fsmount(r3, 0x0, 0x1)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x6000, {}, [@IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'bitmap:port\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e23}, @IPSET_ATTR_PORT={0x6}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c000000090605000000000000000000060000000900020073797a300000000014000780060004404e20000006000540362100000500010007"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x804)
fchdir(r5)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r7, &(0x7f0000000500)={0x2, 0x4e21, @empty}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f0000000200)='htcp', 0x4)
sendto$inet(r7, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r7, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r5)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_TDLS_MGMT(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x28, r8, 0x200, 0xcb33bd4, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0xf9}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x2000014)
r10 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000480), 0x100, 0x0)
sendto$inet6(r10, &(0x7f00000005c0)="f0b8c83169e7aad32e2db7f15d69f7365f9e770c00b9f467038a3d2afdd4cb7f1d93c069d598c1049a11ba6aff99b6dc14556934108e57cebe2f78ff701d62a238bcf93cee09986358a54c5f771a4f4bbb9a6f08847774c90bce2ae024d1bf6c841628340d741477c4dc804825bf9b7e15abbccac73a0726626b1e4d9cd6", 0x7e, 0x50, 0x0, 0x0)
r11 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
fsetxattr$security_evm(r11, &(0x7f0000000080), 0x0, 0x0, 0x3)
sendmsg$NFT_MSG_GETGEN(r2, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x10, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x87}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40805}, 0x4000000)

3.487459928s ago: executing program 1 (id=477):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000040)={[0x4, 0x2, 0x80, 0x5, 0x20000004, 0x7f, 0x4233, 0x0, 0x80081, 0x9c1, 0x8001, 0x1005, 0x3, 0x4db6, 0x0, 0x10000000], 0x2000, 0xa0302})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f00000002c0)=@arm64={0x2, 0x13, 0x3, '\x00', 0x80ef})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.272155147s ago: executing program 1 (id=479):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
keyctl$join(0x1, &(0x7f0000000100)={'syz', 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0xc90c0000)

3.024668936s ago: executing program 0 (id=481):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_int(r0, 0x0, 0xc, &(0x7f00000002c0)=0x4, 0x4)
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(des3_ede))\x00'}, 0x58)
setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000000)=0x1ff, 0x4)
getsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000000300)=""/14, &(0x7f0000000280)=0xe)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001d00)=ANY=[@ANYRESOCT=r0, @ANYBLOB="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", @ANYBLOB="000407007000fd6a5825032a4877"], 0x14}, 0x1, 0x0, 0x0, 0x20042010}, 0x4001)
writev(0xffffffffffffffff, &(0x7f00000005c0)=[{&(0x7f00000001c0)="84", 0x1}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000540)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf", @ANYRES8], 0x0)
syz_usb_control_io$cdc_ecm(r3, 0x0, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f00000000c0)={{0x2, 0x4e22, @rand_addr=0x64010100}, {0x0, @remote}, 0x8, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 'lo\x00'})
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f00000002c0)={{0x2, 0x4e21, @multicast1}, {0x306, @local}, 0x8, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x30}}, 'lo\x00'})
r6 = socket$netlink(0x10, 0x3, 0x0)
writev(r6, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x3, 0x0, 0x80a4000, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2a, 0xe, 0x7, 0x6, 0xfb, 0x2, 0xf, 0x4, 0x3, 0x0, 0x3, 0x5a, 0x9e, 0xa, 0x6, 0x7f}})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x100000000001000, 0x11f5, 0x2, 0x5, 0x14, 0xf1, 0x0, 0x7fffffffffffe, 0x5, 0x4005, 0x6, 0x0, 0x400000047, 0x1, 0xbdb], 0x1, 0x1c4213})
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10)
r8 = gettid()
pause()
r9 = socket$netlink(0x10, 0x3, 0x4)
connect$netlink(r9, &(0x7f0000001cc0)=@unspec, 0xc)
r10 = syz_open_procfs(r8, &(0x7f0000000180)='wchan\x00')
pread64(r10, &(0x7f000001a240)=""/102400, 0x19000, 0x41e)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000bc0)=[{{&(0x7f0000000180)={0x2, 0x4e27, @empty}, 0x10, 0x0}}], 0x1, 0x20004840)

3.024476649s ago: executing program 1 (id=482):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002600)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x8804)
recvmmsg(r0, 0x0, 0x0, 0x40010060, 0x0)

2.927132624s ago: executing program 1 (id=483):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000000040)={{0xb, 0x0, 0x0, 0x0, 'syz0\x00'}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x400c)
ioctl$KVM_CAP_EXIT_HYPERCALL(r2, 0x4068aea3, &(0x7f0000000000)={0x79})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000100)=0x4)
ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000000c0)=0x9)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2.842214634s ago: executing program 1 (id=484):
madvise(&(0x7f0000224000/0x3000)=nil, 0x3000, 0x64)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fe07124081173809499b010203010902240001000000000904"], 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x5)
ioctl$TCSETA(r0, 0x8924, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "4feda26323b172e0"})

1.464362106s ago: executing program 2 (id=487):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000040)={[0x4, 0x2, 0x80, 0x5, 0x20000004, 0x7f, 0x4233, 0x0, 0x80081, 0x9c1, 0x8001, 0x1005, 0x3, 0x4db6, 0x0, 0x10000000], 0x2000, 0xa0302})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f00000002c0)=@arm64={0x2, 0x13, 0x3, '\x00', 0x80ef})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.316524894s ago: executing program 2 (id=488):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000080)={0x0, 0xffffffe9, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, r1, 0x1, 0x0, 0x25dfdbfc, {0x24}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8090}, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)={0x18, 0x2e, 0x1, 0x0, 0x0, "", [@typed={0x8, 0xc6, 0x0, 0x0, @ipv4=@local}]}, 0x18}], 0x1}, 0x0)

1.172870321s ago: executing program 2 (id=489):
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x1, 0x3, 0x40, 0x5, 0xffffffffffffffff})
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x19)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'tunl0\x00', <r2=>0x0})
close_range(r0, r0, 0x2)
socket$netlink(0x10, 0x3, 0x5)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000040)=0xf3f, 0xa)
sendto$packet(r0, &(0x7f0000000480)="3f031c000300140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b6800000ce4", 0x26, 0x24000094, &(0x7f0000000140)={0xc9, 0x0, r2, 0x1, 0x1, 0x6, @local}, 0x14)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x11)
write$binfmt_aout(r3, 0x0, 0xff2e)
r4 = socket(0x10, 0x803, 0x0)
sendto(r4, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x8804, 0x0, 0x0)
recvmmsg(r4, &(0x7f0000007300)=[{{0x0, 0x0, &(0x7f00000030c0)=[{&(0x7f0000000c40)=""/189, 0xbd}, {&(0x7f0000000d00)=""/32, 0x20}, {&(0x7f0000000d80)=""/252, 0xfc}, {&(0x7f0000001f80)=""/4101, 0x1005}, {&(0x7f00000005c0)=""/127, 0x7f}, {&(0x7f0000002fc0)=""/194, 0xc2}, {&(0x7f0000000f00)=""/85, 0x55}], 0x7}, 0x513e}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff95}, 0xaa}, {{0x0, 0x0, 0x0}, 0x7fffffff}, {{0x0, 0x0, 0x0}, 0x5}], 0x4, 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)

1.136853412s ago: executing program 1 (id=490):
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000060212000100001000090430020017b51b00"], 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8)
write$tun(0xffffffffffffffff, 0x0, 0xfdef)

942.972222ms ago: executing program 2 (id=491):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002600)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x8804)
recvmmsg(r0, 0x0, 0x0, 0x40010060, 0x0)

817.681025ms ago: executing program 3 (id=492):
prctl$PR_SET_VMA(0x53564d41, 0xf4, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'}) (async)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x1, 0x0, 0x0, 0x1, 0x7fff}, 0x7ff}) (async)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x1, 0x0, 0x0, 0x1, 0x7fff}, 0x7ff})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x2a381) (async)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x2a381)
write$sndseq(r1, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x9, 0x4}, {}, {}, @result}], 0x1c) (async)
write$sndseq(r1, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x9, 0x4}, {}, {}, @result}], 0x1c)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
userfaultfd(0x801) (async)
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
syz_io_uring_setup(0x50d0, &(0x7f0000000000)={0x0, 0xfffffffd, 0x2, 0x2, 0x332}, &(0x7f0000000100), &(0x7f0000ff4000))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(r2, &(0x7f00000007c0)=[{{&(0x7f0000000240)={0xa, 0x4e21, 0x2, @private0}, 0x1c, &(0x7f0000000d00)=[{&(0x7f00000002c0)='\n', 0x1}], 0x1}}], 0x1, 0x40088d4)
shutdown(r2, 0x1) (async)
shutdown(r2, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x84, &(0x7f0000000180)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90) (async)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x84, &(0x7f0000000180)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='io\x00')
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r5, 0x89f0, &(0x7f0000000080)={'gre0\x00', &(0x7f0000000000)={'ip_vti0\x00', <r6=>0x0, 0x40, 0x8, 0xaec1, 0x7f58, {{0x11, 0x4, 0x2, 0x3, 0x44, 0x65, 0x0, 0x2, 0x0, 0x0, @broadcast, @broadcast, {[@noop, @ssrr={0x89, 0x7, 0x29, [@dev={0xac, 0x14, 0x14, 0x28}]}, @ssrr={0x89, 0x7, 0x4d, [@private=0xa010102]}, @noop, @ra={0x94, 0x4, 0x1}, @timestamp_prespec={0x44, 0x1c, 0xe, 0x3, 0x8, [{@local}, {@private=0xa010100, 0x1}, {@broadcast, 0x3}]}]}}}}})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000300)={@empty, @rand_addr=' \x01\x00', @dev={0xfe, 0x80, '\x00', 0x13}, 0x10, 0x97, 0xe85, 0x600, 0x5, 0x80000005, r6})
read$FUSE(r5, &(0x7f0000000980)={0x2020}, 0x160e) (async)
read$FUSE(r5, &(0x7f0000000980)={0x2020}, 0x160e)
r7 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000000000010711e0920000000000001090224000100000000090400090103000100092105000001220500090581030002"], 0x0)
syz_usb_control_io(r7, 0x0, 0x0)
syz_usb_control_io(r7, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0) (async)
syz_usb_control_io(r7, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r8 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r8, 0xc008561c, &(0x7f0000000400)={0xa00965, 0x2})

764.579806ms ago: executing program 2 (id=493):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@code={0x1, 0x60, {"3ef30fc735fc9a00003e0f01c8c4417df1a9b398000066b824008ec8460f79f2c4e1717db49c26000000b9800000c00f3235000400000f307b9666baa00066b8000066ef66bad1040f01c2260f78da"}}], 0x60})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000000, 0x8000000000000006, 0x0, 0x41, 0x2000001, 0x0, 0x2004cb, 0xfffffffffffffff0, 0x0, 0x6901, 0xfffffffffffffff7, 0xfffffffffffffffc, 0x4, 0x0, 0x2, 0x8], 0x100000, 0x202})
ioctl$KVM_RUN(r2, 0xae80, 0x700000000000000)

583.590668ms ago: executing program 3 (id=494):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000440)={{0xffbe, 0x5, 0x2, 0x5}, 'syz1\x00', 0x53})
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x12)
ioctl$UI_DEV_CREATE(r2, 0x5501)
write$uinput_user_dev(r1, &(0x7f00000004c0)={'syz0\x00', {0x7, 0x3, 0x1, 0x9}, 0x7, [0x4, 0x6, 0x802, 0xe9a2, 0x1, 0x0, 0xa9ba, 0xc1f, 0x1, 0x7f5d, 0x3, 0x6, 0x5, 0x11800, 0x2, 0x3, 0x0, 0x3, 0xe, 0x3, 0x0, 0x2, 0xd9, 0x2, 0x6, 0x3, 0x3, 0x9, 0xfff, 0x8a0, 0x6, 0x8001, 0x33b5, 0x1, 0xfffffffc, 0x0, 0x9, 0xb, 0xcc, 0x5, 0x80, 0x401, 0x5, 0x5, 0xfffffffd, 0x8, 0xb, 0x3, 0xffff8001, 0x6, 0x3, 0x80000000, 0x1, 0x9, 0x7, 0x0, 0x5, 0xfff, 0x1, 0x7fe, 0x7fff, 0x10000, 0x2, 0x8], [0x2, 0x1, 0x10000, 0x7, 0x9, 0x9, 0x5, 0x4, 0x9, 0x7, 0x5, 0xdd5a, 0x6, 0x5, 0x7, 0x8, 0x5, 0xcc, 0xbc1, 0x80000, 0x0, 0x5e81339d, 0xffffc256, 0x5, 0x80000001, 0x0, 0x0, 0x4, 0x4, 0x7, 0x9, 0x4, 0x1, 0x5, 0x5, 0xfffffb66, 0xfb5, 0x2, 0x4, 0x7, 0x2, 0x8000, 0x7fff, 0x1, 0x9425, 0x8, 0x6f, 0x80b, 0x1, 0x6, 0x525ba681, 0x4f74, 0x7, 0x1, 0x1, 0x8, 0x100, 0x6, 0x10000, 0x1306, 0x8b, 0x10000, 0xfe4, 0x3ff], [0x2, 0x40, 0x4, 0xfffffff9, 0x7aa, 0x10, 0x80, 0x8001, 0x5, 0x0, 0x9, 0x8, 0x7fffffff, 0x1, 0x1, 0x4, 0x8, 0xfffffffa, 0x7, 0x9, 0x6, 0x4, 0x5, 0xa3, 0x3, 0x2, 0x0, 0x3, 0x4c, 0x3, 0x5, 0x2, 0xd21e, 0x9, 0x13, 0x0, 0x2, 0xfff, 0x6, 0x100, 0x7c83, 0xd, 0x1, 0x4, 0xf, 0x6, 0x47, 0x7, 0x0, 0x11, 0x3, 0xffd, 0x7, 0x7, 0x8000, 0x7ff, 0x10, 0x2, 0x10001, 0x1, 0x0, 0x6, 0x71c], [0x81, 0x3, 0x10, 0x4e26, 0x3, 0x40, 0xfffffff3, 0x497, 0x4, 0x1, 0x3, 0x5, 0x56, 0xc28, 0x9, 0x5, 0x5, 0xa, 0x79a, 0x40, 0x9, 0x6, 0xc41f, 0x80000001, 0x8b6, 0xffffffff, 0x0, 0x0, 0x6a, 0x9, 0x0, 0x0, 0x1000, 0x10, 0xd, 0x6, 0x8000, 0x53, 0x78d, 0x4, 0x1, 0xffffb027, 0xfffffff8, 0x9, 0x7, 0x7, 0x101, 0x7, 0x7, 0x4, 0x0, 0xb, 0x400, 0x8, 0x0, 0x8, 0x7, 0x9a33247, 0x8, 0x0, 0x1, 0x8001, 0xfffffff7, 0x5]}, 0x45c)

464.998565ms ago: executing program 2 (id=495):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000003, 0x20031, 0xffffffffffffffff, 0xffffe000)
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x100})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa04, &(0x7f00000001c0)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x15)
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa07, &(0x7f00000002c0)={{&(0x7f0000ffd000/0x2000)=nil, 0x2000}})

309.515716ms ago: executing program 3 (id=496):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000040)={[0x4, 0x2, 0x80, 0x5, 0x20000004, 0x7f, 0x4233, 0x0, 0x80081, 0x9c1, 0x8001, 0x1005, 0x3, 0x4db6, 0x0, 0x10000000], 0x2000, 0xa0302})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f00000002c0)=@arm64={0x2, 0x13, 0x3, '\x00', 0x80ef})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 3 (id=497):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r0 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000140)={0x14, 0x0, &(0x7f0000000100)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffbf00000008ff11313300000000040109023c00010000b000090400faff030001000921f4f400013405000905810377ca235e34"], 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xc38, &(0x7f0000000080)=ANY=[])
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x3)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000002100004000000000ff"])
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

ill_xarray+0x10/0x10
[   96.367422][ T5970]  ? __kmalloc_cache_noprof+0x3d5/0x6f0
[   96.367468][ T5970]  iopt_area_add_access+0x210/0x4c0
[   96.367505][ T5970]  iommufd_access_pin_pages+0x6d6/0xc30
[   96.367553][ T5970]  ? __pfx_iommufd_access_pin_pages+0x10/0x10
[   96.367585][ T5970]  ? __kvmalloc_node_noprof+0x5ed/0x910
[   96.367606][ T5970]  ? iommufd_test+0x3ca8/0x5180
[   96.367645][ T5970]  iommufd_test+0x3cf9/0x5180
[   96.367692][ T5970]  ? __pfx_iommufd_test+0x10/0x10
[   96.367729][ T5970]  ? __lock_acquire+0xab9/0xd20
[   96.367768][ T5970]  ? __might_fault+0xb0/0x130
[   96.367826][ T5970]  iommufd_fops_ioctl+0x45e/0x580
[   96.367859][ T5970]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[   96.367921][ T5970]  ? __fget_files+0x3a0/0x420
[   96.367949][ T5970]  ? __fget_files+0x2a/0x420
[   96.367979][ T5970]  ? bpf_lsm_file_ioctl+0x9/0x20
[   96.368007][ T5970]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[   96.368033][ T5970]  __se_sys_ioctl+0xfc/0x170
[   96.368070][ T5970]  do_syscall_64+0xfa/0xfa0
[   96.368095][ T5970]  ? lockdep_hardirqs_on+0x9c/0x150
[   96.368119][ T5970]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.368141][ T5970]  ? clear_bhb_loop+0x60/0xb0
[   96.368167][ T5970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.368188][ T5970] RIP: 0033:0x7f574278eec9
[   96.368217][ T5970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.368235][ T5970] RSP: 002b:00007f5743637038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   96.368258][ T5970] RAX: ffffffffffffffda RBX: 00007f57429e5fa0 RCX: 00007f574278eec9
[   96.368274][ T5970] RDX: 0000200000000100 RSI: 0000000000003ba0 RDI: 0000000000000003
[   96.368288][ T5970] RBP: 00007f5743637090 R08: 0000000000000000 R09: 0000000000000000
[   96.368301][ T5970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.368312][ T5970] R13: 00007f57429e6038 R14: 00007f57429e5fa0 R15: 00007fffe4c76568
[   96.368349][ T5970]  </TASK>
[   96.376998][ T5968] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   96.722280][ T5968] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3'.
[   96.843597][    T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   96.861263][ T1220] cpia1 1-1:0.0: only firmware version 1 is supported (got: 0)
[   96.895514][ T5977] [U] 
[   97.013229][    T9] usb 4-1: Using ep0 maxpacket: 8
[   97.021311][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   97.033412][    T9] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   97.042588][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.057499][    T9] usb 4-1: config 0 descriptor??
[   97.090388][ T5955] usb 1-1: USB disconnect, device number 2
[   97.155267][ T1220] usb 2-1: new low-speed USB device number 2 using dummy_hcd
[   97.266506][   T10] cfg80211: failed to load regulatory.db
[   97.280184][    T9] iowarrior 4-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[   97.293659][ T1220] usb 2-1: device descriptor read/64, error -71
[   97.479526][ T5921] usb 4-1: USB disconnect, device number 2
[   97.494100][ T5954] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   97.544375][ T1220] usb 2-1: new low-speed USB device number 3 using dummy_hcd
[   97.676710][ T5954] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   97.686466][ T5954] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.695041][ T5954] usb 3-1: Product: syz
[   97.699428][ T5954] usb 3-1: Manufacturer: syz
[   97.704773][ T5954] usb 3-1: SerialNumber: syz
[   97.706600][ T1220] usb 2-1: device descriptor read/64, error -71
[   97.725822][ T5954] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   97.757162][ T5984] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2526675998 (161707263872 ns) > initial count (96581179136 ns). Using initial count to start timer.
[   97.763621][    T9] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   97.824310][ T1220] usb usb2-port1: attempt power cycle
[   98.023305][ T5978] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   98.049103][ T5987] loop5: detected capacity change from 0 to 7
[   98.060709][ T5987] Dev loop5: unable to read RDB block 7
[   98.068190][ T5987]  loop5: AHDI p1 p2
[   98.072157][ T5987] loop5: partition table partially beyond EOD, truncated
[   98.083932][ T5987] loop5: p1 start 1668641394 is beyond EOD, truncated
[   98.143412][   T52] Bluetooth: hci2: command tx timeout
[   98.153026][ T5989] Zero length message leads to an empty skb
[   98.164929][ T1220] usb 2-1: new low-speed USB device number 4 using dummy_hcd
[   98.172929][ T5978] usb 1-1: device descriptor read/64, error -71
[   98.214890][ T1220] usb 2-1: device descriptor read/8, error -71
[   98.223782][ T5185] Bluetooth: hci3: command tx timeout
[   98.229342][ T5185] Bluetooth: hci0: command tx timeout
[   98.236541][   T52] Bluetooth: hci1: command tx timeout
[   98.395224][ T5980] overlayfs: missing 'lowerdir'
[   98.433344][ T5978] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   98.444641][ T5954] usb 3-1: USB disconnect, device number 2
[   98.464654][ T1220] usb 2-1: new low-speed USB device number 5 using dummy_hcd
[   98.473390][ T5958] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   98.493649][ T1220] usb 2-1: device descriptor read/8, error -71
[   98.563257][ T5978] usb 1-1: device descriptor read/64, error -71
[   98.604111][ T1220] usb usb2-port1: unable to enumerate USB device
[   98.623868][ T5958] usb 4-1: Using ep0 maxpacket: 32
[   98.631763][ T5958] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   98.642786][ T5958] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   98.652670][ T5958] usb 4-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[   98.661951][ T5958] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.674269][ T5958] usb 4-1: config 0 descriptor??
[   98.679943][ T5978] usb usb1-port1: attempt power cycle
[   98.894303][ T5958] usbhid 4-1:0.0: can't add hid device: -71
[   98.904655][ T5958] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[   98.917443][ T5958] usb 4-1: USB disconnect, device number 3
[   98.980704][ T5993] FAULT_INJECTION: forcing a failure.
[   98.980704][ T5993] name failslab, interval 1, probability 0, space 0, times 1
[   98.993529][ T5993] CPU: 1 UID: 0 PID: 5993 Comm: syz.2.13 Not tainted syzkaller #0 PREEMPT(full) 
[   98.993557][ T5993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   98.993569][ T5993] Call Trace:
[   98.993578][ T5993]  <TASK>
[   98.993586][ T5993]  dump_stack_lvl+0x189/0x250
[   98.993625][ T5993]  ? __pfx____ratelimit+0x10/0x10
[   98.993650][ T5993]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.993683][ T5993]  ? __pfx__printk+0x10/0x10
[   98.993715][ T5993]  ? __pfx___might_resched+0x10/0x10
[   98.993739][ T5993]  should_fail_ex+0x414/0x560
[   98.993767][ T5993]  should_failslab+0xa8/0x100
[   98.993785][ T5993]  kmem_cache_alloc_node_noprof+0x77/0x710
[   98.993809][ T5993]  ? __alloc_skb+0x112/0x2d0
[   98.993830][ T5993]  __alloc_skb+0x112/0x2d0
[   98.993850][ T5993]  netlink_ack+0x146/0xa50
[   98.993872][ T5993]  ? __lock_acquire+0xab9/0xd20
[   98.993896][ T5993]  netlink_rcv_skb+0x28c/0x470
[   98.993913][ T5993]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   98.993930][ T5993]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   98.993956][ T5993]  ? bpf_lsm_capable+0x9/0x20
[   98.993976][ T5993]  ? security_capable+0x7e/0x2e0
[   98.993998][ T5993]  nfnetlink_rcv+0x282/0x2590
[   98.994015][ T5993]  ? kernel_text_address+0xa5/0xe0
[   98.994031][ T5993]  ? __kernel_text_address+0xd/0x40
[   98.994045][ T5993]  ? unwind_get_return_address+0x4d/0x90
[   98.994067][ T5993]  ? arch_stack_walk+0xfc/0x150
[   98.994097][ T5993]  ? stack_trace_save+0x9c/0xe0
[   98.994120][ T5993]  ? __pfx_stack_trace_save+0x10/0x10
[   98.994145][ T5993]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   98.994158][ T5993]  ? save_netdev_trace_buffer+0x14f/0x5e0
[   98.994184][ T5993]  ? save_netdev_trace_buffer+0x4e2/0x5e0
[   98.994212][ T5993]  ? __pfx_save_netdev_trace_buffer+0x10/0x10
[   98.994234][ T5993]  ? ref_tracker_free+0x63a/0x7d0
[   98.994248][ T5993]  ? __netlink_deliver_tap+0x636/0x8b0
[   98.994263][ T5993]  ? netlink_deliver_tap+0x19c/0x1b0
[   98.994278][ T5993]  ? netlink_unicast+0x7fa/0x9e0
[   98.994291][ T5993]  ? netlink_sendmsg+0x805/0xb30
[   98.994306][ T5993]  ? __sock_sendmsg+0x21c/0x270
[   98.994328][ T5993]  ? ____sys_sendmsg+0x505/0x830
[   98.994345][ T5993]  ? ___sys_sendmsg+0x21f/0x2a0
[   98.994362][ T5993]  ? __x64_sys_sendmsg+0x19b/0x260
[   98.994379][ T5993]  ? do_syscall_64+0xfa/0xfa0
[   98.994396][ T5993]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.994416][ T5993]  ? __skb_clone+0x483/0x7a0
[   98.994441][ T5993]  ? skb_clone+0x246/0x3a0
[   98.994463][ T5993]  ? __netlink_deliver_tap+0x866/0x8b0
[   98.994480][ T5993]  ? netlink_deliver_tap+0x2e/0x1b0
[   98.994502][ T5993]  ? netlink_deliver_tap+0x2e/0x1b0
[   98.994524][ T5993]  netlink_unicast+0x82f/0x9e0
[   98.994546][ T5993]  ? __pfx_netlink_unicast+0x10/0x10
[   98.994563][ T5993]  ? netlink_sendmsg+0x642/0xb30
[   98.994579][ T5993]  ? skb_put+0x11b/0x210
[   98.994598][ T5993]  netlink_sendmsg+0x805/0xb30
[   98.994622][ T5993]  ? __pfx_netlink_sendmsg+0x10/0x10
[   98.994642][ T5993]  ? aa_sock_msg_perm+0xf1/0x1d0
[   98.994663][ T5993]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   98.994679][ T5993]  ? __pfx_netlink_sendmsg+0x10/0x10
[   98.994703][ T5993]  __sock_sendmsg+0x21c/0x270
[   98.994729][ T5993]  ____sys_sendmsg+0x505/0x830
[   98.994753][ T5993]  ? __pfx_____sys_sendmsg+0x10/0x10
[   98.994779][ T5993]  ? import_iovec+0x74/0xa0
[   98.994802][ T5993]  ___sys_sendmsg+0x21f/0x2a0
[   98.994823][ T5993]  ? __pfx____sys_sendmsg+0x10/0x10
[   98.994869][ T5993]  ? __fget_files+0x2a/0x420
[   98.994887][ T5993]  ? __fget_files+0x3a0/0x420
[   98.994913][ T5993]  __x64_sys_sendmsg+0x19b/0x260
[   98.994934][ T5993]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   98.994961][ T5993]  ? __pfx_ksys_write+0x10/0x10
[   98.994980][ T5993]  ? do_syscall_64+0xbe/0xfa0
[   98.995001][ T5993]  do_syscall_64+0xfa/0xfa0
[   98.995018][ T5993]  ? lockdep_hardirqs_on+0x9c/0x150
[   98.995036][ T5993]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.995050][ T5993]  ? clear_bhb_loop+0x60/0xb0
[   98.995069][ T5993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.995084][ T5993] RIP: 0033:0x7f9c0338eec9
[   98.995097][ T5993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.995110][ T5993] RSP: 002b:00007f9c041ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.995127][ T5993] RAX: ffffffffffffffda RBX: 00007f9c035e5fa0 RCX: 00007f9c0338eec9
[   98.995138][ T5993] RDX: 0000000000000004 RSI: 00002000000000c0 RDI: 0000000000000005
[   98.995147][ T5993] RBP: 00007f9c041ef090 R08: 0000000000000000 R09: 0000000000000000
[   98.995156][ T5993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.995165][ T5993] R13: 00007f9c035e6038 R14: 00007f9c035e5fa0 R15: 00007ffc4852ab98
[   98.995189][ T5993]  </TASK>
[   99.457739][    T9] usb 3-1: Service connection timeout for: 257
[   99.464751][    T9] ath9k_htc 3-1:1.0: ath9k_htc: Unable to initialize HTC services
[   99.474206][    T9] ath9k_htc: Failed to initialize the device
[   99.481662][ T5954] usb 3-1: ath9k_htc: USB layer deinitialized
[   99.488913][ T5978] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   99.548304][ T5978] usb 1-1: device descriptor read/8, error -71
[   99.693850][ T5958] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   99.793202][ T5978] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   99.813803][ T5978] usb 1-1: device descriptor read/8, error -71
[   99.853347][ T5958] usb 4-1: Using ep0 maxpacket: 32
[   99.860509][ T5958] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   99.871705][ T5958] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   99.881616][ T5958] usb 4-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[   99.890751][ T5958] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.902019][ T5958] usb 4-1: config 0 descriptor??
[   99.923996][ T5978] usb usb1-port1: unable to enumerate USB device
[  100.060255][ T6001] netlink: 32 bytes leftover after parsing attributes in process `syz.1.16'.
[  100.323280][ T5958] usbhid 4-1:0.0: can't add hid device: -71
[  100.332096][ T5958] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  100.343020][ T5958] usb 4-1: USB disconnect, device number 4
[  100.963726][ T6011] netlink: 20 bytes leftover after parsing attributes in process `syz.0.26'.
[  101.029737][ T6014] overlay: Unknown parameter 'pcr'
[  101.243217][ T5954] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  101.316467][ T6026] =======================================================
[  101.316467][ T6026] WARNING: The mand mount option has been deprecated and
[  101.316467][ T6026]          and is ignored by this kernel. Remove the mand
[  101.316467][ T6026]          option from the mount to silence this warning.
[  101.316467][ T6026] =======================================================
[  101.328887][ T6027] netlink: 156 bytes leftover after parsing attributes in process `syz.1.27'.
[  101.388876][ T6027] usb usb8: usbfs: process 6027 (syz.1.27) did not claim interface 0 before use
[  101.425787][ T5954] usb 4-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  101.449307][ T5954] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.478607][ T5954] usb 4-1: config 0 descriptor??
[  101.496713][ T5954] gspca_main: cpia1-2.14.0 probing 0813:0001
[  101.695330][ T6008] overlayfs: failed lookup in lower (newroot/6, name='file1', err=-40): overlapping layers
[  101.709627][ T6038] netlink: 'syz.2.32': attribute type 3 has an invalid length.
[  101.718505][ T6038] netlink: 'syz.2.32': attribute type 1 has an invalid length.
[  101.726866][ T6038] netlink: 192 bytes leftover after parsing attributes in process `syz.2.32'.
[  101.747300][ T6038] NCSI netlink: No device for ifindex 0
[  101.752120][ T6039] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  101.920977][ T5954] cpia1 4-1:0.0: unexpected state after lo power cmd: 00
[  101.979750][ T6044] loop3: detected capacity change from 0 to 7
[  101.991890][ T5185] Bluetooth: hci1: Malformed Event: 0x2f
[  102.005666][ T6044] Dev loop3: unable to read RDB block 7
[  102.020570][ T6044]  loop3: unable to read partition table
[  102.030475][ T6044] loop3: partition table beyond EOD, truncated
[  102.048211][ T6044] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  102.153843][   T30] audit: type=1800 audit(1759446048.839:2): pid=6049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.36" name="bus" dev="tmpfs" ino=67 res=0 errno=0
[  102.340394][ T5954] cpia1 4-1:0.0: only firmware version 1 is supported (got: 0)
[  102.595814][  T939] usb 4-1: USB disconnect, device number 5
[  102.673413][ T6064] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  103.143904][  T939] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  103.305066][  T939] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  103.315437][  T939] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  103.335558][  T939] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  103.349825][  T939] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.358729][  T939] usb 2-1: Product: syz
[  103.363746][  T939] usb 2-1: Manufacturer: syz
[  103.368408][  T939] usb 2-1: SerialNumber: syz
[  103.485800][ T6075] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  103.618196][ T6070] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  103.632056][ T6070] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  103.659537][  T939] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22
[  103.680033][  T939] usb 2-1: USB disconnect, device number 6
[  103.838986][   T30] audit: type=1800 audit(1759446050.529:3): pid=6081 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.48" name="bus" dev="tmpfs" ino=104 res=0 errno=0
[  103.859073][    C0] vkms_vblank_simulate: vblank timer overrun
[  104.163257][  T939] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  104.343565][  T939] usb 2-1: Using ep0 maxpacket: 8
[  104.354058][  T939] usb 2-1: config index 0 descriptor too short (expected 301, got 72)
[  104.374350][  T939] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  104.408363][  T939] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  104.431347][  T939] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  104.431385][  T939] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  104.431414][  T939] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.431444][  T939] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8302, setting to 1024
[  104.431495][  T939] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  104.431521][  T939] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.604085][ T1220] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  104.644944][ T6070] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  104.671175][ T6070] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  104.691198][  T939] usb 2-1: usb_control_msg returned -71
[  104.698171][  T939] usbtmc 2-1:16.0: can't read capabilities
[  104.725327][  T939] usb 2-1: USB disconnect, device number 7
[  104.783268][ T5185] Bluetooth: hci3: command tx timeout
[  104.786515][ T1220] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  104.800665][ T1220] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.812119][ T1220] usb 3-1: config 0 descriptor??
[  104.825639][ T1220] gspca_main: cpia1-2.14.0 probing 0813:0001
[  104.903191][    T9] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  105.025645][ T6094] overlayfs: failed lookup in lower (newroot/20, name='file1', err=-40): overlapping layers
[  105.053197][    T9] usb 4-1: Using ep0 maxpacket: 8
[  105.062561][    T9] usb 4-1: unable to get BOS descriptor or descriptor too short
[  105.076104][    T9] usb 4-1: config 7 has an invalid interface number: 169 but max is 0
[  105.093154][    T9] usb 4-1: config 7 has an invalid descriptor of length 255, skipping remainder of the config
[  105.111815][    T9] usb 4-1: config 7 has no interface number 0
[  105.127899][    T9] usb 4-1: config 7 interface 169 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  105.159786][    T9] usb 4-1: New USB device found, idVendor=04c5, idProduct=1330, bcdDevice=79.99
[  105.170013][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  105.178155][    T9] usb 4-1: Product: syz
[  105.182528][    T9] usb 4-1: Manufacturer: syz
[  105.194891][    T9] usb 4-1: SerialNumber: syz
[  105.246518][ T1220] cpia1 3-1:0.0: unexpected state after lo power cmd: 00
[  105.299584][ T6110] netlink: 12 bytes leftover after parsing attributes in process `syz.1.59'.
[  105.664221][ T1220] cpia1 3-1:0.0: only firmware version 1 is supported (got: 0)
[  105.877202][ T5954] usb 3-1: USB disconnect, device number 3
[  105.925223][ T6131] netlink: 352 bytes leftover after parsing attributes in process `syz.0.68'.
[  105.937387][ T6131] netlink: 352 bytes leftover after parsing attributes in process `syz.0.68'.
[  106.033186][ T1220] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  106.115639][ T6136] FAULT_INJECTION: forcing a failure.
[  106.115639][ T6136] name failslab, interval 1, probability 0, space 0, times 0
[  106.128762][ T6136] CPU: 1 UID: 0 PID: 6136 Comm: syz.0.70 Not tainted syzkaller #0 PREEMPT(full) 
[  106.128792][ T6136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  106.128804][ T6136] Call Trace:
[  106.128813][ T6136]  <TASK>
[  106.128821][ T6136]  dump_stack_lvl+0x189/0x250
[  106.128859][ T6136]  ? __pfx____ratelimit+0x10/0x10
[  106.128878][ T6136]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.128904][ T6136]  ? __pfx__printk+0x10/0x10
[  106.128940][ T6136]  ? __pfx___might_resched+0x10/0x10
[  106.128966][ T6136]  ? fs_reclaim_acquire+0x7d/0x100
[  106.128992][ T6136]  should_fail_ex+0x414/0x560
[  106.129027][ T6136]  should_failslab+0xa8/0x100
[  106.129044][ T6136]  __kmalloc_noprof+0xcb/0x7f0
[  106.129068][ T6136]  ? tomoyo_encode+0x28b/0x550
[  106.129095][ T6136]  ? tomoyo_mount_permission+0x27a/0x970
[  106.129126][ T6136]  tomoyo_encode+0x28b/0x550
[  106.129155][ T6136]  ? tomoyo_mount_permission+0x27a/0x970
[  106.129178][ T6136]  tomoyo_mount_permission+0x331/0x970
[  106.129201][ T6136]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  106.129290][ T6136]  security_sb_mount+0xec/0x350
[  106.129322][ T6136]  path_mount+0xbc/0xfe0
[  106.129339][ T6136]  ? user_path_at+0x44/0x60
[  106.129360][ T6136]  ? kmem_cache_free+0x19b/0x690
[  106.129401][ T6136]  __se_sys_mount+0x313/0x410
[  106.129426][ T6136]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.129456][ T6136]  ? __pfx___se_sys_mount+0x10/0x10
[  106.129485][ T6136]  ? __x64_sys_mount+0x20/0xc0
[  106.129505][ T6136]  do_syscall_64+0xfa/0xfa0
[  106.129523][ T6136]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.129546][ T6136]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.129568][ T6136]  ? clear_bhb_loop+0x60/0xb0
[  106.129592][ T6136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.129612][ T6136] RIP: 0033:0x7ffb32f8eec9
[  106.129631][ T6136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.129644][ T6136] RSP: 002b:00007ffb33dd0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  106.129660][ T6136] RAX: ffffffffffffffda RBX: 00007ffb331e5fa0 RCX: 00007ffb32f8eec9
[  106.129671][ T6136] RDX: 0000200000000040 RSI: 0000200000000080 RDI: 0000000000000000
[  106.129686][ T6136] RBP: 00007ffb33dd0090 R08: 0000000000000000 R09: 0000000000000000
[  106.129699][ T6136] R10: 0000000000200000 R11: 0000000000000246 R12: 0000000000000001
[  106.129712][ T6136] R13: 00007ffb331e6038 R14: 00007ffb331e5fa0 R15: 00007ffc326cdd98
[  106.129747][ T6136]  </TASK>
[  106.144356][   T33] wlan1: Trigger new scan to find an IBSS to join
[  106.206517][ T1220] usb 2-1: Using ep0 maxpacket: 8
[  106.214050][ T1220] usb 2-1: unable to get BOS descriptor or descriptor too short
[  106.412053][ T1220] usb 2-1: config 4 has an invalid interface number: 30 but max is 0
[  106.430222][ T1220] usb 2-1: config 4 has no interface number 0
[  106.441788][ T1220] usb 2-1: config 4 interface 30 has no altsetting 0
[  106.460070][ T1220] usb 2-1: string descriptor 0 read error: -22
[  106.466998][ T1220] usb 2-1: New USB device found, idVendor=9022, idProduct=d484, bcdDevice=ff.88
[  106.480719][ T1220] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.501477][ T1220] dvb-usb: found a 'TeVii S482 (tuner 2)' in warm state.
[  106.517845][ T1220] dw2102: su3000_power_ctrl: 1, initialized 0
[  106.538413][ T1220] dvb-usb: bulk message failed: -22 (2/0)
[  106.601271][ T1220] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  106.621270][ T1220] dvbdev: DVB: registering new adapter (TeVii S482 (tuner 2))
[  106.656316][ T1220] usb 2-1: media controller created
[  106.661976][ T1220] dvb-usb: bulk message failed: -22 (6/0)
[  106.669076][ T1220] dw2102: i2c transfer failed.
[  106.674864][ T1220] dvb-usb: bulk message failed: -22 (6/0)
[  106.682124][ T1220] dw2102: i2c transfer failed.
[  106.688011][ T1220] dvb-usb: bulk message failed: -22 (6/0)
[  106.695004][ T1220] dw2102: i2c transfer failed.
[  106.699862][ T1220] dvb-usb: bulk message failed: -22 (6/0)
[  106.705771][ T1220] dw2102: i2c transfer failed.
[  106.710592][ T1220] dvb-usb: bulk message failed: -22 (6/0)
[  106.716744][ T1220] dw2102: i2c transfer failed.
[  106.721567][ T1220] dvb-usb: bulk message failed: -22 (6/0)
[  106.728132][ T1220] dw2102: i2c transfer failed.
[  106.734048][ T1220] dvb-usb: MAC address: 02:02:02:02:02:02
[  106.762659][ T1220] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  106.789687][ T1220] dvb-usb: bulk message failed: -22 (3/0)
[  106.795685][ T1220] dw2102: command 0x0e transfer failed.
[  106.801497][ T1220] dvb-usb: bulk message failed: -22 (3/0)
[  106.807424][ T1220] dw2102: command 0x0e transfer failed.
[  106.813207][ T5959] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  106.883705][ T5978] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  106.964928][ T5959] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.976176][ T5959] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  106.986259][ T5959] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.997686][ T5959] usb 3-1: config 0 descriptor??
[  107.013210][ T5978] usb 1-1: device descriptor read/64, error -71
[  107.113238][ T1220] dvb-usb: bulk message failed: -22 (3/0)
[  107.119121][ T1220] dw2102: command 0x0e transfer failed.
[  107.126237][ T1220] dvb-usb: bulk message failed: -22 (3/0)
[  107.132057][ T1220] dw2102: command 0x0e transfer failed.
[  107.138343][ T1220] dvb-usb: bulk message failed: -22 (1/0)
[  107.144217][ T1220] dw2102: command 0x51 transfer failed.
[  107.149823][ T1220] dvb-usb: bulk message failed: -22 (5/0)
[  107.155668][ T1220] dw2102: i2c probe for address 0x68 failed.
[  107.161721][ T1220] dvb-usb: bulk message failed: -22 (5/0)
[  107.167600][ T1220] dw2102: i2c probe for address 0x69 failed.
[  107.174018][ T1220] dvb-usb: bulk message failed: -22 (5/0)
[  107.179824][ T1220] dw2102: i2c probe for address 0x6a failed.
[  107.186241][ T1220] dw2102: probing for demodulator failed. Is the external power switched on?
[  107.196434][ T1220] dvb-usb: no frontend was attached by 'TeVii S482 (tuner 2)'
[  107.265990][ T5978] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  107.277262][ T1220] rc_core: IR keymap rc-tt-1500 not found
[  107.284739][ T1220] Registered IR keymap rc-empty
[  107.295551][ T1220] rc rc0: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.1/usb2/2-1/rc/rc0
[  107.315775][ T1220] input: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.1/usb2/2-1/rc/rc0/input5
[  107.354395][ T1220] dvb-usb: schedule remote query interval to 250 msecs.
[  107.366876][ T1220] dw2102: su3000_power_ctrl: 0, initialized 1
[  107.374969][ T1220] dvb-usb: TeVii S482 (tuner 2) successfully initialized and connected.
[  107.396394][ T1220] usb 2-1: USB disconnect, device number 8
[  107.409525][ T5959] usbhid 3-1:0.0: can't add hid device: -32
[  107.423304][ T5978] usb 1-1: device descriptor read/64, error -71
[  107.440055][ T5959] usbhid 3-1:0.0: probe with driver usbhid failed with error -32
[  107.475943][ T5959] usb 3-1: USB disconnect, device number 4
[  107.555672][ T5978] usb usb1-port1: attempt power cycle
[  107.585531][ T1220] dvb-usb: TeVii S482 (tuner 2) successfully deinitialized and disconnected.
[  107.775057][    T9] usb 4-1: USB disconnect, device number 6
[  107.808433][ T6160] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  107.923171][ T5978] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  107.987341][ T5978] usb 1-1: device descriptor read/8, error -71
[  108.083239][ T5185] Bluetooth: Unexpected continuation frame (len 36)
[  108.096981][ T6171] fuse: Unknown parameter 'rootmodÛ‰0
'
[  108.254893][ T5978] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  108.280997][ T6181] overlayfs: failed to resolve './file0': -2
[  108.287551][ T5978] usb 1-1: device descriptor read/8, error -71
[  108.403490][ T5978] usb usb1-port1: unable to enumerate USB device
[  108.463210][    T9] usb 4-1: new full-speed USB device number 7 using dummy_hcd
[  108.603331][  T939] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  108.629372][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  108.643230][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  108.652676][    T9] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  108.670175][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=85a1, bcdDevice= 0.40
[  108.682270][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.690595][    T9] usb 4-1: Product: syz
[  108.694961][    T9] usb 4-1: Manufacturer: syz
[  108.699718][    T9] usb 4-1: SerialNumber: syz
[  108.763180][  T939] usb 2-1: Using ep0 maxpacket: 32
[  108.771721][  T939] usb 2-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  108.781025][  T939] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.807577][  T939] usb 2-1: Product: syz
[  108.811838][  T939] usb 2-1: Manufacturer: syz
[  108.816545][  T939] usb 2-1: SerialNumber: syz
[  108.825148][  T939] usb 2-1: config 0 descriptor??
[  108.839197][  T939] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  108.972496][    T9] cdc_ncm 4-1:1.0: CDC Union missing and no IAD found
[  108.979545][    T9] cdc_ncm 4-1:1.0: bind() failure
[  108.991782][    T9] usb 4-1: USB disconnect, device number 7
[  109.123239][ T5954] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  109.295234][ T5954] usb 3-1: config 0 has an invalid interface number: 82 but max is 0
[  109.303504][ T5954] usb 3-1: config 0 has an invalid interface number: 254 but max is 0
[  109.311745][ T5954] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  109.321981][ T5954] usb 3-1: config 0 has 2 interfaces, different from the descriptor's value: 1
[  109.331132][ T5954] usb 3-1: config 0 has no interface number 0
[  109.337325][ T5954] usb 3-1: config 0 has no interface number 1
[  109.349240][ T5954] usb 3-1: config 0 interface 82 altsetting 0 endpoint 0x7 has invalid maxpacket 1023, setting to 64
[  109.360370][ T5954] usb 3-1: config 0 interface 82 altsetting 0 endpoint 0xD has invalid maxpacket 1023, setting to 64
[  109.371370][ T5954] usb 3-1: config 0 interface 82 altsetting 0 has a duplicate endpoint with address 0x7, skipping
[  109.382141][ T5954] usb 3-1: config 0 interface 82 altsetting 0 has a duplicate endpoint with address 0xB, skipping
[  109.392996][ T5954] usb 3-1: config 0 interface 82 altsetting 0 has 5 endpoint descriptors, different from the interface descriptor's value: 10
[  109.406337][ T5954] usb 3-1: too many endpoints for config 0 interface 254 altsetting 110: 223, using maximum allowed: 30
[  109.417616][ T5954] usb 3-1: config 0 interface 254 altsetting 110 has 0 endpoint descriptors, different from the interface descriptor's value: 223
[  109.438820][ T5954] usb 3-1: config 0 interface 254 has no altsetting 0
[  109.449587][ T5954] usb 3-1: New USB device found, idVendor=22b8, idProduct=6425, bcdDevice=11.9e
[  109.458965][ T5954] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.468437][ T5954] usb 3-1: Product: syz
[  109.472637][ T5954] usb 3-1: Manufacturer: syz
[  109.477434][ T5954] usb 3-1: SerialNumber: syz
[  109.486476][ T5954] usb 3-1: config 0 descriptor??
[  109.494656][ T6197] raw-gadget.3 gadget.2: fail, usb_ep_enable returned -22
[  109.518878][ T6197] raw-gadget.3 gadget.2: fail, usb_ep_enable returned -22
[  109.547817][ T5954] cdc_ether 3-1:0.82: skipping garbage
[  109.583135][ T5954] usb 3-1: bad CDC descriptors
[  109.589156][ T5954] usb 3-1: unsupported MDLM descriptors
[  109.601816][ T5954] cdc_acm 3-1:0.82: skipping garbage
[  109.758315][ T5954] cdc_acm 3-1:0.254: Zero length descriptor references
[  109.782122][ T5954] cdc_acm 3-1:0.254: probe with driver cdc_acm failed with error -22
[  109.815821][ T5954] usb 3-1: USB disconnect, device number 5
[  110.253400][    T9] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  110.416091][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  110.430083][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  110.444129][    T9] usb 4-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00
[  110.454264][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.483802][    T9] usb 4-1: config 0 descriptor??
[  110.673842][ T6227] fuse: Bad value for 'user_id'
[  110.678849][ T6227] fuse: Bad value for 'user_id'
[  110.833260][ T5869] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  110.908116][    T9] chicony 0003:04F2:1421.0001: item fetching failed at offset 4/5
[  110.917356][    T9] chicony 0003:04F2:1421.0001: Chicony hid parse failed: -22
[  110.924947][    T9] chicony 0003:04F2:1421.0001: probe with driver chicony failed with error -22
[  110.933571][ T1220] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  110.973299][ T5869] usb 3-1: device descriptor read/64, error -71
[  111.093257][ T1220] usb 1-1: Using ep0 maxpacket: 8
[  111.100659][ T1220] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  111.111233][   T33] wlan1: Trigger new scan to find an IBSS to join
[  111.118299][ T1220] usb 1-1: config 1 interface 0 altsetting 129 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  111.131697][ T1220] usb 1-1: config 1 interface 0 has no altsetting 0
[  111.145270][ T1220] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  111.155511][ T1220] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.163979][ T1220] usb 1-1: Product: syz
[  111.168267][ T1220] usb 1-1: Manufacturer: syz
[  111.172895][ T1220] usb 1-1: SerialNumber: syz
[  111.223316][ T5869] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  111.350591][ T5955] usb 4-1: USB disconnect, device number 8
[  111.364282][ T5869] usb 3-1: device descriptor read/64, error -71
[  111.473712][ T5869] usb usb3-port1: attempt power cycle
[  111.671083][  T939] gspca_stk1135: reg_w 0x351 err -71
[  111.679356][  T939] gspca_stk1135: serial bus timeout: status=0x00
[  111.685875][  T939] gspca_stk1135: Sensor write failed
[  111.691549][  T939] gspca_stk1135: serial bus timeout: status=0x00
[  111.700189][  T939] gspca_stk1135: Sensor write failed
[  111.706078][  T939] gspca_stk1135: serial bus timeout: status=0x00
[  111.712473][  T939] gspca_stk1135: Sensor read failed
[  111.718150][  T939] gspca_stk1135: serial bus timeout: status=0x00
[  111.726324][  T939] gspca_stk1135: Sensor read failed
[  111.731815][  T939] gspca_stk1135: Detected sensor type unknown (0x0)
[  111.738779][  T939] gspca_stk1135: serial bus timeout: status=0x00
[  111.745676][  T939] gspca_stk1135: Sensor read failed
[  111.750950][  T939] gspca_stk1135: serial bus timeout: status=0x00
[  111.760293][  T939] gspca_stk1135: Sensor read failed
[  111.766650][  T939] gspca_stk1135: serial bus timeout: status=0x00
[  111.773368][  T939] gspca_stk1135: Sensor write failed
[  111.778749][  T939] gspca_stk1135: serial bus timeout: status=0x00
[  111.785891][  T939] gspca_stk1135: Sensor write failed
[  111.793409][  T939] stk1135 2-1:0.0: probe with driver stk1135 failed with error -71
[  111.813009][  T939] usb 2-1: USB disconnect, device number 9
[  111.819076][ T5869] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  111.844234][ T5869] usb 3-1: device descriptor read/8, error -71
[  112.017760][ T1220] cdc_ether 1-1:1.0: skipping garbage
[  112.027206][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.034619][ T1220] usb 1-1: bad CDC descriptors
[  112.045062][ T1220] usb 1-1: USB disconnect, device number 11
[  112.100870][ T6238] netlink: 12 bytes leftover after parsing attributes in process `syz.3.109'.
[  112.113175][ T5869] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  112.133948][ T5869] usb 3-1: device descriptor read/8, error -71
[  112.250498][ T5869] usb usb3-port1: unable to enumerate USB device
[  112.362887][ T6248] netlink: 40 bytes leftover after parsing attributes in process `syz.3.114'.
[  112.448620][ T6252] netlink: 56 bytes leftover after parsing attributes in process `syz.3.116'.
[  112.546187][ T6256] netlink: 8 bytes leftover after parsing attributes in process `syz.1.117'.
[  112.753611][ T6264] netlink: 64691 bytes leftover after parsing attributes in process `syz.3.122'.
[  113.045322][ T6279] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.128'.
[  113.061603][ T6276] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.128'.
[  113.072920][ T6279] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.128'.
[  113.226582][ T6288] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.131'.
[  113.249637][ T6289] netlink: 28 bytes leftover after parsing attributes in process `syz.0.133'.
[  114.290279][ T6338] warning: `syz.2.156' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  114.985869][ T6367] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.031481][ T3470] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.038785][ T3470] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.028262][ T6417] dummy0: entered promiscuous mode
[  116.598052][ T6447] netlink: 'syz.0.206': attribute type 29 has an invalid length.
[  116.617735][ T6447] netlink: 'syz.0.206': attribute type 29 has an invalid length.
[  116.637931][ T6447] netlink: 'syz.0.206': attribute type 29 has an invalid length.
[  116.664069][ T6447] netlink: 'syz.0.206': attribute type 29 has an invalid length.
[  116.709724][ T6451] netlink: 'syz.1.208': attribute type 32 has an invalid length.
[  117.781464][ T6505] netlink: 'syz.1.233': attribute type 15 has an invalid length.
[  118.553497][ T5959] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  118.622900][ T6533] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  118.735474][ T5959] usb 3-1: config 0 has an invalid interface number: 156 but max is 0
[  118.749751][ T5959] usb 3-1: config 0 has an invalid descriptor of length 55, skipping remainder of the config
[  118.773153][ T5955] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  118.780967][ T5959] usb 3-1: config 0 has no interface number 0
[  118.803213][ T5959] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 93, changing to 10
[  118.815178][ T5959] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid maxpacket 25088, setting to 1024
[  118.832283][ T5959] usb 3-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  118.845698][ T5959] usb 3-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice=d6.b9
[  118.854990][ T5959] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.870288][ T5959] usb 3-1: config 0 descriptor??
[  118.900850][ T5959] gspca_main: spca561-2.14.0 probing abcd:cdee
[  118.933261][ T5955] usb 2-1: device descriptor read/64, error -71
[  119.097729][ T6525] binder: 6523:6525 unknown command 0
[  119.113640][ T6525] binder: 6523:6525 ioctl c0306201 200000000080 returned -22
[  119.125548][ T6525] binder: BINDER_SET_CONTEXT_MGR already set
[  119.131715][ T6525] binder: 6523:6525 ioctl 4018620d 2000000002c0 returned -16
[  119.195689][ T5955] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  119.324860][ T5955] usb 2-1: device descriptor read/64, error -71
[  119.415397][ T5959] spca561 3-1:0.156: probe with driver spca561 failed with error -22
[  119.429528][ T5959] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  119.439522][ T5959] usb 3-1: MIDIStreaming interface descriptor not found
[  119.447151][ T5955] usb usb2-port1: attempt power cycle
[  119.564993][ T5185] Bluetooth: hci1: ISO packet for unknown connection handle 713
[  119.586615][ T5869] usb 3-1: USB disconnect, device number 10
[  119.645340][ T5978] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  119.652960][ T1220] usb 1-1: new full-speed USB device number 12 using dummy_hcd
[  119.793293][ T5955] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  119.801114][ T1220] usb 1-1: device descriptor read/64, error -71
[  119.824293][ T5955] usb 2-1: device descriptor read/8, error -71
[  119.831359][ T5978] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  119.842362][ T5978] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  119.852203][ T5978] usb 4-1: New USB device found, idVendor=04b4, idProduct=de64, bcdDevice= 0.00
[  119.861291][ T5978] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.872207][ T5978] usb 4-1: config 0 descriptor??
[  120.053270][ T1220] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[  120.083327][ T5955] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  120.113960][ T5955] usb 2-1: device descriptor read/8, error -71
[  120.132411][ T5978] usbhid 4-1:0.0: can't add hid device: -71
[  120.138780][ T5978] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  120.160962][ T5978] usb 4-1: USB disconnect, device number 9
[  120.193480][ T1220] usb 1-1: device descriptor read/64, error -71
[  120.233597][ T5955] usb usb2-port1: unable to enumerate USB device
[  120.314115][ T1220] usb usb1-port1: attempt power cycle
[  120.380811][ T6569] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  120.663257][ T1220] usb 1-1: new full-speed USB device number 14 using dummy_hcd
[  120.708818][ T1220] usb 1-1: device descriptor read/8, error -71
[  120.903735][  T939] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  120.956815][ T1220] usb 1-1: new full-speed USB device number 15 using dummy_hcd
[  120.985609][ T1220] usb 1-1: device descriptor read/8, error -71
[  121.033337][ T5869] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  121.073151][  T939] usb 3-1: Using ep0 maxpacket: 32
[  121.080579][  T939] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  121.090886][  T939] usb 3-1: New USB device found, idVendor=9022, idProduct=d662, bcdDevice=b3.0e
[  121.100519][  T939] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.105994][ T1220] usb usb1-port1: unable to enumerate USB device
[  121.113244][  T939] usb 3-1: config 0 descriptor??
[  121.128797][  T939] dvb-usb: found a 'TeVii S662' in warm state.
[  121.135092][  T939] dw2102: su3000_power_ctrl: 1, initialized 0
[  121.141194][  T939] dvb-usb: bulk message failed: -22 (2/0)
[  121.149825][  T939] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  121.160031][  T939] dvbdev: DVB: registering new adapter (TeVii S662)
[  121.167040][  T939] usb 3-1: media controller created
[  121.172496][  T939] dvb-usb: bulk message failed: -22 (6/0)
[  121.178315][  T939] dw2102: i2c transfer failed.
[  121.183713][ T5869] usb 4-1: Using ep0 maxpacket: 16
[  121.189021][  T939] dvb-usb: bulk message failed: -22 (6/0)
[  121.195290][  T939] dw2102: i2c transfer failed.
[  121.200183][  T939] dvb-usb: bulk message failed: -22 (6/0)
[  121.207595][  T939] dw2102: i2c transfer failed.
[  121.213429][ T5869] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  121.222771][ T5869] usb 4-1: config 0 has no interface number 0
[  121.229024][  T939] dvb-usb: bulk message failed: -22 (6/0)
[  121.234817][  T939] dw2102: i2c transfer failed.
[  121.239626][  T939] dvb-usb: bulk message failed: -22 (6/0)
[  121.245597][  T939] dw2102: i2c transfer failed.
[  121.250519][  T939] dvb-usb: bulk message failed: -22 (6/0)
[  121.256580][  T939] dw2102: i2c transfer failed.
[  121.261456][  T939] dvb-usb: MAC address: 02:02:02:02:02:02
[  121.269011][ T5869] usb 4-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  121.283141][ T5869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.291202][ T5869] usb 4-1: Product: syz
[  121.305984][  T939] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  121.314454][ T5869] usb 4-1: Manufacturer: syz
[  121.319064][ T5869] usb 4-1: SerialNumber: syz
[  121.328626][ T6585] dvb-usb: bulk message failed: -22 (4/0)
[  121.335185][ T5869] usb 4-1: config 0 descriptor??
[  121.351865][ T5869] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  121.359865][ T6585] dw2102: i2c transfer failed.
[  121.366482][  T939] dvb-usb: bulk message failed: -22 (3/0)
[  121.372295][  T939] dw2102: command 0x0e transfer failed.
[  121.384619][  T939] dvb-usb: bulk message failed: -22 (3/0)
[  121.390697][  T939] dw2102: command 0x0e transfer failed.
[  121.713687][  T939] dvb-usb: bulk message failed: -22 (3/0)
[  121.719517][  T939] dw2102: command 0x0e transfer failed.
[  121.725283][  T939] dvb-usb: bulk message failed: -22 (3/0)
[  121.732929][  T939] dw2102: command 0x0e transfer failed.
[  121.738668][  T939] dvb-usb: bulk message failed: -22 (1/0)
[  121.744731][  T939] dw2102: command 0x51 transfer failed.
[  121.750454][  T939] dvb-usb: bulk message failed: -22 (5/0)
[  121.756441][  T939] dw2102: i2c probe for address 0x68 failed.
[  121.763160][  T939] dvb-usb: bulk message failed: -22 (5/0)
[  121.769383][  T939] dw2102: i2c probe for address 0x69 failed.
[  121.781195][  T939] dvb-usb: bulk message failed: -22 (5/0)
[  121.787237][  T939] dw2102: i2c probe for address 0x6a failed.
[  121.793388][  T939] dw2102: probing for demodulator failed. Is the external power switched on?
[  121.802197][  T939] dvb-usb: no frontend was attached by 'TeVii S662'
[  121.883184][  T939] rc_core: IR keymap rc-tt-1500 not found
[  121.889037][  T939] Registered IR keymap rc-empty
[  121.897682][  T939] rc rc0: TeVii S662 as /devices/platform/dummy_hcd.2/usb3/3-1/rc/rc0
[  121.908129][  T939] input: TeVii S662 as /devices/platform/dummy_hcd.2/usb3/3-1/rc/rc0/input6
[  121.926077][  T939] dvb-usb: schedule remote query interval to 250 msecs.
[  121.933455][  T939] dw2102: su3000_power_ctrl: 0, initialized 1
[  121.942392][  T939] dvb-usb: TeVii S662 successfully initialized and connected.
[  121.955514][  T939] usb 3-1: USB disconnect, device number 11
[  122.060136][  T939] dvb-usb: TeVii S662 successfully deinitialized and disconnected.
[  122.102498][ T6597] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  122.505109][ T6606] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.515020][ T6606] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  122.713354][ T5869] gspca_spca1528: reg_w err -110
[  122.725868][ T5869] spca1528 4-1:0.1: probe with driver spca1528 failed with error -110
[  123.141502][ T6620] 
@ÿ: renamed from veth0_vlan (while UP)
[  123.393211][ T5869] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  123.393736][ T6629] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  123.553431][ T5869] usb 1-1: Using ep0 maxpacket: 32
[  123.569676][ T5869] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  123.583926][ T6632] netlink: 'syz.2.274': attribute type 4 has an invalid length.
[  123.594373][ T5869] usb 1-1: New USB device found, idVendor=0c45, idProduct=628f, bcdDevice= 8.b6
[  123.604140][ T5869] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.612309][ T5869] usb 1-1: Product: syz
[  123.616862][ T5869] usb 1-1: Manufacturer: syz
[  123.622976][ T5869] usb 1-1: SerialNumber: syz
[  123.632245][ T5869] usb 1-1: config 0 descriptor??
[  123.648774][ T5869] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:628f
[  123.663351][ T5185] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  123.669958][   T52] Bluetooth: hci4: command 0x1003 tx timeout
[  123.854768][ T5978] usb 4-1: USB disconnect, device number 10
[  123.863185][ T5955] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  124.025504][ T5955] usb 3-1: config index 0 descriptor too short (expected 45, got 36)
[  124.033796][ T5955] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  124.045781][ T5955] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  124.057001][ T5955] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  124.060176][ T5869] gspca_sn9c20x: Write register 1001 failed -71
[  124.069292][ T5955] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  124.079969][ T5869] gspca_sn9c20x: Device initialization failed
[  124.095152][ T5955] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  124.098785][ T5869] gspca_sn9c20x 1-1:0.0: probe with driver gspca_sn9c20x failed with error -71
[  124.107849][ T5955] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.135282][ T5955] usb 3-1: config 0 descriptor??
[  124.141007][ T6632] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  124.153995][ T5869] usb 1-1: USB disconnect, device number 16
[  124.317100][ T5978] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  124.473959][ T5978] usb 4-1: Using ep0 maxpacket: 16
[  124.483607][ T5978] usb 4-1: config 0 has an invalid interface number: 251 but max is 0
[  124.492122][ T5978] usb 4-1: config 0 has no interface number 0
[  124.500878][ T5978] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  124.511545][ T5978] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  124.528707][ T5978] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  124.540225][ T5978] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.550711][ T5978] usb 4-1: Product: syz
[  124.555336][ T5978] usb 4-1: Manufacturer: syz
[  124.562697][ T5978] usb 4-1: SerialNumber: syz
[  124.570868][ T5955] plantronics 0003:047F:FFFF.0002: reserved main item tag 0xd
[  124.589013][ T5978] usb 4-1: config 0 descriptor??
[  124.599835][ T6638] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  124.608231][ T6638] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  124.611169][ T5955] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  124.839797][ T6638] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  124.853347][ T6638] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  124.968707][ T6657] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  125.142192][ T6663] zonefs (nullb0) ERROR: Not a zoned block device
[  125.369463][ T5869] usb 3-1: USB disconnect, device number 12
[  125.406396][ T5955] usb 2-1: new full-speed USB device number 14 using dummy_hcd
[  125.480605][ T5978] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  125.509826][ T5978] asix 4-1:0.251 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  125.544652][ T5978] asix 4-1:0.251: probe with driver asix failed with error -71
[  125.562553][ T5978] usb 4-1: USB disconnect, device number 11
[  125.577813][ T5955] usb 2-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  125.598103][ T5955] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.621730][ T5955] usb 2-1: Product: syz
[  125.630909][ T5955] usb 2-1: Manufacturer: syz
[  125.638474][ T5955] usb 2-1: SerialNumber: syz
[  125.660405][ T5955] usb 2-1: config 0 descriptor??
[  125.759558][ T6678] syzkaller0: entered promiscuous mode
[  125.773833][ T6678] syzkaller0: entered allmulticast mode
[  125.947478][ T6682] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  126.038144][ T5978] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  126.082152][ T5955] airspy 2-1:0.0: Board ID: 00
[  126.091737][ T5955] airspy 2-1:0.0: Firmware version: 
[  126.213155][ T5978] usb 1-1: Using ep0 maxpacket: 32
[  126.220405][ T5978] usb 1-1: config 0 interface 0 has no altsetting 0
[  126.230421][ T5978] usb 1-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  126.240271][ T5978] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.248522][ T5978] usb 1-1: Product: syz
[  126.252754][ T5978] usb 1-1: Manufacturer: syz
[  126.257434][ T5978] usb 1-1: SerialNumber: syz
[  126.265210][ T5978] usb 1-1: config 0 descriptor??
[  126.333186][ T5869] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  126.472411][ T5978] gs_usb 1-1:0.0: Couldn't send data format (err=-71)
[  126.481672][ T5978] gs_usb 1-1:0.0: probe with driver gs_usb failed with error -71
[  126.493209][ T5869] usb 4-1: Using ep0 maxpacket: 16
[  126.496230][ T5978] usb 1-1: USB disconnect, device number 17
[  126.507579][ T5869] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  126.521676][ T5869] usb 4-1: New USB device found, idVendor=07d0, idProduct=4101, bcdDevice=ec.5c
[  126.535367][ T5869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.546842][ T5869] usb 4-1: Product: syz
[  126.551095][ T5869] usb 4-1: Manufacturer: syz
[  126.556177][ T5869] usb 4-1: SerialNumber: syz
[  126.564488][ T5869] usb 4-1: config 0 descriptor??
[  126.572526][ T5869] cypress_m8 4-1:0.0: Nokia CA-42 V2 Adapter converter detected
[  126.583953][ T5869] nokiaca42v2 ttyUSB0: required endpoint is missing
[  126.804339][ T5978] usb 4-1: USB disconnect, device number 12
[  126.814230][ T5978] cypress_m8 4-1:0.0: device disconnected
[  127.444371][ T5955] airspy 2-1:0.0: usb_control_msg() failed -71 request 0f
[  127.459422][ T6704] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  127.487666][ T5955] airspy 2-1:0.0: Registered as swradio24
[  127.509481][ T5955] airspy 2-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  127.534403][ T5955] usb 2-1: USB disconnect, device number 14
[  127.553218][    T9] usb 1-1: new full-speed USB device number 18 using dummy_hcd
[  127.662762][ T6714] __nla_validate_parse: 26 callbacks suppressed
[  127.662780][ T6714] netlink: 20 bytes leftover after parsing attributes in process `syz.3.303'.
[  127.682799][ T6714] netlink: 24 bytes leftover after parsing attributes in process `syz.3.303'.
[  127.707519][ T6716] netlink: 8 bytes leftover after parsing attributes in process `syz.2.304'.
[  127.725371][    T9] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[  127.733873][ T6716] netlink: 8 bytes leftover after parsing attributes in process `syz.2.304'.
[  127.750139][    T9] usb 1-1: config 0 has no interface number 0
[  127.761732][ T6716] overlay: Unknown parameter 'fsuuid'
[  127.780165][    T9] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  127.810062][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.828706][    T9] usb 1-1: Product: syz
[  127.833628][    T9] usb 1-1: Manufacturer: syz
[  127.838630][    T9] usb 1-1: SerialNumber: syz
[  127.861731][    T9] usb 1-1: config 0 descriptor??
[  128.033204][ T5978] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  128.195409][ T5978] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  128.212583][ T5978] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.233238][  T939] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  128.247308][ T5978] usb 3-1: config 0 descriptor??
[  128.265512][ T5978] cp210x 3-1:0.0: cp210x converter detected
[  128.297245][    T9] usb 1-1: Firmware version (0.0) predates our first public release.
[  128.306506][    T9] usb 1-1: Please update to version 0.2 or newer
[  128.323281][    T9] usb 1-1: Firmware: build 
[  128.393536][  T939] usb 2-1: device descriptor read/64, error -71
[  128.465912][ T5978] cp210x 3-1:0.0: failed to get vendor val 0x370b size 1: -121
[  128.474205][ T5978] cp210x 3-1:0.0: querying part number failed
[  128.492855][ T5978] usb 3-1: cp210x converter now attached to ttyUSB0
[  128.545782][    T9] usb 1-1: USB disconnect, device number 18
[  128.571595][ T6737] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  128.634434][  T939] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  128.773218][  T939] usb 2-1: device descriptor read/64, error -71
[  128.883442][  T939] usb usb2-port1: attempt power cycle
[  128.923180][ T5978] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  129.076616][ T5978] usb 4-1: Using ep0 maxpacket: 32
[  129.089497][ T5978] usb 4-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  129.100864][ T5978] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.110332][ T5978] usb 4-1: Product: syz
[  129.114972][ T5978] usb 4-1: Manufacturer: syz
[  129.119609][ T5978] usb 4-1: SerialNumber: syz
[  129.128949][ T5978] usb 4-1: config 0 descriptor??
[  129.143326][ T5978] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  129.233391][  T939] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  129.267602][  T939] usb 2-1: device descriptor read/8, error -71
[  129.453991][ T5869] libceph: connect (1)[c::]:6789 error -101
[  129.462872][ T5869] libceph: mon0 (1)[c::]:6789 connect error
[  129.478712][ T5869] libceph: connect (1)[c::]:6789 error -101
[  129.484910][ T5869] libceph: mon0 (1)[c::]:6789 connect error
[  129.523198][  T939] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  129.556514][  T939] usb 2-1: device descriptor read/8, error -71
[  129.570410][   T30] audit: type=1400 audit(129.497:4): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3A21D01A0BDFCC5109DA7D169150C0264B46D5063F74FF5CD8CE23FC3A503E8D48D5 pid=6715 comm="syz.2.304"
[  129.571779][ T6750] ceph: No mds server is up or the cluster is laggy
[  129.670097][  T939] usb usb2-port1: unable to enumerate USB device
[  129.706021][  T939] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.726802][  T939] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  129.876783][ T5978] gspca_stk1135: reg_w 0x3 err -71
[  129.884835][ T5978] gspca_stk1135: serial bus timeout: status=0x00
[  129.891348][ T5978] gspca_stk1135: Sensor write failed
[  129.898317][ T5978] gspca_stk1135: serial bus timeout: status=0x00
[  129.905831][ T5978] gspca_stk1135: Sensor write failed
[  129.911489][ T5978] gspca_stk1135: serial bus timeout: status=0x00
[  129.918638][ T5978] gspca_stk1135: Sensor read failed
[  129.925211][ T5955] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  129.933473][ T5978] gspca_stk1135: serial bus timeout: status=0x00
[  129.940596][ T5978] gspca_stk1135: Sensor read failed
[  129.946811][ T5978] gspca_stk1135: Detected sensor type unknown (0x0)
[  129.953731][ T5978] gspca_stk1135: serial bus timeout: status=0x00
[  129.960306][ T5978] gspca_stk1135: Sensor read failed
[  129.965916][ T5978] gspca_stk1135: serial bus timeout: status=0x00
[  129.972460][ T5978] gspca_stk1135: Sensor read failed
[  129.978067][ T5978] gspca_stk1135: serial bus timeout: status=0x00
[  129.985385][ T5978] gspca_stk1135: Sensor write failed
[  129.990956][ T5978] gspca_stk1135: serial bus timeout: status=0x00
[  129.997608][ T5978] gspca_stk1135: Sensor write failed
[  130.003879][ T5978] stk1135 4-1:0.0: probe with driver stk1135 failed with error -71
[  130.017999][ T5978] usb 4-1: USB disconnect, device number 13
[  130.063760][ T5955] usb 1-1: device descriptor read/64, error -71
[  130.198452][ T6769] kvm: kvm [6768]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0xc1) = 0x1
[  130.207491][ T6769] kvm: kvm [6768]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0xc2) = 0x1
[  130.219694][ T6769] kvm: kvm [6768]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0x11e) = 0xbe702112
[  130.234753][ T6769] kvm: kvm [6768]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0x186) = 0x1
[  130.243471][ T6769] kvm: kvm [6768]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0x187) = 0x1
[  130.255032][ T6769] kvm_intel: kvm [6768]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0x1d9) = 0x1
[  130.467899][ T6773] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  130.471701][ T6774] [U] 
[  130.479524][ T6774] [U] K{‘
[  130.482578][ T6774] [U] ät Ž1ÊàŠªFìÇÄfËŠî`GÊJç˜Ügö毹¬¡—þÈoÕñ/ümCç
[  130.489555][ T6774] [U] tžØ–/,�~ˆÄœ­‹jõÿÊ}8îÊþ'o1�Ü"™7-î‚JQœK—¤Wºïqé5c%"¬H12–¦Y“„‰ž€ÊXÍ`ˆ‚íè¼`+³û(·â¿!(éûéz'àtXln»I®gÅj– °üÝ­·på~÷7í!‘Õò"ø¨Î¾ª(È5ˆObü¤‡ÍƒJÖ
[  130.505136][ T6774] [U] ±k\&—}6£6œXîHX�¥ôµ„Ìþ.`¸a“$Û40|϶¿�9°øÞ¨„¯ÀÏU‚ò4�ôä®VbzÃð}ÌwÔM”TºŽíQŸýΦr’4”ÿ
[  130.515690][ T6774] [U] ".h6øÞ"Ökã‡[›‰¤ŒJá4çØI�n¨™[Z(•„C|Të]z{�â3Ÿc=»¨xîôžë…î4ßw‰)\T‘XJø�SH{q;ì¹¢…ötÔÇ+‹¦÷gíèÿ®d„.Ë‚³>yž�÷éwUh„fN—Ž�Çhl]SÔ2ŠÇÙ\g%ŠO¼&z)µðš'¨pul‚_<ã	¢Ø°‰ò®Ôå`Ò±TÔÁþœÐËþ;_ô"(‘u{7jœ¿2X ‘/€'ÝÙcÑÌõIº©ÀÏH¿c�Õ³žV¦=�‘AiÇ%w¼Esž RšŸjŠîœƒÚ”gÂ÷rÁ¹í¡hI
˜¢œaïì6-úD�úV¨á i"øånæ¨ þÚAsc~4Áª¹8cø*­OO5/ÿœJš~º§¡w—vK+¬®‰Œ3èÇY)Ž¹M°¸æv¶Ìyqæ½€DTr¯
Otpem%f×ÊejÍA5æÔT_-X~ ^aaÛ‚ò˜½qÖå
[  130.551450][ T6774] [U] 	+�w‰G?]£Ó'a:	»Ú)Õ
ïó™“' B>t¢ ¡f/™÷<'èUÓ'–¼h§ié.+]eŸ.½-É¿ÿ¿Ò%÷è>2`¶^Uÿ8F.Š6¤Å3ÓØ+ËA¾Â««„°g3ÓpÂó6:�^0À�téèv÷'Eõt¼€ûâYC‰n¾þrÏ©ÞnèPj×;æZ†êôñû‘8!¯È\ù…¸AØÊ–2Á£$ðµ™Â­wi.Íç#ŠÈ/Bai¼�Ä`ðá4j’ôdîy@Óz„ügW÷5Ë¿Bĵٜ Nóy"vI2ûÌ
[  130.575183][ T6774] [U] ôT¦_K5¸t¬YJÐþÎ9ðÕcÊ$brŸLúNul¶ü9wÈýÍ|žGå"ʃÆ%Çú¶êCªØ�°¶ºqîÙ
 ŸÇ3‹Æq¯ôN^HP*½Ü$	µ.Î7yÓ±œ2³
[  130.586315][ T6774] [U] ½?�©ÿhüä*ÙÁ”Î3í�7Üé�¾^#Q�"0~‡‚ð(éoïXLŒb£,'vîÓ=‹ÝëCÌS«…’G‚S¶Þ0•Ö‚‹Ù`˜›žÙ‡Ÿ†=1(÷î¾™÷p#ò2DO*Ƀ
[  130.597881][ T6774] [U] ©s¹“gžµ²¶“˜GuÐÔd-{¸™â|&“�®ŸŸñ�2µ›LÞc_©œ!`¨ÍozÖ¥¢B¶³%>êrñ¶öwï‡ýŽSsÂH"£yA4£O.šYÙÛä�„RTÔ¶ŒBÚ[+/<<R�B�Êäõ|ФeŽžÑÛ –V96#ûúÑͤê¦jºUº%
s851ƒ�þÒ©s�P±¨\£ƒ?qª|L�´QXµ0ÂKÔ1orÉ´2¡½|ÖüdÖFÌ¿»ù�ÚË2Þ”–¨×0ÌåH•}C[/¤»“Ÿpx^¼èo
[  130.625668][ T6774] [U] ÖØ›·Ü—(JÅЛ•§mÛüxz˜;œ½±ÓÿØ�_¹»µÔ*3÷3…ß5¸\ƒxm³ÚU�‰AK!aQ`ßË;Fð•�I+ÖÐVUHåðÂmÑj³´Æ·ÙÛZÄcøãz‹¼Â)_矡	ô‘¡&ÿö¡ÿáaÇxtoÈÝê_½ ú¼¦:¨â×%à²Pò×ÈCö²‚yö+_þü›ýû}Uïm˜ƒÆ«CÅ!KJò7Ðßg¯Ë=bè
[  130.644421][ T6774] [U] Ù½¥Fœ%ŽXAÙÂlŸ2r*gŒòVW¬Ñ$ƒüj	ãA˜›F¶ß�·+ø¾9Í„ViºÖ—¼kÙ¾Å1}_©â
á¥%Ãr6„•(]“¦/Ÿ¶ø�Å™YܺÇÞh㤾üÑr gªÄrn/Ü«Î#!êdÙûÚ«%ÞÛËDªï-{ð$þvU‘ýT²¼ª$:mtrÔEŽC1V‰D~îÈ];[˜ËÚÐ÷sq¾¯œù(ìëe,X¦8â"Ù
æðG¥dŸúµ2@T8ž¾´òƒàðÿàt8.Rc+Ä@Ëꦇp‡uá
p”‰¼¶C±‡Ë'å„yLÓ-Ss1E?Å7ÓO‡§ì^]¦†Âóc”â½H]§Jkr]Rkq܆�øÝ£þ´OTcôÆx¶¨¾4™NË	³Ï&�á­ðÚ‹ŠÓ@¶:m7ß~�+”W*ÛÁ–xMüó>>—¡{q¢Ú×
_²Õ�LX8ÊU„ÇØî{ðZ³íø�)ÿÒ7?ËrR;ÿcßr hײڣỨè1Å>)©Măâ‰Ït§²Ú(ìÇaÏ�„}9·Ú¥ãJ*MÑœ¥Ä¡«'L¹£q	ìDWŸòø¸=ؽ|q¬	ÏÆ™W;5æÙŽª!ñdB¸x`é§ö/÷ÂE�`ƦM¢Xîâ"ä\
[  130.691344][ T6774] [U] {;Žõ¥ÂÙ˜_ˆo2«Ñ)îo®›.2ÐW2겨ðyùÃãx_  HPϱœSªD­�¦ø:]‚{Ë©ÔÝæè½
[  130.699869][ T6774] [U] I,Ç>Çó¤	îÙ5�1ñ÷^1òN4¯oǶþ'0ý?Ö’iÙ9w.ï_.¶WŠa¼Š�Vˆ±`)ÑZ¬ïæc6GiÓ¹²a»¬XL[¢›½¡Fü*ÀñO‰W)+‡Ç'\nÆ
[K@ÑëÄü2çǬ–®¡p"^`Á‰í	øß
[  130.713416][ T6774] [U] 22½“Æ©Ðû©x?0;3u±
[  130.717598][ T6774] [U] ÞœÕ
æ�ósObx 8”Wˆ4á‘(ð~/§¿íKÇUžãÔ–oQËe+·G®-yµgY_
•>v¢ÜÈë—3.hÁÓ™]Í„²2‘”)™DË,	‘Ä	þD~×d©£¡+Ãw;A\˜F
PÉþȘ|$ºø)�
KØ�I³éÐÉ¿kñYT^RÍüù癵“ËA=±#–Üœ	ÝíßËae©�tå1·Îݯ4K¯.e"RÚS|ðŸÀsÖ’Á:•ù>p™…rÐ"z‰ú­ûúé#P!˜KY"›}ÃÆF¿N84ü³ƒÅhÞ±£o•Èsߙ̫%DlwÙmæ²Ç
[  130.742529][ T6774] [U] [ª['xn€'²÷á¿Ü,mr¦«/žšœâ1D=!DŽx91Bù
wç»R—lf…ƒÆKì¤Zõê# `ì‘lØ›§Ëœ»×b~åmÒÔÖ
[  130.751842][ T6774] [U] ™LÖ>�ñ�d+ˆd¯§—®Ì"5Žê��h3<ª¨ÅiR=F^”f�nõóÜÀ‰¿û­vÛ÷œDÁOIOÚ:Uö>ÖYâ
[  130.760447][ T6774] [U] 'B—6vý20³ä·çž¥·×Œï"t8Ñ{9ÆFW��]ôÊäì©�
[  130.766619][ T6774] [U] ù72þ‰ïÂÃuþC6™îüÔÏ„I]8cª£tÛ¨QSk�YÞîIÒÀâ¹ ¿|V'ÛTV/ùÅg•$[â 9kh`ú"ü‘úõ}€ñ[^=ˆú0á]½ã%ÆÌ‚T“Šž¹ØFì_vö4C¸òÅ
[  130.778947][ T6774] [U] ¹ec�
[  130.782080][ T6774] [U] �—”|‚Êì<äî:^ü3$7nK~Ø-™@÷¦?Ÿ–/mtl·�Û¾©Iˆwè¬@g~tØ{êÜPß+Æ$ªjp|µŽçIÛRió�pmð õ·YÓ ú”8ìtÉÐÞVžÙÿÆë,îlâ,Õ
[  130.821777][ T6774] Bluetooth: MGMT ver 1.23
[  130.838345][ T5869] usb 3-1: USB disconnect, device number 13
[  130.851470][ T5869] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  130.871847][ T5869] cp210x 3-1:0.0: device disconnected
[  130.894673][ T6772] [U] ˆKÌúÛõ‰)0ÄÄÝ~ü³ÊªÁiP'ífóòœzÚÞr¬™ÿ@BÓ]Â5ÝÊ{­©Ê¼ô'à8åÆ¥F‡¹UTqUd
Ç©¤K;7íª0c[„ãy–¼ÈYC¦¶»Ø°mª™Lò8’T…ÍšÎ5³ýýrx�™¶ðWí x¤²óoQhVi'8œ¥Î…Lµ
[  131.313175][ T5958] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  131.395313][ T6803] C: renamed from team_slave_0 (while UP)
[  131.427428][ T6803] netlink: 'syz.0.329': attribute type 1 has an invalid length.
[  131.446018][ T6803] netlink: 152 bytes leftover after parsing attributes in process `syz.0.329'.
[  131.467694][ T6806] netlink: 8 bytes leftover after parsing attributes in process `syz.0.329'.
[  131.491427][ T5958] usb 2-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  131.508719][ T5958] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.594099][ T6809] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  131.731362][ T5958] usb 2-1: Product: syz
[  131.735665][ T5958] usb 2-1: Manufacturer: syz
[  131.740293][ T5958] usb 2-1: SerialNumber: syz
[  131.840610][ T6812] process 'syz.0.331' launched './file0' with NULL argv: empty string added
[  131.877683][ T6812] FAULT_INJECTION: forcing a failure.
[  131.877683][ T6812] name failslab, interval 1, probability 0, space 0, times 0
[  131.912822][ T6812] CPU: 0 UID: 0 PID: 6812 Comm: syz.0.331 Not tainted syzkaller #0 PREEMPT(full) 
[  131.912852][ T6812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  131.912866][ T6812] Call Trace:
[  131.912875][ T6812]  <TASK>
[  131.912884][ T6812]  dump_stack_lvl+0x189/0x250
[  131.912925][ T6812]  ? __pfx____ratelimit+0x10/0x10
[  131.912950][ T6812]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.912984][ T6812]  ? __pfx__printk+0x10/0x10
[  131.913015][ T6812]  ? __lock_acquire+0xab9/0xd20
[  131.913056][ T6812]  should_fail_ex+0x414/0x560
[  131.913095][ T6812]  should_failslab+0xa8/0x100
[  131.913120][ T6812]  __kmalloc_cache_noprof+0x6f/0x6f0
[  131.913155][ T6812]  ? proc_thread_self_get_link+0xfd/0x1a0
[  131.913178][ T6812]  ? __task_pid_nr_ns+0x3ac/0x490
[  131.913216][ T6812]  proc_thread_self_get_link+0xfd/0x1a0
[  131.913238][ T6812]  ? __pfx_proc_thread_self_get_link+0x10/0x10
[  131.913260][ T6812]  pick_link+0x67c/0xe80
[  131.913299][ T6812]  step_into+0xbc9/0xe80
[  131.913338][ T6812]  ? read_word_at_a_time+0x16/0x20
[  131.913369][ T6812]  ? __pfx_step_into+0x10/0x10
[  131.913398][ T6812]  ? lookup_fast+0x168/0x5b0
[  131.913429][ T6812]  ? inode_permission+0x149/0x470
[  131.913456][ T6812]  ? __asan_memcpy+0x40/0x70
[  131.913490][ T6812]  link_path_walk+0x77b/0xea0
[  131.913538][ T6812]  path_openat+0x28c/0x3830
[  131.913579][ T6812]  ? __pfx_stack_trace_save+0x10/0x10
[  131.913627][ T6812]  ? __pfx_path_openat+0x10/0x10
[  131.913669][ T6812]  do_filp_open+0x1fa/0x410
[  131.913687][ T6812]  ? __lock_acquire+0xab9/0xd20
[  131.913714][ T6812]  ? __pfx_do_filp_open+0x10/0x10
[  131.913760][ T6812]  ? _raw_spin_unlock+0x28/0x50
[  131.913782][ T6812]  ? alloc_fd+0x64c/0x6c0
[  131.913819][ T6812]  do_sys_openat2+0x121/0x1c0
[  131.913855][ T6812]  ? __pfx_do_sys_openat2+0x10/0x10
[  131.913896][ T6812]  ? rcu_is_watching+0x15/0xb0
[  131.913930][ T6812]  __x64_sys_openat+0x138/0x170
[  131.913968][ T6812]  do_syscall_64+0xfa/0xfa0
[  131.913993][ T6812]  ? lockdep_hardirqs_on+0x9c/0x150
[  131.914019][ T6812]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.914041][ T6812]  ? clear_bhb_loop+0x60/0xb0
[  131.914068][ T6812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.914089][ T6812] RIP: 0033:0x7ffb32f8d710
[  131.914108][ T6812] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44
[  131.914126][ T6812] RSP: 002b:00007ffb33dcff10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  131.914149][ T6812] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ffb32f8d710
[  131.914165][ T6812] RDX: 0000000000000000 RSI: 00007ffb33dcffa0 RDI: 00000000ffffff9c
[  131.914178][ T6812] RBP: 00007ffb33dcffa0 R08: 0000000000000000 R09: 0000000000000000
[  131.914191][ T6812] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  131.914204][ T6812] R13: 00007ffb331e6038 R14: 00007ffb331e5fa0 R15: 00007ffc326cdd98
[  131.914239][ T6812]  </TASK>
[  132.253841][ T5958] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[  132.276202][ T5958] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  132.301891][ T5958] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  132.352790][ T5958] lan78xx 2-1:1.0: probe with driver lan78xx failed with error -32
[  132.773369][ T5958] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  132.923197][ T5958] usb 4-1: Using ep0 maxpacket: 16
[  132.935056][ T5958] usb 4-1: unable to get BOS descriptor or descriptor too short
[  132.944777][ T5958] usb 4-1: config 27 has an invalid interface number: 187 but max is 0
[  132.953839][ T5958] usb 4-1: config 27 has no interface number 0
[  132.965778][ T5958] usb 4-1: config 27 interface 187 altsetting 250 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[  132.994541][ T5958] usb 4-1: config 27 interface 187 has no altsetting 0
[  133.007950][ T5958] usb 4-1: New USB device found, idVendor=0af0, idProduct=7061, bcdDevice= 6.61
[  133.017557][ T5958] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.026917][ T5958] usb 4-1: Product: syz
[  133.032381][ T5958] usb 4-1: Manufacturer: syz
[  133.039398][ T5958] usb 4-1: SerialNumber: syz
[  133.292976][ T5958] option 4-1:27.187: GSM modem (1-port) converter detected
[  133.346612][ T5958] usb 4-1: USB disconnect, device number 14
[  133.368164][ T5958] option 4-1:27.187: device disconnected
[  133.624388][ T6829] netlink: 56 bytes leftover after parsing attributes in process `syz.0.336'.
[  134.023514][  T939] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  134.051505][ T6842] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  134.186758][ T6846] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  134.197650][  T939] usb 1-1: Using ep0 maxpacket: 16
[  134.209231][  T939] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.230510][  T939] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  134.250941][  T939] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  134.266263][ T6846] block device autoloading is deprecated and will be removed.
[  134.274636][  T939] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  134.293298][  T939] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.320409][  T939] usb 1-1: config 0 descriptor??
[  134.659663][ T6859] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.685249][ T6859] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  134.747655][ T6835] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.759588][ T6835] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  134.790793][  T939] usbhid 1-1:0.0: can't add hid device: -71
[  134.811169][  T939] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  134.832289][  T939] usb 1-1: USB disconnect, device number 21
[  134.893157][    T9] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  135.064328][    T9] usb 4-1: unable to read config index 0 descriptor/start: -61
[  135.072068][    T9] usb 4-1: can't read configurations, error -61
[  135.207062][    T9] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  135.369555][    T9] usb 4-1: unable to read config index 0 descriptor/start: -61
[  135.386394][    T9] usb 4-1: can't read configurations, error -61
[  135.393567][    T9] usb usb4-port1: attempt power cycle
[  135.526073][  T939] usb 2-1: USB disconnect, device number 19
[  135.582714][ T6880] netlink: 'syz.1.353': attribute type 10 has an invalid length.
[  135.733368][    T9] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  135.760564][    T9] usb 4-1: unable to read config index 0 descriptor/start: -61
[  135.768313][    T9] usb 4-1: can't read configurations, error -61
[  135.774457][ T5958] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  135.903215][  T939] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  135.911358][    T9] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  135.935993][    T9] usb 4-1: unable to read config index 0 descriptor/start: -61
[  135.943833][    T9] usb 4-1: can't read configurations, error -61
[  135.950734][    T9] usb usb4-port1: unable to enumerate USB device
[  135.953194][ T5958] usb 3-1: Using ep0 maxpacket: 32
[  135.965571][ T5958] usb 3-1: config 0 has an invalid interface number: 206 but max is 0
[  135.975180][ T5958] usb 3-1: config 0 has no interface number 0
[  135.981324][ T5958] usb 3-1: config 0 interface 206 altsetting 0 bulk endpoint 0xD has invalid maxpacket 1023
[  135.991822][ T5958] usb 3-1: config 0 interface 206 altsetting 0 endpoint 0x9 has invalid maxpacket 1024, setting to 64
[  136.003011][ T5958] usb 3-1: config 0 interface 206 altsetting 0 endpoint 0xC has invalid maxpacket 512, setting to 64
[  136.014017][ T5958] usb 3-1: config 0 interface 206 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  136.024947][ T5958] usb 3-1: config 0 interface 206 altsetting 0 endpoint 0x7 has invalid maxpacket 1023, setting to 64
[  136.036038][ T5958] usb 3-1: config 0 interface 206 altsetting 0 has a duplicate endpoint with address 0xC, skipping
[  136.046798][ T5958] usb 3-1: config 0 interface 206 altsetting 0 has a duplicate endpoint with address 0x87, skipping
[  136.057667][ T5958] usb 3-1: config 0 interface 206 altsetting 0 endpoint 0x5 has an invalid bInterval 125, changing to 10
[  136.069976][ T5958] usb 3-1: config 0 interface 206 altsetting 0 has a duplicate endpoint with address 0xC, skipping
[  136.086015][ T5958] usb 3-1: New USB device found, idVendor=177f, idProduct=0153, bcdDevice=ef.8c
[  136.088066][  T939] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81
[  136.095416][ T5958] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.107183][  T939] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  136.116717][ T5958] usb 3-1: Product: syz
[  136.126339][  T939] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.130686][ T5958] usb 3-1: Manufacturer: syz
[  136.140499][  T939] usb 2-1: New USB device found, idVendor=054c, idProduct=024b, bcdDevice= 0.00
[  136.148657][ T5958] usb 3-1: SerialNumber: syz
[  136.157363][  T939] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.162647][ T5958] usb 3-1: config 0 descriptor??
[  136.174503][  T939] usb 2-1: config 0 descriptor??
[  136.183299][ T6878] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  136.203160][   T30] audit: type=1326 audit(136.127:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.227679][   T30] audit: type=1326 audit(136.127:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.249648][   T30] audit: type=1326 audit(136.127:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.271087][    C1] vkms_vblank_simulate: vblank timer overrun
[  136.278605][   T30] audit: type=1326 audit(136.127:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.300480][   T30] audit: type=1326 audit(136.127:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.321888][    C1] vkms_vblank_simulate: vblank timer overrun
[  136.328830][   T30] audit: type=1326 audit(136.127:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.350676][   T30] audit: type=1326 audit(136.127:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.372166][    C1] vkms_vblank_simulate: vblank timer overrun
[  136.379251][   T30] audit: type=1326 audit(136.127:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.404469][   T30] audit: type=1326 audit(136.127:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.428416][   T30] audit: type=1326 audit(136.127:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.0.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb32f8eec9 code=0x7fc00000
[  136.556364][ T6884] netlink: 'syz.0.355': attribute type 75 has an invalid length.
[  136.807348][ T6890] overlayfs: workdir and upperdir must be separate subtrees
[  136.854879][  T939] usbhid 2-1:0.0: can't add hid device: -71
[  136.861131][  T939] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  136.917294][  T939] usb 2-1: USB disconnect, device number 20
[  137.711228][ T6901] netlink: 96 bytes leftover after parsing attributes in process `syz.3.359'.
[  137.776755][  T939] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  137.933436][  T939] usb 2-1: Using ep0 maxpacket: 16
[  137.966386][  T939] usb 2-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35
[  137.975816][  T939] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.983992][  T939] usb 2-1: Product: syz
[  137.988804][  T939] usb 2-1: Manufacturer: syz
[  137.993760][  T939] usb 2-1: SerialNumber: syz
[  138.004190][  T939] usb 2-1: config 0 descriptor??
[  138.020178][  T939] as10x_usb: device has been detected
[  138.026547][  T939] dvbdev: DVB: registering new adapter (Sky IT Digital Key (green led))
[  138.069004][  T939] usb 2-1: DVB: registering adapter 1 frontend 0 (Sky IT Digital Key (green led))...
[  138.098226][ T6910] FAULT_INJECTION: forcing a failure.
[  138.098226][ T6910] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  138.098283][  T939] as10x_usb: error during firmware upload part1
[  138.112098][ T6910] CPU: 1 UID: 0 PID: 6910 Comm: syz.0.361 Not tainted syzkaller #0 PREEMPT(full) 
[  138.112132][ T6910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  138.112147][ T6910] Call Trace:
[  138.112158][ T6910]  <TASK>
[  138.112168][ T6910]  dump_stack_lvl+0x189/0x250
[  138.112211][ T6910]  ? __pfx____ratelimit+0x10/0x10
[  138.112239][ T6910]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.112277][ T6910]  ? __pfx__printk+0x10/0x10
[  138.112309][ T6910]  ? __might_fault+0xb0/0x130
[  138.112358][ T6910]  should_fail_ex+0x414/0x560
[  138.112403][ T6910]  _copy_from_user+0x2d/0xb0
[  138.112436][ T6910]  ip_tunnel_parm_from_user+0xa2/0x380
[  138.112465][ T6910]  ? __pfx_ip_tunnel_parm_from_user+0x10/0x10
[  138.112486][ T6910]  ? __kasan_save_free_info+0x46/0x50
[  138.112537][ T6910]  ip_tunnel_siocdevprivate+0x99/0x180
[  138.112565][ T6910]  ? __pfx_ip_tunnel_siocdevprivate+0x10/0x10
[  138.112610][ T6910]  ipip6_tunnel_siocdevprivate+0x24e/0x1580
[  138.112637][ T6910]  ? __pfx___mutex_trylock_common+0x10/0x10
[  138.112677][ T6910]  ? __pfx_ipip6_tunnel_siocdevprivate+0x10/0x10
[  138.112700][ T6910]  ? rcu_is_watching+0x15/0xb0
[  138.112731][ T6910]  ? trace_contention_end+0x39/0x120
[  138.112766][ T6910]  ? __mutex_lock+0x335/0x1350
[  138.112805][ T6910]  ? __lock_acquire+0xab9/0xd20
[  138.112848][ T6910]  ? dev_ioctl+0x83c/0x1150
[  138.112873][ T6910]  ? full_name_hash+0x92/0xe0
[  138.112911][ T6910]  ? netdev_name_node_lookup+0xdf/0x120
[  138.112951][ T6910]  dev_ifsioc+0xb57/0xf00
[  138.112985][ T6910]  dev_ioctl+0x84c/0x1150
[  138.113016][ T6910]  sock_ioctl+0x719/0x790
[  138.113059][ T6910]  ? __pfx_sock_ioctl+0x10/0x10
[  138.113098][ T6910]  ? ksys_write+0x1e1/0x250
[  138.113129][ T6910]  ? bpf_lsm_file_ioctl+0x9/0x20
[  138.113158][ T6910]  ? __pfx_sock_ioctl+0x10/0x10
[  138.113193][ T6910]  __se_sys_ioctl+0xfc/0x170
[  138.113233][ T6910]  do_syscall_64+0xfa/0xfa0
[  138.113259][ T6910]  ? lockdep_hardirqs_on+0x9c/0x150
[  138.113287][ T6910]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.113309][ T6910]  ? clear_bhb_loop+0x60/0xb0
[  138.113339][ T6910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.113361][ T6910] RIP: 0033:0x7ffb32f8eec9
[  138.113383][ T6910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.113401][ T6910] RSP: 002b:00007ffb33dd0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.113427][ T6910] RAX: ffffffffffffffda RBX: 00007ffb331e5fa0 RCX: 00007ffb32f8eec9
[  138.113445][ T6910] RDX: 0000200000000000 RSI: 00000000000089f3 RDI: 0000000000000006
[  138.113459][ T6910] RBP: 00007ffb33dd0090 R08: 0000000000000000 R09: 0000000000000000
[  138.113474][ T6910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.113487][ T6910] R13: 00007ffb331e6038 R14: 00007ffb331e5fa0 R15: 00007ffc326cdd98
[  138.113528][ T6910]  </TASK>
[  138.234201][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  138.234439][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  138.272652][ T6914] FAULT_INJECTION: forcing a failure.
[  138.272652][ T6914] name failslab, interval 1, probability 0, space 0, times 0
[  138.277971][  T939] Registered device Sky IT Digital Key (green led)
[  138.324119][ T5959] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  138.406102][ T6914] CPU: 1 UID: 0 PID: 6914 Comm: syz.0.362 Not tainted syzkaller #0 PREEMPT(full) 
[  138.406136][ T6914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  138.406152][ T6914] Call Trace:
[  138.406161][ T6914]  <TASK>
[  138.406171][ T6914]  dump_stack_lvl+0x189/0x250
[  138.406213][ T6914]  ? __pfx____ratelimit+0x10/0x10
[  138.406241][ T6914]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.406278][ T6914]  ? __pfx__printk+0x10/0x10
[  138.406319][ T6914]  ? __pfx___might_resched+0x10/0x10
[  138.406356][ T6914]  should_fail_ex+0x414/0x560
[  138.406400][ T6914]  should_failslab+0xa8/0x100
[  138.406428][ T6914]  kmem_cache_alloc_lru_noprof+0x79/0x6d0
[  138.406464][ T6914]  ? __d_alloc+0x36/0x7a0
[  138.406504][ T6914]  __d_alloc+0x36/0x7a0
[  138.406552][ T6914]  d_alloc_parallel+0xe5/0x15e0
[  138.406605][ T6914]  ? __lock_acquire+0xab9/0xd20
[  138.406641][ T6914]  ? __pfx_d_alloc_parallel+0x10/0x10
[  138.406682][ T6914]  ? __raw_spin_lock_init+0x45/0x100
[  138.406721][ T6914]  ? __init_waitqueue_head+0xa9/0x150
[  138.406771][ T6914]  __lookup_slow+0x116/0x3d0
[  138.406811][ T6914]  ? __pfx___lookup_slow+0x10/0x10
[  138.406858][ T6914]  ? d_lookup+0x8a/0xa0
[  138.406893][ T6914]  ? lookup_noperm+0x112/0x220
[  138.406933][ T6914]  simple_start_creating+0xfd/0x1e0
[  138.406967][ T6914]  ? __pfx_simple_start_creating+0x10/0x10
[  138.407014][ T6914]  debugfs_start_creating+0x10f/0x180
[  138.407042][ T6914]  __debugfs_create_file+0x79/0x4f0
[  138.407071][ T6914]  debugfs_create_file_full+0x3f/0x60
[  138.407100][ T6914]  ref_tracker_dir_debugfs+0x14e/0x270
[  138.407127][ T6914]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  138.407183][ T6914]  ? rcu_is_watching+0x15/0xb0
[  138.407216][ T6914]  ? trace_kmalloc+0x1f/0xd0
[  138.407248][ T6914]  ? __kvmalloc_node_noprof+0x5ed/0x910
[  138.407275][ T6914]  ? __raw_spin_lock_init+0x45/0x100
[  138.407316][ T6914]  alloc_netdev_mqs+0x2b9/0x1200
[  138.407350][ T6914]  ? __pfx_tun_setup+0x10/0x10
[  138.407385][ T6914]  tun_set_iff+0x532/0xf00
[  138.407429][ T6914]  __tun_chr_ioctl+0x795/0x1e10
[  138.407470][ T6914]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  138.407513][ T6914]  ? __fget_files+0x3a0/0x420
[  138.407539][ T6914]  ? __fget_files+0x2a/0x420
[  138.407573][ T6914]  ? bpf_lsm_file_ioctl+0x9/0x20
[  138.407602][ T6914]  ? __pfx_tun_chr_ioctl+0x10/0x10
[  138.407632][ T6914]  __se_sys_ioctl+0xfc/0x170
[  138.407673][ T6914]  do_syscall_64+0xfa/0xfa0
[  138.407700][ T6914]  ? lockdep_hardirqs_on+0x9c/0x150
[  138.407729][ T6914]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.407751][ T6914]  ? clear_bhb_loop+0x60/0xb0
[  138.407795][ T6914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.407817][ T6914] RIP: 0033:0x7ffb32f8eec9
[  138.407837][ T6914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.407857][ T6914] RSP: 002b:00007ffb33daf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.407883][ T6914] RAX: ffffffffffffffda RBX: 00007ffb331e6090 RCX: 00007ffb32f8eec9
[  138.407901][ T6914] RDX: 00002000000000c0 RSI: 00000000400454ca RDI: 0000000000000005
[  138.407917][ T6914] RBP: 00007ffb33daf090 R08: 0000000000000000 R09: 0000000000000000
[  138.407930][ T6914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.407944][ T6914] R13: 00007ffb331e6128 R14: 00007ffb331e6090 R15: 00007ffc326cdd98
[  138.407983][ T6914]  </TASK>
[  138.464895][ T5959] usb 4-1: device descriptor read/64, error -71
[  138.792793][   T52] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  138.828300][   T52] Bluetooth: hci2: Injecting HCI hardware error event
[  138.837890][ T5185] Bluetooth: hci2: hardware error 0x00
[  138.966395][ T5955] usb 3-1: USB disconnect, device number 14
[  139.033206][ T5959] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  139.081389][ T6926] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  139.183586][ T5959] usb 4-1: device descriptor read/64, error -71
[  139.293354][  T939] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  139.303677][ T5959] usb usb4-port1: attempt power cycle
[  139.443244][  T939] usb 1-1: Using ep0 maxpacket: 32
[  139.449388][ T5869] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  139.459036][  T939] usb 1-1: too many configurations: 17, using maximum allowed: 8
[  139.468081][  T939] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  139.476186][  T939] usb 1-1: config 0 has no interface number 0
[  139.483577][  T939] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  139.491618][  T939] usb 1-1: config 0 has no interface number 0
[  139.500252][  T939] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  139.508541][  T939] usb 1-1: config 0 has no interface number 0
[  139.516607][  T939] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  139.525323][  T939] usb 1-1: config 0 has no interface number 0
[  139.532981][  T939] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  139.541165][  T939] usb 1-1: config 0 has no interface number 0
[  139.551315][  T939] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  139.559516][  T939] usb 1-1: config 0 has no interface number 0
[  139.566838][  T939] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  139.574999][  T939] usb 1-1: config 0 has no interface number 0
[  139.582286][  T939] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  139.590593][  T939] usb 1-1: config 0 has no interface number 0
[  139.599670][  T939] usb 1-1: New USB device found, idVendor=108c, idProduct=0168, bcdDevice=84.b2
[  139.608879][  T939] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.617065][  T939] usb 1-1: Product: syz
[  139.621309][  T939] usb 1-1: Manufacturer: syz
[  139.626418][  T939] usb 1-1: SerialNumber: syz
[  139.632792][ T5869] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  139.645036][ T5869] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  139.656069][ T5959] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  139.656927][  T939] usb 1-1: config 0 descriptor??
[  139.674480][  T939] etas_es58x 1-1:0.2: Starting syz syz (Serial Number syz)
[  139.681796][ T5869] usb 3-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00
[  139.691300][ T5869] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.694071][ T5959] usb 4-1: device descriptor read/8, error -71
[  139.707394][ T5869] usb 3-1: config 0 descriptor??
[  139.875121][  T939] etas_es58x 1-1:0.2: could not parse product info: ''
[  139.943294][ T5959] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  139.945908][ T5869] aquacomputer_d5next 0003:0C70:F0B6.0004: item fetching failed at offset 10/11
[  139.966647][ T5869] aquacomputer_d5next 0003:0C70:F0B6.0004: probe with driver aquacomputer_d5next failed with error -22
[  139.984347][ T5959] usb 4-1: device descriptor read/8, error -71
[  140.104317][ T5959] usb usb4-port1: unable to enumerate USB device
[  140.125435][ T5869] usb 3-1: USB disconnect, device number 15
[  140.422289][    C1] etas_es58x 1-1:0.2: es58x_check_rx_urb: Expected sequence 0xFECA for start of frame but got 0x015D.
[  140.433662][    C1] etas_es58x 1-1:0.2: es58x_check_rx_urb: Biggest expected size for rx urb_cmd is 7809 but receive a command of size 46447
[  140.446624][    C1] etas_es58x 1-1:0.2: es58x_split_urb_try_recovery: Recovery failed
[  140.454627][    C1] etas_es58x 1-1:0.2: es58x_split_urb() returned error -EBADMSG
[  140.462701][    C1] vkms_vblank_simulate: vblank timer overrun
[  140.472942][ T5530] etas_es58x 1-1:0.2 can0: bit-timing not yet defined
[  140.559524][ T5869] usb 2-1: USB disconnect, device number 21
[  140.606174][ T5869] Unregistered device Sky IT Digital Key (green led)
[  140.614488][ T5869] as10x_usb: device has been disconnected
[  140.630082][    C1] etas_es58x 1-1:0.2: es58x_read_bulk_callback: error -EPROTO. Device unplugged?
[  140.639365][    C1] etas_es58x 1-1:0.2: es58x_read_bulk_callback: error -EPROTO. Device unplugged?
[  140.648653][    C1] etas_es58x 1-1:0.2: es58x_read_bulk_callback: error -EPROTO. Device unplugged?
[  140.657896][    C1] etas_es58x 1-1:0.2: es58x_read_bulk_callback: error -EPROTO. Device unplugged?
[  140.667132][    C1] etas_es58x 1-1:0.2: es58x_read_bulk_callback: error -EPROTO. Device unplugged?
[  140.676373][    C1] etas_es58x 1-1:0.2 can0: es58x_write_bulk_callback: error -EPROTO
[  140.684831][    C1] vkms_vblank_simulate: vblank timer overrun
[  140.684919][ T5530] etas_es58x 1-1:0.2 can0: es58x_open: Could not open the network device: -EINVAL
[  140.693440][ T5959] usb 1-1: USB disconnect, device number 22
[  140.709579][ T5959] etas_es58x 1-1:0.2: Disconnecting syz syz
[  140.873137][ T5185] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  141.613214][    T9] usb 1-1: new full-speed USB device number 23 using dummy_hcd
[  141.653162][ T6983] netlink: 36 bytes leftover after parsing attributes in process `syz.2.378'.
[  141.685688][ T6983] 9pnet_fd: Insufficient options for proto=fd
[  141.809302][    T9] usb 1-1: config 6 has an invalid interface number: 150 but max is 0
[  141.832878][    T9] usb 1-1: config 6 has an invalid interface association descriptor of length 2, skipping
[  141.857813][    T9] usb 1-1: config 6 has no interface number 0
[  141.864097][    T9] usb 1-1: config 6 interface 150 altsetting 3 endpoint 0x6 has an invalid bInterval 0, changing to 4
[  141.901110][    T9] usb 1-1: config 6 interface 150 has no altsetting 0
[  141.926884][    T9] usb 1-1: New USB device found, idVendor=12d1, idProduct=76d8, bcdDevice=5d.76
[  141.941587][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.959899][    T9] usb 1-1: Product: syz
[  141.964631][    T9] usb 1-1: Manufacturer: syz
[  141.969295][    T9] usb 1-1: SerialNumber: syz
[  142.220406][    T9] usb 1-1: USB disconnect, device number 23
[  142.663652][ T5869] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  142.705846][    T9] usb 4-1: new full-speed USB device number 23 using dummy_hcd
[  142.833166][ T5869] usb 3-1: Using ep0 maxpacket: 16
[  142.847380][ T5869] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  142.873164][ T5869] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  142.893493][ T5869] usb 3-1: config 0 interface 0 has no altsetting 0
[  142.905112][    T9] usb 4-1: not running at top speed; connect to a high speed hub
[  142.921336][ T5869] usb 3-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  142.933192][    T9] usb 4-1: config 9 has an invalid interface number: 133 but max is 0
[  142.941411][    T9] usb 4-1: config 9 has no interface number 0
[  142.964507][ T5869] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.973309][    T9] usb 4-1: config 9 interface 133 has no altsetting 0
[  142.989041][    T9] usb 4-1: New USB device found, idVendor=050d, idProduct=0121, bcdDevice=93.9b
[  143.003619][ T5869] usb 3-1: config 0 descriptor??
[  143.026757][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.040429][    T9] usb 4-1: Product: syz
[  143.056544][    T9] usb 4-1: Manufacturer: syz
[  143.061247][    T9] usb 4-1: SerialNumber: syz
[  143.311946][ T7004] binder: BINDER_SET_CONTEXT_MGR already set
[  143.323181][ T7004] binder: 7003:7004 ioctl 4018620d 200000000040 returned -16
[  143.381717][    T9] pegasus 4-1:9.133: probe with driver pegasus failed with error -71
[  143.416811][    T9] usb 4-1: USB disconnect, device number 23
[  143.850252][ T7036] netlink: 48 bytes leftover after parsing attributes in process `syz.0.387'.
[  143.896252][ T7002] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  143.916202][ T7002] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  143.947423][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  143.973273][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  143.993578][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  144.000353][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  144.043217][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  144.050000][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  144.073279][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  144.080152][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  144.118019][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  144.154308][ T5869] kye 0003:0458:0138.0005: unknown main item tag 0x0
[  144.213545][ T5869] kye 0003:0458:0138.0005: unexpected long global item
[  144.235421][ T5869] kye 0003:0458:0138.0005: parse failed
[  144.242074][ T5869] kye 0003:0458:0138.0005: probe with driver kye failed with error -22
[  144.294352][ T7049] dvmrp5: entered allmulticast mode
[  144.355385][ T7051] openvswitch: netlink: Multiple metadata blocks provided
[  144.387370][ T7055] netlink: 4 bytes leftover after parsing attributes in process `syz.1.393'.
[  144.433345][ T5959] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  144.525467][ T7059] netlink: 4 bytes leftover after parsing attributes in process `syz.1.395'.
[  144.593203][ T5959] usb 4-1: Using ep0 maxpacket: 16
[  144.601075][ T5959] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  144.608829][ T7061] FAULT_INJECTION: forcing a failure.
[  144.608829][ T7061] name failslab, interval 1, probability 0, space 0, times 0
[  144.614313][ T5959] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  144.626099][ T7061] CPU: 0 UID: 0 PID: 7061 Comm: syz.0.396 Not tainted syzkaller #0 PREEMPT(full) 
[  144.626130][ T7061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  144.626146][ T7061] Call Trace:
[  144.626156][ T7061]  <TASK>
[  144.626166][ T7061]  dump_stack_lvl+0x189/0x250
[  144.626210][ T7061]  ? __pfx____ratelimit+0x10/0x10
[  144.626238][ T7061]  ? __pfx_dump_stack_lvl+0x10/0x10
[  144.626276][ T7061]  ? __pfx__printk+0x10/0x10
[  144.626316][ T7061]  ? __pfx___might_resched+0x10/0x10
[  144.626351][ T7061]  ? fs_reclaim_acquire+0x7d/0x100
[  144.626379][ T7061]  should_fail_ex+0x414/0x560
[  144.626424][ T7061]  should_failslab+0xa8/0x100
[  144.626452][ T7061]  kmem_cache_alloc_node_noprof+0x77/0x710
[  144.626491][ T7061]  ? dup_task_struct+0x52/0x830
[  144.626531][ T7061]  dup_task_struct+0x52/0x830
[  144.626569][ T7061]  ? lockdep_hardirqs_on+0x9c/0x150
[  144.626602][ T7061]  copy_process+0x54b/0x3c00
[  144.626667][ T7061]  ? __pfx_copy_process+0x10/0x10
[  144.626715][ T7061]  vhost_task_create+0x1ce/0x320
[  144.626752][ T7061]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  144.626790][ T7061]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  144.626828][ T7061]  ? __pfx_vhost_task_create+0x10/0x10
[  144.626874][ T7061]  ? __pfx_vhost_task_fn+0x10/0x10
[  144.626940][ T7061]  kvm_mmu_post_init_vm+0x14c/0x300
[  144.626969][ T7061]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  144.627001][ T7061]  ? __mutex_trylock_common+0x153/0x260
[  144.627041][ T7061]  ? __pfx___mutex_trylock_common+0x10/0x10
[  144.627074][ T7061]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  144.627103][ T7061]  ? rcu_is_watching+0x15/0xb0
[  144.627135][ T7061]  ? trace_contention_end+0x39/0x120
[  144.627168][ T7061]  ? look_up_lock_class+0x74/0x170
[  144.627199][ T7061]  ? register_lock_class+0x51/0x320
[  144.627234][ T7061]  ? __lock_acquire+0xab9/0xd20
[  144.627296][ T7061]  kvm_vcpu_ioctl+0x95c/0xe90
[  144.627327][ T7061]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  144.627384][ T7061]  ? __fget_files+0x2a/0x420
[  144.627420][ T7061]  ? __fget_files+0x3a0/0x420
[  144.627447][ T7061]  ? __fget_files+0x2a/0x420
[  144.627480][ T7061]  ? bpf_lsm_file_ioctl+0x9/0x20
[  144.627510][ T7061]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  144.627533][ T7061]  __se_sys_ioctl+0xfc/0x170
[  144.627575][ T7061]  do_syscall_64+0xfa/0xfa0
[  144.627604][ T7061]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.627628][ T7061]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  144.627651][ T7061]  ? clear_bhb_loop+0x60/0xb0
[  144.627680][ T7061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.627704][ T7061] RIP: 0033:0x7ffb32f8eec9
[  144.627725][ T7061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.627747][ T7061] RSP: 002b:00007ffb33dd0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.627771][ T7061] RAX: ffffffffffffffda RBX: 00007ffb331e5fa0 RCX: 00007ffb32f8eec9
[  144.627789][ T7061] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  144.627803][ T7061] RBP: 00007ffb33dd0090 R08: 0000000000000000 R09: 0000000000000000
[  144.627819][ T7061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.627832][ T7061] R13: 00007ffb331e6038 R14: 00007ffb331e5fa0 R15: 00007ffc326cdd98
[  144.627875][ T7061]  </TASK>
[  144.963167][ T5959] usb 4-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  144.972272][ T5959] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.985164][ T5959] usb 4-1: config 0 descriptor??
[  145.445418][ T5959] corsair 0003:1B1C:1B02.0006: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.3-1/input0
[  145.562662][ T1220] usb 3-1: USB disconnect, device number 16
[  145.609725][ T5959] corsair 0003:1B1C:1B02.0006: Failed to get K90 initial state (error -32).
[  145.621795][ T7047] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  145.649765][ T7047] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  145.671674][ T5185] Bluetooth: hci3: Malformed LE Event: 0x0d
[  145.709894][ T7047] netlink: 'syz.3.391': attribute type 1 has an invalid length.
[  145.723688][ T7047] netlink: 'syz.3.391': attribute type 101 has an invalid length.
[  145.735086][ T7047] netlink: 832 bytes leftover after parsing attributes in process `syz.3.391'.
[  145.819811][ T7086] netlink: 4 bytes leftover after parsing attributes in process `syz.1.404'.
[  145.835582][ T5869] usb 4-1: USB disconnect, device number 24
[  146.063296][    T9] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  146.232874][    T9] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  146.242186][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.250452][    T9] usb 3-1: Product: syz
[  146.256821][    T9] usb 3-1: Manufacturer: syz
[  146.261526][    T9] usb 3-1: SerialNumber: syz
[  146.278830][    T9] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  146.310792][ T5954] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  146.765652][ T7084] syz.2.405 (7084) used obsolete PPPIOCDETACH ioctl
[  147.418754][ T7103] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  147.433470][ T5954] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  147.449271][ T5954] ath9k_htc: Failed to initialize the device
[  147.456330][ T7103] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  147.498521][ T5954] usb 3-1: ath9k_htc: USB layer deinitialized
[  147.693196][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  147.693216][   T30] audit: type=1326 audit(147.617:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7107 comm="syz.2.412" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9c0338eec9 code=0x0
[  147.888905][ T7112] FAULT_INJECTION: forcing a failure.
[  147.888905][ T7112] name failslab, interval 1, probability 0, space 0, times 0
[  147.917976][ T7114] netlink: 4 bytes leftover after parsing attributes in process `syz.1.414'.
[  147.927372][ T7112] CPU: 0 UID: 0 PID: 7112 Comm: syz.3.413 Not tainted syzkaller #0 PREEMPT(full) 
[  147.927405][ T7112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  147.927417][ T7112] Call Trace:
[  147.927425][ T7112]  <TASK>
[  147.927433][ T7112]  dump_stack_lvl+0x189/0x250
[  147.927470][ T7112]  ? __pfx____ratelimit+0x10/0x10
[  147.927494][ T7112]  ? __pfx_dump_stack_lvl+0x10/0x10
[  147.927528][ T7112]  ? __pfx__printk+0x10/0x10
[  147.927564][ T7112]  ? __pfx___might_resched+0x10/0x10
[  147.927591][ T7112]  ? fs_reclaim_acquire+0x7d/0x100
[  147.927618][ T7112]  should_fail_ex+0x414/0x560
[  147.927658][ T7112]  should_failslab+0xa8/0x100
[  147.927683][ T7112]  kmem_cache_alloc_node_noprof+0x77/0x710
[  147.927716][ T7112]  ? __alloc_skb+0x112/0x2d0
[  147.927745][ T7112]  __alloc_skb+0x112/0x2d0
[  147.927773][ T7112]  netlink_sendmsg+0x5c6/0xb30
[  147.927809][ T7112]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.927838][ T7112]  ? aa_sock_msg_perm+0xf1/0x1d0
[  147.927867][ T7112]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  147.927890][ T7112]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.927916][ T7112]  __sock_sendmsg+0x21c/0x270
[  147.927952][ T7112]  ____sys_sendmsg+0x505/0x830
[  147.927985][ T7112]  ? __pfx_____sys_sendmsg+0x10/0x10
[  147.928030][ T7112]  ? import_iovec+0x74/0xa0
[  147.928063][ T7112]  ___sys_sendmsg+0x21f/0x2a0
[  147.928093][ T7112]  ? __pfx____sys_sendmsg+0x10/0x10
[  147.928157][ T7112]  ? __fget_files+0x2a/0x420
[  147.928183][ T7112]  ? __fget_files+0x3a0/0x420
[  147.928220][ T7112]  __x64_sys_sendmsg+0x19b/0x260
[  147.928251][ T7112]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  147.928290][ T7112]  ? __pfx_ksys_write+0x10/0x10
[  147.928316][ T7112]  ? do_syscall_64+0xbe/0xfa0
[  147.928347][ T7112]  do_syscall_64+0xfa/0xfa0
[  147.928372][ T7112]  ? lockdep_hardirqs_on+0x9c/0x150
[  147.928397][ T7112]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.928418][ T7112]  ? clear_bhb_loop+0x60/0xb0
[  147.928445][ T7112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.928466][ T7112] RIP: 0033:0x7f574278eec9
[  147.928486][ T7112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.928503][ T7112] RSP: 002b:00007f5743637038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  147.928527][ T7112] RAX: ffffffffffffffda RBX: 00007f57429e5fa0 RCX: 00007f574278eec9
[  147.928543][ T7112] RDX: 0000000000000004 RSI: 0000200000000800 RDI: 0000000000000004
[  147.928556][ T7112] RBP: 00007f5743637090 R08: 0000000000000000 R09: 0000000000000000
[  147.928570][ T7112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.928582][ T7112] R13: 00007f57429e6038 R14: 00007f57429e5fa0 R15: 00007fffe4c76568
[  147.928617][ T7112]  </TASK>
[  148.664043][    T9] usb 3-1: USB disconnect, device number 17
[  148.933190][ T5954] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  149.044561][    T9] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  149.087376][ T5954] usb 2-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  149.104462][ T5954] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.112720][ T5954] usb 2-1: Product: syz
[  149.117481][ T5954] usb 2-1: Manufacturer: syz
[  149.122209][ T5954] usb 2-1: SerialNumber: syz
[  149.163339][ T1220] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  149.188716][   T30] audit: type=1326 audit(149.117:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7139 comm="syz.3.426" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f574278eec9 code=0x0
[  149.215548][    T9] usb 3-1: config 0 has an invalid interface number: 74 but max is 0
[  149.223892][    T9] usb 3-1: config 0 has no interface number 0
[  149.232415][    T9] usb 3-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice= 9.99
[  149.242553][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.252860][    T9] usb 3-1: Product: syz
[  149.257464][    T9] usb 3-1: Manufacturer: syz
[  149.262414][    T9] usb 3-1: SerialNumber: syz
[  149.270516][    T9] usb 3-1: config 0 descriptor??
[  149.313212][ T1220] usb 1-1: Using ep0 maxpacket: 8
[  149.320314][ T1220] usb 1-1: config 0 has an invalid interface number: 52 but max is 0
[  149.329038][ T1220] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  149.339400][ T1220] usb 1-1: config 0 has no interface number 0
[  149.346535][ T1220] usb 1-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  149.358427][ T1220] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  149.369488][ T1220] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  149.381770][ T1220] usb 1-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  149.395015][ T1220] usb 1-1: config 0 interface 52 has no altsetting 0
[  149.401848][ T1220] usb 1-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[  149.410974][ T1220] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.422626][ T1220] usb 1-1: config 0 descriptor??
[  149.473503][ T5959] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  149.486967][ T7129] workqueue: name exceeds WQ_NAME_LEN. Truncating to: žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–
[  149.540841][ T7129] nfs: Bad value for 'source'
[  149.553008][ T7129] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  149.564272][ T7129] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.574690][ T7129] netlink: 256 bytes leftover after parsing attributes in process `syz.2.419'.
[  149.598282][ T7129] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  149.610919][ T7129] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.629390][    T9] f81534a_ctrl 3-1:0.74: failed to set register 0x116: -5
[  149.636019][ T5959] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.647689][    T9] f81534a_ctrl 3-1:0.74: failed to enable ports: -5
[  149.662445][ T1220] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.52/input/input8
[  149.666915][    T9] f81534a_ctrl 3-1:0.74: probe with driver f81534a_ctrl failed with error -5
[  149.679341][ T5959] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.715079][ T5959] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  149.730232][    T9] usb 3-1: USB disconnect, device number 18
[  149.759449][ T5959] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  149.771917][ T5959] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.834921][ T5959] usb 4-1: config 0 descriptor??
[  149.867792][ T7134] syzkaller1: entered promiscuous mode
[  149.873877][ T7134] syzkaller1: entered allmulticast mode
[  149.897600][ T7134] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  149.911523][ T7134] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.964014][ T5954] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[  149.980429][ T5954] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  149.996398][ T5869] usb 1-1: USB disconnect, device number 24
[  150.004384][ T5954] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  150.035811][ T5954] lan78xx 2-1:1.0: probe with driver lan78xx failed with error -32
[  150.251894][ T7154] netlink: 28 bytes leftover after parsing attributes in process `syz.2.427'.
[  150.275575][ T5959] plantronics 0003:047F:FFFF.0007: reserved main item tag 0xd
[  150.307719][ T5959] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  150.326634][ T7156] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  150.370052][ T7156] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  150.432124][ T7160] tipc: Started in network mode
[  150.444318][ T7160] tipc: Node identity b6cff295302a, cluster identity 4711
[  150.465086][ T7160] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  150.486341][ T7158] tipc: Disabling bearer <eth:syzkaller0>
[  150.757449][ T7170] gfs2: gfs2 mount does not exist
[  151.033796][ T5869] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  151.195468][ T5869] usb 3-1: Using ep0 maxpacket: 32
[  151.203375][ T5869] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.219290][ T5869] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.233716][ T5869] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  151.242933][ T5869] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.257535][ T5869] usb 3-1: config 0 descriptor??
[  151.334729][ T5959] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  151.494068][ T5959] usb 1-1: Using ep0 maxpacket: 8
[  151.508904][ T5959] usb 1-1: config 6 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  151.518898][ T5959] usb 1-1: config 6 interface 0 altsetting 0 has an endpoint descriptor with address 0xEC, changing to 0x8C
[  151.531131][ T5959] usb 1-1: config 6 interface 0 altsetting 0 endpoint 0x8C has invalid maxpacket 36441, setting to 64
[  151.545053][ T5959] usb 1-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  151.554470][ T5959] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.562514][ T5959] usb 1-1: Product: syz
[  151.566784][ T5959] usb 1-1: Manufacturer: syz
[  151.571417][ T5959] usb 1-1: SerialNumber: syz
[  151.591749][ T5959] hso 1-1:6.0: Can't find BULK IN endpoint
[  151.683999][ T5869] savu 0003:1E7D:2D5A.0008: hiddev1,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  151.713625][ T1220] usb 4-1: reset high-speed USB device number 25 using dummy_hcd
[  151.788378][ T5955] usb 1-1: USB disconnect, device number 25
[  151.877389][ T5869] usb 3-1: USB disconnect, device number 19
[  152.326040][ T7206] netlink: 8 bytes leftover after parsing attributes in process `syz.3.438'.
[  152.569131][ T5955] usb 2-1: USB disconnect, device number 22
[  152.613200][ T5869] usb 1-1: new full-speed USB device number 26 using dummy_hcd
[  152.687975][ T7223] openvswitch: netlink: IPv6 tunnel dst address is zero
[  152.785189][ T5869] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  152.805933][ T5869] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 3
[  152.817472][ T5869] usb 1-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[  152.827461][ T5869] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.846788][ T5869] usb 1-1: config 0 descriptor??
[  152.970060][ T5959] usb 4-1: USB disconnect, device number 25
[  153.533239][ T5959] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  153.553596][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  153.572212][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  153.583586][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  153.605838][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  153.623667][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  153.632545][    T0] NOHZ tick-stop error: local softirq work is pending, handler #01!!!
[  153.644179][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  153.750473][ T5959] usb 4-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  153.770339][ T5959] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.779767][ T5959] usb 4-1: Product: syz
[  153.784405][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  153.803803][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  153.818550][ T5959] usb 4-1: Manufacturer: syz
[  153.826566][ T5959] usb 4-1: SerialNumber: syz
[  153.836836][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  154.283242][ T5869] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  154.413224][ T5869] usb 2-1: device descriptor read/64, error -71
[  154.653176][ T5869] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  154.793159][ T5869] usb 2-1: device descriptor read/64, error -71
[  154.903995][ T5869] usb usb2-port1: attempt power cycle
[  155.074389][ T7245] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  155.084585][ T7245] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  155.243161][ T5869] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  155.263828][ T5869] usb 2-1: device descriptor read/8, error -71
[  155.294862][ T5959] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[  155.379955][ T5954] usb 1-1: USB disconnect, device number 26
[  155.431864][ T7255] openvswitch: netlink: IPv6 tunnel dst address is zero
[  155.505683][ T5869] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  155.517061][ T5959] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00001004. ret = -EPROTO
[  155.532847][ T5959] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[  155.546734][ T5869] usb 2-1: device descriptor read/8, error -71
[  155.547385][ T5959] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  155.567951][ T5959] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  155.572191][ T7257] kvm: kvm [7256]: vcpu7, guest rIP: 0x9127 Unhandled WRMSR(0x187) = 0xf4
[  155.588536][ T5959] lan78xx 4-1:1.0: probe with driver lan78xx failed with error -71
[  155.592524][ T7257] kvm: kvm [7256]: vcpu7, guest rIP: 0x9133 Unhandled WRMSR(0x187) = 0x2000
[  155.605731][ T5959] usb 4-1: USB disconnect, device number 26
[  155.613737][ T7257] kvm: kvm [7256]: vcpu7, guest rIP: 0x9127 Unhandled WRMSR(0x186) = 0xf4
[  155.622442][ T7257] kvm: kvm [7256]: vcpu7, guest rIP: 0x9133 Unhandled WRMSR(0x186) = 0x2000
[  155.653475][ T5869] usb usb2-port1: unable to enumerate USB device
[  155.803210][ T1220] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  155.933154][ T1220] usb 1-1: device descriptor read/64, error -71
[  156.193240][ T1220] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  156.219540][ T7272] netlink: 32 bytes leftover after parsing attributes in process `syz.2.460'.
[  156.289926][ T7274] netlink: 140 bytes leftover after parsing attributes in process `syz.2.460'.
[  156.333155][ T1220] usb 1-1: device descriptor read/64, error -71
[  156.444196][ T1220] usb usb1-port1: attempt power cycle
[  156.785171][ T1220] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  156.813893][ T1220] usb 1-1: device descriptor read/8, error -71
[  157.053198][ T1220] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  157.105740][ T1220] usb 1-1: device descriptor read/8, error -71
[  157.224616][ T1220] usb usb1-port1: unable to enumerate USB device
[  157.253608][ T5959] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  157.425825][ T5959] usb 4-1: Using ep0 maxpacket: 16
[  157.433108][ T5959] usb 4-1: config 0 descriptor has 1 excess byte, ignoring
[  157.440434][ T5959] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 65516, setting to 1024
[  157.451793][ T5959] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024
[  157.461918][ T5959] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 223
[  157.475570][ T5959] usb 4-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[  157.484754][ T5959] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.492782][ T5959] usb 4-1: Product: syz
[  157.497016][ T5959] usb 4-1: Manufacturer: syz
[  157.501690][ T5959] usb 4-1: SerialNumber: syz
[  157.509444][ T5959] usb 4-1: config 0 descriptor??
[  157.515303][ T7277] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  157.522606][ T7277] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  157.542674][ T5959] mcba_usb 4-1:0.0: Microchip CAN BUS Analyzer connected
[  157.549900][    C1] mcba_usb 4-1:0.0 can0: Tx URB aborted (-71)
[  157.549985][    C1] mcba_usb 4-1:0.0 can0: Tx URB aborted (-71)
[  157.563243][ T5954] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  157.732549][ T5869] usb 4-1: USB disconnect, device number 27
[  157.741827][ T5954] usb 2-1: config 0 has an invalid interface number: 25 but max is 0
[  157.754109][ T5869] mcba_usb 4-1:0.0 can0: device disconnected
[  157.762869][ T5954] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  157.779208][ T5954] usb 2-1: config 0 has no interface number 0
[  157.790951][ T5954] usb 2-1: config 0 interface 25 altsetting 205 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  157.809262][ T5954] usb 2-1: config 0 interface 25 has no altsetting 0
[  157.820019][ T5954] usb 2-1: New USB device found, idVendor=1b3b, idProduct=2951, bcdDevice=9e.ee
[  157.834926][ T5954] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.847523][ T5954] usb 2-1: Product: syz
[  157.853349][ T5954] usb 2-1: Manufacturer: syz
[  157.858304][ T5954] usb 2-1: SerialNumber: syz
[  157.874324][ T5954] usb 2-1: config 0 descriptor??
[  157.888362][ T5954] uvcvideo 2-1:0.25: Found Unit with invalid ID 0
[  158.087391][ T5954] uvcvideo 2-1:0.25: Found UVC 0.00 device syz (1b3b:2951)
[  158.096042][ T5954] uvcvideo 2-1:0.25: No valid video chain found.
[  158.291625][ T7289] netlink: 52 bytes leftover after parsing attributes in process `syz.1.465'.
[  158.331777][ T7289] netlink: 52 bytes leftover after parsing attributes in process `syz.1.465'.
[  158.354030][ T7289] netlink: 52 bytes leftover after parsing attributes in process `syz.1.465'.
[  158.384943][ T7319] netlink: 64 bytes leftover after parsing attributes in process `syz.1.465'.
[  158.414676][ T7319] block nbd0: not configured, cannot reconfigure
[  158.693492][ T5959] usb 2-1: USB disconnect, device number 27
[  159.017788][ T1220] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  159.181803][ T1220] usb 4-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  159.201424][ T1220] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.211817][ T1220] usb 4-1: Product: syz
[  159.220439][ T1220] usb 4-1: Manufacturer: syz
[  159.233355][ T1220] usb 4-1: SerialNumber: syz
[  159.302763][ T7350] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  159.803904][ T5954] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  159.820053][ T7363] mmap: syz.3.471 (7363) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  159.974432][ T5954] usb 3-1: Using ep0 maxpacket: 8
[  159.987471][ T5954] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  159.998526][ T5869] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  160.007979][ T5954] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  160.020557][ T5954] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  160.034517][ T5954] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  160.044605][ T5954] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  160.060748][ T5954] usb 3-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  160.073099][ T5954] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.093114][ T5954] usb 3-1: Product: syz
[  160.097375][ T5954] usb 3-1: Manufacturer: syz
[  160.114072][ T5954] usb 3-1: SerialNumber: syz
[  160.126793][ T5954] usb 3-1: config 0 descriptor??
[  160.151947][ T5954] input: KB Gear Tablet as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input10
[  160.203316][ T5869] usb 1-1: Using ep0 maxpacket: 16
[  160.214508][ T5869] usb 1-1: config 0 has an invalid interface number: 8 but max is 0
[  160.224602][ T5869] usb 1-1: config 0 has no interface number 0
[  160.230789][ T5869] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  160.253187][ T5869] usb 1-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  160.262319][ T5869] usb 1-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  160.278663][ T5869] usb 1-1: Product: syz
[  160.282951][ T5869] usb 1-1: SerialNumber: syz
[  160.291597][ T5869] usb 1-1: config 0 descriptor??
[  160.302604][ T5869] cm109 1-1:0.8: invalid payload size 255, expected 4
[  160.311540][ T5869] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.8/input/input11
[  160.383558][   T10] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  160.403532][ T7358] befs: (nbd2): No write support. Marking filesystem read-only
[  160.412250][ T7358] befs: (nbd2): unable to read superblock
[  160.498974][ T5869] usb 3-1: USB disconnect, device number 20
[  160.556769][   T10] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  160.571857][   T10] usb 2-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[  160.581415][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.589783][   T10] usb 2-1: Product: syz
[  160.594086][   T10] usb 2-1: Manufacturer: syz
[  160.598747][   T10] usb 2-1: SerialNumber: syz
[  160.606943][   T10] usb 2-1: config 0 descriptor??
[  160.714132][ T7360] netlink: 'syz.0.481': attribute type 4 has an invalid length.
[  160.842427][ T7367] mkiss: ax0: crc mode is auto.
[  160.917571][ T5869] usb 2-1: USB disconnect, device number 28
[  161.093839][ T7374] program syz.2.485 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  161.311878][ T7379] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  161.446641][ T7382] netlink: 4 bytes leftover after parsing attributes in process `syz.2.488'.
[  161.632438][ T7385] can0: slcan on ptm0.
[  161.736181][ T7385] can0 (unregistered): slcan off ptm0.
[  161.830437][ T1220] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO
[  161.867113][ T5978] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  161.876121][ T1220] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -71
[  161.898908][ T1220] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  161.927701][ T1220] lan78xx 4-1:1.0: probe with driver lan78xx failed with error -71
[  161.978656][ T1220] usb 4-1: USB disconnect, device number 28
[  162.043209][ T5978] usb 2-1: device descriptor read/64, error -71
[  162.228252][ T7409] input: syz1 as /devices/virtual/input/input12
[  162.316339][ T5978] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  162.463258][ T5978] usb 2-1: device descriptor read/64, error -71
[  162.507717][ T7417] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  162.587043][ T5978] usb usb2-port1: attempt power cycle
[  162.735763][    C0] cm109 1-1:0.8: cm109_urb_irq_callback: urb status -71
[  162.742910][    C0] ------------[ cut here ]------------
[  162.748751][    C0] URB ffff8880594bc400 submitted while active
[  162.755969][    C0] WARNING: drivers/usb/core/urb.c:380 at usb_submit_urb+0xf8c/0x18b0, CPU#0: syz.0.481/7371
[  162.766136][    C0] Modules linked in:
[  162.770467][    C0] CPU: 0 UID: 0 PID: 7371 Comm: syz.0.481 Not tainted syzkaller #0 PREEMPT(full) 
[  162.779703][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  162.789802][    C0] RIP: 0010:usb_submit_urb+0xf8c/0x18b0
[  162.795440][    C0] Code: 00 00 00 e8 46 33 82 fa e9 25 f1 ff ff e8 3c 33 82 fa c6 05 d0 10 91 08 01 90 48 c7 c7 e0 f1 56 8c 48 89 de e8 e5 a1 45 fa 90 <0f> 0b 90 90 e9 ec f0 ff ff e8 16 33 82 fa c6 05 f7 6e a7 08 01 41
[  162.815090][    C0] RSP: 0018:ffffc90000007878 EFLAGS: 00010046
[  162.821185][    C0] RAX: 4224aa085212e300 RBX: ffff8880594bc400 RCX: 0000000000040000
[  162.829185][    C0] RDX: ffffc900021e1000 RSI: 00000000000040ac RDI: 00000000000040ad
[  162.837175][    C0] RBP: 000000000000000f R08: ffff8880b8624293 R09: 1ffff110170c4852
[  162.845175][    C0] R10: dffffc0000000000 R11: ffffed10170c4853 R12: 0000000000000820
[  162.853163][    C0] R13: ffff8880582ae030 R14: ffff8880594bc408 R15: dffffc0000000000
[  162.861234][    C0] FS:  0000000000000000(0000) GS:ffff8881257a8000(0000) knlGS:0000000000000000
[  162.870359][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  162.877215][    C0] CR2: 00007f57435156c0 CR3: 0000000072af8000 CR4: 00000000003526f0
[  162.885201][    C0] Call Trace:
[  162.888489][    C0]  <IRQ>
[  162.891346][    C0]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[  162.896738][    C0]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  162.902654][    C0]  ? kcov_remote_start+0x97/0x7f0
[  162.907700][    C0]  cm109_urb_irq_callback+0x709/0xca0
[  162.913108][    C0]  __usb_hcd_giveback_urb+0x376/0x540
[  162.918513][    C0]  dummy_timer+0x85f/0x44c0
[  162.923069][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  162.928472][    C0]  ? __pfx_pwq_dec_nr_in_flight+0x10/0x10
[  162.934230][    C0]  ? __pfx_dummy_timer+0x10/0x10
[  162.939192][    C0]  ? __pfx_dummy_timer+0x10/0x10
[  162.944141][    C0]  ? __pfx_dummy_timer+0x10/0x10
[  162.949096][    C0]  __hrtimer_run_queues+0x52c/0xc60
[  162.954333][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  162.960076][    C0]  ? read_tsc+0x9/0x20
[  162.964160][    C0]  ? __pfx_tasklet_action_common+0x10/0x10
[  162.970007][    C0]  hrtimer_run_softirq+0x187/0x2b0
[  162.975144][    C0]  handle_softirqs+0x286/0x870
[  162.979931][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  162.984729][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  162.990111][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  162.995328][    C0]  __irq_exit_rcu+0xca/0x1f0
[  162.999945][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  163.005176][    C0]  irq_exit_rcu+0x9/0x30
[  163.009444][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  163.015096][    C0]  </IRQ>
[  163.018042][    C0]  <TASK>
[  163.020990][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  163.027001][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa8/0x110
[  163.033535][    C0] Code: 74 05 e8 2b 42 3c f6 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4f f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> d3 ca 04 f6 65 8b 05 dc 78 5b 07 85 c0 74 40 48 c7 04 24 0e 36
[  163.053334][    C0] RSP: 0018:ffffc9001a3176c0 EFLAGS: 00000206
[  163.059428][    C0] RAX: 4224aa085212e300 RBX: 0000000000000a06 RCX: 4224aa085212e300
[  163.067418][    C0] RDX: 0000000000000006 RSI: ffffffff8dc97dd0 RDI: 0000000000000001
[  163.075402][    C0] RBP: ffffc9001a317750 R08: ffffffff8fe57b77 R09: 1ffffffff1fcaf6e
[  163.083505][    C0] R10: dffffc0000000000 R11: fffffbfff1fcaf6f R12: dffffc0000000000
[  163.091492][    C0] R13: ffff88814d09e620 R14: ffff88802c198860 R15: 1ffff92003462ed8
[  163.099583][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  163.105949][    C0]  ? __kmalloc_noprof+0x432/0x7f0
[  163.111012][    C0]  raw_queue_event+0x1ed/0x2e0
[  163.115867][    C0]  ? __pfx_dummy_pullup+0x10/0x10
[  163.120914][    C0]  gadget_disconnect+0x51/0xc0
[  163.125738][    C0]  usb_gadget_disconnect_locked+0x233/0x4b0
[  163.131657][    C0]  gadget_unbind_driver+0xc4/0x430
[  163.136881][    C0]  ? __pfx_gadget_unbind_driver+0x10/0x10
[  163.142621][    C0]  device_release_driver_internal+0x46f/0x800
[  163.148722][    C0]  driver_detach+0x1f3/0x2d0
[  163.153334][    C0]  bus_remove_driver+0x226/0x2f0
[  163.158301][    C0]  usb_gadget_unregister_driver+0x4e/0x70
[  163.164048][    C0]  raw_release+0xd7/0x260
[  163.168486][    C0]  ? __pfx_raw_release+0x10/0x10
[  163.173460][    C0]  __fput+0x44c/0xa70
[  163.177486][    C0]  task_work_run+0x1d4/0x260
[  163.182117][    C0]  ? __pfx_task_work_run+0x10/0x10
[  163.187272][    C0]  do_exit+0x6b5/0x2300
[  163.191464][    C0]  ? do_raw_spin_lock+0x121/0x290
[  163.196523][    C0]  ? __pfx_do_exit+0x10/0x10
[  163.201176][    C0]  do_group_exit+0x21c/0x2d0
[  163.205834][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.211072][    C0]  get_signal+0x1285/0x1340
[  163.215614][    C0]  arch_do_signal_or_restart+0xa0/0x790
[  163.221191][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  163.227378][    C0]  ? __se_sys_futex+0x36f/0x400
[  163.232257][    C0]  ? exit_to_user_mode_loop+0x40/0x130
[  163.237732][    C0]  exit_to_user_mode_loop+0x72/0x130
[  163.243053][    C0]  do_syscall_64+0x2bd/0xfa0
[  163.247708][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.253200][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.259301][    C0]  ? clear_bhb_loop+0x60/0xb0
[  163.264089][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.269994][    C0] RIP: 0033:0x7ffb32f8eec9
[  163.274421][    C0] Code: Unable to access opcode bytes at 0x7ffb32f8ee9f.
[  163.281459][    C0] RSP: 002b:00007ffb33dae0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  163.289898][    C0] RAX: fffffffffffffe00 RBX: 00007ffb331e6098 RCX: 00007ffb32f8eec9
[  163.297888][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ffb331e6098
[  163.305970][    C0] RBP: 00007ffb331e6090 R08: 0000000000000000 R09: 0000000000000000
[  163.314130][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.322115][    C0] R13: 00007ffb331e6128 R14: 00007ffc326cdcb0 R15: 00007ffc326cdd98
[  163.330152][    C0]  </TASK>
[  163.333186][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  163.340493][    C0] CPU: 0 UID: 0 PID: 7371 Comm: syz.0.481 Not tainted syzkaller #0 PREEMPT(full) 
[  163.349886][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  163.359974][    C0] Call Trace:
[  163.363266][    C0]  <IRQ>
[  163.366119][    C0]  dump_stack_lvl+0x99/0x250
[  163.370740][    C0]  ? __asan_memcpy+0x40/0x70
[  163.375356][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.380590][    C0]  ? __pfx__printk+0x10/0x10
[  163.385220][    C0]  vpanic+0x237/0x6d0
[  163.389219][    C0]  ? __pfx_vpanic+0x10/0x10
[  163.393738][    C0]  ? is_bpf_text_address+0x26/0x2b0
[  163.398970][    C0]  panic+0xb9/0xc0
[  163.402708][    C0]  ? __pfx_panic+0x10/0x10
[  163.407172][    C0]  __warn+0x334/0x4c0
[  163.411174][    C0]  ? usb_submit_urb+0xf8c/0x18b0
[  163.416139][    C0]  ? usb_submit_urb+0xf8c/0x18b0
[  163.421104][    C0]  report_bug+0x2be/0x4f0
[  163.425454][    C0]  ? usb_submit_urb+0xf8c/0x18b0
[  163.430420][    C0]  ? usb_submit_urb+0xf8c/0x18b0
[  163.435394][    C0]  ? usb_submit_urb+0xf8e/0x18b0
[  163.440385][    C0]  handle_bug+0x84/0x160
[  163.444679][    C0]  exc_invalid_op+0x1a/0x50
[  163.449222][    C0]  asm_exc_invalid_op+0x1a/0x20
[  163.454178][    C0] RIP: 0010:usb_submit_urb+0xf8c/0x18b0
[  163.459753][    C0] Code: 00 00 00 e8 46 33 82 fa e9 25 f1 ff ff e8 3c 33 82 fa c6 05 d0 10 91 08 01 90 48 c7 c7 e0 f1 56 8c 48 89 de e8 e5 a1 45 fa 90 <0f> 0b 90 90 e9 ec f0 ff ff e8 16 33 82 fa c6 05 f7 6e a7 08 01 41
[  163.479381][    C0] RSP: 0018:ffffc90000007878 EFLAGS: 00010046
[  163.485472][    C0] RAX: 4224aa085212e300 RBX: ffff8880594bc400 RCX: 0000000000040000
[  163.493459][    C0] RDX: ffffc900021e1000 RSI: 00000000000040ac RDI: 00000000000040ad
[  163.501452][    C0] RBP: 000000000000000f R08: ffff8880b8624293 R09: 1ffff110170c4852
[  163.509443][    C0] R10: dffffc0000000000 R11: ffffed10170c4853 R12: 0000000000000820
[  163.517444][    C0] R13: ffff8880582ae030 R14: ffff8880594bc408 R15: dffffc0000000000
[  163.525454][    C0]  ? usb_submit_urb+0xf8b/0x18b0
[  163.530429][    C0]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[  163.535919][    C0]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  163.541864][    C0]  ? kcov_remote_start+0x97/0x7f0
[  163.546958][    C0]  cm109_urb_irq_callback+0x709/0xca0
[  163.552368][    C0]  __usb_hcd_giveback_urb+0x376/0x540
[  163.557774][    C0]  dummy_timer+0x85f/0x44c0
[  163.562328][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  163.567733][    C0]  ? __pfx_pwq_dec_nr_in_flight+0x10/0x10
[  163.573662][    C0]  ? __pfx_dummy_timer+0x10/0x10
[  163.578622][    C0]  ? __pfx_dummy_timer+0x10/0x10
[  163.583576][    C0]  ? __pfx_dummy_timer+0x10/0x10
[  163.588526][    C0]  __hrtimer_run_queues+0x52c/0xc60
[  163.593763][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  163.599501][    C0]  ? read_tsc+0x9/0x20
[  163.603586][    C0]  ? __pfx_tasklet_action_common+0x10/0x10
[  163.609423][    C0]  hrtimer_run_softirq+0x187/0x2b0
[  163.614557][    C0]  handle_softirqs+0x286/0x870
[  163.619349][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  163.624142][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  163.629545][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  163.634758][    C0]  __irq_exit_rcu+0xca/0x1f0
[  163.639373][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  163.644613][    C0]  irq_exit_rcu+0x9/0x30
[  163.648880][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  163.654546][    C0]  </IRQ>
[  163.657522][    C0]  <TASK>
[  163.660464][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  163.666475][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa8/0x110
[  163.673003][    C0] Code: 74 05 e8 2b 42 3c f6 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4f f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> d3 ca 04 f6 65 8b 05 dc 78 5b 07 85 c0 74 40 48 c7 04 24 0e 36
[  163.692627][    C0] RSP: 0018:ffffc9001a3176c0 EFLAGS: 00000206
[  163.698715][    C0] RAX: 4224aa085212e300 RBX: 0000000000000a06 RCX: 4224aa085212e300
[  163.706705][    C0] RDX: 0000000000000006 RSI: ffffffff8dc97dd0 RDI: 0000000000000001
[  163.714686][    C0] RBP: ffffc9001a317750 R08: ffffffff8fe57b77 R09: 1ffffffff1fcaf6e
[  163.722674][    C0] R10: dffffc0000000000 R11: fffffbfff1fcaf6f R12: dffffc0000000000
[  163.730671][    C0] R13: ffff88814d09e620 R14: ffff88802c198860 R15: 1ffff92003462ed8
[  163.738686][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  163.745044][    C0]  ? __kmalloc_noprof+0x432/0x7f0
[  163.750102][    C0]  raw_queue_event+0x1ed/0x2e0
[  163.754898][    C0]  ? __pfx_dummy_pullup+0x10/0x10
[  163.759953][    C0]  gadget_disconnect+0x51/0xc0
[  163.764732][    C0]  usb_gadget_disconnect_locked+0x233/0x4b0
[  163.770645][    C0]  gadget_unbind_driver+0xc4/0x430
[  163.775803][    C0]  ? __pfx_gadget_unbind_driver+0x10/0x10
[  163.781544][    C0]  device_release_driver_internal+0x46f/0x800
[  163.787640][    C0]  driver_detach+0x1f3/0x2d0
[  163.792251][    C0]  bus_remove_driver+0x226/0x2f0
[  163.797230][    C0]  usb_gadget_unregister_driver+0x4e/0x70
[  163.803007][    C0]  raw_release+0xd7/0x260
[  163.807400][    C0]  ? __pfx_raw_release+0x10/0x10
[  163.812548][    C0]  __fput+0x44c/0xa70
[  163.816613][    C0]  task_work_run+0x1d4/0x260
[  163.821254][    C0]  ? __pfx_task_work_run+0x10/0x10
[  163.826403][    C0]  do_exit+0x6b5/0x2300
[  163.830617][    C0]  ? do_raw_spin_lock+0x121/0x290
[  163.835780][    C0]  ? __pfx_do_exit+0x10/0x10
[  163.840439][    C0]  do_group_exit+0x21c/0x2d0
[  163.845059][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.850324][    C0]  get_signal+0x1285/0x1340
[  163.854897][    C0]  arch_do_signal_or_restart+0xa0/0x790
[  163.860534][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  163.867168][    C0]  ? __se_sys_futex+0x36f/0x400
[  163.872120][    C0]  ? exit_to_user_mode_loop+0x40/0x130
[  163.877622][    C0]  exit_to_user_mode_loop+0x72/0x130
[  163.883055][    C0]  do_syscall_64+0x2bd/0xfa0
[  163.887680][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.892895][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.899000][    C0]  ? clear_bhb_loop+0x60/0xb0
[  163.903716][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.909642][    C0] RIP: 0033:0x7ffb32f8eec9
[  163.914094][    C0] Code: Unable to access opcode bytes at 0x7ffb32f8ee9f.
[  163.921147][    C0] RSP: 002b:00007ffb33dae0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  163.929605][    C0] RAX: fffffffffffffe00 RBX: 00007ffb331e6098 RCX: 00007ffb32f8eec9
[  163.937608][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ffb331e6098
[  163.945616][    C0] RBP: 00007ffb331e6090 R08: 0000000000000000 R09: 0000000000000000
[  163.953605][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.961592][    C0] R13: 00007ffb331e6128 R14: 00007ffc326cdcb0 R15: 00007ffc326cdd98
[  163.969598][    C0]  </TASK>
[  163.972977][    C0] Kernel Offset: disabled
[  163.977311][    C0] Rebooting in 86400 seconds..