last executing test programs:

13.692160377s ago: executing program 4 (id=4205):
r0 = socket$key(0xf, 0x3, 0x2)
syz_usb_connect$uac1(0x0, 0xaa, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902980003010000000904000000010100000a2401000000020102132406040006030000000000000000000000000924030000010000ff0924050000f8431cfd09240306", @ANYRES64], 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="fa09000200"/15], 0x10}}, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(r1, 0x7b0, &(0x7f0000000100)={@hyper, 0x3})
close(r0)
r2 = socket(0x3a, 0x3, 0x2000009)
landlock_create_ruleset(&(0x7f0000000040)={0x2100, 0x2, 0x2}, 0x18, 0x2)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
sendmsg$can_j1939(r4, 0x0, 0x10)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f00008d7000/0x1000)=nil, 0x1000, 0x4)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42032, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
readv(r3, &(0x7f0000000140)=[{0x0}, {&(0x7f0000000000)=""/179, 0xb3}], 0x2)
r5 = openat$mixer(0xffffff9c, &(0x7f00000001c0), 0x80002, 0x0)
ioctl$SOUND_MIXER_WRITE_VOLUME(r5, 0xc0044d03, &(0x7f0000000180)=0x3f)
mremap(&(0x7f0000e30000/0x4000)=nil, 0x4000, 0x400000, 0x6, &(0x7f000082a000/0x400000)=nil)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_to_batadv\x00'})
r6 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x79})
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f00000ee000/0x2000)=nil, 0x2000, 0x8)

11.652512513s ago: executing program 1 (id=4213):
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$MSR(&(0x7f0000000040), 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x26, &(0x7f00000000c0))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x26, &(0x7f0000000000)={0x1})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x26, &(0x7f0000000000)={0x1})
fcntl$lock(r1, 0x26, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2})
close(r0)
r3 = syz_open_procfs(0x0, &(0x7f0000000500)='fd/3\x00')
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r3, 0x541b, 0x0)

10.447542088s ago: executing program 1 (id=4214):
io_setup(0x30, &(0x7f0000000600)=<r0=>0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x7079, 0x400, 0x1, 0x288}, 0x0, 0x0)
r2 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000900)='./file0\x00', &(0x7f0000000940)={0x0, 0x130}, 0x18)
open_tree(r3, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8800)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
r6 = fsopen(&(0x7f0000001080)='hugetlbfs\x00', 0x0)
r7 = fcntl$dupfd(r6, 0x0, r6)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000100)='mode\x00', &(0x7f0000000140)='7', 0x0)
r8 = eventfd2(0x8000, 0x80000)
r9 = syz_open_procfs(0x0, &(0x7f00000003c0)='net\x00')
r10 = fanotify_init(0x40, 0x40000)
readv(r10, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/175, 0xaf}], 0x1)
fanotify_mark(r10, 0x1, 0x40001019, r9, 0x0)
close_range(r9, 0xffffffffffffffff, 0x0)
getdents64(r9, &(0x7f0000000000)=""/173, 0xad)
r11 = eventfd2(0xc, 0x2)
rmdir(&(0x7f0000000a00)='./file0\x00')
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r12, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x28, 0x2, 0x6, 0x801, 0x0, 0x0, {0x34d4ddce7c5c73c0}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}}, 0x0)
r13 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000740), 0x80000, 0x0)
io_submit(r0, 0x7, &(0x7f00000008c0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x2, r1, &(0x7f00000001c0)="0dd17ea33c8ba59824006e31c17f0b4ec56e2afd07e732b30f35cc9834699737522d9245f4d7bc5a97bae4b7195ca45326d86ebba9994a2ed51d4a720d2134e89f143cd3b13ae42391b0750b18adf7557fe310cea36ab270bae4ad65394ece835112d3af8405fb50263fa3639b21473179604e8d508154d36932ce48d96a464b96edca3ebc8bd7add12016d20a28f65d4803680274e859ec6b11ec31ff", 0x9d, 0x5, 0x0, 0x3, r7}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x5, r2, &(0x7f0000000280)="f80edd9d3505cfb3fb7215ec3a44d3c9e85ca190d12326d879b84f9e72811d17d7066154e3aa04d610352c25534369b4e7c60ea641fa755892a54ddae27147befe15e781763030279dbecb54b00fe5c27271eb72245538d525657651f8d0250cd700886f4a5f791efe4ef652a0a2f46685aee8c2e32bbd1f95829e9d21618dbba382f49b7bd7f44cf611651e9c0a89693abff3eb13d445f0ebf40dc56bd7d993975cca7736d97b8db6134f4b25ebaf", 0xaf, 0x5, 0x0, 0x2, r8}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x8, 0x6, r5, &(0x7f0000000380)='b\nHy\"v', 0x6, 0xddf, 0x0, 0x0, r9}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x5, 0xf18, r5, &(0x7f0000000400)="78e5dce760daad0382f4e307d4740bf8727b9cefa8664487d4fbd742fddf0a10a6f81333f38b40680d4b192735c290edcce94953411d269f39e7afb844d89ed6418b8c81072f668ebbbeec1167a138988288ec96c6994938dc075e8967796c114e1b20993527461744f47118210cdbb1e4886cfe0393c23304a90eb10fb4de2daedc86f6da8fc4e8b22f77989bf08e61386b274cbaae0a0953dc121a49c13929b3e470e69024c848c7", 0xa9, 0x1, 0x0, 0x1}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x7, 0xfffa, r4, &(0x7f0000000580)="425e7128e9c09e99d5dcf001b4f6fc37d0a03959f9d4df4c1e048e", 0x1b, 0x2, 0x0, 0x0, r11}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x8, r1, &(0x7f0000000640)="9ba7be01ba85ea067f02334e5c47bb55edd1803e84885fdcefc32c150f5fee5829ded8bcdd9d46b4b8cf13fdb50fd6b5967358bbc5299ef097930e056fc19920f87ac0114ad572b33af369b3969c43ec1860487262c96bde6f19400248e962c8c3b75cc46955ac11f55b3ddbd51b9f425f03c15505aa8a6b9baea8928f8a5a9f6cb9218b9dce2c810328cc4e6e09f4fa57e94aa00e5ba605f3b74508805145ac30425256e0aa71dfb8c57dae56aab56d78666c5d97c5ebe8084483487c996ae38e7f3610ac414625fd974776604e813c8d132b2c474eabfabd58a726bb01fc47637a33889ec7eb3c00d1021af591a65ce360b65a", 0xf4, 0x10, 0x0, 0x1, r13}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x1, 0x2, r1, &(0x7f00000007c0)="fec5ac7c545dc0fe856103f981133464c800a97bb4e7e29a3feb3d97ad8a799e9a1603e976960e2cf1ed3cae3a7ed8f8c2c8648bd99922f62907418596bdf61fd8268b1c701f2558b083450dbc97ca389595258a8e5f77e036444de187b2bad22a6a667ea0f1fcd7043caa773495c6ca3b05d4adf7706d67683765c0a791ce4c0bfb3979", 0x84, 0x8, 0x0, 0x1}])
sendmsg$nl_route_sched(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newtaction={0x78, 0x30, 0xffff, 0x0, 0x0, {}, [{0x64, 0x1, [@m_ife={0x60, 0x1, 0x0, 0x0, {{0x8}, {0x38, 0x2, 0x0, 0x1, [@TCA_IFE_DMAC={0xa}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x9, 0x0, 0x0, 0x100, 0x400}, 0x1}}, @TCA_IFE_SMAC={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xfc}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
io_submit(r0, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f00000000c0)="01", 0x24}])

10.416761094s ago: executing program 3 (id=4215):
r0 = socket$tipc(0x1e, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x181341, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r1 = syz_io_uring_setup(0x8000498, &(0x7f0000000500)={0x0, 0x79ad, 0x20, 0x8000, 0x2bf}, &(0x7f00000001c0)=<r2=>0x0, &(0x7f00000006c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x8, 0x0, r1, 0x0, 0x0, 0x0, 0x2})
socket$tipc(0x1e, 0x2, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000180)={0x84, @remote, 0x0, 0x0, 'lblc\x00'}, 0x2c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
syz_usb_connect$printer(0x2, 0x0, 0x0, 0x0)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
getpid()
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=@newtaction={0x68, 0x30, 0x871a15abc695fa3d, 0x2000, 0x25dfdbff, {}, [{0x54, 0x1, [@m_ctinfo={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x80000000, 0x8, 0x10000000, 0x20002, 0xa}}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0xa}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x4}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x8800}, 0x4040000)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000040)=@req3={0x20001000, 0x957e, 0x10000, 0x3a}, 0x1c)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

10.415460319s ago: executing program 4 (id=4216):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
r3 = openat$selinux_status(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, r3}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r2, 0xc05c5340, &(0x7f0000000180)={0x5, 0x81, 0xfffffff7, {0x7, 0x1c}, 0x1, 0x3})
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r7 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x20)
fcntl$setlease(r7, 0x400, 0x0)
link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file1\x00')
r8 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000003c0)=0x2)
ioctl$TIOCVHANGUP(r8, 0x5437, 0x2)
write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x3]}}], 0x1c)
poll(0x0, 0x0, 0x40000)
close_range(r1, 0xffffffffffffffff, 0x0)

10.322888259s ago: executing program 2 (id=4217):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
readv(r0, 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000001200)={0x0, 0xffffff1e, 0xffffffff, 0x4, 0x16, "001bf100eeff0000a2c2000100000000002000"})
syz_open_pts(r0, 0x101)
prlimit64(0x0, 0xe, 0x0, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x20000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f0000000a80)=[{{&(0x7f0000000b80)=@xdp, 0x80, &(0x7f0000000280)=[{&(0x7f0000000100)=""/25, 0x19}], 0x1}, 0x5}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000580)=""/157, 0x9d}, {&(0x7f00000002c0)=""/50, 0x32}, {&(0x7f0000000640)=""/133, 0x85}, {&(0x7f0000000700)=""/107, 0x6b}], 0x4}, 0x6}, {{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000007c0)=""/126, 0x7e}], 0x1, &(0x7f0000000c00)=""/242, 0xf2}, 0x8}, {{&(0x7f0000000980)=@l2tp6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f0000000a00), 0x0, &(0x7f0000000a40)=""/21, 0x15}, 0x5}], 0x4, 0x40002020, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x3, 0x0)
r3 = syz_open_dev$cec(0x0, 0x0, 0x416400)
pwritev(r3, &(0x7f0000000140)=[{&(0x7f0000001300)="64addbbd32182b98a1c274a927be4022fa63ce9cf9dfbdfc5735b82db4d17afbe8884b9f275726d607300a8a23e534dfb98f68702b80522ccd8a42f6d7ae6dec239de56e0075a77d0d723ca2d53a6baff560b3c40f55f289ede4e8ab86e7e68a39d7c9d44693fae1308f5bbf12507f6306fffbe0f83d848019e31193e8b8dc5591ae3c2757e9c788c2c46fe525589af3f06672f1b233fc9ee337b7a9792541e4d0c60922ae0cf0375a174fbf50179ea05362b0db1f73b060281aa1392467191b155bbc268df08e60ee752cfbe9466ab944a98ed8a521fc0f7df4f76321be66ad20214c479702b411e389ac7b0d6140c6e58dd51d0b9e0b7db50cf255c97159e12280885d225655b01aa1d55c953dd11a6dc3872a7a412fb50b42060285d78587404da77cd9cdc6adeefde7f26f94c3c6b401f617adf6a372f5bf364b5de971b5bef3d2ad80b38780c3961fd60989ff17857c186989126d1653f4505455f9136e14ae258a37dce532d370516ffce876afd76d9407f814a0bbbf24c30f91b5f23035c55673f16b68806e30aeb95c9cb14c101256556e18f8a3138d52f75a18f3988e16f042320deb578e49fa7279a7c63aa9275deceec5533f56f0ceb2e60e8cddfd022ba99401d9b6ae92c2527c657a2296457088b8eef8a13694b7fd7be8cfe5b5e44f1a9168597f7ae0cb55ecd9c0bba489319b4329be8ffa7c6c8c182751619923d65f8a63b22c72f2b07601c3974e044edd2b656870076f35ea0debedd4ad5ce3aed0d7357d1d745515ed056fb855121affc63a60bc11fb857fe042b5fba206044850ed9a2a38307ab6a4d6f10c7dcce2a3288687e8d66d7ef2d251f46b64c4603a4a82b5aa0fd8c89d7712951c0ed2e24b1f69f4d93c678b9e054076e35f38220dbc5e1feba8eccaaee6f5c595acbf9d3681f34397350bb1278568c988d4eaf58057ca16960515502f2831c6c8e8f941daff982596d83b77f480595f31001172fba480e8a783cfb2afe103657293dcf8e323e71981f299c025aa0b58ba0bd0d26cc7717f76ba66a57add5515dcbf4b28d5024d8d073db6318a447a2dbd9081aeace0a7346118a64a3cbda4b6c8a5c44afff6d33ac4da47142cd4de1adeaca9c1746a1cf3c85e7d9c31d35455a61957eabc54f2d445fa126cb937ac6c1dd9775f6297c9ee72a09aa8018d42827be02fdc2154eff817e04422d07f162fd22ffd553fc57fdc38037843db8810220fd9284c8bb48cb26bb652dfcb224f981d5d5b795f24ed30a1c8394f7e0d9a043d98602e3abbb30291e06722150cd0667b539f914bb6357bc35bcc2a88300e67e00d51025f0a69382ceaf965a584214435dd971fcb11dc7d586a498ce6f169d00f086ea67af3b821a467a892c14197f595a758336bd48f4f99f02347798246bca5cb1d2727dbe069228a47b99dd4f549ae6ad63c6b080f38e49686b1a403ec416766b7df9b9aa5fb74b70975fd22cb3093c5a8f0f493f7acf0736d0966a839583c74f11a492d581495fef33599adbc233b5cfda6044dbd4c53bfdaddc2a5106c27c262a9fba6c1887d6d1c07351ab494e31403063babb8a1258ad2f499d142ad7dd77eda81a42df0e4a7396251c675e4d06bbcd71c62ea09d0e00c67ccd09208ee30785b409985a9419d4eb92fc0c295a6449ca97f2855dd3ac15b1ec7ecfddce3483542bad13d1d5131d9bffdd9257acca56e8c4de1c0144705b297ddb81a3e5307bfe23e3506b5bac0f6e79227674c2f482b7b62d813a3c990315679b7072ca255458eb45f182785a5a14acde14bcf918fc19e7ff2f2776f38da77e1ce9bbe31a8abb03b032da610200d7a32fd631d4279d9b2831b824d7f436ab95600873ec470bd8b14dbac799f8a3393b47201f4640d475ee2bbadcfcefca46e12eec399e38785d2a851dac48909f164223cd3cefda9700f89a2da22a024b758c4d9d07c3aa85f02fd0ee67d7b6c9effc878eb215a2798f3459d98f64f61436a35a61c1cfd2755782c0f372f03e24cc59f793cb0e1668fdbf20988f74adc454f4772433e75d620befd6e206cbd7fe42b9edd1bcf0ce09d75073aad7621c975b5480dfb3553f4f1f940d9932cca99e47dba2c50379bae811f072b65a77df40f74f52c2ba5e59077663615dba48331b34763491d837f42e79144eadadc8351d0297bdc492cdce39120a9e92a1e61699e7ffb0313d09bc9c777c2188186105aadf36b9bce7226b01f54a63c3c26b427d62bfaeef61de61ca32960a32a4669c2d2ad15fb2ea6bf82356f3ac225d05916b5414208387104b9c3f0dab88abe5a0fbb95680e7e3a35b4890ca92f9e4fdaaa99b57b900a6442e2985396f4bbd6f0e97505a802d128954c41e2209db12ef44297dd17f2c95879face5ac6e95b8aefddc00e6bafe56472440f8a81b491056466e47b69fc06275379dd5b69b50f46f790737efde08b99a68aba1e1a352a911e5a2cc67cbdf2cca00fcb0e5c2ae2630cd701b14e4c343f671309c1b88cd5a745cbae3f35b8c1d2e98239f68e8bf31666de4f7a33602600cbb585a26282082c0d5c10cd02a05615d14a6fdf026afd722314007b38164166d75bab06acc8cd3b4606423f1ad3e8fdbb522c822db9df06b7e67e50e2021a98732bab588878cbafeb0a0d9f8f60cac0358021b4612c3a9408348d9710ddc76919af6afff3085e9bdf688aed93cb2cc0b40e670c272c7c1d934463f0b502cecfd4006eac2e436d5a61247c2a77a9f63536dcaa239dcd6d802a99b0aaccdb8baddffecd77aca0ade494e142e24b3e7de20ee353982d5cd7322a1cbfa9553a7840cfb27cda6a50338bb295903cf6e801e6c03f7d00bcb32b79f362c5616c98daf0f3f688f71e935ae646589ca12a8bfd16a5f7eefccb40831f848b1bf5b178f636a90a403764aff8b0954a0aed584f3033e1682a8cdc10f829f6831258dbfed5a909c344b0b89696c80c0892bba8884ddd14587ab33111704b30557b376c4679cd8d32b86398085e63376a2ee199008599db5bbcf04263544e01bc33887cd88ca6a4c6a1cb9e8b4b9bfea6b4899a23ae6333e1262c17758e6ff58c5bf588613e5271d4630d496453314469705edeac20b4ec7829ce50588ad71d33d19125a64fb5b76b4be5e6c29ec696dfdaf3b2044c8f66a3eea72f365f08f44f77aaf1c979b29797effcc8cbabb1dcc4d13a395f9ebb23680512ce25262374289b383fc711973202219e9e6ee120bc8b3fdd5436f154eac2504ee1791e4ac4066607500ff0705ab48170b05d46e886680685f1b79f4aaf8665aaec74f5ef4109c907cee4e9d7be9b8744c207a2178322498e16cdca76b9d5d2a0db9bfaa29f0eb9e007dcc7b5f01e1a333f07b9b517de94b1f02d18624fc72946ef8b1ec44287e46241c000504f60fd1f734b8f62ab11893629d3ed5ef114a5a4359bfe6fafff22ec9fdc8a86bedee7d2f5e5b0d47537cc76c9715ff9a49e5690c7286a0a17c2ba5360f84493e097d1b1471b0876e12ad360f2ef678436d920ad112057a6fb2376ead17a6e663fd1a2e2b08dd13e707e3d0b761d8a2dc1fea4172844e83ef640b4873d082e73bb911433563c808847f15212e135fd4774dc26bf6c0bee0bb96d350bb8e0e3d052b739fcef8e5eb22c07e9b246cef2fe53ae4dafcc878f710546115bbf6af76ffc2b60d0fa1f00a885d146bff0d0caaa163b9c43f7ed8096794884b627f1bdbe6c41cdf034368140fa3bafe36c04f26caddf1ae574c3273d4032d44529e764c16d8ffe8ef6e73cb40f4c743db172f3e2b979edda306c7485e5bd6a6535ff7df72235c45e3bcb630a7741baca75edb99fde399119e46530e12af16e38bd423eed2c5d01ee99258ca17446a35353e69220ee9d8813159b6a093215b250397f960b4bd8a4be385dbc554dafac110e7fdda14766fdb9573ffcc6cbcc74c56db470fc01250ced7b7b762da8679e93335dbd1aece460658ce0139dbb198278b831ebb5b3bfc20c810ad285eb9361e70f046f4a73415f68334e975202a3b1da7cbf81899543aa157b78396c35d6814bbb5e251ad7013e2ff6214375d0200985870267fcac38da3ab1d90d3d21b825d8ed1845a881bd90ae6a52804646614300f25c744d212e4fca42bbabaea646b8c5fdc9311448d23aeb02ebd77dbdd85443219a49b17e41beafe1d283f8a72f4c8133007536cdf4d59ff9356d03183022c2a73ca3a9bdf96dd1209e1a47bfbfa25f66d5a58eb455a4f079b7eace2859a8e5145437e180ebbdfb5fa4fd151bbc4cdc2327dd871ff17dd95a36cc6c556f9c4ced98059b7f2e39f39f081472fd97433e36ccae159a57b5d416e5858eef62bbff8c78f19eb2bd96a7809557f5c88f7a756820b5228ed46dd32dd9b1cda9627e32617d6baf1c162310f6048d08d13faf27f807ec4387395bd35a63b62facea5dbf54ead2e1acec35956b76a98b662333ebbb854adcd9d2f74645a0e5c7aa56c3ddb8d1e89760baba7f3dc804ad4d2f1489cfe55bc8fb6ede1c52d22cb1f4b8a27830f4392d40a8a3340b02935d4f03974513eb4460ed1a84b69d6268fc412be67372f0bfe2789ae50ad57b75683fc7148fc79aa95089d7dee19447dc5b7a9305cc46ca97121db3e39ad8b56bf91b9d965a570836f05b6dc6ed68d32ae2d2862181dba01f00bce44fb8a4be4144ad0f391139a637e4d511481e58cfea3e636ccf008075bada729b464ef9a287fad493b60ee51f98df3c3bd1ab43ea9f890b7adfb4f4fe2b01fb3393a531e92efe7d56738cb23f1eb2161acf7b4ff3ca58d546051cdc6903ee689426d64fd0915f974b7d911d1105bec60d51c2757f1465a5e99bec1ca63afe9c9bdf79511726d05a0b3ed3e2281c5cd9c023edced41b0751fe0a9048506ef00ca68359948b3e618876035dd6550f102f7fd799564e77647e58891f477be8f198c854368faba08ab46604d38bb79940a008494f5c56c1bcca82c706ec3ce7ca7fd8a2219c40f582a23259029677dfdfe5589ee685b03329d170e1b8f4a0bab4321a1da7bfebcbd2111f07548151d6ecf4928349ed12c15974d0d2e14edc50f5de42e368bc7316a9fe06cb35d626036e30168cc006e371af537c78ca631d0018cbf93730504000ba45575602dbd1864bf2780ceedcfd55846d19a26124b8da9ee14f0d6f846366c8ef19843ce98a7e9d461e683dbcd55e80c1524a09090eb0b87b5cb4d157cc74ddf41f5e030cd1c9c9d2096f0c5202e5cf33d83ea0504dd73872fdd019f15bdded46002602973594f62a6779debd4bbbeb4ce6355847a937bcfc65144310ffdade87b14444a49157c1c3900e99d775724ae07844bca5744ffafa5a88861861030eecde0c96eb4704e3385df5f4f3c9f1ea3a44ab89f7cfa51f88888ca9e9190d822d69b5f4a43901a7ceb7d0bb0a28e80cfef7927a4541334f87da9c59c4637b0021885f997bf72dd9cdbc2377af98ce913d03d212006e39212114b0647572dd8c4dead6cfd39a0e5c8692e69f037a23d34166d832a3fad1432f4130b1ac1d410393a72bdc075c9db0b0296d653e6ea2c934bf1905b1a365f1398c6d62df43cf331378613028a1eeecf34c08f8bcf6567f58d4d3520237d3c4fc66aea0f581006225a765f1df6f00ed524278200cbcb3b3334b1c036b9b24fd8a513ec8ae4eaa5236c97752694d67fdc94d278ac225657fc7229e60eadf8ff35ca20960b0fd45cd561f4b27e5c1d128ba1d48565b3468540df66f55e75a381189bcb78980322a79603ea282df06dfd59f5f", 0x1000}, {&(0x7f0000000440)="617d8bdbb688fc708c2a9a7022ed6066aab29d7302cb1e32de81d358d02af9af86204683e88f4cd563c2acb270dec0b8a51b70c49605698adf4e1f79c0fb3614a99caefc2ea3cb708d4f4076a339a68bcf4d35f248ba5a8379e7c6d5b38b1ec46d77b6d4658879b958527bf293912ad85518a0d000f5f02bb4119607c54d744650f323b08c43c44d29babae62a7c5938bdb19bd7afd6af238883c53c08558b9d4b056e7cc8088aa9ba0ee13d5fb1fd837284a3ccb787058dea396a1cf28efa9e0dcf6ca581d380611a05e35a7d1f7f573702599f2526aa32b3a862fccbaf5b6295cd79a695bf9c75bdfa43268b3739b13822af5434f9078b", 0xf8}, {&(0x7f00000001c0)}], 0x3, 0xffff4fd8, 0x4)
r4 = socket(0x15, 0x5, 0x0)
getsockopt(r4, 0x200000000114, 0x271b, 0x0, &(0x7f0000000040))
r5 = syz_open_dev$vim2m(&(0x7f0000000080), 0x2, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r5, 0xc0cc5605, 0x0)
sched_setattr(0x0, 0x0, 0x0)
timerfd_create(0x6, 0x80800)
r6 = socket(0x15, 0x5, 0x0)
shutdown(0xffffffffffffffff, 0x0)
chdir(&(0x7f0000000540)='./cgroup\x00')
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x13b)
pread64(0xffffffffffffffff, &(0x7f0000000340)=""/251, 0xfb, 0xacab)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r6, 0x541b, &(0x7f00000000c0))
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})

7.538065762s ago: executing program 4 (id=4218):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000000040)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000140)='source\x00\xb5\x838\x8d\xbd\xdf\xfe\x9a\xf2RM\xb6\xe0\xf9\xac\xa2\x06\x1cD\xe7C\xa5<\xd1=\x93\xf7\xf7Sn\xcb\xd5\xa7\xc9@D\x81\xff\xaar\xc8\xa9\x13\b\x9a\x8bF\v\x8a\x93F\x00\x00\x00\x05\x00\x00\x00\x00\x00', &(0x7f00000001c0)='.\n#)|.\x02\xd8\b\xb2f\xcd\x04\xb9\xc7\x9d\xb2a\r\xd7\xef\xc5\x112s\x88\x06\x13o\xd6w\xbf\xfa\xd5?\xa3\'\xca%\xd0\x8fKAq\x89f\xbb\x9dC\xd6\xea\xa8\xc2z\xbfe\xadSb3L)Hy\xfao\b\xa4\xb6\xff\xff\xff\xff\xff\xff\xff\xf7\xc7\xa4\xdcY\x9aM\x90\xa4\x05\xa8\xec\xf3\xa4h\x11\x19\x87E$\n://\xf3\x96\xaf\x1c8\b\x84x\'+\xd5\xd4?[e\x19\xa3\\J\xe9\x8a\xb9\xe495/\x00d\xd2\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf0\xb7\x1e\xf7Ys#m\xd40\xceP\xdc\x15FI>\x01\xfa\x15\x93\x9a&\xb4):\xc7?\x8d\x8e\x02\xc6\xf61\xbd\xbcBq\xba\xc6\x8e\x89\x15UTaf\xfc\x89\xab\x19\xd7\x82\x16\x94m\x0e\xb7$\x8c\xd76K\xdc\xd1;\\QPh@$\x06F\x81\xc9\xf8\xf8H\xb2\x85\xa8Cl\xa6\xcd\xb5\xf0\xd0\x1f\'\xc30]\xad7\x1eZA7\x89\xf5\x81b\r\xc1\x7f[\x84y\xac\x12\xaa\xa2-t\x16>V\xfc\xbf\xdb\xe4\x9a\x9eE^\x90oe\xc0\xd9\xc68\x0f\xd4\xcdKC\xadp\xba\xaa\xab\'\x1cRO\x89\x17i\x88\"\x8dQI\xed\x1d\xe1v\xe6&\xd3\x14\xe92\xca\x9dBe\\\x8f\xff\x9b\xc7Sd!\xf8(Z\xd42\xa2\xcdjjBP\xae3\xbd\xec\x8a\x8f:\xeb1\x1cK\xf2\x04s\b\xcb\xa9\x17\x8529\xd7`\v\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf1\xa4C\x81\xc8iy\xc4\xf7\x7f\x90\xf80\x18jT\xd45\xde\b\x88\xc9Xw\xe9\xf4\xa4\x94Q\x03s/\xac\xd4\xb7o\x99\xf5\xdb\xf9\x99,+\b\x17\xe4\xf4r}\xda\xf5\x12\x16\xb6g\x00\'(\x02[\xef\x03\x90W% \xe6b\xa2\\\x86\xac\xdax\x997AOJ=\x1f\x00\xe1/\n\xael\x15\xcfR\v\x0e\xbc!\xe8\x1cV-`\xf0$\xa6a \x93PV\x8dm@\x9c', 0x0)

7.424943472s ago: executing program 2 (id=4219):
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0f00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="fcffffff00000000000000000000000000000000ceca805d3858ea8e4859afd0939b147f78aa220c548a0d91f6b3e0edd64914b27ca0c6c373268bec42c3", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18001100"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000010400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x23, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, 0x0, 0x0)
connect$inet(r2, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2}}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0x7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
openat$dsp(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000700)={r5, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df12c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmmsg$inet(r2, &(0x7f0000002780)=[{{0x0, 0x0, &(0x7f0000000680), 0x0, 0x0, 0xf0}}], 0x1, 0x24004c41)
r6 = openat$selinux_validatetrans(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$selinux_validatetrans(r6, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

7.384944146s ago: executing program 0 (id=4220):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2c, r3, 0x701, 0x0, 0x25dfdbfc, {{0x67, 0x0, 0xf000}, {@void, @val={0x8}, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x1371}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8}, 0x40)

6.538838745s ago: executing program 1 (id=4221):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'veth1_to_bridge\x00'})
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./bus\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.sectors\x00', 0x275a, 0x0)
fdatasync(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200))
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r5, &(0x7f0000000200)={0x2, 0x4e24, @multicast2}, 0x10)
sendmmsg$inet(r5, &(0x7f0000002300)=[{{&(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000240)="efb076edb4a596d0b43822724e41414194513ef31813d0ca9bcddadf508110c2f8dd045991f3ad163cccb3ed74c1f00c266a9d5394cdcf07829d59b0e87c09d55704b72b0877527ed629b88563089f2a42cdf07994e9edfd9d78e645a7e34efb041e01ecbff329cfffbfd61486cf0f6f63ed8124b7d8ee339ea94dcc5548493b8c38de1fbea20b0309a321fb31e813959a0c351946ba9263cdce9ea7b0910516c0b7691c3ae79b47a9605bb26b034293bb75e3e679d9d1a2d6b41d881de68cb6b59f03a5b744", 0xc6}], 0x1}}], 0x1, 0x2000c001)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
socket(0xa, 0x2, 0x0)

6.538450632s ago: executing program 2 (id=4222):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd03010000092100000001220100090581"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x1600)
syz_usb_control_io(r0, &(0x7f0000000280)={0x2c, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="00039200"], 0x0, 0x0, 0x0}, 0x0)
ioctl$HIDIOCSREPORT(r1, 0x81044804, &(0x7f0000000400)={0x1, 0x1})

6.404935232s ago: executing program 4 (id=4223):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newsa={0x138, 0x10, 0x1b020ba487bfd163, 0x70bd29, 0x0, {{@in6=@local, @in6=@local}, {@in6=@private1, 0x0, 0x33}, @in6=@empty, {0x0, 0x0, 0x4, 0x0, 0xb, 0x0, 0xffffffffffffffff, 0xfffffffffffffffc}, {}, {}, 0x3, 0x0, 0xa}, [@algo_auth={0x48, 0x1, {{'cmac(aes)\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)
r5 = socket$alg(0x26, 0x5, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r6=>r0, {<r7=>0xffffffffffffffff}}, './file0\x00'})
mount$overlay(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f0000000180), 0x10d000, &(0x7f0000000480)={[{@nfs_export_on}, {@index_on}, {@nfs_export_off}, {@verity_require}, {@verity_off}, {@uuid_on}], [{@subj_user={'subj_user', 0x3d, '/dev/cpu/#/msr\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/cpu/#/msr\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x9}}, {@subj_user={'subj_user', 0x3d, '/dev/cpu/#/msr\x00'}}, {@fowner_lt={'fowner<', r7}}, {@smackfsdef={'smackfsdef', 0x3d, '\x00'}}, {@dont_hash}, {@fsname={'fsname', 0x3d, '/dev/cpu/#/msr\x00'}}, {@audit}]})
clock_gettime(0x0, &(0x7f0000005600)={<r8=>0x0, <r9=>0x0})
recvmmsg(r5, &(0x7f0000005440)=[{{&(0x7f0000000740)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000000680)=[{0x0}], 0x1, &(0x7f0000001140)=""/4096, 0x1000}, 0x2}, {{&(0x7f0000000900)=@l2tp={0x2, 0x0, @loopback}, 0x80, &(0x7f0000000c40)=[{&(0x7f0000000980)=""/79, 0x4f}, {&(0x7f0000000a00)=""/111, 0x6f}, {&(0x7f0000000a80)=""/254, 0xfe}, {&(0x7f0000000b80)=""/49, 0x31}], 0x4, 0xffffffffffffffff}, 0x6}, {{&(0x7f0000000cc0)=@alg, 0x80, &(0x7f0000000f40)=[{&(0x7f0000002140)=""/4096, 0x1000}, {&(0x7f0000000d40)=""/191, 0xbf}, {&(0x7f0000000f00)=""/20, 0x14}], 0x3, &(0x7f0000000f80)=""/18, 0x12}, 0x8}, {{&(0x7f0000000fc0)=@ax25={{0x3, @netrom}, [@null, @rose, @rose, @netrom, @netrom, @default, @default, @bcast]}, 0x80, &(0x7f0000003400)=[{&(0x7f0000003140)=""/218, 0xda}, {&(0x7f00000010c0)=""/12, 0xc}, {&(0x7f0000003240)=""/158, 0x9e}, {&(0x7f0000003300)=""/24, 0x18}, {&(0x7f0000003340)=""/186, 0xba}], 0x5}, 0xb}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000003780)=""/141, 0x8d}}, {{&(0x7f0000003840)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000003b80)=[{&(0x7f00000038c0)=""/8, 0x8}, {&(0x7f0000003900)=""/251, 0xfb}, {&(0x7f0000003a00)=""/213, 0xd5}, {&(0x7f0000003b00)=""/119, 0x77}], 0x4, &(0x7f0000003bc0)=""/116, 0x74}, 0x80000000}, {{&(0x7f0000003c40)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev}}}, 0x80, &(0x7f0000005340)=[{0x0}, {&(0x7f0000003dc0)=""/170, 0xaa}, {&(0x7f0000004e80)=""/141, 0x8d}, {&(0x7f0000004f40)=""/219, 0xdb}, {&(0x7f0000005040)=""/150, 0x96}, {&(0x7f0000005100)=""/110, 0x6e}, {&(0x7f0000005180)=""/177, 0xb1}, {&(0x7f0000005240)=""/237, 0xed}], 0x8, &(0x7f0000005400)=""/23, 0x17}, 0x8}], 0x7, 0x100, &(0x7f0000005640)={r8, r9+60000000})
bind$alg(r5, 0x0, 0x0)
userfaultfd(0x80001)
mq_open(&(0x7f0000000000)='..\x00', 0x0, 0x0, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000600), r2)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r2, &(0x7f0000000700)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000006c0)={&(0x7f0000005700)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="00032dbd7000ffdbdf255a00000008000c438a54ff16c0af93e3a5c2fa520300", @ANYRES32=r11, @ANYBLOB="0c0099000008"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)

5.95626725s ago: executing program 3 (id=4224):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x31}}, 0x1c)
syz_emit_vhci(0x0, 0x7)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x50, 0x0, &(0x7f0000000040)=0x54)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x7, 0x0, 0x0, 0x0, 0x4}, 0x94)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0xfffffffd, 0x5, 0x0, 'queue0\x00', 0x5})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8b05, &(0x7f00000004c0)={'wlan0\x00'})
keyctl$read(0x1f, 0x0, &(0x7f0000000080)=""/61, 0x3d)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r2, 0x404c534a, &(0x7f0000000380))
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14)
socket(0x1a, 0x3, 0x0)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f0000000000)={0x18, 0x0, {0x807, @empty, 'vlan1\x00'}}, 0x1e)
sendmmsg(r4, 0x0, 0x0, 0x24048084)

5.68667483s ago: executing program 2 (id=4225):
syz_usb_connect$uac1(0x69a90eab3db9c902, 0xa6, &(0x7f0000000280)=ANY=[@ANYRESOCT], &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0})
openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi2\x00', 0x30000, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000e80)='/sys/kernel/profiling', 0x22042, 0x0)
write$binfmt_misc(r0, &(0x7f0000000000), 0xfffffecc)
syz_open_dev$cec(0x0, 0x0, 0xd2ec0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000380)={'\x00', 0x800, 0x1d33861c, 0x9, 0x8, 0x7, 0xffffffffffffffff})
sched_setscheduler(0x0, 0x3, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000200), 0xfffffffffffffffc, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fallocate(0xffffffffffffffff, 0xa, 0x44, 0x3e8a)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = creat(&(0x7f0000000580)='./file1\x00', 0x0)
r4 = fanotify_init(0xf00, 0x1)
fanotify_mark(r4, 0x105, 0x40009975, r3, 0x0)
fallocate(r2, 0x0, 0x1000000, 0x3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="880000000001010400000000141a00000200ffff0800074000000001240001801400018008000100e0000001028005000100000000002400028014000180080001000000"], 0x88}}, 0x0)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r5, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000600)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010000000000000000000e0001006e657464657673696d0000000f00ee006e657464657673696d30000012ff998e000000000002008f0000000000000000000c00900000000000000000"], 0xa0}}, 0x0)
r7 = socket$inet6(0xa, 0x3, 0x8000000003c)
r8 = openat$rtc(0xffffffffffffff9c, &(0x7f0000002600), 0x101840, 0x0)
ioctl$RTC_AIE_ON(r8, 0x7001)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000400)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x40011)
connect$inet6(r7, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newtaction={0x18, 0x30, 0xffff, 0x2, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x800}, 0x0)

5.471389715s ago: executing program 4 (id=4226):
r0 = socket$key(0xf, 0x3, 0x2)
syz_usb_connect$uac1(0x0, 0xaa, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902980003010000000904000000010100000a2401000000020102132406040006030000000000000000000000000924030000010000ff0924050000f8431cfd09240306", @ANYRES64], 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="fa09000200"/15], 0x10}}, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(r1, 0x7b0, &(0x7f0000000100)={@hyper, 0x3})
close(r0)
r2 = socket(0x3a, 0x3, 0x2000009)
landlock_create_ruleset(&(0x7f0000000040)={0x2100, 0x2, 0x2}, 0x18, 0x2)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
sendmsg$can_j1939(r4, 0x0, 0x10)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f00008d7000/0x1000)=nil, 0x1000, 0x4)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42032, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
readv(r3, &(0x7f0000000140)=[{0x0}, {&(0x7f0000000000)=""/179, 0xb3}], 0x2)
r5 = openat$mixer(0xffffff9c, &(0x7f00000001c0), 0x80002, 0x0)
ioctl$SOUND_MIXER_WRITE_VOLUME(r5, 0xc0044d03, &(0x7f0000000180)=0x3f)
mremap(&(0x7f0000e30000/0x4000)=nil, 0x4000, 0x400000, 0x6, &(0x7f000082a000/0x400000)=nil)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_to_batadv\x00'})
r6 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x79})
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f00000ee000/0x2000)=nil, 0x2000, 0x8)

5.285440544s ago: executing program 0 (id=4227):
r0 = socket$tipc(0x1e, 0x2, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x181341, 0x0)
ioctl$TIOCGSOFTCAR(r1, 0x5414, &(0x7f0000000040))
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2})
socket$tipc(0x1e, 0x2, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000180)={0x84, @remote, 0x0, 0x0, 'lblc\x00'}, 0x2c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)}, {0x0}], 0x2)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
syz_usb_connect$printer(0x2, 0x0, 0x0, 0x0)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
getpid()
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=@newtaction={0x68, 0x30, 0x871a15abc695fa3d, 0x2000, 0x25dfdbff, {}, [{0x54, 0x1, [@m_ctinfo={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x80000000, 0x8, 0x10000000, 0x20002, 0xa}}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0xa}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x4}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x8800}, 0x4040000)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
setsockopt$IP_VS_SO_SET_DEL(r2, 0x0, 0x484, &(0x7f0000001280)={0x20000000000084, @remote, 0xffff, 0x0, 'rr\x00', 0x3}, 0x2c)
socket$nl_netfilter(0x10, 0x3, 0xc)

5.255328373s ago: executing program 1 (id=4228):
socket$tipc(0x1e, 0x2, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x181341, 0x0)
ioctl$TIOCGSOFTCAR(r0, 0x5414, &(0x7f0000000040))
r1 = syz_io_uring_setup(0x8000498, &(0x7f0000000500)={0x0, 0x79ad, 0x20, 0x8000, 0x2bf}, &(0x7f00000001c0)=<r2=>0x0, &(0x7f00000006c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x8, 0x0, r1, 0x0, 0x0, 0x0, 0x2})
socket$tipc(0x1e, 0x2, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000180)={0x84, @remote, 0x0, 0x0, 'lblc\x00'}, 0x2c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
syz_usb_connect$printer(0x2, 0x0, 0x0, 0x0)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
getpid()
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=@newtaction={0x68, 0x30, 0x871a15abc695fa3d, 0x2000, 0x25dfdbff, {}, [{0x54, 0x1, [@m_ctinfo={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x80000000, 0x8, 0x10000000, 0x20002, 0xa}}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0xa}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x4}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x8800}, 0x4040000)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000040)=@req3={0x20001000, 0x957e, 0x10000, 0x3a}, 0x1c)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

3.868371266s ago: executing program 3 (id=4229):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='.\x00', 0x400017e)
ioctl$CEC_TRANSMIT(0xffffffffffffffff, 0xc0386105, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/consoles\x00', 0x0, 0x0)
r3 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x9624, 0x3180, 0x7ffe, 0x195}, &(0x7f0000000180)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd=r2, 0xffffffffffffffff, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
io_uring_enter(r3, 0x627, 0x4c1, 0x43, 0x0, 0x30)
r6 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi0\x00', 0x8080, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, &(0x7f0000000080)={'mpc624\x00', [0xee, 0x80008000, 0x1, 0x2, 0x0, 0x0, 0x0, 0x13, 0x1000, 0xffffffff, 0x4, 0x7, 0x6, 0x4, 0x40ffff, 0x6, 0xffffffa7, 0x9, 0x0, 0x65c, 0x3ff, 0x11000, 0x800, 0xe2df, 0x9, 0x4e, 0x4, 0x3, 0x3, 0x5, 0x5]})

3.585339455s ago: executing program 0 (id=4230):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r5, 0x4008ae8a, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000000000000010000000700000007000000090000000700000000a69996433baf00"])
ioctl$KVM_SET_MP_STATE(r5, 0x4004ae99, &(0x7f00000001c0)=0x3)
ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000440)={"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"})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

3.451596494s ago: executing program 1 (id=4231):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
r1 = landlock_create_ruleset(&(0x7f00000000c0)={0x0, 0x3, 0x1}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
move_mount(r0, 0x0, 0xffffffffffffff9c, 0x0, 0x167)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x15, 0x3, &(0x7f0000000040)=@framed={{0x72, 0xa, 0x0, 0xffc4, 0x3, 0x71, 0x10, 0x1e}}, &(0x7f0000000480)='GPL\x00'}, 0x94)

3.27076288s ago: executing program 1 (id=4232):
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000000)={0xa0000001})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_MSG_GETSETELEM(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000000d0a010800000000000000000a0000010900020073797a31000000000900010073797a31000000001c0003801800008008000340000080"], 0x48}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x41e, 0x2801, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x2, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x3}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io(r5, &(0x7f00000001c0)={0x2c, &(0x7f0000000000)={0x0, 0x0, 0x5, {0x5, 0x0, "b1a748"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x23011, r0, 0x6a855000)
epoll_pwait(r0, &(0x7f00000000c0)=[{}, {}], 0x2, 0xfe, 0x0, 0x0)

2.659118522s ago: executing program 2 (id=4233):
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
socket$kcm(0x11, 0x200000000000002, 0x300)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r2 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
dup3(r2, r1, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, 0x0, 0x82042, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, 0x0)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r5, 0xc400941d, &(0x7f0000000600)={0x0, 0x2, 0x3})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

2.523074389s ago: executing program 2 (id=4234):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x31}}, 0x1c)
syz_emit_vhci(0x0, 0x7)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x50, 0x0, &(0x7f0000000040)=0x54)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x7, 0x0, 0x0, 0x0, 0x4}, 0x94)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000100)={0xfffffffd, 0x5, 0x0, 'queue0\x00', 0x5})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8b05, &(0x7f00000004c0)={'wlan0\x00'})
keyctl$read(0x1f, 0x0, &(0x7f0000000080)=""/61, 0x3d)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r2, 0x404c534a, &(0x7f0000000380))
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14)
socket(0x1a, 0x3, 0x0)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, 0x0, 0x0)
sendmmsg(r4, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000500)="ab", 0x5ea}], 0x1}}], 0x484, 0x24048084)

2.239051456s ago: executing program 4 (id=4235):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000004000000080000000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000006687000000000000000000850000007b00000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0x14, &(0x7f0000000400)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="7a0a00ff000000006e46430000000025009500000000000000"], &(0x7f0000000480)='syzkaller\x00'}, 0x80)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x6, 0xf}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x5)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace_dev_match', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8d}, 0x0)
waitid$P_PIDFD(0x3, r2, &(0x7f0000000380), 0x20000000, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
socket$l2tp(0x2, 0x2, 0x73)
r4 = syz_open_procfs(0x0, &(0x7f0000000340)='fd\x00')
getdents64(r4, &(0x7f0000001f00)=""/4111, 0x100f)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x40, 0xdc)
r5 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x80000)
r6 = socket(0x2, 0x2, 0x0)
r7 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_SET_SOCK(r5, 0xab00, r6)
ioctl$NBD_DO_IT(r7, 0xab03)
ioctl$NBD_SET_SIZE_BLOCKS(r5, 0xab07, 0x5)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000080)='udf\x00', 0x14, 0x0)

2.210650161s ago: executing program 0 (id=4236):
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x540})
keyctl$dh_compute(0x17, &(0x7f0000000d80), 0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000ec0)={'cryptd(blake2b-160)\x00'}})

2.204837478s ago: executing program 3 (id=4237):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @multicast2, 0x15, 0x3, 'sh\x00', 0x1, 0x4, 0x6d}, 0x2c)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x200087fc, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r4, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f00000007c0)="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", 0x17b}], 0x1}}], 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendmmsg$inet(r4, &(0x7f00000098c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001480)="d38cdcc71ad28600a08bc19bfdac03715767ae5e17d81bee527ba41e676fa1fb6fe3bed5158ecd5d8cb98b3a000190a59312c6a16a1d465dce26285f85ff292c554c4f915d7a373db52f8901c5bd62d67c75f23beae4d08198d9c0f4c9c507d2433a660bdc0e63758d337308d48920f419fa3825c1a3d7c39792427e18c1f70163d918c6d91cd621138b6f998dd4f6637c2a6828c99f9b3c3a3c544bf3ea8e907369d62f9f7f7be6ee57b8b15cafc348974db0445fd324836571421b5471bcecb448cb94c775cf7cc07a5d077f47d3d7b9f1c728d6988455278a25c199773b2fde4885d727b8493972693aa9ae5beea9871d410036b8b871b80fa6bd17b2614ea9e758b3cb26946c076d28193706205ccf5282cd7afd636c0d400fc1bf0141090d794e4a966708c785ff312d1d762fa593280f8a0813a8d0325d1c6bf6c2e571d4a0499552996e46a640e050d82efc5721c189546705d1d62ed7a31b47115fae4f344a5835bab29fffe0a537bce5d4d1784ca8c634cf60bde9c3432c2867a2e6a38ccb256f9324887dbe4e6351ca9b6d98f7f17914f64eed38bdb0e6f72523c6df60989c4592ba906d78da2bc0b3b6a8b5b805ae3a42270537c18ea2fbf866013366a54903e1951501220045fa2027ec0fb305b6e6eeaefd1ef7b61a51ea22c57141abb72ea5652ba849911e4570e39b208e6a102e15d956c910eb93c0891e408d468a96902ffadec318e45fc7f8128dae3986fd77202c99f0f57e56a5cbf716b9a69ab57e3eb2daedfdb946cfbfd296a35b87dd145917c8fb1b500fe7f0817fd8431a006ff3c39e1f2b25b25458380b037cb6d0132a34f69000e3212c5375cfe4fd89a326ed067162f072a1c84a82b716fd93623051a9041aa3ff0da75de143b43621be55022dec7775fe442eb80d36f9692e3643b6f1f2afa51ed3637bf6f0bae7884ef34b34041dc1bf75a35afba03bd19b8280151352692e6ca3f0c885f9e21bc4e2bc9db8b438aac9622c1cec80fb6c8b66eddba52ca744a11806f2218bc52779dfd3bc10c1898e9144ee474e9eefda6a7556c9e29f68fc948408d4015604f6bd0990aafbc8ae81c1484283d2b58d3d8aea69b4b25f4f053439d184e4c7d679cd4e73479cec134efcfd9e78a3b00880ce714d0294da6412be52be0beeb1df2932af965e938a3236c4fe6bd69a089c194351b928657baec5e93d64b5a6e2f35b3081f6a7973c63b91a1b284cb0452166cb03a18a5a13b171b232a20a53903064482ac939192f044cd11c83d603746bc4c12ad2fed25f4a93e0f506142ae2d642ff80cfb1fc98338ff6f6025fd217b2433cf054c42263dcc0dd068702084ad48529d13d33b412330f652989c499fe458be2f9b21d5ba1787bd7f2cacf038f0dc792fbfa116322eaf5a8f2e3a25fb983b6a18dd622a9487f39748869120d2dff8776af0711594f1742275437be7cb60f0aa5f84cb7af33893c24bd40a985061c32878ecbfec9b481504a2e59f970f47adc30b33d2144bbe3ca684ee7c03e14f2b337fd17b32e3c23f63103c3a1a60f3f4a3961c56fb55c9a1dc984888a16284f27b0d481b30628939325b0357642551b7959a7a122408831e20fc0e6206369ebbc1c4a42546447106bb882f174a0f7ebb7425d84e101154b545bb80d0555dbb886c4301d959cf28b7045344d3f1f2d5e8c1312ab04a88c9916b1224a782eb6153be763dd5b3684544f61a55109b91e4868e75a23e738cfb6321c0c866b084e34674a38fbdf0ad21777bf06aad805fcf93bfdd5b1eb0412c808c90b6ed9921aa10c0594d90a26c70a3faf17e365b248fe9b0af7c41a63c37e84e6181cbdb75fd2d4ec6196046ce8de539f50d92c2a8073a7997469702b71f922", 0x53a}], 0x1}}], 0x1, 0x8000)
r5 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$qrtrtun(r5, &(0x7f0000000300)="ca0e808bb35bda", 0x7)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f00000000c0)=0xb0000)

1.174826851s ago: executing program 3 (id=4238):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2c, r1, 0x701, 0x0, 0x25dfdbfc, {{0x67, 0x0, 0xf000}, {@void, @val={0x8}, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x1371}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8}, 0x40)

1.091756868s ago: executing program 0 (id=4239):
r0 = epoll_create1(0x80000)
epoll_pwait2(r0, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00')
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
r4 = openat$sndtimer(0xffffff9c, &(0x7f0000000000), 0x183002)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, 0x0)
r5 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r5)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000100)={'vxcan1\x00', 0x2})
ioctl$TUNATTACHFILTER(r6, 0x401054d5, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0xc}]})
ioctl$TUNDETACHFILTER(r6, 0x401054d6, 0x0)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f0000000640)={0x2020}, 0x2020)
execve(&(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000000800)={[&(0x7f0000000940)='\x7f\xb7\xc3\x7f\xa5a\xd6A*c\x9b\xd8R\xf02b\xefA|uiWb\x8f\xee\x1c\xc5\xdb^\x11\x16h\x83\x94y<yN\xfbXh[\xe9\xa9\x1702\x7f\x9e\xf0\x99\xad\xdc;p\x98R\a\xb1\x9d^\x0f\x121\xb3\xab?P\xd6\xcb\x06\xfe2~W\xd9\xad\x80\xd9!\x89%\xb8\x10\xa3l;\x1eK\x90\x15\xc6\x11A\xfc\x7f\xc6\xed\xe7\xa3\x9f\xb4\xce\"\xef\xa8\x86F\x15\x03\rj\f\xafa\xb0}\xde\'E\x84\xb2bO\xd2\xd4\x85F\xde1e\xe0\xf2\xa0/\xd3<\xda\xfe\x04,\xfa\x97\xb6\xf4\xcf\x0el\xf2\xbd\x18\x88\xd7\x02\xce\x99\x1f\xadj\x89\xd9\xb7\xae9\xb0\xb0{n.\xd7vC\x0eh|KZG\x108l\n\xcd\xe9\x04\xafM\xbf\x83#>\x89\xf1Y{\x87\xd5\xf3\xccMr\xc5\xbdT\x9e\xc4\x84\x06\xcd\x8b\xcd\t\x01', &(0x7f0000000a40)='\x7f\xb7\xc3\x7f\xa5a\xd6A*c\x9b\xd8R\xf02b\xefA|uiWb\x8f\xee\x1c\xc5\xdb^\x11\x16h\x83\x94y<yN\xfbXh[\xe9\xa9\x1702\x7f\x9e\xf0\x99\xad\xdc;p\x98R\a\xb1\x9d^\x0f\x121\xb3\xab7P\xd6\xcb\x06\xfe2~W\xd9\xad\x80\xd9!\x89%\xb80\xa3l;\x1eK\x90\x15\xc6\x11A\xfc\x7f\xc6\xed\xe7\xa3\x9f\xb4\xce\"\xef\xa8\x86F\x15\xb9\rj\f\xafa\xb0}\xde\'E\x84\xb2bO\xd2\xd4\x85F\xde1e\xe0\xf2\xa0/\xd3<\xda\xfe\x04,\xfa\x97\xb6\xf4\xcf\x0el\xf2\xbd\x18\x88\xd7\x02\xce\x99\x1f\xadj\x89\xd9\xb7\xae9\xb0\xb0{n.\xd7\x87C\x0eh|KZG\x108l\n\xcd\xe9\x04\xafM\xbf\x83#>\x89\xf1Y{\x87\xd5\xf3\xccMr\xc5\xbdT\x9e\xc4\x84\x06\xcd\x8b\xcd\t\x01']})
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x8000, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x6000, 0x1)
unlink(&(0x7f0000000040)='./file0\x00')
mknod$loop(&(0x7f0000000200)='./file0\x00', 0x6000, 0x1)

937.542756ms ago: executing program 3 (id=4240):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
request_key(0x0, 0x0, &(0x7f0000001fee)='R\t\xff\x7fst\xe3c*sgrVid:\x00e', 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r4, 0x4008ae8a, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000000000000010000000700000007000000090000000700000000a69996433baf00"])
ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f00000001c0)=0x3)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000440)={"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"})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

0s ago: executing program 0 (id=4241):
r0 = socket(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe64, 0x1ff, @empty, 0x2}, 0x1c)
r1 = socket(0xa, 0x1, 0x0)
syz_io_uring_setup(0x247, &(0x7f00000011c0)={0x0, 0xf12d, 0x2, 0x3, 0x7a}, &(0x7f0000001140)=<r2=>0x0, &(0x7f0000001240)=<r3=>0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000000, 0x50, 0xffffffffffffffff, 0x10000000)
clock_gettime(0x0, &(0x7f0000001280))
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000001340)=@IORING_OP_CLOSE={0x13, 0x19, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1})
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0xe64, 0x3, @empty, 0x2}, 0x1c)
connect$unix(r1, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$xdp(0x2c, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
socket$nl_generic(0x10, 0x3, 0x10)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_io_uring_setup(0x305e, &(0x7f00000005c0)={0x0, 0xbc23, 0x10000, 0x2, 0x403f, 0x0, r5}, &(0x7f0000000080), &(0x7f00000001c0))
r7 = socket$kcm(0xa, 0x2, 0x73)
r8 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r8, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x32}], 0x2)
sendmsg$inet(r7, &(0x7f0000001180)={&(0x7f0000001100)={0xa, 0x0, @empty}, 0x10, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0x1000}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f00000010c0)=ANY=[@ANYRESOCT=r8, @ANYRESDEC=r1, @ANYRES32=r0], 0x6b}, 0x880)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000012c0)={0x4, &(0x7f0000001300)=[{0x9, 0x9, 0x18, 0xffffffff}, {0x7, 0x6, 0x3, 0x3}, {0x9, 0x9, 0x8, 0x10000}, {0x0, 0x0, 0x7, 0x5}]})
close_range(r9, 0xffffffffffffffff, 0x0)
io_uring_enter(r6, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x4, 0xffffffffffffffff}, 0x0, &(0x7f00000002c0)={0x3ff, 0x2, 0x3, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

kernel console output (not intermixed with test programs):

B device number 8 using dummy_hcd
[ 1072.792383][ T5884] usb 5-1: device descriptor read/64, error -71
[ 1072.901047][ T5884] usb usb5-port1: attempt power cycle
[ 1073.221327][ T5953] usb 4-1: new high-speed USB device number 127 using dummy_hcd
[ 1073.241943][ T5884] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[ 1073.301260][ T5884] usb 5-1: device descriptor read/8, error -71
[ 1073.396428][ T5953] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1073.411327][ T5953] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1073.422373][ T5953] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1073.431622][ T5953] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1073.444517][ T5953] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1073.457628][ T5953] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1073.467386][ T5953] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1073.475408][ T5953] usb 4-1: Product: syz
[ 1073.479547][ T5953] usb 4-1: Manufacturer: syz
[ 1073.486695][ T5953] cdc_wdm 4-1:1.0: skipping garbage
[ 1073.492019][ T5953] cdc_wdm 4-1:1.0: skipping garbage
[ 1073.497838][ T5953] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1073.503738][ T5953] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1073.540578][ T5884] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[ 1073.571080][ T5884] usb 5-1: device descriptor read/8, error -71
[ 1073.650724][ T9818] usb 1-1: new high-speed USB device number 115 using dummy_hcd
[ 1073.681313][ T5884] usb usb5-port1: unable to enumerate USB device
[ 1073.820576][ T9818] usb 1-1: Using ep0 maxpacket: 16
[ 1073.827254][ T9818] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1073.838386][ T9818] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1073.849317][ T9818] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1073.955721][ T9818] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1073.964861][ T9818] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1073.974215][ T9818] usb 1-1: Product: syz
[ 1073.979507][ T9818] usb 1-1: Manufacturer: syz
[ 1073.984112][ T9818] usb 1-1: SerialNumber: syz
[ 1073.999655][ T5884] usb 4-1: USB disconnect, device number 127
[ 1074.197030][T18864] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1074.205686][T18864] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1074.265099][ T9818] usb 1-1: 2:1 : format type 0 is detected, processed as PCM
[ 1074.276773][ T9818] usb 1-1: 2:1: cannot set freq 9338507 to ep 0x82
[ 1074.305370][ T9818] usb 1-1: USB disconnect, device number 115
[ 1074.872971][   T30] kauditd_printk_skb: 1 callbacks suppressed
[ 1074.873007][   T30] audit: type=1400 audit(1754193615.501:2913): avc:  denied  { create } for  pid=18865 comm="syz.2.3617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1075.149301][   T30] audit: type=1400 audit(1754193615.521:2914): avc:  denied  { create } for  pid=18865 comm="syz.2.3617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1075.586882][T18881] syz.0.3621: attempt to access beyond end of device
[ 1075.586882][T18881] nbd0: rw=0, sector=2, nr_sectors = 2 limit=0
[ 1075.600106][T18881] MINIX-fs: unable to read superblock
[ 1075.848328][   T30] audit: type=1400 audit(1754193616.151:2915): avc:  denied  { bind } for  pid=18876 comm="syz.0.3621" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1075.897158][   T30] audit: type=1400 audit(1754193616.151:2916): avc:  denied  { setopt } for  pid=18876 comm="syz.0.3621" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1076.124309][T18883] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1076.490971][   T30] audit: type=1400 audit(1754193617.151:2917): avc:  denied  { read } for  pid=18894 comm="syz.3.3625" path="socket:[65751]" dev="sockfs" ino=65751 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1076.543049][   T30] audit: type=1400 audit(1754193617.201:2918): avc:  denied  { bind } for  pid=18894 comm="syz.3.3625" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1076.562898][   T30] audit: type=1400 audit(1754193617.201:2919): avc:  denied  { listen } for  pid=18894 comm="syz.3.3625" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1077.416142][T18914] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3629'.
[ 1077.440948][T18910] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1077.549073][   T30] audit: type=1400 audit(1754193618.201:2920): avc:  denied  { create } for  pid=18918 comm="syz.0.3631" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1077.640292][   T30] audit: type=1400 audit(1754193618.291:2921): avc:  denied  { mounton } for  pid=18918 comm="syz.0.3631" path="/115/file0" dev="tmpfs" ino=670 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1077.957190][T18929] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1078.005583][T18931] i2c i2c-0: Invalid block write size 34
[ 1078.013019][   T30] audit: type=1400 audit(1754193618.661:2922): avc:  denied  { write } for  pid=18930 comm="syz.4.3635" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[ 1078.036195][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1079.414177][ T5884] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[ 1079.711137][ T5884] usb 4-1: Using ep0 maxpacket: 16
[ 1079.811798][ T5884] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1080.565399][ T5884] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1080.596886][ T5884] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1080.610410][ T5884] usb 4-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00
[ 1080.620460][ T5884] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1080.630024][ T5884] usb 4-1: config 0 descriptor??
[ 1081.644927][ T5884] usbhid 4-1:0.0: can't add hid device: -71
[ 1081.650917][ T5884] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1081.713732][ T5884] usb 4-1: USB disconnect, device number 2
[ 1081.740113][T18959] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1082.090938][T18973] overlayfs: missing 'lowerdir'
[ 1082.133102][T18974] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1082.423742][T18981] FAULT_INJECTION: forcing a failure.
[ 1082.423742][T18981] name failslab, interval 1, probability 0, space 0, times 0
[ 1082.438341][T18981] CPU: 1 UID: 0 PID: 18981 Comm: syz.3.3649 Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[ 1082.438362][T18981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1082.438369][T18981] Call Trace:
[ 1082.438373][T18981]  <TASK>
[ 1082.438377][T18981]  dump_stack_lvl+0x16c/0x1f0
[ 1082.438398][T18981]  should_fail_ex+0x512/0x640
[ 1082.438416][T18981]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[ 1082.438430][T18981]  should_failslab+0xc2/0x120
[ 1082.438443][T18981]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1082.438454][T18981]  ? __alloc_skb+0x2b2/0x380
[ 1082.438472][T18981]  __alloc_skb+0x2b2/0x380
[ 1082.438487][T18981]  ? __pfx___alloc_skb+0x10/0x10
[ 1082.438506][T18981]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 1082.438527][T18981]  netlink_alloc_large_skb+0x69/0x130
[ 1082.438545][T18981]  netlink_sendmsg+0x6a1/0xdd0
[ 1082.438564][T18981]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1082.438586][T18981]  ____sys_sendmsg+0xa95/0xc70
[ 1082.438599][T18981]  ? copy_msghdr_from_user+0x10a/0x160
[ 1082.438614][T18981]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1082.438632][T18981]  ___sys_sendmsg+0x134/0x1d0
[ 1082.438651][T18981]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1082.438678][T18981]  ? __mutex_unlock_slowpath+0x80/0x800
[ 1082.438700][T18981]  __sys_sendmsg+0x16d/0x220
[ 1082.438716][T18981]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1082.438741][T18981]  do_syscall_64+0xcd/0x4c0
[ 1082.438758][T18981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1082.438770][T18981] RIP: 0033:0x7fb123d8eb69
[ 1082.438780][T18981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1082.438791][T18981] RSP: 002b:00007fb124b8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1082.438802][T18981] RAX: ffffffffffffffda RBX: 00007fb123fb5fa0 RCX: 00007fb123d8eb69
[ 1082.438809][T18981] RDX: 0000000000000040 RSI: 0000200000000100 RDI: 0000000000000003
[ 1082.438816][T18981] RBP: 00007fb124b8d090 R08: 0000000000000000 R09: 0000000000000000
[ 1082.438823][T18981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1082.438829][T18981] R13: 0000000000000000 R14: 00007fb123fb5fa0 R15: 00007fff5b535428
[ 1082.438843][T18981]  </TASK>
[ 1082.726625][T18983] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1082.880459][T18989] FAULT_INJECTION: forcing a failure.
[ 1082.880459][T18989] name failslab, interval 1, probability 0, space 0, times 0
[ 1082.924620][T18989] CPU: 1 UID: 0 PID: 18989 Comm: syz.1.3650 Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[ 1082.924650][T18989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1082.924661][T18989] Call Trace:
[ 1082.924667][T18989]  <TASK>
[ 1082.924675][T18989]  dump_stack_lvl+0x16c/0x1f0
[ 1082.924705][T18989]  should_fail_ex+0x512/0x640
[ 1082.924732][T18989]  ? fs_reclaim_acquire+0xae/0x150
[ 1082.924757][T18989]  ? tomoyo_encode2+0x100/0x3e0
[ 1082.924778][T18989]  should_failslab+0xc2/0x120
[ 1082.924799][T18989]  __kmalloc_noprof+0xd2/0x510
[ 1082.924816][T18989]  ? d_absolute_path+0x136/0x1a0
[ 1082.924846][T18989]  tomoyo_encode2+0x100/0x3e0
[ 1082.924871][T18989]  tomoyo_encode+0x29/0x50
[ 1082.924892][T18989]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1082.924922][T18989]  tomoyo_mount_acl+0x1ae/0x850
[ 1082.924942][T18989]  ? bpf_ksym_find+0x127/0x1c0
[ 1082.924968][T18989]  ? is_bpf_text_address+0x94/0x1a0
[ 1082.924989][T18989]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[ 1082.925007][T18989]  ? __kernel_text_address+0xd/0x40
[ 1082.925027][T18989]  ? unwind_get_return_address+0x59/0xa0
[ 1082.925048][T18989]  ? arch_stack_walk+0xa6/0x100
[ 1082.925094][T18989]  ? tomoyo_domain+0xbb/0x150
[ 1082.925117][T18989]  ? tomoyo_profile+0x47/0x60
[ 1082.925145][T18989]  tomoyo_mount_permission+0x16d/0x420
[ 1082.925165][T18989]  ? tomoyo_mount_permission+0x14f/0x420
[ 1082.925187][T18989]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[ 1082.925225][T18989]  security_sb_mount+0x9b/0x260
[ 1082.925252][T18989]  path_mount+0x15f/0x1fd0
[ 1082.925280][T18989]  ? __pfx_path_mount+0x10/0x10
[ 1082.925302][T18989]  ? kmem_cache_free+0x2d1/0x4d0
[ 1082.925319][T18989]  ? putname+0x154/0x1a0
[ 1082.925344][T18989]  ? putname+0x154/0x1a0
[ 1082.925370][T18989]  ? __x64_sys_mount+0x28d/0x310
[ 1082.925396][T18989]  __x64_sys_mount+0x28d/0x310
[ 1082.925420][T18989]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1082.925451][T18989]  do_syscall_64+0xcd/0x4c0
[ 1082.925480][T18989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1082.925498][T18989] RIP: 0033:0x7f282138eb69
[ 1082.925514][T18989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1082.925532][T18989] RSP: 002b:00007f282212f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1082.925550][T18989] RAX: ffffffffffffffda RBX: 00007f28215b5fa0 RCX: 00007f282138eb69
[ 1082.925562][T18989] RDX: 000020000015bffc RSI: 0000200000000240 RDI: 0000000000000000
[ 1082.925574][T18989] RBP: 00007f282212f090 R08: 0000200000000000 R09: 0000000000000000
[ 1082.925585][T18989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1082.925595][T18989] R13: 0000000000000000 R14: 00007f28215b5fa0 R15: 00007ffe3e3f4818
[ 1082.925620][T18989]  </TASK>
[ 1082.925676][T18989] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1083.170575][ T9818] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[ 1083.412172][ T9818] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1083.427113][ T9818] usb 4-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config
[ 1083.449717][ T9818] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1083.458839][ T9818] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1083.473238][ T9818] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1083.482476][ T9818] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1083.490440][ T9818] usb 4-1: Product: syz
[ 1083.494623][ T9818] usb 4-1: Manufacturer: syz
[ 1083.503178][ T9818] cdc_wdm 4-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1083.714717][ T9818] usb 4-1: USB disconnect, device number 3
[ 1084.758350][T19014] fuse: Bad value for 'fd'
[ 1085.188714][T19019] overlayfs: missing 'lowerdir'
[ 1085.277173][   T30] kauditd_printk_skb: 3 callbacks suppressed
[ 1085.277186][   T30] audit: type=1400 audit(1754193625.931:2926): avc:  denied  { connect } for  pid=19023 comm="syz.1.3662" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1085.319543][   T30] audit: type=1400 audit(1754193625.971:2927): avc:  denied  { accept } for  pid=19023 comm="syz.1.3662" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1085.500834][   T30] audit: type=1400 audit(1754193626.011:2928): avc:  denied  { read } for  pid=19023 comm="syz.1.3662" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1086.176199][T19035] can: request_module (can-proto-4) failed.
[ 1086.340723][   T30] audit: type=1400 audit(1754193627.001:2929): avc:  denied  { create } for  pid=19034 comm="syz.4.3664" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[ 1086.621040][ T5884] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[ 1086.895261][ T5884] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1087.668248][ T5884] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1087.728014][ T5884] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1087.744170][T19056] fuse: Bad value for 'fd'
[ 1087.846876][ T5884] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1087.882121][ T5884] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1087.891225][ T5884] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1087.899467][ T5884] usb 4-1: Manufacturer: syz
[ 1087.922630][ T5884] usb 4-1: config 0 descriptor??
[ 1088.501862][ T5884] usbhid 4-1:0.0: can't add hid device: -71
[ 1088.616644][ T5884] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1088.652453][ T5884] usb 4-1: USB disconnect, device number 4
[ 1088.826259][T19069] raw_sendmsg: syz.4.3674 forgot to set AF_INET. Fix it!
[ 1088.932636][   T30] audit: type=1400 audit(1754193629.581:2930): avc:  denied  { mount } for  pid=19068 comm="syz.4.3674" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[ 1089.193989][T19083] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3678'.
[ 1089.206124][   T30] audit: type=1400 audit(1754193629.861:2931): avc:  denied  { set_context_mgr } for  pid=19082 comm="syz.0.3678" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1089.301540][T19084] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3678'.
[ 1089.380703][ T5953] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[ 1089.390595][ T9818] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[ 1089.593750][ T5953] usb 5-1: New USB device found, idVendor=1235, idProduct=0018, bcdDevice=f0.ee
[ 1089.606091][ T5953] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1089.615046][ T9818] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1089.622895][ T5953] usb 5-1: config 0 descriptor??
[ 1089.629371][ T9818] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1089.642832][ T5953] usb 5-1: selecting invalid altsetting 1
[ 1089.669064][ T9818] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1089.672969][ T5953] snd-usb-audio 5-1:0.0: probe with driver snd-usb-audio failed with error -22
[ 1089.681689][ T9818] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1089.700172][ T9818] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1089.734669][ T9818] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1089.748553][ T9818] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1089.756904][ T9818] usb 4-1: Product: syz
[ 1089.767363][ T9818] usb 4-1: Manufacturer: syz
[ 1089.793930][ T9818] cdc_wdm 4-1:1.0: skipping garbage
[ 1089.799300][ T9818] cdc_wdm 4-1:1.0: skipping garbage
[ 1089.823191][ T9818] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1089.829085][ T9818] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1089.890067][   T30] audit: type=1400 audit(1754193630.541:2932): avc:  denied  { bind } for  pid=19077 comm="syz.4.3675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1090.256803][T19098] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=19098 comm=syz.4.3675
[ 1090.339110][   T30] audit: type=1400 audit(1754193630.911:2933): avc:  denied  { read } for  pid=19077 comm="syz.4.3675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1092.360892][   T92] usb 4-1: USB disconnect, device number 5
[ 1093.244097][ T5884] usb 5-1: USB disconnect, device number 11
[ 1093.640610][ T5884] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[ 1093.810597][ T5884] usb 5-1: Using ep0 maxpacket: 8
[ 1093.816927][ T5884] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1093.826266][ T5884] usb 5-1: config 1 has no interface number 1
[ 1093.832914][ T5884] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1093.847358][ T5884] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1093.856715][ T5884] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1093.864967][ T5884] usb 5-1: Product: syz
[ 1093.880152][ T5884] usb 5-1: Manufacturer: syz
[ 1093.884814][ T5884] usb 5-1: SerialNumber: syz
[ 1094.199711][   T30] audit: type=1400 audit(1754193634.851:2934): avc:  denied  { write } for  pid=19110 comm="syz.4.3685" name="binder0" dev="binder" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1094.286882][ T5884] usb 5-1: 2:1 : format type 0 is detected, processed as PCM
[ 1094.295303][ T5884] usb 5-1: 2:1 : sample bitwidth 243 in over sample bytes 3
[ 1094.310596][ T5884] usb 5-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 1094.316672][ T5884] usb 5-1: 2:1 : invalid channels 0
[ 1094.520774][T19131] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3691'.
[ 1094.800724][T19131] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3691'.
[ 1094.809762][T19131] FAULT_INJECTION: forcing a failure.
[ 1094.809762][T19131] name failslab, interval 1, probability 0, space 0, times 0
[ 1094.822402][T19131] CPU: 1 UID: 0 PID: 19131 Comm: syz.4.3691 Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[ 1094.822417][T19131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1094.822424][T19131] Call Trace:
[ 1094.822428][T19131]  <TASK>
[ 1094.822432][T19131]  dump_stack_lvl+0x16c/0x1f0
[ 1094.822453][T19131]  should_fail_ex+0x512/0x640
[ 1094.822471][T19131]  ? __kmalloc_noprof+0xbf/0x510
[ 1094.822483][T19131]  ? fib6_info_alloc+0x40/0x160
[ 1094.822495][T19131]  should_failslab+0xc2/0x120
[ 1094.822508][T19131]  __kmalloc_noprof+0xd2/0x510
[ 1094.822518][T19131]  ? __mutex_trylock_common+0xe9/0x250
[ 1094.822539][T19131]  fib6_info_alloc+0x40/0x160
[ 1094.822551][T19131]  ip6_route_info_create+0x14c/0x870
[ 1094.822571][T19131]  ip6_route_add.part.0+0x22/0x1d0
[ 1094.822588][T19131]  ip6_route_add+0x45/0x60
[ 1094.822604][T19131]  addrconf_add_mroute+0x1dd/0x350
[ 1094.822615][T19131]  ? __pfx_addrconf_add_mroute+0x10/0x10
[ 1094.822638][T19131]  addrconf_add_dev+0x14e/0x1c0
[ 1094.822650][T19131]  inet6_addr_add+0xfe/0x960
[ 1094.822666][T19131]  inet6_rtm_newaddr+0x1619/0x1c70
[ 1094.822683][T19131]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[ 1094.822698][T19131]  ? __lock_acquire+0x62e/0x1ce0
[ 1094.822722][T19131]  ? find_held_lock+0x2b/0x80
[ 1094.822735][T19131]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[ 1094.822749][T19131]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[ 1094.822762][T19131]  ? rtnetlink_rcv_msg+0x93a/0xe90
[ 1094.822781][T19131]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[ 1094.822795][T19131]  rtnetlink_rcv_msg+0x95b/0xe90
[ 1094.822817][T19131]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1094.822837][T19131]  ? ref_tracker_free+0x37c/0x830
[ 1094.822850][T19131]  netlink_rcv_skb+0x158/0x420
[ 1094.822867][T19131]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1094.822885][T19131]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1094.822907][T19131]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1094.822926][T19131]  netlink_unicast+0x5a7/0x870
[ 1094.822945][T19131]  ? __pfx_netlink_unicast+0x10/0x10
[ 1094.822962][T19131]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 1094.822983][T19131]  netlink_sendmsg+0x8d1/0xdd0
[ 1094.823002][T19131]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1094.823024][T19131]  ____sys_sendmsg+0xa95/0xc70
[ 1094.823037][T19131]  ? copy_msghdr_from_user+0x10a/0x160
[ 1094.823053][T19131]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1094.823071][T19131]  ___sys_sendmsg+0x134/0x1d0
[ 1094.823087][T19131]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1094.823115][T19131]  ? __mutex_unlock_slowpath+0x80/0x800
[ 1094.823138][T19131]  __sys_sendmsg+0x16d/0x220
[ 1094.823154][T19131]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1094.823178][T19131]  do_syscall_64+0xcd/0x4c0
[ 1094.823196][T19131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1094.823207][T19131] RIP: 0033:0x7fcb47b8eb69
[ 1094.823216][T19131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1094.823228][T19131] RSP: 002b:00007fcb48a35038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1094.823239][T19131] RAX: ffffffffffffffda RBX: 00007fcb47db5fa0 RCX: 00007fcb47b8eb69
[ 1094.823246][T19131] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 000000000000000b
[ 1094.823253][T19131] RBP: 00007fcb48a35090 R08: 0000000000000000 R09: 0000000000000000
[ 1094.823259][T19131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1094.823265][T19131] R13: 0000000000000000 R14: 00007fcb47db5fa0 R15: 00007ffd0e4a53b8
[ 1094.823279][T19131]  </TASK>
[ 1095.312423][ T5884] usb 5-1: USB disconnect, device number 12
[ 1095.365272][T19140] fuse: Invalid rootmode
[ 1095.680626][   T30] audit: type=1400 audit(1754193636.331:2935): avc:  denied  { create } for  pid=19144 comm="syz.2.3696" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1095.800852][   T30] audit: type=1400 audit(1754193636.331:2936): avc:  denied  { bind } for  pid=19144 comm="syz.2.3696" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1095.820598][   T30] audit: type=1400 audit(1754193636.331:2937): avc:  denied  { name_bind } for  pid=19144 comm="syz.2.3696" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[ 1095.841528][   T30] audit: type=1400 audit(1754193636.331:2938): avc:  denied  { node_bind } for  pid=19144 comm="syz.2.3696" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[ 1095.862748][   T30] audit: type=1400 audit(1754193636.331:2939): avc:  denied  { read } for  pid=19144 comm="syz.2.3696" dev="sockfs" ino=67150 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1095.956300][T19152] Invalid source name
[ 1095.960323][T19152] UBIFS error (pid: 19152): cannot open "./file0", error -22
[ 1096.042289][T19154] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3698'.
[ 1096.650784][ T5850] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[ 1096.670567][ T5884] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 1096.875557][ T5850] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1096.933406][ T5850] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1096.945768][ T5884] usb 4-1: Using ep0 maxpacket: 8
[ 1096.952853][ T5884] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[ 1096.962101][ T5884] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1096.972265][ T5884] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1097.090761][ T5884] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1097.200828][ T5884] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1097.222436][ T5850] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1097.251838][ T5884] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1097.280606][ T5884] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1097.304740][ T5850] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1097.347933][ T5850] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1097.438523][ T5850] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1097.457841][ T5850] usb 5-1: Manufacturer: syz
[ 1097.467662][ T5850] usb 5-1: config 0 descriptor??
[ 1097.787718][ T5884] usb 4-1: usb_control_msg returned -32
[ 1097.820758][ T5884] usbtmc 4-1:16.0: can't read capabilities
[ 1098.613670][ T5850] usbhid 5-1:0.0: can't add hid device: -71
[ 1098.619986][ T5850] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1098.630786][ T5850] usb 5-1: USB disconnect, device number 13
[ 1098.677235][T19179] audit: audit_lost=3 audit_rate_limit=0 audit_backlog_limit=64
[ 1098.685212][T19179] audit: out of memory in audit_log_start
[ 1099.697497][   T92] usb 4-1: USB disconnect, device number 6
[ 1101.658082][T19228] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1101.677760][T19232] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3720'.
[ 1101.752409][   T30] audit: type=1400 audit(1754193642.411:2940): avc:  denied  { bind } for  pid=19236 comm="syz.1.3722" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1101.753049][T19237] Bluetooth: MGMT ver 1.23
[ 1101.779245][   T30] audit: type=1400 audit(1754193642.411:2941): avc:  denied  { write } for  pid=19236 comm="syz.1.3722" path="socket:[66383]" dev="sockfs" ino=66383 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1101.960666][ T5850] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[ 1102.148041][ T5850] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1102.157874][ T5850] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1102.169830][ T5850] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1102.182788][ T5850] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1102.197655][ T5850] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1102.216690][ T5850] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1102.226043][ T5850] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1102.262141][ T5850] usb 5-1: Product: syz
[ 1102.267820][ T5850] usb 5-1: Manufacturer: syz
[ 1102.311251][ T5850] cdc_wdm 5-1:1.0: skipping garbage
[ 1102.316468][ T5850] cdc_wdm 5-1:1.0: skipping garbage
[ 1102.329295][ T5850] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[ 1102.335410][ T5850] cdc_wdm 5-1:1.0: Unknown control protocol
[ 1102.593082][ T5884] usb 1-1: new high-speed USB device number 116 using dummy_hcd
[ 1102.849572][    T9] usb 5-1: USB disconnect, device number 14
[ 1102.934213][ T5884] usb 1-1: config 0 has no interfaces?
[ 1102.945023][ T5884] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 1102.956407][ T5884] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1103.117286][ T5884] usb 1-1: Product: syz
[ 1103.122281][ T5884] usb 1-1: Manufacturer: syz
[ 1103.127455][ T5884] usb 1-1: SerialNumber: syz
[ 1103.150527][ T5884] usb 1-1: config 0 descriptor??
[ 1103.187071][T19259] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 1103.213771][T19259] CIFS: Unable to determine destination address
[ 1103.617810][   T30] audit: type=1400 audit(1754193644.271:2942): avc:  denied  { getopt } for  pid=19261 comm="syz.1.3729" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1103.823660][T19270] fuse: Bad value for 'rootmode'
[ 1104.803506][ T9818] usb 1-1: USB disconnect, device number 116
[ 1105.140739][    T9] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[ 1105.177815][T19290] overlayfs: missing 'lowerdir'
[ 1105.304634][    T9] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1105.316774][    T9] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1105.340356][    T9] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1105.352724][    T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1105.364394][    T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1105.378324][    T9] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1105.388100][    T9] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1105.398788][    T9] usb 5-1: Product: syz
[ 1105.405759][    T9] usb 5-1: Manufacturer: syz
[ 1105.416793][    T9] cdc_wdm 5-1:1.0: skipping garbage
[ 1105.422453][    T9] cdc_wdm 5-1:1.0: skipping garbage
[ 1105.428447][    T9] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[ 1105.435280][    T9] cdc_wdm 5-1:1.0: Unknown control protocol
[ 1105.613661][   T30] audit: type=1400 audit(1754193646.271:2943): avc:  denied  { read write } for  pid=19294 comm="syz.3.3739" name="uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[ 1105.641105][   T30] audit: type=1400 audit(1754193646.271:2944): avc:  denied  { open } for  pid=19294 comm="syz.3.3739" path="/dev/uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[ 1106.565542][T19301] random: crng reseeded on system resumption
[ 1106.677334][   T30] audit: type=1400 audit(1754193647.221:2945): avc:  denied  { append } for  pid=19294 comm="syz.3.3739" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[ 1106.793292][   T30] audit: type=1400 audit(1754193647.221:2946): avc:  denied  { open } for  pid=19294 comm="syz.3.3739" path="/dev/snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[ 1106.839964][T19303] netlink: 2384 bytes leftover after parsing attributes in process `syz.0.3741'.
[ 1107.143134][T19307] binder: BINDER_SET_CONTEXT_MGR already set
[ 1107.149300][T19307] binder: 19306:19307 ioctl 4018620d 2000000002c0 returned -16
[ 1107.157225][   T30] audit: type=1400 audit(1754193647.801:2947): avc:  denied  { map } for  pid=19306 comm="syz.3.3743" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1107.193150][    T9] usb 5-1: USB disconnect, device number 15
[ 1107.225339][T19307] overlay: ./file0 is not a directory
[ 1107.503987][T19320] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3744'.
[ 1107.590609][   T30] audit: type=1400 audit(1754193648.231:2948): avc:  denied  { write } for  pid=19314 comm="syz.3.3745" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[ 1107.859683][T19303] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3741'.
[ 1108.232402][T19338] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3750'.
[ 1108.247054][T19338] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3750'.
[ 1108.344288][   T30] audit: type=1400 audit(1754193648.901:2949): avc:  denied  { getopt } for  pid=19337 comm="syz.0.3750" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[ 1108.850013][T19342] trusted_key: encrypted_key: key user:syz not found
[ 1108.852610][T19342] comedi comedi2: dt2801: I/O port conflict (0x8,2)
[ 1108.861790][   T30] audit: type=1400 audit(1754193649.401:2950): avc:  denied  { mount } for  pid=19341 comm="syz.0.3753" name="/" dev="hugetlbfs" ino=68628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[ 1109.161569][   T30] audit: type=1400 audit(1754193649.821:2951): avc:  denied  { unmount } for  pid=16408 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[ 1109.529757][   T30] audit: type=1400 audit(1754193650.181:2952): avc:  denied  { create } for  pid=19343 comm="syz.3.3752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[ 1109.734715][T19359] kvm: kvm [19356]: vcpu0, guest rIP: 0xeeee8000 Unhandled WRMSR(0x40000006) = 0x0
[ 1109.860692][   T30] audit: type=1400 audit(1754193650.511:2953): avc:  denied  { read write } for  pid=19356 comm="syz.4.3756" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 1109.987861][   T30] audit: type=1400 audit(1754193650.511:2954): avc:  denied  { open } for  pid=19356 comm="syz.4.3756" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 1110.011429][   T30] audit: type=1400 audit(1754193650.511:2955): avc:  denied  { ioctl } for  pid=19356 comm="syz.4.3756" path="/dev/nullb0" dev="devtmpfs" ino=696 ioctlcmd=0x937b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 1110.435487][T19374] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3757'.
[ 1111.194918][T19378] netlink: 'syz.4.3759': attribute type 4 has an invalid length.
[ 1111.209482][T19378] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.3759'.
[ 1111.975443][T19384] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3759'.
[ 1113.216179][T19391] netlink: 112 bytes leftover after parsing attributes in process `syz.0.3763'.
[ 1113.220692][T19392] netlink: 112 bytes leftover after parsing attributes in process `syz.0.3763'.
[ 1113.526418][   T30] kauditd_printk_skb: 2 callbacks suppressed
[ 1113.526435][   T30] audit: type=1400 audit(1754193654.181:2958): avc:  denied  { read } for  pid=19390 comm="syz.0.3763" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1113.635495][T19405] CIFS: Unable to determine destination address
[ 1113.992671][T19414] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1114.171285][ T5953] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 1114.317323][T19420] FAULT_INJECTION: forcing a failure.
[ 1114.317323][T19420] name failslab, interval 1, probability 0, space 0, times 0
[ 1114.331016][T19420] CPU: 1 UID: 0 PID: 19420 Comm: syz.3.3770 Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[ 1114.331041][T19420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1114.331052][T19420] Call Trace:
[ 1114.331058][T19420]  <TASK>
[ 1114.331065][T19420]  dump_stack_lvl+0x16c/0x1f0
[ 1114.331095][T19420]  should_fail_ex+0x512/0x640
[ 1114.331121][T19420]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1114.331150][T19420]  should_failslab+0xc2/0x120
[ 1114.331170][T19420]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1114.331196][T19420]  ? mpi_alloc+0x46/0x230
[ 1114.331221][T19420]  mpi_alloc+0x46/0x230
[ 1114.331241][T19420]  mpi_read_raw_data+0x133/0x4a0
[ 1114.331265][T19420]  dh_set_secret+0x190/0x260
[ 1114.331284][T19420]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1114.331309][T19420]  ? __pfx_dh_set_secret+0x10/0x10
[ 1114.331335][T19420]  ? __pfx_dh_set_secret+0x10/0x10
[ 1114.331355][T19420]  ? __keyctl_dh_compute+0x46f/0x10e0
[ 1114.331386][T19420]  __keyctl_dh_compute+0x4da/0x10e0
[ 1114.331413][T19420]  ? __rcu_read_unlock+0x2bc/0x620
[ 1114.331431][T19420]  ? __pfx___keyctl_dh_compute+0x10/0x10
[ 1114.331486][T19420]  keyctl_dh_compute+0xd2/0x140
[ 1114.331510][T19420]  ? __pfx_keyctl_dh_compute+0x10/0x10
[ 1114.331538][T19420]  ? ksys_write+0x1ac/0x250
[ 1114.331556][T19420]  ? __pfx_ksys_write+0x10/0x10
[ 1114.331579][T19420]  __do_sys_keyctl+0x4df/0x590
[ 1114.331600][T19420]  do_syscall_64+0xcd/0x4c0
[ 1114.331626][T19420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1114.331645][T19420] RIP: 0033:0x7fb123d8eb69
[ 1114.331660][T19420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1114.331675][T19420] RSP: 002b:00007fb124b4b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1114.331693][T19420] RAX: ffffffffffffffda RBX: 00007fb123fb6160 RCX: 00007fb123d8eb69
[ 1114.331704][T19420] RDX: 0000200000000280 RSI: 0000200000000400 RDI: 0000000000000017
[ 1114.331715][T19420] RBP: 00007fb124b4b090 R08: 00002000000003c0 R09: 0000000000000000
[ 1114.331726][T19420] R10: 00000000000000be R11: 0000000000000246 R12: 0000000000000002
[ 1114.331737][T19420] R13: 0000000000000000 R14: 00007fb123fb6160 R15: 00007fff5b535428
[ 1114.331760][T19420]  </TASK>
[ 1114.333187][T19420] kAFS: No cell specified
[ 1114.575716][ T5953] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1114.586910][ T5953] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1114.609553][ T5953] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1114.618683][ T5953] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1114.630457][ T5953] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1114.646195][ T5953] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1114.661213][ T5953] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1114.671051][ T5953] usb 5-1: Product: syz
[ 1114.678631][ T5953] usb 5-1: Manufacturer: syz
[ 1115.015472][ T5953] cdc_wdm 5-1:1.0: skipping garbage
[ 1115.020851][ T5953] cdc_wdm 5-1:1.0: skipping garbage
[ 1115.027080][ T5953] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[ 1115.035684][ T5953] cdc_wdm 5-1:1.0: Unknown control protocol
[ 1115.383404][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.389721][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 1115.520543][ T5953] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 1115.573059][ T5850] usb 5-1: USB disconnect, device number 16
[ 1115.683407][ T5953] usb 4-1: Using ep0 maxpacket: 8
[ 1115.690227][ T5953] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[ 1115.729305][ T5953] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1115.809233][ T5953] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1115.839537][ T5953] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1115.872866][ T5953] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1115.891220][ T5953] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1115.901095][ T5953] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1115.970608][   T30] audit: type=1400 audit(1754193656.611:2959): avc:  denied  { bind } for  pid=19445 comm="syz.2.3778" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1115.992158][   T30] audit: type=1400 audit(1754193656.611:2960): avc:  denied  { write } for  pid=19445 comm="syz.2.3778" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1116.224882][ T5953] usb 4-1: usb_control_msg returned -32
[ 1116.231946][ T5953] usbtmc 4-1:16.0: can't read capabilities
[ 1116.266232][   T30] audit: type=1400 audit(1754193656.921:2961): avc:  denied  { unmount } for  pid=16408 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[ 1116.408357][   T30] audit: type=1400 audit(1754193657.061:2962): avc:  denied  { create } for  pid=19449 comm="syz.0.3780" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[ 1116.633028][   T30] audit: type=1400 audit(1754193657.291:2963): avc:  denied  { getopt } for  pid=19455 comm="syz.2.3782" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1116.840661][ T5953] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[ 1117.307238][ T5953] usb 5-1: config 0 has no interfaces?
[ 1117.312791][ T5953] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1117.321968][ T5953] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1117.335175][ T5953] usb 5-1: config 0 descriptor??
[ 1117.481841][  T978] usb 1-1: new high-speed USB device number 117 using dummy_hcd
[ 1117.640581][  T978] usb 1-1: Using ep0 maxpacket: 32
[ 1117.665612][  T978] usb 1-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[ 1117.674893][  T978] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1118.187172][  T978] usb 1-1: Product: syz
[ 1118.194825][  T978] usb 1-1: Manufacturer: syz
[ 1118.203318][  T978] usb 1-1: SerialNumber: syz
[ 1118.253218][  T978] usb 1-1: config 0 descriptor??
[ 1118.486338][ T5884] usb 4-1: USB disconnect, device number 7
[ 1118.678752][  T978] airspy 1-1:0.0: Board ID: 00
[ 1118.683552][  T978] airspy 1-1:0.0: Firmware version: 
[ 1119.267887][  T978] airspy 1-1:0.0: usb_control_msg() failed -71 request 11
[ 1119.282441][  T978] airspy 1-1:0.0: Registered as swradio24
[ 1119.288161][  T978] airspy 1-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[ 1119.315837][T19480] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1119.335735][T16764] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1119.343800][T16764] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1119.371025][  T978] usb 1-1: USB disconnect, device number 117
[ 1119.419592][   T30] audit: type=1400 audit(1754193660.071:2964): avc:  denied  { bind } for  pid=19473 comm="syz.1.3787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1119.455010][   T30] audit: type=1400 audit(1754193660.101:2965): avc:  denied  { name_bind } for  pid=19473 comm="syz.1.3787" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[ 1119.486619][   T30] audit: type=1400 audit(1754193660.101:2966): avc:  denied  { node_bind } for  pid=19473 comm="syz.1.3787" saddr=2001::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[ 1119.830392][T19489] IPVS: lblc: SCTP 172.20.20.187:0 - no destination available
[ 1119.921732][T19486] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1119.970362][ T2949] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1120.250764][ T5884] usb 1-1: new high-speed USB device number 118 using dummy_hcd
[ 1120.455923][ T5884] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1120.480368][ T5884] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1120.515267][ T5850] usb 5-1: USB disconnect, device number 17
[ 1120.540971][ T5884] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[ 1120.575448][ T5884] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1120.590511][ T5884] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1120.598513][ T5884] usb 1-1: Product: syz
[ 1120.609694][ T5884] usb 1-1: Manufacturer: syz
[ 1120.731318][ T5884] usb 1-1: SerialNumber: syz
[ 1121.293585][T19494] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1121.370681][T16982] Bluetooth: hci2: command 0x1003 tx timeout
[ 1121.371530][   T51] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1121.585610][T19512] tipc: MTU too low for tipc bearer
[ 1122.201665][T19494] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1123.499460][ T5884] cdc_ncm 1-1:1.0: bind() failure
[ 1123.518937][ T5884] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[ 1123.533646][  T978] libceph: connect (1)[c::]:6789 error -101
[ 1123.540217][  T978] libceph: mon0 (1)[c::]:6789 connect error
[ 1123.560381][ T5884] cdc_ncm 1-1:1.1: bind() failure
[ 1123.600679][ T5884] usb 1-1: USB disconnect, device number 118
[ 1123.623174][T19519] ceph: No mds server is up or the cluster is laggy
[ 1123.835826][   T30] audit: type=1400 audit(1754193664.491:2967): avc:  denied  { execute } for  pid=19534 comm="syz.4.3803" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=68273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[ 1123.837342][T19533] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3802'.
[ 1123.880796][T19533] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3802'.
[ 1123.896348][T19533] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3802'.
[ 1123.924993][T19529] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[ 1123.930641][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1124.117279][T19541] overlayfs: missing 'lowerdir'
[ 1124.654138][T19535] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1125.310545][ T5884] usb 1-1: new high-speed USB device number 119 using dummy_hcd
[ 1125.348146][   T30] audit: type=1400 audit(1754193665.991:2968): avc:  denied  { read } for  pid=19557 comm="syz.3.3810" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[ 1125.460616][ T5884] usb 1-1: Using ep0 maxpacket: 16
[ 1125.468533][ T5884] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7
[ 1125.486833][ T5884] usb 1-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f
[ 1125.497082][ T5884] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1125.510642][   T30] audit: type=1400 audit(1754193665.991:2969): avc:  denied  { open } for  pid=19557 comm="syz.3.3810" path="/192/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[ 1125.557379][ T5884] usb 1-1: Product: syz
[ 1125.571447][ T5884] usb 1-1: Manufacturer: syz
[ 1125.587427][ T5884] usb 1-1: SerialNumber: syz
[ 1125.608488][ T5884] usb 1-1: config 0 descriptor??
[ 1125.621244][ T5850] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1125.636142][ T5884] hub 1-1:0.0: bad descriptor, ignoring hub
[ 1125.642508][ T5884] hub 1-1:0.0: probe with driver hub failed with error -5
[ 1125.663048][ T5884] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 1125.780520][ T5850] usb 4-1: Using ep0 maxpacket: 16
[ 1125.812962][ T5850] usb 4-1: config 0 has an invalid interface number: 176 but max is 0
[ 1125.821149][ T5850] usb 4-1: config 0 has no interface number 0
[ 1125.827205][ T5850] usb 4-1: config 0 interface 176 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 11
[ 1125.844687][ T5884] usb 1-1: USB disconnect, device number 119
[ 1125.854441][ T5850] usb 4-1: New USB device found, idVendor=1004, idProduct=61aa, bcdDevice=18.b3
[ 1125.865615][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1125.873693][ T5850] usb 4-1: Product: syz
[ 1125.882130][ T5850] usb 4-1: Manufacturer: syz
[ 1125.890395][ T5850] usb 4-1: SerialNumber: syz
[ 1125.936132][ T5850] usb 4-1: config 0 descriptor??
[ 1126.175198][ T5953] usb 4-1: USB disconnect, device number 8
[ 1126.207898][T19568] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3812'.
[ 1126.364995][T19572] syz.4.3812: attempt to access beyond end of device
[ 1126.364995][T19572] nbd4: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1126.378485][T19572] gfs2: error -5 reading superblock
[ 1127.510404][   T30] audit: type=1400 audit(1754193668.151:2970): avc:  denied  { create } for  pid=19567 comm="syz.2.3813" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1127.544138][   T30] audit: type=1400 audit(1754193668.161:2971): avc:  denied  { setopt } for  pid=19567 comm="syz.2.3813" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1127.923218][T19585] loop7: detected capacity change from 0 to 16384
[ 1128.105602][   T30] audit: type=1400 audit(1754193668.591:2972): avc:  denied  { create } for  pid=19583 comm="syz.4.3816" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1128.153231][   T30] audit: type=1400 audit(1754193668.601:2973): avc:  denied  { bind } for  pid=19583 comm="syz.4.3816" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1128.655084][T19600] overlayfs: missing 'lowerdir'
[ 1129.789798][T19614] Invalid source name
[ 1129.793860][T19614] UBIFS error (pid: 19614): cannot open "./file0", error -22
[ 1129.802476][T19614] binder: 19611:19614 ioctl 40046210 0 returned -14
[ 1129.895516][T19615] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3823'.
[ 1130.368467][T19622] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1131.209888][T19629] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3827'.
[ 1131.296353][T19631] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3826'.
[ 1131.825952][T19640] Bluetooth: MGMT ver 1.23
[ 1132.010627][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1132.190688][T19647] overlayfs: missing 'lowerdir'
[ 1132.411464][T19655] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1132.423945][T19655] syzkaller0: entered promiscuous mode
[ 1132.431947][T19655] syzkaller0: entered allmulticast mode
[ 1132.562574][T19655] tipc: Resetting bearer <eth:syzkaller0>
[ 1132.569485][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1132.577765][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1132.592415][T19657] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1132.702641][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1132.852628][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1132.907632][T19654] tipc: Resetting bearer <eth:syzkaller0>
[ 1132.930266][T19654] tipc: Disabling bearer <eth:syzkaller0>
[ 1133.903614][T19669] Invalid source name
[ 1133.907642][T19669] UBIFS error (pid: 19669): cannot open "./file0", error -22
[ 1133.909231][T19669] binder: 19659:19669 ioctl 40046210 0 returned -14
[ 1133.924221][T19669] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3836'.
[ 1134.061003][   T30] audit: type=1400 audit(1754193674.681:2974): avc:  denied  { listen } for  pid=19668 comm="syz.3.3838" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1136.335575][T19669] team0: Port device team_slave_1 removed
[ 1136.344407][   T30] audit: type=1400 audit(1754193676.401:2975): avc:  denied  { accept } for  pid=19668 comm="syz.3.3838" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1140.512360][   T30] audit: type=1400 audit(1754193681.121:2976): avc:  denied  { lock } for  pid=19735 comm="syz.3.3857" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[ 1141.222895][T19747] Invalid source name
[ 1141.226929][T19747] UBIFS error (pid: 19747): cannot open "./file0", error -22
[ 1141.235494][T19747] binder: 19743:19747 ioctl 40046210 0 returned -14
[ 1141.327188][T19748] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3858'.
[ 1143.390614][    T9] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[ 1143.812220][    T9] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1143.836236][    T9] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1143.872609][    T9] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1143.919537][    T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1143.990591][    T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1144.034745][   T30] audit: type=1400 audit(1754193684.641:2977): avc:  denied  { connect } for  pid=19756 comm="syz.0.3861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1144.036789][    T9] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1144.160295][    T9] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1145.088103][    T9] usb 5-1: Product: syz
[ 1145.093734][    T9] usb 5-1: Manufacturer: syz
[ 1145.211519][    T9] cdc_wdm 5-1:1.0: skipping garbage
[ 1145.216783][    T9] cdc_wdm 5-1:1.0: skipping garbage
[ 1145.235681][    T9] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[ 1145.251780][    T9] cdc_wdm 5-1:1.0: Unknown control protocol
[ 1145.826176][   T92] usb 5-1: USB disconnect, device number 18
[ 1146.089258][T19797] nbd: must specify a size in bytes for the device
[ 1146.200633][    T9] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1146.524312][    T9] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1146.532956][    T9] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1146.603486][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1146.677739][    T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1146.711827][    T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1146.749561][    T9] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1146.963876][    T9] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1147.016581][    T9] usb 4-1: Product: syz
[ 1147.034564][    T9] usb 4-1: Manufacturer: syz
[ 1147.048331][    T9] cdc_wdm 4-1:1.0: skipping garbage
[ 1147.060565][    T9] cdc_wdm 4-1:1.0: skipping garbage
[ 1147.082472][    T9] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1147.100561][    T9] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1147.250582][   T24] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[ 1147.316038][   T30] audit: type=1400 audit(1754193687.971:2978): avc:  denied  { setopt } for  pid=19801 comm="syz.0.3874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1147.370653][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1147.410500][   T24] usb 5-1: Using ep0 maxpacket: 16
[ 1147.416998][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1147.428526][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1147.448675][   T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1147.461854][   T24] usb 5-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00
[ 1147.472399][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1147.481940][   T24] usb 5-1: config 0 descriptor??
[ 1147.564227][    T9] usb 4-1: USB disconnect, device number 9
[ 1147.893999][   T24] hid-multitouch 0003:0457:07DA.0029: unknown main item tag 0x0
[ 1147.905272][   T24] hid-multitouch 0003:0457:07DA.0029: unknown main item tag 0x0
[ 1147.918842][   T24] hid-multitouch 0003:0457:07DA.0029: unknown main item tag 0x0
[ 1147.933132][   T24] hid-multitouch 0003:0457:07DA.0029: unknown main item tag 0x0
[ 1147.940983][   T24] hid-multitouch 0003:0457:07DA.0029: unbalanced collection at end of report description
[ 1147.951314][   T24] hid-multitouch 0003:0457:07DA.0029: probe with driver hid-multitouch failed with error -22
[ 1148.224459][T19815] FAULT_INJECTION: forcing a failure.
[ 1148.224459][T19815] name failslab, interval 1, probability 0, space 0, times 0
[ 1148.239692][T19815] CPU: 1 UID: 0 PID: 19815 Comm: syz.0.3876 Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[ 1148.239716][T19815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1148.239727][T19815] Call Trace:
[ 1148.239733][T19815]  <TASK>
[ 1148.239740][T19815]  dump_stack_lvl+0x16c/0x1f0
[ 1148.239769][T19815]  should_fail_ex+0x512/0x640
[ 1148.239794][T19815]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1148.239816][T19815]  should_failslab+0xc2/0x120
[ 1148.239835][T19815]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1148.239852][T19815]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1148.239871][T19815]  ? ptlock_alloc+0x1f/0x70
[ 1148.239899][T19815]  ptlock_alloc+0x1f/0x70
[ 1148.239923][T19815]  pte_alloc_one+0x82/0x3a0
[ 1148.239945][T19815]  __pte_alloc+0x6d/0x3c0
[ 1148.239965][T19815]  ? __pfx___pte_alloc+0x10/0x10
[ 1148.239985][T19815]  ? walk_pgd_range+0x13b4/0x1f50
[ 1148.240007][T19815]  walk_pgd_range+0xb84/0x1f50
[ 1148.240028][T19815]  ? __pfx_guard_install_set_pte+0x10/0x10
[ 1148.240043][T19815]  ? __pfx_guard_install_pte_entry+0x10/0x10
[ 1148.240058][T19815]  ? __pfx_guard_install_set_pte+0x10/0x10
[ 1148.240072][T19815]  ? __pfx_guard_install_set_pte+0x10/0x10
[ 1148.240085][T19815]  ? __pfx_guard_install_set_pte+0x10/0x10
[ 1148.240099][T19815]  ? __pfx_walk_pgd_range+0x10/0x10
[ 1148.240114][T19815]  __walk_page_range+0x163/0x820
[ 1148.240127][T19815]  ? find_vma+0xbf/0x140
[ 1148.240140][T19815]  ? __pfx_find_vma+0x10/0x10
[ 1148.240153][T19815]  ? walk_page_test+0x9b/0x180
[ 1148.240166][T19815]  walk_page_range_mm+0x461/0xb40
[ 1148.240186][T19815]  ? __pfx_walk_page_range_mm+0x10/0x10
[ 1148.240201][T19815]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1148.240217][T19815]  madvise_vma_behavior+0xf05/0x2c50
[ 1148.240233][T19815]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[ 1148.240250][T19815]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1148.240265][T19815]  ? __pfx_mas_prev+0x10/0x10
[ 1148.240290][T19815]  ? find_vma_prev+0xda/0x160
[ 1148.240304][T19815]  ? __pfx_find_vma_prev+0x10/0x10
[ 1148.240326][T19815]  madvise_walk_vmas+0x31f/0x9c0
[ 1148.240342][T19815]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 1148.240360][T19815]  madvise_do_behavior+0x1e2/0x530
[ 1148.240376][T19815]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 1148.240391][T19815]  ? down_read+0x13d/0x480
[ 1148.240404][T19815]  ? find_held_lock+0x2b/0x80
[ 1148.240421][T19815]  do_madvise+0x176/0x240
[ 1148.240434][T19815]  ? __pfx_do_madvise+0x10/0x10
[ 1148.240461][T19815]  ? __fget_files+0x20e/0x3c0
[ 1148.240492][T19815]  ? __pfx_ksys_write+0x10/0x10
[ 1148.240514][T19815]  __x64_sys_madvise+0xa9/0x110
[ 1148.240534][T19815]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1148.240556][T19815]  do_syscall_64+0xcd/0x4c0
[ 1148.240574][T19815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1148.240585][T19815] RIP: 0033:0x7f2e88d8eb69
[ 1148.240595][T19815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1148.240607][T19815] RSP: 002b:00007f2e89c25038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 1148.240617][T19815] RAX: ffffffffffffffda RBX: 00007f2e88fb6080 RCX: 00007f2e88d8eb69
[ 1148.240625][T19815] RDX: 0000000000000066 RSI: 0000000000600722 RDI: 0000200000000000
[ 1148.240632][T19815] RBP: 00007f2e89c25090 R08: 0000000000000000 R09: 0000000000000000
[ 1148.240638][T19815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1148.240645][T19815] R13: 0000000000000000 R14: 00007f2e88fb6080 R15: 00007ffde9047788
[ 1148.240658][T19815]  </TASK>
[ 1148.832700][  T978] usb 5-1: USB disconnect, device number 19
[ 1148.864912][   T30] audit: type=1400 audit(1754193689.521:2979): avc:  denied  { create } for  pid=19829 comm="syz.1.3879" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[ 1148.887638][T19830] affs: No valid root block on device nullb0
[ 1148.964203][   T30] audit: type=1400 audit(1754193689.521:2980): avc:  denied  { mounton } for  pid=19829 comm="syz.1.3879" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[ 1149.016483][   T30] audit: type=1400 audit(1754193689.551:2981): avc:  denied  { read } for  pid=19829 comm="syz.1.3879" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1149.966414][   T30] audit: type=1400 audit(1754193689.551:2982): avc:  denied  { bind } for  pid=19829 comm="syz.1.3879" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[ 1149.987650][   T30] audit: type=1400 audit(1754193689.611:2983): avc:  denied  { remount } for  pid=19827 comm="syz.3.3880" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[ 1151.263126][T19862] Invalid source name
[ 1151.267158][T19862] UBIFS error (pid: 19862): cannot open "./file0", error -22
[ 1151.276281][T19862] binder: 19854:19862 ioctl 40046210 0 returned -14
[ 1151.369444][T19863] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3890'.
[ 1151.686732][   T24] usb 1-1: new high-speed USB device number 120 using dummy_hcd
[ 1152.244939][   T24] usb 1-1: Using ep0 maxpacket: 16
[ 1152.267074][T19876] fuse: Unknown parameter '0x0000000000000003'
[ 1152.389191][   T24] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1152.399327][   T24] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1152.432556][   T24] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1152.570548][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1152.662737][   T24] usb 1-1: Product: syz
[ 1152.666891][   T24] usb 1-1: Manufacturer: syz
[ 1152.671588][   T24] usb 1-1: SerialNumber: syz
[ 1152.870981][T19880] overlayfs: missing 'lowerdir'
[ 1153.285772][   T30] audit: type=1400 audit(1754193693.941:2984): avc:  denied  { mount } for  pid=19885 comm="syz.4.3897" name="/" dev="ramfs" ino=70077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[ 1153.740538][ T5850] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 1153.891833][ T5850] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1153.900761][ T5850] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1153.911120][ T5850] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1153.920090][ T5850] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1153.931225][ T5850] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1153.945188][ T5850] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1153.955049][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1153.963050][ T5850] usb 4-1: Product: syz
[ 1153.967273][ T5850] usb 4-1: Manufacturer: syz
[ 1153.982626][ T5850] cdc_wdm 4-1:1.0: skipping garbage
[ 1153.987903][ T5850] cdc_wdm 4-1:1.0: skipping garbage
[ 1153.996088][ T5850] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1154.003092][ T5850] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1154.167572][   T24] usb 1-1: 0:2 : does not exist
[ 1154.174786][   T24] usb 1-1: unit 9 not found!
[ 1154.228722][   T24] usb 1-1: USB disconnect, device number 120
[ 1154.248516][T19897] nbd: must specify a size in bytes for the device
[ 1154.545357][   T30] audit: type=1804 audit(1754193695.071:2985): pid=19900 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.3900" name="/newroot/168/file0" dev="tmpfs" ino=959 res=1 errno=0
[ 1155.650920][    T9] usb 4-1: USB disconnect, device number 10
[ 1155.659889][   T30] audit: type=1400 audit(1754193696.271:2986): avc:  denied  { setopt } for  pid=19906 comm="syz.0.3902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1156.428555][   T30] audit: type=1400 audit(1754193696.281:2987): avc:  denied  { connect } for  pid=19906 comm="syz.0.3902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1156.448658][   T30] audit: type=1400 audit(1754193696.291:2988): avc:  denied  { create } for  pid=19906 comm="syz.0.3902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[ 1156.590935][   T30] audit: type=1400 audit(1754193696.341:2989): avc:  denied  { write } for  pid=19906 comm="syz.0.3902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[ 1156.612380][   T30] audit: type=1400 audit(1754193696.731:2990): avc:  denied  { setopt } for  pid=19910 comm="syz.1.3903" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1156.812696][T19919] fuse: Unknown parameter '0x0000000000000003'
[ 1156.848537][   T30] audit: type=1400 audit(1754193697.501:2991): avc:  denied  { setattr } for  pid=19914 comm="syz.3.3905" name="[io_uring]" dev="anon_inodefs" ino=71091 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1157.222324][T19926] 9pnet_fd: Insufficient options for proto=fd
[ 1158.075503][   T30] audit: type=1400 audit(1754193698.691:2992): avc:  denied  { name_bind } for  pid=19929 comm="syz.2.3909" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[ 1158.188374][T19938] pimreg: entered allmulticast mode
[ 1158.200097][T19938] pimreg: left allmulticast mode
[ 1158.230734][   T24] usb 1-1: new high-speed USB device number 121 using dummy_hcd
[ 1158.342879][T16516] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1158.410533][   T24] usb 1-1: device descriptor read/64, error -71
[ 1158.502230][T16516] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1158.516017][T16516] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1158.527849][T16516] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1158.538323][T16516] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1158.572163][T16516] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1158.596003][T16516] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1158.606672][T16516] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1158.615153][T16516] usb 4-1: Product: syz
[ 1158.619658][T16516] usb 4-1: Manufacturer: syz
[ 1158.636701][T16516] cdc_wdm 4-1:1.0: skipping garbage
[ 1158.642194][T16516] cdc_wdm 4-1:1.0: skipping garbage
[ 1158.652365][   T24] usb 1-1: new high-speed USB device number 122 using dummy_hcd
[ 1158.666378][T16516] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1158.673562][T16516] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1158.791565][   T24] usb 1-1: device descriptor read/64, error -71
[ 1158.947382][   T24] usb usb1-port1: attempt power cycle
[ 1159.194879][ T5953] usb 4-1: USB disconnect, device number 11
[ 1159.289476][   T30] audit: type=1400 audit(1754193699.941:2993): avc:  denied  { listen } for  pid=19950 comm="syz.4.3916" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1159.310760][   T24] usb 1-1: new high-speed USB device number 123 using dummy_hcd
[ 1159.349719][   T24] usb 1-1: device descriptor read/8, error -71
[ 1159.630515][   T24] usb 1-1: new high-speed USB device number 124 using dummy_hcd
[ 1159.651244][   T24] usb 1-1: device descriptor read/8, error -71
[ 1159.795939][   T24] usb usb1-port1: unable to enumerate USB device
[ 1159.883130][   T30] audit: type=1400 audit(1754193700.541:2994): avc:  denied  { setopt } for  pid=19963 comm="syz.3.3920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1159.904075][   T30] audit: type=1400 audit(1754193700.541:2995): avc:  denied  { connect } for  pid=19963 comm="syz.3.3920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1160.378395][   T30] audit: type=1400 audit(1754193701.031:2996): avc:  denied  { read } for  pid=19970 comm="syz.2.3923" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1160.841091][   T30] audit: type=1400 audit(1754193701.471:2997): avc:  denied  { watch watch_reads } for  pid=19978 comm="syz.3.3926" path="/214/bus" dev="overlay" ino=1232 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 1161.347425][   T30] audit: type=1400 audit(1754193702.001:2998): avc:  denied  { read } for  pid=19985 comm="syz.1.3927" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[ 1161.452287][   T30] audit: type=1400 audit(1754193702.111:2999): avc:  denied  { read } for  pid=19985 comm="syz.1.3927" name="event0" dev="devtmpfs" ino=918 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[ 1161.539555][   T30] audit: type=1400 audit(1754193702.191:3000): avc:  denied  { append } for  pid=19985 comm="syz.1.3927" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1161.655345][   T30] audit: type=1400 audit(1754193702.231:3001): avc:  denied  { accept } for  pid=19992 comm="syz.4.3928" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[ 1162.230586][ T5953] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 1162.346154][   T30] audit: type=1400 audit(1754193703.001:3002): avc:  denied  { getopt } for  pid=20006 comm="syz.1.3931" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1162.420514][ T5953] usb 4-1: Using ep0 maxpacket: 16
[ 1162.470787][ T5953] usb 4-1: config 0 has no interfaces?
[ 1162.476353][ T5953] usb 4-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[ 1162.491531][ T5953] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1162.738209][ T5953] usb 4-1: config 0 descriptor??
[ 1162.938064][T20023] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1162.960625][T20024] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[ 1162.967113][T20024] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1163.051459][T20024] vhci_hcd vhci_hcd.0: Device attached
[ 1163.100813][T20026] vhci_hcd: connection closed
[ 1163.101915][T16764] vhci_hcd: stop threads
[ 1163.130928][T16764] vhci_hcd: release socket
[ 1163.140520][T16764] vhci_hcd: disconnect device
[ 1163.172798][T20004] netlink: 'syz.3.3930': attribute type 1 has an invalid length.
[ 1163.181438][T20004] netlink: 232 bytes leftover after parsing attributes in process `syz.3.3930'.
[ 1165.122506][  T978] usb 4-1: USB disconnect, device number 12
[ 1165.301688][   T30] kauditd_printk_skb: 3 callbacks suppressed
[ 1165.301733][   T30] audit: type=1400 audit(1754193705.961:3006): avc:  denied  { write } for  pid=20044 comm="syz.3.3943" path="socket:[71252]" dev="sockfs" ino=71252 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1165.920213][   T30] audit: type=1400 audit(1754193706.571:3007): avc:  denied  { create } for  pid=20049 comm="syz.2.3944" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[ 1166.167316][   T30] audit: type=1400 audit(1754193706.821:3008): avc:  denied  { write } for  pid=20053 comm="syz.1.3946" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[ 1166.340101][T20061] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1167.213104][T16516] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 1167.381539][T16516] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1167.390237][T16516] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1167.438930][T16516] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1167.591533][T16516] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1167.603128][T16516] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1167.619241][T16516] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1167.633152][T16516] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1167.645781][T16516] usb 4-1: Product: syz
[ 1167.653815][T16516] usb 4-1: Manufacturer: syz
[ 1167.664758][T16516] cdc_wdm 4-1:1.0: skipping garbage
[ 1167.675321][T16516] cdc_wdm 4-1:1.0: skipping garbage
[ 1167.684663][T16516] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1167.696405][T16516] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1168.069113][  T978] usb 4-1: USB disconnect, device number 13
[ 1168.720624][   T92] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[ 1169.562092][   T92] usb 5-1: config 0 has an invalid descriptor of length 75, skipping remainder of the config
[ 1170.494847][   T92] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1170.510492][   T92] usb 5-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=9e.7f
[ 1170.521413][   T92] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1170.529594][   T92] usb 5-1: Product: syz
[ 1170.533781][   T92] usb 5-1: Manufacturer: syz
[ 1170.539699][   T92] usb 5-1: SerialNumber: syz
[ 1170.548636][   T92] usb 5-1: config 0 descriptor??
[ 1170.660711][T20095] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[ 1171.123243][   T92] redrat3 5-1:0.0: Couldn't find all endpoints
[ 1171.132633][   T92] usb 5-1: USB disconnect, device number 20
[ 1171.284386][T20108] overlayfs: missing 'lowerdir'
[ 1171.440659][  T978] usb 1-1: new high-speed USB device number 125 using dummy_hcd
[ 1171.601111][T20109] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1171.635996][  T978] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1171.645400][  T978] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1171.660947][  T978] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1171.701627][T20116] overlayfs: missing 'lowerdir'
[ 1171.706634][ T5850] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[ 1171.880668][ T5850] usb 5-1: Using ep0 maxpacket: 16
[ 1171.904230][ T5850] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[ 1172.051719][  T978] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1172.062887][ T5850] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1172.081522][ T5850] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1172.096091][  T978] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1172.118719][  T978] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1172.129490][  T978] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1172.141107][  T978] usb 1-1: Product: syz
[ 1172.150679][  T978] usb 1-1: Manufacturer: syz
[ 1172.460909][ T5850] usb 5-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b
[ 1172.469959][ T5850] usb 5-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3
[ 1172.493124][  T978] cdc_wdm 1-1:1.0: skipping garbage
[ 1172.498329][  T978] cdc_wdm 1-1:1.0: skipping garbage
[ 1172.524103][ T5850] usb 5-1: Product: syz
[ 1172.531763][  T978] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[ 1172.548767][ T5850] usb 5-1: config 0 descriptor??
[ 1172.553807][  T978] cdc_wdm 1-1:1.0: Unknown control protocol
[ 1172.567845][ T5850] usb 5-1: can't set config #0, error -71
[ 1172.589209][ T5850] usb 5-1: USB disconnect, device number 21
[ 1173.204602][  T978] usb 1-1: USB disconnect, device number 125
[ 1173.631127][   T30] audit: type=1400 audit(1754193714.291:3009): avc:  denied  { connect } for  pid=20135 comm="syz.4.3965" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1173.654343][   T30] audit: type=1400 audit(1754193714.291:3010): avc:  denied  { getopt } for  pid=20135 comm="syz.4.3965" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1173.673774][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1174.785584][   T30] audit: type=1400 audit(1754193715.441:3011): avc:  denied  { write } for  pid=20152 comm="syz.3.3971" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1174.804960][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1174.820825][ T5850] usb 1-1: new high-speed USB device number 126 using dummy_hcd
[ 1174.923163][   T30] audit: type=1400 audit(1754193715.571:3012): avc:  denied  { ioctl } for  pid=20155 comm="syz.2.3972" path="socket:[71920]" dev="sockfs" ino=71920 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[ 1174.993860][ T5850] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1175.006315][ T5850] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1175.060647][ T5850] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1175.147863][ T5850] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1175.162418][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1175.170409][ T5850] usb 1-1: Product: syz
[ 1175.174707][ T5850] usb 1-1: Manufacturer: syz
[ 1175.209159][ T5850] cdc_wdm 1-1:1.0: skipping garbage
[ 1175.235367][ T5850] cdc_wdm 1-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1175.588220][T16516] usb 1-1: USB disconnect, device number 126
[ 1176.170592][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1176.503867][   T30] audit: type=1400 audit(1754193717.161:3013): avc:  denied  { wake_alarm } for  pid=20177 comm="syz.3.3976" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1176.814838][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1176.821225][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.805739][   T51] Bluetooth: hci0: unexpected event for opcode 0x0402
[ 1178.813802][   T30] audit: type=1400 audit(1754193719.461:3014): avc:  denied  { unmount } for  pid=20206 comm="syz.3.3985" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[ 1178.837479][   T30] audit: type=1400 audit(1754193719.491:3015): avc:  denied  { connect } for  pid=20206 comm="syz.3.3985" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[ 1178.857246][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1178.905732][   T30] audit: type=1400 audit(1754193719.541:3016): avc:  denied  { bind } for  pid=20206 comm="syz.3.3985" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[ 1178.957097][   T30] audit: type=1400 audit(1754193719.551:3017): avc:  denied  { listen } for  pid=20206 comm="syz.3.3985" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[ 1179.003638][   T30] audit: type=1400 audit(1754193719.551:3018): avc:  denied  { accept } for  pid=20206 comm="syz.3.3985" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[ 1179.023329][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1179.139384][T20207] Process accounting resumed
[ 1179.163823][T20217] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3987'.
[ 1179.392915][   T30] audit: type=1400 audit(1754193720.041:3019): avc:  denied  { mount } for  pid=20216 comm="syz.3.3987" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[ 1179.697538][   T30] audit: type=1400 audit(1754193720.051:3020): avc:  denied  { ioctl } for  pid=20216 comm="syz.3.3987" path="socket:[72741]" dev="sockfs" ino=72741 ioctlcmd=0x8912 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1180.073831][   T30] audit: type=1400 audit(1754193720.731:3021): avc:  denied  { load_policy } for  pid=20222 comm="syz.0.3989" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[ 1180.629824][T20224] SELinux: failed to load policy
[ 1182.287700][T20246] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3995'.
[ 1182.347590][T20246] chnl_net:caif_netlink_parms(): no params data found
[ 1182.380638][ T9818] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 1182.409581][T20250] netlink: 'syz.2.3995': attribute type 12 has an invalid length.
[ 1182.448509][T20250] netlink: 'syz.2.3995': attribute type 29 has an invalid length.
[ 1182.624669][T20250] netlink: 148 bytes leftover after parsing attributes in process `syz.2.3995'.
[ 1182.640718][ T9818] usb 5-1: Using ep0 maxpacket: 16
[ 1182.648675][ T9818] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[ 1182.657992][ T9818] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1182.667526][ T9818] usb 5-1: config 0 descriptor??
[ 1182.674723][T20250] netlink: 59 bytes leftover after parsing attributes in process `syz.2.3995'.
[ 1182.684632][ T9818] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[ 1182.910059][ T9818] usb 5-1: Detected FT232B
[ 1183.388175][ T9818] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1183.397341][ T9818] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1183.416771][ T9818] usb 5-1: USB disconnect, device number 22
[ 1183.427127][ T9818] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1183.443411][ T9818] ftdi_sio 5-1:0.0: device disconnected
[ 1183.605179][T20279] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1186.234754][   T30] audit: type=1400 audit(1754193726.891:3022): avc:  denied  { name_connect } for  pid=20302 comm="syz.1.4009" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[ 1186.809669][   T30] audit: type=1400 audit(1754193726.941:3023): avc:  denied  { shutdown } for  pid=20302 comm="syz.1.4009" lport=53417 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1186.956107][T20310] syz.3.4010: attempt to access beyond end of device
[ 1186.956107][T20310] loop3: rw=0, sector=2, nr_sectors = 2 limit=0
[ 1187.030576][   T30] audit: type=1400 audit(1754193726.951:3024): avc:  denied  { read } for  pid=20302 comm="syz.1.4009" lport=53417 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1187.171797][T20310] vxfs: unable to read disk superblock at 1
[ 1187.191100][T20310] syz.3.4010: attempt to access beyond end of device
[ 1187.191100][T20310] loop3: rw=0, sector=16, nr_sectors = 2 limit=0
[ 1187.265260][T20318] netlink: 260 bytes leftover after parsing attributes in process `syz.0.4013'.
[ 1187.305156][T20310] vxfs: unable to read disk superblock at 8
[ 1187.422850][T20310] vxfs: can't find superblock.
[ 1188.072781][T20332] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4017'.
[ 1188.225103][   T30] audit: type=1400 audit(1754193728.881:3025): avc:  denied  { write } for  pid=20339 comm="syz.0.4019" lport=34812 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[ 1188.665070][ T5953] usb 1-1: new high-speed USB device number 127 using dummy_hcd
[ 1189.030506][ T5953] usb 1-1: Using ep0 maxpacket: 16
[ 1189.037219][ T5953] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1189.047578][ T5953] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1189.065221][ T5953] usb 1-1: New USB device found, idVendor=0b57, idProduct=2bbd, bcdDevice=e7.cc
[ 1189.075556][ T5953] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1189.084293][ T5953] usb 1-1: Product: syz
[ 1189.088808][ T5953] usb 1-1: Manufacturer: syz
[ 1189.093514][ T5953] usb 1-1: SerialNumber: syz
[ 1189.111387][ T5953] usb 1-1: config 0 descriptor??
[ 1189.122501][ T5953] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1189.323193][ T5953] usb 1-1: USB disconnect, device number 127
[ 1189.461006][   T30] audit: type=1400 audit(1754193730.111:3026): avc:  denied  { setopt } for  pid=20364 comm="syz.3.4028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1189.580972][   T92] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1189.751792][   T92] usb 5-1: New USB device found, idVendor=090a, idProduct=1200, bcdDevice=24.87
[ 1189.760946][   T92] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1189.779080][   T92] usb 5-1: config 0 descriptor??
[ 1189.788596][   T92] usb-storage 5-1:0.0: USB Mass Storage device detected
[ 1189.807817][   T92] usb-storage 5-1:0.0: This device (090a,1200,2487 S 01 P 00) has an unneeded SubClass entry in unusual_devs.h (kernel 6.16.0-syzkaller-11129-geacf91b0c78a)
[ 1189.807817][   T92]    Please send a copy of this message to <linux-usb@vger.kernel.org> and <usb-storage@lists.one-eyed-alien.net>
[ 1190.314677][T20383] overlayfs: missing 'lowerdir'
[ 1190.479991][   T30] audit: type=1400 audit(1754193731.131:3027): avc:  denied  { setopt } for  pid=20362 comm="syz.4.4026" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1190.566008][ T9818] usb 5-1: USB disconnect, device number 23
[ 1190.890552][  T978] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[ 1191.052371][  T978] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1191.063018][  T978] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1191.096120][  T978] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253
[ 1191.162595][  T978] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1191.175223][  T978] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1191.190941][  T978] usb 4-1: Manufacturer: syz
[ 1191.208441][  T978] usb 4-1: config 0 descriptor??
[ 1191.223631][  T978] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1191.650529][ T9818] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[ 1191.803397][ T9818] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1191.910591][ T9818] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1192.011883][ T9818] usb 5-1: New USB device found, idVendor=0079, idProduct=1846, bcdDevice= 0.00
[ 1192.026971][ T9818] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1192.045886][ T9818] usb 5-1: config 0 descriptor??
[ 1192.267433][T20405] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1192.519687][   T92] usb 5-1: USB disconnect, device number 24
[ 1193.064800][T20425] 9pnet_fd: Insufficient options for proto=fd
[ 1193.370574][ T9818] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[ 1193.521988][ T9818] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1193.533312][ T9818] usb 5-1: config 1 has an invalid descriptor of length 52, skipping remainder of the config
[ 1193.543656][ T9818] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1193.556810][ T9818] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1193.575359][ T9818] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1193.584918][ T9818] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1193.600061][ T9818] usb 5-1: Product: syz
[ 1193.604468][ T9818] usb 5-1: Manufacturer: syz
[ 1193.937382][ T5850] usb 4-1: USB disconnect, device number 14
[ 1194.002499][ T9818] cdc_wdm 5-1:1.0: skipping garbage
[ 1194.007816][ T9818] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1194.294288][T20441] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1194.331994][   T24] usb 5-1: USB disconnect, device number 25
[ 1194.547432][T20443] nbd: must specify a size in bytes for the device
[ 1195.500785][T20453] syz.1.4048: attempt to access beyond end of device
[ 1195.500785][T20453] nbd0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1196.195215][   T30] audit: type=1400 audit(1754193736.781:3028): avc:  denied  { mounton } for  pid=20464 comm="syz.3.4050" path="/242/file0" dev="tmpfs" ino=1386 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[ 1196.894789][T20474] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1196.979077][T20478] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1197.941911][   T92] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[ 1198.162222][   T92] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1198.271921][   T30] audit: type=1400 audit(1754193738.896:3029): avc:  denied  { bind } for  pid=20497 comm="syz.0.4058" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1198.342829][   T30] audit: type=1400 audit(1754193738.896:3030): avc:  denied  { name_bind } for  pid=20497 comm="syz.0.4058" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[ 1198.671607][   T30] audit: type=1400 audit(1754193738.896:3031): avc:  denied  { node_bind } for  pid=20497 comm="syz.0.4058" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[ 1198.697165][   T92] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1198.719286][   T92] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253
[ 1199.010516][   T92] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1199.019655][   T92] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1199.095204][   T92] usb 4-1: Manufacturer: syz
[ 1199.157533][   T92] usb 4-1: config 0 descriptor??
[ 1199.165751][   T92] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1199.209206][   T30] audit: type=1400 audit(1754193739.866:3032): avc:  denied  { mount } for  pid=20507 comm="syz.4.4062" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 1199.387054][   T30] audit: type=1400 audit(1754193740.046:3033): avc:  denied  { unmount } for  pid=16698 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 1199.910586][    T9] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[ 1200.086718][    T9] usb 5-1: config 0 has no interfaces?
[ 1200.107644][    T9] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 1200.129698][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1200.155331][    T9] usb 5-1: Product: syz
[ 1200.167751][    T9] usb 5-1: Manufacturer: syz
[ 1200.178317][    T9] usb 5-1: SerialNumber: syz
[ 1200.310943][    T9] usb 5-1: config 0 descriptor??
[ 1201.644535][   T92] usb 4-1: USB disconnect, device number 15
[ 1201.939257][T20541] PKCS7: Unknown OID: [5] (bad)
[ 1201.944409][T20541] PKCS7: Only support pkcs7_signedData type
[ 1201.951571][   T30] audit: type=1400 audit(1754193742.596:3034): avc:  denied  { write } for  pid=20534 comm="syz.3.4067" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[ 1202.547414][   T24] usb 5-1: USB disconnect, device number 26
[ 1202.561383][   T92] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[ 1203.050591][   T24] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[ 1203.155603][   T92] usb 4-1: device descriptor read/64, error -71
[ 1203.230524][   T24] usb 5-1: Using ep0 maxpacket: 16
[ 1203.236992][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1203.248366][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1203.350089][   T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1203.365701][   T24] usb 5-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00
[ 1203.376061][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1203.399601][   T24] usb 5-1: config 0 descriptor??
[ 1203.440802][   T92] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[ 1203.570649][   T92] usb 4-1: device descriptor read/64, error -71
[ 1203.663588][    T9] kernel write not supported for file /input/event2 (pid: 9 comm: kworker/0:0)
[ 1203.683232][   T92] usb usb4-port1: attempt power cycle
[ 1203.788842][T20568] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4075'.
[ 1203.798081][T20568] bridge_slave_1: left allmulticast mode
[ 1203.803796][T20568] bridge_slave_1: left promiscuous mode
[ 1203.810864][T20568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1203.970968][   T24] hid-multitouch 0003:0457:07DA.002A: unknown main item tag 0x0
[ 1203.996568][   T24] hid-multitouch 0003:0457:07DA.002A: unknown main item tag 0x0
[ 1204.089627][T20568] bridge_slave_0: left allmulticast mode
[ 1204.096891][T20568] bridge_slave_0: left promiscuous mode
[ 1204.117145][T20568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1204.130377][   T24] hid-multitouch 0003:0457:07DA.002A: unknown main item tag 0x0
[ 1204.171805][   T24] hid-multitouch 0003:0457:07DA.002A: unknown main item tag 0x0
[ 1204.179483][   T24] hid-multitouch 0003:0457:07DA.002A: unbalanced collection at end of report description
[ 1204.189898][   T24] hid-multitouch 0003:0457:07DA.002A: probe with driver hid-multitouch failed with error -22
[ 1204.373180][   T92] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[ 1204.432747][T16516] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 1204.553825][   T92] usb 4-1: device descriptor read/8, error -71
[ 1204.611775][T16516] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1204.681827][T16516] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1204.698995][  T978] usb 5-1: USB disconnect, device number 27
[ 1204.714087][T16516] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253
[ 1204.728494][T16516] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1204.741914][T16516] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1204.752324][T16516] usb 1-1: Manufacturer: syz
[ 1204.778273][T16516] usb 1-1: config 0 descriptor??
[ 1204.785984][T16516] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1204.909132][T20583] overlayfs: failed to resolve './file1': -2
[ 1204.989994][   T30] audit: type=1400 audit(1754193745.566:3035): avc:  denied  { mount } for  pid=20581 comm="syz.1.4078" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[ 1205.190316][   T30] audit: type=1400 audit(1754193745.706:3036): avc:  denied  { unmount } for  pid=16540 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[ 1207.450609][  T978] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[ 1207.612286][  T978] usb 5-1: Using ep0 maxpacket: 8
[ 1207.618673][  T978] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1207.627455][  T978] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1207.644796][  T978] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1207.657666][  T978] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1207.668165][  T978] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1207.676267][  T978] usb 5-1: Product: syz
[ 1207.681896][  T978] usb 5-1: Manufacturer: syz
[ 1207.686619][  T978] usb 5-1: SerialNumber: syz
[ 1208.989983][ T9818] usb 1-1: USB disconnect, device number 2
[ 1209.050653][   T30] audit: type=1400 audit(1754193749.706:3037): avc:  denied  { create } for  pid=20622 comm="syz.3.4088" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1209.089022][T20621] FAULT_INJECTION: forcing a failure.
[ 1209.089022][T20621] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1209.110545][T20621] CPU: 1 UID: 0 PID: 20621 Comm: syz.0.4089 Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[ 1209.110572][T20621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1209.110583][T20621] Call Trace:
[ 1209.110589][T20621]  <TASK>
[ 1209.110596][T20621]  dump_stack_lvl+0x16c/0x1f0
[ 1209.110627][T20621]  should_fail_ex+0x512/0x640
[ 1209.110659][T20621]  _copy_to_user+0x32/0xd0
[ 1209.110681][T20621]  simple_read_from_buffer+0xcb/0x170
[ 1209.110718][T20621]  proc_fail_nth_read+0x197/0x240
[ 1209.110740][T20621]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1209.110763][T20621]  ? rw_verify_area+0xcf/0x6c0
[ 1209.110790][T20621]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1209.110810][T20621]  vfs_read+0x1e4/0xc60
[ 1209.110831][T20621]  ? __pfx___mutex_lock+0x10/0x10
[ 1209.110857][T20621]  ? __pfx_vfs_read+0x10/0x10
[ 1209.110881][T20621]  ? __fget_files+0x20e/0x3c0
[ 1209.110909][T20621]  ksys_read+0x12a/0x250
[ 1209.110926][T20621]  ? __pfx_ksys_read+0x10/0x10
[ 1209.110955][T20621]  do_syscall_64+0xcd/0x4c0
[ 1209.110982][T20621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1209.111001][T20621] RIP: 0033:0x7f2e88d8d57c
[ 1209.111016][T20621] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1209.111033][T20621] RSP: 002b:00007f2e89c46030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1209.111051][T20621] RAX: ffffffffffffffda RBX: 00007f2e88fb5fa0 RCX: 00007f2e88d8d57c
[ 1209.111063][T20621] RDX: 000000000000000f RSI: 00007f2e89c460a0 RDI: 0000000000000006
[ 1209.111075][T20621] RBP: 00007f2e89c46090 R08: 0000000000000000 R09: 0000000000000000
[ 1209.111086][T20621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1209.111097][T20621] R13: 0000000000000000 R14: 00007f2e88fb5fa0 R15: 00007ffde9047788
[ 1209.111121][T20621]  </TASK>
[ 1209.430491][   T92] usb 4-1: new full-speed USB device number 20 using dummy_hcd
[ 1209.576059][T20630] netlink: 'syz.2.4092': attribute type 20 has an invalid length.
[ 1209.585581][   T92] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 130, using maximum allowed: 30
[ 1209.600925][T20630] dvmrp17: entered allmulticast mode
[ 1209.610017][T20630] overlayfs: missing 'lowerdir'
[ 1209.615654][   T92] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1209.640450][   T92] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1209.660551][    T9] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 1209.661677][   T92] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 130
[ 1209.702711][   T92] usb 4-1: New USB device found, idVendor=172f, idProduct=0502, bcdDevice= 0.00
[ 1209.719990][   T92] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1209.738883][   T92] usb 4-1: config 0 descriptor??
[ 1209.812548][    T9] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1209.821341][    T9] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1209.831742][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1210.040062][    T9] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1210.054163][T20632] overlayfs: missing 'lowerdir'
[ 1210.056512][  T978] usb 5-1: 0:2 : does not exist
[ 1210.070553][    T9] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1210.087965][  T978] usb 5-1: USB disconnect, device number 28
[ 1210.096350][    T9] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1210.120457][    T9] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1210.128451][    T9] usb 1-1: Product: syz
[ 1210.134691][    T9] usb 1-1: Manufacturer: syz
[ 1210.163890][    T9] cdc_wdm 1-1:1.0: skipping garbage
[ 1210.219717][    T9] cdc_wdm 1-1:1.0: skipping garbage
[ 1211.054874][    T9] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[ 1211.133440][    T9] cdc_wdm 1-1:1.0: Unknown control protocol
[ 1211.566929][T20647] overlay: ./file0 is not a directory
[ 1211.590305][   T92] usbhid 4-1:0.0: can't add hid device: -71
[ 1211.604961][   T92] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1211.629361][   T92] usb 4-1: USB disconnect, device number 20
[ 1211.692511][    T9] usb 1-1: USB disconnect, device number 3
[ 1212.441317][   T30] audit: type=1400 audit(1754193753.066:3038): avc:  denied  { bind } for  pid=20670 comm="syz.2.4102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1212.590527][  T978] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[ 1212.604406][T20675] 9pnet_fd: Insufficient options for proto=fd
[ 1212.726979][T20682] kvm: user requested TSC rate below hardware speed
[ 1212.764187][  T978] usb 5-1: config 0 has no interfaces?
[ 1212.780250][  T978] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 1212.792191][  T978] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1212.829746][  T978] usb 5-1: Product: syz
[ 1212.860200][  T978] usb 5-1: Manufacturer: syz
[ 1212.875993][  T978] usb 5-1: SerialNumber: syz
[ 1212.885178][  T978] usb 5-1: config 0 descriptor??
[ 1214.182034][   T30] audit: type=1400 audit(1754193754.576:3039): avc:  denied  { read write } for  pid=20693 comm="syz.3.4110" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[ 1214.245211][   T30] audit: type=1400 audit(1754193754.576:3040): avc:  denied  { open } for  pid=20693 comm="syz.3.4110" path="/dev/autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[ 1214.279096][   T30] audit: type=1400 audit(1754193754.576:3041): avc:  denied  { ioctl } for  pid=20693 comm="syz.3.4110" path="/dev/autofs" dev="devtmpfs" ino=98 ioctlcmd=0x9373 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[ 1214.307416][   T30] audit: type=1400 audit(1754193754.576:3042): avc:  denied  { setopt } for  pid=20693 comm="syz.3.4110" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1214.364251][T20700] netlink: 'syz.3.4112': attribute type 3 has an invalid length.
[ 1214.373945][T20700] netlink: 56 bytes leftover after parsing attributes in process `syz.3.4112'.
[ 1214.438386][   T30] audit: type=1400 audit(1754193755.096:3043): avc:  denied  { mount } for  pid=20701 comm="syz.0.4113" name="/" dev="autofs" ino=74029 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[ 1214.600908][T20708] overlayfs: missing 'lowerdir'
[ 1214.690600][   T92] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 1214.844442][   T92] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1214.853535][   T92] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1214.880456][   T92] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1214.906085][   T92] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1214.943190][   T92] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 1214.977803][   T92] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1214.988017][   T92] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1214.996116][   T92] usb 4-1: Product: syz
[ 1215.012674][   T92] usb 4-1: Manufacturer: syz
[ 1215.032164][   T92] cdc_wdm 4-1:1.0: skipping garbage
[ 1215.037431][   T92] cdc_wdm 4-1:1.0: skipping garbage
[ 1215.053914][   T92] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1215.060568][   T92] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1215.189823][   T30] audit: type=1400 audit(1754193755.846:3044): avc:  denied  { unmount } for  pid=16408 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[ 1215.670777][T16516] usb 5-1: USB disconnect, device number 29
[ 1215.990755][  T978] usb 4-1: USB disconnect, device number 21
[ 1216.006596][T20727] netlink: 10 bytes leftover after parsing attributes in process `syz.4.4118'.
[ 1216.069061][T20718] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4117'.
[ 1218.862437][T20755] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4124'.
[ 1219.010529][  T978] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[ 1219.160565][  T978] usb 1-1: Using ep0 maxpacket: 8
[ 1219.168867][  T978] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[ 1219.186204][  T978] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1219.196076][  T978] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1219.206151][  T978] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1219.233425][  T978] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1219.250559][  T978] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1219.267035][  T978] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1219.497631][  T978] usb 1-1: usb_control_msg returned -32
[ 1219.503448][  T978] usbtmc 1-1:16.0: can't read capabilities
[ 1220.739833][   T30] audit: type=1400 audit(1754193761.396:3045): avc:  denied  { setopt } for  pid=20778 comm="syz.3.4133" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[ 1220.790549][ T5884] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[ 1220.950691][ T5884] usb 5-1: Using ep0 maxpacket: 16
[ 1220.960371][ T5884] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1220.977378][ T5884] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1220.998283][ T5884] usb 5-1: Product: syz
[ 1221.006831][ T5884] usb 5-1: Manufacturer: syz
[ 1221.019389][ T5884] usb 5-1: SerialNumber: syz
[ 1222.157386][ T5850] usb 1-1: USB disconnect, device number 4
[ 1222.624942][T20802] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1222.640492][T16516] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[ 1222.793829][T16516] usb 1-1: Using ep0 maxpacket: 8
[ 1222.845677][T16516] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1222.857793][T16516] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1222.881595][T16516] usb 1-1: Product: syz
[ 1222.894789][T16516] usb 1-1: Manufacturer: syz
[ 1222.906195][T16516] usb 1-1: SerialNumber: syz
[ 1222.926992][T16516] usb 1-1: config 0 descriptor??
[ 1223.262795][T16516] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1223.459005][T20795] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1223.467711][T20795] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1223.657253][ T5884] usb 5-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1223.704701][ T5884] usb 5-1: USB disconnect, device number 30
[ 1224.707346][T16516] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[ 1224.733463][T16516] usb 1-1: USB disconnect, device number 5
[ 1225.950482][T20818] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[ 1226.636333][T20818] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1226.670240][T20818] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253
[ 1226.697896][T20818] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1226.708550][T20818] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1226.717151][T20818] usb 1-1: Manufacturer: syz
[ 1226.724908][T20818] usb 1-1: config 0 descriptor??
[ 1226.742473][T20818] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1226.973794][T20861] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1227.088946][T20866] syzkaller0: entered promiscuous mode
[ 1227.098321][T20866] syzkaller0: entered allmulticast mode
[ 1227.932822][T20876] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1229.003713][T20881] netlink: 'syz.3.4158': attribute type 10 has an invalid length.
[ 1229.343974][    T9] usb 1-1: USB disconnect, device number 6
[ 1230.263589][T20881] 8021q: adding VLAN 0 to HW filter on device team0
[ 1230.308771][T20881] bond0: (slave team0): Enslaving as an active interface with an up link
[ 1230.740824][T20891] genirq: Flags mismatch irq 4. 00200000 (pcl812) vs. 00200080 (ttyS0)
[ 1230.866839][   T30] audit: type=1400 audit(1754193771.526:3046): avc:  denied  { bind } for  pid=20892 comm="syz.4.4162" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1230.950459][  T978] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[ 1231.434224][T20898] SELinux: failed to load policy
[ 1231.531219][   T30] audit: type=1400 audit(1754193771.996:3047): avc:  denied  { read } for  pid=20902 comm="syz.3.4165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1231.561021][  T978] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1231.573607][  T978] usb 1-1: config 1 has an invalid descriptor of length 56, skipping remainder of the config
[ 1231.584708][  T978] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1231.594788][   T30] audit: type=1400 audit(1754193772.226:3048): avc:  denied  { write } for  pid=20906 comm="syz.2.4166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[ 1231.615428][  T978] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1231.629883][  T978] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1231.639865][  T978] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1231.679935][  T978] usb 1-1: Product: syz
[ 1231.686416][  T978] usb 1-1: Manufacturer: syz
[ 1231.695798][  T978] cdc_wdm 1-1:1.0: skipping garbage
[ 1231.701032][  T978] cdc_wdm 1-1:1.0: skipping garbage
[ 1231.734420][  T978] cdc_wdm 1-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1231.792078][T20912] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=20912 comm=syz.2.4167
[ 1232.026926][  T978] usb 1-1: USB disconnect, device number 7
[ 1232.464844][T20923] netlink: 'syz.4.4171': attribute type 10 has an invalid length.
[ 1232.543313][T20923] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1232.705753][T20928] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1233.130610][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[ 1233.210482][T20818] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[ 1233.272630][    T9] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[ 1233.288811][   T30] audit: type=1400 audit(1754193773.946:3049): avc:  denied  { mount } for  pid=20944 comm="syz.1.4179" name="/" dev="pstore" ino=3174 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[ 1233.330244][   T30] audit: type=1400 audit(1754193773.986:3050): avc:  denied  { unmount } for  pid=16540 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[ 1233.396613][T20818] usb 4-1: Using ep0 maxpacket: 16
[ 1233.411854][T20818] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1233.429702][T20818] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1233.444567][    T9] usb 5-1: Using ep0 maxpacket: 8
[ 1233.445268][T20818] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1233.462182][T20818] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1233.472882][T20818] usb 4-1: Product: syz
[ 1233.473807][    T9] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[ 1233.477035][T20818] usb 4-1: Manufacturer: syz
[ 1233.477052][T20818] usb 4-1: SerialNumber: syz
[ 1233.520550][    T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1233.545948][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1233.548288][T20956] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1233.569224][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1233.592093][T20956] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[ 1233.593633][    T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1233.600638][T20956] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[ 1233.629457][   T30] audit: type=1400 audit(1754193774.286:3051): avc:  denied  { firmware_load } for  pid=20955 comm="syz.1.4182" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 1233.650521][T20956] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[ 1233.666257][    T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1233.676062][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1234.033002][    T9] usb 5-1: usb_control_msg returned -32
[ 1234.038598][    T9] usbtmc 5-1:16.0: can't read capabilities
[ 1234.542446][ T5884] tipc: Node number set to 3599739800
[ 1234.742020][T20955] tipc: Disabling bearer <eth:syzkaller0>
[ 1235.771168][   T51] Bluetooth: hci4: Opcode 0x206a failed: -110
[ 1235.780484][   T51] Bluetooth: hci4: command 0x0406 tx timeout
[ 1235.979763][T20818] usb 4-1: 0:2 : does not exist
[ 1235.997388][T20818] usb 4-1: USB disconnect, device number 22
[ 1236.016130][ T5884] usb 5-1: USB disconnect, device number 31
[ 1236.330446][   T30] audit: type=1400 audit(1754193776.980:3052): avc:  denied  { setopt } for  pid=20998 comm="syz.4.4196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1236.397221][   T30] audit: type=1400 audit(1754193777.050:3053): avc:  denied  { bind } for  pid=21003 comm="syz.2.4197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1237.470496][ T5850] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[ 1237.623481][T21016] SELinux: failed to load policy
[ 1238.326549][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.337752][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 1238.560696][   T30] audit: type=1400 audit(1754193779.220:3054): avc:  denied  { listen } for  pid=21023 comm="syz.1.4204" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[ 1238.586584][   T30] audit: type=1400 audit(1754193779.240:3055): avc:  denied  { accept } for  pid=21023 comm="syz.1.4204" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[ 1238.692362][ T5850] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1238.704578][ T5850] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253
[ 1238.723935][ T5850] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1238.733513][ T5850] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1238.742648][ T5850] usb 4-1: Manufacturer: syz
[ 1238.750935][ T5850] usb 4-1: config 0 descriptor??
[ 1238.759463][ T5850] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1238.800587][  T978] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[ 1238.980647][  T978] usb 5-1: Using ep0 maxpacket: 16
[ 1238.992407][  T978] usb 5-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[ 1239.004097][  T978] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1239.015977][  T978] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1239.026598][  T978] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1239.035063][  T978] usb 5-1: Product: syz
[ 1239.040152][  T978] usb 5-1: Manufacturer: syz
[ 1239.045647][  T978] usb 5-1: SerialNumber: syz
[ 1240.556016][T21047] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1240.575744][T20818] usb 4-1: USB disconnect, device number 23
[ 1240.739795][T21054] NILFS (nullb0): couldn't find nilfs on the device
[ 1241.849973][  T978] usb 5-1: 0:2 : does not exist
[ 1241.857326][  T978] usb 5-1: unit 255 not found!
[ 1241.890872][  T978] usb 5-1: USB disconnect, device number 32
[ 1244.603202][   T30] audit: type=1400 audit(1754193782.630:3056): avc:  denied  { audit_write } for  pid=21058 comm="syz.1.4214" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 1244.819462][   T30] audit: type=1400 audit(1754193782.690:3057): avc:  denied  { watch watch_reads } for  pid=21058 comm="syz.1.4214" path="/proc/722/net" dev="proc" ino=76042 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[ 1245.699590][T21081] libceph: resolve '.
[ 1245.699590][T21081] #)|.��f��ǝ�a���2s�o�w���?�'�%ЏKAq�f��C���z�e�Sb3L)Hy�o����������Ǥ�Y�M�����h�E$
[ 1245.699590][T21081] ' (ret=-3): failed
[ 1246.623662][T21098] overlayfs: missing 'lowerdir'
[ 1246.819522][T21103] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4225'.
[ 1246.828950][   T30] audit: type=1400 audit(1754193787.470:3058): avc:  denied  { watch } for  pid=21097 comm="syz.2.4225" path="/283/file1" dev="tmpfs" ino=1562 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 1246.883149][T21103] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4225'.
[ 1246.924704][T21103] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4225'.
[ 1246.953854][   T30] audit: type=1400 audit(1754193787.470:3059): avc:  denied  { watch_sb watch_reads } for  pid=21097 comm="syz.2.4225" path="/283/file1" dev="tmpfs" ino=1562 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1247.130549][T20818] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[ 1248.300445][T20818] usb 5-1: Using ep0 maxpacket: 16
[ 1248.319371][T20818] usb 5-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[ 1248.330006][T20818] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1248.340868][T20818] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1248.356993][T20818] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1248.367103][T20818] usb 5-1: Product: syz
[ 1248.371555][T20818] usb 5-1: Manufacturer: syz
[ 1248.376212][T20818] usb 5-1: SerialNumber: syz
[ 1248.632816][T21114] comedi comedi0: mpc624: I/O port conflict (0xee,16)
[ 1248.794996][T21119] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1249.200745][T21128] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4232'.
[ 1249.280484][T21128] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4232'.
[ 1250.072305][T20818] usb 5-1: 0:2 : does not exist
[ 1250.083071][T20818] usb 5-1: unit 255 not found!
[ 1250.121734][T20818] usb 5-1: USB disconnect, device number 33
[ 1250.991770][T21140] could not allocate digest TFM handle cryptd(blake2b-160)
[ 1252.231909][T21156] syz.4.4235: attempt to access beyond end of device
[ 1252.231909][T21156] nbd4: rw=0, sector=64, nr_sectors = 1 limit=0
[ 1252.250660][T21156] syz.4.4235: attempt to access beyond end of device
[ 1252.250660][T21156] nbd4: rw=0, sector=256, nr_sectors = 1 limit=0
[ 1252.273289][T21156] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[ 1252.306977][T21156] ------------[ cut here ]------------
[ 1252.312512][T21156] WARNING: CPU: 1 PID: 21156 at fs/buffer.c:1125 __getblk_slow+0x4cc/0x560
[ 1252.321164][T21156] Modules linked in:
[ 1252.325410][T21156] CPU: 1 UID: 0 PID: 21156 Comm: syz.4.4235 Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[ 1252.337327][T21156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1252.347393][T21156] RIP: 0010:__getblk_slow+0x4cc/0x560
[ 1252.352782][T21156] Code: c0 8b 48 89 df e8 f4 e3 bb ff 90 0f 0b e8 0c 41 73 ff 48 c7 c6 20 5b c0 8b 48 89 df e8 dd e3 bb ff 90 0f 0b e8 f5 40 73 ff 90 <0f> 0b 90 8b 74 24 0c 89 ea 48 c7 c7 80 5c c0 8b 31 db e8 4d f3 51
[ 1252.372688][T21156] RSP: 0018:ffffc90003af77f0 EFLAGS: 00010287
[ 1252.378731][T21156] RAX: 00000000000162a3 RBX: 0000000000000200 RCX: ffffc9000f764000
[ 1252.386998][T21156] RDX: 0000000000080000 RSI: ffffffff8248478b RDI: 0000000000000005
[ 1252.394977][T21156] RBP: 0000000000000400 R08: 0000000000000005 R09: 0000000000000000
[ 1252.402951][T21156] R10: 0000000000000200 R11: 0000000000000000 R12: ffff888148c01700
[ 1252.411379][T21156] R13: 0000000000000200 R14: 0000000000000200 R15: ffff888148c01700
[ 1252.419348][T21156] FS:  00007fcb489f36c0(0000) GS:ffff8881247c8000(0000) knlGS:0000000000000000
[ 1252.428301][T21156] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1252.435034][T21156] CR2: 00005619708d2000 CR3: 0000000078e35000 CR4: 00000000003526f0
[ 1252.443049][T21156] Call Trace:
[ 1252.446307][T21156]  <TASK>
[ 1252.449215][T21156]  ? __pfx___might_resched+0x10/0x10
[ 1252.454511][T21156]  bdev_getblk+0xd4/0xe0
[ 1252.458742][T21156]  __bread_gfp+0x86/0x3c0
[ 1252.463340][T21156]  udf_read_tagged+0xae/0x740
[ 1252.468000][T21156]  udf_check_anchor_block+0x89/0x4b0
[ 1252.473453][T21156]  ? udf_get_last_block+0x1ce/0x2a0
[ 1252.478634][T21156]  ? __pfx_udf_check_anchor_block+0x10/0x10
[ 1252.484530][T21156]  udf_load_vrs+0x682/0x1070
[ 1252.489099][T21156]  ? __pfx_udf_load_vrs+0x10/0x10
[ 1252.494135][T21156]  ? __pfx_udf_get_last_session+0x10/0x10
[ 1252.499833][T21156]  ? lockdep_init_map_type+0x5c/0x280
[ 1252.505226][T21156]  udf_fill_super+0x791/0x1df0
[ 1252.509986][T21156]  ? __pfx_udf_fill_super+0x10/0x10
[ 1252.515207][T21156]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1252.520212][T21156]  ? find_held_lock+0x2b/0x80
[ 1252.524898][T21156]  ? sb_set_blocksize+0x176/0x1d0
[ 1252.529901][T21156]  ? setup_bdev_super+0x369/0x730
[ 1252.534930][T21156]  get_tree_bdev_flags+0x38c/0x620
[ 1252.540016][T21156]  ? __pfx_udf_fill_super+0x10/0x10
[ 1252.545204][T21156]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 1252.550836][T21156]  ? bpf_lsm_capable+0x9/0x10
[ 1252.555490][T21156]  ? security_capable+0x7e/0x260
[ 1252.560441][T21156]  vfs_get_tree+0x8b/0x340
[ 1252.565120][T21156]  path_mount+0x1482/0x1fd0
[ 1252.569608][T21156]  ? __pfx_path_mount+0x10/0x10
[ 1252.574657][T21156]  ? kmem_cache_free+0x2d1/0x4d0
[ 1252.579569][T21156]  ? putname+0x154/0x1a0
[ 1252.583813][T21156]  ? putname+0x154/0x1a0
[ 1252.588048][T21156]  ? __x64_sys_mount+0x28d/0x310
[ 1252.592998][T21156]  __x64_sys_mount+0x28d/0x310
[ 1252.597758][T21156]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1252.603046][T21156]  do_syscall_64+0xcd/0x4c0
[ 1252.607539][T21156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1252.613430][T21156] RIP: 0033:0x7fcb47b8eb69
[ 1252.617819][T21156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1252.637420][T21156] RSP: 002b:00007fcb489f3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1252.645830][T21156] RAX: ffffffffffffffda RBX: 00007fcb47db6160 RCX: 00007fcb47b8eb69
[ 1252.653795][T21156] RDX: 0000200000000080 RSI: 0000200000004a00 RDI: 0000200000000000
[ 1252.661762][T21156] RBP: 00007fcb47c11df1 R08: 0000000000000000 R09: 0000000000000000
[ 1252.669995][T21156] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000000
[ 1252.678144][T21156] R13: 0000000000000001 R14: 00007fcb47db6160 R15: 00007ffd0e4a53b8
[ 1252.686113][T21156]  </TASK>
[ 1252.689109][T21156] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1252.696362][T21156] CPU: 1 UID: 0 PID: 21156 Comm: syz.4.4235 Not tainted 6.16.0-syzkaller-11129-geacf91b0c78a #0 PREEMPT(full) 
[ 1252.708044][T21156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1252.718071][T21156] Call Trace:
[ 1252.721325][T21156]  <TASK>
[ 1252.724228][T21156]  dump_stack_lvl+0x3d/0x1f0
[ 1252.728801][T21156]  vpanic+0x6a3/0x780
[ 1252.732761][T21156]  ? __pfx_vpanic+0x10/0x10
[ 1252.737254][T21156]  ? __getblk_slow+0x4cc/0x560
[ 1252.741995][T21156]  panic+0xca/0xd0
[ 1252.745696][T21156]  ? __pfx_panic+0x10/0x10
[ 1252.750096][T21156]  check_panic_on_warn+0xab/0xb0
[ 1252.755004][T21156]  __warn+0xf6/0x3c0
[ 1252.758870][T21156]  ? __getblk_slow+0x4cc/0x560
[ 1252.763610][T21156]  report_bug+0x3c3/0x580
[ 1252.767917][T21156]  ? __getblk_slow+0x4cc/0x560
[ 1252.772657][T21156]  handle_bug+0x184/0x210
[ 1252.776960][T21156]  exc_invalid_op+0x17/0x50
[ 1252.781432][T21156]  asm_exc_invalid_op+0x1a/0x20
[ 1252.786255][T21156] RIP: 0010:__getblk_slow+0x4cc/0x560
[ 1252.791610][T21156] Code: c0 8b 48 89 df e8 f4 e3 bb ff 90 0f 0b e8 0c 41 73 ff 48 c7 c6 20 5b c0 8b 48 89 df e8 dd e3 bb ff 90 0f 0b e8 f5 40 73 ff 90 <0f> 0b 90 8b 74 24 0c 89 ea 48 c7 c7 80 5c c0 8b 31 db e8 4d f3 51
[ 1252.811188][T21156] RSP: 0018:ffffc90003af77f0 EFLAGS: 00010287
[ 1252.817226][T21156] RAX: 00000000000162a3 RBX: 0000000000000200 RCX: ffffc9000f764000
[ 1252.825178][T21156] RDX: 0000000000080000 RSI: ffffffff8248478b RDI: 0000000000000005
[ 1252.833121][T21156] RBP: 0000000000000400 R08: 0000000000000005 R09: 0000000000000000
[ 1252.841067][T21156] R10: 0000000000000200 R11: 0000000000000000 R12: ffff888148c01700
[ 1252.849021][T21156] R13: 0000000000000200 R14: 0000000000000200 R15: ffff888148c01700
[ 1252.856977][T21156]  ? __getblk_slow+0x4cb/0x560
[ 1252.861723][T21156]  ? __pfx___might_resched+0x10/0x10
[ 1252.866986][T21156]  bdev_getblk+0xd4/0xe0
[ 1252.871208][T21156]  __bread_gfp+0x86/0x3c0
[ 1252.875517][T21156]  udf_read_tagged+0xae/0x740
[ 1252.880171][T21156]  udf_check_anchor_block+0x89/0x4b0
[ 1252.885428][T21156]  ? udf_get_last_block+0x1ce/0x2a0
[ 1252.890605][T21156]  ? __pfx_udf_check_anchor_block+0x10/0x10
[ 1252.896474][T21156]  udf_load_vrs+0x682/0x1070
[ 1252.901041][T21156]  ? __pfx_udf_load_vrs+0x10/0x10
[ 1252.906040][T21156]  ? __pfx_udf_get_last_session+0x10/0x10
[ 1252.911740][T21156]  ? lockdep_init_map_type+0x5c/0x280
[ 1252.917101][T21156]  udf_fill_super+0x791/0x1df0
[ 1252.921840][T21156]  ? __pfx_udf_fill_super+0x10/0x10
[ 1252.927008][T21156]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1252.932005][T21156]  ? find_held_lock+0x2b/0x80
[ 1252.936670][T21156]  ? sb_set_blocksize+0x176/0x1d0
[ 1252.941668][T21156]  ? setup_bdev_super+0x369/0x730
[ 1252.946671][T21156]  get_tree_bdev_flags+0x38c/0x620
[ 1252.951763][T21156]  ? __pfx_udf_fill_super+0x10/0x10
[ 1252.956933][T21156]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 1252.962542][T21156]  ? bpf_lsm_capable+0x9/0x10
[ 1252.967196][T21156]  ? security_capable+0x7e/0x260
[ 1252.972105][T21156]  vfs_get_tree+0x8b/0x340
[ 1252.976503][T21156]  path_mount+0x1482/0x1fd0
[ 1252.980983][T21156]  ? __pfx_path_mount+0x10/0x10
[ 1252.985807][T21156]  ? kmem_cache_free+0x2d1/0x4d0
[ 1252.990717][T21156]  ? putname+0x154/0x1a0
[ 1252.994936][T21156]  ? putname+0x154/0x1a0
[ 1252.999161][T21156]  ? __x64_sys_mount+0x28d/0x310
[ 1253.004073][T21156]  __x64_sys_mount+0x28d/0x310
[ 1253.008812][T21156]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1253.014076][T21156]  do_syscall_64+0xcd/0x4c0
[ 1253.018561][T21156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1253.024436][T21156] RIP: 0033:0x7fcb47b8eb69
[ 1253.028823][T21156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1253.048400][T21156] RSP: 002b:00007fcb489f3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1253.056793][T21156] RAX: ffffffffffffffda RBX: 00007fcb47db6160 RCX: 00007fcb47b8eb69
[ 1253.064738][T21156] RDX: 0000200000000080 RSI: 0000200000004a00 RDI: 0000200000000000
[ 1253.072701][T21156] RBP: 00007fcb47c11df1 R08: 0000000000000000 R09: 0000000000000000
[ 1253.080652][T21156] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000000
[ 1253.088594][T21156] R13: 0000000000000001 R14: 00007fcb47db6160 R15: 00007ffd0e4a53b8
[ 1253.096542][T21156]  </TASK>
[ 1253.099732][T21156] Kernel Offset: disabled
[ 1253.104026][T21156] Rebooting in 86400 seconds..