last executing test programs:

4.859782216s ago: executing program 1 (id=1140):
sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='loginuid\x00')
preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000000380)=""/44, 0x2c}], 0x1, 0x0, 0x0)
writev(r0, &(0x7f00000003c0), 0x100000000000022d)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
listen(r2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000580)="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", 0x13c}], 0x2, 0x0, 0x48}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000050cb5340450c10108e492940a8090902"], 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8b18, &(0x7f0000000000)={'wlan0\x00'})
shutdown(r2, 0x0)
connect$unix(r1, &(0x7f00000003c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b904021d080b01000000e8fe55a11800150006001400030000120800040043000000a80016000a00014006000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d0080000000000000b57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb14feb9f5588a63644caf1ce1bd6c769ad809d52a9ecbee", 0xd8}], 0x1}, 0x0)
sendmmsg$inet(r5, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x24040890)
connect$inet(r5, &(0x7f00000000c0)={0x2, 0x4e23, @empty}, 0x10)
socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000140))
socket$inet_mptcp(0x2, 0x1, 0x106)
clock_gettime(0x0, &(0x7f0000002700)={<r7=>0x0, <r8=>0x0})
recvmmsg$unix(0xffffffffffffffff, &(0x7f00000025c0)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f0000000180)=[{&(0x7f0000000280)=""/243, 0xf3}], 0x1, &(0x7f00000004c0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x120}}, {{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000980)=""/4096, 0x1000}], 0x1, &(0x7f0000000440)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}, {{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000600)=""/180, 0xb4}, {&(0x7f00000006c0)=""/33, 0x21}], 0x2, &(0x7f0000000740)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}}, {{&(0x7f0000000880)=@abs, 0x6e, &(0x7f0000001e80)=[{&(0x7f0000001980)=""/241, 0xf1}, {&(0x7f0000001a80)=""/241, 0xf1}, {&(0x7f0000001b80)=""/85, 0x55}, {&(0x7f0000001c00)=""/209, 0xd1}, {&(0x7f0000001d00)=""/141, 0x8d}, {&(0x7f0000001dc0)=""/169, 0xa9}, {&(0x7f0000000900)}], 0x7}}, {{&(0x7f0000001f00)=@abs, 0x6e, &(0x7f0000002480)=[{&(0x7f0000001f80)=""/235, 0xeb}, {&(0x7f0000002080)=""/171, 0xab}, {&(0x7f0000002140)=""/73, 0x49}, {&(0x7f00000021c0)=""/120, 0x78}, {&(0x7f0000002240)=""/208, 0xd0}, {&(0x7f0000002340)=""/31, 0x1f}, {&(0x7f0000002380)=""/214, 0xd6}], 0x7, &(0x7f0000002500)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb0}}], 0x5, 0x10101, &(0x7f0000002740)={r7, r8+10000000})

3.983104767s ago: executing program 2 (id=1147):
creat(&(0x7f0000001380)='./file0\x00', 0x4)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000040)={0x12, 0x10, 0xfa00, {0xffffffffffffffff, 0xffffffffffffffff, r0}}, 0x18)
mount(&(0x7f0000001400)=@rnullb, &(0x7f0000001440)='./file0\x00', &(0x7f0000000000)='omfs\x00', 0x0, 0x0)

3.723725868s ago: executing program 2 (id=1149):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000480)={'wlan1\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r2, @ANYBLOB="0800260090150000080057"], 0x2c}}, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c050000", @ANYRES16=0x0, @ANYBLOB="120a27bd7000fddbdf258900000008000300", @ANYRES32=r2, @ANYBLOB="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"], 0x52c}}, 0x4040840)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1400000015000103000000000000000001"], 0x14}}, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)

3.566111544s ago: executing program 2 (id=1151):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = socket$inet(0x2, 0x802, 0x1)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0207e80702"], 0x10}}, 0x40044)
r3 = socket$inet6(0xa, 0x3, 0x84)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000280)={{{@in=@multicast1, @in6=@empty, 0x0, 0x56, 0x2, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x2, 0xfffffffffffffff6, 0x2000000, 0x1}, {0x7, 0x0, 0x4}, 0x3, 0x0, 0x1}, {{@in6=@private2, 0x0, 0x6c}, 0xa, @in=@loopback, 0x3507, 0x4, 0x0, 0x0, 0xffffffff, 0x8, 0x4}}, 0xe8)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xff}}}, 0x1c)
write(r1, &(0x7f0000000440)="08008edf773c8000", 0x8)
r4 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r4, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r4, 0x84, 0x22, &(0x7f0000000000)={0x6, 0x0, 0x6, 0x691}, 0x10)
sendto$inet6(r4, &(0x7f0000000200)='x', 0x1, 0x4000000, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f00000006c0)={0x0, 0x2}, 0x8)
r5 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40046f41, &(0x7f0000000440)=0x20000)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f00000003c0)={0x0, 0x1}, 0x8)
unshare(0x200)
r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r6, 0x0)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', 0x0, 0x84000, 0x0)
mremap(&(0x7f0000a95000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000a96000/0x1000)=nil)

2.875568659s ago: executing program 1 (id=1158):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)="d800000018008103e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901ac040098007f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f00000e970300"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7000000}, 0x48002) (fail_nth: 10)

2.287941927s ago: executing program 1 (id=1160):
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vxfs\x00', 0x20080c4, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_mtu(r0, 0x0, 0xa, 0x0, &(0x7f0000001780))
r1 = socket$can_raw(0x1d, 0x3, 0x1)
r2 = accept$inet(r0, &(0x7f0000000080)={0x2, 0x0, @remote}, &(0x7f00000000c0)=0x10)
setsockopt$IP_VS_SO_SET_TIMEOUT(r2, 0x0, 0x48a, &(0x7f00000004c0)={0x7, 0x7, 0x2}, 0xc)
recvmsg$can_raw(r1, &(0x7f00000012c0)={&(0x7f0000000440)=@qipcrtr, 0x80, &(0x7f0000000400)=[{&(0x7f0000000140)=""/201, 0xc9}, {&(0x7f0000000280)=""/73, 0x49}, {&(0x7f0000000300)=""/210, 0xd2}], 0x3, &(0x7f0000000100)=""/64, 0x40}, 0x0)

2.250240991s ago: executing program 2 (id=1161):
getsockopt$TIPC_DEST_DROPPABLE(0xffffffffffffffff, 0x10f, 0x81, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000100)={@local})
ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000080)=[@in6={0xa, 0x4e20, 0x7fffffff, @local, 0x4}], 0x1c)

1.595555118s ago: executing program 0 (id=1167):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000006c0)="0d18687da3e7f33aed145cf8ff2d1e5a18c0d5f9856f4824f41040f6987d0b531da10713ed151bc4867681f28e033aef683334d03864ed30590dd4ea64a20ecbbc1346c9f42510d91eec0632885b7da95ca85f4b1435c5c1e993a85257df5f19bdfc5e038a16e6a8aef907e347081fdb93cee93217e11f19cde423e6138bd1b79ee615527ccaf8049959ac6e32af46d777ccb8c26ca925f69590df13a81aee3213e80ba5cacf1f930b3cc49093d11594ef13325790b55efbdc2dd99ed1", 0xbd}, {&(0x7f00000002c0)="9c812b37fa6bd3963cbc009f0a922658be630ec6041ed353d314e58721edf306c382ac611fe34479cb9e2585745ff3c61da74b060400000000000000178176dc533f123b66d04d51fb7421cdc9fed78e3e1c18fb67c1f75ef7", 0x59}, {&(0x7f0000000180)="3f82090ccda4f8ce11f43ea8b51b08afd200c6075794cdd2e0021e30a0f6267447162a2085457cf687e74d142e85e9c4ac6e", 0x32}], 0x3}}, {{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000c40)="5c5eafd3ae55a73702d6befaee97f47f4be65587e1fca708cee084691e4587d887a5eaab43ac5edc4886496910cd7a153cd84b93208c7b1a625b3ea990092389b19dab4f61e30ee60a4d7e51ffc9a5accbe20844356dd0ce192542d5e58d80657b3b5fb7a3d39337df930595", 0x6c}, {&(0x7f0000000800)="104b0b7073fbd7f77a847bdbfdf6da474f700bf113b18d16d8380f42e296b49f1326c7d0d97be798e205654b8a885df6ee57ec7b690491c55ca484b54170549c7a72b8a579005ffcb0b309dae34571b17126534a763ca881f12d750072abc05a7cb8f0e32fc3ec3ed14c3322630ae8e710fb68299cbb5accee8813185c77248ddec7b5688599f1bfccbec448bc6ce5c139c2095da22c9d7edf7bfa1392c76ab0dddf4db130420df295ea16aa3e841d50dc813025315eea3990c2de68e835c4fec57e2dd70f47b584", 0xc8}, {&(0x7f0000000900)="5c3eb8799e8565193cf737e01055d298a4193e91d6dd89384d12d1da97e7e88852e279071ca7a9b536c7911d618feb48b66f1e17e130b7c2f27b77e2053065d05a00ae7bd353283ee3dcaf244ff26600e520af5091696d833f34518e53327718e7e3298de86f15e6a778f6008b96661a10be65c0a44b21b4c8724f61f6ca10d927a31e0c9f", 0x85}, {&(0x7f0000000500)="4c56c5661eb2897219a486044736", 0xe}, {0x0}, {&(0x7f0000000a40)="71918a5d581601244a3d864d7c74a12529e10637660163c939c6e23c3e3bc3bcfc79d3e47b9d80fc8fc812a2ae2adf778cf426ff4d090e8ad2d1144acb5a392c984f3190aafff8b0f1c5852274bab67df6ce8641ebef383c1503c3c19e1e8b133206cc193d38b8ebf8f76678b320950e8741221069da77cd76e5ff56fce3f0eee2b1922024929b3128ed46411f05a167211c3adf5dea2ab84c4e8c7a20cd114dcc56307f6e4e44cc4d82bcc898", 0xad}, {&(0x7f0000000b00)="2876a27ebfc4f1fc0466f3a791274633de5b2c6716219bebc16803", 0x1b}], 0x7}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000001800)="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", 0x14f}], 0x1}}], 0x3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

1.535926531s ago: executing program 0 (id=1168):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000e40)={'wlan0\x00'})
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0, 0x1c}}, 0x0)
read(r0, &(0x7f0000000480)=""/84, 0x54)

1.343873862s ago: executing program 1 (id=1170):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x1, 0x100000, 0x1000, &(0x7f000076d000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00007c7000/0x18000)=nil, &(0x7f0000000480)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0)
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x40000, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000009, 0x12, r2, 0x99b33000)
syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
sendmsg$rds(r3, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x3, 0x10000000000, 0x1000, &(0x7f0000fff000/0x1000)=nil})

1.282169924s ago: executing program 2 (id=1172):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)={0x5c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x3}, [@CTA_TUPLE_ORIG={0x44, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}, @CTA_NAT_SRC={0x4}]}, 0x5c}}, 0x0)

1.154057708s ago: executing program 2 (id=1174):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x10004, 0x4, 0xeeee0000, 0x1000, &(0x7f0000014000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
syz_usb_connect(0x3, 0x8c6, &(0x7f0000000000)=ANY=[@ANYBLOB="1201500236e47e2082055c2955d4010203010902b408048006a00309047f0e01ff2dde700a24010100800201020824050503"], &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x15, &(0x7f0000000040)=@string={0x15, 0x3, "6e44c17e25f302cc7e20c9af33e690ef024520"}}]})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000080)="0f18f966b83000008a00000f090f21f866353000000664660f2e68d96dc1670003620600000f01c97c0f4ae4292929669bd9fa642e0f01cf", 0x38}], 0x1, 0x4a, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000080))
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYRES16=r5, @ANYRESHEX=r4, @ANYRES64=0x0], 0x2c}, 0x1, 0x0, 0x0, 0x20000801}, 0x4014)

1.107010753s ago: executing program 3 (id=1175):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x8, 0x20e40)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000480)={{0xffffffff, 0x2, 0x85c7, 0xfffffffd, 'syz0\x00'}, 0x2, 0x20, 0x5, 0x0, 0x0, 0x1ff, 'syz0\x00', 0x0})
r1 = syz_open_procfs(0x0, 0x0)
r2 = getpid()
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000040)={0x0, 0x4}, 0x8)
r4 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(r2, r4, 0x7, 0xffffffffffffffff, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0xc})
r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = eventfd(0xadc)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
writev(r6, &(0x7f0000003dc0)=[{&(0x7f0000001940)="9de5b78ef87142b61ea4821c049b6587680e45ab23a941dedc2c14bb591b17e68c9f1392c01ff6c74c1a292f115c91f9270f3411b6fb70b01e8873c0cfb0e00b82a4eb54ac12d4cfc424612d7a597f23acf6cc5388c61b14f6c6f8a143a1f338a77633250b5f351c002c852be0bfcc85a558f5daa6cc7daa781620441c79334d847a815966555a37e108ab0382f781e1addb6be570e33285b6109641af91abae58135dfbd233eac726ce93a1c1f4047bfce9d1794fdc512410f50927b64534c5db", 0xc1}, {&(0x7f0000001a40)="17dbeedf7ce66733d9455a35bb9bb9ad6da1017eb5ff5ed27df0c5fea450efdffbb07850651591825e24ba924afc4dcdd747be5ca2500f8cee19772116cf7b", 0x3f}, {&(0x7f0000001a80)="d4f08355c97e0ffdced2763938c9746168fd9ce4ead5f74b910715", 0x1b}, {&(0x7f0000001ac0)="eb51b1c7e539b47d863389ee63fff41417941646b141a2fdf1a52081a838445d27a549461618574e1bcd7fb67b2b310ffd15ad8113ed652730280be83c9cd2555dc38f5743ea06ff7e34d8fd16323daed8f1cf00aed288325de27c1139808ac6bc433ce03826225bbd5cf8bd7e4a2b560645d0e2db3235f6648dea506a87a1f742c00ceb3b401bf5fbff2ccb000ded2f3b0acecbaa11d3c2753244a3f1cb0e7fbf34cc9bff6cfa0de4af48e48dace658cadaac1c4220fce274", 0xb9}, {&(0x7f0000001b80)="e89041a3cf088a5723eeb56796a00129b589f59a91f934b460cf77f9883395f9b38a6decb6394c917f657bbcb60d192c60b724a171e0f5c5c9f249ede0c7ab832addea7ffeedec28c6d1319f9867e55fabffd844c6d9c4f73ec0088ed4431d75396708895470de300a8d912c4b840a517a2f08945fc28e5ea176d29c0906", 0x7e}, {&(0x7f0000001c00)="32ba2a813fcbcb26950969c395b073f68247f5ff9ea26b8357a55f1b961a659d29c5fecdceb81b1ad7019a8eeedba3206e9140c12cf45b68ace7f10b9e687a626a9fd768db1495073c5fb050e4b0974637db2abd5dd503b133e15f96ee38d4423433f98f7027cef7303db38241b8eafce7a5b54c3cde45b21fb0168717fccd5f0f064dad24118d25ee247fd9f5936b5a5475b187018e4068ba2f64f8", 0x9c}, {&(0x7f0000001cc0)="3c1385c7cd7bc15a83f37038ed8daf92e28503bdc8085e5d87888d3102ebd3f484f7f63b7d5fbf72ac302622333afd661fe48a5821ff6ca22825a3ae8f5d6589b09bdfd4f53f29290dcf4366b28ed568718734e0d012cc8081191a7f45c3a62120f6e381b034b312b36af5e29ad7d90556d5fc2f8be93d67af116a01b4559dc576093c3346b06587a438d42c93a5847e64913edc92e4146a5dbcd5f340ae7084dc65ccb9e60b720b73c0fa02be8b54e3a6947a9ced165c28826c6490d95bcded34188d38ed4db518edb73360936eec4f077fe20bea5e70d5a180629a95fe53f26a86ad61f9891c176cd47b6e737fd57a188b650d927e07edbf5ae4890cc445fef3fb4bb77293ecc98184af2a64250e4f672a43c0d29c476c6c56b6e66b3231a15df005c3f195a35dc9819571e14bcf61a16b50c1162a7b0293a8139ad4f1b9e5f760875a60ab578f90dd8c394e90871b12a53570ce29f38af984c8cc9a488788f2df73eb1a1da34be6fcd6d18d5fef06d844985462a5f97c05fd58d5a9465b03e34154fa1c77110438e1b003699ab449c54e4e020d0aa8a348adc6a86fb11abee56d1a924c70151ef8eee820774bffebb3e5fa2c7c756a1481455c03094da8f11561befbdcb8e183be8cd6282589cfc3707b0d8cd690b8397093174ff7aed38979cc7db0daa3798aada31af08971a27460fcc76f8eede485c353c5870cdbfa38e5b762cee8a7130f2a1f0b356dbd5b8c35ce25091547979efd63e345199cfa50839b24d230f96b3e9caa0a3928231c2e8803a551ffd0da567c7a981c89dd182f70a7b8fee528b7a0f0b727ec90685d13396c120f5beeecc04ac041857c9deac32e986d03ec8f84767e6abcb65a4ada690ef69c3cf3787b2ad4732ed8bc615374fecf8016b42217a6ad2b208b10a7ad7ae76d9a75fa881a3a29dc904061ce2365e4a42343413734b5738b14793745198c451a4eeba519f19738136e2ee41d6c1fe19667aa612f881e7f7628f7dae253ffc6129049e51a209194298e8b7dc34e45cdacaf543c3c175c7145bfaaf57c2d381ab7a91094ef0ed74782965a9ffaf57ed92db5ae7a01f85745be55841261bfa1cc5f5350e445cf957b8fafe4903aaa8fa4c2061356cb60845631c377b405ec02d066a60f31a1ce0cbfff449f387b1586b435659eda1be7462af7e80b9c5f5830bad5b44b7ced1677fbd54033b0d666500e842484a348b86e44f9eba6ab8aec52ee71583fa033fbf0cd355027e88ceb385a13b98dd197d645ac6ae50f248cc2f5e04e9096403025aa4ec0c5f57dc98ca4db6fc7fb215218aa17b516dfd1e8e9360a1a15f16c35c12d393b58aec1bece0c6bb90668094965d7930ee4fb8dd324446479ebc94f5bab8d1bd74cd13d36e636411b0cacc1f71e5973452cf725320c13941bafbc5fe5df600938ed2f5c103a13a53549f581a90e06c530a20ea59ee5a963d45a3123e5157a9da2c15ed1bb52d4028a5a2f08c6c88d2152b7d56e60fe1b0bb24edda30e05d0186d80bb25878f65ce4d1681b2ab2c7bb0d9f0ce11daef76837ca4f48cbfa1ab99f07ff5e797973de81da49df38ffc4097060aadf10c629c1e348d3acb3ae7b5d1273f0442a5db70ee134489380b72989ad76f784b05ba733c0065b95dabed52c044876eed3dbb329c994d76bff8d1156176ac565ddadcc610ed7f23ea0e12626b593b927cbcac18ce771e0181f0ac4097f6f2b2f89c28dc0307f5f9e18474394bc2e6a15de0482214e58f9fec670159b83b635d79eab0cea3dc900735db31473503858dc64997f1b8b85ef1f3939a52ec1db12474759c802df321ee0f72404619335e862c11bec73fca7ebb60ac0394f1c5999c4124bb19e793d3404a28575cb7afdd3499bca6cbc7bb078b19bb6a7715d818763752c0aa1c785eab70c08274fd46348fc90759c9a4382a1ff58517e669ef759156a638639c3b6d88e2c32578cf46eb9be89b9c075e2547e3052bbe3de6959ef30a2fa8abd69422752b07173198df77a7f4608c6fa9a29f40d445f2184aa85024ce456d750851e4ca64d56fcdeba2aa5d2cc42aeb4a3571226ba27c565b56ffe61d690f9a8a27b7be357de17976e71edb3ee4d583f0bd95c791b7c920a430d20b2d1fd62871a57bd0d0111250197e30e126058e8c3d6ad7b1594d8648fd4be25775af7fa20ccda9cb26b5c0d48e44cc73e34282083a345c2a38744ad454fe2feb5a505623412b94ce160c391e6c3d97d7d2275afc34f44095376881cba1e3a70367a5d03be776776670f91c74af03077486726565e0666edf557ec747a4a055da2eaeb0bd9dfe6a4e040b00b4892b4e464da87b3bedf76b754eab5147ca861c59fbe7b6a8b9ad03ebf10afbd6ab6750c47b999477f9ec16d5215782c70b89ae8981e3d70feb4e962cff76f18c09c99e37bb65825692acefd859601506d3f54f9b698e60491fd86f3c5c53574d7e9a5b428cf9d9fdadceb0efc9a8157c51e56069e0f95712845576f3727e0a89652b9fbf48e95273c1be1b3bc8a22674c6c6d48ebb03cc9f79bc8dc1c06cb0f1a238dd5f1321c84d1a2bcf2bbbd2f658cb80f7c5100c1f850f2f2e3eafacad96973a9f8ccca2726b08d1ca80361765f159cf9a10c283f5fed8c4fb757168b0b6ce27706d4cfe9789f345676bfa0b4c089160287cea23f3935901557d5196c4e07b022781eced75f0881cb9cafb079ff17a23c88f6b08c262cec137b59ea60708f7a8bbb516a2b37e63c1381da65c8111aec3dd88173b44b0ef57978696a3cb800e40197790dbad7b47166d8bb1175d5a7b7e5bf4def3c91e910035d29c7fd8e54dbf9138370595be6f67bc74681a903ee21d8e667134a4af92d044dbf6e1daae5bc88c54ca6d6800b423964b3865975532b54f6e05b65e5bc4a6887f10376f121671230052e6ee17d4eadff9633cc30b48a11efbc823bc5275d1e905a89d4b6c40ea5b36a9e68f0f42a5f7bff579cc51c66a46ccaca2cae41084a19b9148687f708ab0c116510f3368b07655c3f7b1ad02b07fe51dcca1a4569c118e21bbe0da4d5dd40bbf6c2b2dc7b52c8df19c6a18deabee82d14310b71b1cebcfd734260c2f12fa9ab7c604f6560e576e1e1f71a9eb9eac235be7dd9af5db28a916c2d03114b63864fa7ca024165d36ec045deb7021631b472541984a79b2657296b1cce686cac5a89d592eb715fd75837dedc6a36c6a188d1feeae4f6b7252ad7f64f13ca533e1090006ab9e9ca8a5653379a9e63709520e38a17c534f4a5096c129f1a01fd0ed0ad3870cf108b47ee2e0263e4207660c8c8eb22f0def43273b4dbb8a42a6a4e4abf4a1206a2025c0b3adbe199c51a0543c2f01f81365b998693d0002327d662a8eb5fe158ba22bbf693db8bd2e4544186cc4e2f089f0f67137c273e953e5df109307e51abbcf26c8cd601713ac5b4422e417def23b5df5f3db399f3202537e38bb2444ae1888e69d21e73d2680dbc922bd1eacc4ddbb5284c8d6ced63fd15c0bf922f270d0e05d4622b562cb62923c332288ed10f9256bda8882c93e677249e507359b322067337c607a36a346094e5a30b05fbcfd794cb3132a84f6bd4c281f2f2fd26c1110a48ff80a0175a0ff83bbf84444b69bf5332e3b09fffab7265081e3e9e51dc46abcd502ad1e846c1e7ac5cbfe9da59ef13d861b61b90c8c02999e449224719f74abb89056ddf96d5f340b56df9950b23a6401b794886c7465def51ea99702ac37fb04d1cfd55535e7cdd42f441459da322babd0a1accad3a068446b52b3fac573cff0d573857f32f504dbd8b6c3378f8cb82b706aac845496b77acccaa7ee35e154b5e95406f1f96d994ae45def28be9d29822e694fbc960a8c8b390e2ddf2d8d32a847c0877bd8f0504229c5c397c76df1eb68dd963d18c06648f28eb41bd8af52f9cc25ede11c1361cbb64a45524e3d52035494a042d25804e911f7b555120bd0bad1339c2ee25bf94b7b160c6d62ec384ea5bbda328a5737e7b675e568cdf82c203398f56f1c1b4198a72582309676cf2f6cb479040b37e42363252d55bb9b67c10308275c78f71a26be324074dd11c75938f5471a9fa0413d0b5c8b37ed5adfca35313d6ea47eb8ec2dc025eb51f68792c5fac0757406d5d8a8b75005618fb00e8bf7e0efd239acf5d31e82c0e9099b0a3d91fec726d7d9b0d079d62d57b44d6cd82e8349d5f4eaf3aacdc3bb53ee79bef3e957386e60972700e2737bcbea5c92bfe7277e02da23f94f1cffb6cf24ff696abaa9db61b800e3490edf7e66ed35be4b7ff142985ce34b60d180ef78cda32d326b57f0359b4b1cf0fbf95edb34da73ea91bb201e9c7bc107bdbb9311658f9991a00adcff3e67f26d6d87dd4dbf335b0308863dc5c78a5a70a485df8e39d3b5a2fdd65de2650049ce4357a397c9f32fa9a257c00e599115d3c2e12ace084e7beb88ffe4a9a0164956919f528481a1bf643a6ae819225c39825013262d20891ad4352bf595f5009bd613deea560dcc893fe47f2d94efcca1d6465ceef79e15cb6f44036df16cd8f088f88f213595c12c601b8a6b265ae2308f69ca8968bcb60500609bf8afb4ea099d42cf6ff24ff24a8dc83f8d203b35c76c153c4eadf6952d346cb2fa1e6a1f8e4b0216c42a9e14d4dcef3adcd06694d99a0d456e0a1e18a529f80345d950d7af1608bfb5d0cc838c82385c515dcee52f7ae023b7fb04b609dd3a4e512baa27b5d0349ce921430dd759191ce3cd508090b730044e4a3faa9b3899459efd2b0f7de824bf5d8ee0329fda90dff3704331b7941395a5e1eacc47c44ae429191242a20c8918f4369fc220af88b6e140a2eb916062fe013fbdcf477b3f6cf53f510a12af67b9e01e5a41bdb3c9a54710d78ea7c059437460253c383db9e98a6478122fc7049b188a5e6019d497a17c640c929723c96c6c33fdeffa21a8352a0c6898ee8c1ba1b7e44787ec363ecf3f7767a018cac32d20657ae1b8454d3db494f513de7ebc1b9ddd5e052024145c8534cb60f3accec300cec6a95266dbb760b4aa166453713b9d23588af1d4ac41d93ac443817cd9c313a44a8b7676da70cbb2f5f6e612ed5befa1589776f104b9502c4fa477d1d0eb6c0d20ac779203f47d9ccd34ca9e97ae6b3c7ffdf61b2adcdefbe077704e6913372b320e640b3280148ebb6021b28d7270dabb5db7d97f6a02c695d44a5fc81d295ac63854c1b964b620a79459ffe73f4cc17219d34f027c32bccaab7ab63547471af20fe4ba8a2787ad11205cea18fddb3e5455e6db9579f7e4f58de6f1a82f6920d9da4ca1d37c4a1d7a56e828c21bf0eed4bd54348c904f4c68a21b3ea041cfd86d625b21623364357702772ba8ad842e3203219cc47ad1a36097ea24dbab123cf329746428814df10dbce9eb3ceff99690f2096ef046ddbb97daa6cd1dfaa35ada5d8b516fa5f08d24cee0c44b48b5639694183eb6679107e7bd62fb4e3c08e53786cbe3a3ffd8bb4cddef7ae895150b22f58967cce0c5e430a7ced7e405b989542526ee1f6fb62ed38f8e780e1fe404aebe919d6884dee374ebda01d6456e7591c53bf227d196aded4aa57efcb13e6d679d916ddd9d3107a0384c8904358a8b6c0e526d95a1795dcb47949e7693d6284d92ea74997e97cbdec8b57080bddec50b9c1a30bfbf930a27989a6f0a9d6509e3fa89d458b5bded090cb64b27c45aaebe1b3893a181d0a1567b5182f7806029192b1525c6a9443bc31fc2d16f1d0eaa6b6b41da854fde4ab68f5eeebff43671", 0x1000}, {&(0x7f0000002cc0)="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", 0xfe}, {&(0x7f0000002dc0)="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", 0x1000}], 0x9)
r7 = fcntl$dupfd(r6, 0x0, r1)
r8 = openat$cgroup_ro(r7, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000100)=ANY=[], 0x32600)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r10=>0x0})
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r11, @ANYBLOB="01002abd7000ffdbdf25590000000800036e", @ANYRES32=r10, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4040884}, 0x20008040)
pwritev(r9, &(0x7f0000001880)=[{&(0x7f0000000200)="800e9654965fe0f246c1da0ce30da673698d23a28e80d098b2f10b077d9489ed50c8a1278ab9310b6fce1bcff5d56bb99f6f9314be591979b99b80b2590ccd2f5c305f1536cc30c4f4ac9951d81fe46cd805245e5f2bdb88d65c49593dd85acf57445d78db45ab8d4ef95d9e86314396f0f75ca173f7271de244bac0aa09fc3c25b700817d117329b5dc9f655dd6bfbdc2f68ee1d3e4296a26384f07f95bcbee22ed29c4e3ade6494a3daaf631a054d2c7e36de8bb330554096daf4db42e706180a8584b383330573c2dc5976247ff13c0507bd1", 0xd4}, {&(0x7f00000000c0)="47d2be47377379fc7b8f0732f0c450eda6a18626abc1c10749be3da3d79676b29573520a5271ceb8b5775f599d358458b85d7f", 0x33}, {&(0x7f0000000600)="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", 0x1000}, {&(0x7f0000000300)="822040b4e35f4783e7e74e6149988304c0589c881cc0cb7dda530c0618383c65de1491b6a56aa8df692447524ca8f547395a6da4a6726a1a6d5d8654dea30a265fa34aff36b44590778c7d6a2732c3c6b8f3d1f57e709942b3e1d4ac6c0f0af1262c4d9f857750d61c522bc8253ef58f280813dd44e61b2606e7b7303f5103029d778e80a50dd14c8630a9c9bd506bb1561338c76d2a2b280a11a8194970ad9d11c2a0ce437bfd0c05b3e1184fe11c576b6aa521f7e968ec011afdec011fec7bf3582a34c7bf89dbde8d899e0e757227f2d56028da225ebcd706ceaf77914c5f4626db4bdf5f9d", 0xe7}, {&(0x7f0000000100)="541f6af362797f708ab0f0b7a390bf0d1d83d4b3b64262f5a271b115f3229321c90d4e876e709453d8005c3b2d97ae433df0d57251edf00f7d748697403ed3752274f259027ad0d06d08d8c01ad885fac584f9", 0x53}, {&(0x7f0000001600)="91c4ce0f48e46b4d994d83f83ef4c3d461d9b6a52cbc472037a414f0e5c619143af555943507f9a443e2dc4f975cb5af5ff76bca8036852a8e13ad26e512c47568ca031ab98efb3d26f0499cbcdc4e0e1e19b9274379c33bbec4cc0d4317384339e80c56e070318ef6e4654ca240db8ff71455b97f0b801e37c688cd45e91776765481cab987d893d07311da475f6d7c400834b8b910caf80febccbaf208f988e78b47b0a6162d8938c9a2938236608dfea68ba9b039de3c68c20b23e6658c980aa6daa4589dc1b53077a2f68ec4e520f87e0de56146bc5bcd052a3f969d303b", 0xe0}, {&(0x7f0000000400)="824cf5267d6c61f2cf1a", 0xa}, {&(0x7f0000001700)="63d5601101c9ceb17e0358374bb09f8f298eb19e822da8ccd2559a406e1f55b813e6b49b5312e569f6bbe6c54552db46f5a28e9a04743f2e0885065d8869cbda6dd67d72540185d3f74fe9", 0x4b}, {&(0x7f0000001780)="c294c4f0ae10352915ee4ed665f9ceda5afdcfd56fa98c24a8689aac442840c603adb16818efdb88093ac83c2ef43f07ddf1370add8ac77ab3e56fca91d25bac3201bc45b4da31d0e19d70628ead0b3b78407e8a31c6b0d4adde7b87a4502c4b610af3cf89dac58b5c5029b9b58a0b5eb9509b1f52b5dad13f379ae0e3eb042fd4714f9e75cf25ae45e4f049da5b0403bcf802b0c8d18dc18ac3d02e63a4157a40d87823b2d5a5ea229ae956a438b508c4221163b7e5a4aab1fd843b106a616706d5713f213f709fe96105d222c22aad291f00b4", 0xd4}], 0x9, 0x80, 0x4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r8, 0x0)
epoll_create(0xcc97)
getsockopt$X25_QBITINCL(r1, 0x106, 0x1, 0x0, &(0x7f0000000040)=0xffffffffffffff5a)
io_setup(0x7, &(0x7f0000000280)=<r12=>0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x4031, 0xffffffffffffffff, 0x1325a000)
io_submit(r12, 0x1, &(0x7f0000000500)=[0x0])
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, 0x0)

1.015884272s ago: executing program 1 (id=1176):
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder0\x00', 0x1, 0x0)
r2 = syz_open_dev$vcsa(&(0x7f0000000140), 0x1b31, 0x10000)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000001600)={0xdc, 0x0, &(0x7f0000001480)=[@dead_binder_done, @transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x50, 0x18, &(0x7f00000001c0)={@fd={0x66642a85, 0x0, r2}, @fda={0x66646185, 0x1, 0x0, 0x2e}, @flat=@weak_binder={0x77622a85, 0x1180, 0x2}}, &(0x7f0000000240)={0x0, 0x18, 0x38}}}, @increfs={0x40046304, 0x1}, @register_looper, @acquire_done={0x40106309, 0x3}, @transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x50, 0x0, 0x0, 0x70, 0x18, &(0x7f00000013c0)={@ptr={0x70742a85, 0x1, &(0x7f0000000280)=""/4096, 0x1000, 0x2, 0x17}, @ptr={0x70742a85, 0x0, &(0x7f0000001280)=""/248, 0xf8, 0x1, 0x24}, @fda={0x66646185, 0x5, 0x2, 0x35}}, &(0x7f0000001440)={0x0, 0x28, 0x50}}, 0x1000}, @release, @clear_death, @register_looper, @register_looper], 0x6b, 0x0, &(0x7f0000001580)="3ce4c5107cc5e1eaedefcaac266935f3d6099c3b21f34441d67aeb386dcef88cea2f1fcfa2526bcf1f36d0fd4614ceb4b9ff422592e58695a2881ad5d0c4a3e4ac58e95d13839cb59f0d85dbef843cc6d475f41863e0731fb390523b1f431095de4b4aa33b04fab9be47b6"})
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/meminfo\x00', 0x0, 0x0)
ioctl$F2FS_IOC_GET_COMPRESS_OPTION(r3, 0x8002f515, &(0x7f0000001900))
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x8, 0x0, 0xfffffffd}, 0x24)
write(r0, &(0x7f0000000080)="240000001a007f0214f9f4070009040803000000000000000002000008000f40fe00000e", 0x24)
fcntl$getownex(r0, 0x10, &(0x7f0000001640)={0x0, <r4=>0x0})
ptrace$setsig(0x4203, r4, 0x4, &(0x7f0000001680)={0x29, 0x1, 0xca})
creat(&(0x7f0000001380)='./file0\x00', 0x0)
recvmsg$inet_nvme(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xfffffffffffffe3d, &(0x7f0000001940)=""/191, 0xbf}, 0x2)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60303, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000001700))
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="04050403c9008108328aa929287e5a34ce42eab2076f08e12cf40c071056654f0a"], 0x7)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB='>\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="050200008000fcdbdf251200000008000700070000001800018014000200626f6e645f736c6176655f3100000000"], 0x34}, 0x1, 0x0, 0x0, 0x20008040}, 0x48810)
r9 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r9, 0x4400ae8f, &(0x7f0000000000)=@x86={0x5e, 0x9, 0x4, 0x0, 0x1, 0xc, 0x3, 0x8, 0x2, 0x77, 0x9, 0x1, 0x0, 0xb, 0x100b, 0xf5, 0x1, 0x2, 0x0, '\x00', 0x80, 0x2b7})
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='omfs\x00', 0x8000, 0x0)

902.680267ms ago: executing program 3 (id=1177):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000006c0)="0d18687da3e7f33aed145cf8ff2d1e5a18c0d5f9856f4824f41040f6987d0b531da10713ed151bc4867681f28e033aef683334d03864ed30590dd4ea64a20ecbbc1346c9f42510d91eec0632885b7da95ca85f4b1435c5c1e993a85257df5f19bdfc5e038a16e6a8aef907e347081fdb93cee93217e11f19cde423e6138bd1b79ee615527ccaf8049959ac6e32af46d777ccb8c26ca925f69590df13a81aee3213e80ba5cacf1f930b3cc49093d11594ef13325790b55efbdc2dd99ed1", 0xbd}, {&(0x7f00000002c0)="9c812b37fa6bd3963cbc009f0a922658be630ec6041ed353d314e58721edf306c382ac611fe34479cb9e2585745ff3c61da74b060400000000000000178176dc533f123b66d04d51fb7421cdc9fed78e3e1c18fb67c1f75ef7", 0x59}, {&(0x7f0000000180)="3f82090ccda4f8ce11f43ea8b51b08afd200c6075794cdd2e0021e30a0f6267447162a2085457cf687e74d142e85e9c4ac6e", 0x32}], 0x3}}, {{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000c40)="5c5eafd3ae55a73702d6befaee97f47f4be65587e1fca708cee084691e4587d887a5eaab43ac5edc4886496910cd7a153cd84b93208c7b1a625b3ea990092389b19dab4f61e30ee60a4d7e51ffc9a5accbe20844356dd0ce192542d5e58d80657b3b5fb7a3d39337df930595", 0x6c}, {&(0x7f0000000800)="104b0b7073fbd7f77a847bdbfdf6da474f700bf113b18d16d8380f42e296b49f1326c7d0d97be798e205654b8a885df6ee57ec7b690491c55ca484b54170549c7a72b8a579005ffcb0b309dae34571b17126534a763ca881f12d750072abc05a7cb8f0e32fc3ec3ed14c3322630ae8e710fb68299cbb5accee8813185c77248ddec7b5688599f1bfccbec448bc6ce5c139c2095da22c9d7edf7bfa1392c76ab0dddf4db130420df295ea16aa3e841d50dc813025315eea3990c2de68e835c4fec57e2dd70f47b584", 0xc8}, {&(0x7f0000000900)="5c3eb8799e8565193cf737e01055d298a4193e91d6dd89384d12d1da97e7e88852e279071ca7a9b536c7911d618feb48b66f1e17e130b7c2f27b77e2053065d05a00ae7bd353283ee3dcaf244ff26600e520af5091696d833f34518e53327718e7e3298de86f15e6a778f6008b96661a10be65c0a44b21b4c8724f61f6ca10d927a31e0c9f", 0x85}, {&(0x7f0000000500)="4c56c5661eb2897219a486044736", 0xe}, {0x0}, {&(0x7f0000000a40)="71918a5d581601244a3d864d7c74a12529e10637660163c939c6e23c3e3bc3bcfc79d3e47b9d80fc8fc812a2ae2adf778cf426ff4d090e8ad2d1144acb5a392c984f3190aafff8b0f1c5852274bab67df6ce8641ebef383c1503c3c19e1e8b133206cc193d38b8ebf8f76678b320950e8741221069da77cd76e5ff56fce3f0eee2b1922024929b3128ed46411f05a167211c3adf5dea2ab84c4e8c7a20cd114dcc56307f6e4e44cc4d82bcc898", 0xad}, {&(0x7f0000000b00)="2876a27ebfc4f1fc0466f3a791274633de5b2c6716219bebc16803", 0x1b}], 0x7}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000001800)="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", 0x14f}], 0x1}}], 0x3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

850.808698ms ago: executing program 1 (id=1178):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
accept(r2, 0x0, 0x0)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x19, &(0x7f0000000100)=0xffff, 0x4)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, 0x0)

808.568561ms ago: executing program 3 (id=1179):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000000a0b040000000000000000020000001400048010000180090001006d617371000000000900010073797a3000000000090002"], 0x68}}, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000040)={0xf, {"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", 0x1000}}, 0x1006)
r1 = syz_open_dev$loop(&(0x7f0000000100), 0x8, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r2, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r2)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r3 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
r4 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r4, &(0x7f0000001440)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0xff}, 0x7}, 0x1c)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000100)="88", 0xfdef}], 0x1)

563.969179ms ago: executing program 0 (id=1180):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000003c0), 0x3)
r1 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r1, 0xc06864b8, &(0x7f00000000c0)={0x0, 0xc9, 0x7d, 0x20203143, 0x0, [0x2], [0x101], [], [0x0, 0x8000005f8]})
getsockopt$bt_hci(r0, 0x11a, 0x1, 0x0, &(0x7f00000004c0))
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
close(r2)
write$FUSE_DIRENT(r2, &(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES64=0x0], 0x10)
getsockopt$SO_J1939_SEND_PRIO(r2, 0x6b, 0x3, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
syz_open_dev$dri(&(0x7f0000000180), 0x82, 0x80)
mount(&(0x7f0000000000)=@rnullb, &(0x7f00000000c0)='./cgroup\x00', &(0x7f0000000040)='hpfs\x00', 0x208002, 0x0)

489.541644ms ago: executing program 3 (id=1181):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$SIOCRSACCEPT(r0, 0x89e3)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000240)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x0, 0x4, 0x20, 0x1c00}, @mpls={[], @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x400, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0x7, 0x4, 0x7, 0x0, 0x2, {[@window={0x9, 0x3}, @sack_perm={0x4, 0x2}]}}}}}}, 0x3e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)

460.903219ms ago: executing program 0 (id=1182):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$inet_opts(r0, 0x6000000, 0x4, 0x0, &(0x7f0000000040))

331.94905ms ago: executing program 0 (id=1183):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r2, 0x545c, 0x3000000)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000400)={0xf0f002, 0x5})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r3, 0x0)
r5 = socket$kcm(0x29, 0x2, 0x0)
sendmsg(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000240)="d4a7f1d33d", 0x5}], 0x1}, 0x40)
r6 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')
preadv(r6, &(0x7f00000014c0)=[{&(0x7f0000000340)=""/191, 0xfffffd90}], 0x1, 0x182, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
gettid() (async)
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) (async)
timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$TIOCMIWAIT(r2, 0x545c, 0x3000000) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0) (async)
syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2) (async)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000400)={0xf0f002, 0x5}) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r3, 0x0) (async)
socket$kcm(0x29, 0x2, 0x0) (async)
sendmsg(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000240)="d4a7f1d33d", 0x5}], 0x1}, 0x40) (async)
syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00') (async)
preadv(r6, &(0x7f00000014c0)=[{&(0x7f0000000340)=""/191, 0xfffffd90}], 0x1, 0x182, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000) (async)

299.906736ms ago: executing program 3 (id=1184):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x8, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x1d2)
fcntl$setlease(r2, 0x400, 0x0)

130.382171ms ago: executing program 3 (id=1185):
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x481, 0x0) (fail_nth: 9)

0s ago: executing program 0 (id=1186):
mount(&(0x7f0000000100)=@loop={'/dev/loop', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='udf\x00', 0x257000, 0x0)

kernel console output (not intermixed with test programs):

0x420
[  208.229132][ T8303]  ksys_write+0x145/0x250
[  208.229154][ T8303]  ? __pfx_ksys_write+0x10/0x10
[  208.229170][ T8303]  ? rcu_is_watching+0x15/0xb0
[  208.229199][ T8303]  ? do_syscall_64+0xbe/0x3b0
[  208.229226][ T8303]  do_syscall_64+0xfa/0x3b0
[  208.229247][ T8303]  ? lockdep_hardirqs_on+0x9c/0x150
[  208.229268][ T8303]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.229288][ T8303]  ? clear_bhb_loop+0x60/0xb0
[  208.229312][ T8303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.229332][ T8303] RIP: 0033:0x7ff158d8e929
[  208.229349][ T8303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.229366][ T8303] RSP: 002b:00007ff159c66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  208.229387][ T8303] RAX: ffffffffffffffda RBX: 00007ff158fb5fa0 RCX: 00007ff158d8e929
[  208.229402][ T8303] RDX: 0000000000000012 RSI: 00002000000000c0 RDI: 0000000000000004
[  208.229413][ T8303] RBP: 00007ff159c66090 R08: 0000000000000000 R09: 0000000000000000
[  208.229424][ T8303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.229435][ T8303] R13: 0000000000000000 R14: 00007ff158fb5fa0 R15: 00007ffdfc0b2ef8
[  208.229465][ T8303]  </TASK>
[  208.593384][ T5896] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  208.732362][ T8316] fuse: Bad value for 'fd'
[  208.743245][ T5896] usb 4-1: Using ep0 maxpacket: 16
[  208.754931][ T5896] usb 4-1: config 7 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  208.783928][ T5896] usb 4-1: config 7 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  208.801948][ T5896] usb 4-1: config 7 interface 0 altsetting 5 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  208.827357][ T5896] usb 4-1: config 7 interface 0 altsetting 5 endpoint 0x2 has invalid wMaxPacketSize 0
[  208.837644][ T5896] usb 4-1: config 7 interface 0 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  208.852064][ T5896] usb 4-1: config 7 interface 0 has no altsetting 0
[  208.896156][ T8321] mmap: syz.2.858 (8321): VmData 25841664 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  208.905243][ T5896] usb 4-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  208.928856][ T5896] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.303299][   T55] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  209.313308][ T5903] usb 3-1: new full-speed USB device number 38 using dummy_hcd
[  209.372571][ T5896] input: HID 0458:5010 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:7.0/0003:0458:5010.000B/input/input21
[  209.463474][   T55] usb 2-1: Using ep0 maxpacket: 32
[  209.469571][ T5903] usb 3-1: New USB device found, idVendor=13d8, idProduct=0020, bcdDevice=f7.31
[  209.470625][   T55] usb 2-1: unable to get BOS descriptor or descriptor too short
[  209.478901][ T5903] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.487087][   T10] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  209.511241][ T5903] usb 3-1: config 0 descriptor??
[  209.516292][   T55] usb 2-1: config 128 has an invalid interface number: 127 but max is 3
[  209.516317][   T55] usb 2-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  209.543103][ T5896] kye 0003:0458:5010.000B: input,hiddev0,hidraw0: USB HID v2.00 Device [HID 0458:5010] on usb-dummy_hcd.3-1/input0
[  209.559773][   T55] usb 2-1: config 128 has 1 interface, different from the descriptor's value: 4
[  209.589602][   T55] usb 2-1: config 128 has no interface number 0
[  209.589701][ T5903] usb 3-1: selecting invalid altsetting 3
[  209.600048][   T55] usb 2-1: config 128 interface 127 altsetting 14 has an endpoint descriptor with address 0x37, changing to 0x7
[  209.632519][ T5903] comedi comedi5: could not set alternate setting 3 in high speed
[  209.641216][   T55] usb 2-1: config 128 interface 127 altsetting 14 endpoint 0x7 has an invalid bInterval 38, changing to 9
[  209.646509][ T5903] usbduxsigma 3-1:0.0: driver 'usbduxsigma' failed to auto-configure device.
[  209.660444][ T5896] usb 4-1: USB disconnect, device number 36
[  209.669071][ T5903] usbduxsigma 3-1:0.0: probe with driver usbduxsigma failed with error -22
[  209.689973][   T55] usb 2-1: config 128 interface 127 altsetting 14 endpoint 0x7 has invalid maxpacket 9921, setting to 1024
[  209.703656][   T10] usb 1-1: Using ep0 maxpacket: 32
[  209.713454][   T55] usb 2-1: config 128 interface 127 has no altsetting 0
[  209.714624][ T8335] fido_id[8335]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[  209.721727][   T10] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  209.756647][   T55] usb 2-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  209.760564][ T5903] usb 3-1: USB disconnect, device number 38
[  209.766307][   T55] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  209.781536][   T10] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  209.791904][   T55] usb 2-1: Product: syz
[  209.809534][   T55] usb 2-1: Manufacturer: syz
[  209.825647][   T55] usb 2-1: SerialNumber: syz
[  209.831265][   T10] usb 1-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  209.850186][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  209.861866][   T10] usb 1-1: Product: syz
[  209.862822][ T8328] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  209.866882][   T10] usb 1-1: Manufacturer: syz
[  209.878355][   T10] usb 1-1: SerialNumber: syz
[  209.888648][   T10] usb 1-1: config 0 descriptor??
[  210.136576][   T55] usb 2-1: USB disconnect, device number 40
[  210.165801][ T6293] udevd[6293]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  210.706689][ T8352] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  210.815567][ T8356] sctp: [Deprecated]: syz.0.865 (pid 8356) Use of struct sctp_assoc_value in delayed_ack socket option.
[  210.815567][ T8356] Use struct sctp_sack_info instead
[  210.850050][ T8356] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  210.862406][ T8356] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  211.867223][ T8388] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  211.875271][ T8388] VFS: Can't find a romfs filesystem on dev rnullb0.
[  211.875271][ T8388] 
[  211.979719][ T8393] FAT-fs (rnullb0): bogus number of reserved sectors
[  211.989994][ T8393] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  212.023094][ T8393] netlink: 28 bytes leftover after parsing attributes in process `syz.1.886'.
[  212.035462][ T8393] FAULT_INJECTION: forcing a failure.
[  212.035462][ T8393] name failslab, interval 1, probability 0, space 0, times 0
[  212.049288][ T8393] CPU: 1 UID: 0 PID: 8393 Comm: syz.1.886 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  212.049315][ T8393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  212.049328][ T8393] Call Trace:
[  212.049336][ T8393]  <TASK>
[  212.049344][ T8393]  dump_stack_lvl+0x189/0x250
[  212.049377][ T8393]  ? __pfx____ratelimit+0x10/0x10
[  212.049400][ T8393]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.049428][ T8393]  ? __pfx__printk+0x10/0x10
[  212.049463][ T8393]  ? __pfx___might_resched+0x10/0x10
[  212.049487][ T8393]  ? fs_reclaim_acquire+0x7d/0x100
[  212.049514][ T8393]  should_fail_ex+0x414/0x560
[  212.049549][ T8393]  should_failslab+0xa8/0x100
[  212.049570][ T8393]  kmem_cache_alloc_lru_noprof+0x78/0x3d0
[  212.049595][ T8393]  ? __d_alloc+0x36/0x7a0
[  212.049624][ T8393]  __d_alloc+0x36/0x7a0
[  212.049651][ T8393]  d_alloc_parallel+0xe5/0x15e0
[  212.049689][ T8393]  ? __lock_acquire+0xab9/0xd20
[  212.049716][ T8393]  ? __pfx_d_alloc_parallel+0x10/0x10
[  212.049746][ T8393]  ? __raw_spin_lock_init+0x45/0x100
[  212.049772][ T8393]  ? __init_waitqueue_head+0xa9/0x150
[  212.049795][ T8393]  __lookup_slow+0x116/0x3d0
[  212.049820][ T8393]  ? __pfx___lookup_slow+0x10/0x10
[  212.049852][ T8393]  ? d_lookup+0x8a/0xa0
[  212.049876][ T8393]  ? lookup_noperm+0x112/0x220
[  212.049903][ T8393]  simple_start_creating+0xfd/0x1e0
[  212.049926][ T8393]  ? __pfx_simple_start_creating+0x10/0x10
[  212.049960][ T8393]  start_creating+0x10f/0x180
[  212.049988][ T8393]  __debugfs_create_file+0x79/0x4f0
[  212.050026][ T8393]  debugfs_create_file_full+0x3f/0x60
[  212.050056][ T8393]  ref_tracker_dir_debugfs+0x14e/0x270
[  212.050077][ T8393]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  212.050122][ T8393]  ? alloc_netdev_mqs+0xa3/0x1170
[  212.050150][ T8393]  ? rcu_is_watching+0x15/0xb0
[  212.050171][ T8393]  ? alloc_netdev_mqs+0xa3/0x1170
[  212.050202][ T8393]  ? __raw_spin_lock_init+0x45/0x100
[  212.050234][ T8393]  alloc_netdev_mqs+0x26f/0x1170
[  212.050261][ T8393]  ? __pfx_ieee80211_if_setup+0x10/0x10
[  212.050289][ T8393]  ieee80211_if_add+0x46c/0x1390
[  212.050316][ T8393]  ? rcu_is_watching+0x15/0xb0
[  212.050342][ T8393]  ieee80211_add_iface+0xb5/0x5c0
[  212.050378][ T8393]  ? __pfx_ieee80211_add_iface+0x10/0x10
[  212.050415][ T8393]  nl80211_new_interface+0x827/0x1180
[  212.050454][ T8393]  ? __pfx_nl80211_new_interface+0x10/0x10
[  212.050487][ T8393]  ? nl80211_pre_doit+0x4fb/0x930
[  212.050520][ T8393]  genl_family_rcv_msg_doit+0x212/0x300
[  212.050557][ T8393]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  212.050598][ T8393]  ? bpf_lsm_capable+0x9/0x20
[  212.050623][ T8393]  ? security_capable+0x7e/0x2e0
[  212.050655][ T8393]  genl_rcv_msg+0x60e/0x790
[  212.050690][ T8393]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.050715][ T8393]  ? ref_tracker_free+0x63a/0x7d0
[  212.050731][ T8393]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  212.050755][ T8393]  ? __pfx_nl80211_new_interface+0x10/0x10
[  212.050783][ T8393]  ? __pfx_nl80211_post_doit+0x10/0x10
[  212.050811][ T8393]  ? __pfx_ref_tracker_free+0x10/0x10
[  212.050842][ T8393]  netlink_rcv_skb+0x208/0x470
[  212.050866][ T8393]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.050894][ T8393]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  212.050937][ T8393]  ? down_read+0x1ad/0x2e0
[  212.050962][ T8393]  genl_rcv+0x28/0x40
[  212.050985][ T8393]  netlink_unicast+0x75b/0x8d0
[  212.051025][ T8393]  netlink_sendmsg+0x805/0xb30
[  212.051057][ T8393]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.051082][ T8393]  ? aa_sock_msg_perm+0xf1/0x1d0
[  212.051111][ T8393]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  212.051134][ T8393]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.051158][ T8393]  __sock_sendmsg+0x219/0x270
[  212.051182][ T8393]  ____sys_sendmsg+0x505/0x830
[  212.051216][ T8393]  ? __pfx_____sys_sendmsg+0x10/0x10
[  212.051252][ T8393]  ? import_iovec+0x74/0xa0
[  212.051283][ T8393]  ___sys_sendmsg+0x21f/0x2a0
[  212.051313][ T8393]  ? __pfx____sys_sendmsg+0x10/0x10
[  212.051383][ T8393]  ? __fget_files+0x2a/0x420
[  212.051404][ T8393]  ? __fget_files+0x3a0/0x420
[  212.051439][ T8393]  __x64_sys_sendmsg+0x19b/0x260
[  212.051470][ T8393]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  212.051509][ T8393]  ? __pfx_ksys_write+0x10/0x10
[  212.051525][ T8393]  ? rcu_is_watching+0x15/0xb0
[  212.051556][ T8393]  ? do_syscall_64+0xbe/0x3b0
[  212.051583][ T8393]  do_syscall_64+0xfa/0x3b0
[  212.051604][ T8393]  ? lockdep_hardirqs_on+0x9c/0x150
[  212.051625][ T8393]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.051645][ T8393]  ? clear_bhb_loop+0x60/0xb0
[  212.051669][ T8393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.051688][ T8393] RIP: 0033:0x7ff158d8e929
[  212.051706][ T8393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.051724][ T8393] RSP: 002b:00007ff159c66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  212.051745][ T8393] RAX: ffffffffffffffda RBX: 00007ff158fb5fa0 RCX: 00007ff158d8e929
[  212.051759][ T8393] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000004
[  212.051772][ T8393] RBP: 00007ff159c66090 R08: 0000000000000000 R09: 0000000000000000
[  212.051785][ T8393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  212.051797][ T8393] R13: 0000000000000000 R14: 00007ff158fb5fa0 R15: 00007ffdfc0b2ef8
[  212.051831][ T8393]  </TASK>
[  212.658243][   T10] usb 1-1: USB disconnect, device number 35
[  212.691944][ T8401] veth1_macvtap: entered allmulticast mode
[  212.716364][ T8401] netlink: 8 bytes leftover after parsing attributes in process `syz.1.888'.
[  212.827333][ T8409] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.889'.
[  212.837602][ T8406] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.889'.
[  212.847491][ T8406] FAULT_INJECTION: forcing a failure.
[  212.847491][ T8406] name failslab, interval 1, probability 0, space 0, times 0
[  212.861299][ T8406] CPU: 1 UID: 0 PID: 8406 Comm: syz.3.889 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  212.861325][ T8406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  212.861337][ T8406] Call Trace:
[  212.861345][ T8406]  <TASK>
[  212.861352][ T8406]  dump_stack_lvl+0x189/0x250
[  212.861384][ T8406]  ? __pfx____ratelimit+0x10/0x10
[  212.861405][ T8406]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.861432][ T8406]  ? __pfx__printk+0x10/0x10
[  212.861456][ T8406]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  212.861492][ T8406]  should_fail_ex+0x414/0x560
[  212.861524][ T8406]  should_failslab+0xa8/0x100
[  212.861544][ T8406]  kmem_cache_alloc_noprof+0x73/0x3c0
[  212.861570][ T8406]  ? skb_clone+0x212/0x3a0
[  212.861602][ T8406]  skb_clone+0x212/0x3a0
[  212.861632][ T8406]  __netlink_deliver_tap+0x404/0x850
[  212.861666][ T8406]  ? netlink_deliver_tap+0x2e/0x1b0
[  212.861689][ T8406]  netlink_deliver_tap+0x19c/0x1b0
[  212.861711][ T8406]  netlink_dump+0x8e4/0xe20
[  212.861744][ T8406]  ? __pfx_netlink_dump+0x10/0x10
[  212.861780][ T8406]  ? kmem_cache_free+0x18f/0x400
[  212.861810][ T8406]  netlink_recvmsg+0x676/0xa30
[  212.861841][ T8406]  ? __pfx_netlink_recvmsg+0x10/0x10
[  212.861866][ T8406]  ? aa_sock_msg_perm+0xf1/0x1d0
[  212.861895][ T8406]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  212.861915][ T8406]  ? security_socket_recvmsg+0x7e/0x2e0
[  212.861942][ T8406]  ? __pfx_netlink_recvmsg+0x10/0x10
[  212.861965][ T8406]  sock_recvmsg+0x229/0x270
[  212.861990][ T8406]  ____sys_recvmsg+0x1c9/0x460
[  212.862026][ T8406]  ? __pfx_____sys_recvmsg+0x10/0x10
[  212.862069][ T8406]  ? import_iovec+0x74/0xa0
[  212.862099][ T8406]  ___sys_recvmsg+0x1b5/0x510
[  212.862129][ T8406]  ? __pfx____sys_recvmsg+0x10/0x10
[  212.862184][ T8406]  ? __fget_files+0x3a0/0x420
[  212.862217][ T8406]  __x64_sys_recvmsg+0x198/0x260
[  212.862248][ T8406]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  212.862286][ T8406]  ? __pfx_ksys_write+0x10/0x10
[  212.862303][ T8406]  ? rcu_is_watching+0x15/0xb0
[  212.862333][ T8406]  ? do_syscall_64+0xbe/0x3b0
[  212.862359][ T8406]  do_syscall_64+0xfa/0x3b0
[  212.862379][ T8406]  ? lockdep_hardirqs_on+0x9c/0x150
[  212.862400][ T8406]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.862419][ T8406]  ? clear_bhb_loop+0x60/0xb0
[  212.862443][ T8406]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.862462][ T8406] RIP: 0033:0x7fbeb8d8e929
[  212.862479][ T8406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.862496][ T8406] RSP: 002b:00007fbeb9bc2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  212.862516][ T8406] RAX: ffffffffffffffda RBX: 00007fbeb8fb5fa0 RCX: 00007fbeb8d8e929
[  212.862532][ T8406] RDX: 0000000000010020 RSI: 0000200000000c40 RDI: 0000000000000003
[  212.862545][ T8406] RBP: 00007fbeb9bc2090 R08: 0000000000000000 R09: 0000000000000000
[  212.862558][ T8406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  212.862570][ T8406] R13: 0000000000000000 R14: 00007fbeb8fb5fa0 R15: 00007ffdd8f8ead8
[  212.862602][ T8406]  </TASK>
[  213.247297][ T8413] FAT-fs (rnullb0): bogus number of reserved sectors
[  213.254330][ T8413] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  213.287807][ T8413] netlink: 28 bytes leftover after parsing attributes in process `syz.3.893'.
[  213.410727][ T8422] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.897'.
[  213.553339][ T5896] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  213.628376][ T8430] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  213.723510][ T5896] usb 2-1: Using ep0 maxpacket: 32
[  213.731271][ T5896] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2
[  213.761062][ T5896] usb 2-1: config 0 interface 0 has no altsetting 1
[  213.782591][ T5896] usb 2-1: New USB device found, idVendor=152d, idProduct=0539, bcdDevice= 0.00
[  213.792148][ T5896] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  213.823055][ T5896] usb 2-1: SerialNumber: syz
[  213.856494][ T5896] usb 2-1: config 0 descriptor??
[  213.877454][ T5896] usb-storage 2-1:0.0: USB Mass Storage device detected
[  213.916392][ T5896] usb-storage 2-1:0.0: Quirks match for vid 152d pid 0539: 4000000
[  213.994168][ T8444] syzkaller1: entered promiscuous mode
[  213.999711][ T8444] syzkaller1: entered allmulticast mode
[  214.078813][ T8417] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.083323][ T5903] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  214.087835][ T8417] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.110159][ T8417] input: syz0 as /devices/virtual/input/input22
[  214.134591][ T5896] usb 2-1: USB disconnect, device number 41
[  214.163679][ T5939] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  214.253331][   T24] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  214.263261][ T5903] usb 1-1: Using ep0 maxpacket: 16
[  214.270174][ T5903] usb 1-1: config 1 has an invalid interface number: 105 but max is 0
[  214.278448][ T5903] usb 1-1: config 1 has no interface number 0
[  214.284615][ T5903] usb 1-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  214.294770][ T5903] usb 1-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  214.304972][ T5903] usb 1-1: config 1 interface 105 has no altsetting 0
[  214.313752][ T5903] usb 1-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  214.322804][ T5903] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.330999][ T5939] usb 4-1: Using ep0 maxpacket: 32
[  214.336586][ T5903] usb 1-1: Product: syz
[  214.340784][ T5903] usb 1-1: Manufacturer: syz
[  214.346162][ T5903] usb 1-1: SerialNumber: syz
[  214.352257][ T5939] usb 4-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 3.01
[  214.362413][ T5939] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.371164][ T8437] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  214.379100][ T8437] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  214.380108][ T5939] usb 4-1: config 0 descriptor??
[  214.397185][ T5939] gspca_main: xirlink-cit-2.14.0 probing 0545:8080
[  214.406924][ T5939] input: xirlink-cit as /devices/platform/dummy_hcd.3/usb4/4-1/input/input23
[  214.423305][   T24] usb 3-1: Using ep0 maxpacket: 32
[  214.441363][   T24] usb 3-1: config 0 has an invalid interface number: 67 but max is 0
[  214.456807][   T24] usb 3-1: config 0 has no interface number 0
[  214.468762][   T24] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  214.478859][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.487017][   T24] usb 3-1: Product: syz
[  214.491270][   T24] usb 3-1: Manufacturer: syz
[  214.499274][   T24] usb 3-1: SerialNumber: syz
[  214.508906][   T24] usb 3-1: config 0 descriptor??
[  214.524288][   T24] smsc95xx v2.0.0
[  214.599048][ T5903] aqc111 1-1:1.105: probe with driver aqc111 failed with error -71
[  214.617892][ T5896] usb 4-1: USB disconnect, device number 37
[  214.624277][ T5903] usb 1-1: USB disconnect, device number 36
[  214.720095][ T8444] netlink: 'syz.2.906': attribute type 21 has an invalid length.
[  214.739360][ T8444] netlink: 156 bytes leftover after parsing attributes in process `syz.2.906'.
[  214.994970][   T10] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  215.154483][   T10] usb 2-1: Using ep0 maxpacket: 8
[  215.189891][   T10] usb 2-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2
[  215.210225][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.227650][   T10] usb 2-1: Product: syz
[  215.240146][   T10] usb 2-1: Manufacturer: syz
[  215.248416][   T10] usb 2-1: SerialNumber: syz
[  215.260229][ T8454] binder: BC_ACQUIRE_RESULT not supported
[  215.271359][   T10] usb 2-1: config 0 descriptor??
[  215.294585][ T8454] binder: 8450:8454 ioctl c0306201 200000000580 returned -22
[  215.374265][   T24] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): EEPROM read operation timeout
[  215.480534][ T8447] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  215.498212][ T8447] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  215.547701][   T10] gspca_main: sunplus-2.14.0 probing 04a5:3003
[  215.579957][   T10] gspca_sunplus: reg_w_riv err -71
[  215.586611][   T10] sunplus 2-1:0.0: probe with driver sunplus failed with error -71
[  215.599179][   T10] usb 2-1: USB disconnect, device number 42
[  215.613612][ T6293] udevd[6293]: setting mode of /dev/bus/usb/002/042 to 020664 failed: No such file or directory
[  215.651670][ T6293] udevd[6293]: setting owner of /dev/bus/usb/002/042 to uid=0, gid=0 failed: No such file or directory
[  215.679199][ T8462] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  215.709731][ T8464] vim2m vim2m.0: Fourcc format (0x56595559) invalid.
[  215.892098][ T8476] program syz.0.916 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  216.368576][ T8489] netlink: 36 bytes leftover after parsing attributes in process `syz.1.921'.
[  216.649406][ T8497] netlink: 8 bytes leftover after parsing attributes in process `syz.1.925'.
[  216.658822][ T8497] netlink: 8 bytes leftover after parsing attributes in process `syz.1.925'.
[  216.759074][ T8503] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  216.775542][ T8503] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  216.836719][ T5903] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  216.950052][   T24] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  216.961395][   T24] smsc95xx 3-1:0.67: probe with driver smsc95xx failed with error -71
[  216.981679][   T24] usb 3-1: USB disconnect, device number 39
[  216.996982][   T10] usb 1-1: new full-speed USB device number 37 using dummy_hcd
[  217.005559][ T5903] usb 4-1: too many configurations: 9, using maximum allowed: 8
[  217.021438][ T5903] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  217.044787][ T5903] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  217.072773][ T5903] usb 4-1: config 0 interface 0 has no altsetting 0
[  217.091877][ T5903] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  217.104443][ T8511] adf_ctl_ioctl: 16 callbacks suppressed
[  217.104459][ T8511] QAT: Invalid ioctl 1074828330
[  217.115162][ T5903] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  217.134813][ T5903] usb 4-1: config 0 interface 0 has no altsetting 0
[  217.152899][ T5903] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  217.169094][   T10] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  217.171078][ T5903] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  217.181777][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.199085][ T5903] usb 4-1: config 0 interface 0 has no altsetting 0
[  217.227038][ T5903] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  217.230799][   T10] usb 1-1: Product: syz
[  217.254454][ T5903] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  217.264803][   T10] usb 1-1: Manufacturer: syz
[  217.270263][   T10] usb 1-1: SerialNumber: syz
[  217.272503][ T5903] usb 4-1: config 0 interface 0 has no altsetting 0
[  217.282878][ T5903] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  217.290392][   T10] usb 1-1: config 0 descriptor??
[  217.292241][ T5903] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  217.309334][ T5903] usb 4-1: config 0 interface 0 has no altsetting 0
[  217.317993][ T5903] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  217.333314][ T5903] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  217.358766][ T5903] usb 4-1: config 0 interface 0 has no altsetting 0
[  217.370832][ T5903] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  217.383704][ T5903] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  217.394808][ T5903] usb 4-1: config 0 interface 0 has no altsetting 0
[  217.424429][ T5903] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  217.433542][ T5903] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  217.455520][ T5903] usb 4-1: config 0 interface 0 has no altsetting 0
[  217.465044][ T5903] usb 4-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  217.477057][ T5903] usb 4-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  217.509055][ T5903] usb 4-1: Product: syz
[  217.523468][ T5903] usb 4-1: Manufacturer: syz
[  217.527160][   T10] dvb_usb_rtl28xxu 1-1:0.0: chip type detection failed -71
[  217.528219][ T5903] usb 4-1: SerialNumber: syz
[  217.554697][   T10] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  217.591585][   T10] usb 1-1: USB disconnect, device number 37
[  217.591641][ T5903] usb 4-1: config 0 descriptor??
[  217.634597][ T5903] yurex 4-1:0.0: USB YUREX device now attached to Yurex #0
[  217.829226][   T55] usb 4-1: USB disconnect, device number 38
[  217.848138][   T55] yurex 4-1:0.0: USB YUREX #0 now disconnected
[  217.983489][ T5896] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  218.070723][ T8532] netlink: 36 bytes leftover after parsing attributes in process `syz.2.938'.
[  218.079995][ T8532] FAULT_INJECTION: forcing a failure.
[  218.079995][ T8532] name failslab, interval 1, probability 0, space 0, times 0
[  218.099325][ T8532] CPU: 0 UID: 0 PID: 8532 Comm: syz.2.938 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  218.099353][ T8532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  218.099365][ T8532] Call Trace:
[  218.099373][ T8532]  <TASK>
[  218.099381][ T8532]  dump_stack_lvl+0x189/0x250
[  218.099423][ T8532]  ? __pfx____ratelimit+0x10/0x10
[  218.099445][ T8532]  ? __pfx_dump_stack_lvl+0x10/0x10
[  218.099473][ T8532]  ? __pfx__printk+0x10/0x10
[  218.099507][ T8532]  ? __pfx___might_resched+0x10/0x10
[  218.099538][ T8532]  should_fail_ex+0x414/0x560
[  218.099572][ T8532]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  218.099600][ T8532]  should_failslab+0xa8/0x100
[  218.099620][ T8532]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  218.099647][ T8532]  kmem_cache_alloc_lru_noprof+0x78/0x3d0
[  218.099675][ T8532]  ? alloc_inode+0x67/0x1b0
[  218.099694][ T8532]  ? __pfx_simple_start_creating+0x10/0x10
[  218.099720][ T8532]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  218.099747][ T8532]  alloc_inode+0x67/0x1b0
[  218.099769][ T8532]  new_inode+0x22/0x170
[  218.099796][ T8532]  __debugfs_create_file+0x14d/0x4f0
[  218.099829][ T8532]  debugfs_create_file_full+0x3f/0x60
[  218.099861][ T8532]  ref_tracker_dir_debugfs+0x14e/0x270
[  218.099880][ T8532]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  218.099929][ T8532]  ? alloc_netdev_mqs+0xa3/0x1170
[  218.099957][ T8532]  ? rcu_is_watching+0x15/0xb0
[  218.099980][ T8532]  ? alloc_netdev_mqs+0xa3/0x1170
[  218.100014][ T8532]  ? __raw_spin_lock_init+0x45/0x100
[  218.100047][ T8532]  alloc_netdev_mqs+0x26f/0x1170
[  218.100076][ T8532]  ? __pfx_ieee80211_if_setup+0x10/0x10
[  218.100106][ T8532]  ieee80211_if_add+0x46c/0x1390
[  218.100137][ T8532]  ? rcu_is_watching+0x15/0xb0
[  218.100162][ T8532]  ieee80211_add_iface+0xb5/0x5c0
[  218.100198][ T8532]  ? __pfx_ieee80211_add_iface+0x10/0x10
[  218.100238][ T8532]  nl80211_new_interface+0x827/0x1180
[  218.100277][ T8532]  ? __pfx_nl80211_new_interface+0x10/0x10
[  218.100311][ T8532]  ? nl80211_pre_doit+0x4fb/0x930
[  218.100346][ T8532]  genl_family_rcv_msg_doit+0x212/0x300
[  218.100381][ T8532]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  218.100427][ T8532]  ? bpf_lsm_capable+0x9/0x20
[  218.100452][ T8532]  ? security_capable+0x7e/0x2e0
[  218.100479][ T8532]  genl_rcv_msg+0x60e/0x790
[  218.100498][ T8532]  ? __pfx_genl_rcv_msg+0x10/0x10
[  218.100511][ T8532]  ? ref_tracker_free+0x63a/0x7d0
[  218.100520][ T8532]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  218.100533][ T8532]  ? __pfx_nl80211_new_interface+0x10/0x10
[  218.100548][ T8532]  ? __pfx_nl80211_post_doit+0x10/0x10
[  218.100563][ T8532]  ? __pfx_ref_tracker_free+0x10/0x10
[  218.100579][ T8532]  netlink_rcv_skb+0x208/0x470
[  218.100592][ T8532]  ? __pfx_genl_rcv_msg+0x10/0x10
[  218.100607][ T8532]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  218.100630][ T8532]  ? down_read+0x1ad/0x2e0
[  218.100645][ T8532]  genl_rcv+0x28/0x40
[  218.100658][ T8532]  netlink_unicast+0x75b/0x8d0
[  218.100676][ T8532]  netlink_sendmsg+0x805/0xb30
[  218.100694][ T8532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  218.100708][ T8532]  ? aa_sock_msg_perm+0xf1/0x1d0
[  218.100724][ T8532]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  218.100736][ T8532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  218.100749][ T8532]  __sock_sendmsg+0x219/0x270
[  218.100762][ T8532]  ____sys_sendmsg+0x505/0x830
[  218.100780][ T8532]  ? __pfx_____sys_sendmsg+0x10/0x10
[  218.100800][ T8532]  ? import_iovec+0x74/0xa0
[  218.100817][ T8532]  ___sys_sendmsg+0x21f/0x2a0
[  218.100833][ T8532]  ? __pfx____sys_sendmsg+0x10/0x10
[  218.100868][ T8532]  ? __fget_files+0x2a/0x420
[  218.100880][ T8532]  ? __fget_files+0x3a0/0x420
[  218.100897][ T8532]  __x64_sys_sendmsg+0x19b/0x260
[  218.100913][ T8532]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  218.100934][ T8532]  ? __pfx_ksys_write+0x10/0x10
[  218.100942][ T8532]  ? rcu_is_watching+0x15/0xb0
[  218.100958][ T8532]  ? do_syscall_64+0xbe/0x3b0
[  218.100973][ T8532]  do_syscall_64+0xfa/0x3b0
[  218.100983][ T8532]  ? lockdep_hardirqs_on+0x9c/0x150
[  218.100994][ T8532]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.101004][ T8532]  ? clear_bhb_loop+0x60/0xb0
[  218.101017][ T8532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.101027][ T8532] RIP: 0033:0x7f890058e929
[  218.101038][ T8532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.101047][ T8532] RSP: 002b:00007f89013b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  218.101060][ T8532] RAX: ffffffffffffffda RBX: 00007f89007b5fa0 RCX: 00007f890058e929
[  218.101068][ T8532] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000003
[  218.101074][ T8532] RBP: 00007f89013b5090 R08: 0000000000000000 R09: 0000000000000000
[  218.101081][ T8532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  218.101087][ T8532] R13: 0000000000000000 R14: 00007f89007b5fa0 R15: 00007fffc49c22b8
[  218.101104][ T8532]  </TASK>
[  218.101110][ T8532] debugfs: out of free dentries, can not create file 'netdev@ffff88805be08610'
[  218.207260][ T8535] FAULT_INJECTION: forcing a failure.
[  218.207260][ T8535] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  218.207307][ T8535] CPU: 1 UID: 0 PID: 8535 Comm: syz.0.939 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  218.207329][ T8535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  218.207340][ T8535] Call Trace:
[  218.207348][ T8535]  <TASK>
[  218.207356][ T8535]  dump_stack_lvl+0x189/0x250
[  218.207387][ T8535]  ? __pfx____ratelimit+0x10/0x10
[  218.207408][ T8535]  ? __pfx_dump_stack_lvl+0x10/0x10
[  218.207436][ T8535]  ? __pfx__printk+0x10/0x10
[  218.207476][ T8535]  should_fail_ex+0x414/0x560
[  218.207511][ T8535]  _copy_to_user+0x31/0xb0
[  218.207541][ T8535]  simple_read_from_buffer+0xe1/0x170
[  218.207568][ T8535]  proc_fail_nth_read+0x1df/0x250
[  218.207597][ T8535]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  218.207626][ T8535]  ? rw_verify_area+0x258/0x650
[  218.207655][ T8535]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  218.207682][ T8535]  vfs_read+0x200/0x980
[  218.207716][ T8535]  ? __pfx___mutex_lock+0x10/0x10
[  218.207736][ T8535]  ? __pfx_vfs_read+0x10/0x10
[  218.207766][ T8535]  ? __fget_files+0x2a/0x420
[  218.207791][ T8535]  ? __fget_files+0x3a0/0x420
[  218.207811][ T8535]  ? __fget_files+0x2a/0x420
[  218.207840][ T8535]  ksys_read+0x145/0x250
[  218.207856][ T8535]  ? __fget_files+0x3a0/0x420
[  218.207879][ T8535]  ? __pfx_ksys_read+0x10/0x10
[  218.207913][ T8535]  ? do_syscall_64+0xbe/0x3b0
[  218.207939][ T8535]  do_syscall_64+0xfa/0x3b0
[  218.207959][ T8535]  ? lockdep_hardirqs_on+0x9c/0x150
[  218.207978][ T8535]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.207998][ T8535]  ? clear_bhb_loop+0x60/0xb0
[  218.208025][ T8535]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.208044][ T8535] RIP: 0033:0x7f6a4778d33c
[  218.208060][ T8535] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  218.208077][ T8535] RSP: 002b:00007f6a486b3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  218.208097][ T8535] RAX: ffffffffffffffda RBX: 00007f6a479b6080 RCX: 00007f6a4778d33c
[  218.208112][ T8535] RDX: 000000000000000f RSI: 00007f6a486b30a0 RDI: 0000000000000006
[  218.208124][ T8535] RBP: 00007f6a486b3090 R08: 0000000000000000 R09: 0000000000000000
[  218.208137][ T8535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.208155][ T8535] R13: 0000000000000000 R14: 00007f6a479b6080 R15: 00007ffc2d6b3318
[  218.208186][ T8535]  </TASK>
[  218.863864][ T5896] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  218.883299][ T5896] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.905292][ T5896] usb 2-1: config 0 descriptor??
[  218.943065][ T5896] cp210x 2-1:0.0: cp210x converter detected
[  219.025697][ T8542] ./cgroup: Can't lookup blockdev
[  219.039600][ T8542] netlink: 12 bytes leftover after parsing attributes in process `syz.0.942'.
[  219.239729][ T8549] FAULT_INJECTION: forcing a failure.
[  219.239729][ T8549] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  219.258708][ T8549] CPU: 0 UID: 0 PID: 8549 Comm: syz.3.945 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  219.258735][ T8549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  219.258747][ T8549] Call Trace:
[  219.258756][ T8549]  <TASK>
[  219.258764][ T8549]  dump_stack_lvl+0x189/0x250
[  219.258796][ T8549]  ? __pfx____ratelimit+0x10/0x10
[  219.258822][ T8549]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.258850][ T8549]  ? __pfx__printk+0x10/0x10
[  219.258876][ T8549]  ? __might_fault+0xb0/0x130
[  219.258914][ T8549]  should_fail_ex+0x414/0x560
[  219.258945][ T8549]  _copy_from_user+0x2d/0xb0
[  219.258971][ T8549]  dev_ethtool+0xd0/0x19b0
[  219.258999][ T8549]  ? __lock_acquire+0xab9/0xd20
[  219.259026][ T8549]  ? __pfx_dev_ethtool+0x10/0x10
[  219.259061][ T8549]  ? dev_load+0x21/0x1f0
[  219.259083][ T8549]  ? dev_load+0x21/0x1f0
[  219.259106][ T8549]  dev_ioctl+0x392/0x1150
[  219.259132][ T8549]  sock_do_ioctl+0x22c/0x300
[  219.259156][ T8549]  ? __pfx_sock_do_ioctl+0x10/0x10
[  219.259173][ T8549]  ? __lock_acquire+0xab9/0xd20
[  219.259210][ T8549]  sock_ioctl+0x576/0x790
[  219.259238][ T8549]  ? __pfx_sock_ioctl+0x10/0x10
[  219.259267][ T8549]  ? __fget_files+0x2a/0x420
[  219.259288][ T8549]  ? __fget_files+0x3a0/0x420
[  219.259308][ T8549]  ? __fget_files+0x2a/0x420
[  219.259332][ T8549]  ? bpf_lsm_file_ioctl+0x9/0x20
[  219.259356][ T8549]  ? __pfx_sock_ioctl+0x10/0x10
[  219.259384][ T8549]  __se_sys_ioctl+0xf9/0x170
[  219.259414][ T8549]  do_syscall_64+0xfa/0x3b0
[  219.259434][ T8549]  ? lockdep_hardirqs_on+0x9c/0x150
[  219.259454][ T8549]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.259472][ T8549]  ? clear_bhb_loop+0x60/0xb0
[  219.259494][ T8549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.259512][ T8549] RIP: 0033:0x7fbeb8d8e929
[  219.259529][ T8549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.259546][ T8549] RSP: 002b:00007fbeb9bc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  219.259567][ T8549] RAX: ffffffffffffffda RBX: 00007fbeb8fb5fa0 RCX: 00007fbeb8d8e929
[  219.259581][ T8549] RDX: 0000200000000000 RSI: 0000000000008946 RDI: 0000000000000003
[  219.259593][ T8549] RBP: 00007fbeb9bc2090 R08: 0000000000000000 R09: 0000000000000000
[  219.259603][ T8549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.259615][ T8549] R13: 0000000000000000 R14: 00007fbeb8fb5fa0 R15: 00007ffdd8f8ead8
[  219.259643][ T8549]  </TASK>
[  219.532079][ T5896] cp210x 2-1:0.0: failed to get vendor val 0x0010 size 3: -71
[  219.540267][ T5896] cp210x 2-1:0.0: failed to get vendor val 0x000e size 678: -71
[  219.548729][ T5896] cp210x 2-1:0.0: GPIO initialisation failed: -71
[  219.558516][ T5896] usb 2-1: cp210x converter now attached to ttyUSB0
[  219.567970][ T5896] usb 2-1: USB disconnect, device number 43
[  219.608525][ T5896] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  219.617946][ T5896] cp210x 2-1:0.0: device disconnected
[  219.671759][ T8555] FAULT_INJECTION: forcing a failure.
[  219.671759][ T8555] name failslab, interval 1, probability 0, space 0, times 0
[  219.685452][ T8555] CPU: 1 UID: 0 PID: 8555 Comm: syz.2.948 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  219.685480][ T8555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  219.685493][ T8555] Call Trace:
[  219.685501][ T8555]  <TASK>
[  219.685511][ T8555]  dump_stack_lvl+0x189/0x250
[  219.685543][ T8555]  ? __pfx____ratelimit+0x10/0x10
[  219.685565][ T8555]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.685593][ T8555]  ? __pfx__printk+0x10/0x10
[  219.685627][ T8555]  ? ref_tracker_alloc+0x318/0x460
[  219.685650][ T8555]  should_fail_ex+0x414/0x560
[  219.685682][ T8555]  should_failslab+0xa8/0x100
[  219.685703][ T8555]  kmem_cache_alloc_noprof+0x73/0x3c0
[  219.685730][ T8555]  ? skb_clone+0x212/0x3a0
[  219.685763][ T8555]  skb_clone+0x212/0x3a0
[  219.685793][ T8555]  __netlink_deliver_tap+0x404/0x850
[  219.685829][ T8555]  ? netlink_deliver_tap+0x2e/0x1b0
[  219.685854][ T8555]  netlink_deliver_tap+0x19c/0x1b0
[  219.685882][ T8555]  netlink_unicast+0x72f/0x8d0
[  219.685914][ T8555]  netlink_sendmsg+0x805/0xb30
[  219.685954][ T8555]  ? __pfx_netlink_sendmsg+0x10/0x10
[  219.685981][ T8555]  ? aa_sock_msg_perm+0xf1/0x1d0
[  219.686011][ T8555]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  219.686035][ T8555]  ? __pfx_netlink_sendmsg+0x10/0x10
[  219.686059][ T8555]  __sock_sendmsg+0x219/0x270
[  219.686083][ T8555]  ____sys_sendmsg+0x505/0x830
[  219.686115][ T8555]  ? __pfx_____sys_sendmsg+0x10/0x10
[  219.686152][ T8555]  ? import_iovec+0x74/0xa0
[  219.686181][ T8555]  ___sys_sendmsg+0x21f/0x2a0
[  219.686210][ T8555]  ? __pfx____sys_sendmsg+0x10/0x10
[  219.686275][ T8555]  ? __fget_files+0x2a/0x420
[  219.686296][ T8555]  ? __fget_files+0x3a0/0x420
[  219.686329][ T8555]  __x64_sys_sendmsg+0x19b/0x260
[  219.686359][ T8555]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  219.686395][ T8555]  ? __pfx_ksys_write+0x10/0x10
[  219.686412][ T8555]  ? rcu_is_watching+0x15/0xb0
[  219.686442][ T8555]  ? do_syscall_64+0xbe/0x3b0
[  219.686467][ T8555]  do_syscall_64+0xfa/0x3b0
[  219.686486][ T8555]  ? lockdep_hardirqs_on+0x9c/0x150
[  219.686506][ T8555]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.686523][ T8555]  ? clear_bhb_loop+0x60/0xb0
[  219.686545][ T8555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.686563][ T8555] RIP: 0033:0x7f890058e929
[  219.686579][ T8555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.686596][ T8555] RSP: 002b:00007f89013b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  219.686617][ T8555] RAX: ffffffffffffffda RBX: 00007f89007b5fa0 RCX: 00007f890058e929
[  219.686632][ T8555] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  219.686644][ T8555] RBP: 00007f89013b5090 R08: 0000000000000000 R09: 0000000000000000
[  219.686657][ T8555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.686667][ T8555] R13: 0000000000000000 R14: 00007f89007b5fa0 R15: 00007fffc49c22b8
[  219.686697][ T8555]  </TASK>
[  220.102103][ T8559] netlink: 12 bytes leftover after parsing attributes in process `syz.0.950'.
[  220.112671][ T8559] netlink: 36 bytes leftover after parsing attributes in process `syz.0.950'.
[  220.123307][   T24] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  220.172755][ T8561] Malformed UNC in devname
[  220.172755][ T8561] 
[  220.180369][ T8561] CIFS: VFS: Malformed UNC in devname
[  220.187277][ T8561] tmpfs: Invalid uid '0x00000000ffffffff'
[  220.284103][   T24] usb 4-1: Using ep0 maxpacket: 8
[  220.290932][   T24] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  220.305364][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  220.318878][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  220.328683][   T24] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  220.342563][   T24] usb 4-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00
[  220.355820][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.380652][   T24] usb 4-1: config 0 descriptor??
[  220.381077][ T8568] XFS (rnullb0): Invalid superblock magic number
[  220.576827][ T8580] netlink: 288 bytes leftover after parsing attributes in process `syz.1.957'.
[  220.805477][ T8553] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  220.843736][ T8553] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  220.849238][ T8587] FAULT_INJECTION: forcing a failure.
[  220.849238][ T8587] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  220.871879][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  220.879199][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  220.883656][ T5896] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[  220.898972][ T8587] CPU: 1 UID: 0 PID: 8587 Comm: syz.1.960 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  220.898999][ T8587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  220.899012][ T8587] Call Trace:
[  220.899021][ T8587]  <TASK>
[  220.899030][ T8587]  dump_stack_lvl+0x189/0x250
[  220.899061][ T8587]  ? __pfx____ratelimit+0x10/0x10
[  220.899073][ T8587]  ? __pfx_dump_stack_lvl+0x10/0x10
[  220.899093][ T8587]  ? __pfx__printk+0x10/0x10
[  220.899109][ T8587]  ? fs_reclaim_acquire+0x7d/0x100
[  220.899125][ T8587]  should_fail_ex+0x414/0x560
[  220.899148][ T8587]  prepare_alloc_pages+0x213/0x610
[  220.899163][ T8587]  __alloc_frozen_pages_noprof+0x123/0x370
[  220.899177][ T8587]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  220.899194][ T8587]  ? policy_nodemask+0x27c/0x720
[  220.899208][ T8587]  ? __lock_acquire+0xab9/0xd20
[  220.899223][ T8587]  alloc_pages_mpol+0x232/0x4a0
[  220.899242][ T8587]  alloc_pages_noprof+0xa9/0x190
[  220.899259][ T8587]  get_free_pages_noprof+0xf/0x80
[  220.899271][ T8587]  kasan_populate_vmalloc+0x33/0x1a0
[  220.899285][ T8587]  ? do_raw_spin_unlock+0x122/0x240
[  220.899302][ T8587]  alloc_vmap_area+0xd51/0x1490
[  220.899326][ T8587]  ? __pfx_alloc_vmap_area+0x10/0x10
[  220.899341][ T8587]  ? __kasan_kmalloc+0x93/0xb0
[  220.899356][ T8587]  ? __kmalloc_cache_node_noprof+0x234/0x3d0
[  220.899372][ T8587]  ? __get_vm_area_node+0x13f/0x300
[  220.899386][ T8587]  ? copy_process+0x544/0x3b80
[  220.899400][ T8587]  __get_vm_area_node+0x1f8/0x300
[  220.899418][ T8587]  __vmalloc_node_range_noprof+0x301/0x12f0
[  220.899435][ T8587]  ? copy_process+0x544/0x3b80
[  220.899453][ T8587]  ? percpu_ref_get_many+0x19/0x140
[  220.899465][ T8587]  ? percpu_ref_get_many+0x19/0x140
[  220.899482][ T8587]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  220.899499][ T8587]  ? memcpy_and_pad+0x48/0x80
[  220.899512][ T8587]  __vmalloc_node_noprof+0xc2/0x110
[  220.899528][ T8587]  ? copy_process+0x544/0x3b80
[  220.899540][ T8587]  ? copy_process+0x544/0x3b80
[  220.899554][ T8587]  dup_task_struct+0x3e7/0x860
[  220.899570][ T8587]  copy_process+0x544/0x3b80
[  220.899598][ T8587]  ? __pfx_copy_process+0x10/0x10
[  220.899618][ T8587]  kernel_clone+0x21e/0x870
[  220.899632][ T8587]  ? vfs_write+0x8d8/0xa90
[  220.899649][ T8587]  ? __pfx_kernel_clone+0x10/0x10
[  220.899669][ T8587]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  220.899684][ T8587]  __x64_sys_clone+0x18b/0x1e0
[  220.899701][ T8587]  ? __pfx___x64_sys_clone+0x10/0x10
[  220.899724][ T8587]  ? __pfx_ksys_write+0x10/0x10
[  220.899732][ T8587]  ? rcu_is_watching+0x15/0xb0
[  220.899747][ T8587]  ? do_syscall_64+0xbe/0x3b0
[  220.899761][ T8587]  do_syscall_64+0xfa/0x3b0
[  220.899771][ T8587]  ? lockdep_hardirqs_on+0x9c/0x150
[  220.899782][ T8587]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.899792][ T8587]  ? clear_bhb_loop+0x60/0xb0
[  220.899805][ T8587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.899815][ T8587] RIP: 0033:0x7ff158d8e929
[  220.899825][ T8587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.899835][ T8587] RSP: 002b:00007ff159c65fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  220.899849][ T8587] RAX: ffffffffffffffda RBX: 00007ff158fb5fa0 RCX: 00007ff158d8e929
[  220.899857][ T8587] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  220.899864][ T8587] RBP: 00007ff159c66090 R08: 0000000000000000 R09: 0000000000000000
[  220.899871][ T8587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.899877][ T8587] R13: 0000000000000000 R14: 00007ff158fb5fa0 R15: 00007ffdfc0b2ef8
[  220.899893][ T8587]  </TASK>
[  220.900116][ T8587] syz.1.960: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  221.043376][ T5896] usb 1-1: Using ep0 maxpacket: 8
[  221.048016][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  221.061421][ T5896] usb 1-1: config 162 has an invalid interface number: 45 but max is 1
[  221.063732][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  221.063765][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  221.063792][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  221.071682][ T5896] usb 1-1: config 162 has an invalid interface number: 87 but max is 1
[  221.078721][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  221.080669][ T5896] usb 1-1: config 162 has an invalid descriptor of length 129, skipping remainder of the config
[  221.085367][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  221.085397][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  221.085423][   T24] redragon 0003:0C45:760B.000C: unknown main item tag 0x0
[  221.089666][   T24] redragon 0003:0C45:760B.000C: hidraw0: USB HID v0.04 Device [HID 0c45:760b] on usb-dummy_hcd.3-1/input0
[  221.106629][ T5896] usb 1-1: config 162 has no interface number 0
[  221.119853][ T8587] ,cpuset=
[  221.140532][ T5896] usb 1-1: config 162 has no interface number 1
[  221.213615][ T8587] /
[  221.219356][ T5896] usb 1-1: config 162 interface 45 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  221.243353][ T8587] ,mems_allowed=0-1
[  221.263282][ T5896] usb 1-1: config 162 interface 87 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  221.301505][ T8590] netlink: 8 bytes leftover after parsing attributes in process `syz.2.961'.
[  221.317364][ T5896] usb 1-1: config 162 interface 45 has no altsetting 0
[  221.373290][ T8587] 
[  221.376334][ T5896] usb 1-1: config 162 interface 87 has no altsetting 0
[  221.400795][ T8587] CPU: 1 UID: 0 PID: 8587 Comm: syz.1.960 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  221.400828][ T8587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  221.400841][ T8587] Call Trace:
[  221.400849][ T8587]  <TASK>
[  221.400858][ T8587]  dump_stack_lvl+0x189/0x250
[  221.400890][ T8587]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  221.400912][ T8587]  ? __pfx_dump_stack_lvl+0x10/0x10
[  221.400939][ T8587]  ? __pfx__printk+0x10/0x10
[  221.400966][ T8587]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  221.400993][ T8587]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  221.401027][ T8587]  warn_alloc+0x214/0x310
[  221.401046][ T8587]  ? kasan_quarantine_put+0xdd/0x220
[  221.401071][ T8587]  ? lockdep_hardirqs_on+0x9c/0x150
[  221.401095][ T8587]  ? __pfx_warn_alloc+0x10/0x10
[  221.401115][ T8587]  ? kfree+0x18e/0x440
[  221.401138][ T8587]  ? __get_vm_area_node+0x13f/0x300
[  221.401172][ T8587]  ? copy_process+0x544/0x3b80
[  221.401198][ T8587]  ? __get_vm_area_node+0x211/0x300
[  221.401232][ T8587]  __vmalloc_node_range_noprof+0x326/0x12f0
[  221.401272][ T8587]  ? percpu_ref_get_many+0x19/0x140
[  221.401292][ T8587]  ? percpu_ref_get_many+0x19/0x140
[  221.401324][ T8587]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  221.401356][ T8587]  ? memcpy_and_pad+0x48/0x80
[  221.401381][ T8587]  __vmalloc_node_noprof+0xc2/0x110
[  221.401413][ T8587]  ? copy_process+0x544/0x3b80
[  221.401435][ T8587]  ? copy_process+0x544/0x3b80
[  221.401462][ T8587]  dup_task_struct+0x3e7/0x860
[  221.401492][ T8587]  copy_process+0x544/0x3b80
[  221.401541][ T8587]  ? __pfx_copy_process+0x10/0x10
[  221.401580][ T8587]  kernel_clone+0x21e/0x870
[  221.401605][ T8587]  ? vfs_write+0x8d8/0xa90
[  221.401637][ T8587]  ? __pfx_kernel_clone+0x10/0x10
[  221.401674][ T8587]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  221.401702][ T8587]  __x64_sys_clone+0x18b/0x1e0
[  221.401732][ T8587]  ? __pfx___x64_sys_clone+0x10/0x10
[  221.401775][ T8587]  ? __pfx_ksys_write+0x10/0x10
[  221.401790][ T8587]  ? rcu_is_watching+0x15/0xb0
[  221.401824][ T8587]  ? do_syscall_64+0xbe/0x3b0
[  221.401849][ T8587]  do_syscall_64+0xfa/0x3b0
[  221.401869][ T8587]  ? lockdep_hardirqs_on+0x9c/0x150
[  221.401888][ T8587]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.401908][ T8587]  ? clear_bhb_loop+0x60/0xb0
[  221.401930][ T8587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.401949][ T8587] RIP: 0033:0x7ff158d8e929
[  221.401966][ T8587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.401983][ T8587] RSP: 002b:00007ff159c65fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  221.402003][ T8587] RAX: ffffffffffffffda RBX: 00007ff158fb5fa0 RCX: 00007ff158d8e929
[  221.402017][ T8587] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  221.402029][ T8587] RBP: 00007ff159c66090 R08: 0000000000000000 R09: 0000000000000000
[  221.402040][ T8587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  221.402052][ T8587] R13: 0000000000000000 R14: 00007ff158fb5fa0 R15: 00007ffdfc0b2ef8
[  221.402079][ T8587]  </TASK>
[  221.408459][ T8587] Mem-Info:
[  221.412827][ T5896] usb 1-1: New USB device found, idVendor=067b, idProduct=2303, bcdDevice=32.4e
[  221.450994][ T8587] active_anon:9297 inactive_anon:0 isolated_anon:0
[  221.450994][ T8587]  active_file:15224 inactive_file:41138 isolated_file:0
[  221.450994][ T8587]  unevictable:768 dirty:157 writeback:0
[  221.450994][ T8587]  slab_reclaimable:10917 slab_unreclaimable:96506
[  221.450994][ T8587]  mapped:26347 shmem:1415 pagetables:2237
[  221.450994][ T8587]  sec_pagetables:0 bounce:0
[  221.450994][ T8587]  kernel_misc_reclaimable:0
[  221.450994][ T8587]  free:1319899 free_pcp:15308 free_cma:0
[  221.464082][ T5896] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.517116][ T8587] Node 0 active_anon:37188kB inactive_anon:0kB active_file:60896kB inactive_file:164352kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:105388kB dirty:628kB writeback:0kB shmem:4124kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12812kB pagetables:8620kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  221.523763][ T5896] usb 1-1: Product: syz
[  221.559696][ T8587] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:80kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  221.563147][ T5896] usb 1-1: Manufacturer: syz
[  221.581997][ T8587] Node 0 
[  221.585126][ T5896] usb 1-1: SerialNumber: syz
[  221.596253][ T8587] DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  221.611256][ T8592] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  221.626312][ T8587] lowmem_reserve[]:
[  221.894841][ T8582] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  221.897551][ T8587]  0
[  221.902684][ T8582] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  221.930482][ T8587]  2496 2497 2497 2497
[  221.966594][ T8587] Node 0 DMA32 free:1385944kB boost:0kB min:34216kB low:42768kB high:51320kB reserved_highatomic:0KB free_highatomic:0KB active_anon:37180kB inactive_anon:0kB active_file:60912kB inactive_file:163268kB unevictable:1552kB writepending:628kB present:3129332kB managed:2556324kB mlocked:16kB bounce:0kB free_pcp:41160kB local_pcp:20956kB free_cma:0kB
[  222.000111][ T8587] lowmem_reserve[]: 0 0 1 1 1
[  222.005466][ T8587] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1084kB unevictable:0kB writepending:0kB present:1048580kB managed:1132kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  222.037980][ T8587] lowmem_reserve[]: 0 0 0 0 0
[  222.042828][ T8587] Node 1 Normal free:3878316kB boost:0kB min:55672kB low:69588kB high:83504kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:20096kB local_pcp:9792kB free_cma:0kB
[  222.084369][ T8587] lowmem_reserve[]: 0 0 0 0 0
[  222.089202][ T8587] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  222.104667][ T8587] Node 0 DMA32: 604*4kB (UE) 901*8kB (UM) 592*16kB (UM) 668*32kB (UM) 389*64kB (UM) 75*128kB (UM) 67*256kB (UME) 19*512kB (UM) 6*1024kB (M) 6*2048kB (UME) 309*4096kB (UM) = 1385944kB
[  222.127578][ T8587] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  222.156270][ T8587] Node 1 Normal: 185*4kB (U) 41*8kB (UME) 38*16kB (UME) 79*32kB (UME) 21*64kB (UME) 8*128kB (UME) 6*256kB (UM) 3*512kB (ME) 2*1024kB (ME) 2*2048kB (UE) 943*4096kB (M) = 3878316kB
[  222.179532][ T8587] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  222.189635][ T8587] Node 0 hugepages_total=6 hugepages_free=4 hugepages_surp=4 hugepages_size=2048kB
[  222.199768][ T8587] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  222.211956][ T8587] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  222.218928][ T5896] pl2303 1-1:162.45: required endpoints missing
[  222.227150][ T8587] 57777 total pagecache pages
[  222.232677][ T8587] 0 pages in swap cache
[  222.236451][ T5896] pl2303 1-1:162.87: required endpoints missing
[  222.237608][ T8587] Free swap  = 124996kB
[  222.270092][ T5896] usb 1-1: USB disconnect, device number 38
[  222.279451][ T8587] Total swap = 124996kB
[  222.288515][ T8587] 2097051 pages RAM
[  222.297001][ T8587] 0 pages HighMem/MovableOnly
[  222.311263][ T8587] 426056 pages reserved
[  222.316875][ T8587] 0 pages cma reserved
[  222.612394][ T5896] usb 4-1: USB disconnect, device number 39
[  222.793441][   T55] IPVS: starting estimator thread 0...
[  222.796583][ T8617] NILFS (rnullb0): couldn't find nilfs on the device
[  222.893531][ T8618] IPVS: using max 31 ests per chain, 74400 per kthread
[  223.124855][   T30] kauditd_printk_skb: 65 callbacks suppressed
[  223.124874][   T30] audit: type=1326 audit(1751668627.582:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.2.963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f890058e929 code=0x7fc00000
[  223.246766][ T8636] netlink: 'syz.3.980': attribute type 1 has an invalid length.
[  223.262955][ T8636] netlink: 4 bytes leftover after parsing attributes in process `syz.3.980'.
[  223.370624][ T8641] exFAT-fs (rnullb0): invalid boot record signature
[  223.381963][ T8641] exFAT-fs (rnullb0): failed to read boot sector
[  223.389178][ T8641] exFAT-fs (rnullb0): failed to recognize exfat type
[  223.452457][ T8645] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  223.452556][ T8645] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  223.452644][ T8645] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  223.452729][ T8645] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  223.452811][ T8645] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  223.523300][ T8645] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  223.593282][ T5896] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  223.743628][ T5896] usb 2-1: device descriptor read/64, error -71
[  224.005923][ T5896] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  224.012837][ T8667] netlink: 68 bytes leftover after parsing attributes in process `syz.2.990'.
[  224.083305][ T5903] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[  224.148493][ T5896] usb 2-1: device descriptor read/64, error -71
[  224.161197][ T8669] futex_wake_op: syz.2.991 tries to shift op by -1; fix this program
[  224.243363][ T5903] usb 1-1: Using ep0 maxpacket: 32
[  224.265421][ T5903] usb 1-1: config 0 has an invalid interface number: 12 but max is 0
[  224.266284][ T5896] usb usb2-port1: attempt power cycle
[  224.273690][ T5903] usb 1-1: config 0 has no interface number 0
[  224.289210][ T5903] usb 1-1: config 0 interface 12 has no altsetting 0
[  224.315602][ T5903] usb 1-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  224.330714][ T5903] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.352991][ T5903] usb 1-1: Product: syz
[  224.363668][ T5903] usb 1-1: Manufacturer: syz
[  224.368288][ T5903] usb 1-1: SerialNumber: syz
[  224.395871][ T5903] usb 1-1: config 0 descriptor??
[  224.462289][ T8674] /dev/rnullb0: Can't open blockdev
[  224.475092][ T8675] netlink: 1 bytes leftover after parsing attributes in process `syz.3.993'.
[  224.485979][ T8675] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  224.623573][ T5896] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  224.655965][ T5896] usb 2-1: device descriptor read/8, error -71
[  224.903371][ T5896] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  224.932602][ T5896] usb 2-1: device descriptor read/8, error -71
[  225.020115][ T5903] f81534 1-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  225.046410][ T5903] f81534 1-1:0.12: f81534_find_config_idx: read failed: -71
[  225.059262][ T5903] f81534 1-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  225.064308][ T5896] usb usb2-port1: unable to enumerate USB device
[  225.077997][ T5903] f81534 1-1:0.12: probe with driver f81534 failed with error -71
[  225.112205][ T5903] usb 1-1: USB disconnect, device number 39
[  225.261659][ T8692] netlink: 'syz.3.1001': attribute type 1 has an invalid length.
[  225.269591][ T8692] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1001'.
[  225.407685][   T30] audit: type=1326 audit(1751668629.862:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8697 comm="syz.2.1004" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f890058e929 code=0x0
[  225.623430][   T10] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  225.793358][   T10] usb 4-1: Using ep0 maxpacket: 16
[  225.801476][   T10] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 11
[  225.811025][   T10] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  225.822457][   T10] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  225.832145][   T10] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  225.842436][   T10] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  225.852291][   T10] usb 4-1: config 1 interface 0 has no altsetting 0
[  225.859010][   T10] usb 4-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  225.868068][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.882075][   T10] ums-sddr09 4-1:1.0: USB Mass Storage device detected
[  225.963325][ T5903] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[  226.084557][ T8696] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1002'.
[  226.113327][ T5903] usb 1-1: Using ep0 maxpacket: 16
[  226.120450][ T5903] usb 1-1: config 0 has an invalid interface number: 148 but max is 0
[  226.128803][ T5903] usb 1-1: config 0 has no interface number 0
[  226.135589][ T5903] usb 1-1: config 0 interface 148 altsetting 0 has an endpoint descriptor with address 0xC7, changing to 0x87
[  226.148077][ T5903] usb 1-1: config 0 interface 148 altsetting 0 endpoint 0x87 has invalid maxpacket 16394, setting to 1024
[  226.159523][ T5903] usb 1-1: config 0 interface 148 altsetting 0 bulk endpoint 0x87 has invalid maxpacket 1024
[  226.169930][ T5903] usb 1-1: New USB device found, idVendor=0499, idProduct=8206, bcdDevice=f4.55
[  226.179266][ T5903] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.191147][ T5903] usb 1-1: config 0 descriptor??
[  226.202065][ T8706] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  226.221393][   T10] ums-sddr09 4-1:1.0: probe with driver ums-sddr09 failed with error -22
[  226.246672][   T10] usb 4-1: USB disconnect, device number 40
[  226.417233][ T5896] usb 1-1: USB disconnect, device number 40
[  226.804509][ T8724] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  226.826848][ T8724] VFS: Can't find a romfs filesystem on dev rnullb0.
[  226.826848][ T8724] 
[  227.452298][ T8757] binder: BINDER_SET_CONTEXT_MGR already set
[  227.472660][ T8757] binder: 8755:8757 ioctl 4018620d 200000000080 returned -16
[  227.479829][ T8761] FAULT_INJECTION: forcing a failure.
[  227.479829][ T8761] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  227.506138][ T8761] CPU: 1 UID: 0 PID: 8761 Comm: syz.3.1029 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  227.506176][ T8761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  227.506189][ T8761] Call Trace:
[  227.506197][ T8761]  <TASK>
[  227.506205][ T8761]  dump_stack_lvl+0x189/0x250
[  227.506236][ T8761]  ? __pfx____ratelimit+0x10/0x10
[  227.506258][ T8761]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.506284][ T8761]  ? __pfx__printk+0x10/0x10
[  227.506310][ T8761]  ? __might_fault+0xb0/0x130
[  227.506348][ T8761]  should_fail_ex+0x414/0x560
[  227.506378][ T8761]  _copy_from_user+0x2d/0xb0
[  227.506407][ T8761]  userfaultfd_ioctl+0x9c3/0x4c80
[  227.506424][ T8761]  ? kfree+0x18e/0x440
[  227.506447][ T8761]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  227.506469][ T8761]  ? security_file_ioctl+0xcb/0x2d0
[  227.506489][ T8761]  ? __se_sys_ioctl+0x47/0x170
[  227.506514][ T8761]  ? do_syscall_64+0xfa/0x3b0
[  227.506535][ T8761]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.506566][ T8761]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  227.506608][ T8761]  ? kasan_quarantine_put+0xdd/0x220
[  227.506643][ T8761]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  227.506668][ T8761]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  227.506701][ T8761]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  227.506741][ T8761]  ? __lock_acquire+0xab9/0xd20
[  227.506783][ T8761]  ? __fget_files+0x2a/0x420
[  227.506807][ T8761]  ? __fget_files+0x2a/0x420
[  227.506826][ T8761]  ? __fget_files+0x3a0/0x420
[  227.506845][ T8761]  ? __fget_files+0x2a/0x420
[  227.506869][ T8761]  ? bpf_lsm_file_ioctl+0x9/0x20
[  227.506895][ T8761]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  227.506915][ T8761]  __se_sys_ioctl+0xf9/0x170
[  227.506946][ T8761]  do_syscall_64+0xfa/0x3b0
[  227.506967][ T8761]  ? lockdep_hardirqs_on+0x9c/0x150
[  227.506988][ T8761]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.507008][ T8761]  ? clear_bhb_loop+0x60/0xb0
[  227.507031][ T8761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.507051][ T8761] RIP: 0033:0x7fbeb8d8e929
[  227.507069][ T8761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.507088][ T8761] RSP: 002b:00007fbeb9bc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  227.507110][ T8761] RAX: ffffffffffffffda RBX: 00007fbeb8fb5fa0 RCX: 00007fbeb8d8e929
[  227.507125][ T8761] RDX: 0000200000000100 RSI: 00000000c028aa03 RDI: 0000000000000003
[  227.507138][ T8761] RBP: 00007fbeb9bc2090 R08: 0000000000000000 R09: 0000000000000000
[  227.507150][ T8761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.507170][ T8761] R13: 0000000000000000 R14: 00007fbeb8fb5fa0 R15: 00007ffdd8f8ead8
[  227.507199][ T8761]  </TASK>
[  227.775442][    C1] vkms_vblank_simulate: vblank timer overrun
[  227.905877][ T8768] gfs2: not a GFS2 filesystem
[  228.363863][ T8791] comedi comedi4: bad chanlist[0]=0x0000b8eb chan=47339 range length=2
[  228.379829][ T8789] binder: 8788:8789 ioctl 4010942a 200000000340 returned -22
[  228.605414][ T8800] FAULT_INJECTION: forcing a failure.
[  228.605414][ T8800] name failslab, interval 1, probability 0, space 0, times 0
[  228.627154][ T8801] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  228.656469][ T8800] CPU: 0 UID: 0 PID: 8800 Comm: syz.1.1042 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  228.656498][ T8800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  228.656511][ T8800] Call Trace:
[  228.656520][ T8800]  <TASK>
[  228.656529][ T8800]  dump_stack_lvl+0x189/0x250
[  228.656562][ T8800]  ? __pfx____ratelimit+0x10/0x10
[  228.656584][ T8800]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.656613][ T8800]  ? __pfx__printk+0x10/0x10
[  228.656644][ T8800]  ? __pfx___might_resched+0x10/0x10
[  228.656670][ T8800]  ? fs_reclaim_acquire+0x7d/0x100
[  228.656697][ T8800]  should_fail_ex+0x414/0x560
[  228.656732][ T8800]  should_failslab+0xa8/0x100
[  228.656753][ T8800]  kmem_cache_alloc_noprof+0x73/0x3c0
[  228.656781][ T8800]  ? __anon_vma_prepare+0x117/0x4a0
[  228.656816][ T8800]  __anon_vma_prepare+0x117/0x4a0
[  228.656846][ T8800]  ? __pte_alloc+0x15e/0x1a0
[  228.656872][ T8800]  __handle_mm_fault+0x4b2d/0x5440
[  228.656917][ T8800]  ? __pfx___handle_mm_fault+0x10/0x10
[  228.656964][ T8800]  ? find_vma+0xe7/0x160
[  228.656991][ T8800]  ? __pfx_find_vma+0x10/0x10
[  228.657022][ T8800]  handle_mm_fault+0x40a/0x8e0
[  228.657065][ T8800]  do_user_addr_fault+0x764/0x1390
[  228.657110][ T8800]  exc_page_fault+0x76/0xf0
[  228.657133][ T8800]  asm_exc_page_fault+0x26/0x30
[  228.657151][ T8800] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  228.657178][ T8800] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  228.657196][ T8800] RSP: 0018:ffffc90019087ca8 EFLAGS: 00050206
[  228.657214][ T8800] RAX: ffffffff84cde601 RBX: 0000000000000070 RCX: 0000000000000070
[  228.657229][ T8800] RDX: 0000000000000000 RSI: ffffc90019087d20 RDI: 0000200000000040
[  228.657243][ T8800] RBP: ffffc90019087ee0 R08: ffffc90019087d8f R09: 1ffff92003210fb1
[  228.657259][ T8800] R10: dffffc0000000000 R11: fffff52003210fb2 R12: 00002000000000b0
[  228.657275][ T8800] R13: 00007ffffffff000 R14: ffffc90019087d20 R15: 0000200000000040
[  228.657299][ T8800]  ? _copy_from_user+0x41/0xb0
[  228.657336][ T8800]  _copy_to_user+0x8a/0xb0
[  228.657367][ T8800]  __se_sys_shmctl+0x28a/0x3e0
[  228.657400][ T8800]  ? __pfx___se_sys_shmctl+0x10/0x10
[  228.657439][ T8800]  ? __fget_files+0x3a0/0x420
[  228.657472][ T8800]  ? fput+0xa0/0xd0
[  228.657505][ T8800]  ? rcu_is_watching+0x15/0xb0
[  228.657536][ T8800]  ? do_syscall_64+0xbe/0x3b0
[  228.657563][ T8800]  do_syscall_64+0xfa/0x3b0
[  228.657584][ T8800]  ? lockdep_hardirqs_on+0x9c/0x150
[  228.657605][ T8800]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.657625][ T8800]  ? clear_bhb_loop+0x60/0xb0
[  228.657650][ T8800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.657670][ T8800] RIP: 0033:0x7ff158d8e929
[  228.657687][ T8800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.657705][ T8800] RSP: 002b:00007ff159c66038 EFLAGS: 00000246 ORIG_RAX: 000000000000001f
[  228.657725][ T8800] RAX: ffffffffffffffda RBX: 00007ff158fb5fa0 RCX: 00007ff158d8e929
[  228.657740][ T8800] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000001
[  228.657754][ T8800] RBP: 00007ff159c66090 R08: 0000000000000000 R09: 0000000000000000
[  228.657767][ T8800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  228.657780][ T8800] R13: 0000000000000000 R14: 00007ff158fb5fa0 R15: 00007ffdfc0b2ef8
[  228.657812][ T8800]  </TASK>
[  229.262590][ T8814] netlink: 'syz.2.1050': attribute type 29 has an invalid length.
[  229.272221][ T8814] netlink: 'syz.2.1050': attribute type 29 has an invalid length.
[  229.277797][ T8811] netlink: 'syz.3.1048': attribute type 4 has an invalid length.
[  229.282423][ T8814] netlink: 'syz.2.1050': attribute type 29 has an invalid length.
[  229.288271][   T30] audit: type=1326 audit(1751668633.732:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8812 comm="syz.0.1049" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6a4778e929 code=0x0
[  229.299252][ T8814] netlink: 'syz.2.1050': attribute type 29 has an invalid length.
[  229.321797][ T8811] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1048'.
[  229.403689][ T5903] usb 2-1: new low-speed USB device number 48 using dummy_hcd
[  229.556628][ T5903] usb 2-1: config 1 interface 0 altsetting 2 endpoint 0x82 is Bulk; changing to Interrupt
[  229.577631][ T5903] usb 2-1: config 1 interface 0 altsetting 2 endpoint 0x3 is Bulk; changing to Interrupt
[  229.594681][ T5903] usb 2-1: config 1 interface 0 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  229.613294][ T5903] usb 2-1: config 1 interface 0 has no altsetting 0
[  229.812136][ T8826] FAULT_INJECTION: forcing a failure.
[  229.812136][ T8826] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  229.833665][ T8826] CPU: 0 UID: 0 PID: 8826 Comm: syz.2.1053 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  229.833685][ T8826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  229.833698][ T8826] Call Trace:
[  229.833706][ T8826]  <TASK>
[  229.833715][ T8826]  dump_stack_lvl+0x189/0x250
[  229.833749][ T8826]  ? __pfx____ratelimit+0x10/0x10
[  229.833771][ T8826]  ? __pfx_dump_stack_lvl+0x10/0x10
[  229.833788][ T8826]  ? __pfx__printk+0x10/0x10
[  229.833803][ T8826]  ? __might_fault+0xb0/0x130
[  229.833823][ T8826]  should_fail_ex+0x414/0x560
[  229.833850][ T8826]  _copy_from_user+0x2d/0xb0
[  229.833879][ T8826]  ___sys_sendmsg+0x158/0x2a0
[  229.833910][ T8826]  ? __pfx____sys_sendmsg+0x10/0x10
[  229.833969][ T8826]  ? __fget_files+0x2a/0x420
[  229.833980][ T8826]  ? __fget_files+0x3a0/0x420
[  229.834008][ T8826]  __x64_sys_sendmsg+0x19b/0x260
[  229.834039][ T8826]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  229.834075][ T8826]  ? __pfx_ksys_write+0x10/0x10
[  229.834088][ T8826]  ? do_syscall_64+0xbe/0x3b0
[  229.834102][ T8826]  do_syscall_64+0xfa/0x3b0
[  229.834113][ T8826]  ? lockdep_hardirqs_on+0x9c/0x150
[  229.834124][ T8826]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.834136][ T8826]  ? clear_bhb_loop+0x60/0xb0
[  229.834159][ T8826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.834179][ T8826] RIP: 0033:0x7f890058e929
[  229.834197][ T8826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  229.834215][ T8826] RSP: 002b:00007f89013b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  229.834233][ T8826] RAX: ffffffffffffffda RBX: 00007f89007b5fa0 RCX: 00007f890058e929
[  229.834241][ T8826] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000006
[  229.834248][ T8826] RBP: 00007f89013b5090 R08: 0000000000000000 R09: 0000000000000000
[  229.834255][ T8826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  229.834261][ T8826] R13: 0000000000000000 R14: 00007f89007b5fa0 R15: 00007fffc49c22b8
[  229.834277][ T8826]  </TASK>
[  230.273019][ T8834] gfs2: not a GFS2 filesystem
[  230.352260][ T8839] (syz.3.1059,8839,1):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  230.363223][ T8839] (syz.3.1059,8839,1):ocfs2_fill_super:1177 ERROR: status = -22
[  230.484340][ T8836] FAULT_INJECTION: forcing a failure.
[  230.484340][ T8836] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  230.498267][ T8836] CPU: 0 UID: 0 PID: 8836 Comm: syz.0.1058 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  230.498297][ T8836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  230.498308][ T8836] Call Trace:
[  230.498315][ T8836]  <TASK>
[  230.498320][ T8836]  dump_stack_lvl+0x189/0x250
[  230.498339][ T8836]  ? __pfx____ratelimit+0x10/0x10
[  230.498351][ T8836]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.498366][ T8836]  ? __pfx__printk+0x10/0x10
[  230.498391][ T8836]  ? __might_fault+0xb0/0x130
[  230.498431][ T8836]  should_fail_ex+0x414/0x560
[  230.498465][ T8836]  _copy_from_user+0x2d/0xb0
[  230.498483][ T8836]  do_sys_poll+0x242/0x1070
[  230.498502][ T8836]  ? __pfx_do_sys_poll+0x10/0x10
[  230.498571][ T8836]  ? rcu_read_lock_any_held+0xb3/0x120
[  230.498599][ T8836]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  230.498624][ T8836]  ? vfs_write+0x8d8/0xa90
[  230.498653][ T8836]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  230.498665][ T8836]  ? set_user_sigmask+0xc7/0x1b0
[  230.498682][ T8836]  ? __pfx_set_user_sigmask+0x10/0x10
[  230.498707][ T8836]  ? __fget_files+0x3a0/0x420
[  230.498737][ T8836]  __se_sys_ppoll+0x1ff/0x260
[  230.498761][ T8836]  ? __pfx___se_sys_ppoll+0x10/0x10
[  230.498774][ T8836]  ? __pfx_ksys_write+0x10/0x10
[  230.498782][ T8836]  ? rcu_is_watching+0x15/0xb0
[  230.498797][ T8836]  ? do_syscall_64+0xbe/0x3b0
[  230.498808][ T8836]  ? __x64_sys_ppoll+0x20/0xc0
[  230.498820][ T8836]  do_syscall_64+0xfa/0x3b0
[  230.498840][ T8836]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.498858][ T8836]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  230.498877][ T8836]  ? clear_bhb_loop+0x60/0xb0
[  230.498899][ T8836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.498918][ T8836] RIP: 0033:0x7f6a4778e929
[  230.498935][ T8836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.498960][ T8836] RSP: 002b:00007f6a486d4038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  230.498981][ T8836] RAX: ffffffffffffffda RBX: 00007f6a479b5fa0 RCX: 00007f6a4778e929
[  230.498995][ T8836] RDX: 0000000000000000 RSI: 20000000000000dc RDI: 00002000000000c0
[  230.499008][ T8836] RBP: 00007f6a486d4090 R08: 0000000000000000 R09: 0000000000000000
[  230.499019][ T8836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  230.499031][ T8836] R13: 0000000000000000 R14: 00007f6a479b5fa0 R15: 00007ffc2d6b3318
[  230.499061][ T8836]  </TASK>
[  230.803274][ T5896] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  230.968605][ T8841] FAULT_INJECTION: forcing a failure.
[  230.968605][ T8841] name failslab, interval 1, probability 0, space 0, times 0
[  230.986015][ T8841] CPU: 1 UID: 0 PID: 8841 Comm: syz.2.1060 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  230.986044][ T8841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  230.986056][ T8841] Call Trace:
[  230.986064][ T8841]  <TASK>
[  230.986073][ T8841]  dump_stack_lvl+0x189/0x250
[  230.986114][ T8841]  ? __pfx____ratelimit+0x10/0x10
[  230.986137][ T8841]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.986165][ T8841]  ? __pfx__printk+0x10/0x10
[  230.986196][ T8841]  ? __pfx___might_resched+0x10/0x10
[  230.986222][ T8841]  ? fs_reclaim_acquire+0x7d/0x100
[  230.986247][ T8841]  should_fail_ex+0x414/0x560
[  230.986282][ T8841]  should_failslab+0xa8/0x100
[  230.986304][ T8841]  __kmalloc_noprof+0xcb/0x4f0
[  230.986331][ T8841]  ? tomoyo_encode+0x28b/0x550
[  230.986365][ T8841]  tomoyo_encode+0x28b/0x550
[  230.986400][ T8841]  tomoyo_realpath_from_path+0x58d/0x5d0
[  230.986433][ T8841]  ? kmem_cache_free+0x18f/0x400
[  230.986471][ T8841]  tomoyo_mount_permission+0x8d8/0x970
[  230.986503][ T8841]  ? tomoyo_mount_permission+0x27a/0x970
[  230.986532][ T8841]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  230.986620][ T8841]  security_sb_mount+0xec/0x350
[  230.986653][ T8841]  path_mount+0xbc/0xfe0
[  230.986673][ T8841]  ? user_path_at+0x44/0x60
[  230.986697][ T8841]  ? kmem_cache_free+0x18f/0x400
[  230.986735][ T8841]  __se_sys_mount+0x317/0x410
[  230.986764][ T8841]  ? __pfx___se_sys_mount+0x10/0x10
[  230.986784][ T8841]  ? rcu_is_watching+0x15/0xb0
[  230.986814][ T8841]  ? do_syscall_64+0xbe/0x3b0
[  230.986835][ T8841]  ? __x64_sys_mount+0x20/0xc0
[  230.986859][ T8841]  do_syscall_64+0xfa/0x3b0
[  230.986879][ T8841]  ? lockdep_hardirqs_on+0x9c/0x150
[  230.986899][ T8841]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.986919][ T8841]  ? clear_bhb_loop+0x60/0xb0
[  230.986943][ T8841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.986962][ T8841] RIP: 0033:0x7f890058e929
[  230.986981][ T8841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.986998][ T8841] RSP: 002b:00007f89013b5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  230.987019][ T8841] RAX: ffffffffffffffda RBX: 00007f89007b5fa0 RCX: 00007f890058e929
[  230.987035][ T8841] RDX: 0000200000000000 RSI: 0000200000000040 RDI: 0000200000000080
[  230.987049][ T8841] RBP: 00007f89013b5090 R08: 0000000000000000 R09: 0000000000000000
[  230.987066][ T8841] R10: 0000000000004400 R11: 0000000000000246 R12: 0000000000000002
[  230.987079][ T8841] R13: 0000000000000001 R14: 00007f89007b5fa0 R15: 00007fffc49c22b8
[  230.987118][ T8841]  </TASK>
[  230.987162][ T8841] ERROR: Out of memory at tomoyo_realpath_from_path.
[  230.991541][ T5896] usb 4-1: Using ep0 maxpacket: 32
[  231.269614][ T5896] usb 4-1: config 0 has an invalid interface number: 196 but max is 0
[  231.278001][ T5896] usb 4-1: config 0 has no interface number 0
[  231.284420][ T5896] usb 4-1: config 0 interface 196 has no altsetting 0
[  231.294543][ T5896] usb 4-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  231.303735][ T5896] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  231.312591][ T5896] usb 4-1: Product: syz
[  231.317551][ T5896] usb 4-1: Manufacturer: syz
[  231.322223][ T5896] usb 4-1: SerialNumber: syz
[  231.344835][ T8845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1062'.
[  231.364214][ T5896] usb 4-1: config 0 descriptor??
[  231.528757][ T8854] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  231.536099][ T8854] VFS: Can't find a romfs filesystem on dev rnullb0.
[  231.536099][ T8854] 
[  231.584788][ T5896] ipheth 4-1:0.196: Unable to find endpoints
[  231.610115][ T5896] usb 4-1: USB disconnect, device number 41
[  231.719441][ T8858] netlink: 'syz.2.1067': attribute type 3 has an invalid length.
[  231.731414][ T8858] netlink: 216 bytes leftover after parsing attributes in process `syz.2.1067'.
[  232.167258][ T8865] netlink: 'syz.3.1071': attribute type 10 has an invalid length.
[  232.188886][ T5903] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  232.200329][ T5903] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.218200][ T5903] usb 2-1: can't set config #1, error -71
[  232.244912][ T5903] usb 2-1: USB disconnect, device number 48
[  232.261330][ T8867] fuse: Bad value for 'fd'
[  232.261435][ T8865] team0: Device veth1_vlan failed to register rx_handler
[  232.575276][ T8879] EXT4-fs (rnullb0): VFS: Can't find ext4 filesystem
[  232.682341][ T8887] netlink: 372 bytes leftover after parsing attributes in process `syz.0.1079'.
[  232.753325][   T55] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  232.869984][ T8898] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1082'.
[  232.913342][   T55] usb 2-1: Using ep0 maxpacket: 8
[  232.924056][   T55] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  232.935372][   T55] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 15
[  232.945429][   T55] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  232.960871][   T55] usb 2-1: New USB device found, idVendor=077d, idProduct=04aa, bcdDevice=5b.d8
[  232.970298][   T55] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.981227][   T55] usb 2-1: Product: syz
[  232.987230][   T55] usb 2-1: Manufacturer: syz
[  232.991989][   T55] usb 2-1: SerialNumber: syz
[  233.002239][   T55] usb 2-1: config 0 descriptor??
[  233.010905][   T55] powermate 2-1:0.0: probe with driver powermate failed with error -22
[  233.213629][  T122] usb 2-1: USB disconnect, device number 49
[  233.947384][ T8924] FAT-fs (rnullb0): bogus number of reserved sectors
[  233.955962][ T8924] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  234.392772][ T8940] FAULT_INJECTION: forcing a failure.
[  234.392772][ T8940] name failslab, interval 1, probability 0, space 0, times 0
[  234.411545][ T8940] CPU: 0 UID: 0 PID: 8940 Comm: syz.0.1098 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  234.411573][ T8940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  234.411586][ T8940] Call Trace:
[  234.411595][ T8940]  <TASK>
[  234.411604][ T8940]  dump_stack_lvl+0x189/0x250
[  234.411636][ T8940]  ? __pfx____ratelimit+0x10/0x10
[  234.411658][ T8940]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.411685][ T8940]  ? __pfx__printk+0x10/0x10
[  234.411718][ T8940]  ? __pfx___might_resched+0x10/0x10
[  234.411748][ T8940]  should_fail_ex+0x414/0x560
[  234.411780][ T8940]  ? __pfx_sock_alloc_inode+0x10/0x10
[  234.411801][ T8940]  should_failslab+0xa8/0x100
[  234.411820][ T8940]  ? __pfx_sock_alloc_inode+0x10/0x10
[  234.411838][ T8940]  kmem_cache_alloc_lru_noprof+0x78/0x3d0
[  234.411867][ T8940]  ? sock_alloc_inode+0x28/0xc0
[  234.411890][ T8940]  ? __pfx_sock_alloc_inode+0x10/0x10
[  234.411909][ T8940]  sock_alloc_inode+0x28/0xc0
[  234.411928][ T8940]  alloc_inode+0x67/0x1b0
[  234.411950][ T8940]  __sock_create+0x12d/0x9f0
[  234.411982][ T8940]  __sys_socketpair+0x23a/0x560
[  234.412011][ T8940]  __x64_sys_socketpair+0x9b/0xb0
[  234.412036][ T8940]  do_syscall_64+0xfa/0x3b0
[  234.412058][ T8940]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.412082][ T8940]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.412101][ T8940]  ? clear_bhb_loop+0x60/0xb0
[  234.412126][ T8940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.412146][ T8940] RIP: 0033:0x7f6a4778e929
[  234.412164][ T8940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.412183][ T8940] RSP: 002b:00007f6a486d4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  234.412206][ T8940] RAX: ffffffffffffffda RBX: 00007f6a479b5fa0 RCX: 00007f6a4778e929
[  234.412222][ T8940] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000000001e
[  234.412234][ T8940] RBP: 00007f6a486d4090 R08: 0000000000000000 R09: 0000000000000000
[  234.412248][ T8940] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000002
[  234.412262][ T8940] R13: 0000000000000001 R14: 00007f6a479b5fa0 R15: 00007ffc2d6b3318
[  234.412293][ T8940]  </TASK>
[  234.412363][ T8940] socket: no more sockets
[  234.631554][ T8919] orangefs_mount: mount request failed with -4
[  234.753342][ T5903] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  234.804644][ T8950] netlink: 'syz.3.1102': attribute type 2 has an invalid length.
[  234.943920][ T5903] usb 3-1: too many configurations: 9, using maximum allowed: 8
[  234.972439][ T5903] usb 3-1: config index 0 descriptor too short (expected 8192, got 27)
[  234.996970][ T5903] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.022237][ T5903] usb 3-1: config 0 has no interfaces?
[  235.045735][ T5903] usb 3-1: config index 1 descriptor too short (expected 8192, got 27)
[  235.066545][ T5903] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.131558][ T5903] usb 3-1: config 0 has no interfaces?
[  235.138424][ T5903] usb 3-1: config index 2 descriptor too short (expected 8192, got 27)
[  235.146878][ T5903] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.162165][ T5903] usb 3-1: config 0 has no interfaces?
[  235.263359][   T55] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  235.275894][ T5903] usb 3-1: config index 3 descriptor too short (expected 8192, got 27)
[  235.284558][ T5903] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.294990][ T5903] usb 3-1: config 0 has no interfaces?
[  235.367919][ T5903] usb 3-1: config index 4 descriptor too short (expected 8192, got 27)
[  235.376323][ T5903] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.386904][ T5903] usb 3-1: config 0 has no interfaces?
[  235.394710][ T5903] usb 3-1: config index 5 descriptor too short (expected 8192, got 27)
[  235.403388][ T5903] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.413923][ T5903] usb 3-1: config 0 has no interfaces?
[  235.418213][ T8958] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1106'.
[  235.429984][   T55] usb 2-1: Using ep0 maxpacket: 8
[  235.473518][ T5903] usb 3-1: config index 6 descriptor too short (expected 8192, got 27)
[  235.482121][ T5903] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.493023][ T5903] usb 3-1: config 0 has no interfaces?
[  235.503993][ T5903] usb 3-1: config index 7 descriptor too short (expected 8192, got 27)
[  235.512270][ T5903] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.531011][   T55] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  235.540194][ T5903] usb 3-1: config 0 has no interfaces?
[  235.540248][   T55] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  235.551384][ T5903] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  235.565733][ T5903] usb 3-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  235.569161][   T55] usb 2-1: Product: syz
[  235.580700][ T5903] usb 3-1: Product: syz
[  235.587717][   T55] usb 2-1: Manufacturer: syz
[  235.593561][ T5903] usb 3-1: Manufacturer: syz
[  235.598334][ T5903] usb 3-1: SerialNumber: syz
[  235.612716][   T55] usb 2-1: SerialNumber: syz
[  235.613083][ T5903] usb 3-1: config 0 descriptor??
[  235.640097][   T55] usb 2-1: config 0 descriptor??
[  235.861894][   T55] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  235.891374][ T8942] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  235.950049][ T5903] usb 3-1: USB disconnect, device number 40
[  236.611918][ T8963] FAULT_INJECTION: forcing a failure.
[  236.611918][ T8963] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  236.633370][ T8963] CPU: 1 UID: 0 PID: 8963 Comm: syz.3.1107 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  236.633397][ T8963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  236.633410][ T8963] Call Trace:
[  236.633419][ T8963]  <TASK>
[  236.633428][ T8963]  dump_stack_lvl+0x189/0x250
[  236.633462][ T8963]  ? __pfx____ratelimit+0x10/0x10
[  236.633486][ T8963]  ? __pfx_dump_stack_lvl+0x10/0x10
[  236.633514][ T8963]  ? __pfx__printk+0x10/0x10
[  236.633551][ T8963]  ? fs_reclaim_acquire+0x7d/0x100
[  236.633581][ T8963]  should_fail_ex+0x414/0x560
[  236.633617][ T8963]  prepare_alloc_pages+0x213/0x610
[  236.633648][ T8963]  __alloc_frozen_pages_noprof+0x123/0x370
[  236.633676][ T8963]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  236.633709][ T8963]  ? policy_nodemask+0x27c/0x720
[  236.633736][ T8963]  ? __lock_acquire+0xab9/0xd20
[  236.633764][ T8963]  alloc_pages_mpol+0x232/0x4a0
[  236.633804][ T8963]  vma_alloc_folio_noprof+0xe4/0x200
[  236.633838][ T8963]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  236.633882][ T8963]  folio_prealloc+0x30/0x180
[  236.633914][ T8963]  __handle_mm_fault+0x2ab9/0x5440
[  236.633959][ T8963]  ? __pfx___handle_mm_fault+0x10/0x10
[  236.634005][ T8963]  ? find_vma+0xe7/0x160
[  236.634031][ T8963]  ? __pfx_find_vma+0x10/0x10
[  236.634063][ T8963]  handle_mm_fault+0x40a/0x8e0
[  236.634102][ T8963]  do_user_addr_fault+0x764/0x1390
[  236.634141][ T8963]  exc_page_fault+0x76/0xf0
[  236.634164][ T8963]  asm_exc_page_fault+0x26/0x30
[  236.634183][ T8963] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  236.634212][ T8963] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  236.634229][ T8963] RSP: 0018:ffffc90019a47b48 EFLAGS: 00050206
[  236.634247][ T8963] RAX: ffffffff84cde601 RBX: 0000000000001000 RCX: 0000000000000240
[  236.634261][ T8963] RDX: 0000000000000000 RSI: ffff888051ac0dc0 RDI: 0000200000005000
[  236.634274][ T8963] RBP: ffffc90019a47c90 R08: ffff888051ac0fff R09: 1ffff1100a3581ff
[  236.634289][ T8963] R10: dffffc0000000000 R11: ffffed100a358200 R12: 0000200000005240
[  236.634304][ T8963] R13: 00007ffffffff000 R14: ffff888051ac0000 R15: 0000200000004240
[  236.634327][ T8963]  ? _copy_from_user+0x41/0xb0
[  236.634361][ T8963]  _copy_to_user+0x8a/0xb0
[  236.634390][ T8963]  pagemap_read+0x4d4/0x7b0
[  236.634420][ T8963]  ? __pfx_pagemap_read+0x10/0x10
[  236.634448][ T8963]  ? rw_verify_area+0x258/0x650
[  236.634476][ T8963]  ? __pfx_pagemap_read+0x10/0x10
[  236.634499][ T8963]  vfs_read+0x200/0x980
[  236.634542][ T8963]  ? __pfx_vfs_read+0x10/0x10
[  236.634572][ T8963]  ? __fget_files+0x2a/0x420
[  236.634596][ T8963]  ? __fget_files+0x2a/0x420
[  236.634616][ T8963]  ? __fget_files+0x3a0/0x420
[  236.634636][ T8963]  ? __fget_files+0x2a/0x420
[  236.634666][ T8963]  __x64_sys_pread64+0x193/0x220
[  236.634689][ T8963]  ? __pfx___x64_sys_pread64+0x10/0x10
[  236.634706][ T8963]  ? rcu_is_watching+0x15/0xb0
[  236.634736][ T8963]  ? do_syscall_64+0xbe/0x3b0
[  236.634760][ T8963]  do_syscall_64+0xfa/0x3b0
[  236.634780][ T8963]  ? lockdep_hardirqs_on+0x9c/0x150
[  236.634800][ T8963]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.634819][ T8963]  ? clear_bhb_loop+0x60/0xb0
[  236.634843][ T8963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.634862][ T8963] RIP: 0033:0x7fbeb8d8e929
[  236.634879][ T8963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.634897][ T8963] RSP: 002b:00007fbeb9bc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  236.634917][ T8963] RAX: ffffffffffffffda RBX: 00007fbeb8fb5fa0 RCX: 00007fbeb8d8e929
[  236.634932][ T8963] RDX: 0000000000019000 RSI: 0000200000001240 RDI: 0000000000000004
[  236.634945][ T8963] RBP: 00007fbeb9bc2090 R08: 0000000000000000 R09: 0000000000000000
[  236.634958][ T8963] R10: 0000001000000000 R11: 0000000000000246 R12: 0000000000000002
[  236.634971][ T8963] R13: 0000000000000000 R14: 00007fbeb8fb5fa0 R15: 00007ffdd8f8ead8
[  236.635002][ T8963]  </TASK>
[  237.622819][ T8973] syz.3.1111: attempt to access beyond end of device
[  237.622819][ T8973] nbd3: rw=0, sector=0, nr_sectors = 2 limit=0
[  237.651324][   T55] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  237.689129][   T55] usb 2-1: USB disconnect, device number 50
[  237.901279][ T8975] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1112'.
[  237.920740][ T8975] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1112'.
[  238.369497][ T8985] FAULT_INJECTION: forcing a failure.
[  238.369497][ T8985] name failslab, interval 1, probability 0, space 0, times 0
[  238.394079][ T8985] CPU: 0 UID: 0 PID: 8985 Comm: syz.1.1116 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  238.394107][ T8985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  238.394120][ T8985] Call Trace:
[  238.394128][ T8985]  <TASK>
[  238.394144][ T8985]  dump_stack_lvl+0x189/0x250
[  238.394177][ T8985]  ? __pfx____ratelimit+0x10/0x10
[  238.394199][ T8985]  ? __pfx_dump_stack_lvl+0x10/0x10
[  238.394227][ T8985]  ? __pfx__printk+0x10/0x10
[  238.394262][ T8985]  ? ref_tracker_alloc+0x318/0x460
[  238.394285][ T8985]  should_fail_ex+0x414/0x560
[  238.394319][ T8985]  should_failslab+0xa8/0x100
[  238.394340][ T8985]  kmem_cache_alloc_noprof+0x73/0x3c0
[  238.394368][ T8985]  ? skb_clone+0x212/0x3a0
[  238.394400][ T8985]  skb_clone+0x212/0x3a0
[  238.394432][ T8985]  __netlink_deliver_tap+0x404/0x850
[  238.394468][ T8985]  ? netlink_deliver_tap+0x2e/0x1b0
[  238.394493][ T8985]  netlink_deliver_tap+0x19c/0x1b0
[  238.394518][ T8985]  netlink_unicast+0x72f/0x8d0
[  238.394551][ T8985]  netlink_sendmsg+0x805/0xb30
[  238.394585][ T8985]  ? __pfx_netlink_sendmsg+0x10/0x10
[  238.394613][ T8985]  ? aa_sock_msg_perm+0xf1/0x1d0
[  238.394643][ T8985]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  238.394666][ T8985]  ? __pfx_netlink_sendmsg+0x10/0x10
[  238.394690][ T8985]  __sock_sendmsg+0x219/0x270
[  238.394714][ T8985]  ____sys_sendmsg+0x505/0x830
[  238.394748][ T8985]  ? __pfx_____sys_sendmsg+0x10/0x10
[  238.394785][ T8985]  ? import_iovec+0x74/0xa0
[  238.394817][ T8985]  ___sys_sendmsg+0x21f/0x2a0
[  238.394847][ T8985]  ? __pfx____sys_sendmsg+0x10/0x10
[  238.394911][ T8985]  ? __fget_files+0x2a/0x420
[  238.394932][ T8985]  ? __fget_files+0x3a0/0x420
[  238.394959][ T8985]  __x64_sys_sendmsg+0x19b/0x260
[  238.394987][ T8985]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  238.395025][ T8985]  ? __pfx_ksys_write+0x10/0x10
[  238.395041][ T8985]  ? rcu_is_watching+0x15/0xb0
[  238.395072][ T8985]  ? do_syscall_64+0xbe/0x3b0
[  238.395098][ T8985]  do_syscall_64+0xfa/0x3b0
[  238.395118][ T8985]  ? lockdep_hardirqs_on+0x9c/0x150
[  238.395147][ T8985]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.395166][ T8985]  ? clear_bhb_loop+0x60/0xb0
[  238.395189][ T8985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.395207][ T8985] RIP: 0033:0x7ff158d8e929
[  238.395225][ T8985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.395242][ T8985] RSP: 002b:00007ff159c66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  238.395264][ T8985] RAX: ffffffffffffffda RBX: 00007ff158fb5fa0 RCX: 00007ff158d8e929
[  238.395280][ T8985] RDX: 0000000000000004 RSI: 00002000000005c0 RDI: 0000000000000003
[  238.395293][ T8985] RBP: 00007ff159c66090 R08: 0000000000000000 R09: 0000000000000000
[  238.395306][ T8985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  238.395318][ T8985] R13: 0000000000000000 R14: 00007ff158fb5fa0 R15: 00007ffdfc0b2ef8
[  238.395350][ T8985]  </TASK>
[  238.993339][ T5903] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  239.155692][ T5903] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  239.189862][ T5903] usb 2-1: config 1 has no interface number 0
[  239.226225][ T5903] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  239.263276][ T5903] usb 2-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  239.282584][ T5903] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 6302, setting to 1024
[  239.308993][ T5903] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[  239.338664][ T5903] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  239.353234][ T5903] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  239.366345][ T5903] usb 2-1: Product: syz
[  239.370527][ T5903] usb 2-1: Manufacturer: syz
[  239.393133][ T5903] usb 2-1: SerialNumber: syz
[  239.732874][ T8993] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  240.352724][ T8993] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  240.367785][ T5903] cdc_ncm 2-1:1.1: bind() failure
[  240.375839][ T9020] netlink: 15 bytes leftover after parsing attributes in process `syz.2.1129'.
[  240.485194][ T5862] Bluetooth: hci3: unexpected event for opcode 0x0000
[  240.498893][ T9023] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  240.509848][ T9025] QAT: failed to copy from user cfg_data.
[  240.607348][ T9028] FAULT_INJECTION: forcing a failure.
[  240.607348][ T9028] name failslab, interval 1, probability 0, space 0, times 0
[  240.659410][ T9028] CPU: 0 UID: 0 PID: 9028 Comm: syz.2.1132 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  240.659428][ T9028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  240.659435][ T9028] Call Trace:
[  240.659441][ T9028]  <TASK>
[  240.659446][ T9028]  dump_stack_lvl+0x189/0x250
[  240.659465][ T9028]  ? __pfx____ratelimit+0x10/0x10
[  240.659478][ T9028]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.659493][ T9028]  ? __pfx__printk+0x10/0x10
[  240.659511][ T9028]  ? __pfx___might_resched+0x10/0x10
[  240.659528][ T9028]  should_fail_ex+0x414/0x560
[  240.659547][ T9028]  should_failslab+0xa8/0x100
[  240.659558][ T9028]  __kmalloc_cache_noprof+0x70/0x3d0
[  240.659574][ T9028]  ? sctp_association_new+0x89/0x25f0
[  240.659588][ T9028]  ? __asan_memcpy+0x40/0x70
[  240.659603][ T9028]  sctp_association_new+0x89/0x25f0
[  240.659617][ T9028]  ? sctp_do_bind+0x657/0x940
[  240.659633][ T9028]  ? __ipv6_addr_type+0x10c/0x2f0
[  240.659651][ T9028]  sctp_connect_new_asoc+0x2c5/0x690
[  240.659667][ T9028]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  240.659684][ T9028]  ? sctp_inet6_send_verify+0x23a/0x300
[  240.659695][ T9028]  ? sctp_endpoint_lookup_assoc+0xd1/0x260
[  240.659710][ T9028]  __sctp_connect+0x5ba/0xd50
[  240.659730][ T9028]  ? __pfx___sctp_connect+0x10/0x10
[  240.659742][ T9028]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  240.659757][ T9028]  ? sctp_setsockopt_connectx_old+0xc1/0x160
[  240.659773][ T9028]  sctp_setsockopt+0x459/0x1200
[  240.659786][ T9028]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  240.659799][ T9028]  do_sock_setsockopt+0x257/0x3e0
[  240.659816][ T9028]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  240.659832][ T9028]  ? __fget_files+0x2a/0x420
[  240.659848][ T9028]  __x64_sys_setsockopt+0x18b/0x220
[  240.659865][ T9028]  do_syscall_64+0xfa/0x3b0
[  240.659876][ T9028]  ? lockdep_hardirqs_on+0x9c/0x150
[  240.659887][ T9028]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.659897][ T9028]  ? clear_bhb_loop+0x60/0xb0
[  240.659909][ T9028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.659925][ T9028] RIP: 0033:0x7f890058e929
[  240.659936][ T9028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.659944][ T9028] RSP: 002b:00007f89013b5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  240.659957][ T9028] RAX: ffffffffffffffda RBX: 00007f89007b5fa0 RCX: 00007f890058e929
[  240.659965][ T9028] RDX: 000000000000006b RSI: 0000000000000084 RDI: 0000000000000003
[  240.659972][ T9028] RBP: 00007f89013b5090 R08: 000000000000001c R09: 0000000000000000
[  240.659979][ T9028] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  240.659986][ T9028] R13: 0000000000000000 R14: 00007f89007b5fa0 R15: 00007fffc49c22b8
[  240.660002][ T9028]  </TASK>
[  240.992155][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  241.162014][ T9035] FAULT_INJECTION: forcing a failure.
[  241.162014][ T9035] name failslab, interval 1, probability 0, space 0, times 0
[  241.184457][ T9035] CPU: 0 UID: 0 PID: 9035 Comm: syz.2.1135 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  241.184484][ T9035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  241.184496][ T9035] Call Trace:
[  241.184505][ T9035]  <TASK>
[  241.184514][ T9035]  dump_stack_lvl+0x189/0x250
[  241.184548][ T9035]  ? __pfx____ratelimit+0x10/0x10
[  241.184571][ T9035]  ? __pfx_dump_stack_lvl+0x10/0x10
[  241.184599][ T9035]  ? __pfx__printk+0x10/0x10
[  241.184634][ T9035]  ? __pfx___might_resched+0x10/0x10
[  241.184660][ T9035]  ? fs_reclaim_acquire+0x7d/0x100
[  241.184686][ T9035]  should_fail_ex+0x414/0x560
[  241.184721][ T9035]  should_failslab+0xa8/0x100
[  241.184742][ T9035]  __kmalloc_cache_noprof+0x70/0x3d0
[  241.184770][ T9035]  ? genl_start+0x1c9/0x6c0
[  241.184803][ T9035]  genl_start+0x1c9/0x6c0
[  241.184830][ T9035]  ? netlink_lookup+0x30/0x200
[  241.184859][ T9035]  __netlink_dump_start+0x469/0x7e0
[  241.184891][ T9035]  genl_family_rcv_msg_dumpit+0x1e7/0x2c0
[  241.184925][ T9035]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  241.184953][ T9035]  ? genl_get_cmd+0x496/0x910
[  241.184986][ T9035]  ? __pfx_genl_start+0x10/0x10
[  241.185011][ T9035]  ? __pfx_genl_dumpit+0x10/0x10
[  241.185037][ T9035]  ? __pfx_genl_done+0x10/0x10
[  241.185087][ T9035]  genl_rcv_msg+0x5da/0x790
[  241.185122][ T9035]  ? __pfx_genl_rcv_msg+0x10/0x10
[  241.185148][ T9035]  ? ref_tracker_free+0x63a/0x7d0
[  241.185166][ T9035]  ? __pfx_netdev_nl_dev_get_dumpit+0x10/0x10
[  241.185192][ T9035]  ? __pfx_ref_tracker_free+0x10/0x10
[  241.185224][ T9035]  netlink_rcv_skb+0x208/0x470
[  241.185248][ T9035]  ? __pfx_genl_rcv_msg+0x10/0x10
[  241.185278][ T9035]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  241.185320][ T9035]  ? down_read+0x1ad/0x2e0
[  241.185346][ T9035]  genl_rcv+0x28/0x40
[  241.185373][ T9035]  netlink_unicast+0x75b/0x8d0
[  241.185407][ T9035]  netlink_sendmsg+0x805/0xb30
[  241.185444][ T9035]  ? __pfx_netlink_sendmsg+0x10/0x10
[  241.185472][ T9035]  ? aa_sock_msg_perm+0xf1/0x1d0
[  241.185503][ T9035]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  241.185526][ T9035]  ? __pfx_netlink_sendmsg+0x10/0x10
[  241.185551][ T9035]  __sock_sendmsg+0x219/0x270
[  241.185576][ T9035]  ____sys_sendmsg+0x505/0x830
[  241.185610][ T9035]  ? __pfx_____sys_sendmsg+0x10/0x10
[  241.185647][ T9035]  ? import_iovec+0x74/0xa0
[  241.185681][ T9035]  ___sys_sendmsg+0x21f/0x2a0
[  241.185711][ T9035]  ? __pfx____sys_sendmsg+0x10/0x10
[  241.185779][ T9035]  ? __fget_files+0x2a/0x420
[  241.185800][ T9035]  ? __fget_files+0x3a0/0x420
[  241.185834][ T9035]  __x64_sys_sendmsg+0x19b/0x260
[  241.185864][ T9035]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  241.185903][ T9035]  ? __pfx_ksys_write+0x10/0x10
[  241.185919][ T9035]  ? rcu_is_watching+0x15/0xb0
[  241.185951][ T9035]  ? do_syscall_64+0xbe/0x3b0
[  241.185979][ T9035]  do_syscall_64+0xfa/0x3b0
[  241.186000][ T9035]  ? lockdep_hardirqs_on+0x9c/0x150
[  241.186021][ T9035]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.186041][ T9035]  ? clear_bhb_loop+0x60/0xb0
[  241.186071][ T9035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.186091][ T9035] RIP: 0033:0x7f890058e929
[  241.186110][ T9035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.186128][ T9035] RSP: 002b:00007f89013b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  241.186149][ T9035] RAX: ffffffffffffffda RBX: 00007f89007b5fa0 RCX: 00007f890058e929
[  241.186164][ T9035] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  241.186177][ T9035] RBP: 00007f89013b5090 R08: 0000000000000000 R09: 0000000000000000
[  241.186190][ T9035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.186202][ T9035] R13: 0000000000000000 R14: 00007f89007b5fa0 R15: 00007fffc49c22b8
[  241.186235][ T9035]  </TASK>
[  241.763153][    T0] NOHZ tick-stop error: local softirq work is pending, handler #01!!!
[  241.772053][   T24] usb 2-1: USB disconnect, device number 51
[  242.152184][ T9050] syzkaller1: entered promiscuous mode
[  242.157801][ T9050] syzkaller1: entered allmulticast mode
[  242.214425][ T9050] XFS (rnullb0): Invalid superblock magic number
[  242.335729][   T24] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[  242.380122][ T9061] FAULT_INJECTION: forcing a failure.
[  242.380122][ T9061] name failslab, interval 1, probability 0, space 0, times 0
[  242.394176][ T9061] CPU: 1 UID: 0 PID: 9061 Comm: syz.0.1142 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  242.394204][ T9061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  242.394229][ T9061] Call Trace:
[  242.394237][ T9061]  <TASK>
[  242.394247][ T9061]  dump_stack_lvl+0x189/0x250
[  242.394280][ T9061]  ? __pfx____ratelimit+0x10/0x10
[  242.394303][ T9061]  ? __pfx_dump_stack_lvl+0x10/0x10
[  242.394331][ T9061]  ? __pfx__printk+0x10/0x10
[  242.394366][ T9061]  ? __pfx___might_resched+0x10/0x10
[  242.394397][ T9061]  should_fail_ex+0x414/0x560
[  242.394431][ T9061]  should_failslab+0xa8/0x100
[  242.394453][ T9061]  __kmalloc_noprof+0xcb/0x4f0
[  242.394480][ T9061]  ? __kasan_kmalloc+0x93/0xb0
[  242.394507][ T9061]  ? nla_strdup+0x9d/0x140
[  242.394533][ T9061]  nla_strdup+0x9d/0x140
[  242.394555][ T9061]  nf_tables_newflowtable+0xa0a/0x20d0
[  242.394597][ T9061]  ? __lock_acquire+0xab1/0xd20
[  242.394623][ T9061]  ? __pfx_nf_tables_newflowtable+0x10/0x10
[  242.394668][ T9061]  ? __nla_parse+0x40/0x60
[  242.394694][ T9061]  nfnetlink_rcv+0x1132/0x2520
[  242.394759][ T9061]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  242.394806][ T9061]  ? ref_tracker_free+0x63a/0x7d0
[  242.394857][ T9061]  ? __netlink_deliver_tap+0x807/0x850
[  242.394891][ T9061]  ? netlink_deliver_tap+0x2e/0x1b0
[  242.394914][ T9061]  ? netlink_deliver_tap+0x2e/0x1b0
[  242.394944][ T9061]  netlink_unicast+0x75b/0x8d0
[  242.394982][ T9061]  netlink_sendmsg+0x805/0xb30
[  242.395017][ T9061]  ? __pfx_netlink_sendmsg+0x10/0x10
[  242.395044][ T9061]  ? aa_sock_msg_perm+0xf1/0x1d0
[  242.395076][ T9061]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  242.395099][ T9061]  ? __pfx_netlink_sendmsg+0x10/0x10
[  242.395125][ T9061]  __sock_sendmsg+0x219/0x270
[  242.395150][ T9061]  ____sys_sendmsg+0x505/0x830
[  242.395188][ T9061]  ? __pfx_____sys_sendmsg+0x10/0x10
[  242.395226][ T9061]  ? import_iovec+0x74/0xa0
[  242.395258][ T9061]  ___sys_sendmsg+0x21f/0x2a0
[  242.395288][ T9061]  ? __pfx____sys_sendmsg+0x10/0x10
[  242.395356][ T9061]  ? __fget_files+0x2a/0x420
[  242.395377][ T9061]  ? __fget_files+0x3a0/0x420
[  242.395411][ T9061]  __x64_sys_sendmsg+0x19b/0x260
[  242.395441][ T9061]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  242.395480][ T9061]  ? __pfx_ksys_write+0x10/0x10
[  242.395496][ T9061]  ? rcu_is_watching+0x15/0xb0
[  242.395527][ T9061]  ? do_syscall_64+0xbe/0x3b0
[  242.395555][ T9061]  do_syscall_64+0xfa/0x3b0
[  242.395576][ T9061]  ? lockdep_hardirqs_on+0x9c/0x150
[  242.395597][ T9061]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.395617][ T9061]  ? clear_bhb_loop+0x60/0xb0
[  242.395642][ T9061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.395662][ T9061] RIP: 0033:0x7f6a4778e929
[  242.395680][ T9061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.395698][ T9061] RSP: 002b:00007f6a486d4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  242.395720][ T9061] RAX: ffffffffffffffda RBX: 00007f6a479b5fa0 RCX: 00007f6a4778e929
[  242.395735][ T9061] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000003
[  242.395748][ T9061] RBP: 00007f6a486d4090 R08: 0000000000000000 R09: 0000000000000000
[  242.395761][ T9061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  242.395773][ T9061] R13: 0000000000000000 R14: 00007f6a479b5fa0 R15: 00007ffc2d6b3318
[  242.395806][ T9061]  </TASK>
[  242.814824][   T24] usb 2-1: too many configurations: 9, using maximum allowed: 8
[  242.825738][   T24] usb 2-1: config index 0 descriptor too short (expected 8192, got 27)
[  242.837489][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  242.848673][   T24] usb 2-1: config 0 has no interfaces?
[  242.863121][   T24] usb 2-1: config index 1 descriptor too short (expected 8192, got 27)
[  242.871600][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  242.881804][   T24] usb 2-1: config 0 has no interfaces?
[  242.888332][   T24] usb 2-1: config index 2 descriptor too short (expected 8192, got 27)
[  242.896659][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  242.906885][   T24] usb 2-1: config 0 has no interfaces?
[  242.915184][   T24] usb 2-1: config index 3 descriptor too short (expected 8192, got 27)
[  242.923612][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  242.934415][   T24] usb 2-1: config 0 has no interfaces?
[  242.942378][   T24] usb 2-1: config index 4 descriptor too short (expected 8192, got 27)
[  242.950704][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  242.961223][   T24] usb 2-1: config 0 has no interfaces?
[  242.968117][   T24] usb 2-1: config index 5 descriptor too short (expected 8192, got 27)
[  242.976450][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  242.986607][   T24] usb 2-1: config 0 has no interfaces?
[  242.993124][   T24] usb 2-1: config index 6 descriptor too short (expected 8192, got 27)
[  243.001431][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  243.011809][   T24] usb 2-1: config 0 has no interfaces?
[  243.019049][   T24] usb 2-1: config index 7 descriptor too short (expected 8192, got 27)
[  243.027610][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  243.037743][   T24] usb 2-1: config 0 has no interfaces?
[  243.046440][   T24] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  243.055534][   T24] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  243.064274][   T24] usb 2-1: Product: syz
[  243.068446][   T24] usb 2-1: Manufacturer: syz
[  243.073039][   T24] usb 2-1: SerialNumber: syz
[  243.081037][   T24] usb 2-1: config 0 descriptor??
[  243.134670][ T9074] omfs: Invalid superblock (0)
[  243.213675][ T9077] syzkaller1: entered promiscuous mode
[  243.223277][ T9077] syzkaller1: entered allmulticast mode
[  243.351558][ T9048] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  243.467400][   T24] usb 2-1: USB disconnect, device number 52
[  243.888316][ T9108] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  244.100915][ T9119] IPv6: Can't replace route, no match found
[  244.111143][ T9119] FAULT_INJECTION: forcing a failure.
[  244.111143][ T9119] name failslab, interval 1, probability 0, space 0, times 0
[  244.136203][ T9119] CPU: 0 UID: 0 PID: 9119 Comm: syz.1.1158 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  244.136231][ T9119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  244.136243][ T9119] Call Trace:
[  244.136252][ T9119]  <TASK>
[  244.136260][ T9119]  dump_stack_lvl+0x189/0x250
[  244.136293][ T9119]  ? __pfx____ratelimit+0x10/0x10
[  244.136315][ T9119]  ? __pfx_dump_stack_lvl+0x10/0x10
[  244.136343][ T9119]  ? __pfx__printk+0x10/0x10
[  244.136384][ T9119]  should_fail_ex+0x414/0x560
[  244.136417][ T9119]  should_failslab+0xa8/0x100
[  244.136438][ T9119]  kmem_cache_alloc_noprof+0x73/0x3c0
[  244.136465][ T9119]  ? skb_clone+0x212/0x3a0
[  244.136498][ T9119]  skb_clone+0x212/0x3a0
[  244.136530][ T9119]  __netlink_deliver_tap+0x404/0x850
[  244.136568][ T9119]  ? netlink_deliver_tap+0x2e/0x1b0
[  244.136592][ T9119]  netlink_deliver_tap+0x19c/0x1b0
[  244.136618][ T9119]  netlink_sendskb+0x68/0x140
[  244.136640][ T9119]  netlink_rcv_skb+0x28c/0x470
[  244.136663][ T9119]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  244.136689][ T9119]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  244.136725][ T9119]  ? netlink_deliver_tap+0x2e/0x1b0
[  244.136750][ T9119]  ? netlink_deliver_tap+0x2e/0x1b0
[  244.136780][ T9119]  netlink_unicast+0x75b/0x8d0
[  244.136820][ T9119]  netlink_sendmsg+0x805/0xb30
[  244.136863][ T9119]  ? __pfx_netlink_sendmsg+0x10/0x10
[  244.136892][ T9119]  ? aa_sock_msg_perm+0xf1/0x1d0
[  244.136924][ T9119]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  244.136948][ T9119]  ? __pfx_netlink_sendmsg+0x10/0x10
[  244.136974][ T9119]  __sock_sendmsg+0x219/0x270
[  244.137000][ T9119]  ____sys_sendmsg+0x505/0x830
[  244.137034][ T9119]  ? __pfx_____sys_sendmsg+0x10/0x10
[  244.137073][ T9119]  ? import_iovec+0x74/0xa0
[  244.137106][ T9119]  ___sys_sendmsg+0x21f/0x2a0
[  244.137137][ T9119]  ? __pfx____sys_sendmsg+0x10/0x10
[  244.137204][ T9119]  ? __fget_files+0x2a/0x420
[  244.137226][ T9119]  ? __fget_files+0x3a0/0x420
[  244.137260][ T9119]  __x64_sys_sendmsg+0x19b/0x260
[  244.137292][ T9119]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  244.137331][ T9119]  ? __pfx_ksys_write+0x10/0x10
[  244.137348][ T9119]  ? rcu_is_watching+0x15/0xb0
[  244.137380][ T9119]  ? do_syscall_64+0xbe/0x3b0
[  244.137409][ T9119]  do_syscall_64+0xfa/0x3b0
[  244.137430][ T9119]  ? lockdep_hardirqs_on+0x9c/0x150
[  244.137452][ T9119]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.137473][ T9119]  ? clear_bhb_loop+0x60/0xb0
[  244.137497][ T9119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.137517][ T9119] RIP: 0033:0x7ff158d8e929
[  244.137535][ T9119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.137552][ T9119] RSP: 002b:00007ff159c66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  244.137574][ T9119] RAX: ffffffffffffffda RBX: 00007ff158fb5fa0 RCX: 00007ff158d8e929
[  244.137590][ T9119] RDX: 0000000000048002 RSI: 0000200000000080 RDI: 0000000000000003
[  244.137604][ T9119] RBP: 00007ff159c66090 R08: 0000000000000000 R09: 0000000000000000
[  244.137619][ T9119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  244.137632][ T9119] R13: 0000000000000000 R14: 00007ff158fb5fa0 R15: 00007ffdfc0b2ef8
[  244.137665][ T9119]  </TASK>
[  244.741556][ T9137] FAULT_INJECTION: forcing a failure.
[  244.741556][ T9137] name failslab, interval 1, probability 0, space 0, times 0
[  244.758122][ T9132] syzkaller1: entered promiscuous mode
[  244.758718][ T9137] CPU: 0 UID: 0 PID: 9137 Comm: syz.0.1162 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  244.758751][ T9137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  244.758764][ T9137] Call Trace:
[  244.758772][ T9137]  <TASK>
[  244.758780][ T9137]  dump_stack_lvl+0x189/0x250
[  244.758812][ T9137]  ? __pfx____ratelimit+0x10/0x10
[  244.758833][ T9137]  ? __pfx_dump_stack_lvl+0x10/0x10
[  244.758859][ T9137]  ? __pfx__printk+0x10/0x10
[  244.758893][ T9137]  ? __pfx___might_resched+0x10/0x10
[  244.758917][ T9137]  ? fs_reclaim_acquire+0x7d/0x100
[  244.758943][ T9137]  should_fail_ex+0x414/0x560
[  244.758976][ T9137]  should_failslab+0xa8/0x100
[  244.758996][ T9137]  __kmalloc_noprof+0xcb/0x4f0
[  244.759023][ T9137]  ? kvm_io_bus_register_dev+0x14a/0x620
[  244.759048][ T9137]  kvm_io_bus_register_dev+0x14a/0x620
[  244.759073][ T9137]  ? __kmalloc_cache_noprof+0x230/0x3d0
[  244.759100][ T9137]  ? kvm_assign_ioeventfd_idx+0x94/0xa20
[  244.759126][ T9137]  kvm_assign_ioeventfd_idx+0x603/0xa20
[  244.759163][ T9137]  kvm_ioeventfd+0x1ee/0x330
[  244.759187][ T9137]  kvm_vm_ioctl+0x942/0xc60
[  244.759214][ T9137]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  244.759256][ T9137]  ? kasan_quarantine_put+0xdd/0x220
[  244.759293][ T9137]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  244.759319][ T9137]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  244.759347][ T9137]  ? do_vfs_ioctl+0xbe8/0x1430
[  244.759377][ T9137]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  244.759418][ T9137]  ? __lock_acquire+0xab9/0xd20
[  244.759459][ T9137]  ? __fget_files+0x2a/0x420
[  244.759483][ T9137]  ? __fget_files+0x2a/0x420
[  244.759503][ T9137]  ? __fget_files+0x3a0/0x420
[  244.759522][ T9137]  ? __fget_files+0x2a/0x420
[  244.759546][ T9137]  ? bpf_lsm_file_ioctl+0x9/0x20
[  244.759571][ T9137]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  244.759595][ T9137]  __se_sys_ioctl+0xf9/0x170
[  244.759624][ T9137]  do_syscall_64+0xfa/0x3b0
[  244.759645][ T9137]  ? lockdep_hardirqs_on+0x9c/0x150
[  244.759665][ T9137]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.759684][ T9137]  ? clear_bhb_loop+0x60/0xb0
[  244.759707][ T9137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.759725][ T9137] RIP: 0033:0x7f6a4778e929
[  244.759749][ T9137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.759766][ T9137] RSP: 002b:00007f6a486d4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  244.759786][ T9137] RAX: ffffffffffffffda RBX: 00007f6a479b5fa0 RCX: 00007f6a4778e929
[  244.759801][ T9137] RDX: 0000200000000180 RSI: 000000004040ae79 RDI: 0000000000000004
[  244.759814][ T9137] RBP: 00007f6a486d4090 R08: 0000000000000000 R09: 0000000000000000
[  244.759826][ T9137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  244.759839][ T9137] R13: 0000000000000000 R14: 00007f6a479b5fa0 R15: 00007ffc2d6b3318
[  244.759869][ T9137]  </TASK>
[  245.062434][ T9132] syzkaller1: entered allmulticast mode
[  246.073381][   T55] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  246.166669][ T9181] netlink: 'syz.3.1179': attribute type 4 has an invalid length.
[  246.174619][ T9181] netlink: 'syz.3.1179': attribute type 2 has an invalid length.
[  246.186195][ T9181] loop8: detected capacity change from 0 to 7
[  246.194015][ T9181] Dev loop8: unable to read RDB block 7
[  246.199703][ T9181]  loop8: unable to read partition table
[  246.207303][ T9181] loop8: partition table beyond EOD, truncated
[  246.213635][ T9181] loop_reread_partitions: partition scan of loop8 (þ被xü—ŸÑà– ) failed (rc=-5)
[  246.227286][ T9182] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1178'.
[  246.243672][ T9182] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1178'.
[  246.253555][   T55] usb 3-1: Using ep0 maxpacket: 32
[  246.261483][   T55] usb 3-1: unable to get BOS descriptor or descriptor too short
[  246.274862][   T55] usb 3-1: config 128 has an invalid interface number: 127 but max is 3
[  246.276048][ T9181] Dev loop8: unable to read RDB block 7
[  246.291071][   T55] usb 3-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  246.293045][ T9181]  loop8: unable to read partition table
[  246.310907][ T9181] loop8: partition table beyond EOD, truncated
[  246.313346][   T55] usb 3-1: config 128 has 1 interface, different from the descriptor's value: 4
[  246.320242][ T9181] loop_reread_partitions: partition scan of loop8 (þ被xü—ŸÑà– ) failed (rc=-5)
[  246.340860][   T55] usb 3-1: config 128 has no interface number 0
[  246.348471][   T55] usb 3-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  246.367919][   T55] usb 3-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0
[  246.391821][   T55] usb 3-1: config 128 interface 127 has no altsetting 0
[  246.412583][   T55] usb 3-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  246.426470][   T55] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.457088][   T55] usb 3-1: Product: syz
[  246.461968][   T55] usb 3-1: Manufacturer: syz
[  246.475772][   T55] usb 3-1: SerialNumber: syz
[  246.901198][   T55] usb 3-1: USB disconnect, device number 41
[  246.904136][ T9200] random: crng reseeded on system resumption
[  246.921225][ T9200] FAULT_INJECTION: forcing a failure.
[  246.921225][ T9200] name failslab, interval 1, probability 0, space 0, times 0
[  246.936577][ T9200] CPU: 1 UID: 0 PID: 9200 Comm: syz.3.1185 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  246.936603][ T9200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  246.936614][ T9200] Call Trace:
[  246.936622][ T9200]  <TASK>
[  246.936630][ T9200]  dump_stack_lvl+0x189/0x250
[  246.936660][ T9200]  ? __pfx____ratelimit+0x10/0x10
[  246.936681][ T9200]  ? __pfx_dump_stack_lvl+0x10/0x10
[  246.936705][ T9200]  ? __pfx__printk+0x10/0x10
[  246.936738][ T9200]  ? __lock_acquire+0xab9/0xd20
[  246.936761][ T9200]  should_fail_ex+0x414/0x560
[  246.936795][ T9200]  should_failslab+0xa8/0x100
[  246.936816][ T9200]  __kmalloc_cache_noprof+0x70/0x3d0
[  246.936844][ T9200]  ? async_schedule_node_domain+0x5b/0x120
[  246.936867][ T9200]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  246.936899][ T9200]  async_schedule_node_domain+0x5b/0x120
[  246.936925][ T9200]  dev_cache_fw_image+0x364/0x3e0
[  246.936959][ T9200]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  246.936990][ T9200]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  246.937018][ T9200]  dpm_for_each_dev+0x56/0xb0
[  246.937047][ T9200]  fw_pm_notify+0x200/0x2a0
[  246.937074][ T9200]  ? __pfx_fw_pm_notify+0x10/0x10
[  246.937102][ T9200]  ? __pfx_autoremove_wake_function+0x10/0x10
[  246.937133][ T9200]  ? blocking_notifier_call_chain_robust+0x65/0x100
[  246.937171][ T9200]  notifier_call_chain+0x1b3/0x3e0
[  246.937207][ T9200]  blocking_notifier_call_chain_robust+0x85/0x100
[  246.937240][ T9200]  pm_notifier_call_chain_robust+0x2c/0x60
[  246.937266][ T9200]  snapshot_open+0x133/0x280
[  246.937290][ T9200]  ? __pfx_snapshot_open+0x10/0x10
[  246.937311][ T9200]  misc_open+0x2bc/0x330
[  246.937342][ T9200]  chrdev_open+0x4cc/0x5e0
[  246.937369][ T9200]  ? __pfx_chrdev_open+0x10/0x10
[  246.937402][ T9200]  ? __pfx_chrdev_open+0x10/0x10
[  246.937423][ T9200]  do_dentry_open+0xdf0/0x1970
[  246.937467][ T9200]  vfs_open+0x3b/0x340
[  246.937495][ T9200]  ? path_openat+0x2ecd/0x3830
[  246.937525][ T9200]  path_openat+0x2ee5/0x3830
[  246.937551][ T9200]  ? arch_stack_walk+0xfc/0x150
[  246.937618][ T9200]  ? __pfx_path_openat+0x10/0x10
[  246.937642][ T9200]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.937686][ T9200]  do_filp_open+0x1fa/0x410
[  246.937711][ T9200]  ? __lock_acquire+0xab9/0xd20
[  246.937734][ T9200]  ? __pfx_do_filp_open+0x10/0x10
[  246.937786][ T9200]  ? _raw_spin_unlock+0x28/0x50
[  246.937816][ T9200]  ? alloc_fd+0x64c/0x6c0
[  246.937851][ T9200]  do_sys_openat2+0x121/0x1c0
[  246.937880][ T9200]  ? __pfx_do_sys_openat2+0x10/0x10
[  246.937907][ T9200]  ? ksys_write+0x22a/0x250
[  246.937929][ T9200]  ? __pfx_ksys_write+0x10/0x10
[  246.937952][ T9200]  __x64_sys_openat+0x138/0x170
[  246.937985][ T9200]  do_syscall_64+0xfa/0x3b0
[  246.938007][ T9200]  ? lockdep_hardirqs_on+0x9c/0x150
[  246.938028][ T9200]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.938048][ T9200]  ? clear_bhb_loop+0x60/0xb0
[  246.938073][ T9200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.938092][ T9200] RIP: 0033:0x7fbeb8d8e929
[  246.938111][ T9200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.938129][ T9200] RSP: 002b:00007fbeb9bc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  246.938150][ T9200] RAX: ffffffffffffffda RBX: 00007fbeb8fb5fa0 RCX: 00007fbeb8d8e929
[  246.938166][ T9200] RDX: 0000000000000481 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  246.938180][ T9200] RBP: 00007fbeb9bc2090 R08: 0000000000000000 R09: 0000000000000000
[  246.938193][ T9200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  246.938206][ T9200] R13: 0000000000000001 R14: 00007fbeb8fb5fa0 R15: 00007ffdd8f8ead8
[  246.938239][ T9200]  </TASK>
[  246.941506][ T9200] 
[  247.298364][ T9200] ============================================
[  247.304497][ T9200] WARNING: possible recursive locking detected
[  247.310637][ T9200] 6.16.0-rc4-next-20250704-syzkaller #0 Not tainted
[  247.317202][ T9200] --------------------------------------------
[  247.323333][ T9200] syz.3.1185/9200 is trying to acquire lock:
[  247.329287][ T9200] ffffffff8ef2a9e8 (fw_lock){+.+.}-{4:4}, at: assign_fw+0x52/0x890
[  247.337199][ T9200] 
[  247.337199][ T9200] but task is already holding lock:
[  247.344544][ T9200] ffffffff8ef2a9e8 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x1e8/0x2a0
[  247.352805][ T9200] 
[  247.352805][ T9200] other info that might help us debug this:
[  247.360844][ T9200]  Possible unsafe locking scenario:
[  247.360844][ T9200] 
[  247.368274][ T9200]        CPU0
[  247.371535][ T9200]        ----
[  247.374796][ T9200]   lock(fw_lock);
[  247.378505][ T9200]   lock(fw_lock);
[  247.382209][ T9200] 
[  247.382209][ T9200]  *** DEADLOCK ***
[  247.382209][ T9200] 
[  247.390374][ T9200]  May be due to missing lock nesting notation
[  247.390374][ T9200] 
[  247.398673][ T9200] 5 locks held by syz.3.1185/9200:
[  247.403764][ T9200]  #0: ffffffff8edd53e8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  247.412204][ T9200]  #1: ffffffff8e3eb228 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x4a/0x70
[  247.422547][ T9200]  #2: ffffffff8e40f810 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0x65/0x100
[  247.434370][ T9200]  #3: ffffffff8ef2a9e8 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x1e8/0x2a0
[  247.443073][ T9200]  #4: ffffffff8ef25a68 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x29/0xb0
[  247.452386][ T9200] 
[  247.452386][ T9200] stack backtrace:
[  247.458258][ T9200] CPU: 1 UID: 0 PID: 9200 Comm: syz.3.1185 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full) 
[  247.458279][ T9200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  247.458290][ T9200] Call Trace:
[  247.458297][ T9200]  <TASK>
[  247.458304][ T9200]  dump_stack_lvl+0x189/0x250
[  247.458329][ T9200]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.458351][ T9200]  ? __pfx__printk+0x10/0x10
[  247.458374][ T9200]  ? print_lock_name+0xde/0x100
[  247.458396][ T9200]  print_deadlock_bug+0x28b/0x2a0
[  247.458418][ T9200]  validate_chain+0x1a3f/0x2140
[  247.458448][ T9200]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  247.458464][ T9200]  ? lockdep_hardirqs_on+0x9c/0x150
[  247.458484][ T9200]  __lock_acquire+0xab9/0xd20
[  247.458503][ T9200]  ? assign_fw+0x52/0x890
[  247.458521][ T9200]  lock_acquire+0x120/0x360
[  247.458538][ T9200]  ? assign_fw+0x52/0x890
[  247.458558][ T9200]  ? kasan_save_free_info+0x46/0x50
[  247.458576][ T9200]  ? kmem_cache_free+0x18f/0x400
[  247.458598][ T9200]  ? __async_dev_cache_fw_image+0x7f/0x280
[  247.458623][ T9200]  __mutex_lock+0x182/0xe80
[  247.458640][ T9200]  ? assign_fw+0x52/0x890
[  247.458658][ T9200]  ? path_openat+0x2ee5/0x3830
[  247.458679][ T9200]  ? do_filp_open+0x1fa/0x410
[  247.458700][ T9200]  ? __x64_sys_openat+0x138/0x170
[  247.458720][ T9200]  ? do_syscall_64+0xfa/0x3b0
[  247.458736][ T9200]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.458755][ T9200]  ? assign_fw+0x52/0x890
[  247.458774][ T9200]  ? __pfx___mutex_lock+0x10/0x10
[  247.458796][ T9200]  ? kasan_quarantine_put+0xdd/0x220
[  247.458816][ T9200]  ? lockdep_hardirqs_on+0x9c/0x150
[  247.458833][ T9200]  assign_fw+0x52/0x890
[  247.458852][ T9200]  ? _request_firmware+0xe57/0x15b0
[  247.458871][ T9200]  ? kmem_cache_free+0x18f/0x400
[  247.458895][ T9200]  _request_firmware+0xeea/0x15b0
[  247.458914][ T9200]  ? __lock_acquire+0xab9/0xd20
[  247.458937][ T9200]  ? __pfx__request_firmware+0x10/0x10
[  247.458957][ T9200]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  247.458973][ T9200]  ? lockdep_hardirqs_on+0x9c/0x150
[  247.458989][ T9200]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  247.459004][ T9200]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  247.459019][ T9200]  ? async_schedule_node_domain+0xa5/0x120
[  247.459039][ T9200]  __async_dev_cache_fw_image+0x7f/0x280
[  247.459061][ T9200]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  247.459085][ T9200]  async_schedule_node_domain+0xde/0x120
[  247.459104][ T9200]  dev_cache_fw_image+0x364/0x3e0
[  247.459128][ T9200]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  247.459151][ T9200]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  247.459173][ T9200]  dpm_for_each_dev+0x56/0xb0
[  247.459197][ T9200]  fw_pm_notify+0x200/0x2a0
[  247.459218][ T9200]  ? __pfx_fw_pm_notify+0x10/0x10
[  247.459239][ T9200]  ? __pfx_autoremove_wake_function+0x10/0x10
[  247.459263][ T9200]  ? blocking_notifier_call_chain_robust+0x65/0x100
[  247.459289][ T9200]  notifier_call_chain+0x1b3/0x3e0
[  247.459312][ T9200]  blocking_notifier_call_chain_robust+0x85/0x100
[  247.459335][ T9200]  pm_notifier_call_chain_robust+0x2c/0x60
[  247.459354][ T9200]  snapshot_open+0x133/0x280
[  247.459372][ T9200]  ? __pfx_snapshot_open+0x10/0x10
[  247.459389][ T9200]  misc_open+0x2bc/0x330
[  247.459411][ T9200]  chrdev_open+0x4cc/0x5e0
[  247.459434][ T9200]  ? __pfx_chrdev_open+0x10/0x10
[  247.459453][ T9200]  ? __pfx_chrdev_open+0x10/0x10
[  247.459469][ T9200]  do_dentry_open+0xdf0/0x1970
[  247.459496][ T9200]  vfs_open+0x3b/0x340
[  247.459513][ T9200]  ? path_openat+0x2ecd/0x3830
[  247.459536][ T9200]  path_openat+0x2ee5/0x3830
[  247.459557][ T9200]  ? arch_stack_walk+0xfc/0x150
[  247.459589][ T9200]  ? __pfx_path_openat+0x10/0x10
[  247.459609][ T9200]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.459632][ T9200]  do_filp_open+0x1fa/0x410
[  247.459653][ T9200]  ? __lock_acquire+0xab9/0xd20
[  247.459670][ T9200]  ? __pfx_do_filp_open+0x10/0x10
[  247.459699][ T9200]  ? _raw_spin_unlock+0x28/0x50
[  247.459722][ T9200]  ? alloc_fd+0x64c/0x6c0
[  247.459741][ T9200]  do_sys_openat2+0x121/0x1c0
[  247.459762][ T9200]  ? __pfx_do_sys_openat2+0x10/0x10
[  247.459782][ T9200]  ? ksys_write+0x22a/0x250
[  247.459796][ T9200]  ? __pfx_ksys_write+0x10/0x10
[  247.459811][ T9200]  __x64_sys_openat+0x138/0x170
[  247.459833][ T9200]  do_syscall_64+0xfa/0x3b0
[  247.459850][ T9200]  ? lockdep_hardirqs_on+0x9c/0x150
[  247.459866][ T9200]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.459881][ T9200]  ? clear_bhb_loop+0x60/0xb0
[  247.459899][ T9200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.459915][ T9200] RIP: 0033:0x7fbeb8d8e929
[  247.459929][ T9200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.459944][ T9200] RSP: 002b:00007fbeb9bc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  247.459961][ T9200] RAX: ffffffffffffffda RBX: 00007fbeb8fb5fa0 RCX: 00007fbeb8d8e929
[  247.459974][ T9200] RDX: 0000000000000481 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  247.459986][ T9200] RBP: 00007fbeb9bc2090 R08: 0000000000000000 R09: 0000000000000000
[  247.459996][ T9200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.460006][ T9200] R13: 0000000000000001 R14: 00007fbeb8fb5fa0 R15: 00007ffdd8f8ead8
[  247.460023][ T9200]  </TASK>
[  255.645040][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  255.651441][ T1304] ieee802154 phy1 wpan1: encryption failed: -22