last executing test programs:

5.477811711s ago: executing program 3 (id=619):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000300), r2)
sendmsg$SEG6_CMD_GET_TUNSRC(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r3, 0x223, 0x0, 0x0, {0x3}}, 0x14}}, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002440)=ANY=[@ANYBLOB="34000000090605000a00000000000000000000000900020073797a300000000005000100060000000c00078006000440"], 0x34}}, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001240)={0x0, 0x0, 0x0}, 0x0)

5.402055087s ago: executing program 3 (id=621):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000d06000)=0x1, 0x4)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000400)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, &(0x7f0000000140)={0x28, 0x6, r2, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x800})
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, &(0x7f0000000000)={0x28, 0x4, r2, 0x0, &(0x7f00004f9000/0x3000)=nil, 0x3000})
ioctl$IOMMU_IOAS_COPY(r1, 0x3b83, &(0x7f0000000040)={0x28, 0x7, r2, r2, 0xfeb, 0xfffffffffefffffc, 0x3fff})
connect$inet(r0, &(0x7f0000000080)={0x2, 0x3fff, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0), 0x4)

4.483961822s ago: executing program 3 (id=624):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback={0x100000}, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)

4.47639571s ago: executing program 3 (id=625):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x60a00, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(aes-fixed-time)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000340)="f78d9ca38f", 0x5}], 0x1}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000004, 0x12, r0, 0xa0e52000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd0000000000000008000340000100000500010001"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000000104050000000000000000000a000000050001"], 0x24}, 0x1, 0x0, 0x0, 0xc010}, 0x22000004)
clock_nanosleep(0x9, 0x0, &(0x7f00000004c0), 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000001100), 0x2, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
r4 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$lan78xx(r4, 0x0, &(0x7f0000000540)={0x34, &(0x7f0000000240)=ANY=[@ANYBLOB="000ec2"], 0x0, 0x0, 0x0, 0x0, 0x0})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, &(0x7f0000000000)={{r0}, {@void, @max}})

3.079547904s ago: executing program 2 (id=632):
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000200)='./file0\x00') (async)
chmod(&(0x7f0000000100)='./file0\x00', 0x20e)
lchown(&(0x7f00000001c0)='./file0\x00', 0xee00, 0x0) (async)
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x22052, r4, 0xa4717000)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000080)="67400f07c40249af4b8bb9800000c00f3235010200000f300f20a366450f769e00000100440f20c03588001d00445b66baf80cb88cf4b684ef66bafc0ced460f01c9c4827d24c366ba4cf0ff07ef87f345a57a43e16806a4", 0x58}], 0x1, 0x7c, 0x0, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
mount$fuse(0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYRESDEC=0x0, @ANYRESDEC=0x0])
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000980)={<r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8924, &(0x7f0000000040)={'macvlan0\x00', @random="0100"}) (async)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4) (async)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r8=>0x0})
sendto$packet(r7, &(0x7f0000000180)="0b032200e0ff25a60200475400f6a13bb10000a8880008004803", 0xff18, 0x41, &(0x7f0000000140)={0x11, 0x10, r8}, 0x14) (async)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000001c0)={{0x2000, 0xeeee0000, 0x8, 0x9, 0xfb, 0xe4, 0x40, 0x7, 0x0, 0x2e, 0x30}, {0x5000, 0x2000, 0x3, 0x0, 0x40, 0x1, 0x7d, 0x6, 0x5, 0x3, 0x3, 0xb5}, {0x2, 0xdddd0000, 0xe, 0x5, 0x3, 0x7, 0x9, 0x9, 0x1, 0xa7, 0x5, 0x81}, {0x6000, 0xeeee0000, 0xd, 0x6, 0x4, 0x42, 0xb, 0xff, 0x8, 0x7, 0xe}, {0xeeee0000, 0xd000, 0xb, 0x3, 0x15, 0x6, 0xe, 0x7f, 0x7, 0x83, 0xf7, 0x83}, {0x1000, 0x80a0000, 0xc, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x80, 0xf, 0x1, 0x7}, {0x1000, 0x8000000, 0x4, 0x5, 0x7, 0x5, 0x7, 0x3, 0x5, 0x81, 0x1, 0x70}, {0x100000, 0x80a0000, 0xe, 0x5, 0xf, 0x7, 0x1, 0x34, 0x2, 0xc, 0xb0, 0x9}, {0xeeef0000, 0x30}, {0x10000, 0x7}, 0x80000031, 0x0, 0x8000000, 0x2024, 0x0, 0x0, 0x3000, [0x6800000000000000, 0x4, 0x3, 0xff]}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000300)='./cgroup\x00', &(0x7f0000000080)='nfs\x00', 0x20088c, 0x0) (async)
r9 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r9, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
setsockopt$CAN_RAW_LOOPBACK(r9, 0x65, 0x3, &(0x7f00000005c0), 0x4) (async)
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000480)={0x0, <r10=>0x0})
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f00000004c0)={r10})

2.802064218s ago: executing program 2 (id=633):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x7c, 0x2, 0x6, 0x5, 0xa, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x96}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x7}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0xa0}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x7c}}, 0x0)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x300000d)

2.533374575s ago: executing program 2 (id=635):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043) (fail_nth: 7)

2.522987432s ago: executing program 2 (id=636):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x66002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x9, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x14)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r2, 0x0)
setsockopt$netrom_NETROM_T1(r2, 0x103, 0x1, &(0x7f0000000080)=0x7, 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x4}, @CTA_SEQ_ADJ_REPLY={0x4, 0xf}]}, 0x68}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000005, 0x22052, r0, 0x2000)

2.343107896s ago: executing program 1 (id=637):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@verity_on}]})
openat2$dir(0xffffff9c, &(0x7f00000000c0)='./file0/file1\x00', &(0x7f0000000140)={0x40, 0x110, 0x2}, 0x18) (fail_nth: 7)

2.116032492s ago: executing program 2 (id=638):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)={0x34, r1, 0x1, 0x40000000, 0x0, {0x3a}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

2.115535481s ago: executing program 2 (id=639):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(r0, 0x0, 0x4000000a, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xfff, 0x2, 0xa)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000340), 0x101, 0x0)
pwritev(r1, &(0x7f0000001300)=[{&(0x7f0000001040)='4', 0x1}], 0x1, 0x0, 0x0)
r2 = syz_usb_connect$cdc_ecm(0x3, 0x57, &(0x7f00000001c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x45, 0x1, 0x1, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x0, 0x5d, 0x12, 0x2, 0x6, 0x0, 0x0, {{0x6, 0x24, 0x6, 0x0, 0x0, '7'}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x2}}, {[{{0x9, 0x5, 0x81, 0x3, 0x10, 0x3c, 0x7e, 0x1}}], {{0x9, 0x5, 0x82, 0x2, 0x60, 0x0, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xfe, 0x10, 0x7f}}}}}]}}]}}, 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r2, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write(r2, 0x82, 0xfffffffffffffd6e, &(0x7f0000000140)="16688a4a3f1cd2db8dcf350051f14ac00d7c36e54167f08f961d2fc0c37d7c8c2136536697a794f470c5f444560dedb1b190fa34325a3c256fb8b4e2297215f331")
r3 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
execveat$binfmt(0xffffffffffffff9c, r3, 0x0, 0x0, 0x0)
openat$binfmt(0xffffffffffffff9c, r3, 0x2, 0x0)
r4 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg(r4, &(0x7f00000098c0)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x0, 0x6de, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6, 0x4}, 0x80, 0x0}}], 0x1, 0x20000020)
syz_open_dev$I2C(&(0x7f0000000100), 0x1fffffffffe, 0x101041)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8081, 0x0)

1.95628666s ago: executing program 1 (id=640):
syz_usb_connect(0x0, 0xf5, &(0x7f0000002080)=ANY=[@ANYBLOB="12010000772aed408680070bb96c010203010902e30003dc2000000904003f000e01000505a40600010524007f000d240f0104000000080000000006241a03000a05240101070424020a1524120009a317a88b045e4f01a607c0ffcb7e392a09044c03003a92a2010a240109000102010205240401050c2402030101040307b79c5f081d38c3b54f63f7bf00ff070c2402060002050502"], 0x0)
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x101802, 0x0)
writev(r0, &(0x7f0000000300)=[{&(0x7f0000000680)="580000004b8004023655fdbaded39d65000b4824ca940417a3cd3639e431e8e2125f6c00940f6a0325010ebc0000000000000080001328baf0fffeffe809005300fff5dd02000000000000000c10003d5bcf6916b4114b32793792c395da89991a8be619c7ce1ecf8b6e3501aeb67cdb99f356f9518492cbf6d88e98f0df275f9f6dd0e185ac9b0b8902c883e0b63cf78a6f36b97cab227f62b6d35dcd058a8957d1bbf401e51d4302cbc17c3201e7b12fa4daac244b96d402183b429bbe400236", 0xc1}], 0x1)

1.876655778s ago: executing program 0 (id=641):
r0 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0884113, &(0x7f0000000540)={0x0, 0x101, 0x3fb, 0x3, 0x0, 0x1, 0x0, 0x918d, 0x9, 0xfffffffeffffffff, 0x2, 0x3})
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
sendmsg(r3, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
r4 = socket$inet6(0xa, 0x1, 0xfffffbff)
sendmsg$inet6(r4, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380), 0x1}, 0x4004011)

1.405427214s ago: executing program 3 (id=642):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r0, &(0x7f00000005c0)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47b07c7d], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000], [0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000]}, 0x45c)
ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x0)
r1 = dup(r0)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x5)
ioctl$UI_DEV_CREATE(r1, 0x5501)
write$uinput_user_dev(r1, &(0x7f00000000c0)={'syz0\x00', {0xfff7, 0xc, 0x100, 0x81}, 0x1d, [0x7b, 0xb7e2, 0x3, 0x9, 0x100, 0x3, 0x1, 0x7, 0x9, 0x2, 0x7, 0xa, 0x3, 0x0, 0x7f, 0xd, 0x7fff, 0x6, 0x6, 0x5, 0x6, 0x6, 0x7, 0x6, 0xff, 0x2, 0xfffff5ee, 0x401, 0x0, 0xfc75, 0x8, 0x9, 0x4, 0x2, 0xffffffff, 0x81, 0xfffff765, 0x2, 0x7, 0xfffffff9, 0xa, 0x2, 0x5, 0x0, 0x4, 0x6, 0x7, 0x4c, 0xfffffffd, 0x80, 0x8, 0x8, 0x9, 0x7, 0x8000101, 0xc3c, 0x1733, 0x7fff, 0x7ffc, 0x1, 0x6, 0x5, 0x1, 0x4], [0x8, 0x3, 0x8, 0x8, 0x0, 0x9, 0x4, 0x0, 0x25, 0x10, 0x6, 0x7, 0x8, 0xe62, 0xffffff73, 0x1000, 0x6, 0x13e5, 0x3, 0x3, 0x1000, 0x7, 0x1, 0x3b40, 0x4, 0x1000, 0x5, 0x7fff, 0x8, 0x5a, 0xffff2503, 0x7fffffff, 0x6995, 0x1, 0x80000000, 0x8, 0xdaa, 0x5, 0x2, 0x76c4, 0xfffffffd, 0x5, 0x10, 0x10000, 0xd, 0x2, 0x9, 0x10, 0x4000e, 0x9, 0x7, 0xa, 0x9, 0x3, 0x8000008, 0x3, 0x2, 0x3a6, 0x27f8, 0xc0d, 0xfffffffd, 0x4, 0xc, 0xfffffffb], [0xa3, 0x6, 0x6, 0x9, 0x1000, 0x0, 0x80000000, 0x5, 0x7f, 0xa, 0x100, 0x1000, 0xf1, 0x6, 0xc, 0x10000, 0x72, 0xc, 0x633, 0xd, 0x7, 0x6, 0x80000000, 0x6, 0x0, 0x7, 0x8, 0x2ef3adeb, 0x10, 0x2, 0x8, 0x8, 0x74, 0x4, 0x7, 0x7ff, 0xfffffff2, 0x63, 0x7, 0x10000, 0x3, 0x3, 0x20a7fd9e, 0xfffffffd, 0x2, 0xa1, 0x0, 0x9d, 0x7, 0xa8a, 0x2, 0x6, 0x77, 0x8, 0x1ff, 0x7, 0x7, 0x2, 0x0, 0x2, 0x8, 0x2, 0x3, 0x5], [0x4, 0x4, 0x5, 0x8000, 0x493e, 0x3, 0x35ff4447, 0x7, 0x5, 0x4, 0x7fff, 0x5, 0x5, 0x3ff, 0xb88f, 0xffff0000, 0x9, 0xf7df, 0x2, 0x10, 0x8, 0x2, 0xff, 0x6, 0x4, 0x4, 0x0, 0x0, 0x7, 0x4e6, 0x8, 0x6, 0x5ef, 0x8000, 0xc, 0x2, 0x401, 0x1, 0x5, 0x8, 0x9a8, 0x99f, 0x231, 0x3ff, 0x8, 0x1, 0xffff0001, 0x1, 0x1, 0x10, 0x8, 0x5396, 0x6161, 0x9, 0x101, 0x1ff, 0x8, 0x431, 0x6, 0x5, 0x4, 0x7b, 0x7fc, 0x9]}, 0x45c) (fail_nth: 5)

1.098621514s ago: executing program 3 (id=643):
syz_usb_connect$uac1(0x0, 0x9f, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109028d0003010000000904000000010100000a24010000000201020624040000520b2405000053f11ee5f7260b24050000133b9bda531c090501000001020000090401010101020000090501090000000000072501000000000904020000010200000904020101010200000b240209000200018b7e8e0724010000000009058209ff"], 0x0)
creat(&(0x7f0000001380)='./file0\x00', 0x29)
mount(&(0x7f0000000000)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='rootfs\x00', 0x298444, 0x0)

1.006450577s ago: executing program 0 (id=644):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r2, 0xc06864b8, &(0x7f0000000000)={0x0, 0x40, 0x3f, 0x30315559, 0x0, [], [], [], [0x2]})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x400001, 0x0)
pipe2(&(0x7f0000000340), 0x4000)
ioctl$KVM_SET_IRQCHIP(r4, 0xc048aec8, &(0x7f0000000080)={0x1, 0x0, @ioapic={0x3000, 0x0, 0x0, 0x0, 0x0, [{}, {}, {}, {}, {}, {0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {0x20}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x40}]}})
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)={0x34, r1, 0x1, 0x0, 0x0, {0x3a}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

888.129642ms ago: executing program 0 (id=645):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x8aba, 0x4, 0x4, 0x6, 0x7, 0xf, 0x120000, 0x5, 0x0, 0x8, 0x8000000000000001, 0x2, 0xfffffffffffffffe, 0x101, 0x3, 0x1], 0xeeef0000, 0x141200})
ioctl$KVM_CAP_HYPERV_SYNIC(r2, 0x4068aea3, &(0x7f0000000380))
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080)=@x86={0x8, 0x6, 0x1, 0x0, 0xfffffff9, 0x7a, 0x2f, 0x8, 0x4, 0x3, 0x3, 0x9, 0x0, 0x9, 0x8, 0xf7, 0x3, 0x7f, 0x62, '\x00', 0x1, 0x3})
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x3)
r3 = socket(0x28, 0x5, 0x0)
setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000180)={0x28, 0x5}, 0x8)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

823.598915ms ago: executing program 0 (id=646):
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x40004)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003a80)=ANY=[@ANYBLOB="883800003f000701feffffff02000000017c00000400f6000c0001800600060008060000643802"], 0x3888}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000140), 0x88980, 0x0)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_netrom_SIOCADDRT(r1, 0x890b, &(0x7f0000000180)={0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bpq0, 0x10001, 'syz1\x00', @bcast, 0x7, 0x2, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null]})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780"], 0x5c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x4c, 0x9, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x6}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10040047}, 0x4000814)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000000306010800000000000000000600000705000100070000000500010007000000050001000700000005000100070000000900020073797a3000000000050001000700000005000100070000000900020073797a30000000000900020073797a30000000000900020073"], 0x74}, 0x1, 0x0, 0x0, 0x80c1}, 0x50)
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
futex(&(0x7f0000000140), 0x8, 0x200, 0x0, 0x0, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0205647, &(0x7f0000000100)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f90b, 0xffffc002, '\x00', @p_u8=&(0x7f0000000280)}})
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x2, {[@main=@item_012={0x1, 0x0, 0x7, "a4"}]}}, 0x0}, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000940)={0x84, &(0x7f00000004c0)={0x0, 0x14, 0xd, "5e6424818327b2369deca65eb2"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000880)={0x84, &(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00M'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)

522.136253ms ago: executing program 1 (id=647):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x141342, 0x0) (async)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r1 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x16, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}}) (async)
r2 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400000025000100000000000000000007"], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async)
mkdir(&(0x7f0000000540)='./file0\x00', 0x108) (async)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x5) (async)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000200)=0xdb)
setrlimit(0xc, &(0x7f0000000040)={0x2, 0x2})
mount(&(0x7f0000001400)=@rnullb, &(0x7f0000001440)='./file0\x00', &(0x7f0000000000)='romfs\x00', 0x0, 0x0) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_DREG={0x8}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0xa}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
sendfile(r0, r0, 0x0, 0x7fffeffe)

239.725589ms ago: executing program 1 (id=648):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r1, 0x65, 0x4, &(0x7f0000000340)=0x1, 0x4)
syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)

195.952335ms ago: executing program 0 (id=649):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, <r0=>0x0}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, r0, {0x7, 0x1f, 0x0, 0x40, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008900)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bcd4681f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b2c1ec000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008df76a250000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea21056000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000131a5d9400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x20, 0x0, 0xf098, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000240)={0x1f, 0xfffffffffffffffe, 0x0, 0x0, 0x7, 0x4, 0x0, 0xfffffffffffffffc}, 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000c, 0x204031, 0xffffffffffffffff, 0xffffd000)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000004900)="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", 0x2000, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

154.773991ms ago: executing program 1 (id=650):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000040)={0x7, {{0xa, 0x4e22, 0xae, @loopback, 0x5}}, {{0xa, 0x4e23, 0xd97, @mcast1, 0x6}}}, 0x108)
syz_emit_vhci(&(0x7f0000002dc0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_rsp={{0x7, 0x5, 0x4}, {0x8, 0xc60}}}}, 0x11)
fcntl$setownex(0xffffffffffffffff, 0xf, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r1, 0x40085112, &(0x7f0000000640)=@e={0xff, 0x0, 0x0, 0x0, @generic})
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000003a40), 0x41, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r2, 0x400c330d, &(0x7f0000000000)={0x6, 0x801})

102.217257ms ago: executing program 0 (id=651):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
fadvise64(r0, 0x91, 0x93, 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a310000000014000480080002400000000008000140000000000900010073797a300000000070000000060a010400000000000000000100000048000480240001800b00010072656a65637400001400028008000140000000000500020000000000200001800700010072740000140002800800014000000009080002400000000008000b40000000000900010073797a300000000014000000110001"], 0xf8}, 0x1, 0x0, 0x0, 0x2040441}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="600000000206030000000000000000000500000014000780080008000000004008000640000000060900020073797a32000000000500040000000000050005000a000000050001000600000011000300686173683a6e6574"], 0x60}}, 0x80)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r5=>0x0})
setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f00000000c0)={@remote, r5}, 0x14)
sendmmsg$inet6(r3, &(0x7f0000000500)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @mcast2}, 0xfffffffffffffdac, 0x0, 0xfffffffffffffe03, &(0x7f0000000100)=ANY=[@ANYBLOB="0808001e000029000000320000008a630000006f672b240aa53dc012f4d2fdbec30000", @ANYRES32=r5], 0x28}}], 0x1, 0x4004000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x22052, r0, 0xa471a000)

0s ago: executing program 1 (id=652):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000004c0)={0x0, &(0x7f0000002140)=[<r2=>0x0, 0x0], 0x0, 0x0, 0x0, 0x2})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x2)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, &(0x7f00000020c0)={"24221e0638856af4ee6ca095c968edcb9aeb45d03950fcf7d80a516fefe05986", 0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r1, 0xc01064c2, &(0x7f0000002100)={0x0, 0x1, r3})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00')
read$FUSE(r4, &(0x7f0000000080)={0x2020}, 0x2020)
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000005c0)={0x0, 0x0, r2, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_RMFB(r0, 0xc00464d0, &(0x7f0000000100)=r5)

kernel console output (not intermixed with test programs):

5.680173][ T7815] name failslab, interval 1, probability 0, space 0, times 0
[  105.693289][ T7815] CPU: 0 UID: 0 PID: 7815 Comm: syz.2.445 Not tainted syzkaller #0 PREEMPT(full) 
[  105.693314][ T7815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  105.693324][ T7815] Call Trace:
[  105.693330][ T7815]  <TASK>
[  105.693337][ T7815]  dump_stack_lvl+0x189/0x250
[  105.693363][ T7815]  ? __pfx____ratelimit+0x10/0x10
[  105.693382][ T7815]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.693401][ T7815]  ? __pfx__printk+0x10/0x10
[  105.693421][ T7815]  ? __pfx___might_resched+0x10/0x10
[  105.693438][ T7815]  ? lock_acquire+0x5f/0x360
[  105.693453][ T7815]  should_fail_ex+0x414/0x560
[  105.693476][ T7815]  should_failslab+0xa8/0x100
[  105.693490][ T7815]  kmem_cache_alloc_node_noprof+0x76/0x390
[  105.693511][ T7815]  ? dup_task_struct+0x52/0x860
[  105.693531][ T7815]  dup_task_struct+0x52/0x860
[  105.693550][ T7815]  copy_process+0x54b/0x3c00
[  105.693578][ T7815]  ? __pfx_copy_process+0x10/0x10
[  105.693597][ T7815]  ? __raw_spin_lock_init+0x45/0x100
[  105.693619][ T7815]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  105.693641][ T7815]  vhost_task_create+0x1c4/0x290
[  105.693660][ T7815]  ? arch_stack_walk+0xfc/0x150
[  105.693679][ T7815]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  105.693702][ T7815]  ? __pfx_vhost_task_create+0x10/0x10
[  105.693724][ T7815]  ? __pfx_vhost_task_fn+0x10/0x10
[  105.693748][ T7815]  ? kasan_save_track+0x4f/0x80
[  105.693779][ T7815]  kvm_mmu_post_init_vm+0x14c/0x300
[  105.693796][ T7815]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  105.693816][ T7815]  ? __mutex_trylock_common+0x153/0x260
[  105.693835][ T7815]  ? __pfx___mutex_trylock_common+0x10/0x10
[  105.693854][ T7815]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  105.693872][ T7815]  ? rcu_is_watching+0x15/0xb0
[  105.693889][ T7815]  ? trace_contention_end+0x39/0x120
[  105.693907][ T7815]  ? __mutex_lock+0x335/0x1350
[  105.693932][ T7815]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  105.693952][ T7815]  ? rcu_is_watching+0x15/0xb0
[  105.693969][ T7815]  ? lock_release+0x4b/0x3e0
[  105.693984][ T7815]  ? get_task_pid+0x22/0x310
[  105.694006][ T7815]  kvm_vcpu_ioctl+0x95c/0xe90
[  105.694022][ T7815]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  105.694036][ T7815]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  105.694063][ T7815]  ? __fget_files+0x3a0/0x420
[  105.694078][ T7815]  ? __fget_files+0x2a/0x420
[  105.694094][ T7815]  ? bpf_lsm_file_ioctl+0x9/0x20
[  105.694113][ T7815]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  105.694126][ T7815]  __se_sys_ioctl+0xf9/0x170
[  105.694147][ T7815]  do_syscall_64+0xfa/0xfa0
[  105.694165][ T7815]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.694180][ T7815]  ? clear_bhb_loop+0x60/0xb0
[  105.694196][ T7815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.694209][ T7815] RIP: 0033:0x7f7cd998ebe9
[  105.694224][ T7815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.694239][ T7815] RSP: 002b:00007f7cda89f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  105.694257][ T7815] RAX: ffffffffffffffda RBX: 00007f7cd9bc5fa0 RCX: 00007f7cd998ebe9
[  105.694270][ T7815] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  105.694279][ T7815] RBP: 00007f7cda89f090 R08: 0000000000000000 R09: 0000000000000000
[  105.694289][ T7815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.694297][ T7815] R13: 00007f7cd9bc6038 R14: 00007f7cd9bc5fa0 R15: 00007ffd843d4918
[  105.694313][ T7815]  </TASK>
[  105.699842][  T982] usb 2-1: Using ep0 maxpacket: 32
[  106.042664][  T982] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  106.051768][  T982] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  106.061132][  T982] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  106.070129][  T982] usb 2-1: config 1 has no interface number 0
[  106.076227][  T982] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  106.087253][  T982] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  106.112370][  T982] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  106.127653][  T982] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.135503][ T7836] overlay: Unknown parameter 'appraise_type'
[  106.146130][  T982] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  106.346769][  T982] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now attached
[  106.421087][ T7853] fuse: Bad value for 'fd'
[  106.737675][ T7866] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  106.747474][ T7866] netlink: 32 bytes leftover after parsing attributes in process `syz.0.452'.
[  106.757246][ T7866] netlink: 52 bytes leftover after parsing attributes in process `syz.0.452'.
[  106.768169][ T5901] usb 2-1: USB disconnect, device number 14
[  106.775076][ T5901] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  106.783038][    T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  106.872072][ T7879] netlink: 8 bytes leftover after parsing attributes in process `syz.3.454'.
[  106.941450][    T9] usb 3-1: New USB device found, idVendor=172f, idProduct=0032, bcdDevice= 0.00
[  106.951005][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.960910][    T9] usb 3-1: config 0 descriptor??
[  107.158293][  T982] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  107.309642][  T982] usb 4-1: config 0 has an invalid interface number: 83 but max is 0
[  107.329347][  T982] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  107.331956][ T7891] FAULT_INJECTION: forcing a failure.
[  107.331956][ T7891] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.343702][  T982] usb 4-1: config 0 has no interface number 0
[  107.362023][ T7891] CPU: 0 UID: 0 PID: 7891 Comm: syz.1.457 Not tainted syzkaller #0 PREEMPT(full) 
[  107.362044][ T7891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  107.362053][ T7891] Call Trace:
[  107.362059][ T7891]  <TASK>
[  107.362066][ T7891]  dump_stack_lvl+0x189/0x250
[  107.362090][ T7891]  ? __pfx____ratelimit+0x10/0x10
[  107.362111][ T7891]  ? __pfx_dump_stack_lvl+0x10/0x10
[  107.362131][ T7891]  ? __pfx__printk+0x10/0x10
[  107.362148][ T7891]  ? __might_fault+0xb0/0x130
[  107.362171][ T7891]  ? rcu_is_watching+0x15/0xb0
[  107.362190][ T7891]  should_fail_ex+0x414/0x560
[  107.362213][ T7891]  _copy_from_user+0x2d/0xb0
[  107.362233][ T7891]  quota_setquota+0x115/0x540
[  107.362254][ T7891]  ? __pfx_quota_setquota+0x10/0x10
[  107.362270][ T7891]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  107.362302][ T7891]  ? apparmor_capable+0x137/0x1b0
[  107.362322][ T7891]  ? do_quotactl+0x734/0x860
[  107.362354][ T7891]  __se_sys_quotactl_fd+0x272/0x410
[  107.362373][ T7891]  do_syscall_64+0xfa/0xfa0
[  107.362392][ T7891]  ? rcu_is_watching+0x15/0xb0
[  107.362408][ T7891]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.362424][ T7891]  ? clear_bhb_loop+0x60/0xb0
[  107.362441][ T7891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.362456][ T7891] RIP: 0033:0x7f4857f8ebe9
[  107.362471][ T7891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.362485][ T7891] RSP: 002b:00007f4858e7b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bb
[  107.362502][ T7891] RAX: ffffffffffffffda RBX: 00007f48581c5fa0 RCX: 00007f4857f8ebe9
[  107.362515][ T7891] RDX: 0000000000000000 RSI: ffffffff80000800 RDI: 0000000000000003
[  107.362525][ T7891] RBP: 00007f4858e7b090 R08: 0000000000000000 R09: 0000000000000000
[  107.362535][ T7891] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  107.362544][ T7891] R13: 00007f48581c6038 R14: 00007f48581c5fa0 R15: 00007fff0eed5348
[  107.362562][ T7891]  </TASK>
[  107.374875][  T982] usb 4-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=39.61
[  107.392677][    T9] waltop 0003:172F:0032.0002: item fetching failed at offset 3/5
[  107.400894][  T982] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.413960][    T9] waltop 0003:172F:0032.0002: probe with driver waltop failed with error -22
[  107.425454][  T982] usb 4-1: config 0 descriptor??
[  107.602391][    T9] usb 3-1: USB disconnect, device number 5
[  107.608025][  T982] ttusbir 4-1:0.83: cannot find expected altsetting
[  107.728343][ T5862] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  107.813843][ T7881] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  107.823868][ T7881] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  107.870737][  T982] usb 4-1: USB disconnect, device number 7
[  107.888382][ T5862] usb 1-1: Using ep0 maxpacket: 8
[  107.894559][ T5862] usb 1-1: config 6 has an invalid interface number: 2 but max is 0
[  107.903750][ T5862] usb 1-1: config 6 has no interface number 0
[  107.911345][ T5862] usb 1-1: config 6 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  107.921602][ T5862] usb 1-1: config 6 interface 2 altsetting 0 has an endpoint descriptor with address 0xDD, changing to 0x8D
[  107.933281][ T5862] usb 1-1: config 6 interface 2 altsetting 0 endpoint 0x8D has invalid wMaxPacketSize 0
[  107.945113][ T5862] usb 1-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  107.954339][ T5862] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.962474][ T5862] usb 1-1: Product: syz
[  107.966624][ T5862] usb 1-1: Manufacturer: syz
[  107.971350][ T5862] usb 1-1: SerialNumber: syz
[  107.979237][ T5862] hso 1-1:6.2: Failed to find INT IN ep
[  108.461724][ T7945] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  108.683855][ T7952] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  108.693328][ T7952] netlink: 32 bytes leftover after parsing attributes in process `syz.1.465'.
[  108.704543][ T7952] netlink: 52 bytes leftover after parsing attributes in process `syz.1.465'.
[  108.774241][ T7954] FAULT_INJECTION: forcing a failure.
[  108.774241][ T7954] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.793618][ T7954] CPU: 0 UID: 0 PID: 7954 Comm: syz.3.466 Not tainted syzkaller #0 PREEMPT(full) 
[  108.793648][ T7954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  108.793659][ T7954] Call Trace:
[  108.793666][ T7954]  <TASK>
[  108.793674][ T7954]  dump_stack_lvl+0x189/0x250
[  108.793699][ T7954]  ? __pfx____ratelimit+0x10/0x10
[  108.793719][ T7954]  ? __pfx_dump_stack_lvl+0x10/0x10
[  108.793745][ T7954]  ? __pfx__printk+0x10/0x10
[  108.793764][ T7954]  ? __might_fault+0xb0/0x130
[  108.793789][ T7954]  ? rcu_is_watching+0x15/0xb0
[  108.793808][ T7954]  should_fail_ex+0x414/0x560
[  108.793831][ T7954]  _copy_from_user+0x2d/0xb0
[  108.793850][ T7954]  memdup_user+0x5e/0xd0
[  108.793873][ T7954]  kvm_arch_vcpu_ioctl+0x1a78/0x2a80
[  108.793894][ T7954]  ? unwind_next_frame+0xa5/0x2390
[  108.793914][ T7954]  ? kvm_arch_vcpu_ioctl+0x5f8/0x2a80
[  108.793932][ T7954]  ? unwind_next_frame+0xa5/0x2390
[  108.793951][ T7954]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  108.793972][ T7954]  ? unwind_next_frame+0xa5/0x2390
[  108.793989][ T7954]  ? rcu_is_watching+0x15/0xb0
[  108.794011][ T7954]  ? unwind_next_frame+0xa5/0x2390
[  108.794029][ T7954]  ? unwind_next_frame+0xa5/0x2390
[  108.794050][ T7954]  ? rcu_is_watching+0x15/0xb0
[  108.794068][ T7954]  ? is_bpf_text_address+0x26/0x2b0
[  108.794084][ T7954]  ? rcu_is_watching+0x15/0xb0
[  108.794102][ T7954]  ? rcu_is_watching+0x15/0xb0
[  108.794122][ T7954]  ? lock_release+0x4b/0x3e0
[  108.794137][ T7954]  ? lock_release+0x4b/0x3e0
[  108.794158][ T7954]  ? is_bpf_text_address+0x292/0x2b0
[  108.794174][ T7954]  ? is_bpf_text_address+0x26/0x2b0
[  108.794190][ T7954]  ? kernel_text_address+0xa5/0xe0
[  108.794212][ T7954]  ? __kernel_text_address+0xd/0x40
[  108.794233][ T7954]  ? unwind_get_return_address+0x4d/0x90
[  108.794250][ T7954]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  108.794274][ T7954]  ? arch_stack_walk+0xfc/0x150
[  108.794297][ T7954]  ? stack_trace_save+0x9c/0xe0
[  108.794316][ T7954]  ? __pfx_stack_trace_save+0x10/0x10
[  108.794333][ T7954]  ? stack_depot_save_flags+0x40/0x860
[  108.794358][ T7954]  ? kasan_save_track+0x4f/0x80
[  108.794381][ T7954]  ? kasan_save_track+0x3e/0x80
[  108.794397][ T7954]  ? __kasan_save_free_info+0x46/0x50
[  108.794413][ T7954]  ? __kasan_slab_free+0x5b/0x80
[  108.794432][ T7954]  ? kfree+0x18e/0x440
[  108.794450][ T7954]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  108.794466][ T7954]  ? security_file_ioctl+0xcb/0x2d0
[  108.794482][ T7954]  ? __se_sys_ioctl+0x47/0x170
[  108.794511][ T7954]  ? do_syscall_64+0xfa/0xfa0
[  108.794530][ T7954]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.794550][ T7954]  ? __mutex_trylock_common+0x153/0x260
[  108.794574][ T7954]  ? __pfx___mutex_trylock_common+0x10/0x10
[  108.794594][ T7954]  ? rcu_is_watching+0x15/0xb0
[  108.794611][ T7954]  ? trace_contention_end+0x39/0x120
[  108.794634][ T7954]  ? __mutex_lock+0x335/0x1350
[  108.794660][ T7954]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  108.794676][ T7954]  ? __pfx___mutex_lock+0x10/0x10
[  108.794695][ T7954]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  108.794715][ T7954]  ? do_vfs_ioctl+0xbe8/0x1430
[  108.794729][ T7954]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  108.794751][ T7954]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  108.794773][ T7954]  kvm_vcpu_ioctl+0x74d/0xe90
[  108.794791][ T7954]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  108.794807][ T7954]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  108.794838][ T7954]  ? __fget_files+0x3a0/0x420
[  108.794855][ T7954]  ? __fget_files+0x2a/0x420
[  108.794878][ T7954]  ? bpf_lsm_file_ioctl+0x9/0x20
[  108.794899][ T7954]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  108.794914][ T7954]  __se_sys_ioctl+0xf9/0x170
[  108.794940][ T7954]  do_syscall_64+0xfa/0xfa0
[  108.794964][ T7954]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.794983][ T7954]  ? clear_bhb_loop+0x60/0xb0
[  108.795000][ T7954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.795016][ T7954] RIP: 0033:0x7f528ad8ebe9
[  108.795031][ T7954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.795046][ T7954] RSP: 002b:00007f528bb48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  108.795064][ T7954] RAX: ffffffffffffffda RBX: 00007f528afc5fa0 RCX: 00007f528ad8ebe9
[  108.795078][ T7954] RDX: 0000200000000000 RSI: 000000004008ae89 RDI: 0000000000000005
[  108.795093][ T7954] RBP: 00007f528bb48090 R08: 0000000000000000 R09: 0000000000000000
[  108.795104][ T7954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.795118][ T7954] R13: 00007f528afc6038 R14: 00007f528afc5fa0 R15: 00007ffc12c8dd38
[  108.795137][ T7954]  </TASK>
[  109.293229][ T7959] fuse: Bad value for 'rootmode'
[  109.788373][ T5901] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  109.939488][ T5901] usb 3-1: config 0 has an invalid interface number: 83 but max is 0
[  109.947900][ T5901] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  109.958076][ T5901] usb 3-1: config 0 has no interface number 0
[  109.964253][ T5901] usb 3-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=39.61
[  109.973319][ T5901] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.982849][ T5901] usb 3-1: config 0 descriptor??
[  109.990182][ T5901] ttusbir 3-1:0.83: cannot find expected altsetting
[  110.056266][ T7993] fuse: Unknown parameter 'use00000000000000000000'
[  110.083510][ T7995] netlink: 32 bytes leftover after parsing attributes in process `syz.3.477'.
[  110.145699][ T7997] netlink: 24 bytes leftover after parsing attributes in process `syz.3.478'.
[  110.176948][ T8002] FAULT_INJECTION: forcing a failure.
[  110.176948][ T8002] name failslab, interval 1, probability 0, space 0, times 0
[  110.190408][ T8002] CPU: 1 UID: 0 PID: 8002 Comm: syz.3.479 Not tainted syzkaller #0 PREEMPT(full) 
[  110.190431][ T8002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  110.190442][ T8002] Call Trace:
[  110.190449][ T8002]  <TASK>
[  110.190456][ T8002]  dump_stack_lvl+0x189/0x250
[  110.190482][ T8002]  ? __pfx____ratelimit+0x10/0x10
[  110.190503][ T8002]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.190524][ T8002]  ? __pfx__printk+0x10/0x10
[  110.190549][ T8002]  should_fail_ex+0x414/0x560
[  110.190571][ T8002]  should_failslab+0xa8/0x100
[  110.190588][ T8002]  kmem_cache_alloc_noprof+0x73/0x390
[  110.190608][ T8002]  ? skb_clone+0x212/0x3a0
[  110.190624][ T8002]  skb_clone+0x212/0x3a0
[  110.190642][ T8002]  __netlink_deliver_tap+0x404/0x850
[  110.190666][ T8002]  ? netlink_deliver_tap+0x2e/0x1b0
[  110.190684][ T8002]  netlink_deliver_tap+0x19c/0x1b0
[  110.190707][ T8002]  netlink_unicast+0x7fa/0x9e0
[  110.190727][ T8002]  ? __pfx_netlink_unicast+0x10/0x10
[  110.190745][ T8002]  ? netlink_sendmsg+0x642/0xb30
[  110.190763][ T8002]  ? skb_put+0x11b/0x210
[  110.190783][ T8002]  netlink_sendmsg+0x805/0xb30
[  110.190805][ T8002]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.190828][ T8002]  ? aa_sock_msg_perm+0xf1/0x1d0
[  110.190847][ T8002]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  110.190864][ T8002]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.190881][ T8002]  __sock_sendmsg+0x21c/0x270
[  110.190898][ T8002]  ____sys_sendmsg+0x505/0x830
[  110.190919][ T8002]  ? __pfx_____sys_sendmsg+0x10/0x10
[  110.190942][ T8002]  ? import_iovec+0x74/0xa0
[  110.190961][ T8002]  ___sys_sendmsg+0x21f/0x2a0
[  110.190982][ T8002]  ? __pfx____sys_sendmsg+0x10/0x10
[  110.191015][ T8002]  ? __fget_files+0x2a/0x420
[  110.191032][ T8002]  ? __fget_files+0x3a0/0x420
[  110.191052][ T8002]  __x64_sys_sendmsg+0x19b/0x260
[  110.191084][ T8002]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  110.191108][ T8002]  ? __pfx_ksys_write+0x10/0x10
[  110.191125][ T8002]  ? rcu_is_watching+0x15/0xb0
[  110.191143][ T8002]  do_syscall_64+0xfa/0xfa0
[  110.191162][ T8002]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.191178][ T8002]  ? clear_bhb_loop+0x60/0xb0
[  110.191194][ T8002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.191209][ T8002] RIP: 0033:0x7f528ad8ebe9
[  110.191224][ T8002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.191238][ T8002] RSP: 002b:00007f528bb48038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  110.191256][ T8002] RAX: ffffffffffffffda RBX: 00007f528afc5fa0 RCX: 00007f528ad8ebe9
[  110.191269][ T8002] RDX: 0000000000000000 RSI: 0000200000001240 RDI: 0000000000000003
[  110.191279][ T8002] RBP: 00007f528bb48090 R08: 0000000000000000 R09: 0000000000000000
[  110.191289][ T8002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.191299][ T8002] R13: 00007f528afc6038 R14: 00007f528afc5fa0 R15: 00007ffc12c8dd38
[  110.191316][ T8002]  </TASK>
[  110.195467][ T7973] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  110.412035][  T982] usb 1-1: USB disconnect, device number 15
[  110.446015][ T7973] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  110.532131][ T8018] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  110.561350][ T8018] netlink: 32 bytes leftover after parsing attributes in process `syz.0.481'.
[  110.573808][ T8018] netlink: 52 bytes leftover after parsing attributes in process `syz.0.481'.
[  110.607235][ T5901] usb 3-1: USB disconnect, device number 6
[  110.669749][ T8036] FAULT_INJECTION: forcing a failure.
[  110.669749][ T8036] name failslab, interval 1, probability 0, space 0, times 0
[  110.683628][ T8036] CPU: 0 UID: 0 PID: 8036 Comm: syz.1.484 Not tainted syzkaller #0 PREEMPT(full) 
[  110.683650][ T8036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  110.683659][ T8036] Call Trace:
[  110.683666][ T8036]  <TASK>
[  110.683672][ T8036]  dump_stack_lvl+0x189/0x250
[  110.683698][ T8036]  ? __pfx____ratelimit+0x10/0x10
[  110.683717][ T8036]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.683737][ T8036]  ? __pfx__printk+0x10/0x10
[  110.683761][ T8036]  should_fail_ex+0x414/0x560
[  110.683782][ T8036]  should_failslab+0xa8/0x100
[  110.683799][ T8036]  kmem_cache_alloc_noprof+0x73/0x390
[  110.683820][ T8036]  ? skb_clone+0x212/0x3a0
[  110.683837][ T8036]  skb_clone+0x212/0x3a0
[  110.683853][ T8036]  __netlink_deliver_tap+0x404/0x850
[  110.683877][ T8036]  ? netlink_deliver_tap+0x2e/0x1b0
[  110.683897][ T8036]  netlink_deliver_tap+0x19c/0x1b0
[  110.683916][ T8036]  netlink_unicast+0x7fa/0x9e0
[  110.683937][ T8036]  ? __pfx_netlink_unicast+0x10/0x10
[  110.683955][ T8036]  ? netlink_sendmsg+0x642/0xb30
[  110.683973][ T8036]  ? skb_put+0x11b/0x210
[  110.683995][ T8036]  netlink_sendmsg+0x805/0xb30
[  110.684025][ T8036]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.684046][ T8036]  ? aa_sock_msg_perm+0xf1/0x1d0
[  110.684066][ T8036]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  110.684085][ T8036]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.684105][ T8036]  __sock_sendmsg+0x21c/0x270
[  110.684122][ T8036]  ____sys_sendmsg+0x505/0x830
[  110.684145][ T8036]  ? __pfx_____sys_sendmsg+0x10/0x10
[  110.684169][ T8036]  ? import_iovec+0x74/0xa0
[  110.684187][ T8036]  ___sys_sendmsg+0x21f/0x2a0
[  110.684208][ T8036]  ? __pfx____sys_sendmsg+0x10/0x10
[  110.684241][ T8036]  ? __fget_files+0x2a/0x420
[  110.684257][ T8036]  ? __fget_files+0x3a0/0x420
[  110.684277][ T8036]  __x64_sys_sendmsg+0x19b/0x260
[  110.684298][ T8036]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  110.684322][ T8036]  ? __pfx_ksys_write+0x10/0x10
[  110.684339][ T8036]  ? rcu_is_watching+0x15/0xb0
[  110.684357][ T8036]  do_syscall_64+0xfa/0xfa0
[  110.684376][ T8036]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.684391][ T8036]  ? clear_bhb_loop+0x60/0xb0
[  110.684408][ T8036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.684422][ T8036] RIP: 0033:0x7f4857f8ebe9
[  110.684436][ T8036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.684447][ T8036] RSP: 002b:00007f4858e7b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  110.684462][ T8036] RAX: ffffffffffffffda RBX: 00007f48581c5fa0 RCX: 00007f4857f8ebe9
[  110.684471][ T8036] RDX: 0000000000000000 RSI: 0000200000001240 RDI: 0000000000000003
[  110.684480][ T8036] RBP: 00007f4858e7b090 R08: 0000000000000000 R09: 0000000000000000
[  110.684488][ T8036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.684495][ T8036] R13: 00007f48581c6038 R14: 00007f48581c5fa0 R15: 00007fff0eed5348
[  110.684509][ T8036]  </TASK>
[  111.045941][ T8047] fuse: Unknown parameter 'use00000000000000000000'
[  111.110792][ T8051] NILFS (rnullb0): couldn't find nilfs on the device
[  111.146122][ T8054] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  111.232398][    T9] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  111.335906][   T30] audit: type=1326 audit(1756673193.522:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8073 comm="syz.3.494" exe="/root/syz-executor" sig=31 arch=c000003e syscall=317 compat=0 ip=0x7f528ad8ebe9 code=0x0
[  111.377202][ T8079] fuse: Unknown parameter 'use00000000000000000000'
[  111.389544][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  111.403241][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  111.448025][    T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  111.448774][ T8085] FAULT_INJECTION: forcing a failure.
[  111.448774][ T8085] name failslab, interval 1, probability 0, space 0, times 0
[  111.467076][    T9] usb 2-1: New USB device found, idVendor=046d, idProduct=c537, bcdDevice= 0.00
[  111.475810][ T8084] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  111.484259][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.498139][ T8084] netlink: 32 bytes leftover after parsing attributes in process `syz.2.496'.
[  111.500084][ T8085] CPU: 0 UID: 0 PID: 8085 Comm: syz.3.498 Not tainted syzkaller #0 PREEMPT(full) 
[  111.500107][ T8085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  111.500118][ T8085] Call Trace:
[  111.500124][ T8085]  <TASK>
[  111.500130][ T8085]  dump_stack_lvl+0x189/0x250
[  111.500156][ T8085]  ? __pfx____ratelimit+0x10/0x10
[  111.500176][ T8085]  ? __pfx_dump_stack_lvl+0x10/0x10
[  111.500197][ T8085]  ? __pfx__printk+0x10/0x10
[  111.500231][ T8085]  should_fail_ex+0x414/0x560
[  111.500253][ T8085]  should_failslab+0xa8/0x100
[  111.500269][ T8085]  kmem_cache_alloc_noprof+0x73/0x390
[  111.500290][ T8085]  ? skb_clone+0x212/0x3a0
[  111.500306][ T8085]  skb_clone+0x212/0x3a0
[  111.500322][ T8085]  __netlink_deliver_tap+0x404/0x850
[  111.500347][ T8085]  ? netlink_deliver_tap+0x2e/0x1b0
[  111.500365][ T8085]  netlink_deliver_tap+0x19c/0x1b0
[  111.500385][ T8085]  netlink_unicast+0x7fa/0x9e0
[  111.500405][ T8085]  ? __pfx_netlink_unicast+0x10/0x10
[  111.500422][ T8085]  ? netlink_sendmsg+0x642/0xb30
[  111.500440][ T8085]  ? skb_put+0x11b/0x210
[  111.500460][ T8085]  netlink_sendmsg+0x805/0xb30
[  111.500482][ T8085]  ? __pfx_netlink_sendmsg+0x10/0x10
[  111.500503][ T8085]  ? aa_sock_msg_perm+0xf1/0x1d0
[  111.500522][ T8085]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  111.500542][ T8085]  ? __pfx_netlink_sendmsg+0x10/0x10
[  111.500561][ T8085]  __sock_sendmsg+0x21c/0x270
[  111.500580][ T8085]  ____sys_sendmsg+0x505/0x830
[  111.500604][ T8085]  ? __pfx_____sys_sendmsg+0x10/0x10
[  111.500627][ T8085]  ? import_iovec+0x74/0xa0
[  111.500646][ T8085]  ___sys_sendmsg+0x21f/0x2a0
[  111.500667][ T8085]  ? __pfx____sys_sendmsg+0x10/0x10
[  111.500700][ T8085]  ? __fget_files+0x2a/0x420
[  111.500717][ T8085]  ? __fget_files+0x3a0/0x420
[  111.500738][ T8085]  __x64_sys_sendmsg+0x19b/0x260
[  111.500759][ T8085]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  111.500783][ T8085]  ? __pfx_ksys_write+0x10/0x10
[  111.500799][ T8085]  ? rcu_is_watching+0x15/0xb0
[  111.500817][ T8085]  do_syscall_64+0xfa/0xfa0
[  111.500836][ T8085]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.500852][ T8085]  ? clear_bhb_loop+0x60/0xb0
[  111.500869][ T8085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.500884][ T8085] RIP: 0033:0x7f528ad8ebe9
[  111.500898][ T8085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.500912][ T8085] RSP: 002b:00007f528bb48038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  111.500929][ T8085] RAX: ffffffffffffffda RBX: 00007f528afc5fa0 RCX: 00007f528ad8ebe9
[  111.500941][ T8085] RDX: 0000000000000000 RSI: 0000200000001240 RDI: 0000000000000003
[  111.500951][ T8085] RBP: 00007f528bb48090 R08: 0000000000000000 R09: 0000000000000000
[  111.500961][ T8085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.500970][ T8085] R13: 00007f528afc6038 R14: 00007f528afc5fa0 R15: 00007ffc12c8dd38
[  111.500988][ T8085]  </TASK>
[  111.536686][ T8086] FAULT_INJECTION: forcing a failure.
[  111.536686][ T8086] name failslab, interval 1, probability 0, space 0, times 0
[  111.808427][ T8086] CPU: 1 UID: 0 PID: 8086 Comm: syz.0.497 Not tainted syzkaller #0 PREEMPT(full) 
[  111.808448][ T8086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  111.808458][ T8086] Call Trace:
[  111.808463][ T8086]  <TASK>
[  111.808469][ T8086]  dump_stack_lvl+0x189/0x250
[  111.808493][ T8086]  ? __pfx____ratelimit+0x10/0x10
[  111.808510][ T8086]  ? __pfx_dump_stack_lvl+0x10/0x10
[  111.808529][ T8086]  ? __pfx__printk+0x10/0x10
[  111.808549][ T8086]  ? fs_reclaim_acquire+0x7d/0x100
[  111.808564][ T8086]  ? rcu_is_watching+0x15/0xb0
[  111.808580][ T8086]  ? __pfx___might_resched+0x10/0x10
[  111.808595][ T8086]  ? lock_acquire+0x5f/0x360
[  111.808610][ T8086]  should_fail_ex+0x414/0x560
[  111.808630][ T8086]  should_failslab+0xa8/0x100
[  111.808644][ T8086]  __kmalloc_cache_noprof+0x70/0x3a0
[  111.808662][ T8086]  ? sctp_association_new+0x89/0x25f0
[  111.808681][ T8086]  ? __asan_memcpy+0x40/0x70
[  111.808699][ T8086]  sctp_association_new+0x89/0x25f0
[  111.808718][ T8086]  ? sctp_do_bind+0x657/0x940
[  111.808740][ T8086]  ? __ipv6_addr_type+0x247/0x2f0
[  111.808760][ T8086]  sctp_connect_new_asoc+0x2c5/0x690
[  111.808780][ T8086]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  111.808798][ T8086]  ? __local_bh_enable_ip+0x12d/0x1c0
[  111.808816][ T8086]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  111.808835][ T8086]  ? security_sctp_bind_connect+0x7e/0x2e0
[  111.808853][ T8086]  sctp_sendmsg+0x155c/0x2810
[  111.808878][ T8086]  ? __pfx_sctp_sendmsg+0x10/0x10
[  111.808897][ T8086]  ? rcu_is_watching+0x15/0xb0
[  111.808926][ T8086]  ? aa_sk_perm+0x81e/0x950
[  111.808946][ T8086]  ? __pfx_aa_sk_perm+0x10/0x10
[  111.808964][ T8086]  ? sock_rps_record_flow+0x19/0x410
[  111.808981][ T8086]  ? inet_sendmsg+0x2f4/0x370
[  111.808996][ T8086]  __sock_sendmsg+0x19c/0x270
[  111.809013][ T8086]  ____sys_sendmsg+0x505/0x830
[  111.809035][ T8086]  ? __pfx_____sys_sendmsg+0x10/0x10
[  111.809054][ T8086]  ? __might_fault+0xb0/0x130
[  111.809076][ T8086]  ? import_iovec+0x74/0xa0
[  111.809092][ T8086]  ___sys_sendmsg+0x21f/0x2a0
[  111.809111][ T8086]  ? __pfx____sys_sendmsg+0x10/0x10
[  111.809141][ T8086]  ? __fget_files+0x2a/0x420
[  111.809157][ T8086]  ? __fget_files+0x3a0/0x420
[  111.809175][ T8086]  __x64_sys_sendmsg+0x19b/0x260
[  111.809195][ T8086]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  111.809222][ T8086]  ? __pfx_ksys_write+0x10/0x10
[  111.809237][ T8086]  ? rcu_is_watching+0x15/0xb0
[  111.809253][ T8086]  do_syscall_64+0xfa/0xfa0
[  111.809272][ T8086]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.809293][ T8086]  ? clear_bhb_loop+0x60/0xb0
[  111.809309][ T8086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.809323][ T8086] RIP: 0033:0x7f610bd8ebe9
[  111.809336][ T8086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.809349][ T8086] RSP: 002b:00007f610cb62038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  111.809367][ T8086] RAX: ffffffffffffffda RBX: 00007f610bfc5fa0 RCX: 00007f610bd8ebe9
[  111.809379][ T8086] RDX: 0000000004048043 RSI: 0000200000000800 RDI: 0000000000000003
[  111.809390][ T8086] RBP: 00007f610cb62090 R08: 0000000000000000 R09: 0000000000000000
[  111.809400][ T8086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.809408][ T8086] R13: 00007f610bfc6038 R14: 00007f610bfc5fa0 R15: 00007ffc5a05d028
[  111.809410][    T9] usb 2-1: config 0 descriptor??
[  111.809427][ T8086]  </TASK>
[  111.948936][ T8097] FAULT_INJECTION: forcing a failure.
[  111.948936][ T8097] name failslab, interval 1, probability 0, space 0, times 0
[  112.161948][ T8097] CPU: 1 UID: 0 PID: 8097 Comm: syz.0.501 Not tainted syzkaller #0 PREEMPT(full) 
[  112.161973][ T8097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.161984][ T8097] Call Trace:
[  112.161990][ T8097]  <TASK>
[  112.161997][ T8097]  dump_stack_lvl+0x189/0x250
[  112.162022][ T8097]  ? __pfx____ratelimit+0x10/0x10
[  112.162041][ T8097]  ? __pfx_dump_stack_lvl+0x10/0x10
[  112.162062][ T8097]  ? __pfx__printk+0x10/0x10
[  112.162082][ T8097]  ? __pfx___might_resched+0x10/0x10
[  112.162100][ T8097]  ? lock_acquire+0x5f/0x360
[  112.162116][ T8097]  should_fail_ex+0x414/0x560
[  112.162138][ T8097]  should_failslab+0xa8/0x100
[  112.162154][ T8097]  kmem_cache_alloc_noprof+0x73/0x390
[  112.162184][ T8097]  ? security_file_alloc+0x34/0x330
[  112.162202][ T8097]  security_file_alloc+0x34/0x330
[  112.162218][ T8097]  init_file+0x93/0x2f0
[  112.162239][ T8097]  alloc_empty_file+0x6e/0x1d0
[  112.162258][ T8097]  path_openat+0x107/0x3830
[  112.162271][ T8097]  ? arch_stack_walk+0xfc/0x150
[  112.162292][ T8097]  ? stack_trace_save+0x9c/0xe0
[  112.162310][ T8097]  ? stack_depot_save_flags+0x40/0x860
[  112.162327][ T8097]  ? __might_fault+0xb0/0x130
[  112.162347][ T8097]  ? kasan_save_track+0x4f/0x80
[  112.162366][ T8097]  ? kasan_save_track+0x3e/0x80
[  112.162385][ T8097]  ? __kasan_slab_alloc+0x6c/0x80
[  112.162402][ T8097]  ? kmem_cache_alloc_noprof+0x1ad/0x390
[  112.162420][ T8097]  ? getname_flags+0xb8/0x540
[  112.162435][ T8097]  ? __pfx_path_openat+0x10/0x10
[  112.162453][ T8097]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.162474][ T8097]  do_filp_open+0x1fa/0x410
[  112.162493][ T8097]  ? __pfx_do_filp_open+0x10/0x10
[  112.162522][ T8097]  ? _raw_spin_unlock+0x28/0x50
[  112.162538][ T8097]  ? alloc_fd+0x64c/0x6c0
[  112.162558][ T8097]  do_sys_openat2+0x121/0x1c0
[  112.162578][ T8097]  ? __pfx_do_sys_openat2+0x10/0x10
[  112.162598][ T8097]  ? __might_fault+0xb0/0x130
[  112.162616][ T8097]  ? __might_fault+0xcc/0x130
[  112.162637][ T8097]  __se_sys_openat2+0x226/0x2c0
[  112.162657][ T8097]  ? __pfx___se_sys_openat2+0x10/0x10
[  112.162678][ T8097]  ? rcu_is_watching+0x15/0xb0
[  112.162696][ T8097]  do_syscall_64+0xfa/0xfa0
[  112.162712][ T8097]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.162726][ T8097]  ? clear_bhb_loop+0x60/0xb0
[  112.162743][ T8097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.162758][ T8097] RIP: 0033:0x7f610bd8ebe9
[  112.162773][ T8097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.162786][ T8097] RSP: 002b:00007f610cb62038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5
[  112.162805][ T8097] RAX: ffffffffffffffda RBX: 00007f610bfc5fa0 RCX: 00007f610bd8ebe9
[  112.162819][ T8097] RDX: 0000200000000140 RSI: 00002000000000c0 RDI: 00000000ffffff9c
[  112.162831][ T8097] RBP: 00007f610cb62090 R08: 0000000000000000 R09: 0000000000000000
[  112.162842][ T8097] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[  112.162853][ T8097] R13: 00007f610bfc6038 R14: 00007f610bfc5fa0 R15: 00007ffc5a05d028
[  112.162872][ T8097]  </TASK>
[  112.253542][ T8108] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.254109][ T8108] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  112.255513][ T8108] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.256064][ T8108] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  112.256524][ T8108] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  112.256658][ T8108] /dev/rnullb0: Can't open blockdev
[  112.348306][ T5901] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  112.500001][ T5901] usb 3-1: config 0 has an invalid interface number: 83 but max is 0
[  112.500028][ T5901] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  112.500046][ T5901] usb 3-1: config 0 has no interface number 0
[  112.500077][ T5901] usb 3-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=39.61
[  112.500097][ T5901] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.509142][ T5901] usb 3-1: config 0 descriptor??
[  112.668886][ T8125] random: crng reseeded on system resumption
[  112.681480][ T5901] ttusbir 3-1:0.83: cannot find expected altsetting
[  112.706658][    T9] usb 2-1: string descriptor 0 read error: -71
[  112.735480][    T9] usbhid 2-1:0.0: can't add hid device: -71
[  112.741550][    T9] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  112.757915][    T9] usb 2-1: USB disconnect, device number 15
[  112.889636][ T8100] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.901021][ T8100] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  113.011397][ T5901] usb 3-1: USB disconnect, device number 7
[  113.182618][ T8153] input: syz1 as /devices/virtual/input/input39
[  113.193117][ T8153] FAULT_INJECTION: forcing a failure.
[  113.193117][ T8153] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.206807][ T8153] CPU: 0 UID: 0 PID: 8153 Comm: syz.3.509 Not tainted syzkaller #0 PREEMPT(full) 
[  113.206830][ T8153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  113.206839][ T8153] Call Trace:
[  113.206845][ T8153]  <TASK>
[  113.206852][ T8153]  dump_stack_lvl+0x189/0x250
[  113.206878][ T8153]  ? __pfx____ratelimit+0x10/0x10
[  113.206898][ T8153]  ? __pfx_dump_stack_lvl+0x10/0x10
[  113.206918][ T8153]  ? __pfx__printk+0x10/0x10
[  113.206937][ T8153]  ? __might_fault+0xb0/0x130
[  113.206959][ T8153]  ? rcu_is_watching+0x15/0xb0
[  113.206978][ T8153]  should_fail_ex+0x414/0x560
[  113.207000][ T8153]  _copy_from_user+0x2d/0xb0
[  113.207017][ T8153]  input_event_from_user+0xb2/0x280
[  113.207036][ T8153]  ? __pfx_input_event_from_user+0x10/0x10
[  113.207058][ T8153]  ? input_event+0xc7/0xe0
[  113.207079][ T8153]  uinput_write+0x279/0xfc0
[  113.207113][ T8153]  ? __pfx_uinput_write+0x10/0x10
[  113.207132][ T8153]  ? bpf_lsm_file_permission+0x9/0x20
[  113.207152][ T8153]  ? security_file_permission+0x75/0x290
[  113.207167][ T8153]  ? rw_verify_area+0x255/0x4d0
[  113.207181][ T8153]  ? __pfx_uinput_write+0x10/0x10
[  113.207199][ T8153]  vfs_write+0x27b/0xb30
[  113.207216][ T8153]  ? __pfx_vfs_write+0x10/0x10
[  113.207229][ T8153]  ? lock_release+0x4b/0x3e0
[  113.207247][ T8153]  ? __fget_files+0x2a/0x420
[  113.207264][ T8153]  ? __fget_files+0x3a0/0x420
[  113.207281][ T8153]  ? __fget_files+0x2a/0x420
[  113.207301][ T8153]  ksys_write+0x145/0x250
[  113.207317][ T8153]  ? __pfx_ksys_write+0x10/0x10
[  113.207334][ T8153]  ? rcu_is_watching+0x15/0xb0
[  113.207350][ T8153]  do_syscall_64+0xfa/0xfa0
[  113.207369][ T8153]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.207384][ T8153]  ? clear_bhb_loop+0x60/0xb0
[  113.207401][ T8153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.207417][ T8153] RIP: 0033:0x7f528ad8ebe9
[  113.207430][ T8153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.207444][ T8153] RSP: 002b:00007f528bb48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  113.207462][ T8153] RAX: ffffffffffffffda RBX: 00007f528afc5fa0 RCX: 00007f528ad8ebe9
[  113.207474][ T8153] RDX: 000000000000045c RSI: 00002000000000c0 RDI: 0000000000000004
[  113.207485][ T8153] RBP: 00007f528bb48090 R08: 0000000000000000 R09: 0000000000000000
[  113.207495][ T8153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.207506][ T8153] R13: 00007f528afc6038 R14: 00007f528afc5fa0 R15: 00007ffc12c8dd38
[  113.207524][ T8153]  </TASK>
[  113.437337][ T8167] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  113.482370][ T8167] __nla_validate_parse: 3 callbacks suppressed
[  113.482387][ T8167] netlink: 32 bytes leftover after parsing attributes in process `syz.1.512'.
[  113.500095][ T8167] netlink: 24 bytes leftover after parsing attributes in process `syz.1.512'.
[  113.564257][ T8172] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  113.565989][ T8176] FAULT_INJECTION: forcing a failure.
[  113.565989][ T8176] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.596576][ T8176] CPU: 1 UID: 0 PID: 8176 Comm: syz.2.514 Not tainted syzkaller #0 PREEMPT(full) 
[  113.596625][ T8176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  113.596636][ T8176] Call Trace:
[  113.596643][ T8176]  <TASK>
[  113.596650][ T8176]  dump_stack_lvl+0x189/0x250
[  113.596678][ T8176]  ? __pfx____ratelimit+0x10/0x10
[  113.596697][ T8176]  ? __pfx_dump_stack_lvl+0x10/0x10
[  113.596718][ T8176]  ? __pfx__printk+0x10/0x10
[  113.596737][ T8176]  ? __might_fault+0xb0/0x130
[  113.596762][ T8176]  ? rcu_is_watching+0x15/0xb0
[  113.596781][ T8176]  should_fail_ex+0x414/0x560
[  113.596810][ T8176]  _copy_from_user+0x2d/0xb0
[  113.596826][ T8176]  kstrtouint_from_user+0xc4/0x170
[  113.596849][ T8176]  ? __might_fault+0xb0/0x130
[  113.596870][ T8176]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  113.596895][ T8176]  ? vfs_write+0x211/0xb30
[  113.596910][ T8176]  ? rcu_is_watching+0x15/0xb0
[  113.596928][ T8176]  proc_fail_nth_write+0x88/0x200
[  113.596949][ T8176]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  113.596970][ T8176]  ? security_file_permission+0x75/0x290
[  113.596987][ T8176]  ? preempt_count_add+0x91/0x1a0
[  113.597004][ T8176]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  113.597025][ T8176]  vfs_write+0x27b/0xb30
[  113.597043][ T8176]  ? __pfx_vfs_write+0x10/0x10
[  113.597061][ T8176]  ? __fget_files+0x3a0/0x420
[  113.597079][ T8176]  ? __fget_files+0x2a/0x420
[  113.597100][ T8176]  ksys_write+0x145/0x250
[  113.597117][ T8176]  ? __pfx_ksys_write+0x10/0x10
[  113.597131][ T8176]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  113.597150][ T8176]  ? rcu_is_watching+0x15/0xb0
[  113.597169][ T8176]  do_syscall_64+0xfa/0xfa0
[  113.597189][ T8176]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.597206][ T8176]  ? clear_bhb_loop+0x60/0xb0
[  113.597222][ T8176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.597239][ T8176] RIP: 0033:0x7f7cd998d69f
[  113.597253][ T8176] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  113.597268][ T8176] RSP: 002b:00007f7cda89f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  113.597286][ T8176] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7cd998d69f
[  113.597298][ T8176] RDX: 0000000000000001 RSI: 00007f7cda89f0a0 RDI: 0000000000000004
[  113.597309][ T8176] RBP: 00007f7cda89f090 R08: 0000000000000000 R09: 0000000000000000
[  113.597319][ T8176] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  113.597329][ T8176] R13: 00007f7cd9bc6038 R14: 00007f7cd9bc5fa0 R15: 00007ffd843d4918
[  113.597348][ T8176]  </TASK>
[  113.993156][ T8182] fuse: Unknown parameter 'user_i00000000000000000000'
[  114.066253][ T8186] netlink: 8 bytes leftover after parsing attributes in process `syz.3.518'.
[  114.275261][ T8204] FAULT_INJECTION: forcing a failure.
[  114.275261][ T8204] name failslab, interval 1, probability 0, space 0, times 0
[  114.303953][ T8204] CPU: 0 UID: 0 PID: 8204 Comm: syz.2.520 Not tainted syzkaller #0 PREEMPT(full) 
[  114.303978][ T8204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  114.303989][ T8204] Call Trace:
[  114.303994][ T8204]  <TASK>
[  114.304001][ T8204]  dump_stack_lvl+0x189/0x250
[  114.304027][ T8204]  ? __pfx____ratelimit+0x10/0x10
[  114.304047][ T8204]  ? __pfx_dump_stack_lvl+0x10/0x10
[  114.304069][ T8204]  ? __pfx__printk+0x10/0x10
[  114.304089][ T8204]  ? genl_family_rcv_msg_doit+0x267/0x300
[  114.304108][ T8204]  ? __pfx___might_resched+0x10/0x10
[  114.304125][ T8204]  ? lock_acquire+0x5f/0x360
[  114.304142][ T8204]  should_fail_ex+0x414/0x560
[  114.304162][ T8204]  should_failslab+0xa8/0x100
[  114.304179][ T8204]  kmem_cache_alloc_node_noprof+0x76/0x390
[  114.304201][ T8204]  ? __alloc_skb+0x112/0x2d0
[  114.304220][ T8204]  __alloc_skb+0x112/0x2d0
[  114.304241][ T8204]  netlink_ack+0x146/0xa50
[  114.304259][ T8204]  ? __pfx_genl_rcv_msg+0x10/0x10
[  114.304274][ T8204]  ? __kasan_slab_alloc+0x6c/0x80
[  114.304295][ T8204]  ? __pfx_nl802154_pre_doit+0x10/0x10
[  114.304314][ T8204]  ? __pfx_nl802154_post_doit+0x10/0x10
[  114.304332][ T8204]  ? __netlink_lookup+0xbd/0x810
[  114.304351][ T8204]  ? rcu_is_watching+0x15/0xb0
[  114.304373][ T8204]  netlink_rcv_skb+0x28c/0x470
[  114.304392][ T8204]  ? __pfx_genl_rcv_msg+0x10/0x10
[  114.304408][ T8204]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  114.304431][ T8204]  ? lock_release+0x4b/0x3e0
[  114.304447][ T8204]  ? down_read+0x1ad/0x2e0
[  114.304462][ T8204]  genl_rcv+0x28/0x40
[  114.304476][ T8204]  netlink_unicast+0x82f/0x9e0
[  114.304497][ T8204]  ? __pfx_netlink_unicast+0x10/0x10
[  114.304516][ T8204]  ? netlink_sendmsg+0x642/0xb30
[  114.304534][ T8204]  ? skb_put+0x11b/0x210
[  114.304554][ T8204]  netlink_sendmsg+0x805/0xb30
[  114.304577][ T8204]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.304598][ T8204]  ? aa_sock_msg_perm+0xf1/0x1d0
[  114.304618][ T8204]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  114.304636][ T8204]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.304656][ T8204]  __sock_sendmsg+0x21c/0x270
[  114.304675][ T8204]  ____sys_sendmsg+0x505/0x830
[  114.304698][ T8204]  ? __pfx_____sys_sendmsg+0x10/0x10
[  114.304723][ T8204]  ? import_iovec+0x74/0xa0
[  114.304749][ T8204]  ___sys_sendmsg+0x21f/0x2a0
[  114.304772][ T8204]  ? __pfx____sys_sendmsg+0x10/0x10
[  114.304806][ T8204]  ? __fget_files+0x2a/0x420
[  114.304823][ T8204]  ? __fget_files+0x3a0/0x420
[  114.304844][ T8204]  __x64_sys_sendmsg+0x19b/0x260
[  114.304866][ T8204]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  114.304892][ T8204]  ? __pfx_ksys_write+0x10/0x10
[  114.304913][ T8204]  ? rcu_is_watching+0x15/0xb0
[  114.304932][ T8204]  do_syscall_64+0xfa/0xfa0
[  114.304956][ T8204]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.304972][ T8204]  ? clear_bhb_loop+0x60/0xb0
[  114.304990][ T8204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.305005][ T8204] RIP: 0033:0x7f7cd998ebe9
[  114.305020][ T8204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.305033][ T8204] RSP: 002b:00007f7cda87e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  114.305051][ T8204] RAX: ffffffffffffffda RBX: 00007f7cd9bc6090 RCX: 00007f7cd998ebe9
[  114.305063][ T8204] RDX: 0000000000008018 RSI: 0000200000000240 RDI: 0000000000000005
[  114.305073][ T8204] RBP: 00007f7cda87e090 R08: 0000000000000000 R09: 0000000000000000
[  114.305084][ T8204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.305093][ T8204] R13: 00007f7cd9bc6128 R14: 00007f7cd9bc6090 R15: 00007ffd843d4918
[  114.305109][ T8204]  </TASK>
[  114.798609][    T9] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  114.843996][ T8218] FAULT_INJECTION: forcing a failure.
[  114.843996][ T8218] name failslab, interval 1, probability 0, space 0, times 0
[  114.858149][ T8218] CPU: 1 UID: 0 PID: 8218 Comm: syz.2.524 Not tainted syzkaller #0 PREEMPT(full) 
[  114.858173][ T8218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  114.858184][ T8218] Call Trace:
[  114.858190][ T8218]  <TASK>
[  114.858197][ T8218]  dump_stack_lvl+0x189/0x250
[  114.858231][ T8218]  ? __pfx____ratelimit+0x10/0x10
[  114.858249][ T8218]  ? __pfx_dump_stack_lvl+0x10/0x10
[  114.858270][ T8218]  ? __pfx__printk+0x10/0x10
[  114.858293][ T8218]  ? __pfx___might_resched+0x10/0x10
[  114.858310][ T8218]  ? lock_acquire+0x5f/0x360
[  114.858326][ T8218]  should_fail_ex+0x414/0x560
[  114.858346][ T8218]  should_failslab+0xa8/0x100
[  114.858362][ T8218]  kmem_cache_alloc_node_noprof+0x76/0x390
[  114.858384][ T8218]  ? __alloc_skb+0x112/0x2d0
[  114.858405][ T8218]  __alloc_skb+0x112/0x2d0
[  114.858425][ T8218]  netlink_ack+0x146/0xa50
[  114.858450][ T8218]  netlink_rcv_skb+0x28c/0x470
[  114.858468][ T8218]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  114.858486][ T8218]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  114.858509][ T8218]  ? bpf_lsm_capable+0x9/0x20
[  114.858523][ T8218]  ? security_capable+0x7e/0x2e0
[  114.858544][ T8218]  nfnetlink_rcv+0x26a/0x2520
[  114.858562][ T8218]  ? __dev_queue_xmit+0x1d79/0x3b50
[  114.858581][ T8218]  ? __dev_queue_xmit+0x27b/0x3b50
[  114.858601][ T8218]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  114.858618][ T8218]  ? __pfx___dev_queue_xmit+0x10/0x10
[  114.858638][ T8218]  ? ref_tracker_free+0x63a/0x7d0
[  114.858660][ T8218]  ? __asan_memcpy+0x40/0x70
[  114.858686][ T8218]  ? __pfx_ref_tracker_free+0x10/0x10
[  114.858706][ T8218]  ? __skb_clone+0x63/0x7a0
[  114.858728][ T8218]  ? __skb_clone+0x483/0x7a0
[  114.858751][ T8218]  ? skb_clone+0x246/0x3a0
[  114.858767][ T8218]  ? __netlink_deliver_tap+0x807/0x850
[  114.858785][ T8218]  ? netlink_deliver_tap+0x2e/0x1b0
[  114.858804][ T8218]  ? rcu_is_watching+0x15/0xb0
[  114.858826][ T8218]  ? netlink_deliver_tap+0x2e/0x1b0
[  114.858844][ T8218]  ? lock_release+0x4b/0x3e0
[  114.858863][ T8218]  netlink_unicast+0x82f/0x9e0
[  114.858883][ T8218]  ? __pfx_netlink_unicast+0x10/0x10
[  114.858901][ T8218]  ? netlink_sendmsg+0x642/0xb30
[  114.858919][ T8218]  ? skb_put+0x11b/0x210
[  114.858943][ T8218]  netlink_sendmsg+0x805/0xb30
[  114.858966][ T8218]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.858986][ T8218]  ? aa_sock_msg_perm+0xf1/0x1d0
[  114.859006][ T8218]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  114.859025][ T8218]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.859043][ T8218]  __sock_sendmsg+0x21c/0x270
[  114.859062][ T8218]  ____sys_sendmsg+0x505/0x830
[  114.859084][ T8218]  ? __pfx_____sys_sendmsg+0x10/0x10
[  114.859108][ T8218]  ? import_iovec+0x74/0xa0
[  114.859127][ T8218]  ___sys_sendmsg+0x21f/0x2a0
[  114.859148][ T8218]  ? __pfx____sys_sendmsg+0x10/0x10
[  114.859180][ T8218]  ? __fget_files+0x2a/0x420
[  114.859194][ T8218]  ? __fget_files+0x3a0/0x420
[  114.859214][ T8218]  __x64_sys_sendmsg+0x19b/0x260
[  114.859234][ T8218]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  114.859258][ T8218]  ? __pfx_ksys_write+0x10/0x10
[  114.859274][ T8218]  ? rcu_is_watching+0x15/0xb0
[  114.859289][ T8218]  do_syscall_64+0xfa/0xfa0
[  114.859309][ T8218]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.859324][ T8218]  ? clear_bhb_loop+0x60/0xb0
[  114.859339][ T8218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.859353][ T8218] RIP: 0033:0x7f7cd998ebe9
[  114.859368][ T8218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.859383][ T8218] RSP: 002b:00007f7cda89f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  114.859400][ T8218] RAX: ffffffffffffffda RBX: 00007f7cd9bc5fa0 RCX: 00007f7cd998ebe9
[  114.859410][ T8218] RDX: 0000000000000000 RSI: 0000200000001240 RDI: 0000000000000003
[  114.859419][ T8218] RBP: 00007f7cda89f090 R08: 0000000000000000 R09: 0000000000000000
[  114.859428][ T8218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.859436][ T8218] R13: 00007f7cd9bc6038 R14: 00007f7cd9bc5fa0 R15: 00007ffd843d4918
[  114.859452][ T8218]  </TASK>
[  115.258283][    T9] usb 4-1: Using ep0 maxpacket: 16
[  115.264898][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  115.276296][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  115.295194][ T8220] fuse: Unknown parameter 'user_id00000000000000000000'
[  115.305479][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  115.315403][    T9] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  115.325677][    T9] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  115.382014][ T8229] FAULT_INJECTION: forcing a failure.
[  115.382014][ T8229] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.396080][ T8229] CPU: 1 UID: 0 PID: 8229 Comm: syz.0.528 Not tainted syzkaller #0 PREEMPT(full) 
[  115.396103][ T8229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.396114][ T8229] Call Trace:
[  115.396120][ T8229]  <TASK>
[  115.396127][ T8229]  dump_stack_lvl+0x189/0x250
[  115.396158][ T8229]  ? __pfx____ratelimit+0x10/0x10
[  115.396177][ T8229]  ? __pfx_dump_stack_lvl+0x10/0x10
[  115.396198][ T8229]  ? __pfx__printk+0x10/0x10
[  115.396227][ T8229]  ? rcu_is_watching+0x15/0xb0
[  115.396245][ T8229]  should_fail_ex+0x414/0x560
[  115.396268][ T8229]  _copy_to_user+0x31/0xb0
[  115.396287][ T8229]  simple_read_from_buffer+0xe1/0x170
[  115.396307][ T8229]  proc_fail_nth_read+0x1b3/0x220
[  115.396327][ T8229]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.396349][ T8229]  ? rw_verify_area+0x2a6/0x4d0
[  115.396364][ T8229]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.396385][ T8229]  vfs_read+0x200/0xa30
[  115.396398][ T8229]  ? fdget_pos+0x247/0x320
[  115.396418][ T8229]  ? __pfx___mutex_lock+0x10/0x10
[  115.396461][ T8229]  ? __pfx_vfs_read+0x10/0x10
[  115.396483][ T8229]  ? __fget_files+0x3a0/0x420
[  115.396499][ T8229]  ? __fget_files+0x2a/0x420
[  115.396519][ T8229]  ksys_read+0x145/0x250
[  115.396536][ T8229]  ? __pfx_ksys_read+0x10/0x10
[  115.396553][ T8229]  ? rcu_is_watching+0x15/0xb0
[  115.396570][ T8229]  do_syscall_64+0xfa/0xfa0
[  115.396591][ T8229]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.396608][ T8229]  ? clear_bhb_loop+0x60/0xb0
[  115.396626][ T8229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.396642][ T8229] RIP: 0033:0x7f610bd8d5fc
[  115.396657][ T8229] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  115.396671][ T8229] RSP: 002b:00007f610cb62030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  115.396690][ T8229] RAX: ffffffffffffffda RBX: 00007f610bfc5fa0 RCX: 00007f610bd8d5fc
[  115.396702][ T8229] RDX: 000000000000000f RSI: 00007f610cb620a0 RDI: 0000000000000004
[  115.396713][ T8229] RBP: 00007f610cb62090 R08: 0000000000000000 R09: 0000000000000000
[  115.396724][ T8229] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  115.396735][ T8229] R13: 00007f610bfc6038 R14: 00007f610bfc5fa0 R15: 00007ffc5a05d028
[  115.396752][ T8229]  </TASK>
[  115.650121][    T9] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  115.650978][ T8237] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  115.664466][    T9] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  115.672227][ T8237] netlink: 32 bytes leftover after parsing attributes in process `syz.2.529'.
[  115.680297][    T9] usb 4-1: Manufacturer: syz
[  115.688129][ T8237] netlink: 24 bytes leftover after parsing attributes in process `syz.2.529'.
[  115.698010][    T9] usb 4-1: config 0 descriptor??
[  115.709629][ T8240] FAULT_INJECTION: forcing a failure.
[  115.709629][ T8240] name failslab, interval 1, probability 0, space 0, times 0
[  115.722551][ T8240] CPU: 0 UID: 0 PID: 8240 Comm: syz.0.530 Not tainted syzkaller #0 PREEMPT(full) 
[  115.722568][ T8240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.722574][ T8240] Call Trace:
[  115.722578][ T8240]  <TASK>
[  115.722583][ T8240]  dump_stack_lvl+0x189/0x250
[  115.722601][ T8240]  ? __pfx____ratelimit+0x10/0x10
[  115.722615][ T8240]  ? __pfx_dump_stack_lvl+0x10/0x10
[  115.722628][ T8240]  ? __pfx__printk+0x10/0x10
[  115.722641][ T8240]  ? fs_reclaim_acquire+0x7d/0x100
[  115.722651][ T8240]  ? rcu_is_watching+0x15/0xb0
[  115.722666][ T8240]  ? __pfx___might_resched+0x10/0x10
[  115.722676][ T8240]  ? lock_acquire+0x5f/0x360
[  115.722684][ T8240]  should_fail_ex+0x414/0x560
[  115.722699][ T8240]  should_failslab+0xa8/0x100
[  115.722708][ T8240]  kmem_cache_alloc_node_noprof+0x76/0x390
[  115.722722][ T8240]  ? __alloc_skb+0x112/0x2d0
[  115.722735][ T8240]  __alloc_skb+0x112/0x2d0
[  115.722747][ T8240]  tcp_stream_alloc_skb+0x3d/0x340
[  115.722759][ T8240]  tcp_connect+0x146f/0x4ef0
[  115.722773][ T8240]  ? rcu_is_watching+0x15/0xb0
[  115.722784][ T8240]  ? ktime_get_with_offset+0x8c/0x2a0
[  115.722798][ T8240]  ? rcu_is_watching+0x15/0xb0
[  115.722808][ T8240]  ? ktime_get_with_offset+0x8c/0x2a0
[  115.722819][ T8240]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  115.722831][ T8240]  ? __pfx_tcp_connect+0x10/0x10
[  115.722844][ T8240]  ? rcu_is_watching+0x15/0xb0
[  115.722853][ T8240]  ? get_random_u32+0x155/0x940
[  115.722872][ T8240]  ? __asan_memset+0x22/0x50
[  115.722885][ T8240]  ? __pfx_tcp_fastopen_defer_connect+0x10/0x10
[  115.722899][ T8240]  ? inet6_hash_connect+0xd8/0x170
[  115.722913][ T8240]  tcp_v6_connect+0x11f7/0x1870
[  115.722929][ T8240]  ? __pfx_tcp_v6_connect+0x10/0x10
[  115.722936][ T8240]  ? tcp_sendmsg_fastopen+0x1de/0x5e0
[  115.722946][ T8240]  ? __sock_sendmsg+0xe5/0x270
[  115.722956][ T8240]  ? ____sys_sendmsg+0x52d/0x830
[  115.722974][ T8240]  __inet_stream_connect+0x2ab/0xe80
[  115.722985][ T8240]  ? __pfx___inet_stream_connect+0x10/0x10
[  115.722996][ T8240]  ? __kasan_kmalloc+0x93/0xb0
[  115.723010][ T8240]  ? tcp_sendmsg_fastopen+0x1de/0x5e0
[  115.723021][ T8240]  tcp_sendmsg_fastopen+0x3a7/0x5e0
[  115.723032][ T8240]  tcp_sendmsg_locked+0x4d9b/0x5620
[  115.723042][ T8240]  ? process_measurement+0x2d1/0x1a40
[  115.723051][ T8240]  ? tcp_sendmsg_locked+0x4f1/0x5620
[  115.723062][ T8240]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  115.723073][ T8240]  ? __pfx_process_measurement+0x10/0x10
[  115.723081][ T8240]  ? tomoyo_check_open_permission+0x16a/0x3b0
[  115.723091][ T8240]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  115.723101][ T8240]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  115.723115][ T8240]  ? __pfx___might_resched+0x10/0x10
[  115.723126][ T8240]  ? rcu_is_watching+0x15/0xb0
[  115.723137][ T8240]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  115.723146][ T8240]  ? rcu_is_watching+0x15/0xb0
[  115.723156][ T8240]  ? __local_bh_enable_ip+0x12d/0x1c0
[  115.723169][ T8240]  tcp_sendmsg+0x2f/0x50
[  115.723179][ T8240]  __sock_sendmsg+0xe5/0x270
[  115.723189][ T8240]  ____sys_sendmsg+0x52d/0x830
[  115.723202][ T8240]  ? __pfx_____sys_sendmsg+0x10/0x10
[  115.723216][ T8240]  ? import_iovec+0x74/0xa0
[  115.723227][ T8240]  ___sys_sendmsg+0x21f/0x2a0
[  115.723240][ T8240]  ? __pfx____sys_sendmsg+0x10/0x10
[  115.723260][ T8240]  ? __fget_files+0x2a/0x420
[  115.723270][ T8240]  ? __fget_files+0x3a0/0x420
[  115.723282][ T8240]  __sys_sendmmsg+0x227/0x430
[  115.723296][ T8240]  ? __pfx___sys_sendmmsg+0x10/0x10
[  115.723310][ T8240]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  115.723327][ T8240]  ? ksys_write+0x22a/0x250
[  115.723337][ T8240]  ? __pfx_ksys_write+0x10/0x10
[  115.723346][ T8240]  __x64_sys_sendmmsg+0xa0/0xc0
[  115.723359][ T8240]  do_syscall_64+0xfa/0xfa0
[  115.723371][ T8240]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.723380][ T8240]  ? clear_bhb_loop+0x60/0xb0
[  115.723390][ T8240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.723399][ T8240] RIP: 0033:0x7f610bd8ebe9
[  115.723408][ T8240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.723416][ T8240] RSP: 002b:00007f610cb62038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  115.723427][ T8240] RAX: ffffffffffffffda RBX: 00007f610bfc5fa0 RCX: 00007f610bd8ebe9
[  115.723434][ T8240] RDX: 0000000000000001 RSI: 0000200000000ac0 RDI: 0000000000000003
[  115.723440][ T8240] RBP: 00007f610cb62090 R08: 0000000000000000 R09: 0000000000000000
[  115.723446][ T8240] R10: 0000000020080058 R11: 0000000000000246 R12: 0000000000000001
[  115.723452][ T8240] R13: 00007f610bfc6038 R14: 00007f610bfc5fa0 R15: 00007ffc5a05d028
[  115.723462][ T8240]  </TASK>
[  116.243572][ T8246] netlink: 20 bytes leftover after parsing attributes in process `syz.2.532'.
[  116.259999][    T9] rc_core: IR keymap rc-hauppauge not found
[  116.266442][    T9] Registered IR keymap rc-empty
[  116.271530][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.298336][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.308802][ T5901] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  116.319617][    T9] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  116.332791][    T9] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input40
[  116.348660][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.368372][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.388408][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.408513][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.428450][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.448533][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.458443][ T5901] usb 2-1: Using ep0 maxpacket: 16
[  116.465081][ T5901] usb 2-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 60, changing to 9
[  116.476327][ T5901] usb 2-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  116.486853][ T5901] usb 2-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 1023
[  116.497346][ T5901] usb 2-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  116.510958][ T5901] usb 2-1: config 1 interface 0 has no altsetting 0
[  116.517734][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.528817][ T5901] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  116.537933][ T5901] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  116.546106][ T5901] usb 2-1: SerialNumber: syz
[  116.552260][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.564729][ T8232] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  116.572177][ T8232] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  116.578378][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.598368][    T9] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  116.619748][    T9] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  116.629030][    T9] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  116.644653][ T8186] netlink: 120 bytes leftover after parsing attributes in process `syz.3.518'.
[  116.788882][ T8228] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  116.796541][ T8228] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  116.799324][ T5862] usb 4-1: USB disconnect, device number 8
[  117.182064][ T8284] fuse: Unknown parameter 'user_id00000000000000000000'
[  117.220776][ T5901] cdc_ether 2-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.1-1, CDC Ethernet Device, 42:42:42:42:42:42
[  117.258037][ T8295] FAULT_INJECTION: forcing a failure.
[  117.258037][ T8295] name failslab, interval 1, probability 0, space 0, times 0
[  117.261773][ T8291] vxfs: WRONG superblock magic 00000000 at 1
[  117.277309][ T8291] vxfs: WRONG superblock magic 00000000 at 8
[  117.283406][ T8295] CPU: 0 UID: 0 PID: 8295 Comm: syz.2.538 Not tainted syzkaller #0 PREEMPT(full) 
[  117.283432][ T8295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  117.283443][ T8295] Call Trace:
[  117.283449][ T8295]  <TASK>
[  117.283456][ T8295]  dump_stack_lvl+0x189/0x250
[  117.283481][ T8295]  ? __pfx____ratelimit+0x10/0x10
[  117.283501][ T8295]  ? __pfx_dump_stack_lvl+0x10/0x10
[  117.283522][ T8295]  ? __pfx__printk+0x10/0x10
[  117.283544][ T8295]  ? __pfx___might_resched+0x10/0x10
[  117.283561][ T8295]  ? lock_acquire+0x5f/0x360
[  117.283576][ T8295]  should_fail_ex+0x414/0x560
[  117.283596][ T8295]  should_failslab+0xa8/0x100
[  117.283613][ T8295]  kmem_cache_alloc_node_noprof+0x76/0x390
[  117.283636][ T8295]  ? __alloc_skb+0x112/0x2d0
[  117.283656][ T8295]  __alloc_skb+0x112/0x2d0
[  117.283677][ T8295]  netlink_ack+0x146/0xa50
[  117.283703][ T8295]  netlink_rcv_skb+0x28c/0x470
[  117.283721][ T8295]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  117.283740][ T8295]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  117.283769][ T8295]  ? bpf_lsm_capable+0x9/0x20
[  117.283783][ T8295]  ? security_capable+0x7e/0x2e0
[  117.283803][ T8295]  nfnetlink_rcv+0x26a/0x2520
[  117.283821][ T8295]  ? __dev_queue_xmit+0x1d79/0x3b50
[  117.283840][ T8295]  ? __dev_queue_xmit+0x27b/0x3b50
[  117.283860][ T8295]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  117.283876][ T8295]  ? __pfx___dev_queue_xmit+0x10/0x10
[  117.283895][ T8295]  ? ref_tracker_free+0x63a/0x7d0
[  117.283916][ T8295]  ? __asan_memcpy+0x40/0x70
[  117.283935][ T8295]  ? __pfx_ref_tracker_free+0x10/0x10
[  117.283955][ T8295]  ? __skb_clone+0x63/0x7a0
[  117.283977][ T8295]  ? __skb_clone+0x483/0x7a0
[  117.284000][ T8295]  ? skb_clone+0x246/0x3a0
[  117.284015][ T8295]  ? __netlink_deliver_tap+0x807/0x850
[  117.284034][ T8295]  ? netlink_deliver_tap+0x2e/0x1b0
[  117.284052][ T8295]  ? rcu_is_watching+0x15/0xb0
[  117.284069][ T8295]  ? netlink_deliver_tap+0x2e/0x1b0
[  117.284087][ T8295]  ? lock_release+0x4b/0x3e0
[  117.284106][ T8295]  netlink_unicast+0x82f/0x9e0
[  117.284125][ T8295]  ? __pfx_netlink_unicast+0x10/0x10
[  117.284142][ T8295]  ? netlink_sendmsg+0x642/0xb30
[  117.284160][ T8295]  ? skb_put+0x11b/0x210
[  117.284180][ T8295]  netlink_sendmsg+0x805/0xb30
[  117.284203][ T8295]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.284222][ T8295]  ? aa_sock_msg_perm+0xf1/0x1d0
[  117.284242][ T8295]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  117.284260][ T8295]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.284279][ T8295]  __sock_sendmsg+0x21c/0x270
[  117.284297][ T8295]  ____sys_sendmsg+0x505/0x830
[  117.284319][ T8295]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.284343][ T8295]  ? import_iovec+0x74/0xa0
[  117.284362][ T8295]  ___sys_sendmsg+0x21f/0x2a0
[  117.284383][ T8295]  ? __pfx____sys_sendmsg+0x10/0x10
[  117.284416][ T8295]  ? __fget_files+0x2a/0x420
[  117.284433][ T8295]  ? __fget_files+0x3a0/0x420
[  117.284455][ T8295]  __x64_sys_sendmsg+0x19b/0x260
[  117.284476][ T8295]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  117.284500][ T8295]  ? __pfx_ksys_write+0x10/0x10
[  117.284516][ T8295]  ? rcu_is_watching+0x15/0xb0
[  117.284533][ T8295]  do_syscall_64+0xfa/0xfa0
[  117.284553][ T8295]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.284568][ T8295]  ? clear_bhb_loop+0x60/0xb0
[  117.284585][ T8295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.284600][ T8295] RIP: 0033:0x7f7cd998ebe9
[  117.284614][ T8295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.284628][ T8295] RSP: 002b:00007f7cda89f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  117.284645][ T8295] RAX: ffffffffffffffda RBX: 00007f7cd9bc5fa0 RCX: 00007f7cd998ebe9
[  117.284657][ T8295] RDX: 0000000000004800 RSI: 0000200000000300 RDI: 0000000000000003
[  117.284669][ T8295] RBP: 00007f7cda89f090 R08: 0000000000000000 R09: 0000000000000000
[  117.284679][ T8295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.284689][ T8295] R13: 00007f7cd9bc6038 R14: 00007f7cd9bc5fa0 R15: 00007ffd843d4918
[  117.284707][ T8295]  </TASK>
[  117.682775][ T8291] vxfs: can't find superblock.
[  117.833288][ T8316] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  117.863738][ T8316] netlink: 32 bytes leftover after parsing attributes in process `syz.0.541'.
[  117.885235][ T8316] netlink: 12 bytes leftover after parsing attributes in process `syz.0.541'.
[  117.918126][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 68!
[  117.934638][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 7c!
[  117.942833][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 36!
[  117.950340][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 90!
[  117.959057][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 01!
[  117.966498][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 01!
[  117.974029][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 06!
[  117.981601][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 0f!
[  117.989300][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 02!
[  118.043135][ T8327] FAULT_INJECTION: forcing a failure.
[  118.043135][ T8327] name failslab, interval 1, probability 0, space 0, times 0
[  118.065345][ T8330] netlink: 4 bytes leftover after parsing attributes in process `syz.2.543'.
[  118.075732][ T8327] CPU: 0 UID: 0 PID: 8327 Comm: syz.3.542 Not tainted syzkaller #0 PREEMPT(full) 
[  118.075757][ T8327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  118.075767][ T8327] Call Trace:
[  118.075773][ T8327]  <TASK>
[  118.075780][ T8327]  dump_stack_lvl+0x189/0x250
[  118.075808][ T8327]  ? __pfx____ratelimit+0x10/0x10
[  118.075829][ T8327]  ? __pfx_dump_stack_lvl+0x10/0x10
[  118.075854][ T8327]  ? __pfx__printk+0x10/0x10
[  118.075876][ T8327]  ? __pfx___might_resched+0x10/0x10
[  118.075893][ T8327]  ? lock_acquire+0x5f/0x360
[  118.075910][ T8327]  should_fail_ex+0x414/0x560
[  118.075933][ T8327]  should_failslab+0xa8/0x100
[  118.075950][ T8327]  kmem_cache_alloc_node_noprof+0x76/0x390
[  118.075973][ T8327]  ? __alloc_skb+0x112/0x2d0
[  118.075994][ T8327]  __alloc_skb+0x112/0x2d0
[  118.076015][ T8327]  netlink_ack+0x146/0xa50
[  118.076040][ T8327]  netlink_rcv_skb+0x28c/0x470
[  118.076060][ T8327]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  118.076078][ T8327]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  118.076102][ T8327]  ? bpf_lsm_capable+0x9/0x20
[  118.076115][ T8327]  ? security_capable+0x7e/0x2e0
[  118.076134][ T8327]  nfnetlink_rcv+0x26a/0x2520
[  118.076150][ T8327]  ? __dev_queue_xmit+0x1d79/0x3b50
[  118.076168][ T8327]  ? __dev_queue_xmit+0x27b/0x3b50
[  118.076185][ T8327]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  118.076226][ T8327]  ? __pfx___dev_queue_xmit+0x10/0x10
[  118.076246][ T8327]  ? ref_tracker_free+0x63a/0x7d0
[  118.076266][ T8327]  ? __asan_memcpy+0x40/0x70
[  118.076283][ T8327]  ? __pfx_ref_tracker_free+0x10/0x10
[  118.076302][ T8327]  ? __skb_clone+0x63/0x7a0
[  118.076324][ T8327]  ? __skb_clone+0x483/0x7a0
[  118.076347][ T8327]  ? skb_clone+0x246/0x3a0
[  118.076362][ T8327]  ? __netlink_deliver_tap+0x807/0x850
[  118.076380][ T8327]  ? netlink_deliver_tap+0x2e/0x1b0
[  118.076397][ T8327]  ? rcu_is_watching+0x15/0xb0
[  118.076413][ T8327]  ? netlink_deliver_tap+0x2e/0x1b0
[  118.076430][ T8327]  ? lock_release+0x4b/0x3e0
[  118.076448][ T8327]  netlink_unicast+0x82f/0x9e0
[  118.076466][ T8327]  ? __pfx_netlink_unicast+0x10/0x10
[  118.076482][ T8327]  ? netlink_sendmsg+0x642/0xb30
[  118.076499][ T8327]  ? skb_put+0x11b/0x210
[  118.076517][ T8327]  netlink_sendmsg+0x805/0xb30
[  118.076537][ T8327]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.076557][ T8327]  ? aa_sock_msg_perm+0xf1/0x1d0
[  118.076576][ T8327]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  118.076594][ T8327]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.076612][ T8327]  __sock_sendmsg+0x21c/0x270
[  118.076631][ T8327]  ____sys_sendmsg+0x505/0x830
[  118.076663][ T8327]  ? __pfx_____sys_sendmsg+0x10/0x10
[  118.076686][ T8327]  ? import_iovec+0x74/0xa0
[  118.076705][ T8327]  ___sys_sendmsg+0x21f/0x2a0
[  118.076726][ T8327]  ? __pfx____sys_sendmsg+0x10/0x10
[  118.076760][ T8327]  ? __fget_files+0x2a/0x420
[  118.076778][ T8327]  ? __fget_files+0x3a0/0x420
[  118.076799][ T8327]  __x64_sys_sendmsg+0x19b/0x260
[  118.076821][ T8327]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  118.076844][ T8327]  ? __pfx_ksys_write+0x10/0x10
[  118.076860][ T8327]  ? rcu_is_watching+0x15/0xb0
[  118.076878][ T8327]  do_syscall_64+0xfa/0xfa0
[  118.076898][ T8327]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.076920][ T8327]  ? clear_bhb_loop+0x60/0xb0
[  118.076937][ T8327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.076952][ T8327] RIP: 0033:0x7f528ad8ebe9
[  118.076967][ T8327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.076981][ T8327] RSP: 002b:00007f528bb48038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.077001][ T8327] RAX: ffffffffffffffda RBX: 00007f528afc5fa0 RCX: 00007f528ad8ebe9
[  118.077014][ T8327] RDX: 0000000000000000 RSI: 0000200000001240 RDI: 0000000000000003
[  118.077025][ T8327] RBP: 00007f528bb48090 R08: 0000000000000000 R09: 0000000000000000
[  118.077035][ T8327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.077045][ T8327] R13: 00007f528afc6038 R14: 00007f528afc5fa0 R15: 00007ffc12c8dd38
[  118.077063][ T8327]  </TASK>
[  118.496995][ T5862] usb 2-1: USB disconnect, device number 16
[  118.504070][ T5862] cdc_ether 2-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.1-1, CDC Ethernet Device
[  118.581759][ T8333] netlink: 164 bytes leftover after parsing attributes in process `syz.2.543'.
[  118.600337][ T8335] kexec: Could not allocate control_code_buffer
[  118.657793][ T8367] fuse: Unknown parameter 'user_id00000000000000000000'
[  118.773141][ T8379] FAULT_INJECTION: forcing a failure.
[  118.773141][ T8379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.786444][ T8379] CPU: 0 UID: 0 PID: 8379 Comm: syz.3.548 Not tainted syzkaller #0 PREEMPT(full) 
[  118.786469][ T8379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  118.786480][ T8379] Call Trace:
[  118.786487][ T8379]  <TASK>
[  118.786493][ T8379]  dump_stack_lvl+0x189/0x250
[  118.786528][ T8379]  ? __pfx____ratelimit+0x10/0x10
[  118.786546][ T8379]  ? __pfx_dump_stack_lvl+0x10/0x10
[  118.786567][ T8379]  ? __pfx__printk+0x10/0x10
[  118.786585][ T8379]  ? __might_fault+0xb0/0x130
[  118.786609][ T8379]  ? rcu_is_watching+0x15/0xb0
[  118.786635][ T8379]  should_fail_ex+0x414/0x560
[  118.786658][ T8379]  _copy_from_user+0x2d/0xb0
[  118.786676][ T8379]  kstrtouint_from_user+0xc4/0x170
[  118.786698][ T8379]  ? __might_fault+0xb0/0x130
[  118.786718][ T8379]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  118.786743][ T8379]  ? vfs_write+0x211/0xb30
[  118.786759][ T8379]  ? rcu_is_watching+0x15/0xb0
[  118.786777][ T8379]  proc_fail_nth_write+0x88/0x200
[  118.786798][ T8379]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  118.786819][ T8379]  ? security_file_permission+0x75/0x290
[  118.786837][ T8379]  ? preempt_count_add+0x91/0x1a0
[  118.786853][ T8379]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  118.786874][ T8379]  vfs_write+0x27b/0xb30
[  118.786893][ T8379]  ? __pfx_vfs_write+0x10/0x10
[  118.786911][ T8379]  ? __fget_files+0x3a0/0x420
[  118.786929][ T8379]  ? __fget_files+0x2a/0x420
[  118.786950][ T8379]  ksys_write+0x145/0x250
[  118.786965][ T8379]  ? __fget_files+0x2a/0x420
[  118.786983][ T8379]  ? __pfx_ksys_write+0x10/0x10
[  118.786998][ T8379]  ? __pfx_drm_ioctl+0x10/0x10
[  118.787020][ T8379]  ? rcu_is_watching+0x15/0xb0
[  118.787038][ T8379]  do_syscall_64+0xfa/0xfa0
[  118.787057][ T8379]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.787074][ T8379]  ? clear_bhb_loop+0x60/0xb0
[  118.787092][ T8379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.787112][ T8379] RIP: 0033:0x7f528ad8d69f
[  118.787127][ T8379] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  118.787141][ T8379] RSP: 002b:00007f528bb48030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  118.787159][ T8379] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f528ad8d69f
[  118.787171][ T8379] RDX: 0000000000000001 RSI: 00007f528bb480a0 RDI: 0000000000000004
[  118.787182][ T8379] RBP: 00007f528bb48090 R08: 0000000000000000 R09: 0000000000000000
[  118.787192][ T8379] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  118.787202][ T8379] R13: 00007f528afc6038 R14: 00007f528afc5fa0 R15: 00007ffc12c8dd38
[  118.787221][ T8379]  </TASK>
[  119.172909][ T8390] netlink: 12 bytes leftover after parsing attributes in process `syz.1.552'.
[  122.187569][ T8403] netlink: 128 bytes leftover after parsing attributes in process `syz.1.553'.
[  122.201313][ T8405] FAULT_INJECTION: forcing a failure.
[  122.201313][ T8405] name failslab, interval 1, probability 0, space 0, times 0
[  122.229420][ T8403] netlink: 'syz.1.553': attribute type 5 has an invalid length.
[  122.238293][ T8405] CPU: 1 UID: 0 PID: 8405 Comm: syz.3.555 Not tainted syzkaller #0 PREEMPT(full) 
[  122.238319][ T8405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  122.238334][ T8405] Call Trace:
[  122.238340][ T8405]  <TASK>
[  122.238347][ T8405]  dump_stack_lvl+0x189/0x250
[  122.238373][ T8405]  ? __pfx____ratelimit+0x10/0x10
[  122.238392][ T8405]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.238412][ T8405]  ? __pfx__printk+0x10/0x10
[  122.238434][ T8405]  ? __pfx___might_resched+0x10/0x10
[  122.238451][ T8405]  ? lock_acquire+0x5f/0x360
[  122.238467][ T8405]  should_fail_ex+0x414/0x560
[  122.238490][ T8405]  should_failslab+0xa8/0x100
[  122.238506][ T8405]  kmem_cache_alloc_node_noprof+0x76/0x390
[  122.238528][ T8405]  ? __alloc_skb+0x112/0x2d0
[  122.238549][ T8405]  __alloc_skb+0x112/0x2d0
[  122.238570][ T8405]  netlink_ack+0x146/0xa50
[  122.238596][ T8405]  netlink_rcv_skb+0x28c/0x470
[  122.238615][ T8405]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  122.238634][ T8405]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  122.238657][ T8405]  ? bpf_lsm_capable+0x9/0x20
[  122.238672][ T8405]  ? security_capable+0x7e/0x2e0
[  122.238693][ T8405]  nfnetlink_rcv+0x26a/0x2520
[  122.238712][ T8405]  ? __dev_queue_xmit+0x1d79/0x3b50
[  122.238732][ T8405]  ? __dev_queue_xmit+0x27b/0x3b50
[  122.238752][ T8405]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  122.238768][ T8405]  ? __pfx___dev_queue_xmit+0x10/0x10
[  122.238789][ T8405]  ? ref_tracker_free+0x63a/0x7d0
[  122.238810][ T8405]  ? __asan_memcpy+0x40/0x70
[  122.238828][ T8405]  ? __pfx_ref_tracker_free+0x10/0x10
[  122.238848][ T8405]  ? __skb_clone+0x63/0x7a0
[  122.238870][ T8405]  ? __skb_clone+0x483/0x7a0
[  122.238894][ T8405]  ? skb_clone+0x246/0x3a0
[  122.238909][ T8405]  ? __netlink_deliver_tap+0x807/0x850
[  122.238929][ T8405]  ? netlink_deliver_tap+0x2e/0x1b0
[  122.238948][ T8405]  ? rcu_is_watching+0x15/0xb0
[  122.238964][ T8405]  ? netlink_deliver_tap+0x2e/0x1b0
[  122.238983][ T8405]  ? lock_release+0x4b/0x3e0
[  122.239001][ T8405]  netlink_unicast+0x82f/0x9e0
[  122.239021][ T8405]  ? __pfx_netlink_unicast+0x10/0x10
[  122.239039][ T8405]  ? netlink_sendmsg+0x642/0xb30
[  122.239057][ T8405]  ? skb_put+0x11b/0x210
[  122.239078][ T8405]  netlink_sendmsg+0x805/0xb30
[  122.239101][ T8405]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.239122][ T8405]  ? aa_sock_msg_perm+0xf1/0x1d0
[  122.239142][ T8405]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  122.239161][ T8405]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.239181][ T8405]  __sock_sendmsg+0x21c/0x270
[  122.239200][ T8405]  ____sys_sendmsg+0x505/0x830
[  122.239223][ T8405]  ? __pfx_____sys_sendmsg+0x10/0x10
[  122.239256][ T8405]  ? import_iovec+0x74/0xa0
[  122.239274][ T8405]  ___sys_sendmsg+0x21f/0x2a0
[  122.239296][ T8405]  ? __pfx____sys_sendmsg+0x10/0x10
[  122.239330][ T8405]  ? __fget_files+0x2a/0x420
[  122.239348][ T8405]  ? __fget_files+0x3a0/0x420
[  122.239369][ T8405]  __x64_sys_sendmsg+0x19b/0x260
[  122.239391][ T8405]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  122.239417][ T8405]  ? __pfx_ksys_write+0x10/0x10
[  122.239434][ T8405]  ? rcu_is_watching+0x15/0xb0
[  122.239453][ T8405]  do_syscall_64+0xfa/0xfa0
[  122.239473][ T8405]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.239489][ T8405]  ? clear_bhb_loop+0x60/0xb0
[  122.239506][ T8405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.239522][ T8405] RIP: 0033:0x7f528ad8ebe9
[  122.239537][ T8405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.239552][ T8405] RSP: 002b:00007f528bb48038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.239571][ T8405] RAX: ffffffffffffffda RBX: 00007f528afc5fa0 RCX: 00007f528ad8ebe9
[  122.239583][ T8405] RDX: 0000000000000000 RSI: 0000200000001240 RDI: 0000000000000003
[  122.239594][ T8405] RBP: 00007f528bb48090 R08: 0000000000000000 R09: 0000000000000000
[  122.239605][ T8405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.239615][ T8405] R13: 00007f528afc6038 R14: 00007f528afc5fa0 R15: 00007ffc12c8dd38
[  122.239633][ T8405]  </TASK>
[  122.707718][ T8420] FAULT_INJECTION: forcing a failure.
[  122.707718][ T8420] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.747165][ T8420] CPU: 1 UID: 0 PID: 8420 Comm: syz.1.557 Not tainted syzkaller #0 PREEMPT(full) 
[  122.747191][ T8420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  122.747201][ T8420] Call Trace:
[  122.747207][ T8420]  <TASK>
[  122.747214][ T8420]  dump_stack_lvl+0x189/0x250
[  122.747241][ T8420]  ? __pfx____ratelimit+0x10/0x10
[  122.747262][ T8420]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.747283][ T8420]  ? __pfx__printk+0x10/0x10
[  122.747302][ T8420]  ? __might_fault+0xb0/0x130
[  122.747327][ T8420]  ? rcu_is_watching+0x15/0xb0
[  122.747346][ T8420]  should_fail_ex+0x414/0x560
[  122.747368][ T8420]  _copy_from_user+0x2d/0xb0
[  122.747387][ T8420]  kstrtouint_from_user+0xc4/0x170
[  122.747408][ T8420]  ? __might_fault+0xb0/0x130
[  122.747429][ T8420]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  122.747453][ T8420]  ? vfs_write+0x211/0xb30
[  122.747469][ T8420]  ? rcu_is_watching+0x15/0xb0
[  122.747487][ T8420]  proc_fail_nth_write+0x88/0x200
[  122.747508][ T8420]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  122.747528][ T8420]  ? security_file_permission+0x75/0x290
[  122.747545][ T8420]  ? preempt_count_add+0x91/0x1a0
[  122.747562][ T8420]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  122.747582][ T8420]  vfs_write+0x27b/0xb30
[  122.747601][ T8420]  ? __pfx_vfs_write+0x10/0x10
[  122.747620][ T8420]  ? __fget_files+0x3a0/0x420
[  122.747637][ T8420]  ? __fget_files+0x2a/0x420
[  122.747658][ T8420]  ksys_write+0x145/0x250
[  122.747673][ T8420]  ? __fget_files+0x2a/0x420
[  122.747690][ T8420]  ? __pfx_ksys_write+0x10/0x10
[  122.747705][ T8420]  ? __pfx_drm_ioctl+0x10/0x10
[  122.747727][ T8420]  ? rcu_is_watching+0x15/0xb0
[  122.747750][ T8420]  do_syscall_64+0xfa/0xfa0
[  122.747770][ T8420]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.747786][ T8420]  ? clear_bhb_loop+0x60/0xb0
[  122.747804][ T8420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.747819][ T8420] RIP: 0033:0x7f4857f8d69f
[  122.747834][ T8420] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  122.747849][ T8420] RSP: 002b:00007f4858e7b030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  122.747867][ T8420] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4857f8d69f
[  122.747879][ T8420] RDX: 0000000000000001 RSI: 00007f4858e7b0a0 RDI: 0000000000000005
[  122.747890][ T8420] RBP: 00007f4858e7b090 R08: 0000000000000000 R09: 0000000000000000
[  122.747900][ T8420] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  122.747911][ T8420] R13: 00007f48581c6038 R14: 00007f48581c5fa0 R15: 00007fff0eed5348
[  122.747930][ T8420]  </TASK>
[  123.061570][ T8431] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  123.091602][ T8431] netlink: 32 bytes leftover after parsing attributes in process `syz.0.559'.
[  123.102853][ T8431] netlink: 12 bytes leftover after parsing attributes in process `syz.0.559'.
[  123.126753][ T8436] netlink: 12 bytes leftover after parsing attributes in process `syz.1.561'.
[  123.293590][ T8454] input: syz1 as /devices/virtual/input/input41
[  123.306340][ T8454] FAULT_INJECTION: forcing a failure.
[  123.306340][ T8454] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  123.348132][ T8454] CPU: 0 UID: 0 PID: 8454 Comm: syz.3.564 Not tainted syzkaller #0 PREEMPT(full) 
[  123.348164][ T8454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  123.348176][ T8454] Call Trace:
[  123.348182][ T8454]  <TASK>
[  123.348189][ T8454]  dump_stack_lvl+0x189/0x250
[  123.348219][ T8454]  ? __pfx____ratelimit+0x10/0x10
[  123.348237][ T8454]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.348256][ T8454]  ? __pfx__printk+0x10/0x10
[  123.348275][ T8454]  ? __might_fault+0xb0/0x130
[  123.348299][ T8454]  ? rcu_is_watching+0x15/0xb0
[  123.348318][ T8454]  should_fail_ex+0x414/0x560
[  123.348340][ T8454]  _copy_from_user+0x2d/0xb0
[  123.348359][ T8454]  input_event_from_user+0xb2/0x280
[  123.348379][ T8454]  ? __pfx_input_event_from_user+0x10/0x10
[  123.348400][ T8454]  ? input_event+0xc7/0xe0
[  123.348420][ T8454]  uinput_write+0x279/0xfc0
[  123.348442][ T8454]  ? __pfx_uinput_write+0x10/0x10
[  123.348462][ T8454]  ? bpf_lsm_file_permission+0x9/0x20
[  123.348482][ T8454]  ? security_file_permission+0x75/0x290
[  123.348499][ T8454]  ? rw_verify_area+0x255/0x4d0
[  123.348512][ T8454]  ? __pfx_uinput_write+0x10/0x10
[  123.348531][ T8454]  vfs_write+0x27b/0xb30
[  123.348548][ T8454]  ? __pfx_vfs_write+0x10/0x10
[  123.348562][ T8454]  ? lock_release+0x4b/0x3e0
[  123.348580][ T8454]  ? __fget_files+0x2a/0x420
[  123.348597][ T8454]  ? __fget_files+0x3a0/0x420
[  123.348615][ T8454]  ? __fget_files+0x2a/0x420
[  123.348636][ T8454]  ksys_write+0x145/0x250
[  123.348652][ T8454]  ? __pfx_ksys_write+0x10/0x10
[  123.348670][ T8454]  ? rcu_is_watching+0x15/0xb0
[  123.348688][ T8454]  do_syscall_64+0xfa/0xfa0
[  123.348708][ T8454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.348724][ T8454]  ? clear_bhb_loop+0x60/0xb0
[  123.348742][ T8454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.348757][ T8454] RIP: 0033:0x7f528ad8ebe9
[  123.348772][ T8454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.348786][ T8454] RSP: 002b:00007f528bb48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  123.348805][ T8454] RAX: ffffffffffffffda RBX: 00007f528afc5fa0 RCX: 00007f528ad8ebe9
[  123.348817][ T8454] RDX: 000000000000045c RSI: 00002000000000c0 RDI: 0000000000000004
[  123.348828][ T8454] RBP: 00007f528bb48090 R08: 0000000000000000 R09: 0000000000000000
[  123.348839][ T8454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.348849][ T8454] R13: 00007f528afc6038 R14: 00007f528afc5fa0 R15: 00007ffc12c8dd38
[  123.348868][ T8454]  </TASK>
[  123.980094][ T8475] syzkaller0: entered promiscuous mode
[  123.996238][ T8475] syzkaller0: entered allmulticast mode
[  124.041207][ T8466] /dev/rnullb0: Can't open blockdev
[  124.147273][ T5869] Bluetooth: hci1: unexpected event for opcode 0x0c1c
[  124.247740][ T8501] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  124.337929][ T8507] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  124.346864][ T8507] netlink: 32 bytes leftover after parsing attributes in process `syz.0.574'.
[  124.356811][ T8507] netlink: 12 bytes leftover after parsing attributes in process `syz.0.574'.
[  124.751907][ T8510] FAULT_INJECTION: forcing a failure.
[  124.751907][ T8510] name failslab, interval 1, probability 0, space 0, times 0
[  124.764876][ T8510] CPU: 0 UID: 0 PID: 8510 Comm: syz.2.575 Not tainted syzkaller #0 PREEMPT(full) 
[  124.764901][ T8510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  124.764911][ T8510] Call Trace:
[  124.764918][ T8510]  <TASK>
[  124.764925][ T8510]  dump_stack_lvl+0x189/0x250
[  124.764952][ T8510]  ? __pfx____ratelimit+0x10/0x10
[  124.764971][ T8510]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.764991][ T8510]  ? __pfx__printk+0x10/0x10
[  124.765011][ T8510]  ? fs_reclaim_acquire+0x7d/0x100
[  124.765028][ T8510]  ? __pfx___might_resched+0x10/0x10
[  124.765044][ T8510]  ? lock_acquire+0x5f/0x360
[  124.765068][ T8510]  should_fail_ex+0x414/0x560
[  124.765091][ T8510]  should_failslab+0xa8/0x100
[  124.765107][ T8510]  kmem_cache_alloc_noprof+0x73/0x390
[  124.765127][ T8510]  ? alloc_pid+0x9f/0xab0
[  124.765144][ T8510]  ? copy_thread+0x4c6/0x9a0
[  124.765162][ T8510]  alloc_pid+0x9f/0xab0
[  124.765183][ T8510]  copy_process+0x198e/0x3c00
[  124.765207][ T8510]  ? copy_process+0x97f/0x3c00
[  124.765227][ T8510]  ? __pfx_copy_process+0x10/0x10
[  124.765245][ T8510]  ? __raw_spin_lock_init+0x45/0x100
[  124.765267][ T8510]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  124.765288][ T8510]  vhost_task_create+0x1c4/0x290
[  124.765306][ T8510]  ? arch_stack_walk+0xfc/0x150
[  124.765325][ T8510]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  124.765347][ T8510]  ? __pfx_vhost_task_create+0x10/0x10
[  124.765369][ T8510]  ? __pfx_vhost_task_fn+0x10/0x10
[  124.765390][ T8510]  ? kasan_save_track+0x4f/0x80
[  124.765410][ T8510]  kvm_mmu_post_init_vm+0x14c/0x300
[  124.765426][ T8510]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  124.765446][ T8510]  ? __mutex_trylock_common+0x153/0x260
[  124.765465][ T8510]  ? __pfx___mutex_trylock_common+0x10/0x10
[  124.765483][ T8510]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  124.765500][ T8510]  ? rcu_is_watching+0x15/0xb0
[  124.765517][ T8510]  ? trace_contention_end+0x39/0x120
[  124.765534][ T8510]  ? __mutex_lock+0x335/0x1350
[  124.765559][ T8510]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  124.765578][ T8510]  ? rcu_is_watching+0x15/0xb0
[  124.765595][ T8510]  ? lock_release+0x4b/0x3e0
[  124.765608][ T8510]  ? get_task_pid+0x22/0x310
[  124.765628][ T8510]  kvm_vcpu_ioctl+0x95c/0xe90
[  124.765645][ T8510]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  124.765660][ T8510]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  124.765690][ T8510]  ? __fget_files+0x3a0/0x420
[  124.765706][ T8510]  ? __fget_files+0x2a/0x420
[  124.765725][ T8510]  ? bpf_lsm_file_ioctl+0x9/0x20
[  124.765744][ T8510]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  124.765758][ T8510]  __se_sys_ioctl+0xf9/0x170
[  124.765779][ T8510]  do_syscall_64+0xfa/0xfa0
[  124.765799][ T8510]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.765814][ T8510]  ? clear_bhb_loop+0x60/0xb0
[  124.765831][ T8510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.765845][ T8510] RIP: 0033:0x7f7cd998ebe9
[  124.765860][ T8510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.765874][ T8510] RSP: 002b:00007f7cda89f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  124.765895][ T8510] RAX: ffffffffffffffda RBX: 00007f7cd9bc5fa0 RCX: 00007f7cd998ebe9
[  124.765907][ T8510] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  124.765917][ T8510] RBP: 00007f7cda89f090 R08: 0000000000000000 R09: 0000000000000000
[  124.765927][ T8510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.765937][ T8510] R13: 00007f7cd9bc6038 R14: 00007f7cd9bc5fa0 R15: 00007ffd843d4918
[  124.765955][ T8510]  </TASK>
[  125.672495][ T8551] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  125.695403][ T8551] netlink: 32 bytes leftover after parsing attributes in process `syz.2.585'.
[  125.851651][ T5908] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  126.038296][ T5908] usb 1-1: Using ep0 maxpacket: 16
[  126.050436][ T5908] usb 1-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 60, changing to 9
[  126.062028][ T5908] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  126.072342][ T5908] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 1023
[  126.083404][ T5908] usb 1-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  126.096814][ T5908] usb 1-1: config 1 interface 0 has no altsetting 0
[  126.105617][ T5908] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  126.115121][ T5908] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  126.129687][ T5908] usb 1-1: SerialNumber: syz
[  126.139682][ T8542] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  126.146947][ T8542] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  126.283678][ T8580] : entered promiscuous mode
[  126.358967][ T8534] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  126.366532][ T8534] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  126.434354][ T8588] netlink: 'syz.2.593': attribute type 4 has an invalid length.
[  126.442863][ T8588] netlink: 'syz.2.593': attribute type 4 has an invalid length.
[  126.449423][    T9] usb 2-1: new low-speed USB device number 17 using dummy_hcd
[  126.451256][ T8588] netlink: 'syz.2.593': attribute type 5 has an invalid length.
[  126.492365][ T5869] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  126.501840][ T5869] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  126.600688][ T8601] FAULT_INJECTION: forcing a failure.
[  126.600688][ T8601] name failslab, interval 1, probability 0, space 0, times 0
[  126.621548][ T8601] CPU: 1 UID: 0 PID: 8601 Comm: syz.2.596 Not tainted syzkaller #0 PREEMPT(full) 
[  126.621572][ T8601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  126.621582][ T8601] Call Trace:
[  126.621589][ T8601]  <TASK>
[  126.621596][ T8601]  dump_stack_lvl+0x189/0x250
[  126.621630][ T8601]  ? __pfx____ratelimit+0x10/0x10
[  126.621649][ T8601]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.621681][ T8601]  ? __pfx__printk+0x10/0x10
[  126.621702][ T8601]  ? __pfx___might_resched+0x10/0x10
[  126.621720][ T8601]  ? lock_acquire+0x5f/0x360
[  126.621745][ T8601]  should_fail_ex+0x414/0x560
[  126.621774][ T8601]  should_failslab+0xa8/0x100
[  126.621800][ T8601]  __kvmalloc_node_noprof+0x15c/0x5b0
[  126.621823][ T8601]  ? bitmap_port_create+0x283/0x770
[  126.621849][ T8601]  ? ip_set_elem_len+0x2b9/0x3f0
[  126.621865][ T8601]  bitmap_port_create+0x283/0x770
[  126.621884][ T8601]  ? __nla_parse+0x40/0x60
[  126.621898][ T8601]  ? __pfx_bitmap_port_create+0x10/0x10
[  126.621921][ T8601]  ip_set_create+0xa97/0x1940
[  126.621936][ T8601]  ? ip_set_create+0x4a2/0x1940
[  126.621956][ T8601]  ? __pfx_ip_set_create+0x10/0x10
[  126.621979][ T8601]  ? rcu_is_watching+0x15/0xb0
[  126.621997][ T8601]  ? lock_release+0x4b/0x3e0
[  126.622016][ T8601]  ? __nla_parse+0x40/0x60
[  126.622032][ T8601]  nfnetlink_rcv_msg+0xb4d/0x1130
[  126.622051][ T8601]  ? nfnetlink_rcv_msg+0x20d/0x1130
[  126.622072][ T8601]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  126.622086][ T8601]  ? __kasan_save_free_info+0x46/0x50
[  126.622120][ T8601]  netlink_rcv_skb+0x205/0x470
[  126.622139][ T8601]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  126.622155][ T8601]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  126.622174][ T8601]  ? bpf_lsm_capable+0x9/0x20
[  126.622188][ T8601]  ? security_capable+0x7e/0x2e0
[  126.622209][ T8601]  nfnetlink_rcv+0x26a/0x2520
[  126.622225][ T8601]  ? __dev_queue_xmit+0x1d79/0x3b50
[  126.622243][ T8601]  ? __dev_queue_xmit+0x27b/0x3b50
[  126.622263][ T8601]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  126.622279][ T8601]  ? __pfx___dev_queue_xmit+0x10/0x10
[  126.622297][ T8601]  ? ref_tracker_free+0x63a/0x7d0
[  126.622318][ T8601]  ? __asan_memcpy+0x40/0x70
[  126.622333][ T8601]  ? __pfx_ref_tracker_free+0x10/0x10
[  126.622350][ T8601]  ? __skb_clone+0x63/0x7a0
[  126.622371][ T8601]  ? __skb_clone+0x483/0x7a0
[  126.622392][ T8601]  ? skb_clone+0x246/0x3a0
[  126.622416][ T8601]  ? __netlink_deliver_tap+0x807/0x850
[  126.622434][ T8601]  ? netlink_deliver_tap+0x2e/0x1b0
[  126.622452][ T8601]  ? rcu_is_watching+0x15/0xb0
[  126.622466][ T8601]  ? netlink_deliver_tap+0x2e/0x1b0
[  126.622484][ T8601]  ? lock_release+0x4b/0x3e0
[  126.622502][ T8601]  netlink_unicast+0x82f/0x9e0
[  126.622522][ T8601]  ? __pfx_netlink_unicast+0x10/0x10
[  126.622539][ T8601]  ? netlink_sendmsg+0x642/0xb30
[  126.622557][ T8601]  ? skb_put+0x11b/0x210
[  126.622577][ T8601]  netlink_sendmsg+0x805/0xb30
[  126.622599][ T8601]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.622618][ T8601]  ? aa_sock_msg_perm+0xf1/0x1d0
[  126.622638][ T8601]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  126.622656][ T8601]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.622676][ T8601]  __sock_sendmsg+0x21c/0x270
[  126.622694][ T8601]  ____sys_sendmsg+0x505/0x830
[  126.622718][ T8601]  ? __pfx_____sys_sendmsg+0x10/0x10
[  126.622742][ T8601]  ? import_iovec+0x74/0xa0
[  126.622760][ T8601]  ___sys_sendmsg+0x21f/0x2a0
[  126.622781][ T8601]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.622816][ T8601]  ? __fget_files+0x2a/0x420
[  126.622843][ T8601]  ? __fget_files+0x3a0/0x420
[  126.622864][ T8601]  __x64_sys_sendmsg+0x19b/0x260
[  126.622885][ T8601]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  126.622910][ T8601]  ? __pfx_ksys_write+0x10/0x10
[  126.622928][ T8601]  ? rcu_is_watching+0x15/0xb0
[  126.622945][ T8601]  do_syscall_64+0xfa/0xfa0
[  126.622966][ T8601]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.622981][ T8601]  ? clear_bhb_loop+0x60/0xb0
[  126.622998][ T8601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.623013][ T8601] RIP: 0033:0x7f7cd998ebe9
[  126.623028][ T8601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.623043][ T8601] RSP: 002b:00007f7cda89f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.623062][ T8601] RAX: ffffffffffffffda RBX: 00007f7cd9bc5fa0 RCX: 00007f7cd998ebe9
[  126.623074][ T8601] RDX: 0000000000000000 RSI: 0000200000001240 RDI: 0000000000000003
[  126.623085][ T8601] RBP: 00007f7cda89f090 R08: 0000000000000000 R09: 0000000000000000
[  126.623096][ T8601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.623106][ T8601] R13: 00007f7cd9bc6038 R14: 00007f7cd9bc5fa0 R15: 00007ffd843d4918
[  126.623125][ T8601]  </TASK>
[  126.623363][    T9] usb 2-1: config 1 interface 0 altsetting 5 endpoint 0x1 is Bulk; changing to Interrupt
[  126.908357][  T982] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  126.915158][ T5908] cdc_ether 1-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42
[  127.094625][  T982] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  127.109700][    T9] usb 2-1: config 1 interface 0 altsetting 5 endpoint 0x82 is Bulk; changing to Interrupt
[  127.128146][    T9] usb 2-1: config 1 interface 0 has no altsetting 0
[  127.138013][    T9] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  127.153621][  T982] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  127.158287][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.170447][  T982] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.171919][    T9] usb 2-1: Product: Ỏ읇ुኟ峂ഗ뾢⣣缋雷㝃籝著鵞ﳁ澮ᲆ㶻䬆ᦌ䙌覭쑚⑕禗뱚爪叒ᒦ뙟䆳ྦḎ魾옱쒓㞶爉_ῳ佅ᜇ㜒棥ᕧ௔ݐ얟ż䩵፷Ệ擧瀿࿽鄙늗蔟亢➔춬ꚥ蟰◰甜⭔巂骋え鉲뫮殯嶏ᯙ看䳦㋳を䵠‡섞똶⪭峨ﲚ퟊铻М網崖镉䅅㉿ꉑ鹶䧄啶ඟ᪍飿듍踱
[  127.195043][  T982] usb 3-1: config 0 descriptor??
[  127.216082][ T8615] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  127.228603][ T8615] netlink: 32 bytes leftover after parsing attributes in process `syz.3.598'.
[  127.244983][  T982] pwc: Askey VC010 type 2 USB webcam detected.
[  127.249911][    T9] usb 2-1: Manufacturer: ꑛ昄⌣䡈ꃺ헾㺟챺置ꮾ蟪屜ጆ䦠훤轙䫼軃ꋆ죬狴
[  127.266073][    T9] usb 2-1: SerialNumber: а
[  127.280554][ T8571] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  127.287821][ T8571] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  127.527421][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 68!
[  127.543991][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 7c!
[  127.551546][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 36!
[  127.559523][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 90!
[  127.568334][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 01!
[  127.575786][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 01!
[  127.583312][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 06!
[  127.590981][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 0f!
[  127.598670][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 02!
[  127.608967][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 64!
[  127.644784][  T982] pwc: recv_control_msg error -32 req 02 val 2b00
[  127.653841][  T982] pwc: recv_control_msg error -32 req 02 val 2700
[  127.662327][  T982] pwc: recv_control_msg error -32 req 02 val 2c00
[  127.678620][  T982] pwc: recv_control_msg error -32 req 04 val 1000
[  127.685711][  T982] pwc: recv_control_msg error -32 req 04 val 1300
[  127.694984][  T982] pwc: recv_control_msg error -32 req 04 val 1400
[  127.880774][ T6597] usb 1-1: USB disconnect, device number 16
[  127.891629][ T6597] cdc_ether 1-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device
[  127.909599][ T8603] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.933894][ T8603] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.949672][ T8660] tmpfs: Unknown parameter 'func'
[  128.007194][  T982] pwc: recv_control_msg error -71 req 02 val 2100
[  128.022870][  T982] pwc: recv_control_msg error -71 req 04 val 1500
[  128.057570][  T982] pwc: recv_control_msg error -71 req 02 val 2500
[  128.069562][  T982] pwc: recv_control_msg error -71 req 02 val 2400
[  128.079387][  T982] pwc: recv_control_msg error -71 req 02 val 2600
[  128.097392][  T982] pwc: recv_control_msg error -71 req 02 val 2900
[  128.105077][  T982] pwc: recv_control_msg error -71 req 02 val 2800
[  128.119358][  T982] pwc: recv_control_msg error -71 req 04 val 1100
[  128.126377][  T982] pwc: recv_control_msg error -71 req 04 val 1200
[  128.146135][  T982] pwc: Registered as video103.
[  128.158136][  T982] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input42
[  128.193441][  T982] usb 3-1: USB disconnect, device number 8
[  128.311575][ T8714] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.321185][ T8714] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.340160][ T8714] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.359134][ T8714] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.381777][ T8714] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.408977][ T8714] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.488260][ T5869] Bluetooth: hci1: SCO packet for unknown connection handle 200
[  128.581208][ T8738] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  128.604846][ T8738] netlink: 32 bytes leftover after parsing attributes in process `syz.0.607'.
[  128.645054][ T8747] tmpfs: Unknown parameter '�srquota�+)�D��.޹
�&�R{�2��'ɦJ���v2�O�H;�q�/��vn7y�~s	�0��6o��i��ϻ��]�%v�b��k�{�Rś+��󳮮�Y쑝�7�n����j��'
[  128.934216][ T5869] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  129.338363][ T6597] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  129.408441][    T9] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  129.468440][  T982] usb 2-1: USB disconnect, device number 17
[  129.499309][ T6597] usb 3-1: Using ep0 maxpacket: 16
[  129.510619][ T6597] usb 3-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 60, changing to 9
[  129.536896][ T6597] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  129.551446][    T9] usb 1-1: device descriptor read/64, error -71
[  129.558067][ T6597] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 1023
[  129.570129][ T6597] usb 3-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  129.589446][ T6597] usb 3-1: config 1 interface 0 has no altsetting 0
[  129.597094][ T6597] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  129.599858][ T8825] netlink: 28 bytes leftover after parsing attributes in process `syz.1.620'.
[  129.607312][ T6597] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  129.624092][ T6597] usb 3-1: SerialNumber: syz
[  129.632520][ T8782] raw-gadget.4 gadget.2: fail, usb_ep_enable returned -22
[  129.640152][ T8782] raw-gadget.4 gadget.2: fail, usb_ep_enable returned -22
[  129.729965][ T8835] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  129.739467][ T8835] netlink: 32 bytes leftover after parsing attributes in process `syz.1.622'.
[  129.788773][    T9] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  129.850526][ T8776] raw-gadget.4 gadget.2: fail, usb_ep_enable returned -22
[  129.857862][ T8776] raw-gadget.4 gadget.2: fail, usb_ep_enable returned -22
[  129.928312][    T9] usb 1-1: device descriptor read/64, error -71
[  130.039226][    T9] usb usb1-port1: attempt power cycle
[  130.278551][ T6597] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42
[  130.379319][    T9] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  130.409550][    T9] usb 1-1: device descriptor read/8, error -71
[  130.628241][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 68!
[  130.644313][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 7c!
[  130.657102][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 36!
[  130.664648][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 90!
[  130.672063][    T9] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  130.673230][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 01!
[  130.687603][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 01!
[  130.695189][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 06!
[  130.702746][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 0f!
[  130.708909][    T9] usb 1-1: device descriptor read/8, error -71
[  130.710681][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 02!
[  130.727098][    C1] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 64!
[  130.819835][    T9] usb usb1-port1: unable to enumerate USB device
[  130.850963][  T982] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  130.974694][ T6597] usb 3-1: USB disconnect, device number 9
[  130.981944][ T6597] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device
[  131.001364][  T982] usb 4-1: device descriptor read/64, error -71
[  131.238476][  T982] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  131.378657][  T982] usb 4-1: device descriptor read/64, error -71
[  131.423000][ T8943] FAULT_INJECTION: forcing a failure.
[  131.423000][ T8943] name failslab, interval 1, probability 0, space 0, times 0
[  131.437986][ T8943] CPU: 1 UID: 0 PID: 8943 Comm: syz.1.629 Not tainted syzkaller #0 PREEMPT(full) 
[  131.438011][ T8943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  131.438021][ T8943] Call Trace:
[  131.438027][ T8943]  <TASK>
[  131.438034][ T8943]  dump_stack_lvl+0x189/0x250
[  131.438062][ T8943]  ? __pfx____ratelimit+0x10/0x10
[  131.438082][ T8943]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.438103][ T8943]  ? __pfx__printk+0x10/0x10
[  131.438122][ T8943]  ? genl_family_rcv_msg_doit+0x267/0x300
[  131.438139][ T8943]  ? __pfx___might_resched+0x10/0x10
[  131.438155][ T8943]  ? lock_acquire+0x5f/0x360
[  131.438170][ T8943]  should_fail_ex+0x414/0x560
[  131.438192][ T8943]  should_failslab+0xa8/0x100
[  131.438209][ T8943]  kmem_cache_alloc_node_noprof+0x76/0x390
[  131.438232][ T8943]  ? __alloc_skb+0x112/0x2d0
[  131.438251][ T8943]  __alloc_skb+0x112/0x2d0
[  131.438270][ T8943]  netlink_ack+0x146/0xa50
[  131.438286][ T8943]  ? __pfx_genl_rcv_msg+0x10/0x10
[  131.438301][ T8943]  ? __pfx_devlink_nl_pre_doit+0x10/0x10
[  131.438316][ T8943]  ? __pfx_devlink_nl_post_doit+0x10/0x10
[  131.438332][ T8943]  ? __asan_memcpy+0x40/0x70
[  131.438351][ T8943]  ? __pfx_ref_tracker_free+0x10/0x10
[  131.438375][ T8943]  netlink_rcv_skb+0x28c/0x470
[  131.438395][ T8943]  ? __pfx_genl_rcv_msg+0x10/0x10
[  131.438417][ T8943]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  131.438438][ T8943]  ? lock_release+0x4b/0x3e0
[  131.438454][ T8943]  ? down_read+0x1ad/0x2e0
[  131.438469][ T8943]  genl_rcv+0x28/0x40
[  131.438482][ T8943]  netlink_unicast+0x82f/0x9e0
[  131.438502][ T8943]  ? __pfx_netlink_unicast+0x10/0x10
[  131.438520][ T8943]  ? netlink_sendmsg+0x642/0xb30
[  131.438537][ T8943]  ? skb_put+0x11b/0x210
[  131.438557][ T8943]  netlink_sendmsg+0x805/0xb30
[  131.438579][ T8943]  ? __pfx_netlink_sendmsg+0x10/0x10
[  131.438598][ T8943]  ? aa_sock_msg_perm+0xf1/0x1d0
[  131.438618][ T8943]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  131.438637][ T8943]  ? __pfx_netlink_sendmsg+0x10/0x10
[  131.438657][ T8943]  __sock_sendmsg+0x21c/0x270
[  131.438676][ T8943]  ____sys_sendmsg+0x505/0x830
[  131.438698][ T8943]  ? __pfx_____sys_sendmsg+0x10/0x10
[  131.438723][ T8943]  ? import_iovec+0x74/0xa0
[  131.438741][ T8943]  ___sys_sendmsg+0x21f/0x2a0
[  131.438762][ T8943]  ? __pfx____sys_sendmsg+0x10/0x10
[  131.438796][ T8943]  ? __fget_files+0x2a/0x420
[  131.438813][ T8943]  ? __fget_files+0x3a0/0x420
[  131.438833][ T8943]  __x64_sys_sendmsg+0x19b/0x260
[  131.438855][ T8943]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  131.438880][ T8943]  ? __pfx_ksys_write+0x10/0x10
[  131.438898][ T8943]  ? rcu_is_watching+0x15/0xb0
[  131.438917][ T8943]  do_syscall_64+0xfa/0xfa0
[  131.438937][ T8943]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.438953][ T8943]  ? clear_bhb_loop+0x60/0xb0
[  131.438971][ T8943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.438986][ T8943] RIP: 0033:0x7f4857f8ebe9
[  131.439001][ T8943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.439016][ T8943] RSP: 002b:00007f4858e7b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  131.439034][ T8943] RAX: ffffffffffffffda RBX: 00007f48581c5fa0 RCX: 00007f4857f8ebe9
[  131.439047][ T8943] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000003
[  131.439058][ T8943] RBP: 00007f4858e7b090 R08: 0000000000000000 R09: 0000000000000000
[  131.439068][ T8943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.439084][ T8943] R13: 00007f48581c6038 R14: 00007f48581c5fa0 R15: 00007fff0eed5348
[  131.439103][ T8943]  </TASK>
[  131.799082][  T982] usb usb4-port1: attempt power cycle
[  131.908018][ T8972] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  131.926857][ T8972] netlink: 32 bytes leftover after parsing attributes in process `syz.1.631'.
[  132.138429][  T982] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  132.162859][  T982] usb 4-1: device descriptor read/8, error -71
[  132.258134][ T9002] FAULT_INJECTION: forcing a failure.
[  132.258134][ T9002] name failslab, interval 1, probability 0, space 0, times 0
[  132.271802][ T9002] CPU: 0 UID: 0 PID: 9002 Comm: syz.2.635 Not tainted syzkaller #0 PREEMPT(full) 
[  132.271827][ T9002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  132.271837][ T9002] Call Trace:
[  132.271844][ T9002]  <TASK>
[  132.271851][ T9002]  dump_stack_lvl+0x189/0x250
[  132.271877][ T9002]  ? __pfx____ratelimit+0x10/0x10
[  132.271897][ T9002]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.271918][ T9002]  ? __pfx__printk+0x10/0x10
[  132.271940][ T9002]  ? fs_reclaim_acquire+0x7d/0x100
[  132.271958][ T9002]  ? __pfx___might_resched+0x10/0x10
[  132.271972][ T9002]  ? lock_acquire+0x5f/0x360
[  132.271989][ T9002]  should_fail_ex+0x414/0x560
[  132.272011][ T9002]  should_failslab+0xa8/0x100
[  132.272027][ T9002]  __kmalloc_cache_noprof+0x70/0x3a0
[  132.272048][ T9002]  ? sctp_auth_asoc_copy_shkeys+0x14e/0x5a0
[  132.272070][ T9002]  sctp_auth_asoc_copy_shkeys+0x14e/0x5a0
[  132.272092][ T9002]  sctp_association_new+0x15d3/0x25f0
[  132.272120][ T9002]  sctp_connect_new_asoc+0x2c5/0x690
[  132.272142][ T9002]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  132.272177][ T9002]  ? __local_bh_enable_ip+0x12d/0x1c0
[  132.272197][ T9002]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  132.272217][ T9002]  ? security_sctp_bind_connect+0x7e/0x2e0
[  132.272235][ T9002]  sctp_sendmsg+0x155c/0x2810
[  132.272260][ T9002]  ? __pfx_sctp_sendmsg+0x10/0x10
[  132.272279][ T9002]  ? rcu_is_watching+0x15/0xb0
[  132.272297][ T9002]  ? aa_sk_perm+0x81e/0x950
[  132.272317][ T9002]  ? __pfx_aa_sk_perm+0x10/0x10
[  132.272335][ T9002]  ? sock_rps_record_flow+0x19/0x410
[  132.272354][ T9002]  ? inet_sendmsg+0x2f4/0x370
[  132.272371][ T9002]  __sock_sendmsg+0x19c/0x270
[  132.272392][ T9002]  ____sys_sendmsg+0x505/0x830
[  132.272413][ T9002]  ? __pfx_____sys_sendmsg+0x10/0x10
[  132.272433][ T9002]  ? __might_fault+0xb0/0x130
[  132.272457][ T9002]  ? import_iovec+0x74/0xa0
[  132.272476][ T9002]  ___sys_sendmsg+0x21f/0x2a0
[  132.272497][ T9002]  ? __pfx____sys_sendmsg+0x10/0x10
[  132.272530][ T9002]  ? __fget_files+0x2a/0x420
[  132.272548][ T9002]  ? __fget_files+0x3a0/0x420
[  132.272569][ T9002]  __x64_sys_sendmsg+0x19b/0x260
[  132.272591][ T9002]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  132.272616][ T9002]  ? __pfx_ksys_write+0x10/0x10
[  132.272633][ T9002]  ? rcu_is_watching+0x15/0xb0
[  132.272651][ T9002]  do_syscall_64+0xfa/0xfa0
[  132.272671][ T9002]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.272687][ T9002]  ? clear_bhb_loop+0x60/0xb0
[  132.272703][ T9002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.272717][ T9002] RIP: 0033:0x7f7cd998ebe9
[  132.272732][ T9002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.272746][ T9002] RSP: 002b:00007f7cda89f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.272765][ T9002] RAX: ffffffffffffffda RBX: 00007f7cd9bc5fa0 RCX: 00007f7cd998ebe9
[  132.272777][ T9002] RDX: 0000000004048043 RSI: 0000200000000800 RDI: 0000000000000003
[  132.272789][ T9002] RBP: 00007f7cda89f090 R08: 0000000000000000 R09: 0000000000000000
[  132.272799][ T9002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.272809][ T9002] R13: 00007f7cd9bc6038 R14: 00007f7cd9bc5fa0 R15: 00007ffd843d4918
[  132.272828][ T9002]  </TASK>
[  132.418458][  T982] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  132.631216][ T9010] FAULT_INJECTION: forcing a failure.
[  132.631216][ T9010] name failslab, interval 1, probability 0, space 0, times 0
[  132.645393][ T9010] CPU: 1 UID: 0 PID: 9010 Comm: syz.1.637 Not tainted syzkaller #0 PREEMPT(full) 
[  132.645419][ T9010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  132.645429][ T9010] Call Trace:
[  132.645436][ T9010]  <TASK>
[  132.645442][ T9010]  dump_stack_lvl+0x189/0x250
[  132.645469][ T9010]  ? __pfx____ratelimit+0x10/0x10
[  132.645488][ T9010]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.645509][ T9010]  ? __pfx__printk+0x10/0x10
[  132.645532][ T9010]  ? __pfx___might_resched+0x10/0x10
[  132.645550][ T9010]  ? lock_acquire+0x5f/0x360
[  132.645566][ T9010]  should_fail_ex+0x414/0x560
[  132.645587][ T9010]  should_failslab+0xa8/0x100
[  132.645604][ T9010]  __kmalloc_noprof+0xcb/0x4b0
[  132.645625][ T9010]  ? kfree+0x4d/0x440
[  132.645642][ T9010]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  132.645664][ T9010]  tomoyo_realpath_from_path+0xe3/0x5d0
[  132.645684][ T9010]  ? tomoyo_domain+0xd9/0x130
[  132.645706][ T9010]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  132.645721][ T9010]  tomoyo_path_number_perm+0x1e8/0x5a0
[  132.645739][ T9010]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  132.645755][ T9010]  ? rcu_is_watching+0x15/0xb0
[  132.645772][ T9010]  ? rcu_is_watching+0x15/0xb0
[  132.645792][ T9010]  ? d_alloc_parallel+0x3eb/0x15e0
[  132.645813][ T9010]  ? seqcount_lockdep_reader_access+0x174/0x1c0
[  132.645837][ T9010]  ? __pfx_current_check_access_path+0x10/0x10
[  132.645858][ T9010]  ? d_alloc_parallel+0x2f0/0x15e0
[  132.645878][ T9010]  tomoyo_path_mknod+0x142/0x190
[  132.645900][ T9010]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  132.645925][ T9010]  security_path_mknod+0x17e/0x3a0
[  132.645945][ T9010]  path_openat+0xd56/0x3830
[  132.645957][ T9010]  ? arch_stack_walk+0xfc/0x150
[  132.645985][ T9010]  ? __pfx_path_openat+0x10/0x10
[  132.646004][ T9010]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.646028][ T9010]  do_filp_open+0x1fa/0x410
[  132.646049][ T9010]  ? __pfx_do_filp_open+0x10/0x10
[  132.646075][ T9010]  ? _raw_spin_unlock+0x28/0x50
[  132.646091][ T9010]  ? alloc_fd+0x64c/0x6c0
[  132.646110][ T9010]  do_sys_openat2+0x121/0x1c0
[  132.646129][ T9010]  ? __pfx_do_sys_openat2+0x10/0x10
[  132.646148][ T9010]  ? __might_fault+0xb0/0x130
[  132.646167][ T9010]  ? __might_fault+0xcc/0x130
[  132.646187][ T9010]  __se_sys_openat2+0x226/0x2c0
[  132.646206][ T9010]  ? __pfx___se_sys_openat2+0x10/0x10
[  132.646229][ T9010]  ? rcu_is_watching+0x15/0xb0
[  132.646247][ T9010]  do_syscall_64+0xfa/0xfa0
[  132.646268][ T9010]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.646282][ T9010]  ? clear_bhb_loop+0x60/0xb0
[  132.646297][ T9010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.646310][ T9010] RIP: 0033:0x7f4857f8ebe9
[  132.646324][ T9010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.646336][ T9010] RSP: 002b:00007f4858e7b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5
[  132.646351][ T9010] RAX: ffffffffffffffda RBX: 00007f48581c5fa0 RCX: 00007f4857f8ebe9
[  132.646363][ T9010] RDX: 0000200000000140 RSI: 00002000000000c0 RDI: 00000000ffffff9c
[  132.646383][ T9010] RBP: 00007f4858e7b090 R08: 0000000000000000 R09: 0000000000000000
[  132.646392][ T9010] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[  132.646402][ T9010] R13: 00007f48581c6038 R14: 00007f48581c5fa0 R15: 00007fff0eed5348
[  132.646416][ T9010]  </TASK>
[  132.646423][ T9010] ERROR: Out of memory at tomoyo_realpath_from_path.
[  132.902847][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  132.927005][  T982] usb 4-1: device descriptor read/8, error -71
[  132.938788][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  133.059334][  T982] usb usb4-port1: unable to enumerate USB device
[  133.198562][ T6597] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  133.268396][    T9] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  133.358355][ T6597] usb 3-1: Using ep0 maxpacket: 16
[  133.364655][ T6597] usb 3-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 60, changing to 9
[  133.375916][ T6597] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  133.386055][ T6597] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 1023
[  133.398144][ T6597] usb 3-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  133.411921][ T6597] usb 3-1: config 1 interface 0 has no altsetting 0
[  133.419390][ T6597] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  133.428598][ T6597] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  133.436585][ T6597] usb 3-1: SerialNumber: syz
[  133.443356][ T9019] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  133.449641][    T9] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[  133.450656][ T9019] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  133.460368][    T9] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  133.476843][    T9] usb 2-1: config 220 has no interface number 2
[  133.483439][    T9] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  133.500563][    T9] usb 2-1: config 220 interface 0 has no altsetting 0
[  133.507415][    T9] usb 2-1: config 220 interface 76 has no altsetting 0
[  133.520729][    T9] usb 2-1: config 220 interface 1 has no altsetting 0
[  133.530573][    T9] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  133.530677][ T9038] input: syz1 as /devices/virtual/input/input43
[  133.543517][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.556223][    T9] usb 2-1: Product: syz
[  133.558833][ T9038] FAULT_INJECTION: forcing a failure.
[  133.558833][ T9038] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.561235][    T9] usb 2-1: Manufacturer: syz
[  133.576765][ T9038] CPU: 1 UID: 0 PID: 9038 Comm: syz.3.642 Not tainted syzkaller #0 PREEMPT(full) 
[  133.576793][ T9038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  133.576804][ T9038] Call Trace:
[  133.576810][ T9038]  <TASK>
[  133.576816][ T9038]  dump_stack_lvl+0x189/0x250
[  133.576843][ T9038]  ? __pfx____ratelimit+0x10/0x10
[  133.576863][ T9038]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.576884][ T9038]  ? __pfx__printk+0x10/0x10
[  133.576903][ T9038]  ? __might_fault+0xb0/0x130
[  133.576927][ T9038]  ? rcu_is_watching+0x15/0xb0
[  133.576945][ T9038]  should_fail_ex+0x414/0x560
[  133.576967][ T9038]  _copy_from_user+0x2d/0xb0
[  133.576986][ T9038]  input_event_from_user+0xb2/0x280
[  133.577006][ T9038]  ? __pfx_input_event_from_user+0x10/0x10
[  133.577026][ T9038]  ? input_event+0xb2/0xe0
[  133.577047][ T9038]  uinput_write+0x279/0xfc0
[  133.577070][ T9038]  ? __pfx_uinput_write+0x10/0x10
[  133.577089][ T9038]  ? bpf_lsm_file_permission+0x9/0x20
[  133.577109][ T9038]  ? security_file_permission+0x75/0x290
[  133.577125][ T9038]  ? rw_verify_area+0x255/0x4d0
[  133.577140][ T9038]  ? __pfx_uinput_write+0x10/0x10
[  133.577160][ T9038]  vfs_write+0x27b/0xb30
[  133.577178][ T9038]  ? __pfx_vfs_write+0x10/0x10
[  133.577192][ T9038]  ? lock_release+0x4b/0x3e0
[  133.577209][ T9038]  ? __fget_files+0x2a/0x420
[  133.577226][ T9038]  ? __fget_files+0x3a0/0x420
[  133.577242][ T9038]  ? __fget_files+0x2a/0x420
[  133.577263][ T9038]  ksys_write+0x145/0x250
[  133.577285][ T9038]  ? __pfx_ksys_write+0x10/0x10
[  133.577301][ T9038]  ? rcu_is_watching+0x15/0xb0
[  133.577319][ T9038]  do_syscall_64+0xfa/0xfa0
[  133.577338][ T9038]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.577354][ T9038]  ? clear_bhb_loop+0x60/0xb0
[  133.577371][ T9038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.577386][ T9038] RIP: 0033:0x7f528ad8ebe9
[  133.577401][ T9038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.577415][ T9038] RSP: 002b:00007f528bb48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  133.577433][ T9038] RAX: ffffffffffffffda RBX: 00007f528afc5fa0 RCX: 00007f528ad8ebe9
[  133.577445][ T9038] RDX: 000000000000045c RSI: 00002000000000c0 RDI: 0000000000000004
[  133.577456][ T9038] RBP: 00007f528bb48090 R08: 0000000000000000 R09: 0000000000000000
[  133.577466][ T9038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.577482][ T9038] R13: 00007f528afc6038 R14: 00007f528afc5fa0 R15: 00007ffc12c8dd38
[  133.577498][ T9038]  </TASK>
[  133.673234][ T9017] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  133.678785][    T9] usb 2-1: SerialNumber: syz
[  133.684598][ T9017] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  133.914689][    T9] usb 2-1: selecting invalid altsetting 0
[  133.920738][    T9] usb 2-1: Found UVC 7.01 device syz (8086:0b07)
[  133.927256][    T9] usb 2-1: No valid video chain found.
[  133.937959][    T9] usb 2-1: selecting invalid altsetting 0
[  133.944707][    T9] usbtest 2-1:220.1: probe with driver usbtest failed with error -22
[  133.970153][    T9] usb 2-1: USB disconnect, device number 18
[  134.118437][ T5908] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  134.147434][ T9071] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  134.156758][ T9071] netlink: 32 bytes leftover after parsing attributes in process `syz.0.646'.
[  134.231919][ T6597] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42
[  134.278323][ T5908] usb 4-1: Using ep0 maxpacket: 16
[  134.285077][ T5908] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  134.299436][ T5908] usb 4-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[  134.310141][ T5908] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  134.325508][ T5908] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  134.335454][ T5908] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  134.346625][ T5908] usb 4-1: config 1 interface 1 has no altsetting 0
[  134.357642][ T5908] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  134.367026][ T5908] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.377162][ T5908] usb 4-1: Product: syz
[  134.381388][ T5908] usb 4-1: Manufacturer: syz
[  134.386078][ T5908] usb 4-1: SerialNumber: syz
[  134.507967][ T9091] mkiss: ax0: crc mode is auto.
[  134.514279][ T9091] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  134.523780][ T9091] /dev/rnullb0: Can't open blockdev
[  134.581556][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 68!
[  134.595658][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 7c!
[  134.603730][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 36!
[  134.611298][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 90!
[  134.619794][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 01!
[  134.627452][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 01!
[  134.635244][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 06!
[  134.643025][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 0f!
[  134.650833][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 02!
[  134.662266][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 64!
[  134.677793][ T5908] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[  134.695071][ T5908] usb 4-1: 2:1 : format type 9 is not supported yet
[  134.730995][ T5908] usb 4-1: USB disconnect, device number 13
[  134.767305][ T5996] udevd[5996]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  134.799270][ T9141] fuse: Bad value for 'fd'
[  134.865298][ T5869] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  134.866422][ T9147] random: crng reseeded on system resumption
[  134.932652][  T982] usb 3-1: USB disconnect, device number 10
[  134.955725][  T982] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device
[  134.979526][    C1] ------------[ cut here ]------------
[  134.985030][    C1] WARNING: ./include/linux/skbuff.h:1165 at nf_send_unreach6+0x828/0xa20, CPU#1: kworker/1:5/6597
[  134.995839][    C1] Modules linked in:
[  134.999803][    C1] CPU: 1 UID: 0 PID: 6597 Comm: kworker/1:5 Not tainted syzkaller #0 PREEMPT(full) 
[  135.009239][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  135.019426][    C1] Workqueue: wg-crypt-wg0 wg_packet_tx_worker
[  135.025546][    C1] RIP: 0010:nf_send_unreach6+0x828/0xa20
[  135.031244][    C1] Code: 85 f6 74 0a e8 39 1b 6f f7 e9 c8 fc ff ff e8 2f 1b 6f f7 4c 8b 7c 24 18 e9 34 fa ff ff e8 20 1b 6f f7 eb 9b e8 19 1b 6f f7 90 <0f> 0b 90 e9 c7 fb ff ff 48 85 db 0f 84 81 00 00 00 4c 8d a4 24 20
[  135.050915][    C1] RSP: 0018:ffffc90000a083c0 EFLAGS: 00010246
[  135.057005][    C1] RAX: ffffffff8a51b3b7 RBX: ffff8880323b9640 RCX: ffff888026670000
[  135.065031][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  135.073038][    C1] RBP: ffffc90000a08568 R08: ffff8880765c4903 R09: 1ffff1100ecb8920
[  135.081066][    C1] R10: dffffc0000000000 R11: ffffed100ecb8921 R12: ffff88807d85e101
[  135.089084][    C1] R13: dffffc0000000001 R14: 1ffff110064772d3 R15: 0000000000000000
[  135.097075][    C1] FS:  0000000000000000(0000) GS:ffff8881258c4000(0000) knlGS:0000000000000000
[  135.106064][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  135.112873][    C1] CR2: 00007fbaed7d0e9c CR3: 000000000e338000 CR4: 00000000003526f0
[  135.120909][    C1] Call Trace:
[  135.124198][    C1]  <IRQ>
[  135.127056][    C1]  ? is_bpf_text_address+0x292/0x2b0
[  135.132533][    C1]  ? __pfx_nf_send_unreach6+0x10/0x10
[  135.137917][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.142763][    C1]  ? __update_load_avg_se+0x751/0xbc0
[  135.148166][    C1]  nft_reject_inet_eval+0x441/0x690
[  135.153469][    C1]  nft_do_chain+0x40c/0x1920
[  135.158075][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[  135.163147][    C1]  ? ipv6_find_hdr+0xc78/0x1050
[  135.168026][    C1]  nft_do_chain_inet+0x25d/0x340
[  135.173064][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  135.178643][    C1]  ? NF_HOOK+0x9a/0x3a0
[  135.182819][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.187607][    C1]  ? lock_acquire+0x5f/0x360
[  135.192254][    C1]  ? ip_sabotage_in+0x57/0x270
[  135.197125][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  135.202637][    C1]  nf_hook_slow+0xc5/0x220
[  135.207066][    C1]  NF_HOOK+0x206/0x3a0
[  135.211193][    C1]  ? skb_orphan+0xaf/0xd0
[  135.215535][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  135.220791][    C1]  ? NF_HOOK+0x9a/0x3a0
[  135.224969][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  135.229614][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  135.234832][    C1]  __netif_receive_skb+0xd3/0x380
[  135.239919][    C1]  ? process_backlog+0x2d5/0x14f0
[  135.244962][    C1]  process_backlog+0x60e/0x14f0
[  135.249870][    C1]  ? __pfx_process_backlog+0x10/0x10
[  135.255262][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.260084][    C1]  __napi_poll+0xc4/0x360
[  135.264434][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.269559][    C1]  net_rx_action+0x707/0xe30
[  135.274188][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  135.279344][    C1]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  135.285611][    C1]  ? kvm_sched_clock_read+0x11/0x20
[  135.290873][    C1]  ? __pfx_sched_clock_cpu+0x10/0x10
[  135.296191][    C1]  handle_softirqs+0x283/0x870
[  135.301006][    C1]  ? do_softirq+0xec/0x180
[  135.305444][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  135.311123][    C1]  ? wg_socket_send_skb_to_peer+0x16b/0x1d0
[  135.317042][    C1]  do_softirq+0xec/0x180
[  135.321568][    C1]  </IRQ>
[  135.324513][    C1]  <TASK>
[  135.327453][    C1]  ? __pfx_do_softirq+0x10/0x10
[  135.332368][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.337160][    C1]  __local_bh_enable_ip+0x17d/0x1c0
[  135.342413][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  135.348168][    C1]  ? do_raw_read_unlock+0x3d/0x80
[  135.353256][    C1]  wg_socket_send_skb_to_peer+0x16b/0x1d0
[  135.359041][    C1]  wg_packet_tx_worker+0x1c8/0x7c0
[  135.364176][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.368988][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  135.374731][    C1]  process_scheduled_works+0xae1/0x17b0
[  135.380342][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  135.386352][    C1]  worker_thread+0x8a0/0xda0
[  135.391002][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  135.397353][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  135.403301][    C1]  ? __kthread_parkme+0x7b/0x200
[  135.408381][    C1]  kthread+0x711/0x8a0
[  135.412480][    C1]  ? __pfx_worker_thread+0x10/0x10
[  135.417606][    C1]  ? __pfx_kthread+0x10/0x10
[  135.422255][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.427086][    C1]  ? __pfx_kthread+0x10/0x10
[  135.431742][    C1]  ret_from_fork+0x47c/0x820
[  135.436537][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  135.441715][    C1]  ? __switch_to_asm+0x39/0x70
[  135.446493][    C1]  ? __switch_to_asm+0x33/0x70
[  135.451322][    C1]  ? __pfx_kthread+0x10/0x10
[  135.455939][    C1]  ret_from_fork_asm+0x1a/0x30
[  135.460794][    C1]  </TASK>
[  135.463845][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  135.471132][    C1] CPU: 1 UID: 0 PID: 6597 Comm: kworker/1:5 Not tainted syzkaller #0 PREEMPT(full) 
[  135.480510][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  135.490575][    C1] Workqueue: wg-crypt-wg0 wg_packet_tx_worker
[  135.496667][    C1] Call Trace:
[  135.499954][    C1]  <IRQ>
[  135.502810][    C1]  dump_stack_lvl+0x99/0x250
[  135.507427][    C1]  ? __asan_memcpy+0x40/0x70
[  135.512049][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.517278][    C1]  ? __pfx__printk+0x10/0x10
[  135.521899][    C1]  vpanic+0x281/0x750
[  135.525903][    C1]  ? __pfx_vpanic+0x10/0x10
[  135.530425][    C1]  ? is_bpf_text_address+0x292/0x2b0
[  135.535829][    C1]  ? is_bpf_text_address+0x26/0x2b0
[  135.541047][    C1]  panic+0xb9/0xc0
[  135.544782][    C1]  ? __pfx_panic+0x10/0x10
[  135.549226][    C1]  ? ret_from_fork_asm+0x1a/0x30
[  135.554177][    C1]  __warn+0x334/0x4c0
[  135.558178][    C1]  ? nf_send_unreach6+0x828/0xa20
[  135.563221][    C1]  ? nf_send_unreach6+0x828/0xa20
[  135.568354][    C1]  report_bug+0x2be/0x4f0
[  135.572698][    C1]  ? nf_send_unreach6+0x828/0xa20
[  135.577749][    C1]  ? nf_send_unreach6+0x828/0xa20
[  135.582805][    C1]  ? nf_send_unreach6+0x82a/0xa20
[  135.587846][    C1]  handle_bug+0x84/0x160
[  135.592103][    C1]  exc_invalid_op+0x1a/0x50
[  135.596622][    C1]  asm_exc_invalid_op+0x1a/0x20
[  135.601494][    C1] RIP: 0010:nf_send_unreach6+0x828/0xa20
[  135.607151][    C1] Code: 85 f6 74 0a e8 39 1b 6f f7 e9 c8 fc ff ff e8 2f 1b 6f f7 4c 8b 7c 24 18 e9 34 fa ff ff e8 20 1b 6f f7 eb 9b e8 19 1b 6f f7 90 <0f> 0b 90 e9 c7 fb ff ff 48 85 db 0f 84 81 00 00 00 4c 8d a4 24 20
[  135.626786][    C1] RSP: 0018:ffffc90000a083c0 EFLAGS: 00010246
[  135.632876][    C1] RAX: ffffffff8a51b3b7 RBX: ffff8880323b9640 RCX: ffff888026670000
[  135.640865][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  135.648853][    C1] RBP: ffffc90000a08568 R08: ffff8880765c4903 R09: 1ffff1100ecb8920
[  135.656843][    C1] R10: dffffc0000000000 R11: ffffed100ecb8921 R12: ffff88807d85e101
[  135.664858][    C1] R13: dffffc0000000001 R14: 1ffff110064772d3 R15: 0000000000000000
[  135.672852][    C1]  ? nf_send_unreach6+0x827/0xa20
[  135.677907][    C1]  ? is_bpf_text_address+0x292/0x2b0
[  135.683213][    C1]  ? __pfx_nf_send_unreach6+0x10/0x10
[  135.688609][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.693398][    C1]  ? __update_load_avg_se+0x751/0xbc0
[  135.698810][    C1]  nft_reject_inet_eval+0x441/0x690
[  135.704037][    C1]  nft_do_chain+0x40c/0x1920
[  135.708643][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[  135.713681][    C1]  ? ipv6_find_hdr+0xc78/0x1050
[  135.718566][    C1]  nft_do_chain_inet+0x25d/0x340
[  135.723521][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  135.729001][    C1]  ? NF_HOOK+0x9a/0x3a0
[  135.733176][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.737961][    C1]  ? lock_acquire+0x5f/0x360
[  135.742568][    C1]  ? ip_sabotage_in+0x57/0x270
[  135.747356][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  135.752836][    C1]  nf_hook_slow+0xc5/0x220
[  135.757278][    C1]  NF_HOOK+0x206/0x3a0
[  135.761372][    C1]  ? skb_orphan+0xaf/0xd0
[  135.765728][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  135.770951][    C1]  ? NF_HOOK+0x9a/0x3a0
[  135.775126][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  135.779736][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  135.784958][    C1]  __netif_receive_skb+0xd3/0x380
[  135.790070][    C1]  ? process_backlog+0x2d5/0x14f0
[  135.795094][    C1]  process_backlog+0x60e/0x14f0
[  135.799964][    C1]  ? __pfx_process_backlog+0x10/0x10
[  135.805260][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.810015][    C1]  __napi_poll+0xc4/0x360
[  135.814335][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.819088][    C1]  net_rx_action+0x707/0xe30
[  135.823716][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  135.828856][    C1]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  135.835090][    C1]  ? kvm_sched_clock_read+0x11/0x20
[  135.840301][    C1]  ? __pfx_sched_clock_cpu+0x10/0x10
[  135.845578][    C1]  handle_softirqs+0x283/0x870
[  135.850358][    C1]  ? do_softirq+0xec/0x180
[  135.854788][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  135.860077][    C1]  ? wg_socket_send_skb_to_peer+0x16b/0x1d0
[  135.865969][    C1]  do_softirq+0xec/0x180
[  135.870218][    C1]  </IRQ>
[  135.873143][    C1]  <TASK>
[  135.876068][    C1]  ? __pfx_do_softirq+0x10/0x10
[  135.880912][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.885694][    C1]  __local_bh_enable_ip+0x17d/0x1c0
[  135.890881][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  135.896588][    C1]  ? do_raw_read_unlock+0x3d/0x80
[  135.901600][    C1]  wg_socket_send_skb_to_peer+0x16b/0x1d0
[  135.907330][    C1]  wg_packet_tx_worker+0x1c8/0x7c0
[  135.912430][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.917188][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  135.922918][    C1]  process_scheduled_works+0xae1/0x17b0
[  135.928467][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  135.934470][    C1]  worker_thread+0x8a0/0xda0
[  135.939060][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  135.945386][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  135.951303][    C1]  ? __kthread_parkme+0x7b/0x200
[  135.956235][    C1]  kthread+0x711/0x8a0
[  135.960313][    C1]  ? __pfx_worker_thread+0x10/0x10
[  135.965413][    C1]  ? __pfx_kthread+0x10/0x10
[  135.970000][    C1]  ? rcu_is_watching+0x15/0xb0
[  135.974752][    C1]  ? __pfx_kthread+0x10/0x10
[  135.979333][    C1]  ret_from_fork+0x47c/0x820
[  135.983921][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  135.989105][    C1]  ? __switch_to_asm+0x39/0x70
[  135.993851][    C1]  ? __switch_to_asm+0x33/0x70
[  135.998598][    C1]  ? __pfx_kthread+0x10/0x10
[  136.003173][    C1]  ret_from_fork_asm+0x1a/0x30
[  136.007941][    C1]  </TASK>
[  136.011261][    C1] Kernel Offset: disabled
[  136.015588][    C1] Rebooting in 86400 seconds..