last executing test programs:

13.49935454s ago: executing program 0 (id=1820):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @ioapic={0x0, 0xfff, 0x8, 0x3ff, 0x0, [{0x3, 0x1, 0x42, '\x00', 0x5}, {0xf, 0x98, 0x0, '\x00', 0x9}, {0x1, 0x81, 0x6, '\x00', 0x4d}, {0x31, 0x2, 0x7, '\x00', 0x10}, {0x9d, 0x1, 0x3, '\x00', 0x1}, {0x6b, 0x3, 0x0, '\x00', 0xf}, {0xdc, 0x9, 0x6, '\x00', 0x4}, {0x2, 0x7, 0x1, '\x00', 0x7}, {0x81, 0x6, 0xc, '\x00', 0x6}, {0x8, 0x4, 0x9, '\x00', 0xb4}, {0x3, 0x81, 0x8, '\x00', 0x1}, {0x77, 0x0, 0x1, '\x00', 0x4}, {0x4, 0x4, 0x9, '\x00', 0x1}, {0x6, 0x6, 0x41, '\x00', 0x2}, {0x6, 0x3, 0x40, '\x00', 0x38}, {0x3, 0x0, 0x1, '\x00', 0xf}, {0x4, 0x80, 0x3, '\x00', 0xf}, {0xac, 0x8, 0x1, '\x00', 0x9a}, {0x7, 0x6, 0x18}, {0xc6, 0x9, 0xdf, '\x00', 0x7}, {0xfc, 0x7f, 0x1, '\x00', 0xc}, {0x1, 0x2, 0x5, '\x00', 0xf3}, {0xb, 0x1f, 0x8, '\x00', 0x20}, {0x4, 0x1, 0x7f, '\x00', 0x3}]}})
syz_usb_connect(0x2, 0x34, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000094d9d4084e080110aeed010203010902220001000000000904000001437b6a000905000000000000000705"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f00000000c0), 0x101041)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000ac0)=ANY=[@ANYRES32=r2, @ANYRES32=r1, @ANYBLOB='&'], 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r3, 0x400452c8, &(0x7f0000000100))
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r2, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r0}, 0x20)
recvmmsg(r0, &(0x7f0000000b80)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="480000001400030400000000000000000a3f0000", @ANYRES32=r5, @ANYBLOB="14000200ff2300000000000000000000000000011400060000000000060000000000000000000000080008000004", @ANYBLOB="05b52d71c41511034a8be02af87f1e16a204dc0a04", @ANYRES64=r5, @ANYRESOCT=0x0, @ANYBLOB="91e3a038c09f4ddd6713ea0e3dfdc08b0bcba9e0021813b10dea2d65671b684b494d3661da5e5c54b6c8d44aea38b0d2964361bb4734a08dba748e607d71f9883059ac25b8073cb79b6f9029c791a94e77ff56a602b67cb7741d1e2847d5d65b24a1958ddc3c7195be06467861bd699ff8c06c98353308b90b645597c7746b6c323f49795238a32275124d5bc60570fb7cd4d61e774956391ddeeeecabbec905e35b012df4d33de18da99f67e8443789f3d047149a06ea1f3f206a19c18017d95ecd5464e90668865c0b68496840f0399d00a9e6391437e0e689ab2318ce7c4b2eac"], 0x48}}, 0x40)

10.07192624s ago: executing program 0 (id=1826):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x80800)
syz_emit_ethernet(0xfdef, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0xf51, 0x0, 0x0, @private2, @local, {[@routing={0x84}], "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"}}}}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$igmp(0x2, 0x3, 0x2)
r4 = socket$igmp(0x2, 0x3, 0x2)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000000c0)="170000000200020000ffbe8c5ee17688a2003300010100000065fc5ad90200fb6a880000d6c9db0000db15d088bd8b7000000000d9ce9bc7e28db3000200ff01800a0000ebfc0607bdff59100ac45761547a681f009ceeff5acba400001fb700674f00c8e365d00b5033bf780aa738061f15003901dee2a75f61000000000062068f5ee50c08af9b1c568302ffff02ff03310800ab0840024f03d8e9e90539062a80e605007f71174ab498ff0b3e5a1b47b6df7b23de8caa", 0xb8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000040)=0xfffffffc)
write$vga_arbiter(0xffffffffffffffff, 0x0, 0x0)
setsockopt$MRT_FLUSH(r4, 0x0, 0xd4, &(0x7f0000000040)=0x1, 0x4)
gettid()
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000240)={0x400, 0x30, 0xf0, 0x0, 0x0, 0xa, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x100, 0x0, 0x7, 0x0, 0x5, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0x5})
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xc, &(0x7f0000000500)=@assoc_value={<r8=>0x0}, &(0x7f00000004c0)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f0000000240)={r8, 0x1, 0x5, "f420208eb4"}, 0xd)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x24}}, 0x0)

9.578293756s ago: executing program 4 (id=1830):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x80800)
syz_emit_ethernet(0xfdef, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0xf51, 0x0, 0x0, @private2, @local, {[@routing={0x84}], "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"}}}}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$igmp(0x2, 0x3, 0x2)
r3 = socket$igmp(0x2, 0x3, 0x2)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000000c0)="170000000200020000ffbe8c5ee17688a2003300010100000065fc5ad90200fb6a880000d6c9db0000db15d088bd8b7000000000d9ce9bc7e28db3000200ff01800a0000ebfc0607bdff59100ac45761547a681f009ceeff5acba400001fb700674f00c8e365d00b5033bf780aa738061f15003901dee2a75f61000000000062068f5ee50c08af9b1c568302ffff02ff03310800ab0840024f03d8e9e90539062a80e605007f71174ab498ff0b3e5a1b47b6df7b23de8caa", 0xb8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000040)=0xfffffffc)
write$vga_arbiter(0xffffffffffffffff, 0x0, 0x0)
setsockopt$MRT_FLUSH(r3, 0x0, 0xd4, &(0x7f0000000040)=0x1, 0x4)
gettid()
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r5, 0x4601, &(0x7f0000000240)={0x400, 0x30, 0xf0, 0x0, 0x0, 0xa, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x100, 0x0, 0x7, 0x0, 0x5, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0x5})
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0xc, &(0x7f0000000500)=@assoc_value, &(0x7f00000004c0)=0x8)
syz_emit_ethernet(0x80, &(0x7f0000001140)={@local, @multicast, @val={@void, {0x8100, 0x7}}, {@x25={0x805, {0x1, 0xda, 0x17, "d9c2493cdd356d731a24aa1180f8f8c7a7da3c5523987fdfbce88dddea5e07fef8dbea1d87278e9b573ba63f43809966bc9a6f9fd68b9f4825a6c27f006e6d45d5e868954e73b8c8d47260f0b33ddf01e9d1c3beb335d32dd8bca8d5c92524c9eeaa476a5e2228375e1c77"}}}}, &(0x7f00000010c0)={0x0, 0x3, [0x7ab, 0x330, 0xc86, 0xbcb]})
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x24}}, 0x0)

6.1144151s ago: executing program 0 (id=1833):
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
capset(0x0, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x8})
syz_clone(0x800500, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_usb_connect(0x0, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="120100002eab5a40401c3405cc6d010203010902120001000000000904"], 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x1a2)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0)
getresuid(&(0x7f0000000000), &(0x7f0000000480), &(0x7f00000004c0)=<r4=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',privport,access=', @ANYRESDEC=r4])
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e24, 0x9, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4ac2d78a}}, 0x0, 0x0, 0x3f, 0x0, "ee8b0e650926a96ecc136e7fb980e989db9e8bf9b93129488f651a8de213eb94cd46e19d9c65a018444a131f4da58ae36556dd38ea6c029607462029add09240005c6776267517308a3d40aa1c788df6"}, 0xd8)
connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x4, @loopback}, 0x1c)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x1, &(0x7f00000001c0)=@gcm_256={{0x304}, "6ae04425ace3f60c", "acba84f0a6731f234db1cc7f3f382ad796bd667cb12ea99509873931d2873103", '\t\x00', "ec3fff9afd96e6c0"}, 0x38)

5.94258481s ago: executing program 1 (id=1834):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000300), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_ENABLED={0x5, 0x29, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x2000c001}, 0x40)
socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000028cccef9da4c2c9cd05087d500000000000000000a44000000090a010100000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001d080007400000000b140000001000010000000000000000000000000a"], 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$DCCPDIAG_GETSOCK(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x4c, 0x12, 0x101, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, 0x400}}, 0x4c}}, 0x0)

5.940588067s ago: executing program 2 (id=1835):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newtaction={0x98, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x84, 0x1, [@m_tunnel_key={0x80, 0x1, 0x0, 0x0, {{0xf}, {0x50, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0x6}, 0x1}}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x9}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @empty}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @remote}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r7 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xaece, 0x0)
preadv(r8, &(0x7f00000001c0)=[{&(0x7f00000015c0)=""/4098, 0x1002}], 0x1, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000500)=ANY=[@ANYBLOB="0a01000005af9e08d2106528c9a4000000010902120001000000000904"], 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x458, 0x0, 0x2b8, 0xb0000010, 0x2, 0x5c8f0200, 0x388, 0x3a8, 0x3a8, 0x388, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x248, 0x290, 0x700, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve1\x00', {0xf1, 0x0, 0x33, 0x0, 0xffffff80, 0x1, 0x7fffffff}}}, @common=@unspec=@limit={{0x48}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@CONNSECMARK={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8)
r9 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x101842, 0x0)
ioctl$PPPIOCNEWUNIT(r9, 0xc004743e, &(0x7f0000000040))
r10 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xee, 0xb0, 0xf3, 0x20, 0x4b4, 0x1002, 0xcdc6, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xcd, 0xf7, 0xf2}}]}}]}}, 0x0)
ioctl$PPPIOCSACTIVE(r10, 0x40047459, &(0x7f0000000080)={0x43, 0x0})
openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)

5.886372626s ago: executing program 4 (id=1836):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018", @ANYRES32, @ANYBLOB="0000000000002000b705000000000000850000"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x800000}, 0x50)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$devlink(&(0x7f0000000280), 0xffffffffffffffff)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
r6 = socket(0x10, 0x803, 0x0)
getsockname$packet(r6, 0x0, &(0x7f0000000200))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newqdisc={0x70, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x40, 0x2, {{0x9d, 0x9, 0x0, 0x0, 0xfffffffd, 0x8}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x80000001, 0x6, 0x8, 0x4, 0xd99d}}]}]}}}]}, 0x70}}, 0x4000)
sendto$packet(0xffffffffffffffff, &(0x7f0000000580)="44c394f305916c4516999da288a8", 0x5ea, 0x0, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)
sendmsg$TIPC_NL_MEDIA_GET(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)={0x14, r5, 0x1, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0xc011}, 0x0)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

4.540818274s ago: executing program 1 (id=1838):
socket$can_raw(0x1d, 0x3, 0x1)
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f0000001a40)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000300)="8d", 0x1}], 0x1}], 0x1, 0x0)
modify_ldt$write2(0x11, &(0x7f0000000000)={0x0, 0x20000000}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
sendto$inet(r0, &(0x7f0000000100)="fc", 0x1, 0x4000004, &(0x7f00000001c0)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
r3 = userfaultfd(0x0)
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000140)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x3000, 0x1})
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000080)={r2, 0x81, 0x20}, 0xc)
getsockopt$CAN_RAW_JOIN_FILTERS(r0, 0x65, 0x6, &(0x7f00000000c0), &(0x7f0000001680)=0x4)

4.46902571s ago: executing program 4 (id=1839):
socket$nl_route(0x10, 0x3, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x8400, 0x0)
syz_emit_ethernet(0xb7, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xa9, 0x66, 0x0, 0x0, 0x2, 0x0, @empty=0xe0, @broadcast}, @dest_unreach={0x3, 0x2, 0x0, 0x0, 0x3, 0x1, {0x23, 0x4, 0x3, 0x5, 0x8, 0x65, 0xf6bf, 0x40, 0x1d, 0x4, @local, @loopback, {[@timestamp_prespec={0x44, 0x54, 0xd2, 0x3, 0xa, [{@broadcast, 0x7}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x7e3}, {@remote, 0x5}, {@remote, 0x7}, {@empty, 0xccf6}, {@broadcast, 0x101}, {@broadcast, 0xa3}, {@loopback, 0x4}, {@broadcast, 0x10000}, {@local, 0x9}]}, @generic={0x44, 0x6, "38b98bf8"}, @lsrr={0x83, 0xf, 0xea, [@broadcast, @dev={0xac, 0x14, 0x14, 0x28}, @dev={0xac, 0x14, 0x14, 0x3c}]}, @timestamp_prespec={0x44, 0xc, 0x8c, 0x3, 0x5, [{@rand_addr=0x64010101}]}]}}, "e5"}}}}}, 0x0)
unshare(0x42000900)

4.431740709s ago: executing program 3 (id=1840):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup(r0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r1)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="58000000020603006b00000000fffff000000000000900020073797a32000000000500040000000000050005000200000012000300686173683a6e65742c706f727400000005000100070000000c00078008001240093184e60bc8873ea30553267c653bec23e5ba4729b204272497f06918af5668bc4b802e837e4bb665f70caa14e71b3356c97fd8b3334942652f378915f001fe9cb26d341d74fb7e90759c66f905b561494b5c1031726b902c7e55de898441ff"], 0x58}}, 0x0)

4.36433231s ago: executing program 1 (id=1841):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x123f41, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
fcntl$setlease(r1, 0x400, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0xa0c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2800000019"], 0x28}}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
read$FUSE(0xffffffffffffffff, &(0x7f0000000300)={0x2020}, 0x2020)
ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f00000000c0)={0x4})
r6 = socket$inet6_dccp(0xa, 0x6, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x20, &(0x7f0000000080)={@empty, 0x9, 0x2, 0x0, 0x2, 0x6, 0x3}, 0x20)

4.363589732s ago: executing program 4 (id=1842):
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x84)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000580)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x400)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x15d74000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20081, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x86783, 0x0)
r4 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r5=>0x0})
bind$can_j1939(r4, &(0x7f0000000040)={0x1d, r5, 0x8000000000000003}, 0x18) (fail_nth: 1)
sendto$llc(0xffffffffffffffff, &(0x7f0000000300)="ecfea91c3c41351ef4c0b89f6c360da8cff8465bd953bd84256ce257141e691d79ab1adce6c65b2226835e9bcab3f2597bbaf243642f767b81a2696b98e6bbb87835d0b2e7e20d47bd78ac2f0cc3a26cef377fc2914045", 0x57, 0x40040, &(0x7f0000000540)={0x1a, 0x2, 0x10, 0x0, 0x7, 0x60, @remote}, 0x10)
r6 = epoll_create(0x1)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r4, &(0x7f0000000080))
socket$igmp(0x2, 0x3, 0x2)

4.251486512s ago: executing program 3 (id=1843):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x80800)
syz_emit_ethernet(0xfdef, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0xf51, 0x0, 0x0, @private2, @local, {[@routing={0x84}], "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"}}}}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$igmp(0x2, 0x3, 0x2)
r4 = socket$igmp(0x2, 0x3, 0x2)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000000c0)="170000000200020000ffbe8c5ee17688a2003300010100000065fc5ad90200fb6a880000d6c9db0000db15d088bd8b7000000000d9ce9bc7e28db3000200ff01800a0000ebfc0607bdff59100ac45761547a681f009ceeff5acba400001fb700674f00c8e365d00b5033bf780aa738061f15003901dee2a75f61000000000062068f5ee50c08af9b1c568302ffff02ff03310800ab0840024f03d8e9e90539062a80e605007f71174ab498ff0b3e5a1b47b6df7b23de8caa", 0xb8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f0000000040)=0xfffffffc)
write$vga_arbiter(0xffffffffffffffff, 0x0, 0x0)
setsockopt$MRT_FLUSH(r4, 0x0, 0xd4, &(0x7f0000000040)=0x1, 0x4)
gettid()
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000240)={0x400, 0x30, 0xf0, 0x0, 0x0, 0xa, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x100, 0x0, 0x7, 0x0, 0x5, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0x5})
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xc, &(0x7f0000000500)=@assoc_value={<r8=>0x0}, &(0x7f00000004c0)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f0000000240)={r8, 0x1, 0x5, "f420208eb4"}, 0xd)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x24}}, 0x0)

3.481994309s ago: executing program 4 (id=1844):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet_mptcp(0x2, 0x1, 0x106)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
socket$netlink(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="940000000001010400000000000000000a0000003c0001802c000180140003000000000000000d0000000000000000001400040000000000000000000000ffffac1e00010c00028005000100000000003c0002802c000180140003000000000000000000000000000000000114000400fe8000000000000000000000000000aa0c000280050001000000000008000740000000004954657246e67ea49d13f139243ef7056f26a1531e3499577bec0e9b16bb6251415eea806bfcb5f1db1980a5ce4dcd26fe9fe1b41c9c0939ae969765"], 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0xa, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000700)={'wlan1\x00'})
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r0}, 0x8)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x6, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000e50000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300001e334185850000007300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r5, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="e91c501029cf6e16dbb90481c48f", 0x0, 0x23b, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.79019938s ago: executing program 1 (id=1845):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040), 0x103b02, 0x0)
io_uring_setup(0x6280, 0x0)
r1 = openat$dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000100)=0x8000000)
syz_open_dev$sndpcmp(0x0, 0x0, 0x0)
openat$random(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_setup(0x9, &(0x7f0000000b80))
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f00000009c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
ioctl$UI_ABS_SETUP(r2, 0x401c5504, &(0x7f0000000080)={0x20, {0xfd, 0x100005, 0x1, 0x0, 0x8, 0x2}})
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000140)=@generic={&(0x7f00000000c0)='./file0\x00', 0x0, 0x10}, 0x18)
preadv(r4, &(0x7f0000000180)=[{&(0x7f00000003c0)=""/163, 0xa3}, {&(0x7f0000000300)=""/119, 0x77}, {&(0x7f0000000bc0)=""/4096, 0x1000}], 0x3, 0x7, 0x500000)
shutdown(0xffffffffffffffff, 0x1)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
socket$nl_netfilter(0x10, 0x3, 0xc)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.688228171s ago: executing program 2 (id=1846):
socket$alg(0x26, 0x5, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
syz_open_dev$vim2m(0x0, 0x0, 0x2)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r1, &(0x7f0000000380)={0x2, 0x0, @remote}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0xa1a)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
r3 = openat$rtc(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$SNDCTL_DSP_RESET(0xffffffffffffffff, 0x80044dff, 0x1000000000000)
ioctl$RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000000080)={0x3, 0x1, 0x3, 0x3, 0x5, 0x81, 0x6, 0x152, 0xffffffffffffffff})

1.630966839s ago: executing program 2 (id=1847):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x3)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000300), 0x0, 0x0)
read$msr(r0, 0x0, 0x0)
openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101801)
ioctl$USBDEVFS_CLEAR_HALT(r1, 0x4004550c, 0x0)

1.535387908s ago: executing program 3 (id=1848):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000006800)={&(0x7f0000000080)={0x44, r1, 0x615, 0x0, 0x2, {}, [@MPTCP_PM_ATTR_ADDR={0x30, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x44}, 0x5}, 0x0) (fail_nth: 1)

1.254586713s ago: executing program 0 (id=1849):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000180)={0x1, 0xaa4, 0x0, &(0x7f0000000340)})
r2 = socket$kcm(0x2, 0x922000000001, 0x106)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x20000000ec071, 0xffffffffffffffff, 0x4000)
setsockopt$sock_attach_bpf(r2, 0x1, 0x25, &(0x7f00000002c0), 0x8)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000680)=[@text16={0x10, &(0x7f0000000280)="66b9800000c00f326635010000000f3064660f38828e4258660f08676ac744240012e93bf96766c744240201000000f20f78ecf5543e660f3829544e66b9800000c00f326635002000000f300f01df66b80500000066b900200000a90a000f01c40f019c09000f01c2", 0x69}], 0x1, 0x5d, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103080, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000180)={0x1, 0xaa4, 0x0, &(0x7f0000000340)}) (async)
socket$kcm(0x2, 0x922000000001, 0x106) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x20000000ec071, 0xffffffffffffffff, 0x4000) (async)
setsockopt$sock_attach_bpf(r2, 0x1, 0x25, &(0x7f00000002c0), 0x8) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000680)=[@text16={0x10, &(0x7f0000000280)="66b9800000c00f326635010000000f3064660f38828e4258660f08676ac744240012e93bf96766c744240201000000f20f78ecf5543e660f3829544e66b9800000c00f326635002000000f300f01df66b80500000066b900200000a90a000f01c40f019c09000f01c2", 0x69}], 0x1, 0x5d, 0x0, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

1.195569452s ago: executing program 3 (id=1850):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x7)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
ioctl$SIOCAX25DELUID(r0, 0x89e2, &(0x7f00000000c0)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r2})
statx(0xffffffffffffffff, &(0x7f0000001540)='./file0\x00', 0x1000, 0x8, 0x0)
r3 = syz_clone3(&(0x7f0000001980)={0x10300000, &(0x7f0000001680), &(0x7f00000016c0), &(0x7f0000001700), {0x31}, 0x0, 0x0, &(0x7f0000001840)=""/198, &(0x7f0000001940)=[0xffffffffffffffff, 0x0], 0x2}, 0x58)
newfstatat(0xffffffffffffff9c, &(0x7f0000001a00)='./file0\x00', &(0x7f0000001a40)={0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x0)
stat(&(0x7f0000001ac0)='./file0\x00', &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000001b80)=<r6=>0x0)
fstat(0xffffffffffffffff, &(0x7f0000001bc0)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001d80)=[{{&(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000000780)=[{&(0x7f00000003c0)="36cd9c39a06ad5e544ec86599f1c6a77eabad0a3c4042c3d268b5aa4123309c2e589b74cd91a406dbc1bed13b71249b5ec51c0f2dc8afe32bd38da7aa81313dbfacb15996b8da56cc5174d73ef8714d5fd14c971a4c951e1d89d5b8aa96ce017", 0x60}, {&(0x7f0000000240)="194d19d25618bbbffed995cf", 0xc}, {&(0x7f0000000340)="da118e3a6a4c35e471e99fb14e455733517df888ee7e84547c0ec1a2969a6f", 0x1f}, {&(0x7f0000000440)="04757aa0401c00672adc58a117e081c88e727bcf69099649b0d7f215bc3298d8bff3db2651e2d508097069d89ec90da9f3c3a4509d9d210673f4b2ce8e55f110af9172955a68e5dae3b18169911a5afabe50f522b4843d53abc9bc22f0855961f7d3ca06a343ab32bf6acff8fbe044bb333ad4dc8cec09912750124dfc8f664fa2ea35f0110770c71841106ab3061164e84da9ad16118dc0d1e9d5566782cc643f99", 0xa2}, {&(0x7f0000000500)="1844efe7d97d91f5371d7392fc83be80b332516416c9de4fa8ef456f7270213f0bbe513fd07af3156a5c43119ef8cff86c6f870ea80d34e222ed453ca80082882e96eb524ef18210915ef764578ead4df91a96963e8064298fe46b66adea6a9ae530f3b1419cd9f3dddf15b7f81282dac8c5c76349204bbd81221cbaaaee503d6e41300a7100fb902ac7d17ada41a6a2eb45cb3faa075c42a6ff7c13692e3051e248b3459e13de1c26b45fb82922b0bfef", 0xb1}, {&(0x7f00000005c0)="9c14340fb7b390ea92c1ede57e3d12ab5b5344663118fac97a9ccabf2690dc", 0x1f}, {&(0x7f0000000600)="151d38a97c6ca76366f37abcac9731802a476772da1b052d1bf78c754e38ff04ef965ed40e7e4b62f929c3a9481f2491ca27f460c5fc539d4022999ce88847372090deac2a20bfeee7b3446415b7cc7700abece28faf4557b40ec5645e6ea94865ade60d21483ddb1f5b531182ba186af2bd996ec7607c15bd9e75414efe9c04ded4d0833b8162894ce52873", 0x8c}, {&(0x7f00000006c0)="1a7a2f3f284ff80b1aaf82e8581f7ac6169aeebd4f83df08daeb1f36536e33446043c3ca9a6f358c00060bfc6d1bc6d9d4721b6a3c550ce427768a13d5e57d8def5e8f9323f80401e8b384cef00956dc3982fa59c8b8d432ca62ccc056c03a773e2b149180410266622af77bc7eeea9e701076ff09d8eea4a0eead952e9a4d46e82bde2ae29d3f10f80103158030a04a000e803978216c8e9a8884dc6759ffba699509f058925f736d", 0xa9}], 0x8, &(0x7f0000000880)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4008080}}, {{&(0x7f00000008c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000c40)=[{&(0x7f0000000940)="f2efb9e513ab0869acb5c39d726c2f9089018cd2373daa6bef8aece8854c8787fad97125bc46da12516c2fda8d725227591ea304d482aeb3253443ca997072766834643b115834959025f64841cfbe31098eafe570cdc1605c3c42a296dc790ef7cf7a31bfaca6ee430b549cc4d45c11f2887a9703fda1253b9c32c4bf4effe883d5f04f85ff", 0x86}, {&(0x7f0000000a00)="a82c419368cde097ef51b77aa12e173c83d0392d24f5cf80c13197c7e1b45a252f36b5ac3188d47e21f19ddd1d97bafe767bec3d780b96e73adb68afadc7d0e90f26ae25e19ff79866373f1226c384e4e5090628e9e68ce07083a4c7d2bd63f38de308dfe187979d4378e18e09ba4e0fd90027f1abe32d973a41959d847d9c4e702dc3", 0x83}, {&(0x7f0000000ac0)="89b00aee844e7f63680906370195168f3b023998b90c1a2b45fed17ce842fb0ccf80e00078d5edd63f666eccd2e943fda637d8d355576d96cf5f003aa3fef6933db52ca67a8e7851ad4184a9e75764b5775e9b647fc7f773c05bd3c16a751e3b34cef954f4ab99aaea39307b450cde69efbb40544258f44e2029f674f4dfe26484dafc48d2f501311d5b7208f9a47f3c4963820a9e4d522af977b801139b00f9443287d6ded59779b7cbf6810eb95015982faadc", 0xb4}, {&(0x7f0000000b80)="ee3bf7d30295c24547c78163cd92900dddf6aa9721cd4f0ba8f3ec27270df4f641f956e474ac8f2466a1236a26a72a6101b097e623d2af02a4edad2580a615c9c1951b9f2da3b9a6c0e3107842693e67cc22bf7e7ffc3be825528facc4edeae6c987e8eee738d2581a10c8e5fa06f70477d7be048eb64942c3c9dba16ee6edc94cedb359abac6072f946a461a2534a063bcb352bcb3644b57c852d6e11ba2596e2fd6304211b5487f53e79ea6d9bbd7162634b47bc47", 0xb6}], 0x4, 0x0, 0x0, 0x800}}, {{&(0x7f0000000c80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000e40)=[{&(0x7f0000000d00)="4528c406a773556cc00d655259cdb83e38592b2a96c14251bb49c862b145d712687a6b0fb28736b95a97f0150ef013acb8968b7c85bcc31f9346e216610721a941e0f6eadb29d82997c2e3c22dcb9d72b353920ac6619ed7d9b5351dec40e3", 0x5f}, {&(0x7f0000000d80)="af220e7e7d271ea2d084f3e7625401ee88debb26e0ce9cd00337d6220f9fc25dc4ad83c00c968b6b1bc53da81eece1f1170538b632e52da4dddbe0beb9c7ecd714ad6aad6df1f40f22b8e5fa814b89c1d8b5686a64a10c6e97d1d9600d5482fcefa7185bc7b3819c58449f9080e5f640d7c7a2893b63ef5c60f93f2d8f1cf35f3989feeb039a06b732e4c2f87812a37ab5e8b66134c82fff43c3cc26160eb8f4fd10", 0xa2}], 0x2, 0x0, 0x0, 0x4}}, {{&(0x7f0000000e80)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001100)=[{&(0x7f0000000f00)="7cd8d845ec3912ae7eda0fe13b922f72dfd00e5bf723d0b52b4adce967a1632f3566bfec3e649f244c051d4875ec99d4440a05204d1e77a5484607c7e645a855c32721d3a6d07d34726650c3eedc2df4d91c85367f3bbaa2cac8266e3933d7850195861d62dc562119d005cdeb980b13b2e97a930e2c4eb0628dbe0bec7f72fff5fbe34e53b37db086cfcce6e0d4e0ce56a6c192e19d8334895a0865a7f2b422da6500518873bb703bbe87858dfa98c5b13d33faf5563a421827b009c24f35a8a3ea6108bb5f2b45864bceda540add460210", 0xd2}, {&(0x7f0000001000)="d2d8104df48add73189b7e2cbf7465c37e7941068ca8c784f5a5be49fe796c15cf9b6646fba99d3f34fea3d1260b323fc65574807dbd7d0c19dd5cb57a3bdc67088d9aa3bc53f94fd64fa0d5421b56173edacd5b61581d0878dbeadb31bd28f7471bfd290f137c8e9eb09f7bb86072e05a83c9fe16ff45004070d2ec856a738ff098e0e5b73d622c69483da761523e91162bcfb0badcd326cfbf530bbe58a6b1a8bf6c8220f2af0ecc8ff5eedcc1a42ad11010de2e2a31be3f117dc5569aba2709e99a9dc7b30ac6828403dcd424e9b1836e082870bd5d66957b92de0045ceee5977f3465ecd2648eabf", 0xea}], 0x2, &(0x7f0000001c40)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, r2}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r5}}}, @cred={{0x1c, 0x1, 0x2, {r6, 0x0, r7}}}], 0x128, 0x4800}}], 0x4, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
r8 = add_key(&(0x7f0000000040)='rxrpc\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffa)
r9 = add_key(&(0x7f00000013c0)='trusted\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000800)="40af", 0x2, 0xffffffffffffffff)
keyctl$revoke(0x3, r9)
keyctl$read(0xb, r9, &(0x7f00000001c0)=""/86, 0x56)
keyctl$search(0xa, r8, &(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000200)={'syz', 0x0}, r9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r10 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r10, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000029c0)={0x0, 0x0, 0x0}, 0x0)
socket(0x2b, 0x1, 0x1)
r11 = syz_open_procfs(0x0, &(0x7f0000000280)='timerslack_ns\x00')
lseek(r11, 0x8, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
unshare(0x42000080)

1.193778674s ago: executing program 1 (id=1851):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
syz_open_dev$usbmon(&(0x7f0000000000), 0x8, 0x80)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan1\x00'})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xa2, 0x7}}, './file0\x00'})
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080))
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000100)={'team0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0xe4ff, r6, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local, 0x4}}}, 0x3a)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r7, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4050)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0xff, 0x4, 0x6, 0x6}, 0x3, r3}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x0)

717.598962ms ago: executing program 3 (id=1852):
epoll_create1(0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) (async)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @private=0xa010100, @empty}, 0xc)
socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000080)=ANY=[@ANYBLOB="2800000012000100"/20, @ANYRES32=0x0, @ANYBLOB="0821000063c80235040008001d0000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4c080}, 0x4080)
socket$inet_udp(0x2, 0x2, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000000)=0xfffffffb, 0x4)
epoll_create1(0x80000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) (async)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) (async)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) (async)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$IOCTL_GET_NUM_DEVICES(r5, 0x40046104, &(0x7f00000002c0))
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000001000)={'syztnl2\x00', 0x0, 0x7, 0xa000, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @broadcast, @empty}}}})
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r7, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @broadcast}, 0x80002}}, 0x2e)
ioctl$RTC_UIE_OFF(0xffffffffffffffff, 0x7004)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_KEY(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x2c, r8, 0x9, 0x0, 0xfffffffe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY={0x10, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_IDX={0x5, 0x2, 0x5}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040805}, 0x0)

716.782495ms ago: executing program 0 (id=1853):
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x8, &(0x7f0000000440)=""/25, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r3 = dup(r2)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
sendmsg$IPVS_CMD_DEL_SERVICE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x50)

715.538563ms ago: executing program 1 (id=1854):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
move_mount(0xffffffffffffff9c, &(0x7f0000000040)='./file0/../file0\x00', 0xffffffffffffff9c, 0x0, 0x250)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x103001)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000002000b705000000000000850000009400000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x800000}, 0x50)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$devlink(&(0x7f0000000280), 0xffffffffffffffff)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
r7 = socket$packet(0x11, 0x3, 0x300)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r10, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newqdisc={0x70, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x40, 0x2, {{0x9d, 0x9, 0x0, 0x0, 0xfffffffd, 0x8}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x80000001, 0x6, 0x8, 0x4, 0xd99d}}]}]}}}]}, 0x70}}, 0x4000)
sendto$packet(r7, &(0x7f0000000580)="44c394f305916c4516999da288a8", 0x5ea, 0x0, &(0x7f0000000440)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)
sendmsg$TIPC_NL_MEDIA_GET(r5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)={0x14, r6, 0x1, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0xc011}, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

714.687547ms ago: executing program 2 (id=1855):
r0 = socket$kcm(0x21, 0x2, 0x2)
fstat(r0, &(0x7f0000000540))
statx(0xffffffffffffffff, &(0x7f00000005c0)='./file0\x00', 0x2000, 0x40, &(0x7f0000000600))
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000880), &(0x7f00000008c0)=0xc)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
accept4(r1, 0x0, 0x0, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000001580))
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x28, 0x3, 0x8, 0x5, 0x0, 0x0, {0x2, 0x0, 0x1}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0xffffff01}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x0)

508.716634ms ago: executing program 4 (id=1856):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x123f41, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
fcntl$setlease(r1, 0x400, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0xa0c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2800000019"], 0x28}}, 0x0)
clock_settime(0x0, &(0x7f00000000c0)={0x77359400})
read$FUSE(0xffffffffffffffff, &(0x7f0000000300)={0x2020}, 0x2020)
ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f00000000c0)={0x4})
r6 = socket$inet6_dccp(0xa, 0x6, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x20, &(0x7f0000000080)={@empty, 0x9, 0x2, 0x0, 0x2, 0x6, 0x3}, 0x20)

497.105073ms ago: executing program 0 (id=1857):
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
capset(0x0, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x8})
syz_clone(0x800500, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_usb_connect(0x0, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="120100002eab5a40401c3405cc6d010203010902120001000000000904"], 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x1a2)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0)
getresuid(&(0x7f0000000000), &(0x7f0000000480), &(0x7f00000004c0)=<r4=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',privport,access=', @ANYRESDEC=r4])
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e24, 0x9, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4ac2d78a}}, 0x0, 0x0, 0x3f, 0x0, "ee8b0e650926a96ecc136e7fb980e989db9e8bf9b93129488f651a8de213eb94cd46e19d9c65a018444a131f4da58ae36556dd38ea6c029607462029add09240005c6776267517308a3d40aa1c788df6"}, 0xd8)
connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x4, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000000c0), 0x4)

117.240325ms ago: executing program 2 (id=1858):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg2\x00', <r2=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0xd8, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_PEERS={0x98, 0x8, 0x0, 0x1, [{0x94, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x48, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5}}]}]}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "2767b524f45e9dfaf001c414581741c92349c3b6661d9864680582bd184ef1a6"}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}]}]}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r2}]}, 0xd8}}, 0x80)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@ipv4={""/10, ""/2, @dev}, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast2}, 0x0, @in=@multicast2}}, &(0x7f0000000000)=0xe8)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000400)={{{@in=@broadcast, @in6=@mcast2, 0x4e23, 0x7, 0x4e21, 0x1, 0x2, 0x0, 0x90, 0x11, 0x0, r4}, {0x3, 0x800, 0xc0, 0x9, 0xaa9f, 0x4e}, {0x10000, 0x8df3, 0xa, 0x8}, 0x5, 0x6e6bb5, 0x0, 0x1, 0x1}, {{@in6=@empty, 0x4d5, 0x32}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x39}, 0x3504, 0x3, 0x3, 0x5, 0xfffffff2, 0x4, 0x91}}, 0xe8)

45.041211ms ago: executing program 3 (id=1859):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x4)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0xa)
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d0000000400000007"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$procfs(0xffffffffffffff9c, &(0x7f0000001300)='/proc/timer_list\x00', 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}, {&(0x7f00000003c0)=ANY=[@ANYRESHEX], 0xe0}, {&(0x7f00000029c0)=ANY=[], 0x18}], 0x3, 0x0, 0x0, 0x48800}, 0x20040001)
lseek(0xffffffffffffffff, 0x40, 0x1)
mmap(&(0x7f00004f3000/0x3000)=nil, 0x3000, 0x2000008, 0x2010, 0xffffffffffffffff, 0xb9940000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r4, &(0x7f0000002680)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000040)="18", 0x1}], 0x1}}, {{&(0x7f0000000140)={0xa, 0x4e20, 0x0, @private0, 0x80000001}, 0x1c, &(0x7f0000000800)=[{&(0x7f0000000180)="ed", 0x1}], 0x1}}], 0x2, 0x0)

0s ago: executing program 2 (id=1860):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newtaction={0x98, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x84, 0x1, [@m_tunnel_key={0x80, 0x1, 0x0, 0x0, {{0xf}, {0x50, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0x6}, 0x1}}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x9}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @empty}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @remote}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x800}, 0x0)

kernel console output (not intermixed with test programs):

g to 7
[  445.056871][T10936] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  445.075920][T10936] usb 5-1: New USB device found, idVendor=0c12, idProduct=0030, bcdDevice= 0.00
[  445.088763][T10936] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  445.110677][T10936] usb 5-1: config 0 descriptor??
[  445.198946][T10980] ip6t_rpfilter: unknown options
[  445.246964][T10979] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  445.256319][T10979] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  445.547459][ T5902] Bluetooth: Error in BCSP hdr checksum
[  445.587698][T10936] usbhid 5-1:0.0: can't add hid device: -71
[  445.625076][T10936] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  445.643886][T10936] usb 5-1: USB disconnect, device number 31
[  445.885138][ T9122] Bluetooth: Error in BCSP hdr checksum
[  446.054234][ T9122] Bluetooth: Error in BCSP hdr checksum
[  446.145733][ T5943] r8152-cfgselector 1-1: USB disconnect, device number 27
[  446.345098][ T6273] Bluetooth: Error in BCSP hdr checksum
[  447.077726][ T6273] Bluetooth: Error in BCSP hdr checksum
[  447.306041][ T9122] Bluetooth: Error in BCSP hdr checksum
[  447.330841][T10982] Bluetooth: hci5: command 0x1003 tx timeout
[  447.336475][ T5822] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  448.521424][ T5869] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  448.525922][ T1146] Bluetooth: Error in BCSP hdr checksum
[  449.609339][ T5869] usb 4-1: Using ep0 maxpacket: 16
[  449.664778][ T9122] Bluetooth: Error in BCSP hdr checksum
[  449.944472][ T9122] Bluetooth: Error in BCSP hdr checksum
[  449.950557][ T5869] usb 4-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  450.001202][ T5869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  450.030854][ T5869] usb 4-1: Product: syz
[  450.035440][ T5869] usb 4-1: Manufacturer: syz
[  450.081076][ T5869] usb 4-1: SerialNumber: syz
[  450.366339][ T9122] Bluetooth: Error in BCSP hdr checksum
[  450.386359][ T5869] usb 4-1: config 0 descriptor??
[  450.414476][ T5869] visor 4-1:0.0: Sony Clie 3.5 converter detected
[  451.891148][ T5869] usb 4-1: clie_3_5_startup: get interface number failed: -32
[  451.898706][ T5869] visor 4-1:0.0: probe with driver visor failed with error -32
[  451.909951][ T5869] usb 4-1: USB disconnect, device number 42
[  452.084557][T11046] FAULT_INJECTION: forcing a failure.
[  452.084557][T11046] name failslab, interval 1, probability 0, space 0, times 0
[  452.097323][T11046] CPU: 0 UID: 0 PID: 11046 Comm: syz.0.1437 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  452.097342][T11046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  452.097352][T11046] Call Trace:
[  452.097357][T11046]  <TASK>
[  452.097364][T11046]  dump_stack_lvl+0x16c/0x1f0
[  452.097393][T11046]  should_fail_ex+0x50a/0x650
[  452.097419][T11046]  ? fs_reclaim_acquire+0xae/0x150
[  452.097445][T11046]  ? tomoyo_realpath_from_path+0xb9/0x720
[  452.097471][T11046]  should_failslab+0xc2/0x120
[  452.097491][T11046]  __kmalloc_noprof+0xcb/0x510
[  452.097507][T11046]  ? trace_kmalloc+0x2d/0xd0
[  452.097528][T11046]  ? __kmalloc_noprof+0x23b/0x510
[  452.097550][T11046]  tomoyo_realpath_from_path+0xb9/0x720
[  452.097576][T11046]  ? tomoyo_fill_path_info+0x233/0x420
[  452.097599][T11046]  tomoyo_mount_acl+0x1af/0x880
[  452.097623][T11046]  ? hlock_class+0x4e/0x130
[  452.097640][T11046]  ? __lock_acquire+0x15a9/0x3c40
[  452.097667][T11046]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  452.097695][T11046]  ? __pfx___lock_acquire+0x10/0x10
[  452.097717][T11046]  ? stack_trace_save+0x95/0xd0
[  452.097752][T11046]  ? trace_lock_acquire+0x14e/0x1f0
[  452.097771][T11046]  ? tomoyo_mount_permission+0x149/0x420
[  452.097795][T11046]  ? lock_acquire+0x2f/0xb0
[  452.097816][T11046]  ? tomoyo_mount_permission+0x149/0x420
[  452.097842][T11046]  tomoyo_mount_permission+0x16e/0x420
[  452.097864][T11046]  ? tomoyo_mount_permission+0x149/0x420
[  452.097888][T11046]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  452.097922][T11046]  ? get_current_fs_domain+0x184/0x1f0
[  452.097943][T11046]  security_sb_mount+0x9b/0x260
[  452.097967][T11046]  path_mount+0x129/0x1f10
[  452.097987][T11046]  ? kmem_cache_free+0x2e2/0x4d0
[  452.098003][T11046]  ? __pfx_path_mount+0x10/0x10
[  452.098025][T11046]  ? putname+0x13c/0x180
[  452.098048][T11046]  __x64_sys_mount+0x28f/0x310
[  452.098067][T11046]  ? __pfx___x64_sys_mount+0x10/0x10
[  452.098098][T11046]  do_syscall_64+0xcd/0x250
[  452.098124][T11046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.098147][T11046] RIP: 0033:0x7f600318d169
[  452.098160][T11046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.098177][T11046] RSP: 002b:00007f6003f28038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  452.098193][T11046] RAX: ffffffffffffffda RBX: 00007f60033a6160 RCX: 00007f600318d169
[  452.098204][T11046] RDX: 0000200000000040 RSI: 00002000000004c0 RDI: 0000200000000480
[  452.098215][T11046] RBP: 00007f6003f28090 R08: 0000000000000000 R09: 0000000000000000
[  452.098225][T11046] R10: 0000000000008200 R11: 0000000000000246 R12: 0000000000000001
[  452.098235][T11046] R13: 0000000000000000 R14: 00007f60033a6160 R15: 00007fffe2419c88
[  452.098258][T11046]  </TASK>
[  452.098281][T11046] ERROR: Out of memory at tomoyo_realpath_from_path.
[  453.109528][   T30] audit: type=1400 audit(1742797811.928:6971): avc:  denied  { ioctl } for  pid=11049 comm="syz.0.1441" path="socket:[33353]" dev="sockfs" ino=33353 ioctlcmd=0x660c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  453.529305][   T30] audit: type=1400 audit(1742797811.928:6972): avc:  denied  { ioctl } for  pid=11049 comm="syz.0.1441" path="socket:[33345]" dev="sockfs" ino=33345 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  453.621133][T11057] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1443'.
[  453.744379][T11061] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  453.750925][T11061] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  453.765379][T11061] vhci_hcd vhci_hcd.0: Device attached
[  454.943589][ T5869] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[  454.983607][T11064] vhci_hcd: connection reset by peer
[  454.992010][ T1146] vhci_hcd: stop threads
[  454.996258][ T1146] vhci_hcd: release socket
[  455.005931][ T1146] vhci_hcd: disconnect device
[  455.575582][T11076] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1447'.
[  455.730132][T11083] FAULT_INJECTION: forcing a failure.
[  455.730132][T11083] name failslab, interval 1, probability 0, space 0, times 0
[  455.859232][T11083] CPU: 0 UID: 0 PID: 11083 Comm: syz.4.1449 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  455.859259][T11083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  455.859269][T11083] Call Trace:
[  455.859274][T11083]  <TASK>
[  455.859281][T11083]  dump_stack_lvl+0x16c/0x1f0
[  455.859315][T11083]  should_fail_ex+0x50a/0x650
[  455.859342][T11083]  ? fs_reclaim_acquire+0xae/0x150
[  455.859367][T11083]  ? tomoyo_realpath_from_path+0xb9/0x720
[  455.859392][T11083]  should_failslab+0xc2/0x120
[  455.859411][T11083]  __kmalloc_noprof+0xcb/0x510
[  455.859428][T11083]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  455.859457][T11083]  tomoyo_realpath_from_path+0xb9/0x720
[  455.859481][T11083]  ? tomoyo_path_number_perm+0x235/0x590
[  455.859504][T11083]  ? tomoyo_path_number_perm+0x235/0x590
[  455.859528][T11083]  tomoyo_path_number_perm+0x248/0x590
[  455.859548][T11083]  ? tomoyo_path_number_perm+0x235/0x590
[  455.859571][T11083]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  455.859616][T11083]  ? __pfx_lock_release+0x10/0x10
[  455.859638][T11083]  ? trace_lock_acquire+0x14e/0x1f0
[  455.859660][T11083]  ? lock_acquire+0x2f/0xb0
[  455.859681][T11083]  ? __fget_files+0x40/0x3a0
[  455.859701][T11083]  ? __fget_files+0x206/0x3a0
[  455.859720][T11083]  security_file_ioctl+0x9b/0x240
[  455.859745][T11083]  __x64_sys_ioctl+0xb7/0x200
[  455.859771][T11083]  do_syscall_64+0xcd/0x250
[  455.859796][T11083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.859820][T11083] RIP: 0033:0x7f427838d169
[  455.859833][T11083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.859848][T11083] RSP: 002b:00007f4279243038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  455.859864][T11083] RAX: ffffffffffffffda RBX: 00007f42785a5fa0 RCX: 00007f427838d169
[  455.859875][T11083] RDX: 0000000000000000 RSI: 0000000000000301 RDI: 0000000000000003
[  455.859884][T11083] RBP: 00007f4279243090 R08: 0000000000000000 R09: 0000000000000000
[  455.859894][T11083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  455.859904][T11083] R13: 0000000000000000 R14: 00007f42785a5fa0 R15: 00007fff9b3236b8
[  455.859927][T11083]  </TASK>
[  455.859953][T11083] ERROR: Out of memory at tomoyo_realpath_from_path.
[  458.530060][T11121] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1459'.
[  459.653737][T11115] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  459.748192][   T30] audit: type=1400 audit(1742797818.568:6973): avc:  denied  { read } for  pid=11131 comm="syz.2.1463" dev="sockfs" ino=34419 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  460.757086][T11140] FAULT_INJECTION: forcing a failure.
[  460.757086][T11140] name failslab, interval 1, probability 0, space 0, times 0
[  460.793832][T11140] CPU: 0 UID: 0 PID: 11140 Comm: syz.2.1466 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  460.793848][T11140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  460.793854][T11140] Call Trace:
[  460.793858][T11140]  <TASK>
[  460.793862][T11140]  dump_stack_lvl+0x16c/0x1f0
[  460.793880][T11140]  should_fail_ex+0x50a/0x650
[  460.793897][T11140]  ? fs_reclaim_acquire+0xae/0x150
[  460.793913][T11140]  should_failslab+0xc2/0x120
[  460.793926][T11140]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  460.793936][T11140]  ? lockdep_init_map_type+0x16d/0x7d0
[  460.793952][T11140]  ? security_inode_alloc+0x3b/0x2b0
[  460.793967][T11140]  security_inode_alloc+0x3b/0x2b0
[  460.793981][T11140]  inode_init_always_gfp+0xce4/0x1030
[  460.793994][T11140]  alloc_inode+0x82/0x230
[  460.794005][T11140]  new_inode+0x22/0x210
[  460.794018][T11140]  proc_pid_make_inode+0x22/0x160
[  460.794037][T11140]  proc_pident_instantiate+0x85/0x320
[  460.794055][T11140]  proc_pident_lookup+0x226/0x2a0
[  460.794074][T11140]  __lookup_slow+0x24f/0x470
[  460.794088][T11140]  ? __pfx___lookup_slow+0x10/0x10
[  460.794105][T11140]  ? walk_component+0x342/0x5b0
[  460.794125][T11140]  ? lookup_fast+0x153/0x5f0
[  460.794141][T11140]  walk_component+0x350/0x5b0
[  460.794157][T11140]  link_path_walk.part.0.constprop.0+0x669/0xd40
[  460.794178][T11140]  path_openat+0x228/0x2d80
[  460.794187][T11140]  ? hlock_class+0x4e/0x130
[  460.794202][T11140]  ? __pfx_path_openat+0x10/0x10
[  460.794212][T11140]  ? __pfx___lock_acquire+0x10/0x10
[  460.794226][T11140]  ? lock_acquire.part.0+0x11b/0x380
[  460.794240][T11140]  ? find_held_lock+0x2d/0x110
[  460.794252][T11140]  do_filp_open+0x20c/0x470
[  460.794262][T11140]  ? __pfx_do_filp_open+0x10/0x10
[  460.794271][T11140]  ? find_held_lock+0x2d/0x110
[  460.794292][T11140]  ? __pfx_kfree_link+0x10/0x10
[  460.794310][T11140]  ? alloc_fd+0x41f/0x760
[  460.794323][T11140]  do_sys_openat2+0x17a/0x1e0
[  460.794336][T11140]  ? __pfx_do_sys_openat2+0x10/0x10
[  460.794350][T11140]  ? __fget_files+0x206/0x3a0
[  460.794362][T11140]  __x64_sys_openat+0x175/0x210
[  460.794375][T11140]  ? __pfx___x64_sys_openat+0x10/0x10
[  460.794388][T11140]  ? ksys_write+0x1ba/0x250
[  460.794401][T11140]  do_syscall_64+0xcd/0x250
[  460.794417][T11140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.794432][T11140] RIP: 0033:0x7fcc52f8bad0
[  460.794440][T11140] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  460.794450][T11140] RSP: 002b:00007fcc53d2ef10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  460.794459][T11140] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fcc52f8bad0
[  460.794466][T11140] RDX: 0000000000000002 RSI: 00007fcc53d2efa0 RDI: 00000000ffffff9c
[  460.794471][T11140] RBP: 00007fcc53d2efa0 R08: 0000000000000000 R09: 0000000000000000
[  460.794477][T11140] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  460.794483][T11140] R13: 0000000000000000 R14: 00007fcc531a5fa0 R15: 00007ffe141b1af8
[  460.794495][T11140]  </TASK>
[  461.129609][ T5869] vhci_hcd: vhci_device speed not set
[  461.462984][T11144] syzkaller1: entered promiscuous mode
[  461.468723][T11144] syzkaller1: entered allmulticast mode
[  461.927486][T11151] syzkaller1: entered promiscuous mode
[  461.949173][T11151] syzkaller1: entered allmulticast mode
[  461.978742][T11154] FAULT_INJECTION: forcing a failure.
[  461.978742][T11154] name failslab, interval 1, probability 0, space 0, times 0
[  462.032714][   T30] audit: type=1400 audit(1742797820.868:6974): avc:  denied  { ioctl } for  pid=11146 comm="syz.1.1467" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 ioctlcmd=0x9424 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  462.063754][T11154] CPU: 0 UID: 0 PID: 11154 Comm: syz.4.1469 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  462.063777][T11154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  462.063787][T11154] Call Trace:
[  462.063792][T11154]  <TASK>
[  462.063798][T11154]  dump_stack_lvl+0x16c/0x1f0
[  462.063826][T11154]  should_fail_ex+0x50a/0x650
[  462.063852][T11154]  ? fs_reclaim_acquire+0xae/0x150
[  462.063879][T11154]  should_failslab+0xc2/0x120
[  462.063898][T11154]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  462.063916][T11154]  ? __alloc_skb+0x2b1/0x380
[  462.063941][T11154]  ? __pfx_mark_lock+0x10/0x10
[  462.063966][T11154]  __alloc_skb+0x2b1/0x380
[  462.063989][T11154]  ? __pfx___alloc_skb+0x10/0x10
[  462.064012][T11154]  ? find_held_lock+0x2d/0x110
[  462.064033][T11154]  ? __might_fault+0x13b/0x190
[  462.064063][T11154]  alloc_skb_with_frags+0xe4/0x850
[  462.064082][T11154]  ? __might_fault+0xe3/0x190
[  462.064104][T11154]  sock_alloc_send_pskb+0x7f1/0x980
[  462.064129][T11154]  ? _copy_from_iter+0x15e/0x1560
[  462.064152][T11154]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  462.064174][T11154]  ? __lock_acquire+0xcc5/0x3c40
[  462.064199][T11154]  ? hlock_class+0x4e/0x130
[  462.064216][T11154]  ? __lock_acquire+0xcc5/0x3c40
[  462.064238][T11154]  ? iov_iter_advance+0x7d/0x6c0
[  462.064257][T11154]  tun_get_user+0xd3b/0x3e50
[  462.064284][T11154]  ? __pfx_tun_get_user+0x10/0x10
[  462.064299][T11154]  ? find_held_lock+0x2d/0x110
[  462.064318][T11154]  ? __pfx_lock_release+0x10/0x10
[  462.064352][T11154]  tun_chr_write_iter+0xdc/0x210
[  462.064370][T11154]  vfs_write+0x5ae/0x1150
[  462.064395][T11154]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  462.064414][T11154]  ? __pfx_vfs_write+0x10/0x10
[  462.064443][T11154]  ? __fget_files+0x40/0x3a0
[  462.064471][T11154]  ksys_write+0x12b/0x250
[  462.064486][T11154]  ? __pfx_ksys_write+0x10/0x10
[  462.064507][T11154]  do_syscall_64+0xcd/0x250
[  462.064532][T11154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.064554][T11154] RIP: 0033:0x7f427838d169
[  462.064566][T11154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  462.064582][T11154] RSP: 002b:00007f4279222038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  462.064598][T11154] RAX: ffffffffffffffda RBX: 00007f42785a6080 RCX: 00007f427838d169
[  462.064608][T11154] RDX: 0000000000000409 RSI: 0000200000003f80 RDI: 0000000000000003
[  462.064618][T11154] RBP: 00007f4279222090 R08: 0000000000000000 R09: 0000000000000000
[  462.064627][T11154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  462.064637][T11154] R13: 0000000000000001 R14: 00007f42785a6080 R15: 00007fff9b3236b8
[  462.064657][T11154]  </TASK>
[  464.427168][   T30] audit: type=1400 audit(1742797823.258:6975): avc:  denied  { bind } for  pid=11176 comm="syz.1.1476" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  464.970657][T11183] lo speed is unknown, defaulting to 1000
[  465.009163][T11183] lo speed is unknown, defaulting to 1000
[  467.281550][   T30] audit: type=1400 audit(1742797825.928:6976): avc:  denied  { unmount } for  pid=11199 comm="syz.2.1481" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  468.130937][T11218] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1487'.
[  468.844997][ T5869] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  469.035787][ T5869] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  469.059648][T11210] FAULT_INJECTION: forcing a failure.
[  469.059648][T11210] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  469.069100][ T5869] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  469.093425][ T5869] usb 5-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00
[  469.103885][ T5869] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  469.157471][T11233] fuse: Bad value for 'fd'
[  469.193704][ T5869] usb 5-1: config 0 descriptor??
[  469.610711][T11210] CPU: 1 UID: 0 PID: 11210 Comm: syz.2.1485 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  469.610739][T11210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  469.610749][T11210] Call Trace:
[  469.610754][T11210]  <TASK>
[  469.610761][T11210]  dump_stack_lvl+0x16c/0x1f0
[  469.610789][T11210]  should_fail_ex+0x50a/0x650
[  469.610817][T11210]  _copy_to_user+0x32/0xd0
[  469.610836][T11210]  simple_read_from_buffer+0xd0/0x160
[  469.610862][T11210]  proc_fail_nth_read+0x198/0x270
[  469.610885][T11210]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  469.610908][T11210]  ? rw_verify_area+0xcf/0x680
[  469.610929][T11210]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  469.610950][T11210]  vfs_read+0x1df/0xbf0
[  469.610975][T11210]  ? __fget_files+0x1fc/0x3a0
[  469.610991][T11210]  ? __pfx___mutex_lock+0x10/0x10
[  469.611014][T11210]  ? __pfx_vfs_read+0x10/0x10
[  469.611044][T11210]  ? __fget_files+0x206/0x3a0
[  469.611065][T11210]  ksys_read+0x12b/0x250
[  469.611094][T11210]  ? __pfx_ksys_read+0x10/0x10
[  469.611124][T11210]  do_syscall_64+0xcd/0x250
[  469.611147][T11210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.611169][T11210] RIP: 0033:0x7fcc52f8bb7c
[  469.611183][T11210] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  469.611198][T11210] RSP: 002b:00007fcc53d2f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  469.611213][T11210] RAX: ffffffffffffffda RBX: 00007fcc531a5fa0 RCX: 00007fcc52f8bb7c
[  469.611224][T11210] RDX: 000000000000000f RSI: 00007fcc53d2f0a0 RDI: 0000000000000004
[  469.611233][T11210] RBP: 00007fcc53d2f090 R08: 0000000000000000 R09: ffffffff81000000
[  469.611243][T11210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  469.611252][T11210] R13: 0000000000000000 R14: 00007fcc531a5fa0 R15: 00007ffe141b1af8
[  469.611266][T11210]  ? 0xffffffff81000000
[  469.611284][T11210]  </TASK>
[  470.210903][T11238] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1492'.
[  470.898330][T11247] sctp: [Deprecated]: syz.0.1495 (pid 11247) Use of int in maxseg socket option.
[  470.898330][T11247] Use struct sctp_assoc_value instead
[  471.601214][T11253] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  471.875036][ T5869] usb 5-1: string descriptor 0 read error: -71
[  471.910245][T11255] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1497'.
[  472.279742][T11256] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  472.307683][ T5869] usb 5-1: USB disconnect, device number 32
[  472.313821][T11256] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  472.391496][T11263] syzkaller0: entered promiscuous mode
[  472.512691][T11263] syzkaller0: entered allmulticast mode
[  473.703262][   T30] audit: type=1400 audit(1742797832.218:6977): avc:  denied  { ioctl } for  pid=11259 comm="syz.4.1499" path="socket:[35070]" dev="sockfs" ino=35070 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  473.823918][T11266] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1502'.
[  474.730027][T11277] lo speed is unknown, defaulting to 1000
[  474.799500][T10936] usb 3-1: new full-speed USB device number 47 using dummy_hcd
[  474.922447][T11260] tipc: Failed to remove unknown binding: 66,1,1/0:2560967063/2560967065
[  474.944982][T11260] tipc: Failed to remove unknown binding: 66,1,1/0:2560967063/2560967065
[  474.981581][T11286] syzkaller1: entered promiscuous mode
[  474.991895][T10936] usb 3-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1
[  474.997417][T11286] syzkaller1: entered allmulticast mode
[  475.016588][T10936] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.067485][T10936] usb 3-1: Product: syz
[  475.073145][T10936] usb 3-1: Manufacturer: syz
[  475.077796][T10936] usb 3-1: SerialNumber: syz
[  475.094669][T11277] lo speed is unknown, defaulting to 1000
[  475.110050][T10936] usb 3-1: config 0 descriptor??
[  475.131210][T10936] imon_raw 3-1:0.0: IR endpoint missing
[  475.692525][ T5869] usb 3-1: USB disconnect, device number 47
[  476.485559][   T30] audit: type=1326 audit(1742797834.968:6978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.3.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7fc00000
[  476.539909][   T30] audit: type=1326 audit(1742797834.968:6979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.3.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f98b7d8d169 code=0x7fc00000
[  476.563398][   T30] audit: type=1326 audit(1742797834.968:6980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.3.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7fc00000
[  476.588299][   T30] audit: type=1326 audit(1742797834.968:6981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.3.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7fc00000
[  476.612303][   T30] audit: type=1326 audit(1742797834.968:6982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.3.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7fc00000
[  476.636139][   T30] audit: type=1326 audit(1742797834.968:6983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.3.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7fc00000
[  476.694749][   T30] audit: type=1326 audit(1742797834.968:6984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.3.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7fc00000
[  476.850391][   T30] audit: type=1326 audit(1742797834.968:6985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.3.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7fc00000
[  476.877158][   T30] audit: type=1326 audit(1742797834.968:6986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.3.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7fc00000
[  477.842084][T11319] FAULT_INJECTION: forcing a failure.
[  477.842084][T11319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  478.009249][T11319] CPU: 0 UID: 0 PID: 11319 Comm: syz.3.1516 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  478.009271][T11319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  478.009281][T11319] Call Trace:
[  478.009286][T11319]  <TASK>
[  478.009293][T11319]  dump_stack_lvl+0x16c/0x1f0
[  478.009320][T11319]  should_fail_ex+0x50a/0x650
[  478.009347][T11319]  _copy_to_user+0x32/0xd0
[  478.009365][T11319]  simple_read_from_buffer+0xd0/0x160
[  478.009391][T11319]  proc_fail_nth_read+0x198/0x270
[  478.009413][T11319]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  478.009436][T11319]  ? rw_verify_area+0xcf/0x680
[  478.009456][T11319]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  478.009478][T11319]  vfs_read+0x1df/0xbf0
[  478.009500][T11319]  ? __fget_files+0x1fc/0x3a0
[  478.009516][T11319]  ? __pfx___mutex_lock+0x10/0x10
[  478.009537][T11319]  ? __pfx_vfs_read+0x10/0x10
[  478.009567][T11319]  ? __fget_files+0x206/0x3a0
[  478.009588][T11319]  ksys_read+0x12b/0x250
[  478.009611][T11319]  ? __pfx_ksys_read+0x10/0x10
[  478.009640][T11319]  do_syscall_64+0xcd/0x250
[  478.009662][T11319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.009683][T11319] RIP: 0033:0x7f98b7d8bb7c
[  478.009696][T11319] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  478.009710][T11319] RSP: 002b:00007f98b8be4030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  478.009726][T11319] RAX: ffffffffffffffda RBX: 00007f98b7fa5fa0 RCX: 00007f98b7d8bb7c
[  478.009736][T11319] RDX: 000000000000000f RSI: 00007f98b8be40a0 RDI: 0000000000000004
[  478.009745][T11319] RBP: 00007f98b8be4090 R08: 0000000000000000 R09: 0000000000000000
[  478.009755][T11319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  478.009764][T11319] R13: 0000000000000000 R14: 00007f98b7fa5fa0 R15: 00007ffc6dfd67c8
[  478.009785][T11319]  </TASK>
[  478.382748][T11330] kernel profiling enabled (shift: 7)
[  479.516541][T11346] FAULT_INJECTION: forcing a failure.
[  479.516541][T11346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  479.539226][T11346] CPU: 1 UID: 0 PID: 11346 Comm: syz.0.1525 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  479.539247][T11346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  479.539256][T11346] Call Trace:
[  479.539260][T11346]  <TASK>
[  479.539266][T11346]  dump_stack_lvl+0x16c/0x1f0
[  479.539291][T11346]  should_fail_ex+0x50a/0x650
[  479.539319][T11346]  _copy_from_user+0x2e/0xd0
[  479.539335][T11346]  io_register_rsrc_update+0xbb/0x180
[  479.539355][T11346]  ? __pfx_io_register_rsrc_update+0x10/0x10
[  479.539377][T11346]  ? __mutex_trylock_common+0xea/0x250
[  479.539402][T11346]  ? __pfx___mutex_trylock_common+0x10/0x10
[  479.539428][T11346]  __io_uring_register+0xb8a/0x22f0
[  479.539449][T11346]  ? trace_contention_end+0xee/0x140
[  479.539473][T11346]  ? __pfx___io_uring_register+0x10/0x10
[  479.539492][T11346]  ? __mutex_lock+0x1cc/0xb10
[  479.539515][T11346]  ? __fget_files+0x1fc/0x3a0
[  479.539531][T11346]  ? __x64_sys_io_uring_register+0x15b/0x280
[  479.539550][T11346]  ? __pfx_lock_release+0x10/0x10
[  479.539574][T11346]  ? __pfx___mutex_lock+0x10/0x10
[  479.539597][T11346]  ? __fget_files+0x40/0x3a0
[  479.539615][T11346]  ? __fget_files+0x206/0x3a0
[  479.539641][T11346]  __x64_sys_io_uring_register+0x16c/0x280
[  479.539666][T11346]  do_syscall_64+0xcd/0x250
[  479.539690][T11346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  479.539712][T11346] RIP: 0033:0x7f600318d169
[  479.539727][T11346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  479.539742][T11346] RSP: 002b:00007f6003f6a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  479.539758][T11346] RAX: ffffffffffffffda RBX: 00007f60033a5fa0 RCX: 00007f600318d169
[  479.539769][T11346] RDX: 0000200000000300 RSI: 0000000000000010 RDI: 0000000000000003
[  479.539779][T11346] RBP: 00007f6003f6a090 R08: 0000000000000000 R09: 0000000000000000
[  479.539789][T11346] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  479.539798][T11346] R13: 0000000000000000 R14: 00007f60033a5fa0 R15: 00007fffe2419c88
[  479.539821][T11346]  </TASK>
[  479.852030][T11350] qrtr: Invalid version 0
[  480.131377][ T5869] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[  480.141924][T11363] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1529'.
[  480.459182][ T5869] usb 3-1: Using ep0 maxpacket: 16
[  480.507466][ T5869] usb 3-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35
[  480.573157][ T5869] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  480.582028][ T5869] usb 3-1: Product: syz
[  480.586750][ T5869] usb 3-1: Manufacturer: syz
[  480.593154][ T5869] usb 3-1: SerialNumber: syz
[  480.600047][ T5869] usb 3-1: config 0 descriptor??
[  480.607522][ T5869] as10x_usb: device has been detected
[  480.615810][ T5869] dvbdev: DVB: registering new adapter (Sky IT Digital Key (green led))
[  480.644054][ T5869] usb 3-1: DVB: registering adapter 2 frontend 0 (Sky IT Digital Key (green led))...
[  480.845485][ T5869] as10x_usb: error during firmware upload part1
[  480.870982][ T5869] Registered device Sky IT Digital Key (green led)
[  480.958196][   T30] kauditd_printk_skb: 57 callbacks suppressed
[  480.958209][   T30] audit: type=1400 audit(1742797839.788:7044): avc:  denied  { link } for  pid=11347 comm="syz.2.1526" name="#14" dev="tmpfs" ino=1711 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  481.349202][   T30] audit: type=1400 audit(1742797839.788:7045): avc:  denied  { rename } for  pid=11347 comm="syz.2.1526" name="#15" dev="tmpfs" ino=1711 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  481.556272][T11382] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1535'.
[  482.039283][T11389] lo speed is unknown, defaulting to 1000
[  482.842389][ T5869] usb 3-1: USB disconnect, device number 48
[  482.860158][ T5869] Unregistered device Sky IT Digital Key (green led)
[  482.860631][ T5869] as10x_usb: device has been disconnected
[  483.022511][T11401] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1539'.
[  483.196879][T11389] lo speed is unknown, defaulting to 1000
[  483.227470][T11401] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  483.314227][T11407] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1541'.
[  483.662012][   T30] audit: type=1400 audit(1742797842.498:7046): avc:  denied  { create } for  pid=11406 comm="syz.3.1542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[  483.733106][   T30] audit: type=1400 audit(1742797842.548:7047): avc:  denied  { read } for  pid=11406 comm="syz.3.1542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  485.842973][T11426] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1545'.
[  486.726805][T11439] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  486.736089][T11439] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  487.413391][T11442] Invalid logical block size (-1024)
[  487.427549][T11443] Invalid logical block size (-1024)
[  487.535922][T11447] netlink: 'syz.4.1552': attribute type 4 has an invalid length.
[  487.545864][T11447] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1552'.
[  487.764072][T11462] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1554'.
[  488.847562][T11473] lo speed is unknown, defaulting to 1000
[  488.924530][T11473] lo speed is unknown, defaulting to 1000
[  489.596772][T11467] fuse: Bad value for 'fd'
[  489.641703][   T30] audit: type=1400 audit(1742797848.468:7048): avc:  denied  { listen } for  pid=11481 comm="syz.2.1562" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  489.670386][T11483] vivid-007: =================  START STATUS  =================
[  489.678055][T11483] vivid-007: Generate PTS: true
[  489.729340][T11483] vivid-007: Generate SCR: true
[  489.864843][T11483] tpg source WxH: 640x360 (Y'CbCr)
[  489.870128][T11483] tpg field: 1
[  489.873476][T11483] tpg crop: 640x360@0x0
[  489.877601][T11483] tpg compose: 640x360@0x0
[  489.882089][T11483] tpg colorspace: 8
[  489.885883][T11483] tpg transfer function: 0/0
[  489.890620][T11483] tpg Y'CbCr encoding: 0/0
[  489.895033][T11483] tpg quantization: 0/0
[  490.012203][T11489] veth1_macvtap: left promiscuous mode
[  490.461332][T11483] tpg RGB range: 0/2
[  490.496100][T11483] vivid-007: ==================  END STATUS  ==================
[  490.822017][T11497] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge_slave_0, syncid = 0, id = 0
[  490.989625][T11499] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1565'.
[  491.024540][   T30] audit: type=1400 audit(1742797849.838:7049): avc:  denied  { map } for  pid=11495 comm="syz.2.1565" path="/dev/video8" dev="devtmpfs" ino=951 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  491.445340][   T30] audit: type=1400 audit(1742797849.838:7050): avc:  denied  { execute } for  pid=11495 comm="syz.2.1565" path="/dev/video8" dev="devtmpfs" ino=951 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  491.738212][T11508] syzkaller1: entered promiscuous mode
[  491.743834][T11508] syzkaller1: entered allmulticast mode
[  492.591226][T11516] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  492.746434][T11516] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  492.916522][T11521] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1571'.
[  493.194001][   T30] audit: type=1400 audit(1742797852.028:7051): avc:  denied  { ioctl } for  pid=11522 comm="syz.2.1572" path="socket:[35777]" dev="sockfs" ino=35777 ioctlcmd=0x890c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  493.245326][   T30] audit: type=1400 audit(1742797852.058:7052): avc:  denied  { bind } for  pid=11512 comm="syz.4.1569" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  493.365005][   T30] audit: type=1400 audit(1742797852.198:7053): avc:  denied  { setopt } for  pid=11522 comm="syz.2.1572" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  494.200966][T11544] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1576'.
[  494.304824][T11543] No control pipe specified
[  494.348654][T11546] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1577'.
[  494.817769][   T30] audit: type=1400 audit(1742797853.648:7054): avc:  denied  { create } for  pid=11550 comm="syz.1.1579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  494.877831][   T30] audit: type=1400 audit(1742797853.708:7055): avc:  denied  { create } for  pid=11550 comm="syz.1.1579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  494.902368][   T30] audit: type=1400 audit(1742797853.708:7056): avc:  denied  { write } for  pid=11550 comm="syz.1.1579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  494.994273][   T30] audit: type=1400 audit(1742797853.828:7057): avc:  denied  { map } for  pid=11555 comm="syz.0.1581" path="socket:[36386]" dev="sockfs" ino=36386 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  495.270851][   T30] audit: type=1400 audit(1742797853.858:7058): avc:  denied  { execmem } for  pid=11547 comm="syz.4.1578" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  496.205415][T11574] lo speed is unknown, defaulting to 1000
[  496.357590][T11574] lo speed is unknown, defaulting to 1000
[  496.753233][T11583] FAULT_INJECTION: forcing a failure.
[  496.753233][T11583] name failslab, interval 1, probability 0, space 0, times 0
[  496.776569][T11583] CPU: 0 UID: 0 PID: 11583 Comm: syz.3.1588 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  496.776592][T11583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  496.776603][T11583] Call Trace:
[  496.776608][T11583]  <TASK>
[  496.776614][T11583]  dump_stack_lvl+0x16c/0x1f0
[  496.776643][T11583]  should_fail_ex+0x50a/0x650
[  496.776672][T11583]  should_failslab+0xc2/0x120
[  496.776692][T11583]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  496.776710][T11583]  ? skb_clone+0x190/0x3f0
[  496.776738][T11583]  skb_clone+0x190/0x3f0
[  496.776764][T11583]  netlink_deliver_tap+0xabd/0xd30
[  496.776793][T11583]  netlink_unicast+0x6b4/0x7f0
[  496.776820][T11583]  ? __pfx_netlink_unicast+0x10/0x10
[  496.776842][T11583]  ? rtnetlink_rcv_msg+0x3e6/0xea0
[  496.776879][T11583]  netlink_ack+0x6ac/0xb80
[  496.776910][T11583]  netlink_rcv_skb+0x348/0x440
[  496.776933][T11583]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  496.776959][T11583]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  496.776996][T11583]  ? netlink_deliver_tap+0x1ae/0xd30
[  496.777023][T11583]  netlink_unicast+0x53c/0x7f0
[  496.777050][T11583]  ? __pfx_netlink_unicast+0x10/0x10
[  496.777081][T11583]  netlink_sendmsg+0x8b8/0xd70
[  496.777108][T11583]  ? __pfx_netlink_sendmsg+0x10/0x10
[  496.777140][T11583]  ____sys_sendmsg+0xaaf/0xc90
[  496.777159][T11583]  ? copy_msghdr_from_user+0x10b/0x160
[  496.777182][T11583]  ? __pfx_____sys_sendmsg+0x10/0x10
[  496.777216][T11583]  ___sys_sendmsg+0x135/0x1e0
[  496.777243][T11583]  ? __pfx____sys_sendmsg+0x10/0x10
[  496.777278][T11583]  ? __pfx_lock_release+0x10/0x10
[  496.777301][T11583]  ? trace_lock_acquire+0x14e/0x1f0
[  496.777328][T11583]  ? __fget_files+0x206/0x3a0
[  496.777352][T11583]  __sys_sendmsg+0x16e/0x220
[  496.777377][T11583]  ? __pfx___sys_sendmsg+0x10/0x10
[  496.777419][T11583]  do_syscall_64+0xcd/0x250
[  496.777445][T11583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.777466][T11583] RIP: 0033:0x7f98b7d8d169
[  496.777480][T11583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  496.777496][T11583] RSP: 002b:00007f98b8be4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  496.777512][T11583] RAX: ffffffffffffffda RBX: 00007f98b7fa5fa0 RCX: 00007f98b7d8d169
[  496.777523][T11583] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  496.777533][T11583] RBP: 00007f98b8be4090 R08: 0000000000000000 R09: 0000000000000000
[  496.777543][T11583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  496.777553][T11583] R13: 0000000000000000 R14: 00007f98b7fa5fa0 R15: 00007ffc6dfd67c8
[  496.777575][T11583]  </TASK>
[  497.034180][    C0] vkms_vblank_simulate: vblank timer overrun
[  497.109488][   T30] audit: type=1400 audit(1742797855.898:7059): avc:  denied  { bind } for  pid=11589 comm="syz.0.1589" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  497.129805][    C0] vkms_vblank_simulate: vblank timer overrun
[  497.135856][   T30] audit: type=1400 audit(1742797855.898:7060): avc:  denied  { setopt } for  pid=11589 comm="syz.0.1589" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  497.247673][   T30] audit: type=1326 audit(1742797856.078:7061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11592 comm="syz.3.1590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7ffc0000
[  497.311520][   T30] audit: type=1326 audit(1742797856.108:7062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11592 comm="syz.3.1590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b7d8d169 code=0x7ffc0000
[  497.311608][   T30] audit: type=1326 audit(1742797856.108:7063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11592 comm="syz.3.1590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f98b7d8d169 code=0x7ffc0000
[  497.467575][    C0] vkms_vblank_simulate: vblank timer overrun
[  498.164294][T11615] netlink: 1608 bytes leftover after parsing attributes in process `syz.3.1597'.
[  498.185641][T11615] netlink: 18128 bytes leftover after parsing attributes in process `syz.3.1597'.
[  498.349222][   T26] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  498.476477][T11620] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  498.500605][   T26] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  498.512611][T11620] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  498.526775][   T26] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  498.554430][   T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  498.831360][   T26] usb 1-1: config 0 descriptor??
[  499.250507][T11628] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1600'.
[  499.767292][ T5943] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  500.305674][   T30] kauditd_printk_skb: 53 callbacks suppressed
[  500.305691][   T30] audit: type=1400 audit(1742797858.938:7117): avc:  denied  { read } for  pid=11638 comm="syz.1.1603" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  500.332196][    C0] vkms_vblank_simulate: vblank timer overrun
[  500.342841][ T5943] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  500.359337][ T5943] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  500.750459][ T5943] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  500.778873][ T5943] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  500.873705][ T5943] usb 5-1: config 0 descriptor??
[  501.161834][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  501.240846][   T26] usbhid 1-1:0.0: can't add hid device: -71
[  501.246847][   T26] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  501.277002][   T26] usb 1-1: USB disconnect, device number 28
[  501.370069][ T5943] cp2112 0003:10C4:EA90.000B: unknown main item tag 0x0
[  501.378147][ T5943] cp2112 0003:10C4:EA90.000B: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.4-1/input0
[  503.134848][ T5943] cp2112 0003:10C4:EA90.000B: error requesting version
[  503.147924][ T5943] cp2112 0003:10C4:EA90.000B: probe with driver cp2112 failed with error -71
[  503.379296][ T5943] usb 5-1: USB disconnect, device number 33
[  504.547095][T11670] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1609'.
[  505.270294][T11685] netlink: 1608 bytes leftover after parsing attributes in process `syz.3.1614'.
[  505.295206][T11685] netlink: 18128 bytes leftover after parsing attributes in process `syz.3.1614'.
[  505.348815][   T30] audit: type=1400 audit(1742797864.178:7118): avc:  denied  { write } for  pid=11686 comm="syz.0.1616" name="task" dev="proc" ino=37412 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  505.429246][   T30] audit: type=1400 audit(1742797864.208:7119): avc:  denied  { add_name } for  pid=11686 comm="syz.0.1616" name="memory.events" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  505.491813][   T30] audit: type=1400 audit(1742797864.218:7120): avc:  denied  { create } for  pid=11686 comm="syz.0.1616" name="memory.events" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
[  505.512607][    C0] vkms_vblank_simulate: vblank timer overrun
[  505.549268][ T5905] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[  505.604154][   T30] audit: type=1400 audit(1742797864.218:7121): avc:  denied  { associate } for  pid=11686 comm="syz.0.1616" name="memory.events" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  505.640808][ T5896] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  505.649109][ T5943] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  505.706951][   T30] audit: type=1400 audit(1742797864.518:7122): avc:  denied  { search } for  pid=5487 comm="dhcpcd" name="netdev:wlan2" dev="debugfs" ino=37335 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  505.747034][ T5905] usb 3-1: config 8 has an invalid interface number: 34 but max is 0
[  505.765953][ T5905] usb 3-1: config 8 has no interface number 0
[  505.779136][ T5905] usb 3-1: config 8 interface 34 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  505.794280][ T5905] usb 3-1: config 8 interface 34 has no altsetting 0
[  505.839180][ T5943] usb 1-1: Using ep0 maxpacket: 32
[  505.848123][ T5896] usb 5-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  505.857767][ T5896] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  505.860976][ T5943] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  505.866707][ T5896] usb 5-1: Product: syz
[  505.880244][ T5905] usb 3-1: New USB device found, idVendor=0499, idProduct=103e, bcdDevice=7b.88
[  505.890916][ T5905] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  505.898905][ T5905] usb 3-1: Product: syz
[  505.902257][ T5943] usb 1-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  505.903185][ T5896] usb 5-1: Manufacturer: syz
[  505.917014][ T5905] usb 3-1: Manufacturer: syz
[  505.921649][ T5896] usb 5-1: SerialNumber: syz
[  505.926337][ T5905] usb 3-1: SerialNumber: syz
[  505.939250][ T5896] usb 5-1: config 0 descriptor??
[  505.942623][T11705] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  505.946467][ T5896] i2c-tiny-usb 5-1:0.0: version 6d.cc found at bus 005 address 034
[  505.967317][ T5943] usb 1-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  505.977288][T11705] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  505.994340][ T5943] usb 1-1: Product: syz
[  506.000954][ T5943] usb 1-1: Manufacturer: syz
[  506.000995][   T30] audit: type=1400 audit(1742797864.828:7123): avc:  denied  { accept } for  pid=11703 comm="syz.1.1617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  506.007523][ T5943] usb 1-1: SerialNumber: syz
[  506.050059][ T5943] usb 1-1: config 0 descriptor??
[  506.056454][T11689] raw-gadget.3 gadget.0: fail, usb_ep_enable returned -22
[  506.389147][ T5943] usb 1-1: USB disconnect, device number 29
[  507.465532][ T5905] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  507.501363][ T5896]  (null): failure setting delay to 10us
[  507.507074][ T5896] i2c-tiny-usb 5-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  507.536907][ T5896] usb 5-1: USB disconnect, device number 34
[  507.553960][ T5905] snd-usb-audio 3-1:8.34: probe with driver snd-usb-audio failed with error -2
[  507.573658][ T5905] usb 3-1: USB disconnect, device number 49
[  507.779911][ T9658] udevd[9658]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:8.34/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  507.818497][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.826479][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.835160][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.842952][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.850968][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.858616][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.868289][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.884827][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.892357][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.899897][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.907276][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.914829][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.924567][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.932805][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.942533][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.952401][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.962725][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.970584][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.978340][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.985959][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  507.993873][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.001822][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.089945][T11754] lo speed is unknown, defaulting to 1000
[  508.093896][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.106554][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.115249][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.123113][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.132770][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.141734][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.150603][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.158533][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.183960][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.362770][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.432813][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.457882][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.478804][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.486925][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.499458][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.554938][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.578300][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.586090][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.596751][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.606346][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.668601][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.723574][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.733460][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.742734][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.750862][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.864721][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.923794][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  508.969896][T11754] lo speed is unknown, defaulting to 1000
[  508.977589][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  509.002855][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  509.226909][T11766] input: syz0 as /devices/virtual/input/input20
[  510.135803][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.143743][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.152037][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.160038][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.167532][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.175386][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.182814][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.191643][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.202987][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.213079][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.226716][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.234336][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.241762][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.249274][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.256652][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.369153][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.379235][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.389285][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.392209][T11778] netlink: 1608 bytes leftover after parsing attributes in process `syz.2.1628'.
[  510.396662][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.985045][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  510.992680][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.000184][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.007789][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.022028][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.030638][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.039247][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.052704][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.060183][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.067563][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.075012][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.083212][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.090692][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.098067][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.141619][T11778] netlink: 18128 bytes leftover after parsing attributes in process `syz.2.1628'.
[  511.178991][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.203353][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.266061][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.515953][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.528666][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.539437][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.547568][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.653564][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.687525][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.713034][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.722292][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.733932][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.746785][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.766122][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.776208][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.783746][T10936] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  511.801474][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.817055][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.833131][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.847155][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.873311][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.895848][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.912455][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.933571][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.945238][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.956074][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  511.966377][T10936] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  511.977871][T10936] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  512.159254][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  512.170303][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  512.177812][T10936] usb 5-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00
[  512.187244][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  512.194820][T10936] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  512.203119][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.181550][T10936] usb 5-1: config 0 descriptor??
[  513.199123][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.206523][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.573954][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.582029][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.591005][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.598420][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.606167][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.613790][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.621387][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.628800][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.636587][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.644251][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.706972][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.714521][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.925161][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.932710][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.940315][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.947751][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.955260][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.962842][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.972250][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  513.992058][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.014604][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.036913][T11811] fuse: Unknown parameter 'user_i00000000000000000000'
[  514.094414][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.105149][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.114305][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.123143][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.131332][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.140575][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.148698][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.157658][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.170336][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.178089][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.188322][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.245453][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.255326][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.265483][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.274608][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.283991][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.292808][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.303397][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.315029][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.326318][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.333982][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.341744][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.349325][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.356846][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.364862][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.372470][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.381086][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.388571][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.396038][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.403550][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.412469][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.420507][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.427926][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.435420][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.442893][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.450372][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.457780][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.466435][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.473893][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.481425][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.488849][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.496331][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.503779][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.637924][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.645491][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.652999][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.660470][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.667912][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.675373][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.682930][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.690437][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.697886][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.705347][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.712803][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.720569][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.728738][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.743454][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.755983][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.764115][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.788348][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.798948][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  514.978401][T11818] input: syz0 as /devices/virtual/input/input21
[  515.024063][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  515.789118][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  515.796565][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  515.816790][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.800537][T10936] usb 5-1: string descriptor 0 read error: -71
[  516.809629][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.817033][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.825742][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.852971][T10936] usb 5-1: USB disconnect, device number 35
[  516.872486][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.890028][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.897431][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.919165][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.926560][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.941967][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  516.979713][   T30] audit: type=1400 audit(1742797875.808:7124): avc:  denied  { listen } for  pid=11825 comm="syz.2.1641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  516.999562][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  517.015087][T11826] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1641'.
[  517.024893][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  517.047843][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  517.214180][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  517.214452][   T30] audit: type=1400 audit(1742797875.878:7125): avc:  denied  { ioctl } for  pid=11825 comm="syz.2.1641" path="socket:[37955]" dev="sockfs" ino=37955 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  517.543588][T11833] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1642'.
[  517.742157][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  517.793156][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  517.804320][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.159389][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.175271][T11840] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1645'.
[  518.178131][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.197125][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.204922][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.214526][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.234951][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.246921][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.256397][T11842] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  518.269581][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.277174][T11842] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  518.303284][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.310808][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.318205][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.326440][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.334601][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.430170][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.437884][ T5905] hid-generic 0FFF:0004:0004.000C: unknown main item tag 0x0
[  518.451486][ T5905] hid-generic 0FFF:0004:0004.000C: hidraw0: <UNKNOWN> HID v7fffff.ff Device [syz0] on syz0
[  519.273059][T11850] overlayfs: failed to resolve './file0': -2
[  519.401604][T11851] netlink: 'syz.0.1648': attribute type 4 has an invalid length.
[  519.491632][T11853] fuse: Bad value for 'user_id'
[  519.504590][T11853] fuse: Bad value for 'user_id'
[  519.513180][T11846] netlink: 'syz.0.1648': attribute type 4 has an invalid length.
[  519.553029][    T9] Process accounting resumed
[  519.593261][T11852] Process accounting resumed
[  519.850927][T11866] input: syz0 as /devices/virtual/input/input22
[  520.668820][T11860] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.759187][    T9] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  520.870817][T11860] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.962718][    T9] usb 1-1: Using ep0 maxpacket: 8
[  520.980213][    T9] usb 1-1: New USB device found, idVendor=10d2, idProduct=2865, bcdDevice=a4.c9
[  520.990158][T11860] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.996963][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  521.013192][    T9] usb 1-1: config 0 descriptor??
[  521.015042][T11889] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1658'.
[  521.030467][    T9] usblcd 1-1:0.0: USBLCD model not supported.
[  521.351265][   T30] audit: type=1400 audit(1742797880.188:7126): avc:  denied  { append } for  pid=11858 comm="syz.0.1652" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  521.351819][T11865] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  521.383323][T11865] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  521.464341][T11860] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  522.444798][T11860] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  522.459625][T11860] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  522.473022][T11906] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1662'.
[  522.486996][T11860] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  522.504767][T11860] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  522.824243][T11914] syz.4.1663: attempt to access beyond end of device
[  522.824243][T11914] nbd4: rw=0, sector=64, nr_sectors = 8 limit=0
[  522.838020][T11914] syz.4.1663: attempt to access beyond end of device
[  522.838020][T11914] nbd4: rw=0, sector=120, nr_sectors = 8 limit=0
[  522.851128][T11914] Mount JFS Failure: -5
[  523.232508][ T5943] usb 1-1: USB disconnect, device number 30
[  523.338099][   T30] audit: type=1400 audit(1742797882.168:7127): avc:  denied  { getopt } for  pid=11911 comm="syz.1.1664" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  523.456315][T11917] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  523.465585][T11917] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  524.482068][T11925] input: syz0 as /devices/virtual/input/input23
[  525.429132][   T26] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  525.572184][T11930] netlink: 'syz.3.1669': attribute type 3 has an invalid length.
[  525.580980][   T26] usb 1-1: Using ep0 maxpacket: 16
[  525.590337][   T26] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  525.613906][   T26] usb 1-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  525.631134][T11932] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1670'.
[  525.633368][   T26] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  525.668539][   T26] usb 1-1: Product: syz
[  525.678749][   T26] usb 1-1: Manufacturer: syz
[  525.691483][   T26] usb 1-1: SerialNumber: syz
[  525.697626][   T26] usb 1-1: config 0 descriptor??
[  525.704793][   T26] hub 1-1:0.0: bad descriptor, ignoring hub
[  525.711115][   T26] hub 1-1:0.0: probe with driver hub failed with error -5
[  525.721591][   T26] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input24
[  525.893104][T11938] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  525.949466][T11938] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  525.958612][ T5869] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  526.279162][ T5869] usb 4-1: Using ep0 maxpacket: 16
[  526.295247][ T5869] usb 4-1: config 0 has an invalid interface number: 251 but max is 0
[  526.309113][ T5869] usb 4-1: config 0 has no interface number 0
[  526.324141][ T5869] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  526.355990][ T5869] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  526.369069][ T5869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  526.501301][ T5869] usb 4-1: Product: syz
[  526.505464][ T5869] usb 4-1: Manufacturer: syz
[  526.518052][ T5869] usb 4-1: SerialNumber: syz
[  527.211148][ T5869] usb 4-1: config 0 descriptor??
[  527.217552][T11934] raw-gadget.4 gadget.3: fail, usb_ep_enable returned -22
[  527.227010][ T5869] asix 4-1:0.251: probe with driver asix failed with error -22
[  527.339278][T10936] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[  527.552405][T10936] usb 3-1: Using ep0 maxpacket: 8
[  527.560352][T10936] usb 3-1: New USB device found, idVendor=10d2, idProduct=2865, bcdDevice=a4.c9
[  527.572312][T10936] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.582789][T10936] usb 3-1: config 0 descriptor??
[  527.590052][T10936] usblcd 3-1:0.0: USBLCD model not supported.
[  527.639961][  T971] usb 1-1: USB disconnect, device number 31
[  527.804732][T11944] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  527.813288][T11944] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  528.393328][T11967] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1680'.
[  528.497233][T11972] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1680'.
[  528.548016][T11974] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1681'.
[  529.405631][  T971] usb 3-1: USB disconnect, device number 50
[  529.454811][   T30] audit: type=1400 audit(1742797888.288:7128): avc:  denied  { name_bind } for  pid=11982 comm="syz.1.1684" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  530.003575][ T5943] usb 4-1: USB disconnect, device number 43
[  530.248296][T11995] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1688'.
[  530.340710][T11997] netlink: 1608 bytes leftover after parsing attributes in process `syz.1.1689'.
[  530.427023][T11998] netlink: zone id is out of range
[  530.449162][T11998] netlink: zone id is out of range
[  530.454286][T11998] netlink: zone id is out of range
[  530.483731][T11998] netlink: del zone limit has 4 unknown bytes
[  530.909094][ T5943] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[  531.113848][ T5943] usb 3-1: Using ep0 maxpacket: 32
[  531.123185][ T5943] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[  531.135582][ T5943] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  531.145112][ T5943] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[  531.157232][ T5943] usb 3-1: config 1 has no interface number 0
[  531.164032][ T5943] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  531.174997][ T5943] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  531.188636][ T5943] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  531.198868][ T5943] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  531.228790][ T5943] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[  531.529053][ T5943] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[  531.981850][T12000] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1690'.
[  532.449123][T10936] usb 3-1: USB disconnect, device number 51
[  532.455732][T10936] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[  532.734515][T12024] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  532.883233][T12033] FAULT_INJECTION: forcing a failure.
[  532.883233][T12033] name failslab, interval 1, probability 0, space 0, times 0
[  532.896202][T12033] CPU: 1 UID: 0 PID: 12033 Comm: syz.4.1697 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  532.896222][T12033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  532.896232][T12033] Call Trace:
[  532.896236][T12033]  <TASK>
[  532.896240][T12033]  dump_stack_lvl+0x16c/0x1f0
[  532.896259][T12033]  should_fail_ex+0x50a/0x650
[  532.896276][T12033]  ? fs_reclaim_acquire+0xae/0x150
[  532.896292][T12033]  should_failslab+0xc2/0x120
[  532.896304][T12033]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  532.896314][T12033]  ? __pfx___might_resched+0x10/0x10
[  532.896331][T12033]  ? __anon_vma_prepare+0x344/0x5e0
[  532.896343][T12033]  __anon_vma_prepare+0x344/0x5e0
[  532.896356][T12033]  uffd_lock_vma+0x348/0x4c0
[  532.896368][T12033]  mfill_atomic_poison+0x146/0x1a70
[  532.896383][T12033]  ? irqentry_exit+0x3b/0x90
[  532.896396][T12033]  ? lockdep_hardirqs_on+0x7c/0x110
[  532.896412][T12033]  ? __pfx_mfill_atomic_poison+0x10/0x10
[  532.896429][T12033]  userfaultfd_ioctl+0x2912/0x38c0
[  532.896442][T12033]  ? __pfx___schedule+0x10/0x10
[  532.896456][T12033]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  532.896468][T12033]  ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450
[  532.896487][T12033]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  532.896507][T12033]  ? __pfx_lock_release+0x10/0x10
[  532.896527][T12033]  ? selinux_file_ioctl+0x180/0x270
[  532.896542][T12033]  ? selinux_file_ioctl+0xb4/0x270
[  532.896558][T12033]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  532.896572][T12033]  ? __x64_sys_ioctl+0x190/0x200
[  532.896586][T12033]  __x64_sys_ioctl+0x190/0x200
[  532.896601][T12033]  do_syscall_64+0xcd/0x250
[  532.896617][T12033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.896631][T12033] RIP: 0033:0x7f427838d169
[  532.896639][T12033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  532.896649][T12033] RSP: 002b:00007f4279243038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  532.896659][T12033] RAX: ffffffffffffffda RBX: 00007f42785a5fa0 RCX: 00007f427838d169
[  532.896665][T12033] RDX: 0000200000000080 RSI: 00000000c020aa08 RDI: 0000000000000007
[  532.896677][T12033] RBP: 00007f4279243090 R08: 0000000000000000 R09: 0000000000000000
[  532.896683][T12033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  532.896688][T12033] R13: 0000000000000000 R14: 00007f42785a5fa0 R15: 00007fff9b3236b8
[  532.896701][T12033]  </TASK>
[  533.134600][    C1] vkms_vblank_simulate: vblank timer overrun
[  533.404692][T12042] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1699'.
[  534.254151][T12058] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1704'.
[  534.275640][T12045] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  534.309154][T12045] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  534.337484][T12059] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  534.365635][T12045] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  534.420057][T12045] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  534.460744][T12045] geneve2: entered promiscuous mode
[  534.466369][T12045] geneve2: entered allmulticast mode
[  534.979253][ T5943] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  535.070871][ T5866] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  535.200171][ T5943] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  535.247204][ T5943] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  535.278705][ T5943] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  535.297663][ T5943] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  535.308086][ T5866] usb 5-1: Using ep0 maxpacket: 8
[  535.428758][   T30] audit: type=1400 audit(1742797894.238:7129): avc:  denied  { name_bind } for  pid=12069 comm="syz.1.1708" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  535.430686][ T5866] usb 5-1: New USB device found, idVendor=10d2, idProduct=2865, bcdDevice=a4.c9
[  535.636860][T12067] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  535.646825][ T5943] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  535.675534][ T5866] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  535.735132][ T5866] usb 5-1: config 0 descriptor??
[  535.788112][ T5866] usblcd 5-1:0.0: USBLCD model not supported.
[  535.975106][ T5866] usb 4-1: USB disconnect, device number 44
[  536.060933][T12064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  536.069407][T12064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  536.797470][T12089] netlink: 'syz.1.1712': attribute type 2 has an invalid length.
[  537.592124][ T5943] usb 5-1: USB disconnect, device number 36
[  537.870864][   T30] audit: type=1400 audit(1742797896.598:7130): avc:  denied  { bind } for  pid=12101 comm="syz.0.1717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  537.898415][   T30] audit: type=1400 audit(1742797896.598:7131): avc:  denied  { name_bind } for  pid=12101 comm="syz.0.1717" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  538.134689][T12112] input: syz0 as /devices/virtual/input/input25
[  538.889359][   T30] audit: type=1400 audit(1742797896.598:7132): avc:  denied  { node_bind } for  pid=12101 comm="syz.0.1717" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  539.498934][T12116] lo speed is unknown, defaulting to 1000
[  539.599549][T12116] lo speed is unknown, defaulting to 1000
[  539.850165][T12132] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1722'.
[  541.049689][T12146] FAULT_INJECTION: forcing a failure.
[  541.049689][T12146] name failslab, interval 1, probability 0, space 0, times 0
[  541.079259][T12146] CPU: 0 UID: 0 PID: 12146 Comm: syz.3.1725 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  541.079284][T12146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  541.079294][T12146] Call Trace:
[  541.079299][T12146]  <TASK>
[  541.079305][T12146]  dump_stack_lvl+0x16c/0x1f0
[  541.079335][T12146]  should_fail_ex+0x50a/0x650
[  541.079361][T12146]  ? fs_reclaim_acquire+0xae/0x150
[  541.079388][T12146]  ? tomoyo_encode2+0x100/0x3e0
[  541.079411][T12146]  should_failslab+0xc2/0x120
[  541.079431][T12146]  __kmalloc_noprof+0xcb/0x510
[  541.079450][T12146]  ? rcu_is_watching+0x12/0xc0
[  541.079471][T12146]  tomoyo_encode2+0x100/0x3e0
[  541.079499][T12146]  tomoyo_encode+0x29/0x50
[  541.079522][T12146]  tomoyo_realpath_from_path+0x19d/0x720
[  541.079549][T12146]  ? tomoyo_path_number_perm+0x235/0x590
[  541.079574][T12146]  tomoyo_path_number_perm+0x248/0x590
[  541.079602][T12146]  ? tomoyo_path_number_perm+0x235/0x590
[  541.079626][T12146]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  541.079672][T12146]  ? __pfx_lock_release+0x10/0x10
[  541.079696][T12146]  ? trace_lock_acquire+0x14e/0x1f0
[  541.079719][T12146]  ? lock_acquire+0x2f/0xb0
[  541.079740][T12146]  ? __fget_files+0x40/0x3a0
[  541.079761][T12146]  ? __fget_files+0x206/0x3a0
[  541.079780][T12146]  security_file_ioctl+0x9b/0x240
[  541.079807][T12146]  __x64_sys_ioctl+0xb7/0x200
[  541.079832][T12146]  do_syscall_64+0xcd/0x250
[  541.079858][T12146]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.079881][T12146] RIP: 0033:0x7f98b7d8d169
[  541.079896][T12146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  541.079912][T12146] RSP: 002b:00007f98b8be4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  541.079928][T12146] RAX: ffffffffffffffda RBX: 00007f98b7fa5fa0 RCX: 00007f98b7d8d169
[  541.079939][T12146] RDX: 0000200000000440 RSI: 0000000000005411 RDI: 0000000000000003
[  541.079949][T12146] RBP: 00007f98b8be4090 R08: 0000000000000000 R09: 0000000000000000
[  541.079959][T12146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  541.079968][T12146] R13: 0000000000000000 R14: 00007f98b7fa5fa0 R15: 00007ffc6dfd67c8
[  541.079991][T12146]  </TASK>
[  541.080005][T12146] ERROR: Out of memory at tomoyo_realpath_from_path.
[  541.144746][T12150] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  541.319999][T12150] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  541.695686][   T30] audit: type=1326 audit(1742798353.401:7133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  541.822401][   T30] audit: type=1326 audit(1742798353.401:7134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  541.850327][   T30] audit: type=1326 audit(1742798353.401:7135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  541.914640][   T30] audit: type=1326 audit(1742798353.401:7136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  541.940204][   T30] audit: type=1326 audit(1742798353.401:7137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  541.976312][   T30] audit: type=1326 audit(1742798353.401:7138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  542.009369][   T30] audit: type=1326 audit(1742798353.401:7139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  542.225452][   T30] audit: type=1326 audit(1742798353.401:7140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  542.266685][   T30] audit: type=1326 audit(1742798353.401:7141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  542.293744][   T30] audit: type=1326 audit(1742798353.401:7142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12141 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427838d169 code=0x7fc00000
[  543.057787][T12174] input: syz0 as /devices/virtual/input/input26
[  545.503153][T12183] FAULT_INJECTION: forcing a failure.
[  545.503153][T12183] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  545.554091][T12183] CPU: 1 UID: 0 PID: 12183 Comm: syz.3.1737 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  545.554121][T12183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  545.554131][T12183] Call Trace:
[  545.554136][T12183]  <TASK>
[  545.554143][T12183]  dump_stack_lvl+0x16c/0x1f0
[  545.554174][T12183]  should_fail_ex+0x50a/0x650
[  545.554199][T12183]  ? __pfx___might_resched+0x10/0x10
[  545.554229][T12183]  should_fail_alloc_page+0xe7/0x130
[  545.554250][T12183]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  545.554282][T12183]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  545.554303][T12183]  ? stack_depot_save_flags+0x38f/0x9c0
[  545.554330][T12183]  ? __pfx_lock_release+0x10/0x10
[  545.554358][T12183]  ? hlock_class+0x4e/0x130
[  545.554376][T12183]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  545.554404][T12183]  ? __pfx___lock_acquire+0x10/0x10
[  545.554427][T12183]  ? kasan_save_stack+0x42/0x60
[  545.554441][T12183]  ? kasan_save_stack+0x33/0x60
[  545.554457][T12183]  ? kasan_save_track+0x14/0x30
[  545.554471][T12183]  ? __kasan_slab_alloc+0x89/0x90
[  545.554487][T12183]  ? kmem_cache_alloc_node_noprof+0x223/0x3c0
[  545.554504][T12183]  ? alloc_vmap_area+0xdc8/0x2a60
[  545.554526][T12183]  ? __get_vm_area_node+0x19e/0x2f0
[  545.554548][T12183]  ? __vmalloc_node_range_noprof+0x26a/0x1530
[  545.554579][T12183]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  545.554607][T12183]  ? policy_nodemask+0xea/0x4e0
[  545.554628][T12183]  alloc_pages_mpol+0x1fc/0x540
[  545.554648][T12183]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  545.554666][T12183]  ? __page_table_check_ptes_set+0x16b/0x3e0
[  545.554684][T12183]  ? do_raw_spin_lock+0x12d/0x2c0
[  545.554701][T12183]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  545.554721][T12183]  alloc_pages_noprof+0x131/0x390
[  545.554740][T12183]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  545.554766][T12183]  get_free_pages_noprof+0xc/0x40
[  545.554787][T12183]  kasan_populate_vmalloc_pte+0x2d/0x160
[  545.554813][T12183]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  545.554840][T12183]  __apply_to_page_range+0x5fd/0xd30
[  545.554867][T12183]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  545.554897][T12183]  ? __pfx___apply_to_page_range+0x10/0x10
[  545.554924][T12183]  ? insert_vmap_area+0x2ef/0x4d0
[  545.554949][T12183]  alloc_vmap_area+0x93e/0x2a60
[  545.554982][T12183]  ? __pfx_alloc_vmap_area+0x10/0x10
[  545.555011][T12183]  __get_vm_area_node+0x19e/0x2f0
[  545.555040][T12183]  __vmalloc_node_range_noprof+0x26a/0x1530
[  545.555067][T12183]  ? array_map_alloc+0x27d/0x730
[  545.555089][T12183]  ? avc_has_perm_noaudit+0x143/0x3a0
[  545.555111][T12183]  ? cred_has_capability.isra.0+0x192/0x2f0
[  545.555136][T12183]  ? array_map_alloc+0x27d/0x730
[  545.555163][T12183]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  545.555193][T12183]  ? cap_capable+0xb3/0x250
[  545.555218][T12183]  ? array_map_alloc+0x27d/0x730
[  545.555238][T12183]  __bpf_map_area_alloc+0xea/0x190
[  545.555258][T12183]  ? array_map_alloc+0x27d/0x730
[  545.555281][T12183]  array_map_alloc+0x27d/0x730
[  545.555307][T12183]  map_create+0x5c5/0x1d20
[  545.555327][T12183]  ? __pfx_avc_has_perm+0x10/0x10
[  545.555343][T12183]  ? trace_lock_acquire+0x14e/0x1f0
[  545.555362][T12183]  ? __pfx_map_create+0x10/0x10
[  545.555378][T12183]  ? lock_acquire+0x2f/0xb0
[  545.555399][T12183]  ? __might_fault+0xe3/0x190
[  545.555423][T12183]  ? selinux_bpf+0xde/0x130
[  545.555443][T12183]  __sys_bpf+0x4391/0x49c0
[  545.555460][T12183]  ? __pfx_lock_release+0x10/0x10
[  545.555484][T12183]  ? __pfx___sys_bpf+0x10/0x10
[  545.555501][T12183]  ? vfs_write+0x306/0x1150
[  545.555531][T12183]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  545.555573][T12183]  ? fput+0x67/0x440
[  545.555593][T12183]  ? ksys_write+0x1ba/0x250
[  545.555608][T12183]  ? __pfx_ksys_write+0x10/0x10
[  545.555627][T12183]  __x64_sys_bpf+0x78/0xc0
[  545.555644][T12183]  ? lockdep_hardirqs_on+0x7c/0x110
[  545.555666][T12183]  do_syscall_64+0xcd/0x250
[  545.555692][T12183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.555715][T12183] RIP: 0033:0x7f98b7d8d169
[  545.555729][T12183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  545.555746][T12183] RSP: 002b:00007f98b8be4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  545.555763][T12183] RAX: ffffffffffffffda RBX: 00007f98b7fa5fa0 RCX: 00007f98b7d8d169
[  545.555774][T12183] RDX: 0000000000000050 RSI: 0000200000000000 RDI: 0000000000000000
[  545.555783][T12183] RBP: 00007f98b8be4090 R08: 0000000000000000 R09: 0000000000000000
[  545.555793][T12183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  545.555803][T12183] R13: 0000000000000000 R14: 00007f98b7fa5fa0 R15: 00007ffc6dfd67c8
[  545.555824][T12183]  </TASK>
[  546.349476][ T5866] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[  546.539510][ T5866] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  546.560374][ T5866] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  546.606006][ T5866] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  546.631793][ T5866] usb 3-1: config 0 descriptor??
[  546.642788][T12203] netlink: 596 bytes leftover after parsing attributes in process `syz.4.1742'.
[  546.689189][ T5943] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  546.718652][T12205] TCP: TCP_TX_DELAY enabled
[  546.779183][ T5869] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  546.875128][ T5943] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  546.897347][ T5943] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  546.912638][ T5943] usb 4-1: config 1 interface 0 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  546.928764][ T5943] usb 4-1: config 1 interface 0 has no altsetting 0
[  547.296148][ T5866] keytouch 0003:0926:3333.000D: fixing up Keytouch IEC report descriptor
[  547.312021][ T5869] usb 1-1: Using ep0 maxpacket: 32
[  547.500085][ T5866] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.000D/input/input27
[  547.512464][ T5869] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  547.527138][ T5943] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  547.551148][ T5943] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  547.568740][ T5869] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  547.585246][ T5943] usb 4-1: Product: syz
[  547.591612][ T5869] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  547.599868][ T5943] usb 4-1: Manufacturer: syz
[  547.604493][ T5943] usb 4-1: SerialNumber: syz
[  547.615334][ T5869] usb 1-1: config 0 descriptor??
[  547.635291][ T5866] keytouch 0003:0926:3333.000D: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0
[  547.649103][ T5869] hub 1-1:0.0: bad descriptor, ignoring hub
[  547.655098][ T5869] hub 1-1:0.0: probe with driver hub failed with error -5
[  547.689937][ T5869] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  547.975566][T12225] input: syz0 as /devices/virtual/input/input28
[  548.325085][ T5905] libceph: connect (1)[c::]:6789 error -101
[  548.364243][ T5905] libceph: mon0 (1)[c::]:6789 connect error
[  548.497732][T12201] ceph: No mds server is up or the cluster is laggy
[  548.754319][ T5905] libceph: connect (1)[c::]:6789 error -101
[  548.760598][ T5905] libceph: mon0 (1)[c::]:6789 connect error
[  549.430164][ T5905] usb 1-1: USB disconnect, device number 32
[  549.450302][ T5943] cdc_mbim 4-1:1.0: probe with driver cdc_mbim failed with error -71
[  549.740330][ T5866] usb 3-1: USB disconnect, device number 52
[  549.746778][ T5943] usb 4-1: USB disconnect, device number 45
[  549.809645][T12247] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  549.818175][T12247] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  550.630296][ T5943] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  550.849463][   T30] kauditd_printk_skb: 47 callbacks suppressed
[  550.849496][   T30] audit: type=1400 audit(1742798362.671:7190): avc:  denied  { unmount } for  pid=5816 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  551.460523][ T5943] usb 4-1: Using ep0 maxpacket: 16
[  551.485499][ T5943] usb 4-1: config 0 has an invalid interface number: 251 but max is 0
[  551.494476][ T5943] usb 4-1: config 0 has no interface number 0
[  551.504888][ T5943] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  551.529604][ T5943] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  551.599941][T12276] input: syz0 as /devices/virtual/input/input29
[  552.101826][ T5943] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  552.111270][ T5943] usb 4-1: Product: syz
[  552.116049][ T5943] usb 4-1: Manufacturer: syz
[  552.122198][ T5943] usb 4-1: SerialNumber: syz
[  552.137470][ T5943] usb 4-1: config 0 descriptor??
[  552.143264][T12246] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  552.154544][ T5943] asix 4-1:0.251: probe with driver asix failed with error -22
[  552.230242][ T5866] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  552.483947][ T5866] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  552.503569][ T5866] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  552.522591][   T30] audit: type=1400 audit(1742798364.361:7191): avc:  denied  { mount } for  pid=12263 comm="syz.2.1756" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  552.525878][T12281] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  552.558986][ T5866] usb 5-1: Product: syz
[  552.563943][ T5866] usb 5-1: Manufacturer: syz
[  552.578763][ T5866] usb 5-1: SerialNumber: syz
[  552.600043][ T5866] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  552.616330][T12281] overlayfs: fs on './file0' does not support file handles, falling back to xino=off.
[  552.632978][    T9] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  553.213092][   T30] audit: type=1400 audit(1742798365.051:7192): avc:  denied  { unmount } for  pid=5816 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  553.463512][T10936] usb 5-1: USB disconnect, device number 37
[  553.529279][ T5943] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[  553.741510][T12297] Driver unsupported XDP return value 0 on prog  (id 330) dev N/A, expect packet loss!
[  553.875801][T12297] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1765'.
[  554.296053][    T9] usb 5-1: Service connection timeout for: 256
[  554.296163][    T9] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services
[  554.306912][    T9] ath9k_htc: Failed to initialize the device
[  554.311160][T10936] usb 5-1: ath9k_htc: USB layer deinitialized
[  554.979501][T10936] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  555.317501][ T5869] usb 4-1: USB disconnect, device number 46
[  555.449153][T10936] usb 5-1: Using ep0 maxpacket: 16
[  555.477972][T10936] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  555.496222][T12320] FAULT_INJECTION: forcing a failure.
[  555.496222][T12320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  555.519741][T10936] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  555.531701][T12320] CPU: 1 UID: 0 PID: 12320 Comm: syz.1.1770 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  555.531722][T12320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  555.531732][T12320] Call Trace:
[  555.531737][T12320]  <TASK>
[  555.531743][T12320]  dump_stack_lvl+0x16c/0x1f0
[  555.531770][T12320]  should_fail_ex+0x50a/0x650
[  555.531797][T12320]  _copy_from_user+0x2e/0xd0
[  555.531811][T12320]  copy_msghdr_from_user+0x99/0x160
[  555.531828][T12320]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  555.531851][T12320]  ? __pfx___lock_acquire+0x10/0x10
[  555.531878][T12320]  ___sys_recvmsg+0xdc/0x1a0
[  555.531901][T12320]  ? __pfx____sys_recvmsg+0x10/0x10
[  555.531923][T12320]  ? find_held_lock+0x2d/0x110
[  555.531944][T12320]  ? __pfx___might_resched+0x10/0x10
[  555.531961][T12320]  ? __might_fault+0xe3/0x190
[  555.531976][T12320]  do_recvmmsg+0x2f8/0x740
[  555.531994][T12320]  ? __pfx_do_recvmmsg+0x10/0x10
[  555.532016][T12320]  ? vfs_write+0x306/0x1150
[  555.532044][T12320]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  555.532073][T12320]  ? __fget_files+0x206/0x3a0
[  555.532088][T12320]  __x64_sys_recvmmsg+0x239/0x290
[  555.532099][T12320]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  555.532112][T12320]  do_syscall_64+0xcd/0x250
[  555.532128][T12320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.532145][T12320] RIP: 0033:0x7f6f3278d169
[  555.532158][T12320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  555.532174][T12320] RSP: 002b:00007f6f33554038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  555.532189][T12320] RAX: ffffffffffffffda RBX: 00007f6f329a6080 RCX: 00007f6f3278d169
[  555.532198][T12320] RDX: 0000000000000a0d RSI: 00002000000066c0 RDI: 0000000000000004
[  555.532207][T12320] RBP: 00007f6f33554090 R08: 0000000000000000 R09: 0000000000000000
[  555.532216][T12320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  555.532225][T12320] R13: 0000000000000000 R14: 00007f6f329a6080 R15: 00007fff5d4990d8
[  555.532237][T12320]  </TASK>
[  555.750647][T10936] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  555.763542][T10936] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  555.961686][T10936] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  555.977227][T10936] usb 5-1: config 0 descriptor??
[  556.167732][T12332] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1774'.
[  556.229130][ T5869] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[  556.379195][   T10] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  556.389092][ T5869] usb 4-1: Using ep0 maxpacket: 32
[  556.399098][ T5869] usb 4-1: unable to get BOS descriptor or descriptor too short
[  556.412664][ T5869] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  556.421815][ T5869] usb 4-1: config 1 has an invalid interface descriptor of length 2, skipping
[  556.424211][T10936] HID 045e:07da: Invalid code 65791 type 1
[  556.430855][ T5869] usb 4-1: config 1 has an invalid descriptor of length 37, skipping remainder of the config
[  556.430878][ T5869] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  556.430897][ T5869] usb 4-1: config 1 has no interface number 1
[  556.430932][ T5869] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x9 has invalid maxpacket 256, setting to 64
[  556.432826][ T5869] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  556.495777][T10936] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.000E/input/input30
[  556.500819][ T5869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  556.517525][ T5869] usb 4-1: Product: syz
[  556.555720][T10936] microsoft 0003:045E:07DA.000E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  556.559914][ T5869] usb 4-1: Manufacturer: syz
[  556.576031][ T5869] usb 4-1: SerialNumber: syz
[  556.583825][   T10] usb 1-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  556.595174][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  556.604834][   T10] usb 1-1: Product: syz
[  556.622231][   T10] usb 1-1: Manufacturer: syz
[  556.627503][   T10] usb 1-1: SerialNumber: syz
[  556.638260][   T10] usb 1-1: config 0 descriptor??
[  556.648296][   T10] i2c-tiny-usb 1-1:0.0: version 6d.cc found at bus 001 address 033
[  557.104059][ T5869] usb 4-1: USB disconnect, device number 47
[  557.191053][   T30] audit: type=1400 audit(1742798369.001:7193): avc:  denied  { mount } for  pid=12326 comm="syz.0.1773" name="/" dev="9p" ino=4412287765254868893 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  557.366223][   T10]  (null): failure setting delay to 10us
[  557.420355][   T10] i2c-tiny-usb 1-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  557.489936][ T9708] udevd[9708]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  557.518504][   T10] usb 1-1: USB disconnect, device number 33
[  557.769290][    T9] usb 5-1: reset high-speed USB device number 38 using dummy_hcd
[  557.789200][ T5869] usb 3-1: new full-speed USB device number 54 using dummy_hcd
[  558.006846][ T5869] usb 3-1: config 0 has an invalid interface number: 39 but max is 0
[  558.029209][ T5869] usb 3-1: config 0 has no interface number 0
[  558.035837][ T5869] usb 3-1: config 0 interface 39 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  558.063243][ T5869] usb 3-1: New USB device found, idVendor=0499, idProduct=4d3f, bcdDevice=d2.2a
[  558.074726][ T5869] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  558.083979][ T5869] usb 3-1: Product: syz
[  558.088218][ T5869] usb 3-1: Manufacturer: syz
[  558.097012][ T5869] usb 3-1: SerialNumber: syz
[  558.104336][ T5869] usb 3-1: config 0 descriptor??
[  558.220316][   T30] audit: type=1400 audit(1742798370.061:7194): avc:  denied  { unmount } for  pid=5829 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  558.886759][   T30] audit: type=1400 audit(1742798370.391:7195): avc:  denied  { name_connect } for  pid=12355 comm="syz.0.1780" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  558.892096][   T26] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[  559.069166][   T26] usb 4-1: Using ep0 maxpacket: 32
[  559.081887][   T26] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  559.091880][   T26] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  559.113377][   T26] usb 4-1: config 0 descriptor??
[  559.256447][   T26] gspca_main: sunplus-2.14.0 probing 041e:400b
[  559.423892][T12363] FAULT_INJECTION: forcing a failure.
[  559.423892][T12363] name failslab, interval 1, probability 0, space 0, times 0
[  559.436669][T12363] CPU: 1 UID: 0 PID: 12363 Comm: syz.3.1778 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  559.436690][T12363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  559.436699][T12363] Call Trace:
[  559.436704][T12363]  <TASK>
[  559.436710][T12363]  dump_stack_lvl+0x16c/0x1f0
[  559.436740][T12363]  should_fail_ex+0x50a/0x650
[  559.436760][T12363]  ? fs_reclaim_acquire+0xae/0x150
[  559.436779][T12363]  ? alloc_pipe_info+0x10e/0x590
[  559.436795][T12363]  should_failslab+0xc2/0x120
[  559.436813][T12363]  __kmalloc_cache_noprof+0x68/0x410
[  559.436837][T12363]  ? __schedule+0xf4b/0x5890
[  559.436859][T12363]  alloc_pipe_info+0x10e/0x590
[  559.436874][T12363]  splice_direct_to_actor+0x793/0xa40
[  559.436891][T12363]  ? __pfx_direct_splice_actor+0x10/0x10
[  559.436909][T12363]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  559.436928][T12363]  ? __pfx___might_resched+0x10/0x10
[  559.436957][T12363]  do_splice_direct+0x178/0x250
[  559.436979][T12363]  ? __pfx_do_splice_direct+0x10/0x10
[  559.437002][T12363]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  559.437023][T12363]  ? rw_verify_area+0xcf/0x680
[  559.437039][T12363]  do_sendfile+0xafb/0xe40
[  559.437056][T12363]  ? __pfx_do_sendfile+0x10/0x10
[  559.437072][T12363]  ? __might_fault+0xe3/0x190
[  559.437091][T12363]  ? __might_fault+0xe3/0x190
[  559.437115][T12363]  __x64_sys_sendfile64+0x155/0x220
[  559.437133][T12363]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  559.437157][T12363]  do_syscall_64+0xcd/0x250
[  559.437174][T12363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  559.437189][T12363] RIP: 0033:0x7f98b7d8d169
[  559.437198][T12363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  559.437208][T12363] RSP: 002b:00007f98b8bc3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  559.437219][T12363] RAX: ffffffffffffffda RBX: 00007f98b7fa6080 RCX: 00007f98b7d8d169
[  559.437229][T12363] RDX: 0000200000002080 RSI: 000000000000000d RDI: 000000000000000e
[  559.437239][T12363] RBP: 00007f98b8bc3090 R08: 0000000000000000 R09: 0000000000000000
[  559.437248][T12363] R10: 000000000000023b R11: 0000000000000246 R12: 0000000000000001
[  559.437258][T12363] R13: 0000000000000000 R14: 00007f98b7fa6080 R15: 00007ffc6dfd67c8
[  559.437278][T12363]  </TASK>
[  559.819496][   T26] gspca_sunplus: reg_w_riv err -110
[  559.824996][   T26] sunplus 4-1:0.0: probe with driver sunplus failed with error -110
[  560.216214][ T5869] usb 3-1: USB disconnect, device number 54
[  560.270063][  T971] usb 4-1: USB disconnect, device number 48
[  560.422582][T12377] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1787'.
[  561.009895][ T9658] udevd[9658]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.39/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  561.789403][   T30] audit: type=1400 audit(1742798629.615:7196): avc:  denied  { name_bind } for  pid=12387 comm="syz.1.1791" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  562.941086][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  563.067717][   T30] audit: type=1400 audit(1742798630.905:7197): avc:  denied  { create } for  pid=12408 comm="syz.2.1795" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  563.132558][    T9] usb 5-1: device descriptor read/64, error -110
[  563.784974][    T9] usb 5-1: reset high-speed USB device number 38 using dummy_hcd
[  564.049176][    T9] usb 5-1: device descriptor read/64, error -32
[  564.338111][    T9] usb 5-1: reset high-speed USB device number 38 using dummy_hcd
[  564.389405][    T9] usb 5-1: device descriptor read/8, error -32
[  564.443343][T12419] lo speed is unknown, defaulting to 1000
[  564.489975][T12426] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1800'.
[  564.874968][    T9] usb 5-1: reset high-speed USB device number 38 using dummy_hcd
[  564.933943][T12339] raw-gadget.3 gadget.4: failed to queue suspend event
[  564.947735][T12429] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1799'.
[  564.949305][    T9] usb 5-1: device descriptor read/8, error -71
[  565.006316][T12339] raw-gadget.3 gadget.4: failed to queue disconnect event
[  565.111543][ T5943] usb 5-1: USB disconnect, device number 38
[  565.174610][T12419] lo speed is unknown, defaulting to 1000
[  565.642224][T12439] (unnamed net_device) (uninitialized): ARP target 9.0.0.0 is already present
[  565.680537][T12439] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (9)
[  565.923599][   T30] audit: type=1400 audit(1742798633.765:7198): avc:  denied  { ioctl } for  pid=12413 comm="syz.2.1798" path="socket:[41162]" dev="sockfs" ino=41162 ioctlcmd=0x8990 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  565.948282][    C0] vkms_vblank_simulate: vblank timer overrun
[  565.967404][T12419] 8021q: adding VLAN 0 to HW filter on device bond0
[  566.284930][T12419] bond0: (slave rose0): Enslaving as an active interface with an up link
[  566.689528][T12419] netlink: 108 bytes leftover after parsing attributes in process `syz.2.1798'.
[  566.834797][T12469] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1810'.
[  566.969107][ T5943] usb 4-1: new low-speed USB device number 49 using dummy_hcd
[  567.140566][ T5943] usb 4-1: Invalid ep0 maxpacket: 32
[  567.349091][ T5943] usb 4-1: new low-speed USB device number 50 using dummy_hcd
[  567.519157][ T5943] usb 4-1: Invalid ep0 maxpacket: 32
[  567.540394][ T5943] usb usb4-port1: attempt power cycle
[  568.368570][T12500] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  568.377140][ T5943] usb 4-1: new low-speed USB device number 51 using dummy_hcd
[  568.419575][ T5943] usb 4-1: Invalid ep0 maxpacket: 32
[  568.427374][T12500] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  568.607201][ T5943] usb 4-1: new low-speed USB device number 52 using dummy_hcd
[  568.629085][   T30] audit: type=1400 audit(1742798636.465:7199): avc:  denied  { create } for  pid=12476 comm="syz.4.1812" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  568.649793][T12508] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  568.690564][    T9] lo speed is unknown, defaulting to 1000
[  568.704348][ T5943] usb 4-1: Invalid ep0 maxpacket: 32
[  568.710653][ T5943] usb usb4-port1: unable to enumerate USB device
[  568.784618][T12515] xt_CT: No such helper "syz1"
[  569.299408][   T26] usb 1-1: new full-speed USB device number 34 using dummy_hcd
[  569.465317][   T26] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  569.511704][   T26] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  569.570615][   T26] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 10
[  569.600174][   T26] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid maxpacket 6150, setting to 64
[  569.614802][   T26] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  569.634435][   T26] usb 1-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  569.659712][   T26] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  569.683974][   T26] usb 1-1: Product: syz
[  569.688230][   T26] usb 1-1: Manufacturer: syz
[  569.693426][   T26] usb 1-1: SerialNumber: syz
[  569.704759][   T26] usb 1-1: config 0 descriptor??
[  569.716908][   T26] input: KB Gear Tablet as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input31
[  570.063654][T12548] misc userio: Invalid payload size
[  570.874879][ T5866] usb 1-1: USB disconnect, device number 34
[  572.055011][T12553] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1824'.
[  572.094034][   T30] audit: type=1400 audit(1742798639.905:7200): avc:  denied  { sys_chroot } for  pid=12556 comm="dhcpcd" capability=18  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  572.268596][   T30] audit: type=1400 audit(1742798639.915:7201): avc:  denied  { setgid } for  pid=12556 comm="dhcpcd" capability=6  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  572.324326][T12557] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1824'.
[  572.486064][   T30] audit: type=1400 audit(1742798639.915:7202): avc:  denied  { setrlimit } for  pid=12556 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=process permissive=1
[  573.018494][T12566] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1827'.
[  574.112928][T12574] overlay: Bad value for 'xino'
[  574.223669][   T30] audit: type=1400 audit(1742798641.955:7203): avc:  denied  { mounton } for  pid=12567 comm="syz.3.1828" path="/280/file0" dev="pstore" ino=3661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=dir permissive=1
[  574.689109][T12578] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  574.689293][T12578] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  574.788011][T12573] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  574.796674][T12573] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  575.344915][T12582] netlink: 1608 bytes leftover after parsing attributes in process `syz.3.1831'.
[  575.356448][T12582] netlink: zone id is out of range
[  575.363206][T12582] netlink: zone id is out of range
[  575.370142][T12582] netlink: zone id is out of range
[  575.376388][T12582] netlink: del zone limit has 4 unknown bytes
[  575.550655][   T30] audit: type=1326 audit(1742798643.395:7204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12583 comm="syz.2.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc52f8d169 code=0x7fc00000
[  575.574174][    C0] vkms_vblank_simulate: vblank timer overrun
[  576.249606][   T30] audit: type=1326 audit(1742798643.425:7205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12583 comm="syz.2.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcc52f8d169 code=0x7fc00000
[  576.278384][   T30] audit: type=1326 audit(1742798643.425:7206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12583 comm="syz.2.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc52f8d169 code=0x7fc00000
[  576.302683][   T30] audit: type=1326 audit(1742798643.425:7207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12583 comm="syz.2.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc52f8d169 code=0x7fc00000
[  576.328058][   T30] audit: type=1326 audit(1742798643.425:7208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12583 comm="syz.2.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc52f8d169 code=0x7fc00000
[  576.352219][   T30] audit: type=1326 audit(1742798643.425:7209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12583 comm="syz.2.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc52f8d169 code=0x7fc00000
[  576.378108][   T30] audit: type=1326 audit(1742798643.425:7210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12583 comm="syz.2.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc52f8d169 code=0x7fc00000
[  576.402465][   T30] audit: type=1326 audit(1742798643.425:7211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12583 comm="syz.2.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc52f8d169 code=0x7fc00000
[  576.486028][   T30] audit: type=1326 audit(1742798643.425:7212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12583 comm="syz.2.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc52f8d169 code=0x7fc00000
[  577.523226][ T5866] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  577.779035][ T5866] usb 1-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  577.799479][ T5905] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[  577.899141][ T5866] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  577.919417][ T5866] usb 1-1: Product: syz
[  577.934484][ T5866] usb 1-1: Manufacturer: syz
[  577.969132][ T5866] usb 1-1: SerialNumber: syz
[  577.997455][ T5866] usb 1-1: config 0 descriptor??
[  578.000218][ T5905] usb 3-1: Using ep0 maxpacket: 8
[  578.026527][ T5866] i2c-tiny-usb 1-1:0.0: version 6d.cc found at bus 001 address 035
[  578.038859][ T5905] usb 3-1: New USB device found, idVendor=10d2, idProduct=2865, bcdDevice=a4.c9
[  578.069567][ T5905] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  578.103046][ T5905] usb 3-1: config 0 descriptor??
[  578.123470][ T5905] usblcd 3-1:0.0: USBLCD model not supported.
[  578.185061][T12611] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1840'.
[  578.355134][T12599] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  578.364454][T12599] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  579.733043][    T9] usb 3-1: USB disconnect, device number 55
[  579.895831][ T5866]  (null): failure setting delay to 10us
[  579.918135][   T30] kauditd_printk_skb: 58 callbacks suppressed
[  579.918158][   T30] audit: type=1326 audit(1742798647.745:7271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  580.018359][ T5866] i2c-tiny-usb 1-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  580.517033][ T5866] usb 1-1: USB disconnect, device number 35
[  580.668911][   T30] audit: type=1326 audit(1742798647.745:7272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  580.729665][   T30] audit: type=1326 audit(1742798647.745:7273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  580.753930][   T30] audit: type=1326 audit(1742798647.745:7274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  580.778172][   T30] audit: type=1326 audit(1742798647.745:7275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  580.803241][   T30] audit: type=1326 audit(1742798647.745:7276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  580.838264][   T30] audit: type=1326 audit(1742798647.745:7277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  580.880292][   T30] audit: type=1326 audit(1742798647.745:7278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  580.968157][   T30] audit: type=1326 audit(1742798647.745:7279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  581.003463][   T30] audit: type=1326 audit(1742798647.755:7280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12627 comm="syz.1.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f3278d169 code=0x7fc00000
[  581.030401][T12639] FAULT_INJECTION: forcing a failure.
[  581.030401][T12639] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  581.055172][T12639] CPU: 0 UID: 0 PID: 12639 Comm: syz.3.1848 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  581.055196][T12639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  581.055205][T12639] Call Trace:
[  581.055210][T12639]  <TASK>
[  581.055216][T12639]  dump_stack_lvl+0x16c/0x1f0
[  581.055244][T12639]  should_fail_ex+0x50a/0x650
[  581.055271][T12639]  _copy_from_user+0x2e/0xd0
[  581.055287][T12639]  copy_msghdr_from_user+0x99/0x160
[  581.055311][T12639]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  581.055343][T12639]  ___sys_sendmsg+0xff/0x1e0
[  581.055367][T12639]  ? __pfx____sys_sendmsg+0x10/0x10
[  581.055398][T12639]  ? __pfx_lock_release+0x10/0x10
[  581.055420][T12639]  ? trace_lock_acquire+0x14e/0x1f0
[  581.055444][T12639]  ? __fget_files+0x206/0x3a0
[  581.055466][T12639]  __sys_sendmsg+0x16e/0x220
[  581.055491][T12639]  ? __pfx___sys_sendmsg+0x10/0x10
[  581.055528][T12639]  do_syscall_64+0xcd/0x250
[  581.055552][T12639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  581.055573][T12639] RIP: 0033:0x7f98b7d8d169
[  581.055587][T12639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  581.055608][T12639] RSP: 002b:00007f98b8be4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  581.055625][T12639] RAX: ffffffffffffffda RBX: 00007f98b7fa5fa0 RCX: 00007f98b7d8d169
[  581.055636][T12639] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  581.055646][T12639] RBP: 00007f98b8be4090 R08: 0000000000000000 R09: 0000000000000000
[  581.055656][T12639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  581.055665][T12639] R13: 0000000000000000 R14: 00007f98b7fa5fa0 R15: 00007ffc6dfd67c8
[  581.055687][T12639]  </TASK>
[  581.230388][    C0] vkms_vblank_simulate: vblank timer overrun
[  581.799876][T12653] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1852'.
[  582.169535][T12663] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1854'.
[  687.508977][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  687.515946][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P12670/1:b..l
[  687.524510][    C0] rcu: 	(detected by 0, t=10505 jiffies, g=47233, q=191 ncpus=2)
[  687.532222][    C0] task:syz.0.1857      state:R  running task     stack:27472 pid:12670 tgid:12665 ppid:5829   task_flags:0x400040 flags:0x00004000
[  687.546655][    C0] Call Trace:
[  687.549936][    C0]  <TASK>
[  687.552869][    C0]  __schedule+0xf43/0x5890
[  687.557303][    C0]  ? __pfx___schedule+0x10/0x10
[  687.562149][    C0]  ? find_held_lock+0x2d/0x110
[  687.566919][    C0]  ? preempt_schedule_thunk+0x1a/0x30
[  687.572291][    C0]  preempt_schedule_common+0x44/0xc0
[  687.577578][    C0]  preempt_schedule_thunk+0x1a/0x30
[  687.582779][    C0]  _raw_spin_unlock+0x3e/0x50
[  687.587451][    C0]  copy_page_range+0x1dee/0x55e0
[  687.592419][    C0]  ? __pfx_copy_page_range+0x10/0x10
[  687.597707][    C0]  ? find_held_lock+0x2d/0x110
[  687.602474][    C0]  ? __pfx_lock_release+0x10/0x10
[  687.607496][    C0]  ? lock_acquire+0x2f/0xb0
[  687.611996][    C0]  ? copy_process+0x7c12/0x8c50
[  687.616846][    C0]  ? down_write+0x14e/0x200
[  687.621352][    C0]  ? up_write+0x1b2/0x520
[  687.625688][    C0]  copy_process+0x7ccb/0x8c50
[  687.630384][    C0]  ? __pfx_copy_process+0x10/0x10
[  687.635402][    C0]  ? try_to_wake_up+0x953/0x1490
[  687.640345][    C0]  ? plist_check_head+0xa3/0x150
[  687.645285][    C0]  ? wake_up_q+0xb0/0x160
[  687.649611][    C0]  ? do_raw_spin_unlock+0x172/0x230
[  687.654809][    C0]  kernel_clone+0xfd/0x960
[  687.659224][    C0]  ? __pfx_futex_wake+0x10/0x10
[  687.664080][    C0]  ? __pfx_kernel_clone+0x10/0x10
[  687.669097][    C0]  ? irqentry_exit+0x3b/0x90
[  687.673700][    C0]  __do_sys_clone+0xcf/0x120
[  687.678288][    C0]  ? __pfx___do_sys_clone+0x10/0x10
[  687.683482][    C0]  ? __do_sys_capset+0xfa/0x450
[  687.688346][    C0]  ? rcu_is_watching+0x12/0xc0
[  687.693116][    C0]  do_syscall_64+0xcd/0x250
[  687.697623][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  687.703518][    C0] RIP: 0033:0x7f600318d169
[  687.707926][    C0] RSP: 002b:00007f6003f48fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  687.716337][    C0] RAX: ffffffffffffffda RBX: 00007f60033a6080 RCX: 00007f600318d169
[  687.724302][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000800400
[  687.732267][    C0] RBP: 00007f600320e2a0 R08: 0000000000000000 R09: 0000000000000000
[  687.740230][    C0] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  687.748196][    C0] R13: 0000000000000000 R14: 00007f60033a6080 R15: 00007fffe2419c88
[  687.756172][    C0]  </TASK>
[  687.759183][    C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10500 jiffies! g47233 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  687.771498][    C0] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=38137
[  687.779372][    C0] rcu: rcu_preempt kthread starved for 10501 jiffies! g47233 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[  687.790734][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  687.800692][    C0] rcu: RCU grace-period kthread stack dump:
[  687.806567][    C0] task:rcu_preempt     state:I stack:27168 pid:18    tgid:18    ppid:2      task_flags:0x208040 flags:0x00004000
[  687.818483][    C0] Call Trace:
[  687.821755][    C0]  <TASK>
[  687.824683][    C0]  __schedule+0xf43/0x5890
[  687.829099][    C0]  ? __pfx___lock_acquire+0x10/0x10
[  687.834311][    C0]  ? __pfx___schedule+0x10/0x10
[  687.839161][    C0]  ? schedule+0x298/0x350
[  687.843487][    C0]  ? __pfx_lock_release+0x10/0x10
[  687.848514][    C0]  ? lock_acquire+0x2f/0xb0
[  687.853016][    C0]  ? schedule+0x1fd/0x350
[  687.857346][    C0]  schedule+0xe7/0x350
[  687.861414][    C0]  schedule_timeout+0x124/0x280
[  687.866259][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  687.871626][    C0]  ? __pfx_process_timeout+0x10/0x10
[  687.876916][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  687.882719][    C0]  ? prepare_to_swait_event+0xf3/0x470
[  687.888188][    C0]  rcu_gp_fqs_loop+0x1eb/0xb00
[  687.893042][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  687.898327][    C0]  ? rcu_gp_init+0xc82/0x1630
[  687.903006][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  687.908207][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  687.914012][    C0]  rcu_gp_kthread+0x271/0x380
[  687.918707][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  687.923928][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  687.929164][    C0]  ? __kthread_parkme+0x148/0x220
[  687.934198][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  687.939408][    C0]  kthread+0x3af/0x750
[  687.943491][    C0]  ? __pfx_kthread+0x10/0x10
[  687.948089][    C0]  ? __pfx_kthread+0x10/0x10
[  687.952681][    C0]  ret_from_fork+0x45/0x80
[  687.957104][    C0]  ? __pfx_kthread+0x10/0x10
[  687.961694][    C0]  ret_from_fork_asm+0x1a/0x30
[  687.966467][    C0]  </TASK>
[  687.969479][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  687.975791][    C0] Sending NMI from CPU 0 to CPUs 1:
[  687.980990][    C1] NMI backtrace for cpu 1
[  687.981000][    C1] CPU: 1 UID: 0 PID: 12671 Comm: syz.4.1856 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  687.981016][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  687.981024][    C1] RIP: 0010:kasan_check_range+0x4d/0x1a0
[  687.981045][    C1] Code: ff ff ff ff ff 7f ff ff 48 39 f8 0f 83 b3 00 00 00 4c 8d 54 37 ff 48 89 fd 48 b8 00 00 00 00 00 fc ff df 4d 89 d1 48 c1 ed 03 <49> c1 e9 03 48 01 c5 49 01 c1 48 89 e8 49 8d 59 01 48 89 da 48 29
[  687.981058][    C1] RSP: 0018:ffffc90000a28bb8 EFLAGS: 00000806
[  687.981070][    C1] RAX: dffffc0000000000 RBX: 000000000000006c RCX: ffffffff8195c64e
[  687.981079][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff96ec6cc8
[  687.981087][    C1] RBP: 1ffffffff2dd8d99 R08: 0000000000000000 R09: ffffffff96ec6ccf
[  687.981096][    C1] R10: ffffffff96ec6ccf R11: 0000000000000000 R12: 0000000000000002
[  687.981105][    C1] R13: ffff888035564880 R14: 0000000000000002 R15: ffff888035565370
[  687.981113][    C1] FS:  00007f42792226c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  687.981128][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  687.981137][    C1] CR2: 000020000001e000 CR3: 000000007cd62000 CR4: 00000000003526f0
[  687.981146][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  687.981154][    C1] DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  687.981163][    C1] Call Trace:
[  687.981168][    C1]  <NMI>
[  687.981173][    C1]  ? nmi_cpu_backtrace+0x1d8/0x390
[  687.981190][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  687.981207][    C1]  ? nmi_handle+0x1ac/0x5d0
[  687.981226][    C1]  ? kasan_check_range+0x4d/0x1a0
[  687.981242][    C1]  ? default_do_nmi+0x6a/0x160
[  687.981257][    C1]  ? exc_nmi+0x170/0x1e0
[  687.981270][    C1]  ? end_repeat_nmi+0xf/0x53
[  687.981291][    C1]  ? hlock_class+0x4e/0x130
[  687.981306][    C1]  ? kasan_check_range+0x4d/0x1a0
[  687.981323][    C1]  ? kasan_check_range+0x4d/0x1a0
[  687.981340][    C1]  ? kasan_check_range+0x4d/0x1a0
[  687.981357][    C1]  </NMI>
[  687.981361][    C1]  <IRQ>
[  687.981366][    C1]  hlock_class+0x4e/0x130
[  687.981380][    C1]  __lock_acquire+0x15a9/0x3c40
[  687.981402][    C1]  ? __pfx___lock_acquire+0x10/0x10
[  687.981420][    C1]  ? advance_sched+0x6d2/0xc60
[  687.981435][    C1]  lock_acquire.part.0+0x11b/0x380
[  687.981453][    C1]  ? __hrtimer_run_queues+0x2be/0xae0
[  687.981468][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  687.981486][    C1]  ? rcu_is_watching+0x12/0xc0
[  687.981500][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  687.981515][    C1]  ? __hrtimer_run_queues+0x2be/0xae0
[  687.981528][    C1]  ? lock_acquire+0x2f/0xb0
[  687.981544][    C1]  ? __hrtimer_run_queues+0x2be/0xae0
[  687.981558][    C1]  ? __pfx_advance_sched+0x10/0x10
[  687.981571][    C1]  _raw_spin_lock_irq+0x36/0x50
[  687.981587][    C1]  ? __hrtimer_run_queues+0x2be/0xae0
[  687.981600][    C1]  __hrtimer_run_queues+0x2be/0xae0
[  687.981616][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  687.981629][    C1]  ? read_tsc+0x9/0x20
[  687.981646][    C1]  hrtimer_interrupt+0x392/0x8e0
[  687.981664][    C1]  __sysvec_apic_timer_interrupt+0x10f/0x400
[  687.981685][    C1]  sysvec_apic_timer_interrupt+0x9f/0xc0
[  687.981707][    C1]  </IRQ>
[  687.981711][    C1]  <TASK>
[  687.981716][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  687.981735][    C1] RIP: 0010:finish_task_switch.isra.0+0x220/0xcc0
[  687.981754][    C1] Code: a9 0a 00 00 44 8b 0d b3 e6 d9 0e 45 85 c9 0f 85 c0 01 00 00 48 89 df e8 ae f8 ff ff e8 29 f0 38 00 fb 65 48 8b 1d a0 20 7b 7e <48> 8d bb 08 16 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1
[  687.981766][    C1] RSP: 0018:ffffc90004e47710 EFLAGS: 00000206
[  687.981777][    C1] RAX: 00000000000039a5 RBX: ffff888035564880 RCX: 1ffffffff20c4511
[  687.981786][    C1] RDX: 0000000000000000 RSI: ffffffff8b6cfc80 RDI: ffffffff8bd36a20
[  687.981795][    C1] RBP: ffffc90004e47758 R08: 0000000000000001 R09: 0000000000000001
[  687.981803][    C1] R10: ffffffff90626c17 R11: 0000000000000000 R12: ffff8880b873fa30
[  687.981812][    C1] R13: ffff88801d698000 R14: ffff888078d38000 R15: ffff8880b863ec00
[  687.981826][    C1]  ? __switch_to+0x749/0x1190
[  687.981841][    C1]  __schedule+0xf4b/0x5890
[  687.981856][    C1]  ? __pfx___lock_acquire+0x10/0x10
[  687.981878][    C1]  ? __pfx___schedule+0x10/0x10
[  687.981893][    C1]  ? schedule+0x298/0x350
[  687.981908][    C1]  ? __pfx_lock_release+0x10/0x10
[  687.981926][    C1]  ? lock_acquire+0x2f/0xb0
[  687.981942][    C1]  ? schedule+0x1fd/0x350
[  687.981958][    C1]  schedule+0xe7/0x350
[  687.981973][    C1]  schedule_timeout+0x244/0x280
[  687.981988][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  687.982005][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  687.982021][    C1]  __wait_for_common+0x3e1/0x600
[  687.982037][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  687.982052][    C1]  ? __pfx___wait_for_common+0x10/0x10
[  687.982069][    C1]  ? lockdep_init_map_type+0x16d/0x7d0
[  687.982088][    C1]  ? generic_exec_single+0xbb/0x390
[  687.982103][    C1]  rdmsr_safe_on_cpu+0x1de/0x210
[  687.982121][    C1]  ? __pfx_rdmsr_safe_on_cpu+0x10/0x10
[  687.982138][    C1]  ? __pfx___rdmsr_safe_on_cpu+0x10/0x10
[  687.982154][    C1]  ? __might_fault+0x13b/0x190
[  687.982169][    C1]  ? __pfx_lock_release+0x10/0x10
[  687.982191][    C1]  ? _copy_to_user+0x48/0xd0
[  687.982205][    C1]  msr_read+0x19e/0x250
[  687.982220][    C1]  ? __pfx_msr_read+0x10/0x10
[  687.982233][    C1]  ? bpf_lsm_file_permission+0x9/0x10
[  687.982248][    C1]  ? security_file_permission+0x71/0x210
[  687.982268][    C1]  ? rw_verify_area+0xcf/0x680
[  687.982285][    C1]  ? __pfx_msr_read+0x10/0x10
[  687.982300][    C1]  vfs_read+0x1df/0xbf0
[  687.982318][    C1]  ? __fget_files+0x1fc/0x3a0
[  687.982331][    C1]  ? __pfx_lock_release+0x10/0x10
[  687.982349][    C1]  ? __pfx_vfs_read+0x10/0x10
[  687.982366][    C1]  ? do_futex+0x123/0x350
[  687.982382][    C1]  ? lock_acquire+0x2f/0xb0
[  687.982398][    C1]  ? __fget_files+0x40/0x3a0
[  687.982411][    C1]  ? __fget_files+0x206/0x3a0
[  687.982425][    C1]  ksys_read+0x12b/0x250
[  687.982443][    C1]  ? __pfx_ksys_read+0x10/0x10
[  687.982464][    C1]  do_syscall_64+0xcd/0x250
[  687.982482][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  687.982499][    C1] RIP: 0033:0x7f427838d169
[  687.982511][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  687.982523][    C1] RSP: 002b:00007f4279222038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  687.982534][    C1] RAX: ffffffffffffffda RBX: 00007f42785a6080 RCX: 00007f427838d169
[  687.982543][    C1] RDX: 0000000000018ff8 RSI: 0000200000019680 RDI: 000000000000000c
[  687.982551][    C1] RBP: 00007f427840e2a0 R08: 0000000000000000 R09: 0000000000000000
[  687.982559][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  687.982568][    C1] R13: 0000000000000000 R14: 00007f42785a6080 R15: 00007fff9b3236b8
[  687.982581][    C1]  </TASK>