last executing test programs:

3.549740451s ago: executing program 3 (id=3761):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/devices.allow\x00', 0x2, 0x8)
syz_genetlink_get_family_id$nl80211(&(0x7f0000002240), r0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x240, 0x9b99}, 0x9, [0x7, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x5, 0x25cd, 0x1, 0xa4, 0x6, 0xa2b9, 0x6, 0x7, 0xe4, 0x9, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x8, 0x9, 0xd, 0x2, 0x12a3, 0x6, 0x1, 0x2, 0x4, 0x7, 0x81, 0x8a, 0x79, 0x558e0d31, 0x4, 0x0, 0x91, 0x4, 0x4, 0x7, 0x2, 0x5, 0x400, 0x7fff, 0x5, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x3, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x6], [0x9, 0x3, 0x6, 0x5f, 0x4, 0xc66, 0xa8a9, 0x73, 0x8e, 0x10001, 0x7, 0x5, 0x2, 0x9, 0x4, 0x5, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x2, 0x1c, 0x84b, 0x1, 0x2, 0x54f5bad8, 0x8, 0xfffffffd, 0x400, 0xffff58b9, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00000, 0x5, 0x6, 0x2, 0xfffff801, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x762, 0x1cb, 0x1, 0x4, 0x6, 0x438, 0x2, 0x9, 0x95, 0x8000, 0x5, 0xfffffff9, 0x200004, 0x1000, 0xfffff801, 0x5], [0x2, 0x1, 0xffff, 0x3, 0x2, 0x2e6bf783, 0x80000001, 0xb, 0x5, 0x491, 0x8d3, 0x6, 0x8, 0x3ff, 0x2, 0x400, 0x40, 0x6, 0x7, 0x7, 0x5, 0x0, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x100006, 0x8000, 0x400, 0x3e55, 0xff, 0xd3, 0x7, 0x34b5, 0x3, 0x9, 0xfd, 0x401, 0x101, 0xdd80, 0x60a2, 0x17fc, 0x9d26, 0x5, 0x8, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0xfffffffc, 0x10000, 0x1, 0x8, 0x1], [0xa772, 0x1, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c81, 0x7f, 0xfffffff8, 0x40, 0xff, 0x5, 0x7fffffff, 0x7, 0x4, 0x9, 0x81, 0x7, 0x9d86, 0x9, 0xfffffff7, 0x8, 0x40f1, 0x2, 0x3, 0x101, 0x80000001, 0x7777, 0xfff, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x624dfaee, 0xc, 0x7f, 0x1000, 0x1ff, 0x2000005, 0xffffffff, 0x10000, 0x0, 0x8001, 0x7fff, 0x1000, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x1, 0x8, 0x13ffd, 0x1, 0x1b18]}, 0x45c)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x2, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}})
r5 = syz_open_dev$I2C(&(0x7f0000001900), 0x0, 0x40)
ioctl$I2C_RETRIES(r5, 0x701, 0xfffffffffffffff8)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x200000035, 0xfff, 0x0, 0x180, 0x4, 0x14, 0xf1, 0xfffffffffffffffe, 0x7fffffffffffe, 0x5, 0x5, 0x6, 0x0, 0x45, 0x4, 0xbdb], 0x1, 0x1c4213})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), r6)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x14, r7, 0x70b, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4000051}, 0x40000a0)
r8 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r9 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r9, &(0x7f0000000380)={0xc, 0x8, 0x144, {&(0x7f0000001140)}}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000500)={<r10=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r9, &(0x7f0000000600)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x3, @loopback, 0x9}, {0xa, 0x0, 0x9, @mcast1}, r10}}, 0x48)
r11 = dup(r8)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r12, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r8, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r12, 0xae80, 0x0)

3.276314741s ago: executing program 3 (id=3762):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2.581262163s ago: executing program 0 (id=3765):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000480003006465666c61"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r2 = dup(0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2.523507497s ago: executing program 3 (id=3766):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4, 0x3ff, @empty, 0x1}, 0x1c)
r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000540)={0x44, 0x1, 0x2, 0x7cbbda779fe004e1, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x30, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000014}, 0x4000840)
sendmsg$nl_generic(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="640000001900010000000000fbdbdf251d01"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)
ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, &(0x7f00000000c0)={'pcl812\x00', [0x4fa7, 0x105, 0x2, 0x10000421, 0x1, 0xcc7, 0x7ffffffe, 0x5c952398, 0x5, 0x3ff, 0x2, 0x300, 0x1, 0x1, 0x9, 0x0, 0x0, 0x8, 0xfffffffa, 0x1ff, 0x80000089, 0xa, 0x400000, 0x20001e54, 0xffffeadb, 0x3, 0x3d, 0x8, 0x4, 0x8000000, 0x485b]})
ioctl$COMEDI_SETWSUBD(r2, 0x6411)
r4 = fcntl$getown(r0, 0x9)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r4, 0x10, &(0x7f0000000000)={0x174})
clock_gettime(0xfffffffffffffff6, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2, 0x20012, r2, 0x7b341000)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYRES64=0x0, @ANYRES32=0x0, @ANYRESOCT=r0], 0x100}, 0x1, 0x0, 0x0, 0x41}, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r1, 0x8040942d, &(0x7f0000000040))
ioctl$BTRFS_IOC_RM_DEV(r1, 0x5000940b, &(0x7f00000002c0)={{r1}, "081b187b74d7a22bb0d9009bfa10a69a9fc2a66ddbc08e56057a141935389a1d63c19ce750d9c6f8e0fad43eaaddf923a1f80772913e7e0d7e360a4f78f276246d0f10e12a645073c64d9f0dc4651ad7b9688c136d3e2a910b6228daa29f5114cba030c988310afc375d3e3da0bbe82bfa1efef819873b6df851dcf10e5bbad168f98bf9b9be4a72af4fd43b1d5f49758c0aaa55a2aea99fee77348ff126a6a538e9d3a27ca5bb99bbcd9327b21499001ce5dc0d532207cfc7d62f208a4e0197a77e20e01ae33742583e292c3a73f9606b3d33597ff9f015a4a058958a3f68fbdf439e3c0502bdcc43d1210603d7fb400e2ffdf61c63883d9d56db21d15a26e89ac4f9a16fe769f9be427e12816a70a5e9a3274f0e3bc537af13f3bd476f8017e3a2404c7b358bce239f87c9f1130f3762bff030f991624e911d016c9002ee941c350ab7f7b462777b33f9b9956e48648e4782823c3a76c7371bce0552d0984dcf2493689461ce41a9c732d938d8d95f8bdb4e7c7ea5ab87c3d134b80deb7c228d9d6323c7946f8cf6a9fc95979d0a3d62a59adaf252f27ec75670a35d5dc4face3adde8dc417192557f3c915219887a1d147386d48920a409115d9f5860286bc78640ac30248b298c112f0379f4a141976fe4b7d5ddf41d5134c439595d51491e0f70e405ad337563e389f75381c3a02528b9b3b6cbd002aff1cb41fa52052bb796be96fa5a41de3009d01e002c297bb4155516b6ccbbdb069c4cece2f6531b7db75629348c6b91ec41587520e5a6f2d8313395dd4442709d6eb670aadbc2b9b39cd4898b43fac7b2be493e86b0a767caa32de36002163fe15584983bf30f5080a6c2f65adf6627a138b7c816f86b371076926e2922b8d3bcbee16811d3f53d2027c29f55449e8c819810df95070f1d1b940ff46246a1edc300f875880ec1774c7286c43e43c6b8cc6664350978357e625a4d4a2607d27df47d59df30a32e531b4eddfbb8de865702484efd5a408b2289c67e5a336b92847b69033e5e34c60a3b23699e76204fa36c256fe199a2d3dd53c8641292af4c21ec97737b1ef926fc8af8ca355972658bd042197e569453221193a312b8012a08b55f295a6d01c3d1fad4f570faee0e141a30c88760dc57bf58b010d52324a20f3145d6e3b489e18635766d39979a108642bf74b947a51cd0e8b192f1ec1381971d8ee01b99ac99422bc4459ccbc9fbd48260670602ac98f8f4a7f5d0321f16153b95f6ff3896104eda51c20da3b5f1db734387d37c200b58fd1057bb30b79330a98304a1e1839b2c53264c07a8c4bd1c21bdb98ee3d1734fbfcef5c3ffb50afed49b6cb605a1c505a2f5c2e2acf5497c45275692b80a03b92e69cb5ba164654a2936005ce9d66319bfecea46eea2f8882d78ff9bdb697128afd5fd5cf1689f17faddc8cd3f5e9ca11831b041540341a2a02929c595a6744411fd7f9fbf79166f9c2de271de7eff1ba85140d337442bb71ae463a34f0e425b41df8ccb4eee0b6048de6a21e5b22675cec9941683569a05f3bb3c2a64772906aeef2a2405679dbf770d006f0c4dd1d466a7478d4c2ef2b1a0eeace047c3284d5781dafc6987a50270cf4c4afc56c715af4ad12a5d9db00357940b16e4de89e8800de69f52e6268e4a29b331af3edabef4d299e3ff2b7f45eef3c18b5189eb66d08009ac0abe039f72a555f581f321f3f682c550a266ddac368c6483af70d9d67b3564eb0464c9053a26906865ad4724e1f10820a03ff0e7e23a169663f8f47eadcfe04c8c9090bb8825ed87aa9ce0bd9a369a3c9fb7216b7e5e12d24574dcfffb657cd7492681361ffa085969c3f98f92eef8377d45d018b8eb2a3db26aa089e127ac733fc9c8a7201e23c2d815197d7faa7d02eb9d927885b8c004c4b88f793d32dc27c5d078879d67375a238b74b3fe792583966af26d02918b56035f6fe2670ab9008f7636a811ca4919e10b9423214df2d4ea789bbf323957ad27541520c6bf20f44effade2492d77bfa0c665bf5eee477e3a626d684dbfe3fbd7cb0fc36f87c386f780c29dd4cf0e5b38eacb172a151dd576069386ffd9ab58a11aeb169aec53f76fb87c18422d8b9c19bfbfb3283d4307a1f5403c48c2fa0c887006453439ac39d8346f9a6ae6dbf71aff2447a4f9d789104aacb27842b4d0591deca08c90f99af1aab5f607ea1418730b7a7ff5be4728cc92a3c65d758cc0636d7d28f85e4a999be38ffa4fb847131315836075cb6d9a163852f61f1fb9fe2b493dc9537d076e6b8ab58c554e86ff62605aa7aaee74302b067218b0c62ccc0197cf85b07d18e4fcadda8f9be5026ad5037b1734a8def044bb2e518c746e98282467d502ad1840c3f6d8e49e9c5b3c5f4dcae3e95bd6a34be805a19d8657db37c9cc13ae89124ce5d822e5764e2eef48a99f756ab7150fb4ea32638b80af561e613722980512865c1c0803564c24a8af69309b606c16b09520bcd3ac4d44707ba3a73fc10edd95eec7848a65fbf4a94a632ffb17ce1dac64587a5e8e2c722c810565f4c7aea6e14714ea1e57ce3735c37a10e32251e09c00ce57ec826b6ec3884ce1f5b559aa4c8c9597deededddf26eab915f1a017eebd98ccb7234664fab0c0894312f5617f92aa7f3db1c0ca7649b0b07d8ffeeb9a6268cf633ea6821cb743f60550d26c5bd57ac3c9112b91f9690fb276274a9b5962acdc6927bc522b4d4768c5d3ee01c1dba0c624e6faf3646ae42a2e6807fb003de556e5e9d5ea01ff5efc60716c6829b74c370a208d4e07b67ab7ccb8dd30ca9b6d845257601a4324fb78c078024b7a486eb92432dd49a9161b384596f8ad9fdfef8db3b3dadfa4bfcc489f65b816065b043030501240ce436e062062e088d18f85b2fd14948f7cc7459269f82db54142c27f64e2d9c87aa174c1c900ae4841de7db9aeaf80327d84faf91abcf754950547ce799190e07888348000933f8614b42ccd1dfa0e8f9666375f0c699c63b571f48263559105e69ab314f392a07df2844d7596c1dd0dd008188ac9369f988ab50db83fd1eff8094d6eebf5514544e924ffa739a079f7a83030e241fc0bf42507abac7154bc3d936ca57d60128ab7b32550d03826d29ae618feb0bf56388ee1b8e93e1c4ad235d03804f9771f68bf6aea1e6dc206935a1e21337312d49a6b808569168e00a796c7a35cacfc1af5e15fb5fb43c1eb89b6dc2b5c888860788ca9cf4d7dd7ad898e95998c6a873523125ac4db5e4a18b58ff44ad02f4108f405473f01b40a51f78383f7514cf915697eb09fe5e8a81cfdcf3a60b4f6fb5951d6be139f0dff0361cacd6427f4bf117e625df71115094e75e7f832b2a88c118108d4f12c65737db949144c992700894b672a0af9aa7b462cb3cdf6f112517e8d1e8273c2ef6b13b5505a17b926bcee54995897aa8c806688cc309e1b8e474aebea1db27e7d86188e491e92e946d3e213faa1cdc452dfc7b9a6fe63e5e88065840a5a5da49e81f8f158d4a6d97c40be41c2e14a884c7cc2dceeed243e0a5a497bc484d5ade78efda88cb31dd3a9aa6d6fe3ce3d61c23e4a62d2e40f0c1270da1cc7cd008c102acceeee11b0458af0906b78ca8f263367ad879b8de495fcebf39d5cc9970bd57ec766cd467f02ace81e49ce90b4c3541b7a7c4aa87f6021c4fb50d3c71f490a2b856696d55598fa8df406f1b6ad9152c1c9d3168a99bcb76a673784bd522741651b8f442b5638d31b6c9a62986ab4298a07fd260069eef32f3e3e9ca9fc7a5e8d551ea75542b8ba130fb6ceed002d618eeb4622e54510c3d3b432f9aea066142e21470144651e1c2176d0f0ae3a8f9c77849814bf45f1e5a06045c96ca65037b860cd9031a178e97b30d3869e97d33b606ef6c150fd2192a2d056cc77ff02b82e5cbad63c5c00335b9f9e64e9848ce797f8e550ccf3f015a5b65194fb69e9e326fa78063f898c7c350b91cfed2dd0b4470d67d507107104e1291f4d31a3cd327e39d367d382ee0d1c54a30836e804cdec021174ee89e215817289da5409cb4164b30133fe052c6c3ccaecb099b2630af5a53c42c231de216b0670a0c0f41b68f04b5878b016f433fc8d89825998b0715a2aab838f0b8589ec1f71d1919a1ece7b819b712d61a6d81888bcef2c9fe5227b7b1449081a39b41374e674d27c1e1c74f0b603970d49cfe5521690f0bfc56f6294094f34071daa3db28fa5f1da9ff31a20ddac61487cf27efbc77fc46640cb7dd5149b9732b3da57f85f660a51873e4f25bf50e90a13de810779bf54227b931ea728eb7457ea477e4789ac27680202f0164203f3a63ad3f7b9a0f352bfbcb9bae091666a15721cd1c915fc2d91cc52ad38664c7bd08cc1b322ec0097b9f039f54b28c08c018d3846881937edd4df83cb949ed492b2238c72e1564807b5dc098bd795e542fa179d364982b9b125d28dd7e4935df317bccec1c68f3b3fe727731687e6d66d4613e03789da5319557e2f38b0e7e1f281b86da835de129654fe2a38f7cc33f09d836bd3696c740e65aa00a7e201f99ea114c7a81a769d1273cedfe65807409d43b4a4371cd6d3f318012a7ae1e834957cea3906d8151810b5f41a0b0756ee06404b9c30ad98717c4eb4de108c7c79de4fecd6da1ec74c7637c30629955894a609ddf782b3f1285fca3699b465b87d5082741bce4f4837d6a6f47997882af159e59beb344d831d99a2e7651a7880d307e2feed5db54fa49400cd3cb1a3f9b7399d733fa209ef640f9a621e96b021651c9c34e8d7e4fcf2bc6abc677ca0f55bc882d7d942c47641b1e198f2f403ddc56edf665ca8d8197fe781da199b3fc99a7e741c9df7e103b0eefd2995bce9efba594b432044da92114b1e236a315a35d66be4a739e02200221c51a662ed3a2bba491cf9c026c02a062661709fb5d424d43b7cc27fce18bb37812deccf2b3ec0b7579187a121c0af206ca3995b55167567302af6d64878b9b6b22f747fab9688745fbd185424ed9cb5015161304934d5848407f3f04bc08399b884443806dfa8ef91efc9b349a954f1e81529a93dcda4ec747e3ca1ce4df54a0276aa0eaa65249c49d6e80ad70bcd5783ea7e654a3f141805cbbd46e5bd1b4a061b3f1c5270f4e2c15d7bf4472bc943868b2d80c5bfab95bd06e3b3306181245ace6dbc7dceb4e9020366cf82f3c7d9017e9b43d3956a47dad0fc4815cec44701a3e48742017c357b0b35dfb0e3e1ab6adf371ee0d5aa7bcbe67399b85e027ff61aa1eefed03ec8989f712a1b367a17d7e86b223a732f7eb460ba2019a979db2c08ff4884493227ebf84b84364d53fb2ea8a0f34702052dfd6b81bf3b0c13b885dad2d21c4d0877f8e888af0c168b400bb059bd6767da8901d318fbcd81519b2aab6209125b3e642598cfac1ab25d961d87643a900e104623568400d0207d4809e94fa49b15f24a695ea73379e36605fff690b515f1533adc857318b86f7d399648b89ee1b6a8e267f2929765acf99171c92158b1ab059aec9f54feb83844190dcd14e1f67e3cfc283112b202789967db5f37f534a8b00ede9dee9b1d1601618bf8e3a5cc5478722ad9ce4a0d65636857dee0a62b4bb8b5c2ee3ad7e9a047e135dcfdcdcf124ac717f0cf5b8eb550cedab2721e8ff43bf75b6068b3fe91882bf970db6f3608389e4e2abd53083329616cf6229a884de3a09bf886336549fe32f8484e5ddd26cc6e79409bc689dd1d5ed6a935142c5213745ca01268c11c48a791a21336e79"})

2.41215996s ago: executing program 3 (id=3767):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000480003006465666c617465"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), 0x0, 0x0, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

2.411901537s ago: executing program 0 (id=3768):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/45, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

2.35984861s ago: executing program 1 (id=3770):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a00010700000000000000004800030064"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

2.113800881s ago: executing program 3 (id=3772):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/45, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000480003006465666c617465"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

2.002413719s ago: executing program 1 (id=3774):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x4008031, 0xffffffffffffffff, 0xa2767000)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x8, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000ceb000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mremap(&(0x7f000040b000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f00009ba000/0x1000)=nil)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x20223000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.927124251s ago: executing program 0 (id=3775):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, 0x0, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.832189488s ago: executing program 1 (id=3776):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCGARP(r0, 0x8935, &(0x7f0000000000)={{0x2, 0x4e24, @rand_addr=0x64010100}, {0x6, @broadcast}, 0x8, {0x2, 0x4e23, @rand_addr=0x64010102}, 'syzkaller1\x00'})

1.779707315s ago: executing program 3 (id=3778):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r1, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x2, {0x2, 0x3, 0x8}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4040}, 0x20001)
sendmsg$tipc(r2, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x2, {0x41}}, 0x10, 0x0}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000ed3ec908cd0cb300ea2d010203010902120001000000000904"], 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io$hid(r3, 0x0, &(0x7f0000000500)={0x18, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r3, 0x0, 0x0)
syz_usb_control_io$hid(r3, 0x0, &(0x7f00000004c0)={0x2c, &(0x7f0000000200)={0x20, 0x28}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r3, 0x0, 0x0)
syz_usb_control_io$uac1(r3, 0x0, 0x0)
syz_usb_control_io$rtl8150(r3, &(0x7f0000000180)={0x14, &(0x7f00000000c0)=ANY=[@ANYBLOB="40071d2200001d0eb1a17666c9200f62b767d70653e2a64ae302e42bb1ea43c50d0296"], &(0x7f0000000140)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x419}}}, &(0x7f00000014c0)={0x2c, &(0x7f0000001380)={0x0, 0xf, 0xfa, "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"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x3}, &(0x7f0000000280)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000000300)={0xc0, 0x5, 0x4, "ac468840"}, &(0x7f0000001480)={0x40, 0x5, 0x6, "7aac71b10646"}})

1.590973109s ago: executing program 1 (id=3780):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
clock_getres(0xfffffffffffffff1, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="020300030f000000000700000000000005000900e000000001d78771b90bd8a3b491d500c58777003d5b9538a9d03e6e9bfdac5500000000030006000000000002000000ac14141a000000000000000002000100000000000000020d00000000030005000000000002"], 0x78}, 0x1, 0x7}, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_procfs$pagemap(0x0, &(0x7f0000000000))
stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0))
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000140)={0x60, 0x1, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x8001, 0x0, 0x0, 0x7f, 0x10, 0x4, 0x60, 0x8})

1.590090501s ago: executing program 0 (id=3781):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000480003006465666c617465"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, 0x0, &(0x7f00000000c0)=""/83, 0x53, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.360363168s ago: executing program 0 (id=3783):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a00010700000000000000004800030064"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1.029668s ago: executing program 0 (id=3785):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0xa6, 0x111c8a, 0x0, 0x8000007, 0x6, 0x4, 0x1, 0x0, 0x7, 0x9})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f0000000300)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0x400000ff})
r2 = syz_usb_connect(0x0, 0x68, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000a1121710950b2a17f4f7010203010902240001000000000904fbff026c5d650009050402100000fa000905820240"], 0x0)
syz_usb_control_io$printer(r2, 0x0, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x1c0)
mount$cgroup(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000240), 0x8010, &(0x7f0000000380)={[{@release_agent={'release_agent', 0x3d, './file0'}}, {@release_agent={'release_agent', 0x3d, './file0'}}]})
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="16000000246837f73199aee6fdb9291b3091ec1a2d41d227975ad8ec309d59191b00867997f9c0efa9c9092a31cdbb98ea272787afda0af59a320709c3a59ef05c6f40ceafec53f48d6186e7d8409e35306221caf67b370d875eff3191932728e5ab6c9a3acf6ccee3e352c898f5744abaedfb53f92c37acb126bd143f3e9cdfcf25a8d6129fcc3a141c3f5ab6db772f87c787817a9b699dd60732d952716b103bc1e91ac5b1ed92f35389580994bb0df9bce07e7a80921888f984139f488d256a67fec0cbb5c4e93d5c151d97f676ab93b1efbd46f600dc964231e3257bf358448fddf894c0cdfa9115adbe5b19bc912fcbc8aac7719b649b1ff1267491da", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$VT_DISALLOCATE(r5, 0x5608)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)

976.744779ms ago: executing program 1 (id=3786):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a01010000000000000000000000000000000000200000000000202032000000", @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000480003006465666c61746500000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000b000000000000000000000000000c"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

926.574503ms ago: executing program 2 (id=3787):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000480003006465666c61"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

807.941509ms ago: executing program 2 (id=3788):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a0101000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a000107"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
r1 = add_key$user(0x0, &(0x7f0000000440), &(0x7f00000000c0), 0x0, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

776.177316ms ago: executing program 1 (id=3789):
r0 = getpgrp(0x0)
wait4(r0, 0x0, 0x20000000, 0x0) (async)
syz_usb_connect$cdc_ecm(0x3, 0x121, &(0x7f00000004c0)=ANY=[@ANYBLOB="12010000020000102505a1a440000000010109020f010101000000090400001602020000052414"], 0x0)

661.102514ms ago: executing program 2 (id=3790):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, 0x0, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

442.082512ms ago: executing program 2 (id=3791):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000040)=ANY=[@ANYBLOB="44010000100001000000000800000000fc0100000000000000000000000000000a010100"/46, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000100000000000000000000000000000000004000000000000000d000000000000000a0000000000000000000000000000000000000000000000000000000a0001070000000000000000480003006465666c617465"], 0x144}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, 0x0, &(0x7f00000000c0)=""/83, 0x53, 0x0)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x0, 0x201, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

252.141397ms ago: executing program 2 (id=3792):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240))
ioctl$KVM_RUN(r3, 0xae80, 0x18)
setrlimit(0xf, &(0x7f0000000000)={0x1, 0x5})
r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x181)
write$snddsp(r4, &(0x7f0000000440)="fe2da498", 0x4)

0s ago: executing program 2 (id=3793):
r0 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000080)={0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="010000000000000044000000000000000f9b9479f7ffffff0f06d233d004b800700000ef0fae69b70f01cf0f20074d0fc71f450f2164c30000000000000000000000e1e94c0000"], 0x44})
r1 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x88800, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1000000000000004, 0x264e80)
ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0286405, &(0x7f0000000340)={0x0, 0x3, {}, {0xee00}, 0xfffffffffffffffe, 0x80})
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000f00)={'dummy0\x00', &(0x7f0000000040)=@ethtool_sset_info={0x37, 0x5, 0xb60}})
r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r5, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f000015a000/0x3000)=nil, 0x3000, 0x2, 0x11, r0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r7, 0x29, 0x3, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(r7, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000040)=0x42, 0x4)
connect$inet6(r7, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
sendmmsg$inet6(r7, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000002440)="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", 0x1f2}], 0x1}}], 0x1, 0x4000001)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000004, 0x10012, r6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r8 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r9, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r9, 0x4040534e, &(0x7f0000000180)={0x1f, @time={0xe9, 0x8}, 0xfd, {}, 0x0, 0x2})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f00000001c0)={[0xfffffffffffffffb, 0x6, 0x0, 0x4, 0x10003, 0x0, 0x400200cc4, 0x5, 0x7d, 0x0, 0x0, 0x0, 0x2, 0x1, 0xb9, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r10 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r11 = dup(r10)
write$binfmt_aout(r11, 0x0, 0xffffffdb)
sendmsg$NFT_BATCH(r11, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000003680)=ANY=[@ANYBLOB="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"], 0x25d4}, 0x1, 0x0, 0x0, 0x4004000}, 0x54)

kernel console output (not intermixed with test programs):

s_on+0x9c/0x150
[  441.308697][T18667]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  441.308728][T18667]  ? __pfx___mutex_lock+0x10/0x10
[  441.308766][T18667]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  441.308801][T18667]  ? do_vfs_ioctl+0xbe8/0x1430
[  441.308828][T18667]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  441.308871][T18667]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  441.308901][T18667]  kvm_vcpu_ioctl+0x74d/0xe90
[  441.308935][T18667]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  441.308986][T18667]  ? __fget_files+0x2a/0x420
[  441.309027][T18667]  ? __fget_files+0x3a0/0x420
[  441.309059][T18667]  ? __fget_files+0x2a/0x420
[  441.309092][T18667]  ? bpf_lsm_file_ioctl+0x9/0x20
[  441.309126][T18667]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  441.309147][T18667]  __se_sys_ioctl+0xfc/0x170
[  441.309173][T18667]  do_syscall_64+0xfa/0xfa0
[  441.309208][T18667]  ? lockdep_hardirqs_on+0x9c/0x150
[  441.309240][T18667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.309267][T18667]  ? clear_bhb_loop+0x60/0xb0
[  441.309297][T18667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.309330][T18667] RIP: 0033:0x7f7c11d8ebe9
[  441.309356][T18667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.309375][T18667] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  441.309399][T18667] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  441.309427][T18667] RDX: 0000200000001640 RSI: 000000004008ae89 RDI: 0000000000000005
[  441.309443][T18667] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  441.309461][T18667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  441.309475][T18667] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  441.309516][T18667]  </TASK>
[  441.836204][   T43] usb 1-1: Using ep0 maxpacket: 16
[  441.845687][   T43] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  441.864155][   T43] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  441.874182][   T43] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  441.914974][   T43] usb 1-1: Manufacturer: syz
[  441.962096][   T43] usb 1-1: config 0 descriptor??
[  442.212156][   T43] usb 1-1: USB disconnect, device number 23
[  442.248022][T18689] FAULT_INJECTION: forcing a failure.
[  442.248022][T18689] name failslab, interval 1, probability 0, space 0, times 0
[  442.269854][T18689] CPU: 1 UID: 0 PID: 18689 Comm: syz.2.3499 Not tainted syzkaller #0 PREEMPT(full) 
[  442.269883][T18689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  442.269897][T18689] Call Trace:
[  442.269905][T18689]  <TASK>
[  442.269914][T18689]  dump_stack_lvl+0x189/0x250
[  442.269952][T18689]  ? __pfx____ratelimit+0x10/0x10
[  442.269981][T18689]  ? __pfx_dump_stack_lvl+0x10/0x10
[  442.270013][T18689]  ? __pfx__printk+0x10/0x10
[  442.270050][T18689]  ? __pfx___might_resched+0x10/0x10
[  442.270072][T18689]  ? fs_reclaim_acquire+0x7d/0x100
[  442.270101][T18689]  should_fail_ex+0x414/0x560
[  442.270131][T18689]  should_failslab+0xa8/0x100
[  442.270157][T18689]  __kmalloc_noprof+0xcb/0x7f0
[  442.270178][T18689]  ? security_task_alloc+0x4d/0x360
[  442.270204][T18689]  ? perf_event_init_task+0x12d/0x4b0
[  442.270239][T18689]  security_task_alloc+0x4d/0x360
[  442.270267][T18689]  copy_process+0x1530/0x3c00
[  442.270314][T18689]  ? copy_process+0x97f/0x3c00
[  442.270349][T18689]  ? __pfx_copy_process+0x10/0x10
[  442.270388][T18689]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  442.270420][T18689]  vhost_task_create+0x1c4/0x290
[  442.270447][T18689]  ? arch_stack_walk+0xfc/0x150
[  442.270474][T18689]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  442.270506][T18689]  ? __pfx_vhost_task_create+0x10/0x10
[  442.270550][T18689]  ? __pfx_vhost_task_fn+0x10/0x10
[  442.270600][T18689]  kvm_mmu_post_init_vm+0x14c/0x300
[  442.270626][T18689]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  442.270654][T18689]  ? __mutex_trylock_common+0x153/0x260
[  442.270684][T18689]  ? __pfx___mutex_trylock_common+0x10/0x10
[  442.270713][T18689]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  442.270737][T18689]  ? rcu_is_watching+0x15/0xb0
[  442.270763][T18689]  ? trace_contention_end+0x39/0x120
[  442.270789][T18689]  ? look_up_lock_class+0x74/0x170
[  442.270820][T18689]  ? register_lock_class+0x51/0x320
[  442.270849][T18689]  ? __lock_acquire+0xab9/0xd20
[  442.270903][T18689]  kvm_vcpu_ioctl+0x95c/0xe90
[  442.270931][T18689]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  442.270977][T18689]  ? __fget_files+0x2a/0x420
[  442.271009][T18689]  ? __fget_files+0x3a0/0x420
[  442.271035][T18689]  ? __fget_files+0x2a/0x420
[  442.271065][T18689]  ? bpf_lsm_file_ioctl+0x9/0x20
[  442.271096][T18689]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  442.271117][T18689]  __se_sys_ioctl+0xfc/0x170
[  442.271141][T18689]  do_syscall_64+0xfa/0xfa0
[  442.271169][T18689]  ? lockdep_hardirqs_on+0x9c/0x150
[  442.271198][T18689]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.271218][T18689]  ? clear_bhb_loop+0x60/0xb0
[  442.271244][T18689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.271264][T18689] RIP: 0033:0x7f7c11d8ebe9
[  442.271282][T18689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.271299][T18689] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  442.271320][T18689] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  442.271334][T18689] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  442.271345][T18689] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  442.271358][T18689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.271369][T18689] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  442.271403][T18689]  </TASK>
[  442.605536][    C1] vkms_vblank_simulate: vblank timer overrun
[  442.774090][ T5864] buffer_io_error: 28 callbacks suppressed
[  442.774110][ T5864] Buffer I/O error on dev loop6, logical block 1, async page read
[  442.996313][ T2152] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  443.066303][ T5955] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  443.156196][ T2152] usb 4-1: Using ep0 maxpacket: 32
[  443.168179][ T2152] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  443.178464][ T2152] usb 4-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  443.199634][ T2152] usb 4-1: config 0 interface 0 has no altsetting 0
[  443.209792][ T5955] usb 3-1: device descriptor read/64, error -71
[  443.219562][ T2152] usb 4-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  443.236987][ T2152] usb 4-1: New USB device strings: Mfr=229, Product=1, SerialNumber=3
[  443.245525][ T2152] usb 4-1: Product: syz
[  443.249862][ T5952] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  443.258144][ T2152] usb 4-1: Manufacturer: syz
[  443.262795][ T2152] usb 4-1: SerialNumber: syz
[  443.271803][ T2152] usb 4-1: config 0 descriptor??
[  443.416424][ T5952] usb 2-1: Using ep0 maxpacket: 8
[  443.431555][ T5952] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  443.442124][ T5952] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  443.458963][ T5955] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  443.469441][ T5952] usb 2-1: Product: syz
[  443.473695][ T5952] usb 2-1: Manufacturer: syz
[  443.485904][ T5952] usb 2-1: SerialNumber: syz
[  443.499890][ T5952] usb 2-1: config 0 descriptor??
[  443.606350][ T5955] usb 3-1: device descriptor read/64, error -71
[  443.686607][ T2152] gs_usb 4-1:0.0: Configuring for 241 interfaces
[  443.693122][ T2152] gs_usb 4-1:0.0: Driver cannot handle more that 3 CAN interfaces
[  443.706264][ T2152] gs_usb 4-1:0.0: probe with driver gs_usb failed with error -22
[  443.717187][ T5952] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  443.726199][ T5955] usb usb3-port1: attempt power cycle
[  443.843522][T18715] netlink: 1744 bytes leftover after parsing attributes in process `syz.0.3508'.
[  443.856576][T18714] netlink: 1744 bytes leftover after parsing attributes in process `syz.0.3508'.
[  443.900715][ T2152] usb 4-1: USB disconnect, device number 28
[  443.964514][ T7175] Buffer I/O error on dev loop6, logical block 1, async page read
[  444.076414][ T5955] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  444.107811][ T5955] usb 3-1: device descriptor read/8, error -71
[  444.356214][ T5955] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  444.387004][ T5955] usb 3-1: device descriptor read/8, error -71
[  444.502249][ T5955] usb usb3-port1: unable to enumerate USB device
[  444.701102][T18729] FAULT_INJECTION: forcing a failure.
[  444.701102][T18729] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  444.745254][T18729] CPU: 0 UID: 0 PID: 18729 Comm: syz.0.3512 Not tainted syzkaller #0 PREEMPT(full) 
[  444.745288][T18729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  444.745302][T18729] Call Trace:
[  444.745310][T18729]  <TASK>
[  444.745320][T18729]  dump_stack_lvl+0x189/0x250
[  444.745365][T18729]  ? __pfx____ratelimit+0x10/0x10
[  444.745393][T18729]  ? __pfx_dump_stack_lvl+0x10/0x10
[  444.745425][T18729]  ? __pfx__printk+0x10/0x10
[  444.745470][T18729]  should_fail_ex+0x414/0x560
[  444.745501][T18729]  __kvm_read_guest_page+0x18d/0x240
[  444.745526][T18729]  kvm_fetch_guest_virt+0x12b/0x170
[  444.745557][T18729]  ? __pfx_kvm_fetch_guest_virt+0x10/0x10
[  444.745585][T18729]  __do_insn_fetch_bytes+0x2f9/0x6d0
[  444.745613][T18729]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[  444.745638][T18729]  ? __bpf_trace_contention_end+0xc0/0x130
[  444.745671][T18729]  ? x86_decode_insn+0x12d7/0x5310
[  444.745697][T18729]  x86_decode_insn+0x33c/0x5310
[  444.745751][T18729]  ? __pfx_x86_decode_insn+0x10/0x10
[  444.745784][T18729]  ? __asan_memset+0x22/0x50
[  444.745815][T18729]  ? init_decode_cache+0x78/0x90
[  444.745837][T18729]  ? init_emulate_ctxt+0x4d6/0x660
[  444.745870][T18729]  ? __pfx_init_emulate_ctxt+0x10/0x10
[  444.745903][T18729]  ? trace_rcu_utilization+0x47/0x1d0
[  444.745933][T18729]  x86_emulate_instruction+0x61b/0x1f90
[  444.745970][T18729]  ? fred_extint+0x38/0x80
[  444.746004][T18729]  ? fred_sysvec_apic_timer_interrupt+0xad/0xe0
[  444.746028][T18729]  ? fred_extint+0x4c/0x80
[  444.746058][T18729]  ? __pfx_x86_emulate_instruction+0x10/0x10
[  444.746088][T18729]  ? __get_current_cr3_fast+0x90/0x150
[  444.746108][T18729]  ? clear_bhb_loop+0x60/0xb0
[  444.746124][T18729]  ? clear_bhb_loop+0x60/0xb0
[  444.746142][T18729]  ? vmx_vcpu_run+0xe92/0x2b70
[  444.746163][T18729]  ? __vmx_complete_interrupts+0xe7/0x690
[  444.746202][T18729]  handle_ud+0x142/0x590
[  444.746235][T18729]  ? __pfx_handle_ud+0x10/0x10
[  444.746260][T18729]  ? vmx_handle_exit_irqoff+0x61e/0x940
[  444.746285][T18729]  ? __pfx_current_save_fsgs+0x10/0x10
[  444.746324][T18729]  ? __lock_acquire+0xab9/0xd20
[  444.746350][T18729]  ? __pfx_handle_exception_nmi+0x10/0x10
[  444.746388][T18729]  vmx_handle_exit+0x10a4/0x18c0
[  444.746415][T18729]  ? vcpu_run+0x3620/0x7020
[  444.746452][T18729]  vcpu_run+0x43aa/0x7020
[  444.746489][T18729]  ? vcpu_run+0x3620/0x7020
[  444.746572][T18729]  ? __pfx_vcpu_run+0x10/0x10
[  444.746594][T18729]  ? __pfx_x86_emulate_instruction+0x10/0x10
[  444.746626][T18729]  ? complete_emulated_mmio+0x18e/0x7a0
[  444.746659][T18729]  ? __asan_memcpy+0x40/0x70
[  444.746690][T18729]  ? complete_emulated_mmio+0x4d2/0x7a0
[  444.746734][T18729]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  444.746762][T18729]  ? __mutex_trylock_common+0x153/0x260
[  444.746792][T18729]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  444.746813][T18729]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  444.746837][T18729]  ? rcu_is_watching+0x15/0xb0
[  444.746861][T18729]  ? trace_contention_end+0x39/0x120
[  444.746888][T18729]  ? __mutex_lock+0x335/0x1350
[  444.746925][T18729]  ? kasan_quarantine_put+0xdd/0x220
[  444.746944][T18729]  ? lockdep_hardirqs_on+0x9c/0x150
[  444.746973][T18729]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  444.746997][T18729]  ? __pfx___mutex_lock+0x10/0x10
[  444.747027][T18729]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  444.747057][T18729]  ? do_vfs_ioctl+0xbe8/0x1430
[  444.747077][T18729]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  444.747103][T18729]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  444.747129][T18729]  kvm_vcpu_ioctl+0x95c/0xe90
[  444.747154][T18729]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  444.747196][T18729]  ? __fget_files+0x2a/0x420
[  444.747228][T18729]  ? __fget_files+0x3a0/0x420
[  444.747253][T18729]  ? __fget_files+0x2a/0x420
[  444.747283][T18729]  ? bpf_lsm_file_ioctl+0x9/0x20
[  444.747314][T18729]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  444.747334][T18729]  __se_sys_ioctl+0xfc/0x170
[  444.747365][T18729]  do_syscall_64+0xfa/0xfa0
[  444.747395][T18729]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.747414][T18729]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  444.747435][T18729]  ? clear_bhb_loop+0x60/0xb0
[  444.747461][T18729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.747481][T18729] RIP: 0033:0x7f6db0b8ebe9
[  444.747499][T18729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  444.747517][T18729] RSP: 002b:00007f6db1af2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  444.747539][T18729] RAX: ffffffffffffffda RBX: 00007f6db0dc5fa0 RCX: 00007f6db0b8ebe9
[  444.747554][T18729] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  444.747566][T18729] RBP: 00007f6db1af2090 R08: 0000000000000000 R09: 0000000000000000
[  444.747579][T18729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  444.747591][T18729] R13: 00007f6db0dc6038 R14: 00007f6db0dc5fa0 R15: 00007ffc2d697e28
[  444.747625][T18729]  </TASK>
[  445.309725][T18734] netlink: 'syz.3.3513': attribute type 1 has an invalid length.
[  445.461556][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  445.475702][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  445.540958][ T5952] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  445.553102][ T5952] usb 2-1: USB disconnect, device number 15
[  445.827346][T18742] FAULT_INJECTION: forcing a failure.
[  445.827346][T18742] name failslab, interval 1, probability 0, space 0, times 0
[  445.851891][T18742] CPU: 0 UID: 0 PID: 18742 Comm: syz.3.3516 Not tainted syzkaller #0 PREEMPT(full) 
[  445.851920][T18742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  445.851932][T18742] Call Trace:
[  445.851940][T18742]  <TASK>
[  445.851948][T18742]  dump_stack_lvl+0x189/0x250
[  445.851985][T18742]  ? __pfx____ratelimit+0x10/0x10
[  445.852020][T18742]  ? __pfx_dump_stack_lvl+0x10/0x10
[  445.852051][T18742]  ? __pfx__printk+0x10/0x10
[  445.852084][T18742]  ? __pfx___might_resched+0x10/0x10
[  445.852107][T18742]  ? fs_reclaim_acquire+0x7d/0x100
[  445.852137][T18742]  should_fail_ex+0x414/0x560
[  445.852165][T18742]  should_failslab+0xa8/0x100
[  445.852191][T18742]  __kmalloc_cache_node_noprof+0x74/0x6f0
[  445.852212][T18742]  ? __get_vm_area_node+0x13f/0x300
[  445.852238][T18742]  __get_vm_area_node+0x13f/0x300
[  445.852262][T18742]  __vmalloc_node_range_noprof+0x301/0x12f0
[  445.852285][T18742]  ? copy_process+0x54b/0x3c00
[  445.852309][T18742]  ? percpu_ref_get_many+0x19/0x140
[  445.852341][T18742]  ? percpu_ref_get_many+0x19/0x140
[  445.852374][T18742]  ? __memcg_slab_post_alloc_hook+0x518/0x7d0
[  445.852412][T18742]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  445.852438][T18742]  ? memcpy_and_pad+0x48/0x80
[  445.852465][T18742]  __vmalloc_node_noprof+0xc2/0x110
[  445.852487][T18742]  ? copy_process+0x54b/0x3c00
[  445.852509][T18742]  ? copy_process+0x54b/0x3c00
[  445.852535][T18742]  dup_task_struct+0x3d5/0x830
[  445.852559][T18742]  ? lockdep_hardirqs_on+0x9c/0x150
[  445.852590][T18742]  copy_process+0x54b/0x3c00
[  445.852656][T18742]  ? __pfx_copy_process+0x10/0x10
[  445.852698][T18742]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  445.852733][T18742]  vhost_task_create+0x1c4/0x290
[  445.852762][T18742]  ? arch_stack_walk+0xfc/0x150
[  445.852793][T18742]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  445.852828][T18742]  ? __pfx_vhost_task_create+0x10/0x10
[  445.852871][T18742]  ? __pfx_vhost_task_fn+0x10/0x10
[  445.852931][T18742]  kvm_mmu_post_init_vm+0x14c/0x300
[  445.852957][T18742]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  445.852984][T18742]  ? __mutex_trylock_common+0x153/0x260
[  445.853022][T18742]  ? __pfx___mutex_trylock_common+0x10/0x10
[  445.853050][T18742]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  445.853073][T18742]  ? rcu_is_watching+0x15/0xb0
[  445.853097][T18742]  ? trace_contention_end+0x39/0x120
[  445.853123][T18742]  ? look_up_lock_class+0x74/0x170
[  445.853152][T18742]  ? register_lock_class+0x51/0x320
[  445.853180][T18742]  ? __lock_acquire+0xab9/0xd20
[  445.853232][T18742]  kvm_vcpu_ioctl+0x95c/0xe90
[  445.853260][T18742]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  445.853304][T18742]  ? __fget_files+0x2a/0x420
[  445.853334][T18742]  ? __fget_files+0x3a0/0x420
[  445.853359][T18742]  ? __fget_files+0x2a/0x420
[  445.853388][T18742]  ? bpf_lsm_file_ioctl+0x9/0x20
[  445.853420][T18742]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  445.853439][T18742]  __se_sys_ioctl+0xfc/0x170
[  445.853463][T18742]  do_syscall_64+0xfa/0xfa0
[  445.853489][T18742]  ? lockdep_hardirqs_on+0x9c/0x150
[  445.853517][T18742]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.853537][T18742]  ? clear_bhb_loop+0x60/0xb0
[  445.853563][T18742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.853584][T18742] RIP: 0033:0x7f947e38ebe9
[  445.853603][T18742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  445.853621][T18742] RSP: 002b:00007f947f170038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  445.853643][T18742] RAX: ffffffffffffffda RBX: 00007f947e5c5fa0 RCX: 00007f947e38ebe9
[  445.853658][T18742] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  445.853670][T18742] RBP: 00007f947f170090 R08: 0000000000000000 R09: 0000000000000000
[  445.853682][T18742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  445.853693][T18742] R13: 00007f947e5c6038 R14: 00007f947e5c5fa0 R15: 00007ffea129bd28
[  445.853729][T18742]  </TASK>
[  445.853869][T18742] syz.3.3516: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  446.265423][T18742] CPU: 0 UID: 0 PID: 18742 Comm: syz.3.3516 Not tainted syzkaller #0 PREEMPT(full) 
[  446.265450][T18742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  446.265462][T18742] Call Trace:
[  446.265470][T18742]  <TASK>
[  446.265478][T18742]  dump_stack_lvl+0x189/0x250
[  446.265520][T18742]  ? __pfx_dump_stack_lvl+0x10/0x10
[  446.265551][T18742]  ? __pfx__printk+0x10/0x10
[  446.265581][T18742]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  446.265609][T18742]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  446.265638][T18742]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  446.265669][T18742]  warn_alloc+0x214/0x310
[  446.265700][T18742]  ? __pfx_warn_alloc+0x10/0x10
[  446.265733][T18742]  ? __get_vm_area_node+0x2b5/0x300
[  446.265760][T18742]  __vmalloc_node_range_noprof+0x326/0x12f0
[  446.265783][T18742]  ? percpu_ref_get_many+0x19/0x140
[  446.265907][T18742]  ? percpu_ref_get_many+0x19/0x140
[  446.265951][T18742]  ? __memcg_slab_post_alloc_hook+0x518/0x7d0
[  446.265990][T18742]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  446.266031][T18742]  ? memcpy_and_pad+0x48/0x80
[  446.266059][T18742]  __vmalloc_node_noprof+0xc2/0x110
[  446.266082][T18742]  ? copy_process+0x54b/0x3c00
[  446.266104][T18742]  ? copy_process+0x54b/0x3c00
[  446.266141][T18742]  dup_task_struct+0x3d5/0x830
[  446.266167][T18742]  ? lockdep_hardirqs_on+0x9c/0x150
[  446.266200][T18742]  copy_process+0x54b/0x3c00
[  446.266257][T18742]  ? __pfx_copy_process+0x10/0x10
[  446.266295][T18742]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  446.266326][T18742]  vhost_task_create+0x1c4/0x290
[  446.266356][T18742]  ? arch_stack_walk+0xfc/0x150
[  446.266382][T18742]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  446.266416][T18742]  ? __pfx_vhost_task_create+0x10/0x10
[  446.266455][T18742]  ? __pfx_vhost_task_fn+0x10/0x10
[  446.266511][T18742]  kvm_mmu_post_init_vm+0x14c/0x300
[  446.266536][T18742]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  446.266565][T18742]  ? __mutex_trylock_common+0x153/0x260
[  446.266598][T18742]  ? __pfx___mutex_trylock_common+0x10/0x10
[  446.266626][T18742]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  446.266651][T18742]  ? rcu_is_watching+0x15/0xb0
[  446.266677][T18742]  ? trace_contention_end+0x39/0x120
[  446.266703][T18742]  ? look_up_lock_class+0x74/0x170
[  446.266736][T18742]  ? register_lock_class+0x51/0x320
[  446.266767][T18742]  ? __lock_acquire+0xab9/0xd20
[  446.266833][T18742]  kvm_vcpu_ioctl+0x95c/0xe90
[  446.266862][T18742]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  446.266907][T18742]  ? __fget_files+0x2a/0x420
[  446.266944][T18742]  ? __fget_files+0x3a0/0x420
[  446.266970][T18742]  ? __fget_files+0x2a/0x420
[  446.267002][T18742]  ? bpf_lsm_file_ioctl+0x9/0x20
[  446.267074][T18742]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  446.267095][T18742]  __se_sys_ioctl+0xfc/0x170
[  446.267120][T18742]  do_syscall_64+0xfa/0xfa0
[  446.267151][T18742]  ? lockdep_hardirqs_on+0x9c/0x150
[  446.267181][T18742]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.267202][T18742]  ? clear_bhb_loop+0x60/0xb0
[  446.267229][T18742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.267250][T18742] RIP: 0033:0x7f947e38ebe9
[  446.267271][T18742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.267289][T18742] RSP: 002b:00007f947f170038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  446.267314][T18742] RAX: ffffffffffffffda RBX: 00007f947e5c5fa0 RCX: 00007f947e38ebe9
[  446.267330][T18742] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  446.267343][T18742] RBP: 00007f947f170090 R08: 0000000000000000 R09: 0000000000000000
[  446.267355][T18742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  446.267367][T18742] R13: 00007f947e5c6038 R14: 00007f947e5c5fa0 R15: 00007ffea129bd28
[  446.267402][T18742]  </TASK>
[  446.645803][T18742] Mem-Info:
[  446.649348][T18742] active_anon:6376 inactive_anon:0 isolated_anon:0
[  446.649348][T18742]  active_file:13743 inactive_file:40743 isolated_file:0
[  446.649348][T18742]  unevictable:768 dirty:321 writeback:0
[  446.649348][T18742]  slab_reclaimable:11960 slab_unreclaimable:91988
[  446.649348][T18742]  mapped:25445 shmem:2289 pagetables:1109
[  446.649348][T18742]  sec_pagetables:3 bounce:0
[  446.649348][T18742]  kernel_misc_reclaimable:0
[  446.649348][T18742]  free:1313173 free_pcp:31556 free_cma:0
[  446.694650][    C1] vkms_vblank_simulate: vblank timer overrun
[  446.728369][T18742] Node 0 active_anon:21804kB inactive_anon:0kB active_file:54920kB inactive_file:162764kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101728kB dirty:1276kB writeback:0kB shmem:3920kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11332kB pagetables:4284kB sec_pagetables:12kB all_unreclaimable? no Balloon:0kB
[  446.764585][T18742] Node 1 active_anon:0kB inactive_anon:0kB active_file:52kB inactive_file:208kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:52kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:152kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  446.796774][T18742] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  446.827109][T18742] lowmem_reserve[]: 0 2495 2496 2496 2496
[  446.832945][T18742] Node 0 DMA32 free:1352324kB boost:0kB min:34216kB low:42768kB high:51320kB reserved_highatomic:0KB free_highatomic:0KB active_anon:21860kB inactive_anon:0kB active_file:54920kB inactive_file:161688kB unevictable:1536kB writepending:1276kB zspages:0kB present:3129332kB managed:2555404kB mlocked:0kB bounce:0kB free_pcp:96868kB local_pcp:46180kB free_cma:0kB
[  446.866752][T18742] lowmem_reserve[]: 0 0 1 1 1
[  446.878472][T18742] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1076kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1132kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  446.909515][T18742] lowmem_reserve[]: 0 0 0 0 0
[  446.914379][T18742] Node 1 Normal free:3888404kB boost:0kB min:55668kB low:69584kB high:83500kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:52kB inactive_file:208kB unevictable:1536kB writepending:8kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:29544kB local_pcp:11236kB free_cma:0kB
[  446.947599][T18742] lowmem_reserve[]: 0 0 0 0 0
[  446.952593][T18742] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  446.965691][T18742] Node 0 DMA32: 429*4kB (UM) 241*8kB (UME) 62*16kB (UME) 2*32kB (UM) 4*64kB (UME) 3*128kB (UME) 2*256kB (ME) 2*512kB (UE) 2*1024kB (UE) 2*2048kB (ME) 327*4096kB (M) = 1352412kB
[  446.984619][T18742] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  446.996870][T18742] Node 1 Normal: 199*4kB (UME) 49*8kB (UE) 39*16kB (UE) 74*32kB (UE) 29*64kB (UME) 7*128kB (UME) 4*256kB (UME) 3*512kB (UM) 2*1024kB (ME) 3*2048kB (ME) 945*4096kB (M) = 3888404kB
[  447.014995][T18742] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  447.024804][T18742] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  447.034396][T18742] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  447.044208][T18742] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  447.053723][T18742] 55846 total pagecache pages
[  447.058499][T18742] 0 pages in swap cache
[  447.062685][T18742] Free swap  = 124996kB
[  447.067085][T18742] Total swap = 124996kB
[  447.071273][T18742] 2097051 pages RAM
[  447.075109][T18742] 0 pages HighMem/MovableOnly
[  447.080984][T18742] 426302 pages reserved
[  447.085183][T18742] 0 pages cma reserved
[  447.532717][ T5865] Bluetooth: hci0: command 0x0406 tx timeout
[  448.276557][   T43] usb 2-1: new full-speed USB device number 16 using dummy_hcd
[  448.441436][   T43] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  448.456075][   T43] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.481395][   T43] usb 2-1: config 0 descriptor??
[  448.496313][ T5955] usb 4-1: new full-speed USB device number 29 using dummy_hcd
[  448.646492][ T5955] usb 4-1: device descriptor read/64, error -71
[  448.704628][   T43] asix 2-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  448.887240][ T5955] usb 4-1: new full-speed USB device number 30 using dummy_hcd
[  449.016769][ T5955] usb 4-1: device descriptor read/64, error -71
[  449.102920][   T43] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[  449.120664][   T43] asix 2-1:0.0: probe with driver asix failed with error -32
[  449.131524][ T5955] usb usb4-port1: attempt power cycle
[  449.476204][ T5955] usb 4-1: new full-speed USB device number 31 using dummy_hcd
[  449.509220][ T5955] usb 4-1: device descriptor read/8, error -71
[  449.616371][   T43] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  449.748483][ T5955] usb 4-1: new full-speed USB device number 32 using dummy_hcd
[  449.776885][ T5955] usb 4-1: device descriptor read/8, error -71
[  449.798310][   T43] usb 1-1: Using ep0 maxpacket: 16
[  449.806577][   T43] usb 1-1: unable to get BOS descriptor or descriptor too short
[  449.815517][   T43] usb 1-1: config 174 has an invalid interface number: 8 but max is 0
[  449.816162][ T5952] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  449.826064][   T43] usb 1-1: config 174 has no interface number 0
[  449.838012][   T43] usb 1-1: config 174 interface 8 altsetting 2 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  449.851041][   T43] usb 1-1: config 174 interface 8 has no altsetting 0
[  449.861640][   T43] usb 1-1: New USB device found, idVendor=0bfd, idProduct=0016, bcdDevice=d2.70
[  449.870818][   T43] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.879037][   T43] usb 1-1: Product: syz
[  449.883236][   T43] usb 1-1: Manufacturer: syz
[  449.886432][ T5955] usb usb4-port1: unable to enumerate USB device
[  449.888133][   T43] usb 1-1: SerialNumber: syz
[  449.976161][ T5952] usb 3-1: Using ep0 maxpacket: 8
[  449.985553][ T5952] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  449.998700][ T5952] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  450.007097][ T5952] usb 3-1: Product: syz
[  450.011505][ T5952] usb 3-1: Manufacturer: syz
[  450.016320][ T5952] usb 3-1: SerialNumber: syz
[  450.023809][ T5952] usb 3-1: config 0 descriptor??
[  450.109224][   T43] kvaser_usb 1-1:174.8: error -ENODEV: Cannot get usb endpoint(s)
[  450.129381][   T43] usb 1-1: USB disconnect, device number 24
[  450.231337][ T5952] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  451.060351][ T5955] usb 2-1: USB disconnect, device number 16
[  451.845794][ T5952] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  451.884965][ T5952] usb 3-1: USB disconnect, device number 25
[  452.089146][ T2152] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  452.262453][ T2152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  452.276240][ T2152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  452.290170][ T2152] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  452.309463][ T2152] usb 4-1: New USB device found, idVendor=05ac, idProduct=8102, bcdDevice= 0.00
[  452.319162][ T2152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  452.336936][ T2152] usb 4-1: config 0 descriptor??
[  452.504651][T18894] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4132962413 (16531849652 ns) > initial count (9301407508 ns). Using initial count to start timer.
[  452.732899][T18897] FAULT_INJECTION: forcing a failure.
[  452.732899][T18897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  452.749656][T18897] CPU: 1 UID: 0 PID: 18897 Comm: syz.2.3560 Not tainted syzkaller #0 PREEMPT(full) 
[  452.749686][T18897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  452.749699][T18897] Call Trace:
[  452.749708][T18897]  <TASK>
[  452.749717][T18897]  dump_stack_lvl+0x189/0x250
[  452.749755][T18897]  ? __pfx____ratelimit+0x10/0x10
[  452.749783][T18897]  ? __pfx_dump_stack_lvl+0x10/0x10
[  452.749815][T18897]  ? __pfx__printk+0x10/0x10
[  452.749854][T18897]  ? __might_fault+0xb0/0x130
[  452.749888][T18897]  should_fail_ex+0x414/0x560
[  452.749917][T18897]  _copy_from_user+0x2d/0xb0
[  452.749951][T18897]  memdup_user+0x5e/0xd0
[  452.749979][T18897]  kvm_arch_vcpu_ioctl+0x1aa7/0x2a80
[  452.750012][T18897]  ? kvm_arch_vcpu_ioctl+0xcc3/0x2a80
[  452.750040][T18897]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  452.750075][T18897]  ? __lock_acquire+0xab9/0xd20
[  452.750120][T18897]  ? is_bpf_text_address+0x26/0x2b0
[  452.750149][T18897]  ? is_bpf_text_address+0x292/0x2b0
[  452.750171][T18897]  ? is_bpf_text_address+0x26/0x2b0
[  452.750196][T18897]  ? kernel_text_address+0xa5/0xe0
[  452.750218][T18897]  ? __kernel_text_address+0xd/0x40
[  452.750237][T18897]  ? unwind_get_return_address+0x4d/0x90
[  452.750262][T18897]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  452.750293][T18897]  ? arch_stack_walk+0xfc/0x150
[  452.750334][T18897]  ? stack_trace_save+0x9c/0xe0
[  452.750366][T18897]  ? stack_depot_save_flags+0x40/0x860
[  452.750408][T18897]  ? __lock_acquire+0xab9/0xd20
[  452.750438][T18897]  ? __mutex_trylock_common+0x153/0x260
[  452.750469][T18897]  ? __pfx___mutex_trylock_common+0x10/0x10
[  452.750501][T18897]  ? rcu_is_watching+0x15/0xb0
[  452.750527][T18897]  ? trace_contention_end+0x39/0x120
[  452.750553][T18897]  ? __mutex_lock+0x335/0x1350
[  452.750593][T18897]  ? kasan_quarantine_put+0xdd/0x220
[  452.750616][T18897]  ? lockdep_hardirqs_on+0x9c/0x150
[  452.750647][T18897]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  452.750670][T18897]  ? __pfx___mutex_lock+0x10/0x10
[  452.750701][T18897]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  452.750731][T18897]  ? do_vfs_ioctl+0xbe8/0x1430
[  452.750751][T18897]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  452.750778][T18897]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  452.750804][T18897]  kvm_vcpu_ioctl+0x74d/0xe90
[  452.750837][T18897]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  452.750883][T18897]  ? __fget_files+0x2a/0x420
[  452.750915][T18897]  ? __fget_files+0x3a0/0x420
[  452.750941][T18897]  ? __fget_files+0x2a/0x420
[  452.750971][T18897]  ? bpf_lsm_file_ioctl+0x9/0x20
[  452.751001][T18897]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  452.751020][T18897]  __se_sys_ioctl+0xfc/0x170
[  452.751044][T18897]  do_syscall_64+0xfa/0xfa0
[  452.751072][T18897]  ? lockdep_hardirqs_on+0x9c/0x150
[  452.751101][T18897]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.751121][T18897]  ? clear_bhb_loop+0x60/0xb0
[  452.751146][T18897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.751165][T18897] RIP: 0033:0x7f7c11d8ebe9
[  452.751184][T18897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.751202][T18897] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  452.751225][T18897] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  452.751240][T18897] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000005
[  452.751253][T18897] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  452.751265][T18897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  452.751276][T18897] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  452.751311][T18897]  </TASK>
[  452.758125][ T2152] apple 0003:05AC:8102.0007: unknown main item tag 0x0
[  452.813944][T18877] syz.0.3554 (18877): drop_caches: 2
[  452.839613][ T2152] apple 0003:05AC:8102.0007: unknown main item tag 0x0
[  453.155952][ T2152] apple 0003:05AC:8102.0007: unknown main item tag 0x0
[  453.163121][ T2152] apple 0003:05AC:8102.0007: unknown main item tag 0x0
[  453.184679][ T2152] apple 0003:05AC:8102.0007: unknown main item tag 0x0
[  453.196638][ T2152] apple 0003:05AC:8102.0007: hidraw0: USB HID v0.00 Device [HID 05ac:8102] on usb-dummy_hcd.3-1/input0
[  453.256585][ T2152] usb 4-1: USB disconnect, device number 33
[  453.351802][T18903] fido_id[18903]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  454.205919][T18949] FAULT_INJECTION: forcing a failure.
[  454.205919][T18949] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  454.219968][T18949] CPU: 1 UID: 0 PID: 18949 Comm: syz.2.3576 Not tainted syzkaller #0 PREEMPT(full) 
[  454.219996][T18949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  454.220010][T18949] Call Trace:
[  454.220019][T18949]  <TASK>
[  454.220027][T18949]  dump_stack_lvl+0x189/0x250
[  454.220065][T18949]  ? __pfx____ratelimit+0x10/0x10
[  454.220094][T18949]  ? __pfx_dump_stack_lvl+0x10/0x10
[  454.220126][T18949]  ? __pfx__printk+0x10/0x10
[  454.220155][T18949]  ? __might_fault+0xb0/0x130
[  454.220189][T18949]  should_fail_ex+0x414/0x560
[  454.220218][T18949]  _copy_from_iter+0x1de/0x1790
[  454.220252][T18949]  ? rcu_is_watching+0x15/0xb0
[  454.220281][T18949]  ? kmalloc_reserve+0xbd/0x290
[  454.220311][T18949]  ? __pfx__copy_from_iter+0x10/0x10
[  454.220341][T18949]  ? __build_skb_around+0x262/0x3f0
[  454.220375][T18949]  ? netlink_sendmsg+0x642/0xb30
[  454.220402][T18949]  ? skb_put+0x11b/0x210
[  454.220436][T18949]  netlink_sendmsg+0x6b2/0xb30
[  454.220477][T18949]  ? __pfx_netlink_sendmsg+0x10/0x10
[  454.220511][T18949]  ? aa_sock_msg_perm+0xf1/0x1d0
[  454.220542][T18949]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  454.220569][T18949]  ? __pfx_netlink_sendmsg+0x10/0x10
[  454.220600][T18949]  __sock_sendmsg+0x21c/0x270
[  454.220629][T18949]  ____sys_sendmsg+0x505/0x830
[  454.220656][T18949]  ? __pfx_____sys_sendmsg+0x10/0x10
[  454.220686][T18949]  ? import_iovec+0x74/0xa0
[  454.220726][T18949]  ___sys_sendmsg+0x21f/0x2a0
[  454.220748][T18949]  ? __pfx____sys_sendmsg+0x10/0x10
[  454.220807][T18949]  ? __fget_files+0x2a/0x420
[  454.220833][T18949]  ? __fget_files+0x3a0/0x420
[  454.220870][T18949]  __x64_sys_sendmsg+0x19b/0x260
[  454.220893][T18949]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  454.220924][T18949]  ? __pfx_ksys_write+0x10/0x10
[  454.220952][T18949]  ? do_syscall_64+0xbe/0xfa0
[  454.220984][T18949]  do_syscall_64+0xfa/0xfa0
[  454.221011][T18949]  ? lockdep_hardirqs_on+0x9c/0x150
[  454.221040][T18949]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.221060][T18949]  ? clear_bhb_loop+0x60/0xb0
[  454.221085][T18949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.221105][T18949] RIP: 0033:0x7f7c11d8ebe9
[  454.221124][T18949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  454.221142][T18949] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  454.221163][T18949] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  454.221178][T18949] RDX: 0000000000008000 RSI: 0000200000000000 RDI: 0000000000000004
[  454.221191][T18949] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  454.221204][T18949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  454.221216][T18949] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  454.221250][T18949]  </TASK>
[  454.686238][   T43] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  454.846187][   T43] usb 2-1: Using ep0 maxpacket: 8
[  454.853373][   T43] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 234, changing to 11
[  454.877943][   T43] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 50661, setting to 1024
[  454.892336][   T43] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  454.901549][   T43] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  454.930076][   T43] usb 2-1: config 0 descriptor??
[  454.937352][T18946] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  455.099470][T18964] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  455.152596][T18946] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  455.169424][T18946] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  455.239297][   T43] iowarrior 2-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  455.386834][   T43] usb 2-1: USB disconnect, device number 17
[  456.012097][T18994] FAULT_INJECTION: forcing a failure.
[  456.012097][T18994] name failslab, interval 1, probability 0, space 0, times 0
[  456.030165][T18994] CPU: 1 UID: 0 PID: 18994 Comm: syz.1.3587 Not tainted syzkaller #0 PREEMPT(full) 
[  456.030194][T18994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  456.030207][T18994] Call Trace:
[  456.030216][T18994]  <TASK>
[  456.030224][T18994]  dump_stack_lvl+0x189/0x250
[  456.030262][T18994]  ? __pfx____ratelimit+0x10/0x10
[  456.030290][T18994]  ? __pfx_dump_stack_lvl+0x10/0x10
[  456.030322][T18994]  ? __pfx__printk+0x10/0x10
[  456.030368][T18994]  ? __pfx___might_resched+0x10/0x10
[  456.030391][T18994]  ? fs_reclaim_acquire+0x7d/0x100
[  456.030421][T18994]  should_fail_ex+0x414/0x560
[  456.030450][T18994]  should_failslab+0xa8/0x100
[  456.030476][T18994]  __kmalloc_noprof+0xcb/0x7f0
[  456.030495][T18994]  ? security_task_alloc+0x4d/0x360
[  456.030520][T18994]  ? perf_event_init_task+0x12d/0x4b0
[  456.030555][T18994]  security_task_alloc+0x4d/0x360
[  456.030589][T18994]  copy_process+0x1530/0x3c00
[  456.030634][T18994]  ? copy_process+0x97f/0x3c00
[  456.030669][T18994]  ? __pfx_copy_process+0x10/0x10
[  456.030707][T18994]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  456.030738][T18994]  vhost_task_create+0x1c4/0x290
[  456.030766][T18994]  ? arch_stack_walk+0xfc/0x150
[  456.030792][T18994]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  456.030824][T18994]  ? __pfx_vhost_task_create+0x10/0x10
[  456.030870][T18994]  ? __pfx_vhost_task_fn+0x10/0x10
[  456.030920][T18994]  kvm_mmu_post_init_vm+0x14c/0x300
[  456.030944][T18994]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  456.030973][T18994]  ? __mutex_trylock_common+0x153/0x260
[  456.031003][T18994]  ? __pfx___mutex_trylock_common+0x10/0x10
[  456.031029][T18994]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  456.031052][T18994]  ? rcu_is_watching+0x15/0xb0
[  456.031076][T18994]  ? trace_contention_end+0x39/0x120
[  456.031102][T18994]  ? look_up_lock_class+0x74/0x170
[  456.031134][T18994]  ? register_lock_class+0x51/0x320
[  456.031161][T18994]  ? __lock_acquire+0xab9/0xd20
[  456.031215][T18994]  kvm_vcpu_ioctl+0x95c/0xe90
[  456.031244][T18994]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  456.031289][T18994]  ? __fget_files+0x2a/0x420
[  456.031322][T18994]  ? __fget_files+0x3a0/0x420
[  456.031347][T18994]  ? __fget_files+0x2a/0x420
[  456.031377][T18994]  ? bpf_lsm_file_ioctl+0x9/0x20
[  456.031407][T18994]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  456.031427][T18994]  __se_sys_ioctl+0xfc/0x170
[  456.031452][T18994]  do_syscall_64+0xfa/0xfa0
[  456.031478][T18994]  ? lockdep_hardirqs_on+0x9c/0x150
[  456.031506][T18994]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.031527][T18994]  ? clear_bhb_loop+0x60/0xb0
[  456.031552][T18994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.031572][T18994] RIP: 0033:0x7f044238ebe9
[  456.031597][T18994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.031616][T18994] RSP: 002b:00007f04431ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  456.031639][T18994] RAX: ffffffffffffffda RBX: 00007f04425c5fa0 RCX: 00007f044238ebe9
[  456.031653][T18994] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  456.031665][T18994] RBP: 00007f04431ce090 R08: 0000000000000000 R09: 0000000000000000
[  456.031678][T18994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  456.031689][T18994] R13: 00007f04425c6038 R14: 00007f04425c5fa0 R15: 00007fff33d186f8
[  456.031724][T18994]  </TASK>
[  456.366000][    C1] vkms_vblank_simulate: vblank timer overrun
[  456.996088][   T43] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  457.052686][T19018] FAULT_INJECTION: forcing a failure.
[  457.052686][T19018] name failslab, interval 1, probability 0, space 0, times 0
[  457.074382][T19018] CPU: 0 UID: 0 PID: 19018 Comm: syz.2.3593 Not tainted syzkaller #0 PREEMPT(full) 
[  457.074413][T19018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  457.074426][T19018] Call Trace:
[  457.074435][T19018]  <TASK>
[  457.074444][T19018]  dump_stack_lvl+0x189/0x250
[  457.074482][T19018]  ? __pfx____ratelimit+0x10/0x10
[  457.074511][T19018]  ? __pfx_dump_stack_lvl+0x10/0x10
[  457.074542][T19018]  ? __pfx__printk+0x10/0x10
[  457.074585][T19018]  ? __pfx___might_resched+0x10/0x10
[  457.074615][T19018]  should_fail_ex+0x414/0x560
[  457.074643][T19018]  should_failslab+0xa8/0x100
[  457.074670][T19018]  __kmalloc_noprof+0xcb/0x7f0
[  457.074690][T19018]  ? kfree+0x4d/0x6d0
[  457.074718][T19018]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  457.074756][T19018]  tomoyo_realpath_from_path+0xe3/0x5d0
[  457.074790][T19018]  ? tomoyo_domain+0xd9/0x130
[  457.074827][T19018]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  457.074853][T19018]  tomoyo_path_number_perm+0x1e8/0x5a0
[  457.074883][T19018]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  457.074951][T19018]  ? __fget_files+0x2a/0x420
[  457.074983][T19018]  ? __fget_files+0x3a0/0x420
[  457.075007][T19018]  ? __fget_files+0x2a/0x420
[  457.075039][T19018]  security_file_ioctl+0xcb/0x2d0
[  457.075065][T19018]  __se_sys_ioctl+0x47/0x170
[  457.075089][T19018]  do_syscall_64+0xfa/0xfa0
[  457.075117][T19018]  ? lockdep_hardirqs_on+0x9c/0x150
[  457.075145][T19018]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.075163][T19018]  ? clear_bhb_loop+0x60/0xb0
[  457.075189][T19018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.075210][T19018] RIP: 0033:0x7f7c11d8ebe9
[  457.075228][T19018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  457.075246][T19018] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  457.075268][T19018] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  457.075283][T19018] RDX: 0000200000001480 RSI: 00000000c014563b RDI: 0000000000000003
[  457.075297][T19018] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  457.075308][T19018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  457.075320][T19018] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  457.075355][T19018]  </TASK>
[  457.305690][T19018] ERROR: Out of memory at tomoyo_realpath_from_path.
[  457.336335][   T43] usb 1-1: Using ep0 maxpacket: 8
[  457.358059][   T43] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  457.378418][   T43] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.396187][   T43] usb 1-1: Product: syz
[  457.400425][   T43] usb 1-1: Manufacturer: syz
[  457.435992][   T43] usb 1-1: SerialNumber: syz
[  457.463891][   T43] usb 1-1: config 0 descriptor??
[  457.672792][   T43] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  457.820983][T19004] syz.1.3590 (19004): drop_caches: 2
[  457.868624][ T5952] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  457.956631][T19031] FAULT_INJECTION: forcing a failure.
[  457.956631][T19031] name failslab, interval 1, probability 0, space 0, times 0
[  457.969741][T19031] CPU: 1 UID: 0 PID: 19031 Comm: syz.2.3599 Not tainted syzkaller #0 PREEMPT(full) 
[  457.969769][T19031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  457.969783][T19031] Call Trace:
[  457.969792][T19031]  <TASK>
[  457.969805][T19031]  dump_stack_lvl+0x189/0x250
[  457.969842][T19031]  ? __pfx____ratelimit+0x10/0x10
[  457.969869][T19031]  ? __pfx_dump_stack_lvl+0x10/0x10
[  457.969900][T19031]  ? __pfx__printk+0x10/0x10
[  457.969934][T19031]  ? __pfx___might_resched+0x10/0x10
[  457.969962][T19031]  should_fail_ex+0x414/0x560
[  457.969990][T19031]  should_failslab+0xa8/0x100
[  457.970015][T19031]  __kmalloc_noprof+0xcb/0x7f0
[  457.970035][T19031]  ? kfree+0x4d/0x6d0
[  457.970061][T19031]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  457.970098][T19031]  tomoyo_realpath_from_path+0xe3/0x5d0
[  457.970129][T19031]  ? tomoyo_domain+0xd9/0x130
[  457.970166][T19031]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  457.970190][T19031]  tomoyo_path_number_perm+0x1e8/0x5a0
[  457.970218][T19031]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  457.970283][T19031]  ? __fget_files+0x2a/0x420
[  457.970314][T19031]  ? __fget_files+0x3a0/0x420
[  457.970338][T19031]  ? __fget_files+0x2a/0x420
[  457.970368][T19031]  security_file_ioctl+0xcb/0x2d0
[  457.970393][T19031]  __se_sys_ioctl+0x47/0x170
[  457.970417][T19031]  do_syscall_64+0xfa/0xfa0
[  457.970452][T19031]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.970471][T19031]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  457.970490][T19031]  ? clear_bhb_loop+0x60/0xb0
[  457.970515][T19031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.970534][T19031] RIP: 0033:0x7f7c11d8ebe9
[  457.970552][T19031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  457.970569][T19031] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  457.970590][T19031] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  457.970605][T19031] RDX: 0000200000000100 RSI: 000000004138ae84 RDI: 0000000000000005
[  457.970617][T19031] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  457.970630][T19031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  457.970641][T19031] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  457.970676][T19031]  </TASK>
[  457.970706][T19031] ERROR: Out of memory at tomoyo_realpath_from_path.
[  458.038726][ T5952] usb 4-1: config index 0 descriptor too short (expected 9, got 0)
[  458.220438][ T5952] usb 4-1: can't read configurations, error -22
[  458.364806][ T5952] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  458.518719][ T5952] usb 4-1: config index 0 descriptor too short (expected 9, got 0)
[  458.527015][ T5952] usb 4-1: can't read configurations, error -22
[  458.533802][ T5952] usb usb4-port1: attempt power cycle
[  458.876599][ T5952] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  458.911528][ T5952] usb 4-1: config index 0 descriptor too short (expected 9, got 0)
[  458.939761][ T5952] usb 4-1: can't read configurations, error -22
[  459.096191][ T5952] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  459.130733][ T5952] usb 4-1: config index 0 descriptor too short (expected 9, got 0)
[  459.146168][ T5952] usb 4-1: can't read configurations, error -22
[  459.158714][ T5952] usb usb4-port1: unable to enumerate USB device
[  459.290413][   T43] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  459.320579][   T43] usb 1-1: USB disconnect, device number 25
[  459.373269][T19064] FAULT_INJECTION: forcing a failure.
[  459.373269][T19064] name failslab, interval 1, probability 0, space 0, times 0
[  459.393996][T19064] CPU: 0 UID: 0 PID: 19064 Comm: syz.1.3609 Not tainted syzkaller #0 PREEMPT(full) 
[  459.394025][T19064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  459.394039][T19064] Call Trace:
[  459.394048][T19064]  <TASK>
[  459.394057][T19064]  dump_stack_lvl+0x189/0x250
[  459.394094][T19064]  ? __pfx____ratelimit+0x10/0x10
[  459.394123][T19064]  ? __pfx_dump_stack_lvl+0x10/0x10
[  459.394155][T19064]  ? __pfx__printk+0x10/0x10
[  459.394192][T19064]  ? __pfx___might_resched+0x10/0x10
[  459.394213][T19064]  ? fs_reclaim_acquire+0x7d/0x100
[  459.394244][T19064]  should_fail_ex+0x414/0x560
[  459.394273][T19064]  should_failslab+0xa8/0x100
[  459.394301][T19064]  __kmalloc_noprof+0xcb/0x7f0
[  459.394321][T19064]  ? security_task_alloc+0x4d/0x360
[  459.394355][T19064]  ? perf_event_init_task+0x12d/0x4b0
[  459.394390][T19064]  security_task_alloc+0x4d/0x360
[  459.394418][T19064]  copy_process+0x1530/0x3c00
[  459.394464][T19064]  ? copy_process+0x97f/0x3c00
[  459.394499][T19064]  ? __pfx_copy_process+0x10/0x10
[  459.394538][T19064]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  459.394569][T19064]  vhost_task_create+0x1c4/0x290
[  459.394596][T19064]  ? arch_stack_walk+0xfc/0x150
[  459.394623][T19064]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  459.394655][T19064]  ? __pfx_vhost_task_create+0x10/0x10
[  459.394693][T19064]  ? __pfx_vhost_task_fn+0x10/0x10
[  459.394742][T19064]  kvm_mmu_post_init_vm+0x14c/0x300
[  459.394767][T19064]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  459.394796][T19064]  ? __mutex_trylock_common+0x153/0x260
[  459.394826][T19064]  ? __pfx___mutex_trylock_common+0x10/0x10
[  459.394854][T19064]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  459.394879][T19064]  ? rcu_is_watching+0x15/0xb0
[  459.394904][T19064]  ? trace_contention_end+0x39/0x120
[  459.394930][T19064]  ? look_up_lock_class+0x74/0x170
[  459.394962][T19064]  ? register_lock_class+0x51/0x320
[  459.394990][T19064]  ? __lock_acquire+0xab9/0xd20
[  459.395045][T19064]  kvm_vcpu_ioctl+0x95c/0xe90
[  459.395072][T19064]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  459.395116][T19064]  ? __fget_files+0x2a/0x420
[  459.395148][T19064]  ? __fget_files+0x3a0/0x420
[  459.395173][T19064]  ? __fget_files+0x2a/0x420
[  459.395204][T19064]  ? bpf_lsm_file_ioctl+0x9/0x20
[  459.395235][T19064]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  459.395256][T19064]  __se_sys_ioctl+0xfc/0x170
[  459.395279][T19064]  do_syscall_64+0xfa/0xfa0
[  459.395307][T19064]  ? lockdep_hardirqs_on+0x9c/0x150
[  459.395341][T19064]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.395362][T19064]  ? clear_bhb_loop+0x60/0xb0
[  459.395387][T19064]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.395407][T19064] RIP: 0033:0x7f044238ebe9
[  459.395427][T19064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.395444][T19064] RSP: 002b:00007f04431ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  459.395466][T19064] RAX: ffffffffffffffda RBX: 00007f04425c5fa0 RCX: 00007f044238ebe9
[  459.395481][T19064] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  459.395493][T19064] RBP: 00007f04431ce090 R08: 0000000000000000 R09: 0000000000000000
[  459.395506][T19064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  459.395519][T19064] R13: 00007f04425c6038 R14: 00007f04425c5fa0 R15: 00007fff33d186f8
[  459.395554][T19064]  </TASK>
[  460.151943][T19082] FAULT_INJECTION: forcing a failure.
[  460.151943][T19082] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  460.165808][T19082] CPU: 0 UID: 0 PID: 19082 Comm: syz.2.3616 Not tainted syzkaller #0 PREEMPT(full) 
[  460.165836][T19082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  460.165848][T19082] Call Trace:
[  460.165856][T19082]  <TASK>
[  460.165865][T19082]  dump_stack_lvl+0x189/0x250
[  460.165901][T19082]  ? __pfx____ratelimit+0x10/0x10
[  460.165930][T19082]  ? __pfx_dump_stack_lvl+0x10/0x10
[  460.165960][T19082]  ? __pfx__printk+0x10/0x10
[  460.166008][T19082]  should_fail_ex+0x414/0x560
[  460.166034][T19082]  _copy_to_user+0x31/0xb0
[  460.166052][T19082]  simple_read_from_buffer+0xe1/0x170
[  460.166083][T19082]  proc_fail_nth_read+0x1b3/0x220
[  460.166117][T19082]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  460.166152][T19082]  ? rw_verify_area+0x2a6/0x4d0
[  460.166174][T19082]  ? __lock_acquire+0xab9/0xd20
[  460.166194][T19082]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  460.166228][T19082]  vfs_read+0x200/0xa30
[  460.166248][T19082]  ? fdget_pos+0x247/0x320
[  460.166293][T19082]  ? __pfx___mutex_lock+0x10/0x10
[  460.166323][T19082]  ? __pfx_vfs_read+0x10/0x10
[  460.166346][T19082]  ? __fget_files+0x2a/0x420
[  460.166376][T19082]  ? __fget_files+0x3a0/0x420
[  460.166401][T19082]  ? __fget_files+0x2a/0x420
[  460.166436][T19082]  ksys_read+0x145/0x250
[  460.166456][T19082]  ? __fget_files+0x2a/0x420
[  460.166482][T19082]  ? __pfx_ksys_read+0x10/0x10
[  460.166507][T19082]  ? do_syscall_64+0xbe/0xfa0
[  460.166542][T19082]  do_syscall_64+0xfa/0xfa0
[  460.166569][T19082]  ? lockdep_hardirqs_on+0x9c/0x150
[  460.166597][T19082]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.166617][T19082]  ? clear_bhb_loop+0x60/0xb0
[  460.166644][T19082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.166663][T19082] RIP: 0033:0x7f7c11d8d5fc
[  460.166683][T19082] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  460.166700][T19082] RSP: 002b:00007f7c12c7d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  460.166723][T19082] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8d5fc
[  460.166737][T19082] RDX: 000000000000000f RSI: 00007f7c12c7d0a0 RDI: 0000000000000008
[  460.166750][T19082] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  460.166762][T19082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  460.166774][T19082] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  460.166809][T19082]  </TASK>
[  460.549722][   T43] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  460.726491][   T43] usb 2-1: Using ep0 maxpacket: 8
[  460.729825][T19092] FAULT_INJECTION: forcing a failure.
[  460.729825][T19092] name failslab, interval 1, probability 0, space 0, times 0
[  460.748006][T19092] CPU: 0 UID: 0 PID: 19092 Comm: syz.3.3619 Not tainted syzkaller #0 PREEMPT(full) 
[  460.748035][T19092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  460.748048][T19092] Call Trace:
[  460.748055][T19092]  <TASK>
[  460.748064][T19092]  dump_stack_lvl+0x189/0x250
[  460.748102][T19092]  ? __pfx____ratelimit+0x10/0x10
[  460.748131][T19092]  ? __pfx_dump_stack_lvl+0x10/0x10
[  460.748162][T19092]  ? __pfx__printk+0x10/0x10
[  460.748195][T19092]  ? __pfx___might_resched+0x10/0x10
[  460.748214][T19092]  ? fs_reclaim_acquire+0x7d/0x100
[  460.748242][T19092]  should_fail_ex+0x414/0x560
[  460.748265][T19092]  should_failslab+0xa8/0x100
[  460.748286][T19092]  __kmalloc_noprof+0xcb/0x7f0
[  460.748302][T19092]  ? tomoyo_encode+0x28b/0x550
[  460.748339][T19092]  tomoyo_encode+0x28b/0x550
[  460.748374][T19092]  tomoyo_realpath_from_path+0x58d/0x5d0
[  460.748401][T19092]  ? tomoyo_domain+0xd9/0x130
[  460.748431][T19092]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  460.748451][T19092]  tomoyo_path_number_perm+0x1e8/0x5a0
[  460.748474][T19092]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  460.748533][T19092]  ? __fget_files+0x2a/0x420
[  460.748559][T19092]  ? __fget_files+0x3a0/0x420
[  460.748579][T19092]  ? __fget_files+0x2a/0x420
[  460.748604][T19092]  security_file_ioctl+0xcb/0x2d0
[  460.748625][T19092]  __se_sys_ioctl+0x47/0x170
[  460.748647][T19092]  do_syscall_64+0xfa/0xfa0
[  460.748671][T19092]  ? lockdep_hardirqs_on+0x9c/0x150
[  460.748694][T19092]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.748710][T19092]  ? clear_bhb_loop+0x60/0xb0
[  460.748730][T19092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.748745][T19092] RIP: 0033:0x7f947e38ebe9
[  460.748761][T19092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  460.748776][T19092] RSP: 002b:00007f947f170038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  460.748798][T19092] RAX: ffffffffffffffda RBX: 00007f947e5c5fa0 RCX: 00007f947e38ebe9
[  460.748810][T19092] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  460.748819][T19092] RBP: 00007f947f170090 R08: 0000000000000000 R09: 0000000000000000
[  460.748829][T19092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  460.748838][T19092] R13: 00007f947e5c6038 R14: 00007f947e5c5fa0 R15: 00007ffea129bd28
[  460.748865][T19092]  </TASK>
[  460.748890][T19092] ERROR: Out of memory at tomoyo_realpath_from_path.
[  460.763314][   T43] usb 2-1: too many endpoints for config 0 interface 0 altsetting 250: 255, using maximum allowed: 30
[  461.021013][   T43] usb 2-1: config 0 interface 0 altsetting 250 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  461.034725][   T43] usb 2-1: config 0 interface 0 has no altsetting 0
[  461.042480][   T43] usb 2-1: New USB device found, idVendor=056e, idProduct=011c, bcdDevice= 0.00
[  461.052274][   T43] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  461.065623][   T43] usb 2-1: config 0 descriptor??
[  461.523438][   T43] elecom 0003:056E:011C.0008: hidraw0: USB HID vf4.f6 Device [HID 056e:011c] on usb-dummy_hcd.1-1/input0
[  461.566901][T19111] FAULT_INJECTION: forcing a failure.
[  461.566901][T19111] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  461.616140][T19111] CPU: 0 UID: 0 PID: 19111 Comm: syz.0.3626 Not tainted syzkaller #0 PREEMPT(full) 
[  461.616168][T19111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  461.616182][T19111] Call Trace:
[  461.616190][T19111]  <TASK>
[  461.616202][T19111]  dump_stack_lvl+0x189/0x250
[  461.616239][T19111]  ? __pfx____ratelimit+0x10/0x10
[  461.616268][T19111]  ? __pfx_dump_stack_lvl+0x10/0x10
[  461.616300][T19111]  ? __pfx__printk+0x10/0x10
[  461.616342][T19111]  should_fail_ex+0x414/0x560
[  461.616371][T19111]  _copy_to_user+0x31/0xb0
[  461.616392][T19111]  simple_read_from_buffer+0xe1/0x170
[  461.616423][T19111]  proc_fail_nth_read+0x1b3/0x220
[  461.616459][T19111]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  461.616494][T19111]  ? rw_verify_area+0x2a6/0x4d0
[  461.616514][T19111]  ? __lock_acquire+0xab9/0xd20
[  461.616534][T19111]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  461.616567][T19111]  vfs_read+0x200/0xa30
[  461.616588][T19111]  ? fdget_pos+0x247/0x320
[  461.616619][T19111]  ? __pfx___mutex_lock+0x10/0x10
[  461.616650][T19111]  ? __pfx_vfs_read+0x10/0x10
[  461.616674][T19111]  ? __fget_files+0x2a/0x420
[  461.616704][T19111]  ? __fget_files+0x3a0/0x420
[  461.616729][T19111]  ? __fget_files+0x2a/0x420
[  461.616762][T19111]  ksys_read+0x145/0x250
[  461.616783][T19111]  ? __fget_files+0x2a/0x420
[  461.616807][T19111]  ? __pfx_ksys_read+0x10/0x10
[  461.616835][T19111]  ? do_syscall_64+0xbe/0xfa0
[  461.616867][T19111]  do_syscall_64+0xfa/0xfa0
[  461.616893][T19111]  ? lockdep_hardirqs_on+0x9c/0x150
[  461.616922][T19111]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.616942][T19111]  ? clear_bhb_loop+0x60/0xb0
[  461.616968][T19111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.617000][T19111] RIP: 0033:0x7f6db0b8d5fc
[  461.617020][T19111] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  461.617036][T19111] RSP: 002b:00007f6db1af2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  461.617057][T19111] RAX: ffffffffffffffda RBX: 00007f6db0dc5fa0 RCX: 00007f6db0b8d5fc
[  461.617072][T19111] RDX: 000000000000000f RSI: 00007f6db1af20a0 RDI: 0000000000000006
[  461.617085][T19111] RBP: 00007f6db1af2090 R08: 0000000000000000 R09: 0000000000000000
[  461.617097][T19111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  461.617108][T19111] R13: 00007f6db0dc6038 R14: 00007f6db0dc5fa0 R15: 00007ffc2d697e28
[  461.617143][T19111]  </TASK>
[  461.700062][   T43] usb 2-1: USB disconnect, device number 18
[  461.780966][ T2152] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  461.958283][T19119] netlink: 'syz.0.3628': attribute type 3 has an invalid length.
[  461.970506][T19119] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3628'.
[  462.027296][ T2152] usb 3-1: device descriptor read/64, error -71
[  462.069860][T19124] netlink: 'syz.0.3630': attribute type 16 has an invalid length.
[  462.082014][T19124] netlink: 'syz.0.3630': attribute type 25 has an invalid length.
[  462.092859][T19124] netlink: 64094 bytes leftover after parsing attributes in process `syz.0.3630'.
[  462.257890][T19129] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  462.264638][T19129] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  462.274091][ T2152] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  462.282646][T19129] vhci_hcd vhci_hcd.0: Device attached
[  462.299231][T19130] vhci_hcd: cannot find a urb of seqnum 15 max seqnum 0
[  462.314923][   T60] vhci_hcd: stop threads
[  462.320696][   T60] vhci_hcd: release socket
[  462.325203][   T60] vhci_hcd: disconnect device
[  462.416208][ T2152] usb 3-1: device descriptor read/64, error -71
[  462.526550][ T2152] usb usb3-port1: attempt power cycle
[  462.602305][T19141] FAULT_INJECTION: forcing a failure.
[  462.602305][T19141] name failslab, interval 1, probability 0, space 0, times 0
[  462.616545][T19141] CPU: 0 UID: 0 PID: 19141 Comm: syz.1.3635 Not tainted syzkaller #0 PREEMPT(full) 
[  462.616575][T19141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  462.616589][T19141] Call Trace:
[  462.616597][T19141]  <TASK>
[  462.616605][T19141]  dump_stack_lvl+0x189/0x250
[  462.616643][T19141]  ? __pfx____ratelimit+0x10/0x10
[  462.616672][T19141]  ? __pfx_dump_stack_lvl+0x10/0x10
[  462.616704][T19141]  ? __pfx__printk+0x10/0x10
[  462.616741][T19141]  ? __pfx___might_resched+0x10/0x10
[  462.616770][T19141]  should_fail_ex+0x414/0x560
[  462.616797][T19141]  should_failslab+0xa8/0x100
[  462.616822][T19141]  __kmalloc_noprof+0xcb/0x7f0
[  462.616842][T19141]  ? kfree+0x4d/0x6d0
[  462.616881][T19141]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  462.616925][T19141]  tomoyo_realpath_from_path+0xe3/0x5d0
[  462.616958][T19141]  ? tomoyo_domain+0xd9/0x130
[  462.616994][T19141]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  462.617020][T19141]  tomoyo_path_number_perm+0x1e8/0x5a0
[  462.617049][T19141]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  462.617117][T19141]  ? __fget_files+0x2a/0x420
[  462.617166][T19141]  ? __fget_files+0x3a0/0x420
[  462.617190][T19141]  ? __fget_files+0x2a/0x420
[  462.617221][T19141]  security_file_ioctl+0xcb/0x2d0
[  462.617247][T19141]  __se_sys_ioctl+0x47/0x170
[  462.617271][T19141]  do_syscall_64+0xfa/0xfa0
[  462.617298][T19141]  ? lockdep_hardirqs_on+0x9c/0x150
[  462.617326][T19141]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.617346][T19141]  ? clear_bhb_loop+0x60/0xb0
[  462.617371][T19141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.617391][T19141] RIP: 0033:0x7f044238ebe9
[  462.617410][T19141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  462.617427][T19141] RSP: 002b:00007f04431ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  462.617448][T19141] RAX: ffffffffffffffda RBX: 00007f04425c5fa0 RCX: 00007f044238ebe9
[  462.617463][T19141] RDX: 0000200000000040 RSI: 00000000c0405602 RDI: 0000000000000003
[  462.617476][T19141] RBP: 00007f04431ce090 R08: 0000000000000000 R09: 0000000000000000
[  462.617489][T19141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  462.617501][T19141] R13: 00007f04425c6038 R14: 00007f04425c5fa0 R15: 00007fff33d186f8
[  462.617536][T19141]  </TASK>
[  462.618505][T19141] ERROR: Out of memory at tomoyo_realpath_from_path.
[  462.916173][ T2152] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  462.936834][ T2152] usb 3-1: device descriptor read/8, error -71
[  463.176288][ T2152] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  463.211527][ T2152] usb 3-1: device descriptor read/8, error -71
[  463.268315][T19158] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3640'.
[  463.326624][ T2152] usb usb3-port1: unable to enumerate USB device
[  463.976308][ T2152] usb 1-1: new full-speed USB device number 26 using dummy_hcd
[  464.009194][ T5952] usb 4-1: new full-speed USB device number 38 using dummy_hcd
[  464.131389][ T2152] usb 1-1: not running at top speed; connect to a high speed hub
[  464.144873][ T2152] usb 1-1: config 14 has an invalid interface number: 19 but max is 1
[  464.157201][ T2152] usb 1-1: config 14 has an invalid interface number: 125 but max is 1
[  464.165514][ T2152] usb 1-1: config 14 contains an unexpected descriptor of type 0x1, skipping
[  464.180010][ T2152] usb 1-1: config 14 has an invalid interface number: 178 but max is 1
[  464.189124][ T2152] usb 1-1: config 14 has 3 interfaces, different from the descriptor's value: 2
[  464.198665][ T2152] usb 1-1: config 14 has no interface number 0
[  464.205351][ T2152] usb 1-1: config 14 has no interface number 1
[  464.212518][ T2152] usb 1-1: config 14 has no interface number 2
[  464.220463][ T5952] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  464.231691][ T5952] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  464.245039][ T2152] usb 1-1: config 14 interface 19 altsetting 248 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[  464.256271][ T2152] usb 1-1: config 14 interface 19 altsetting 248 has 1 endpoint descriptor, different from the interface descriptor's value: 16
[  464.270229][ T5952] usb 4-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[  464.280924][ T5952] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  464.292173][ T2152] usb 1-1: too many endpoints for config 14 interface 125 altsetting 141: 136, using maximum allowed: 30
[  464.305341][ T2152] usb 1-1: config 14 interface 125 altsetting 141 endpoint 0x9 has invalid maxpacket 512, setting to 64
[  464.320810][ T5952] usb 4-1: config 0 descriptor??
[  464.326247][ T2152] usb 1-1: config 14 interface 125 altsetting 141 has a duplicate endpoint with address 0xE, skipping
[  464.341319][T19174] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  464.348909][ T2152] usb 1-1: config 14 interface 125 altsetting 141 has an invalid descriptor for endpoint zero, skipping
[  464.375402][ T2152] usb 1-1: config 14 interface 125 altsetting 141 has a duplicate endpoint with address 0x6, skipping
[  464.391496][ T2152] usb 1-1: config 14 interface 125 altsetting 141 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  464.403386][ T2152] usb 1-1: config 14 interface 125 altsetting 141 has a duplicate endpoint with address 0xB, skipping
[  464.415071][ T2152] usb 1-1: config 14 interface 125 altsetting 141 has a duplicate endpoint with address 0x3, skipping
[  464.427653][ T2152] usb 1-1: config 14 interface 125 altsetting 141 has a duplicate endpoint with address 0xC, skipping
[  464.439084][ T2152] usb 1-1: config 14 interface 125 altsetting 141 has 15 endpoint descriptors, different from the interface descriptor's value: 136
[  464.469587][ T2152] usb 1-1: config 14 interface 178 altsetting 1 has a duplicate endpoint with address 0x3, skipping
[  464.496942][ T2152] usb 1-1: config 14 interface 178 altsetting 1 has a duplicate endpoint with address 0x7, skipping
[  464.507925][ T2152] usb 1-1: config 14 interface 178 altsetting 1 has a duplicate endpoint with address 0x4, skipping
[  464.539715][ T2152] usb 1-1: config 14 interface 178 altsetting 1 has a duplicate endpoint with address 0xC, skipping
[  464.554355][ T2152] usb 1-1: config 14 interface 178 altsetting 1 has a duplicate endpoint with address 0xA, skipping
[  464.569114][ T2152] usb 1-1: config 14 interface 178 altsetting 1 has an endpoint descriptor with address 0xCF, changing to 0x8F
[  464.581943][ T2152] usb 1-1: config 14 interface 178 altsetting 1 has a duplicate endpoint with address 0x5, skipping
[  464.594617][ T2152] usb 1-1: config 14 interface 19 has no altsetting 0
[  464.601556][ T2152] usb 1-1: config 14 interface 125 has no altsetting 0
[  464.618882][ T2152] usb 1-1: config 14 interface 178 has no altsetting 0
[  464.630603][ T2152] usb 1-1: New USB device found, idVendor=8086, idProduct=0b5c, bcdDevice=2c.c3
[  464.640532][ T2152] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  464.649355][ T2152] usb 1-1: Product: syz
[  464.653705][ T2152] usb 1-1: Manufacturer: syz
[  464.659079][ T2152] usb 1-1: SerialNumber: syz
[  464.787102][ T5952] hkems 0003:2006:0118.0009: unknown main item tag 0x0
[  464.802487][ T5952] hkems 0003:2006:0118.0009: unknown main item tag 0x0
[  464.809620][ T5952] hkems 0003:2006:0118.0009: unknown main item tag 0x0
[  464.819993][ T5952] hkems 0003:2006:0118.0009: unknown main item tag 0x0
[  464.828378][ T5952] hkems 0003:2006:0118.0009: unknown main item tag 0x0
[  464.835428][ T5952] hkems 0003:2006:0118.0009: unknown main item tag 0x0
[  464.843394][ T5952] hkems 0003:2006:0118.0009: unknown main item tag 0x0
[  464.855154][ T5952] hkems 0003:2006:0118.0009: hidraw0: USB HID vff.fa Device [HID 2006:0118] on usb-dummy_hcd.3-1/input0
[  464.866247][   T43] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  464.868358][ T5952] hkems 0003:2006:0118.0009: no inputs found
[  464.899825][ T5952] hkems 0003:2006:0118.0009: force feedback init failed
[  464.911643][ T2152] usb 1-1: Found UVC 0.00 device syz (8086:0b5c)
[  464.918257][ T2152] usb 1-1: No valid video chain found.
[  464.977344][ T2152] usb 1-1: USB disconnect, device number 26
[  465.009024][   T43] usb 3-1: device descriptor read/64, error -71
[  465.117686][ T5952] usb 4-1: USB disconnect, device number 38
[  465.246463][   T43] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  465.386312][   T43] usb 3-1: device descriptor read/64, error -71
[  465.496671][   T43] usb usb3-port1: attempt power cycle
[  465.668458][ T5952] usb 2-1: new full-speed USB device number 19 using dummy_hcd
[  465.753948][T19209] FAULT_INJECTION: forcing a failure.
[  465.753948][T19209] name failslab, interval 1, probability 0, space 0, times 0
[  465.767073][T19209] CPU: 1 UID: 0 PID: 19209 Comm: syz.3.3659 Not tainted syzkaller #0 PREEMPT(full) 
[  465.767094][T19209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  465.767104][T19209] Call Trace:
[  465.767109][T19209]  <TASK>
[  465.767115][T19209]  dump_stack_lvl+0x189/0x250
[  465.767143][T19209]  ? __pfx____ratelimit+0x10/0x10
[  465.767163][T19209]  ? __pfx_dump_stack_lvl+0x10/0x10
[  465.767185][T19209]  ? __pfx__printk+0x10/0x10
[  465.767211][T19209]  ? __pfx___might_resched+0x10/0x10
[  465.767227][T19209]  ? fs_reclaim_acquire+0x7d/0x100
[  465.767248][T19209]  should_fail_ex+0x414/0x560
[  465.767267][T19209]  should_failslab+0xa8/0x100
[  465.767285][T19209]  __kmalloc_noprof+0xcb/0x7f0
[  465.767300][T19209]  ? security_task_alloc+0x4d/0x360
[  465.767318][T19209]  ? perf_event_init_task+0x12d/0x4b0
[  465.767343][T19209]  security_task_alloc+0x4d/0x360
[  465.767363][T19209]  copy_process+0x1530/0x3c00
[  465.767394][T19209]  ? copy_process+0x97f/0x3c00
[  465.767419][T19209]  ? __pfx_copy_process+0x10/0x10
[  465.767446][T19209]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  465.767469][T19209]  vhost_task_create+0x1c4/0x290
[  465.767488][T19209]  ? arch_stack_walk+0xfc/0x150
[  465.767507][T19209]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  465.767539][T19209]  ? __pfx_vhost_task_create+0x10/0x10
[  465.767566][T19209]  ? __pfx_vhost_task_fn+0x10/0x10
[  465.767600][T19209]  kvm_mmu_post_init_vm+0x14c/0x300
[  465.767617][T19209]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  465.767637][T19209]  ? __mutex_trylock_common+0x153/0x260
[  465.767659][T19209]  ? __pfx___mutex_trylock_common+0x10/0x10
[  465.767687][T19209]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  465.767704][T19209]  ? rcu_is_watching+0x15/0xb0
[  465.767721][T19209]  ? trace_contention_end+0x39/0x120
[  465.767740][T19209]  ? look_up_lock_class+0x74/0x170
[  465.767762][T19209]  ? register_lock_class+0x51/0x320
[  465.767782][T19209]  ? __lock_acquire+0xab9/0xd20
[  465.767819][T19209]  kvm_vcpu_ioctl+0x95c/0xe90
[  465.767838][T19209]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  465.767869][T19209]  ? __fget_files+0x2a/0x420
[  465.767892][T19209]  ? __fget_files+0x3a0/0x420
[  465.767910][T19209]  ? __fget_files+0x2a/0x420
[  465.767931][T19209]  ? bpf_lsm_file_ioctl+0x9/0x20
[  465.767953][T19209]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  465.767967][T19209]  __se_sys_ioctl+0xfc/0x170
[  465.767983][T19209]  do_syscall_64+0xfa/0xfa0
[  465.768003][T19209]  ? lockdep_hardirqs_on+0x9c/0x150
[  465.768023][T19209]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  465.768038][T19209]  ? clear_bhb_loop+0x60/0xb0
[  465.768056][T19209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  465.768070][T19209] RIP: 0033:0x7f947e38ebe9
[  465.768084][T19209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  465.768097][T19209] RSP: 002b:00007f947f170038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  465.768112][T19209] RAX: ffffffffffffffda RBX: 00007f947e5c5fa0 RCX: 00007f947e38ebe9
[  465.768123][T19209] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  465.768132][T19209] RBP: 00007f947f170090 R08: 0000000000000000 R09: 0000000000000000
[  465.768141][T19209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  465.768150][T19209] R13: 00007f947e5c6038 R14: 00007f947e5c5fa0 R15: 00007ffea129bd28
[  465.768174][T19209]  </TASK>
[  466.146841][ T5952] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  466.155523][ T5952] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  466.164289][ T5952] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  466.175099][ T5952] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  466.196194][   T43] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  466.212187][ T5952] usb 2-1: config 1 has no interface number 0
[  466.216936][   T43] usb 3-1: device descriptor read/8, error -71
[  466.235580][ T5952] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  466.248764][ T5952] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  466.268164][ T5952] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  466.456247][   T43] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  466.466963][ T5866] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  466.490112][   T43] usb 3-1: device descriptor read/8, error -71
[  466.492400][ T5952] snd_usb_pod 2-1:1.1: endpoint not available, using fallback values
[  466.505750][ T5952] snd_usb_pod 2-1:1.1: invalid control EP
[  466.511966][ T5952] snd_usb_pod 2-1:1.1: cannot start listening: -22
[  466.519138][ T5952] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  466.531009][ T5952] snd_usb_pod 2-1:1.1: probe with driver snd_usb_pod failed with error -22
[  466.606304][ T5866] usb 1-1: device descriptor read/64, error -71
[  466.613519][   T43] usb usb3-port1: unable to enumerate USB device
[  466.697878][ T2152] usb 2-1: USB disconnect, device number 19
[  466.846198][ T5866] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  466.996124][ T5866] usb 1-1: device descriptor read/64, error -71
[  467.108419][ T5866] usb usb1-port1: attempt power cycle
[  467.456138][ T5866] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  467.499614][ T5866] usb 1-1: device descriptor read/8, error -71
[  467.511252][T19240] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  467.756224][ T5866] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  467.789490][ T5866] usb 1-1: device descriptor read/8, error -71
[  467.904349][T19253] FAULT_INJECTION: forcing a failure.
[  467.904349][T19253] name failslab, interval 1, probability 0, space 0, times 0
[  467.907933][T19255] program syz.3.3676 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  467.929952][ T5866] usb usb1-port1: unable to enumerate USB device
[  467.937788][T19253] CPU: 1 UID: 0 PID: 19253 Comm: syz.2.3675 Not tainted syzkaller #0 PREEMPT(full) 
[  467.937826][T19253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  467.937839][T19253] Call Trace:
[  467.937847][T19253]  <TASK>
[  467.937856][T19253]  dump_stack_lvl+0x189/0x250
[  467.937894][T19253]  ? __pfx____ratelimit+0x10/0x10
[  467.937923][T19253]  ? __pfx_dump_stack_lvl+0x10/0x10
[  467.937955][T19253]  ? __pfx__printk+0x10/0x10
[  467.937992][T19253]  ? __pfx___might_resched+0x10/0x10
[  467.938015][T19253]  ? fs_reclaim_acquire+0x7d/0x100
[  467.938045][T19253]  should_fail_ex+0x414/0x560
[  467.938074][T19253]  should_failslab+0xa8/0x100
[  467.938101][T19253]  __kmalloc_cache_node_noprof+0x74/0x6f0
[  467.938124][T19253]  ? __get_vm_area_node+0x13f/0x300
[  467.938151][T19253]  __get_vm_area_node+0x13f/0x300
[  467.938179][T19253]  __vmalloc_node_range_noprof+0x301/0x12f0
[  467.938202][T19253]  ? copy_process+0x54b/0x3c00
[  467.938226][T19253]  ? percpu_ref_get_many+0x19/0x140
[  467.938258][T19253]  ? percpu_ref_get_many+0x19/0x140
[  467.938292][T19253]  ? __memcg_slab_post_alloc_hook+0x518/0x7d0
[  467.938331][T19253]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  467.938357][T19253]  ? memcpy_and_pad+0x48/0x80
[  467.938385][T19253]  __vmalloc_node_noprof+0xc2/0x110
[  467.938408][T19253]  ? copy_process+0x54b/0x3c00
[  467.938430][T19253]  ? copy_process+0x54b/0x3c00
[  467.938457][T19253]  dup_task_struct+0x3d5/0x830
[  467.938482][T19253]  ? lockdep_hardirqs_on+0x9c/0x150
[  467.938514][T19253]  copy_process+0x54b/0x3c00
[  467.938572][T19253]  ? __pfx_copy_process+0x10/0x10
[  467.938610][T19253]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  467.938640][T19253]  vhost_task_create+0x1c4/0x290
[  467.938666][T19253]  ? arch_stack_walk+0xfc/0x150
[  467.938693][T19253]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  467.938725][T19253]  ? __pfx_vhost_task_create+0x10/0x10
[  467.938763][T19253]  ? __pfx_vhost_task_fn+0x10/0x10
[  467.938820][T19253]  kvm_mmu_post_init_vm+0x14c/0x300
[  467.938845][T19253]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  467.938873][T19253]  ? __mutex_trylock_common+0x153/0x260
[  467.938904][T19253]  ? __pfx___mutex_trylock_common+0x10/0x10
[  467.938931][T19253]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  467.938956][T19253]  ? rcu_is_watching+0x15/0xb0
[  467.938981][T19253]  ? trace_contention_end+0x39/0x120
[  467.939008][T19253]  ? look_up_lock_class+0x74/0x170
[  467.939039][T19253]  ? register_lock_class+0x51/0x320
[  467.939067][T19253]  ? __lock_acquire+0xab9/0xd20
[  467.939122][T19253]  kvm_vcpu_ioctl+0x95c/0xe90
[  467.939150][T19253]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  467.939196][T19253]  ? __fget_files+0x2a/0x420
[  467.939227][T19253]  ? __fget_files+0x3a0/0x420
[  467.939251][T19253]  ? __fget_files+0x2a/0x420
[  467.939281][T19253]  ? bpf_lsm_file_ioctl+0x9/0x20
[  467.939311][T19253]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  467.939330][T19253]  __se_sys_ioctl+0xfc/0x170
[  467.939354][T19253]  do_syscall_64+0xfa/0xfa0
[  467.939381][T19253]  ? lockdep_hardirqs_on+0x9c/0x150
[  467.939409][T19253]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.939428][T19253]  ? clear_bhb_loop+0x60/0xb0
[  467.939454][T19253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.939473][T19253] RIP: 0033:0x7f7c11d8ebe9
[  467.939491][T19253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.939510][T19253] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  467.939532][T19253] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  467.939547][T19253] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  467.939559][T19253] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  467.939572][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  467.939584][T19253] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  467.939620][T19253]  </TASK>
[  467.942974][T19253] syz.2.3675: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  468.185429][ T5870] Bluetooth: hci2: command 0x0406 tx timeout
[  468.188802][T19253] ,cpuset=
[  468.192149][ T5952] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  468.198216][T19253] /,mems_allowed=0-1
[  468.373851][T19253] CPU: 0 UID: 0 PID: 19253 Comm: syz.2.3675 Not tainted syzkaller #0 PREEMPT(full) 
[  468.373878][T19253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  468.373890][T19253] Call Trace:
[  468.373898][T19253]  <TASK>
[  468.373906][T19253]  dump_stack_lvl+0x189/0x250
[  468.373942][T19253]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  468.373976][T19253]  ? __pfx_dump_stack_lvl+0x10/0x10
[  468.374002][T19253]  ? __pfx__printk+0x10/0x10
[  468.374028][T19253]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  468.374052][T19253]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  468.374082][T19253]  warn_alloc+0x214/0x310
[  468.374108][T19253]  ? __pfx_warn_alloc+0x10/0x10
[  468.374135][T19253]  ? __get_vm_area_node+0x2b5/0x300
[  468.374160][T19253]  __vmalloc_node_range_noprof+0x326/0x12f0
[  468.374180][T19253]  ? percpu_ref_get_many+0x19/0x140
[  468.374210][T19253]  ? percpu_ref_get_many+0x19/0x140
[  468.374241][T19253]  ? __memcg_slab_post_alloc_hook+0x518/0x7d0
[  468.374273][T19253]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  468.374296][T19253]  ? memcpy_and_pad+0x48/0x80
[  468.374319][T19253]  __vmalloc_node_noprof+0xc2/0x110
[  468.374339][T19253]  ? copy_process+0x54b/0x3c00
[  468.374361][T19253]  ? copy_process+0x54b/0x3c00
[  468.374387][T19253]  dup_task_struct+0x3d5/0x830
[  468.374409][T19253]  ? lockdep_hardirqs_on+0x9c/0x150
[  468.374439][T19253]  copy_process+0x54b/0x3c00
[  468.374553][T19253]  ? __pfx_copy_process+0x10/0x10
[  468.374590][T19253]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  468.374620][T19253]  vhost_task_create+0x1c4/0x290
[  468.374646][T19253]  ? arch_stack_walk+0xfc/0x150
[  468.374672][T19253]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  468.374703][T19253]  ? __pfx_vhost_task_create+0x10/0x10
[  468.374739][T19253]  ? __pfx_vhost_task_fn+0x10/0x10
[  468.374785][T19253]  kvm_mmu_post_init_vm+0x14c/0x300
[  468.374810][T19253]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  468.374839][T19253]  ? __mutex_trylock_common+0x153/0x260
[  468.374870][T19253]  ? __pfx___mutex_trylock_common+0x10/0x10
[  468.374898][T19253]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  468.374923][T19253]  ? rcu_is_watching+0x15/0xb0
[  468.374948][T19253]  ? trace_contention_end+0x39/0x120
[  468.374974][T19253]  ? look_up_lock_class+0x74/0x170
[  468.375011][T19253]  ? register_lock_class+0x51/0x320
[  468.375036][T19253]  ? __lock_acquire+0xab9/0xd20
[  468.375086][T19253]  kvm_vcpu_ioctl+0x95c/0xe90
[  468.375117][T19253]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  468.375159][T19253]  ? __fget_files+0x2a/0x420
[  468.375191][T19253]  ? __fget_files+0x3a0/0x420
[  468.375215][T19253]  ? __fget_files+0x2a/0x420
[  468.375245][T19253]  ? bpf_lsm_file_ioctl+0x9/0x20
[  468.375274][T19253]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  468.375295][T19253]  __se_sys_ioctl+0xfc/0x170
[  468.375319][T19253]  do_syscall_64+0xfa/0xfa0
[  468.375346][T19253]  ? lockdep_hardirqs_on+0x9c/0x150
[  468.375375][T19253]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.375395][T19253]  ? clear_bhb_loop+0x60/0xb0
[  468.375421][T19253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.375441][T19253] RIP: 0033:0x7f7c11d8ebe9
[  468.375468][T19253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  468.375487][T19253] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  468.375509][T19253] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  468.375524][T19253] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  468.375537][T19253] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  468.375550][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  468.375562][T19253] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  468.375599][T19253]  </TASK>
[  468.752599][T19253] Mem-Info:
[  468.755791][T19253] active_anon:5520 inactive_anon:0 isolated_anon:0
[  468.755791][T19253]  active_file:13810 inactive_file:40735 isolated_file:0
[  468.755791][T19253]  unevictable:768 dirty:46 writeback:0
[  468.755791][T19253]  slab_reclaimable:11056 slab_unreclaimable:89085
[  468.755791][T19253]  mapped:25516 shmem:1357 pagetables:1168
[  468.755791][T19253]  sec_pagetables:0 bounce:0
[  468.755791][T19253]  kernel_misc_reclaimable:0
[  468.755791][T19253]  free:1332715 free_pcp:16913 free_cma:0
[  468.810099][T19253] Node 0 active_anon:21980kB inactive_anon:0kB active_file:55188kB inactive_file:162732kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:102012kB dirty:176kB writeback:0kB shmem:3892kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11356kB pagetables:4520kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  468.842422][T19253] Node 1 active_anon:0kB inactive_anon:0kB active_file:52kB inactive_file:208kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:52kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:152kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  468.879496][T19253] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  468.910810][ T5952] usb 2-1: Using ep0 maxpacket: 8
[  468.911328][T19253] lowmem_reserve[]: 0 2495 2496 2496 2496
[  468.926657][ T5952] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  468.935784][ T5952] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  468.943897][ T5952] usb 2-1: Product: syz
[  468.948390][ T5952] usb 2-1: Manufacturer: syz
[  468.953021][ T5952] usb 2-1: SerialNumber: syz
[  468.956526][T19253] Node 0 DMA32 free:1426876kB boost:0kB min:34216kB low:42768kB high:51320kB reserved_highatomic:0KB free_highatomic:0KB active_anon:22036kB inactive_anon:0kB active_file:55188kB inactive_file:161656kB unevictable:1536kB writepending:176kB zspages:0kB present:3129332kB managed:2555404kB mlocked:0kB bounce:0kB free_pcp:38324kB local_pcp:17292kB free_cma:0kB
[  468.965804][ T5952] usb 2-1: config 0 descriptor??
[  468.998238][T19253] lowmem_reserve[]: 0 0 1 1 1
[  469.005912][T19253] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1076kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1132kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  469.036638][T19253] lowmem_reserve[]: 0 0 0 0 0
[  469.041479][T19253] Node 1 Normal free:3888920kB boost:0kB min:55668kB low:69584kB high:83500kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:52kB inactive_file:208kB unevictable:1536kB writepending:8kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:29028kB local_pcp:10720kB free_cma:0kB
[  469.074152][T19253] lowmem_reserve[]: 0 0 0 0 0
[  469.079856][T19253] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  469.098545][T19253] Node 0 DMA32: 473*4kB (UME) 560*8kB (UME) 300*16kB (UME) 441*32kB (UME) 119*64kB (UME) 77*128kB (UM) 67*256kB (UM) 20*512kB (UM) 7*1024kB (UM) 3*2048kB (M) 328*4096kB (UM) = 1426948kB
[  469.117711][T19253] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  469.130042][T19253] Node 1 Normal: 200*4kB (UME) 49*8kB (UE) 39*16kB (UE) 86*32kB (UE) 31*64kB (UME) 7*128kB (UME) 4*256kB (UME) 3*512kB (UM) 2*1024kB (ME) 3*2048kB (ME) 945*4096kB (M) = 3888920kB
[  469.148536][T19253] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  469.158280][T19253] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  469.167818][T19253] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  469.178073][T19253] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  469.187666][T19253] 55900 total pagecache pages
[  469.192611][T19253] 0 pages in swap cache
[  469.197956][T19253] Free swap  = 124996kB
[  469.202245][T19253] Total swap = 124996kB
[  469.214383][T19253] 2097051 pages RAM
[  469.218502][ T5952] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  469.246144][T19253] 0 pages HighMem/MovableOnly
[  469.250919][T19253] 426302 pages reserved
[  469.255137][T19253] 0 pages cma reserved
[  469.419792][T19265] FAULT_INJECTION: forcing a failure.
[  469.419792][T19265] name failslab, interval 1, probability 0, space 0, times 0
[  469.432863][T19265] CPU: 1 UID: 0 PID: 19265 Comm: syz.2.3680 Not tainted syzkaller #0 PREEMPT(full) 
[  469.432892][T19265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  469.432904][T19265] Call Trace:
[  469.432912][T19265]  <TASK>
[  469.432920][T19265]  dump_stack_lvl+0x189/0x250
[  469.432958][T19265]  ? __pfx____ratelimit+0x10/0x10
[  469.432987][T19265]  ? __pfx_dump_stack_lvl+0x10/0x10
[  469.433018][T19265]  ? __pfx__printk+0x10/0x10
[  469.433054][T19265]  ? __pfx___might_resched+0x10/0x10
[  469.433076][T19265]  ? fs_reclaim_acquire+0x7d/0x100
[  469.433106][T19265]  should_fail_ex+0x414/0x560
[  469.433135][T19265]  should_failslab+0xa8/0x100
[  469.433162][T19265]  __kmalloc_noprof+0xcb/0x7f0
[  469.433182][T19265]  ? tomoyo_encode+0x28b/0x550
[  469.433218][T19265]  tomoyo_encode+0x28b/0x550
[  469.433264][T19265]  tomoyo_realpath_from_path+0x58d/0x5d0
[  469.433298][T19265]  ? tomoyo_domain+0xd9/0x130
[  469.433334][T19265]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  469.433360][T19265]  tomoyo_path_number_perm+0x1e8/0x5a0
[  469.433389][T19265]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  469.433476][T19265]  ? __fget_files+0x2a/0x420
[  469.433514][T19265]  ? __fget_files+0x3a0/0x420
[  469.433539][T19265]  ? __fget_files+0x2a/0x420
[  469.433571][T19265]  security_file_ioctl+0xcb/0x2d0
[  469.433599][T19265]  __se_sys_ioctl+0x47/0x170
[  469.433623][T19265]  do_syscall_64+0xfa/0xfa0
[  469.433651][T19265]  ? lockdep_hardirqs_on+0x9c/0x150
[  469.433680][T19265]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.433700][T19265]  ? clear_bhb_loop+0x60/0xb0
[  469.433725][T19265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.433745][T19265] RIP: 0033:0x7f7c11d8ebe9
[  469.433764][T19265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  469.433781][T19265] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  469.433802][T19265] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  469.433817][T19265] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  469.433829][T19265] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  469.433841][T19265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  469.433853][T19265] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  469.433887][T19265]  </TASK>
[  469.433909][T19265] ERROR: Out of memory at tomoyo_realpath_from_path.
[  469.886230][ T5866] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  470.006311][ T2152] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  470.046247][ T5866] usb 1-1: Using ep0 maxpacket: 8
[  470.061690][ T5866] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  470.071029][ T5866] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  470.079364][ T5866] usb 1-1: Product: syz
[  470.083670][ T5866] usb 1-1: Manufacturer: syz
[  470.090144][ T5866] usb 1-1: SerialNumber: syz
[  470.107211][ T5866] usb 1-1: config 0 descriptor??
[  470.169437][ T2152] usb 4-1: Using ep0 maxpacket: 16
[  470.178836][ T2152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  470.193043][ T2152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  470.204791][ T2152] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  470.220498][ T2152] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  470.231462][ T2152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  470.245627][ T2152] usb 4-1: config 0 descriptor??
[  470.257875][T19281] FAULT_INJECTION: forcing a failure.
[  470.257875][T19281] name failslab, interval 1, probability 0, space 0, times 0
[  470.277011][T19281] CPU: 0 UID: 0 PID: 19281 Comm: syz.2.3686 Not tainted syzkaller #0 PREEMPT(full) 
[  470.277039][T19281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  470.277054][T19281] Call Trace:
[  470.277062][T19281]  <TASK>
[  470.277071][T19281]  dump_stack_lvl+0x189/0x250
[  470.277107][T19281]  ? __pfx____ratelimit+0x10/0x10
[  470.277139][T19281]  ? __pfx_dump_stack_lvl+0x10/0x10
[  470.277170][T19281]  ? __pfx__printk+0x10/0x10
[  470.277207][T19281]  ? __pfx___might_resched+0x10/0x10
[  470.277229][T19281]  ? fs_reclaim_acquire+0x7d/0x100
[  470.277258][T19281]  should_fail_ex+0x414/0x560
[  470.277287][T19281]  should_failslab+0xa8/0x100
[  470.277312][T19281]  kmem_cache_alloc_node_noprof+0x77/0x710
[  470.277346][T19281]  ? dup_task_struct+0x52/0x830
[  470.277377][T19281]  dup_task_struct+0x52/0x830
[  470.277402][T19281]  ? lockdep_hardirqs_on+0x9c/0x150
[  470.277434][T19281]  copy_process+0x54b/0x3c00
[  470.277491][T19281]  ? __pfx_copy_process+0x10/0x10
[  470.277531][T19281]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  470.277562][T19281]  vhost_task_create+0x1c4/0x290
[  470.277589][T19281]  ? arch_stack_walk+0xfc/0x150
[  470.277616][T19281]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  470.277649][T19281]  ? __pfx_vhost_task_create+0x10/0x10
[  470.277686][T19281]  ? __pfx_vhost_task_fn+0x10/0x10
[  470.277735][T19281]  kvm_mmu_post_init_vm+0x14c/0x300
[  470.277760][T19281]  kvm_arch_vcpu_ioctl_run+0xdc/0x1940
[  470.277788][T19281]  ? __mutex_trylock_common+0x153/0x260
[  470.277818][T19281]  ? __pfx___mutex_trylock_common+0x10/0x10
[  470.277844][T19281]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  470.277869][T19281]  ? rcu_is_watching+0x15/0xb0
[  470.277894][T19281]  ? trace_contention_end+0x39/0x120
[  470.277921][T19281]  ? look_up_lock_class+0x74/0x170
[  470.277952][T19281]  ? register_lock_class+0x51/0x320
[  470.277980][T19281]  ? __lock_acquire+0xab9/0xd20
[  470.278034][T19281]  kvm_vcpu_ioctl+0x95c/0xe90
[  470.278063][T19281]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  470.278108][T19281]  ? __fget_files+0x2a/0x420
[  470.278140][T19281]  ? __fget_files+0x3a0/0x420
[  470.278164][T19281]  ? __fget_files+0x2a/0x420
[  470.278195][T19281]  ? bpf_lsm_file_ioctl+0x9/0x20
[  470.278225][T19281]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  470.278245][T19281]  __se_sys_ioctl+0xfc/0x170
[  470.278269][T19281]  do_syscall_64+0xfa/0xfa0
[  470.278299][T19281]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.278319][T19281]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  470.278347][T19281]  ? clear_bhb_loop+0x60/0xb0
[  470.278372][T19281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.278392][T19281] RIP: 0033:0x7f7c11d8ebe9
[  470.278411][T19281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  470.278429][T19281] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  470.278451][T19281] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  470.278467][T19281] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  470.278479][T19281] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  470.278491][T19281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  470.278502][T19281] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  470.278538][T19281]  </TASK>
[  470.330765][ T5866] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  470.687046][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.694713][ T2152] microsoft 0003:045E:07DA.000A: ignoring exceeding usage max
[  470.711074][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.721867][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.732813][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.742659][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.753318][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.762568][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.770605][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.780336][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.788201][ T2152] microsoft 0003:045E:07DA.000A: unknown main item tag 0x0
[  470.795645][ T2152] microsoft 0003:045E:07DA.000A: unsupported Resolution Multiplier 0
[  470.835889][ T5952] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  470.854399][ T5952] usb 2-1: USB disconnect, device number 20
[  470.884372][ T2152] microsoft 0003:045E:07DA.000A: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  470.899070][ T2152] microsoft 0003:045E:07DA.000A: no inputs found
[  470.905967][ T2152] microsoft 0003:045E:07DA.000A: could not initialize ff, continuing anyway
[  470.936359][ T2152] usb 4-1: USB disconnect, device number 39
[  471.012369][T19284] fido_id[19284]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  471.983355][T19316] FAULT_INJECTION: forcing a failure.
[  471.983355][T19316] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  472.001545][T19316] CPU: 1 UID: 0 PID: 19316 Comm: syz.3.3698 Not tainted syzkaller #0 PREEMPT(full) 
[  472.001575][T19316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  472.001590][T19316] Call Trace:
[  472.001598][T19316]  <TASK>
[  472.001608][T19316]  dump_stack_lvl+0x189/0x250
[  472.001645][T19316]  ? __pfx____ratelimit+0x10/0x10
[  472.001677][T19316]  ? __pfx_dump_stack_lvl+0x10/0x10
[  472.001708][T19316]  ? __pfx__printk+0x10/0x10
[  472.001738][T19316]  ? __might_fault+0xb0/0x130
[  472.001770][T19316]  should_fail_ex+0x414/0x560
[  472.001799][T19316]  _copy_from_user+0x2d/0xb0
[  472.001832][T19316]  ___sys_sendmsg+0x158/0x2a0
[  472.001856][T19316]  ? __pfx____sys_sendmsg+0x10/0x10
[  472.001914][T19316]  ? __fget_files+0x2a/0x420
[  472.001940][T19316]  ? __fget_files+0x3a0/0x420
[  472.001977][T19316]  __x64_sys_sendmsg+0x19b/0x260
[  472.002001][T19316]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  472.002032][T19316]  ? __pfx_ksys_write+0x10/0x10
[  472.002059][T19316]  ? do_syscall_64+0xbe/0xfa0
[  472.002092][T19316]  do_syscall_64+0xfa/0xfa0
[  472.002118][T19316]  ? lockdep_hardirqs_on+0x9c/0x150
[  472.002147][T19316]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.002168][T19316]  ? clear_bhb_loop+0x60/0xb0
[  472.002192][T19316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.002212][T19316] RIP: 0033:0x7f947e38ebe9
[  472.002232][T19316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.002250][T19316] RSP: 002b:00007f947f170038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  472.002274][T19316] RAX: ffffffffffffffda RBX: 00007f947e5c5fa0 RCX: 00007f947e38ebe9
[  472.002289][T19316] RDX: 0000000000008000 RSI: 0000200000000000 RDI: 0000000000000004
[  472.002302][T19316] RBP: 00007f947f170090 R08: 0000000000000000 R09: 0000000000000000
[  472.002314][T19316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  472.002327][T19316] R13: 00007f947e5c6038 R14: 00007f947e5c5fa0 R15: 00007ffea129bd28
[  472.002360][T19316]  </TASK>
[  472.257176][ T5866] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  472.272522][ T5866] usb 1-1: USB disconnect, device number 31
[  472.856597][ T5866] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  472.886970][   T43] usb 2-1: new full-speed USB device number 21 using dummy_hcd
[  473.046117][ T5866] usb 3-1: Using ep0 maxpacket: 8
[  473.058568][   T43] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[  473.068031][   T43] usb 2-1: config 0 has no interface number 0
[  473.075227][ T5866] usb 3-1: config 0 interface 0 has no altsetting 0
[  473.083702][   T43] usb 2-1: config 0 interface 41 has no altsetting 0
[  473.092862][ T5866] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=bc.76
[  473.106217][ T5866] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.124774][ T5866] usb 3-1: Product: syz
[  473.129648][ T5866] usb 3-1: Manufacturer: syz
[  473.136221][ T5866] usb 3-1: SerialNumber: syz
[  473.141251][   T43] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  473.155059][   T43] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.163580][   T43] usb 2-1: Product: syz
[  473.168860][ T5866] usb 3-1: config 0 descriptor??
[  473.178291][ T5866] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 found
[  473.195784][   T43] usb 2-1: Manufacturer: syz
[  473.200792][   T43] usb 2-1: SerialNumber: syz
[  473.217468][   T43] usb 2-1: config 0 descriptor??
[  473.231062][   T43] CoreChips 2-1:0.41: probe with driver CoreChips failed with error -22
[  473.391960][ T5866] snd_usb_toneport 3-1:0.0: cannot get proper max packet size
[  473.413787][ T5866] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 now disconnected
[  473.437883][ T5866] snd_usb_toneport 3-1:0.0: probe with driver snd_usb_toneport failed with error -22
[  473.603637][ T5866] usb 3-1: USB disconnect, device number 34
[  473.836791][T19373] FAULT_INJECTION: forcing a failure.
[  473.836791][T19373] name failslab, interval 1, probability 0, space 0, times 0
[  473.849750][T19373] CPU: 0 UID: 0 PID: 19373 Comm: syz.3.3716 Not tainted syzkaller #0 PREEMPT(full) 
[  473.849779][T19373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  473.849793][T19373] Call Trace:
[  473.849802][T19373]  <TASK>
[  473.849811][T19373]  dump_stack_lvl+0x189/0x250
[  473.849849][T19373]  ? __pfx____ratelimit+0x10/0x10
[  473.849878][T19373]  ? __pfx_dump_stack_lvl+0x10/0x10
[  473.849909][T19373]  ? __pfx__printk+0x10/0x10
[  473.849945][T19373]  ? __pfx___might_resched+0x10/0x10
[  473.849968][T19373]  ? fs_reclaim_acquire+0x7d/0x100
[  473.849997][T19373]  should_fail_ex+0x414/0x560
[  473.850026][T19373]  should_failslab+0xa8/0x100
[  473.850052][T19373]  kmem_cache_alloc_noprof+0x74/0x6e0
[  473.850086][T19373]  ? __kvm_mmu_topup_memory_cache+0x1b4/0x610
[  473.850121][T19373]  __kvm_mmu_topup_memory_cache+0x1b4/0x610
[  473.850164][T19373]  mmu_topup_memory_caches+0x21/0x170
[  473.850197][T19373]  kvm_mmu_load+0x9d/0x2300
[  473.850225][T19373]  ? queue_delayed_work_on+0x1f7/0x280
[  473.850256][T19373]  ? kvm_end_pvclock_update+0x2c4/0x3b0
[  473.850281][T19373]  ? __pfx_queue_delayed_work_on+0x10/0x10
[  473.850307][T19373]  ? kvm_apic_has_interrupt+0x744/0x770
[  473.850341][T19373]  vcpu_run+0x48a8/0x7020
[  473.850405][T19373]  ? is_bpf_text_address+0x26/0x2b0
[  473.850466][T19373]  ? __pfx_vcpu_run+0x10/0x10
[  473.850494][T19373]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  473.850523][T19373]  ? rcu_is_watching+0x15/0xb0
[  473.850553][T19373]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  473.850580][T19373]  ? __mutex_trylock_common+0x153/0x260
[  473.850612][T19373]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  473.850634][T19373]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  473.850659][T19373]  ? rcu_is_watching+0x15/0xb0
[  473.850683][T19373]  ? trace_contention_end+0x39/0x120
[  473.850715][T19373]  ? look_up_lock_class+0x74/0x170
[  473.850747][T19373]  ? register_lock_class+0x51/0x320
[  473.850775][T19373]  ? __lock_acquire+0xab9/0xd20
[  473.850829][T19373]  kvm_vcpu_ioctl+0x95c/0xe90
[  473.850857][T19373]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  473.850902][T19373]  ? __fget_files+0x2a/0x420
[  473.850934][T19373]  ? __fget_files+0x3a0/0x420
[  473.850959][T19373]  ? __fget_files+0x2a/0x420
[  473.850989][T19373]  ? bpf_lsm_file_ioctl+0x9/0x20
[  473.851020][T19373]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  473.851040][T19373]  __se_sys_ioctl+0xfc/0x170
[  473.851064][T19373]  do_syscall_64+0xfa/0xfa0
[  473.851092][T19373]  ? lockdep_hardirqs_on+0x9c/0x150
[  473.851120][T19373]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.851141][T19373]  ? clear_bhb_loop+0x60/0xb0
[  473.851166][T19373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.851187][T19373] RIP: 0033:0x7f947e38ebe9
[  473.851206][T19373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  473.851224][T19373] RSP: 002b:00007f947f170038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  473.851245][T19373] RAX: ffffffffffffffda RBX: 00007f947e5c5fa0 RCX: 00007f947e38ebe9
[  473.851260][T19373] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  473.851272][T19373] RBP: 00007f947f170090 R08: 0000000000000000 R09: 0000000000000000
[  473.851285][T19373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  473.851296][T19373] R13: 00007f947e5c6038 R14: 00007f947e5c5fa0 R15: 00007ffea129bd28
[  473.851330][T19373]  </TASK>
[  474.566217][ T2152] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  474.721639][ T2152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  474.733792][ T2152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  474.746660][ T2152] usb 4-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[  474.755736][ T2152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  474.771985][ T2152] usb 4-1: config 0 descriptor??
[  474.886289][   T43] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  475.049213][   T43] usb 1-1: Using ep0 maxpacket: 16
[  475.059631][   T43] usb 1-1: unable to get BOS descriptor or descriptor too short
[  475.072950][   T43] usb 1-1: config 15 has an invalid interface number: 53 but max is 0
[  475.083440][   T43] usb 1-1: config 15 has no interface number 0
[  475.090630][   T43] usb 1-1: config 15 interface 53 altsetting 99 has an endpoint descriptor with address 0x2C, changing to 0xC
[  475.102428][   T43] usb 1-1: config 15 interface 53 altsetting 99 endpoint 0xC has an invalid bInterval 144, changing to 11
[  475.117595][   T43] usb 1-1: config 15 interface 53 altsetting 99 endpoint 0x9 has invalid maxpacket 1023, setting to 64
[  475.130483][   T43] usb 1-1: config 15 interface 53 has no altsetting 0
[  475.144196][   T43] usb 1-1: New USB device found, idVendor=2c7c, idProduct=0512, bcdDevice=91.ce
[  475.155187][   T43] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.164945][   T43] usb 1-1: Product: syz
[  475.174242][   T43] usb 1-1: Manufacturer: syz
[  475.181239][   T43] usb 1-1: SerialNumber: syz
[  475.369629][ T2152] usbhid 4-1:0.0: can't add hid device: -71
[  475.375745][ T2152] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  475.399788][ T2152] usb 4-1: USB disconnect, device number 40
[  475.434711][T19385] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  475.453488][   T43] option 1-1:15.53: GSM modem (1-port) converter detected
[  475.499317][   T43] usb 1-1: USB disconnect, device number 32
[  475.531112][   T43] option 1-1:15.53: device disconnected
[  475.663507][ T5866] usb 2-1: USB disconnect, device number 21
[  476.116392][ T1209] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  476.150005][T19426] netlink: 'syz.3.3733': attribute type 11 has an invalid length.
[  476.316261][ T1209] usb 2-1: Using ep0 maxpacket: 16
[  476.330173][ T1209] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  476.349910][ T1209] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  476.366747][ T1209] usb 2-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.00
[  476.382911][ T1209] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  476.401674][ T1209] usb 2-1: config 0 descriptor??
[  476.419477][ T5866] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  476.596361][ T5866] usb 4-1: Using ep0 maxpacket: 32
[  476.611141][ T5866] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[  476.634719][ T5866] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  476.656622][ T5866] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  476.678644][ T5866] usb 4-1: config 0 descriptor??
[  476.708528][ T5866] hub 4-1:0.0: bad descriptor, ignoring hub
[  476.721129][T19443] FAULT_INJECTION: forcing a failure.
[  476.721129][T19443] name failslab, interval 1, probability 0, space 0, times 0
[  476.737461][T19443] CPU: 0 UID: 0 PID: 19443 Comm: syz.0.3738 Not tainted syzkaller #0 PREEMPT(full) 
[  476.737491][T19443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  476.737504][T19443] Call Trace:
[  476.737513][T19443]  <TASK>
[  476.737522][T19443]  dump_stack_lvl+0x189/0x250
[  476.737560][T19443]  ? __pfx____ratelimit+0x10/0x10
[  476.737589][T19443]  ? __pfx_dump_stack_lvl+0x10/0x10
[  476.737621][T19443]  ? __pfx__printk+0x10/0x10
[  476.737658][T19443]  ? __pfx___might_resched+0x10/0x10
[  476.737688][T19443]  should_fail_ex+0x414/0x560
[  476.737718][T19443]  should_failslab+0xa8/0x100
[  476.737745][T19443]  __kmalloc_noprof+0xcb/0x7f0
[  476.737764][T19443]  ? kfree+0x4d/0x6d0
[  476.737792][T19443]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  476.737832][T19443]  tomoyo_realpath_from_path+0xe3/0x5d0
[  476.737866][T19443]  ? tomoyo_domain+0xd9/0x130
[  476.737903][T19443]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  476.737930][T19443]  tomoyo_path_number_perm+0x1e8/0x5a0
[  476.737959][T19443]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  476.738028][T19443]  ? __fget_files+0x2a/0x420
[  476.738060][T19443]  ? __fget_files+0x3a0/0x420
[  476.738085][T19443]  ? __fget_files+0x2a/0x420
[  476.738117][T19443]  security_file_ioctl+0xcb/0x2d0
[  476.738144][T19443]  __se_sys_ioctl+0x47/0x170
[  476.738176][T19443]  do_syscall_64+0xfa/0xfa0
[  476.738204][T19443]  ? lockdep_hardirqs_on+0x9c/0x150
[  476.738233][T19443]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.738254][T19443]  ? clear_bhb_loop+0x60/0xb0
[  476.738279][T19443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.738299][T19443] RIP: 0033:0x7f6db0b8ebe9
[  476.738318][T19443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.738336][T19443] RSP: 002b:00007f6db1af2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  476.738359][T19443] RAX: ffffffffffffffda RBX: 00007f6db0dc5fa0 RCX: 00007f6db0b8ebe9
[  476.738373][T19443] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[  476.738385][T19443] RBP: 00007f6db1af2090 R08: 0000000000000000 R09: 0000000000000000
[  476.738397][T19443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  476.738408][T19443] R13: 00007f6db0dc6038 R14: 00007f6db0dc5fa0 R15: 00007ffc2d697e28
[  476.738443][T19443]  </TASK>
[  476.738452][T19443] ERROR: Out of memory at tomoyo_realpath_from_path.
[  476.742109][ T5866] hub 4-1:0.0: probe with driver hub failed with error -5
[  476.990517][ T1209] usbhid 2-1:0.0: can't add hid device: -71
[  476.996633][ T1209] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  477.008832][ T1209] usb 2-1: USB disconnect, device number 22
[  477.019083][ T5866] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  477.125318][T19450] openvswitch: netlink: Message has -1 unknown bytes.
[  477.506182][ T5952] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  477.679398][ T5952] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  477.696142][ T5952] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  477.705183][ T5952] usb 1-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00
[  477.734735][ T5952] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  477.761577][ T5952] usb 1-1: config 0 descriptor??
[  478.486153][ T5952] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  478.636156][ T5952] usb 3-1: Using ep0 maxpacket: 32
[  478.642953][ T5952] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  478.653102][ T5952] usb 3-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  478.663135][ T5952] usb 3-1: config 0 interface 0 has no altsetting 0
[  478.672819][ T5952] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  478.683076][ T5952] usb 3-1: New USB device strings: Mfr=229, Product=1, SerialNumber=3
[  478.687933][ T5866] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  478.691368][ T5952] usb 3-1: Product: syz
[  478.703212][ T5952] usb 3-1: Manufacturer: syz
[  478.703236][ T5952] usb 3-1: SerialNumber: syz
[  478.707008][ T5952] usb 3-1: config 0 descriptor??
[  478.846261][ T5866] usb 2-1: Using ep0 maxpacket: 8
[  478.855733][ T5866] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  478.867467][ T5866] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  478.875542][ T5866] usb 2-1: Product: syz
[  478.880003][ T5866] usb 2-1: Manufacturer: syz
[  478.884658][ T5866] usb 2-1: SerialNumber: syz
[  478.893248][ T5866] usb 2-1: config 0 descriptor??
[  479.109151][ T5866] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  479.119776][ T5952] gs_usb 3-1:0.0: Configuring for 1 interfaces
[  479.267056][ T1209] usb 4-1: USB disconnect, device number 41
[  479.320426][T19505] netlink: 'syz.3.3757': attribute type 1 has an invalid length.
[  479.328490][T19505] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3757'.
[  479.532309][ T5952] gs_usb 3-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO)
[  479.550800][ T5952] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -71
[  479.571543][ T5952] usb 3-1: USB disconnect, device number 35
[  480.171141][T19524] FAULT_INJECTION: forcing a failure.
[  480.171141][T19524] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  480.184894][T19524] CPU: 1 UID: 0 PID: 19524 Comm: syz.2.3763 Not tainted syzkaller #0 PREEMPT(full) 
[  480.184927][T19524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  480.184953][T19524] Call Trace:
[  480.184961][T19524]  <TASK>
[  480.184970][T19524]  dump_stack_lvl+0x189/0x250
[  480.185007][T19524]  ? __pfx____ratelimit+0x10/0x10
[  480.185035][T19524]  ? __pfx_dump_stack_lvl+0x10/0x10
[  480.185067][T19524]  ? __pfx__printk+0x10/0x10
[  480.185112][T19524]  should_fail_ex+0x414/0x560
[  480.185140][T19524]  __kvm_read_guest_page+0x18d/0x240
[  480.185165][T19524]  kvm_fetch_guest_virt+0x12b/0x170
[  480.185197][T19524]  ? __pfx_kvm_fetch_guest_virt+0x10/0x10
[  480.185224][T19524]  __do_insn_fetch_bytes+0x2f9/0x6d0
[  480.185253][T19524]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[  480.185290][T19524]  x86_decode_insn+0x33c/0x5310
[  480.185308][T19524]  ? kvm_is_mmio_pfn+0x169/0x730
[  480.185342][T19524]  ? kvm_is_mmio_pfn+0x169/0x730
[  480.185382][T19524]  ? handle_changed_spte+0x1cd/0x10a0
[  480.185419][T19524]  ? __pfx_x86_decode_insn+0x10/0x10
[  480.185441][T19524]  ? kvm_tdp_mmu_map+0x308/0x1d30
[  480.185473][T19524]  ? __asan_memset+0x22/0x50
[  480.185504][T19524]  ? init_decode_cache+0x78/0x90
[  480.185526][T19524]  ? init_emulate_ctxt+0x4d6/0x660
[  480.185558][T19524]  ? __pfx_init_emulate_ctxt+0x10/0x10
[  480.185594][T19524]  ? trace_rcu_utilization+0x47/0x1d0
[  480.185624][T19524]  x86_emulate_instruction+0x61b/0x1f90
[  480.185678][T19524]  ? __pfx_x86_emulate_instruction+0x10/0x10
[  480.185713][T19524]  ? __get_current_cr3_fast+0x90/0x150
[  480.185733][T19524]  ? clear_bhb_loop+0x60/0xb0
[  480.185753][T19524]  ? clear_bhb_loop+0x60/0xb0
[  480.185775][T19524]  ? vmx_vcpu_run+0xe92/0x2b70
[  480.185800][T19524]  ? __vmx_complete_interrupts+0xe7/0x690
[  480.185839][T19524]  handle_ud+0x142/0x590
[  480.185870][T19524]  ? __pfx_handle_ud+0x10/0x10
[  480.185897][T19524]  ? vmx_handle_exit_irqoff+0x61e/0x940
[  480.185922][T19524]  ? complete_hypercall_exit+0x1c8/0x250
[  480.185954][T19524]  ? __lock_acquire+0xab9/0xd20
[  480.185979][T19524]  ? __pfx_handle_exception_nmi+0x10/0x10
[  480.186008][T19524]  vmx_handle_exit+0x10a4/0x18c0
[  480.186035][T19524]  ? vcpu_run+0x3620/0x7020
[  480.186072][T19524]  vcpu_run+0x43aa/0x7020
[  480.186109][T19524]  ? vcpu_run+0x3620/0x7020
[  480.186191][T19524]  ? __pfx_vcpu_run+0x10/0x10
[  480.186220][T19524]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  480.186251][T19524]  ? rcu_is_watching+0x15/0xb0
[  480.186280][T19524]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  480.186308][T19524]  ? __mutex_trylock_common+0x153/0x260
[  480.186339][T19524]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  480.186361][T19524]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  480.186386][T19524]  ? rcu_is_watching+0x15/0xb0
[  480.186411][T19524]  ? trace_contention_end+0x39/0x120
[  480.186438][T19524]  ? __mutex_lock+0x335/0x1350
[  480.186477][T19524]  ? kasan_quarantine_put+0xdd/0x220
[  480.186497][T19524]  ? lockdep_hardirqs_on+0x9c/0x150
[  480.186525][T19524]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  480.186549][T19524]  ? __pfx___mutex_lock+0x10/0x10
[  480.186580][T19524]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  480.186611][T19524]  ? do_vfs_ioctl+0xbe8/0x1430
[  480.186630][T19524]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  480.186657][T19524]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  480.186683][T19524]  kvm_vcpu_ioctl+0x95c/0xe90
[  480.186710][T19524]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  480.186755][T19524]  ? __fget_files+0x2a/0x420
[  480.186787][T19524]  ? __fget_files+0x3a0/0x420
[  480.186812][T19524]  ? __fget_files+0x2a/0x420
[  480.186843][T19524]  ? bpf_lsm_file_ioctl+0x9/0x20
[  480.186874][T19524]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  480.186894][T19524]  __se_sys_ioctl+0xfc/0x170
[  480.186918][T19524]  do_syscall_64+0xfa/0xfa0
[  480.186952][T19524]  ? lockdep_hardirqs_on+0x9c/0x150
[  480.186981][T19524]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.187000][T19524]  ? clear_bhb_loop+0x60/0xb0
[  480.187026][T19524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.187046][T19524] RIP: 0033:0x7f7c11d8ebe9
[  480.187065][T19524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  480.187084][T19524] RSP: 002b:00007f7c12c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  480.187106][T19524] RAX: ffffffffffffffda RBX: 00007f7c11fc5fa0 RCX: 00007f7c11d8ebe9
[  480.187121][T19524] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  480.187134][T19524] RBP: 00007f7c12c7d090 R08: 0000000000000000 R09: 0000000000000000
[  480.187147][T19524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  480.187159][T19524] R13: 00007f7c11fc6038 R14: 00007f7c11fc5fa0 R15: 00007ffd6bd32228
[  480.187195][T19524]  </TASK>
[  480.675106][ T5866] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  480.689571][ T5866] usb 2-1: USB disconnect, device number 23
[  480.711564][ T2152] usb 1-1: USB disconnect, device number 33
[  480.834939][T19532] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3766'.
[  481.886176][ T5952] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  482.046188][ T5952] usb 4-1: Using ep0 maxpacket: 8
[  482.062486][ T5952] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  482.084791][ T5952] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.103303][ T5952] usb 4-1: Product: syz
[  482.108336][ T5952] usb 4-1: Manufacturer: syz
[  482.131945][ T5952] usb 4-1: SerialNumber: syz
[  482.164186][ T5952] usb 4-1: config 0 descriptor??
[  482.397350][ T5952] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  482.566278][ T2152] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  482.736396][ T2152] usb 1-1: Using ep0 maxpacket: 16
[  482.749849][ T2152] usb 1-1: config 0 has an invalid interface number: 251 but max is 0
[  482.758674][ T2152] usb 1-1: config 0 has no interface number 0
[  482.764889][ T2152] usb 1-1: config 0 interface 251 altsetting 255 bulk endpoint 0x4 has invalid maxpacket 16
[  482.775385][ T2152] usb 1-1: config 0 interface 251 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 64
[  482.786064][ T2152] usb 1-1: config 0 interface 251 has no altsetting 0
[  482.796632][ T2152] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  482.805749][ T2152] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.816076][ T2152] usb 1-1: Product: syz
[  482.820321][ T2152] usb 1-1: Manufacturer: syz
[  482.824957][ T2152] usb 1-1: SerialNumber: syz
[  482.826181][ T5866] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  482.835497][ T2152] usb 1-1: config 0 descriptor??
[  482.843586][T19599] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  482.851484][T19599] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  482.996133][ T5866] usb 2-1: Using ep0 maxpacket: 16
[  483.003202][ T5866] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  483.015822][ T5866] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 22
[  483.032983][ T5866] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  483.045572][ T5866] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  483.054756][ T5866] usb 2-1: SerialNumber: syz
[  483.066945][T19599] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  483.074934][T19599] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  483.127823][ T5865] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  483.137302][ T5865] Bluetooth: hci1: Injecting HCI hardware error event
[  483.145954][ T5865] Bluetooth: hci1: hardware error 0x00
[  483.288854][T19599] cgroup: release_agent respecified
[  483.290131][ T5866] usb 2-1: USB disconnect, device number 24
[  483.336296][T19599] Oops: general protection fault, probably for non-canonical address 0xdffffc00000000b2: 0000 [#1] SMP KASAN PTI
[  483.336326][T19599] KASAN: null-ptr-deref in range [0x0000000000000590-0x0000000000000597]
[  483.336347][T19599] CPU: 0 UID: 0 PID: 19599 Comm: syz.0.3785 Not tainted syzkaller #0 PREEMPT(full) 
[  483.336371][T19599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  483.336390][T19599] RIP: 0010:vc_deallocate+0x303/0x3e0
[  483.336422][T19599] Code: e8 52 c2 cf fc 49 c7 07 00 00 00 00 eb 0e e8 74 bf 6b fc eb 05 e8 6d bf 6b fc 31 db 4c 8d b3 90 05 00 00 4d 89 f4 49 c1 ec 03 <43> 80 3c 2c 00 74 08 4c 89 f7 e8 2e c1 cf fc 4d 8b 3e 4d 85 ff 74
[  483.336440][T19599] RSP: 0018:ffffc9000bf879e0 EFLAGS: 00010206
[  483.336461][T19599] RAX: ffffffff85543ca3 RBX: 0000000000000000 RCX: 0000000000080000
[  483.336475][T19599] RDX: ffffc9000d6cf000 RSI: 000000000000038f RDI: 0000000000000390
[  483.336489][T19599] RBP: ffffc9000bf87a90 R08: ffffffff8fe506cf R09: 1ffffffff1fca0d9
[  483.336506][T19599] R10: dffffc0000000000 R11: fffffbfff1fca0da R12: 00000000000000b2
[  483.336521][T19599] R13: dffffc0000000000 R14: 0000000000000590 R15: ffffffff9a272c00
[  483.336537][T19599] FS:  00007f6db1af26c0(0000) GS:ffff8881257b3000(0000) knlGS:0000000000000000
[  483.336555][T19599] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  483.336570][T19599] CR2: 000000110c3a5dea CR3: 000000007b580000 CR4: 00000000003526f0
[  483.336589][T19599] DR0: fffffffffffffff8 DR1: 0000000000000006 DR2: 0200000000000000
[  483.336605][T19599] DR3: 0000000000000005 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  483.336619][T19599] Call Trace:
[  483.336627][T19599]  <TASK>
[  483.336636][T19599]  ? vt_disallocate_all+0x3b/0xe0
[  483.336661][T19599]  ? __pfx_vc_deallocate+0x10/0x10
[  483.336697][T19599]  ? is_console_locked+0x9/0x20
[  483.336728][T19599]  vt_disallocate_all+0x60/0xe0
[  483.336777][T19599]  vt_ioctl+0x1adc/0x1f20
[  483.336803][T19599]  ? __pfx_vt_ioctl+0x10/0x10
[  483.336832][T19599]  ? __fget_files+0x2a/0x420
[  483.336862][T19599]  ? tty_jobctrl_ioctl+0x369/0xb70
[  483.336885][T19599]  ? __fget_files+0x3a0/0x420
[  483.336911][T19599]  ? __fget_files+0x2a/0x420
[  483.336938][T19599]  tty_ioctl+0x929/0xde0
[  483.336965][T19599]  ? __pfx_tty_ioctl+0x10/0x10
[  483.336991][T19599]  __se_sys_ioctl+0xfc/0x170
[  483.337012][T19599]  do_syscall_64+0xfa/0xfa0
[  483.337041][T19599]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.337062][T19599]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  483.337085][T19599]  ? clear_bhb_loop+0x60/0xb0
[  483.337108][T19599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.337128][T19599] RIP: 0033:0x7f6db0b8ebe9
[  483.337147][T19599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  483.337165][T19599] RSP: 002b:00007f6db1af2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  483.337187][T19599] RAX: ffffffffffffffda RBX: 00007f6db0dc5fa0 RCX: 00007f6db0b8ebe9
[  483.337203][T19599] RDX: 0000000000000000 RSI: 0000000000005608 RDI: 0000000000000008
[  483.337216][T19599] RBP: 00007f6db0c11e19 R08: 0000000000000000 R09: 0000000000000000
[  483.337229][T19599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.337242][T19599] R13: 00007f6db0dc6038 R14: 00007f6db0dc5fa0 R15: 00007ffc2d697e28
[  483.337266][T19599]  </TASK>
[  483.337285][T19599] Modules linked in:
[  483.337338][T19599] ---[ end trace 0000000000000000 ]---
[  483.337352][T19599] RIP: 0010:vc_deallocate+0x303/0x3e0
[  483.337378][T19599] Code: e8 52 c2 cf fc 49 c7 07 00 00 00 00 eb 0e e8 74 bf 6b fc eb 05 e8 6d bf 6b fc 31 db 4c 8d b3 90 05 00 00 4d 89 f4 49 c1 ec 03 <43> 80 3c 2c 00 74 08 4c 89 f7 e8 2e c1 cf fc 4d 8b 3e 4d 85 ff 74
[  483.337397][T19599] RSP: 0018:ffffc9000bf879e0 EFLAGS: 00010206
[  483.337416][T19599] RAX: ffffffff85543ca3 RBX: 0000000000000000 RCX: 0000000000080000
[  483.337431][T19599] RDX: ffffc9000d6cf000 RSI: 000000000000038f RDI: 0000000000000390
[  483.337445][T19599] RBP: ffffc9000bf87a90 R08: ffffffff8fe506cf R09: 1ffffffff1fca0d9
[  483.337486][T19599] R10: dffffc0000000000 R11: fffffbfff1fca0da R12: 00000000000000b2
[  483.337501][T19599] R13: dffffc0000000000 R14: 0000000000000590 R15: ffffffff9a272c00
[  483.337515][T19599] FS:  00007f6db1af26c0(0000) GS:ffff8881257b3000(0000) knlGS:0000000000000000
[  483.337533][T19599] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  483.337547][T19599] CR2: 000000110c3a5dea CR3: 000000007b580000 CR4: 00000000003526f0
[  483.337564][T19599] DR0: fffffffffffffff8 DR1: 0000000000000006 DR2: 0200000000000000
[  483.337580][T19599] DR3: 0000000000000005 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  483.337597][T19599] Kernel panic - not syncing: Fatal exception
[  483.337903][T19599] Kernel Offset: disabled