last executing test programs:

16.594622516s ago: executing program 2 (id=707):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000300), 0x10582)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r2, &(0x7f0000000400)={0x1f, @fixed}, 0x8)
syz_usb_connect(0x3, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109024b0001100000000904000003fe03010009cd8d1f01020000000905050200de7e001009058b1e"], 0x0)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x4, &(0x7f0000000640)=@framed={{}, [@ldst={0x1, 0x0, 0x4}]}, &(0x7f0000000d40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000100001000000000000dfff000000000a54000000060a0b0400000000000000000200000028000480240001800a000100717565756500000014000280060001400000000006000340000200000900010073797a30000000000900020073797a3200"], 0x7c}}, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000000)={0x3, 0x1, 0x1, 0x0, 0x10000f5f})
syz_emit_ethernet(0x113, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x0)

15.949933868s ago: executing program 4 (id=708):
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz0\x00', 0x200002, 0x0)
socket$inet(0x2, 0x4, 0x200)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$inet6(0xa, 0x3, 0x8)
setsockopt$inet6_int(r3, 0x29, 0x4e, &(0x7f0000000000)=0x5, 0x4)
sendmmsg$inet6(r3, &(0x7f0000004580)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002\x00\x00\x00'], 0x28}}], 0x1, 0x4008084)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
openat$ttyS3(0xffffff9c, &(0x7f0000000500), 0x84140, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt(r5, 0x1, 0x2, &(0x7f0000000000)=""/166, &(0x7f00000000c0)=0xa6)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r6, &(0x7f0000000000), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f00000003c0)={'vxcan0\x00'})
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x20008844)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0xfffff000)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_TIME_STAMP(r7, 0x0, 0x3, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

14.48592557s ago: executing program 4 (id=711):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000007000000000000000000009500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
r7 = socket(0x1e, 0x4, 0x0)
r8 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r8, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r7, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
sendmsg$tipc(r8, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)

11.258256859s ago: executing program 2 (id=722):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
mkdir(&(0x7f0000000140)='./control\x00', 0x0)
mount$afs(0x0, &(0x7f00000000c0)='./control\x00', &(0x7f0000000100), 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="64796e2c00b1"])
socket$alg(0x26, 0x5, 0x0)
r1 = syz_open_dev$radio(&(0x7f00000003c0), 0x2, 0x2)
read(r1, &(0x7f0000001e80)=""/96, 0x60)
ioctl$VIDIOC_LOG_STATUS(0xffffffffffffffff, 0x5646, 0x0)
read(0xffffffffffffffff, &(0x7f0000001e80)=""/96, 0x60)
socket$inet_mptcp(0x2, 0x1, 0x106)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
r2 = io_uring_setup(0x3eae, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r3 = openat$ttyprintk(0xffffffffffffff9c, 0x0, 0x8801, 0x0)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000380)={0x2, 0xef, 0xfffffff9, 0xbc3, 0xd, "a294e7b46f5e02972913805a9d1b78d681c441"})
writev(r3, &(0x7f00000000c0), 0x0)
madvise(&(0x7f000091e000/0x1000)=nil, 0x1000, 0x19)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
fanotify_init(0x4, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0)
chmod(&(0x7f00000002c0)='./control\x00', 0x8)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r4, 0x300, 0x70bd2c, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48880}, 0x20048014)
lgetxattr(0x0, 0x0, 0x0, 0x0)

9.774674324s ago: executing program 4 (id=725):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
eventfd(0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0), 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)={0x1, [0x2]}, &(0x7f0000000100)=0x6)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x810)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001200)}, 0x0)
r5 = socket$kcm(0x29, 0x2, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r5, 0x119, 0x1, &(0x7f0000000080)=0x2, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYRESHEX], 0x15)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r6}, 0x10)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

8.326122261s ago: executing program 0 (id=728):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
eventfd(0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0), 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)={0x1, [0x2]}, &(0x7f0000000100)=0x6)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x810)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001200)}, 0x0)
r5 = socket$kcm(0x29, 0x2, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r5, 0x119, 0x1, &(0x7f0000000080)=0x2, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYRESHEX], 0x15)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r6}, 0x10)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

7.780553981s ago: executing program 4 (id=729):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r0, &(0x7f0000000080)=[{0x0}], 0x1)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "000080f100df00000000000000000009f600"})
r1 = syz_open_pts(r0, 0x101)
r2 = dup3(r1, r0, 0x0)
r3 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0x4d1a, 0x0, 0x0, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000600)={'#! ', './bus'}, 0x9)

7.737762683s ago: executing program 2 (id=730):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
r1 = openat$kvm(0x0, &(0x7f0000000080), 0x2382, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r2, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1})
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r3 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x201, 0x0)
ioctl$SNDCTL_TMR_CONTINUE(r4, 0x5404)
write$sequencer(r4, &(0x7f0000000200)=ANY=[@ANYBLOB="12279e5ea981370000000052a08a1cb8ac3744ca5596d4230cfe3b427a4a6be83e03f691176cf118506db1d7be8afa8ceb093f57a53d0a89c1401b791c0e2e746fda937ccae20a9f61eebd68c8709c48d5a9d0e548406591a7b3efb545e67e94cb127277f825db7c8c21ea3fa4e1548cc71d414a06921f"], 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_getoverrun(0x0)
mount$fuseblk(&(0x7f0000002440), &(0x7f0000002480)='./file0\x00', &(0x7f00000024c0), 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB])
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000e00), r6)
sendmsg$NFC_CMD_DEP_LINK_UP(r7, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000e80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010226bd7000fddbdf250400000005000a0000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000844}, 0x20008004)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_fuse_handle_req(r5, &(0x7f0000004300)="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", 0x2000, &(0x7f0000000100)={&(0x7f0000000000)={0x50, 0x0, 0x0, {0x7, 0x28, 0x0, 0x0, 0x0, 0x10, 0x20000, 0x4}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x130, 0x0, 0x0, {0x0, 0x0, 0x0, '\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x9}, {}, 0x0, 0x0, 0xffffffff}}}})
umount2(&(0x7f0000000180)='./file0\x00', 0xb)
r9 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r9, 0x8946, &(0x7f0000004780)={'syz_tun\x00', &(0x7f0000000400)=@ethtool_link_settings={0x8}})

7.66994952s ago: executing program 4 (id=731):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
eventfd(0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0), 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)={0x1, [0x2]}, &(0x7f0000000100)=0x6)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x810)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001200)}, 0x0)
r5 = socket$kcm(0x29, 0x2, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r5, 0x119, 0x1, &(0x7f0000000080)=0x2, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYRESHEX], 0x15)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r6}, 0x10)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

7.34609524s ago: executing program 0 (id=732):
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000000)={0x0, 0x0, <r0=>0xffffffffffffffff})
gettid()
r1 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x80000)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000000)=0x639)
openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
readv(r1, &(0x7f0000000180)=[{&(0x7f0000000200)=""/147, 0x93}], 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x10, r0, 0x0)
fdatasync(r0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000003bc0)=ANY=[@ANYBLOB="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"], 0x21c0}}, 0x0)

7.254222182s ago: executing program 3 (id=733):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000680)="8873", 0x2)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f00000002c0)=0x8001, 0x4)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
mmap(&(0x7f00000ef000/0x1000)=nil, 0x1000, 0x3, 0x1111, 0xffffffffffffffff, 0xe9ad1000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000600)={0x0, r4, 0x0, 0x64, &(0x7f00000006c0)='&+@\a\x00\b\x84\v\xf6\xeeC\xf7\xc0\x82\x036\vW3~\xa1\x12\xf0\a\x1a\xf8\x9e\xf9&\xe7ve\x84\xf1?\xf8` \"\x02\x00\x00\x00\x00\x00\x00@u\xb1\b\x83\x84\x18\xad\xee\x8f\x00\x06\xcf6\xfb\x8f\xbe\xfb\xe6{y\x97\x8f\x91`\xfdS\x9e\xe9\x06c\x13\xf4Y1\x01\x00\xae0j\x98rGPW\xd3\xb3\xb96\x1a\xde\xd4bF'}, 0x30)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x20)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
read$msr(r5, 0x0, 0x0)
r6 = syz_open_dev$cec(&(0x7f00000000c0), 0x0, 0x8240)
ioctl$CEC_DQEVENT(r6, 0xc0506107, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000140), 0x0)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, 0x0, 0x0)
ioctl$CEC_DQEVENT(r6, 0xc0506107, 0x0)
sendmmsg$inet(r1, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000040)="d2", 0x1}], 0x1}}], 0x1, 0x0)
splice(r0, 0x0, r2, 0x0, 0x39000, 0x0)

7.19760342s ago: executing program 1 (id=734):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
eventfd(0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0), 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)={0x1, [0x2]}, &(0x7f0000000100)=0x6)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x810)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001200)}, 0x0)
r5 = socket$kcm(0x29, 0x2, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r5, 0x119, 0x1, &(0x7f0000000080)=0x2, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r6 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x141002, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000040)=ANY=[@ANYRESHEX=r6], 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)

6.84672523s ago: executing program 4 (id=735):
r0 = socket(0x26, 0x803, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
syz_open_dev$MSR(0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(0xffffffffffffffff, 0x0, 0x4000080)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
prlimit64(0x0, 0xd, &(0x7f0000000080)={0x7, 0x89}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x1)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f00000000c0)=0xff, 0x4)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x159802, 0x0)
r3 = dup(r2)
sendfile(r2, r3, 0x0, 0x80006)
syz_genetlink_get_family_id$tipc(&(0x7f0000001200), 0xffffffffffffffff)
mkdir(&(0x7f00000002c0)='./bus\x00', 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
io_setup(0x6, &(0x7f0000004200)=<r4=>0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(r4, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, r5}])
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha256\x00'}, 0x55)
accept4(r6, 0x0, 0x0, 0x800)

6.744179106s ago: executing program 1 (id=736):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
epoll_create1(0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$bt_sco(r2, &(0x7f0000000040), 0x8)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r6)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r6, &(0x7f0000000340)={0xa, 0x4e22, 0x0, @dev={0xfe, 0x80, '\x00', 0x10}, 0xa}, 0x1c)
listen(r7, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60f900f500180600fe8000000000000000000000000000aafe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="60020000000000000000200027ec7b99bf78ecade087c2f868a38dd274b39c5c05638db2bdf74e96111e97c1dbed4d0356466daf18ce5d9a8e3c52375e72880d70f9cae8026a64b45e67da14bd867ec89392413fa30303fa58252b6ab5140b3c210f771f1ab2f21667f09e11a26e6c756eb986f8b0b634af909c23331d3a843248ab4ccc9384d8720d16830618fd2a90690f4f59f4772440630e42f602f5d9d65bd3ac1a94fdba1a29a412500a"], 0x0)
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f00000000c0)=0x3ff)
r8 = syz_io_uring_setup(0x44f, &(0x7f0000000140)={0x0, 0xf716, 0x8, 0x7fffe, 0x166}, &(0x7f00000001c0), &(0x7f0000000080))
io_uring_enter(r8, 0x42d3e, 0x9a03, 0x10, 0x0, 0xfffffffffffffcb3)
sendfile(0xffffffffffffffff, r0, 0x0, 0x110005)
ioctl$VIDIOC_QUERYCTRL(r1, 0xc0445624, &(0x7f0000000140)={0x4987, 0x9, "b7fea9f3646592f2ec34d4d385efc3effd817fd0b4cc6a9731219cf689da6c4c", 0xfffffff8, 0x0, 0xfffffff6, 0x4f6, 0x85})
read$FUSE(0xffffffffffffffff, &(0x7f0000003240)={0x2020}, 0x2020)

6.710721794s ago: executing program 2 (id=737):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x28)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000006140)={0x2020, 0x0, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
lchown(&(0x7f0000000040)='./file0\x00', r6, r7)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xb)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xb)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000cc0)={&(0x7f00000001c0)={0x2, 0x4e20, @rand_addr=0x64010100}, 0x10, &(0x7f00000009c0)=[{&(0x7f00000003c0)="566056f74e16ba8b67f9e3cdbc2d3d879a90898a4c0fdc63636fc36078ec27930fa53599ee1d3ac808fb6cd7c0bfef27dcb3e575055a6f9b9426e7007b640b29f337a486a3326818be1027012f9c54034c79d56938ddb4f56011153dbe7a5e67712910625008d9a01c52806446781ed2365ea18665537b32658ecac9b099e9643740d0ca84fc676403306b50c6ecc950eb23b51c10cb03e14b429b91d3ca9fedf933a0e0a40bb59c748ab91d63e8cb40a08e79d1f32b6062be273db4", 0xbc}, {&(0x7f0000000300)="d2f6295e21eb27b0ebcfc5d69d52cbcf527b6d326c6eea82a30a0b299643fb1ca2c1090df459b22c1f4fdfcff0d89cfa2ed085e3831d9fd18b9c7beca353f2e37e9daccf4f8c5938f08edec48c5766f4", 0x50}, {&(0x7f0000000480)="08aa50ee5de56c9241b1eea8438c1b8cca34e9a26372cc4b3c096c4bcab83244f3cb10d8ce71ef1a5952415b0e6f6ec68950ce0f1f8c9fe0779845c3c4519b63c8b8f6dcbe2a852c804a6e25beac33214487652e56cf7a02cef7bd0e668036759a0ec364d19f6eecbf782b19881968bd84d769c7fdb6f2f10343f4cf54fe3e5881075c971fea3ce901d64c5d7b595a6278420ff9ef4bd7cfa41e72271a185098f869c94d26cd225ae0d5aef6a697", 0xae}, {&(0x7f0000000540)="3da43f55ef9422e2e364928eecaf50dbfbdafd6d96915c966b38c9975f64dd82123615ec012cf156108550864435661eaa4f7fccd560e135f9908750c63696a4142e66b1b6a31c1cf48bec6fefc6bc89ad9b1ebe55c97b80c13b10d51301ae262b54c5c47f7034fb8940c479efcb1abdfa1a50dce60609a7d7b74e50579c1dcc62e6d30c95615c70cbcbcc5de01abb9466431951d5d98617a65015801ab2f15b16cfb168262368f93c78abad593cbdab91974291ba3f3d6346", 0xb9}, {&(0x7f0000000600)="76266c0f892cfe2cda9adac37f381a4064cc4e338932d86292dcd9f17ea800f84836e3df2439c4afdefa64ea3072a061c7d330cbb11fc3ef4f5dec0c6299d18f8c4161fb4872a3ed4320a3be274eccc8ddf5760b1f902072bb7e5feb927d4ef7c62d7f1a5ff8416171c6fcac5c57021a838319f993de3af63844c8822adb243d7f78d647c2b5051c405f19fe98e25cc8f054af6898408ec86fdde1d0b07adcbe", 0xa0}, {&(0x7f00000006c0)="74d44c0a8d1a9f18d38d0a635081341b9515d768cf8a99ca3f845d663af9d90f16ac47702bc5d6f98073b27d20dc80a0e901b75fa9104d00c3beae4afb8ce90b21bf7b09e0b49d126e0d45356cc9ba9bac042d97d4b96519e7e5bb37c9e607f19533fab45e057c47cf92af9dd4ba19371f62fa6f1bf5f42d05da478aaf2b569e029851650172537137416c5294acfe9cd601f8ef350a7aaf5956314d94e817b831df769369522be4c971ff52c502dc70beac43435b2fdf1ce940d6e6319b7a4e75e68ed664ac81a3e062d14d351eae8676f7172c9e5ac8d2f9bad35b75", 0xdd}, {&(0x7f00000007c0)="088dce85ce07e9e6f551f63c8e177040110fdcd33e9b40efad8e89f39e750eec0dd8957e5d92c0c4354309c96db6f41fb77242e29be9b10a519d256ac82e034752aa02d895c1e1a94f8f0aa29ca117835f96791cd00dfad08a08c3", 0x5b}, {&(0x7f0000000840)="8195cf4fb26d03c62d428caf2d9d10b71597a7407ed1d25b345f4d7fe258371befe5f071c9ac0709b4ee5aab5eaa03e4a3020be510e0bb67ac53fe1de2063af1877b1ef36f8fd07765bff8d13827a46bc0bce11cea273e878afac24cc187048507156c87691e129d03b72705048b8a5194a84f737130d3a7b572c8ad1275783111669cbdd81ddd36f25e5404813bb37fcf03804e4820b33e9e004be05a1a8319fed3c03ba6f6260245f945991b9a2ea5b1ad7bcc7d1ee2", 0xb7}, {&(0x7f0000000900)="80c6e1827ef012b8b2b4fd1ff3e159673e795766e914812d7d2e4b51fdbc7d5341843acff6ecd15417f9d3b3a997960e6253b7a9ede12797268ca13a1d5d430b8574cd891a73e8da3964b2ba", 0x4c}, {&(0x7f0000000980)="93b2e6d1b4cc632019d55e18", 0xc}], 0xa, &(0x7f0000000a80)=[@ip_tos_int={{0x14}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2a09}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x400}}, @ip_ttl={{0x14, 0x0, 0x2, 0x10000}}, @ip_retopts={{0x15c, 0x0, 0x7, {[@timestamp_addr={0x44, 0x54, 0x29, 0x1, 0xb, [{@dev={0xac, 0x14, 0x14, 0x37}, 0x80}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x60000000}, {@multicast2, 0xc5a}, {@dev={0xac, 0x14, 0x14, 0x1e}, 0x9}, {@loopback, 0xd7c}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7f}, {@rand_addr=0x64010101, 0x2}, {@loopback, 0x8a94}, {@local, 0x7}, {@rand_addr=0x64010102, 0x80}]}, @ssrr={0x89, 0x1f, 0x71, [@multicast2, @multicast2, @broadcast, @multicast2, @rand_addr=0x64010101, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @noop, @lsrr={0x83, 0x13, 0x5b, [@private=0xa010102, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010100, @empty]}, @cipso={0x86, 0x54, 0x3, [{0x1, 0xd, "0644395d7bb05ba18bb3f9"}, {0x1, 0xb, "b9213cda6f2adb4f2d"}, {0x5, 0x6, "cd21c631"}, {0x1, 0x4, "d6e5"}, {0x2, 0x5, "ab61dd"}, {0x2eeb2d89f599d7d2, 0x6, "5a194a23"}, {0x5, 0xf, "5250286e264aa161eb358a294e"}, {0x5, 0xa, "56dfcd6103d8ac44"}, {0x2, 0x8, "2ef8260f3be7"}]}, @ra={0x94, 0x4, 0x1}, @end, @cipso={0x86, 0x69, 0x2, [{0x0, 0x10, "4e0fed2ae336e2a2eea2e77e85d8"}, {0x1, 0x9, "6c78925cca71c4"}, {0x1, 0x5, "f9f1d2"}, {0x1, 0xd, "75ce97215b3ed63d790459"}, {0x909f59a37577897c, 0xe, "17efad56fd22338e2680678a"}, {0x7, 0xf, "8f3e14d58f413152482a501309"}, {0x7, 0xf, "2d5589ec793383f2254c73536a"}, {0x1, 0xc, "97b9fda213f52a5552c4"}]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xbc}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast2}}}], 0x228}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket(0x10, 0x3, 0x0)
connect$netlink(r8, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
r9 = socket(0x2a, 0x2, 0xffffffff)
bind$alg(r9, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

5.320524523s ago: executing program 1 (id=738):
r0 = socket(0x2a, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched_retired(r1, &(0x7f000000f8c0)={0x0, 0x0, &(0x7f000000f880)={&(0x7f000000f900)=@newtaction={0x14, 0x16, 0xe67c0fb78d4e40bf, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="d04e04000000000014001680100001800c00050092958fc9"], 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000780)=@newqdisc={0x34, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xe}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x4}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x4}]}, 0x34}}, 0x4008055)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000014c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x3}, {}, {0x1c}}, [@filter_kind_options=@f_basic={{0xa}, {0xc, 0x2, [@TCA_BASIC_EMATCHES={0x8, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x3c}}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x5}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmmsg(r6, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000580)={&(0x7f0000000000)='U', &(0x7f0000000300)=""/154, &(0x7f00000003c0)="99a8263c0e920935afec5d2b40ec1e6024b6b423cb4ae62095b291596638fa03cebd23c2617e0087e57d797b1900efd9ea577476f904b54fbed7474e877f55766a39948a058967b2e04122661b5fcc8fe7e3e649fc1022dcc9cc21d56f0512366eab7307b3092e2c53f35d9c12300155205d2564e54b4e7f3f917be5529c04dee6946b9ae14e64176f555558e1cac0024aeef9e303bd79e3c791b6b518143ff87cdda63fb9fd116c6765b51d515048423b3fe5c8304eb8345882b87673709788bee8ad2b2221b9", &(0x7f00000004c0)="6e864eab4c5ed3866cbf82f9a4d42c64d30dca029f90935aec9552721a2884e71f455df72f5c3b1da447a48d9e0ec98987e1626d696bb177866e264233ad3df0ed0970443048588bf734f2ba837be4be694dfa04311955e5ad9718dcd3b20b8f5008bd5d504163e1de656545656659deedbd57782f7dd1a74722bf88d8db973e2f5302857b1782b0ee940b5c", 0x2, 0xffffffffffffffff, 0x4}, 0x38)
r8 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000280)='bcache_btree_write\x00', r7}, 0x10)
r9 = syz_open_dev$I2C(&(0x7f0000000800), 0x0, 0x0)
ioctl$I2C_RDWR(r9, 0x707, &(0x7f0000000140)={&(0x7f0000000240)=[{0x0, 0xaa01, 0x0, 0x0}, {0xffff, 0x10, 0xec, &(0x7f0000000600)="9742e15de0bcd8d816f8a98d43ec6f6e57188b85d2e9400c1bbc839e106852037a67105f644eb49d93ed7ed98c0dcbd161880dff7df84c214b7254fa9018a0fb63b835f9af26f2b88291de588383a3ef2edace76e8b74eb36a8c1f934f78fbaa59e6eb577be0fefdbb68bd4a01e5f4cba2e9a921ed93d8e380908468583db1fa76d761ce63064f1ce5ad88a7e5160a2a49859b54fd0d678f04be81074846e80f8c9c3c02f5bdf1aa9b04bfccfe8c4707e0d586a4b36b8a7a3caa523e3b32c83ed5563fd77c6f4ef63db840475eb338968308d6c125d05ebafe381179c1b921562678e5dc52029ddaea274514"}, {0x6, 0x1800, 0x4c, &(0x7f0000000700)="e22d020941b0e1362c4d62df3e7a4cfadc8b98377d3b6c7d324f1ff182f1bd1c04d0402e1d22024a033a98afb8a640856a85607ae0965bc838aa7c522b6880e15a7da33ba71cd0e7127284d5"}], 0x3})
sendto$inet(0xffffffffffffffff, 0x0, 0xffffffffffffff3b, 0x0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)
keyctl$read(0x2, r8, 0x0, 0x0)
r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r11 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x8, 0x2)
ioctl$USBDEVFS_IOCTL(r11, 0xc0105512, &(0x7f00000005c0)=@usbdevfs_disconnect={0xd4e})
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
ioctl$FS_IOC_GETFSLABEL(r10, 0x800452d2, &(0x7f0000000100))
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)

5.314475807s ago: executing program 2 (id=739):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000007000000000000000000009500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
r7 = socket(0x1e, 0x4, 0x0)
r8 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r8, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r7, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
close_range(r6, 0xffffffffffffffff, 0x0)
r9 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x34, r9, 0x1, 0x70bd2c, 0x4, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}]}, 0x34}}, 0x0)

5.241977378s ago: executing program 0 (id=740):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
eventfd(0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0), 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)={0x1, [0x2]}, &(0x7f0000000100)=0x6)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x810)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001200)}, 0x0)
r5 = socket$kcm(0x29, 0x2, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r5, 0x119, 0x1, &(0x7f0000000080)=0x2, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r6 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x141002, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000040)=ANY=[@ANYRESHEX=r6], 0x15)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

5.233482418s ago: executing program 3 (id=741):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r0, &(0x7f0000000080)=[{&(0x7f0000001400)=""/260, 0x104}], 0x1)
ioctl$TCSETS(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x101)
r2 = dup3(r1, r0, 0x0)
r3 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0x4d1a, 0x0, 0x0, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000600)={'#! ', './bus'}, 0x9)

3.719687658s ago: executing program 1 (id=742):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
eventfd(0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0), 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)={0x1, [0x2]}, &(0x7f0000000100)=0x6)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x810)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001200)}, 0x0)
r5 = socket$kcm(0x29, 0x2, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r5, 0x119, 0x1, &(0x7f0000000080)=0x2, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYRESHEX], 0x15)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r6}, 0x10)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

3.605777474s ago: executing program 0 (id=743):
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = fsopen(&(0x7f0000000000)='tmpfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
mknodat$loop(r4, &(0x7f0000000040)='./file0\x00', 0x0, 0x1)
name_to_handle_at(r4, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)=ANY=[], 0xfffffffffffffffe, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
r5 = syz_open_dev$sndctrl(&(0x7f0000001ac0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r5, 0xc4c85513, &(0x7f0000000040)={0x1, 0x2})
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)

3.327142501s ago: executing program 2 (id=744):
syz_usb_connect$cdc_ncm(0x4, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = syz_open_dev$admmidi(&(0x7f0000000080), 0x2, 0x1a9882)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x20, 0x1, 0x170, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200006c0], 0x0, 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0000000000000000ff0000000000000000d17d000000000000000000000000000000000000000000ffffffff0000000000000000000000000000001200000000000000000000000000080000000000000800000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff01000000110000000000000000006e72300000000000000000000000000079616d3000000001000000000000b40079616d30000000000000000000000000766574b7708ad56f5f7465616d0000000180c2000000000000000000aaaaaaaaaa000000000000000000b0000000b0000000e000000071756f746100000000000000000000000000000000000000000000000000000018000000000000000000000000000000000000000a0000000000000000000000415544495400000000000000000100000000000000000000000000000000000008"]}, 0x1d9)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000500)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x7001, 0x1, 0x170, [], 0x0, 0x0, 0x0}, 0x1e8)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x20, 0x1, 0x170, [], 0x0, 0x0, 0x0}, 0x1e8)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r5, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000000000000000000250000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008b00", @ANYRES32=0x0, @ANYBLOB="2fdeccd4be1b2380491434d25d7c4e78455955a0d83980f6200aa8f26420bc4b263b5bf6705a5beaf104dacabe2bad2fb825bf9206f075057b1dc06e456aa77513dff7a53e97917eeb6b2b32bdc1f55fb55cb1c92c3ad63e2cabbc39734ffa665f87cff867bd5883eea53fb834a52c5cea669af5d916e3e41d482fa18c82922fb52e360aa1eb8d4dc268d38aec"], 0x3c}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r9=>0x0})
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r10, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000003a0000000800030000477844901adc26fa2908f2e9d4745c1abb8c0940c48b15b096f81e9e5bb2702cb2a0ad68fa926d046ec3c667397efacd554579f6112dbb68c214bbc01424aa05d97de634f18287084be0fd26202437f3420ba927802040e9129e1957e35433c7679f605c5efdd3da98b2cde5a5926ad3a40b2bf8db98cb6ea3bef5b2b27e0354a82682217e16c0995c5d344ca6bd84be1e7b2a91b391a5aee4d8d0f74039bcfdfa1f0e0b69945e7f387ad0f8b82fb62dddb902869c94b4976d0db8fa122c8c5607c951e2aaf55d26569a2a51ea181f071ec107f4c96814ae25fc384a", @ANYRES32=r9, @ANYBLOB="04005b000600650040000000"], 0x28}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000001bc0)={'batadv_slave_1\x00', <r11=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000003c0)={@remote, 0x1d, r11})
socket$inet6_tcp(0xa, 0x1, 0x0)

3.105304336s ago: executing program 1 (id=745):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000300))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000300)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000073c645518dd077c500000000000000"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000001e000085000000820000009500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x18)
fsopen(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xffffffffffffffa6)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_type(r6, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_type(r7, &(0x7f0000000280), 0x9)
syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r8=>0x0, &(0x7f0000000280)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
r10 = userfaultfd(0x1)
ioctl$UFFDIO_API(r10, 0xc018aa3f, &(0x7f00000001c0))
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000000)=@nat={'nat\x00', 0x19, 0x1, 0x1b8, [0x20000080, 0x0, 0x0, 0x200000b0, 0x20000208], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"]}, 0x207)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0x118)

2.805128759s ago: executing program 3 (id=746):
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x1ff}}, './file0\x00'})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x4, &(0x7f0000000240)=ANY=[@ANYRES8=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
socket$packet(0x11, 0x3, 0x300)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_VFIO_IOAS$GET(r4, 0x3b88, &(0x7f0000000000)={0xc, <r6=>0x0})
ioctl$IOMMU_IOAS_IOVA_RANGES(r4, 0x3b84, &(0x7f0000000100)={0xfffffffffffffe07, r6, 0x2, 0x0, &(0x7f0000000040)=[{}, {}]})
ioctl$IOMMU_IOAS_ALLOW_IOVAS(r4, 0x3b82, &(0x7f0000000180)={0x18, r5, 0x1, 0x0, &(0x7f00000001c0)=[{0x3, 0x5}]})
ioctl$IOMMU_IOAS_MAP(r4, 0x3b85, 0x0)
ioctl$IOMMU_IOAS_UNMAP$ALL(r4, 0x3b86, &(0x7f0000000280)={0x18, r5})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000380)={0x28, 0x7, r5, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000})
ioctl$IOMMU_IOAS_COPY(r4, 0x3b83, &(0x7f00000004c0)={0x28, 0x7, 0x0, r5, 0x1c, 0x3, 0x2})
fcntl$setflags(r1, 0x2, 0x1)
ioctl$IOMMU_DESTROY$ioas(r4, 0x3b80, &(0x7f0000000540)={0x8})
ioctl$IOMMU_IOAS_ALLOW_IOVAS(r4, 0x3b82, 0x0)

2.359366213s ago: executing program 3 (id=747):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1, 0xffffffffffffffff, 0x6000}, 0xc)

2.08995811s ago: executing program 3 (id=748):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
epoll_create1(0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$bt_sco(r2, &(0x7f0000000040), 0x8)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r6)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r6, &(0x7f0000000340)={0xa, 0x4e22, 0x0, @dev={0xfe, 0x80, '\x00', 0x10}, 0xa}, 0x1c)
listen(r7, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60f900f500180600fe8000000000000000000000000000aafe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="60020000000000000000200027ec7b99bf78ecade087c2f868a38dd274b39c5c05638db2bdf74e96111e97c1dbed4d0356466daf18ce5d9a8e3c52375e72880d70f9cae8026a64b45e67da14bd867ec89392413fa30303fa58252b6ab5140b3c210f771f1ab2f21667f09e11a26e6c756eb986f8b0b634af909c23331d3a843248ab4ccc9384d8720d16830618fd2a90690f4f59f4772440630e42f602f5d9d65bd3ac1a94fdba1a29a412500a"], 0x0)
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f00000000c0)=0x3ff)
r8 = syz_io_uring_setup(0x44f, &(0x7f0000000140)={0x0, 0xf716, 0x8, 0x7fffe, 0x166}, &(0x7f00000001c0), &(0x7f0000000080))
io_uring_enter(r8, 0x42d3e, 0x9a03, 0x10, 0x0, 0xfffffffffffffcb3)
sendfile(0xffffffffffffffff, r0, 0x0, 0x110005)
ioctl$VIDIOC_QUERYCTRL(r1, 0xc0445624, &(0x7f0000000140)={0x4987, 0x9, "b7fea9f3646592f2ec34d4d385efc3effd817fd0b4cc6a9731219cf689da6c4c", 0xfffffff8, 0x0, 0xfffffff6, 0x4f6, 0x85})
read$FUSE(0xffffffffffffffff, &(0x7f0000003240)={0x2020}, 0x2020)

1.902659734s ago: executing program 0 (id=749):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/protocols\x00')
epoll_create1(0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$bt_sco(r1, &(0x7f0000000040), 0x8)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r5)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000340)={0xa, 0x4e22, 0x0, @dev={0xfe, 0x80, '\x00', 0x10}, 0xa}, 0x1c)
listen(r6, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60f900f500180600fe8000000000000000000000000000aafe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="60020000000000000000200027ec7b99bf78ecade087c2f868a38dd274b39c5c05638db2bdf74e96111e97c1dbed4d0356466daf18ce5d9a8e3c52375e72880d70f9cae8026a64b45e67da14bd867ec89392413fa30303fa58252b6ab5140b3c210f771f1ab2f21667f09e11a26e6c756eb986f8b0b634af909c23331d3a843248ab4ccc9384d8720d16830618fd2a90690f4f59f4772440630e42f602f5d9d65bd3ac1a94fdba1a29a412500a"], 0x0)
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f00000000c0)=0x3ff)
r7 = syz_io_uring_setup(0x44f, &(0x7f0000000140)={0x0, 0xf716, 0x8, 0x7fffe, 0x166}, &(0x7f00000001c0), &(0x7f0000000080))
io_uring_enter(r7, 0x42d3e, 0x9a03, 0x10, 0x0, 0xfffffffffffffcb3)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x110005)
ioctl$VIDIOC_QUERYCTRL(0xffffffffffffffff, 0xc0445624, &(0x7f0000000140)={0x4987, 0x9, "b7fea9f3646592f2ec34d4d385efc3effd817fd0b4cc6a9731219cf689da6c4c", 0xfffffff8, 0x0, 0xfffffff6, 0x4f6, 0x85})
read$FUSE(r0, &(0x7f0000003240)={0x2020}, 0x2020)

1.2943812s ago: executing program 1 (id=750):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x28)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000006140)={0x2020, 0x0, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
lchown(&(0x7f0000000040)='./file0\x00', r6, r7)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xb)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0xb)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000cc0)={&(0x7f00000001c0)={0x2, 0x4e20, @rand_addr=0x64010100}, 0x10, &(0x7f00000009c0)=[{&(0x7f00000003c0)="566056f74e16ba8b67f9e3cdbc2d3d879a90898a4c0fdc63636fc36078ec27930fa53599ee1d3ac808fb6cd7c0bfef27dcb3e575055a6f9b9426e7007b640b29f337a486a3326818be1027012f9c54034c79d56938ddb4f56011153dbe7a5e67712910625008d9a01c52806446781ed2365ea18665537b32658ecac9b099e9643740d0ca84fc676403306b50c6ecc950eb23b51c10cb03e14b429b91d3ca9fedf933a0e0a40bb59c748ab91d63e8cb40a08e79d1f32b6062be273db4", 0xbc}, {&(0x7f0000000300)="d2f6295e21eb27b0ebcfc5d69d52cbcf527b6d326c6eea82a30a0b299643fb1ca2c1090df459b22c1f4fdfcff0d89cfa2ed085e3831d9fd18b9c7beca353f2e37e9daccf4f8c5938f08edec48c5766f4", 0x50}, {&(0x7f0000000480)="08aa50ee5de56c9241b1eea8438c1b8cca34e9a26372cc4b3c096c4bcab83244f3cb10d8ce71ef1a5952415b0e6f6ec68950ce0f1f8c9fe0779845c3c4519b63c8b8f6dcbe2a852c804a6e25beac33214487652e56cf7a02cef7bd0e668036759a0ec364d19f6eecbf782b19881968bd84d769c7fdb6f2f10343f4cf54fe3e5881075c971fea3ce901d64c5d7b595a6278420ff9ef4bd7cfa41e72271a185098f869c94d26cd225ae0d5aef6a697", 0xae}, {&(0x7f0000000600)="76266c0f892cfe2cda9adac37f381a4064cc4e338932d86292dcd9f17ea800f84836e3df2439c4afdefa64ea3072a061c7d330cbb11fc3ef4f5dec0c6299d18f8c4161fb4872a3ed4320a3be274eccc8ddf5760b1f902072bb7e5feb927d4ef7c62d7f1a5ff8416171c6fcac5c57021a838319f993de3af63844c8822adb243d7f78d647c2b5051c405f19fe98e25cc8f054af6898408ec86fdde1d0b07adcbe66", 0xa1}, {&(0x7f00000006c0)="74d44c0a8d1a9f18d38d0a635081341b9515d768cf8a99ca3f845d663af9d90f16ac47702bc5d6f98073b27d20dc80a0e901b75fa9104d00c3beae4afb8ce90b21bf7b09e0b49d126e0d45356cc9ba9bac042d97d4b96519e7e5bb37c9e607f19533fab45e057c47cf92af9dd4ba19371f62fa6f1bf5f42d05da478aaf2b569e029851650172537137416c5294acfe9cd601f8ef350a7aaf5956314d94e817b831df769369522be4c971ff52c502dc70beac43435b2fdf1ce940d6e6319b7a4e75e68ed664ac81a3e062d14d351eae8676f7172c9e5ac8d2f9bad35b75", 0xdd}, {&(0x7f00000007c0)="088dce85ce07e9e6f551f63c8e177040110fdcd33e9b40efad8e89f39e750eec0dd8957e5d92c0c4354309c96db6f41fb77242e29be9b10a519d256ac82e034752aa02d895c1e1a94f8f0aa29ca117835f96791cd00dfad08a08c3", 0x5b}, {&(0x7f0000000840)="8195cf4fb26d03c62d428caf2d9d10b71597a7407ed1d25b345f4d7fe258371befe5f071c9ac0709b4ee5aab5eaa03e4a3020be510e0bb67ac53fe1de2063af1877b1ef36f8fd07765bff8d13827a46bc0bce11cea273e878afac24cc187048507156c87691e129d03b72705048b8a5194a84f737130d3a7b572c8ad1275783111669cbdd81ddd36f25e5404813bb37fcf03804e4820b33e9e004be05a1a8319fed3c03ba6f6260245f945991b9a2ea5b1ad7bcc7d1ee2", 0xb7}, {&(0x7f0000000900)="80c6e1827ef012b8b2b4fd1ff3e159673e795766e914812d7d2e4b51fdbc7d5341843acff6ecd15417f9d3b3a997960e6253b7a9ede12797268ca13a1d5d430b8574cd891a73e8da3964b2ba", 0x4c}, {&(0x7f0000000980)="93b2e6d1b4cc632019d55e18", 0xc}], 0x9, &(0x7f0000000a80)=[@ip_tos_int={{0x14}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2a09}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x400}}, @ip_ttl={{0x14, 0x0, 0x2, 0x10000}}, @ip_retopts={{0x15c, 0x0, 0x7, {[@timestamp_addr={0x44, 0x54, 0x29, 0x1, 0xb, [{@dev={0xac, 0x14, 0x14, 0x37}, 0x80}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x60000000}, {@multicast2, 0xc5a}, {@dev={0xac, 0x14, 0x14, 0x1e}, 0x9}, {@loopback, 0xd7c}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7f}, {@rand_addr=0x64010101, 0x2}, {@loopback, 0x8a94}, {@local, 0x7}, {@rand_addr=0x64010102, 0x80}]}, @ssrr={0x89, 0x1f, 0x71, [@multicast2, @multicast2, @broadcast, @multicast2, @rand_addr=0x64010101, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @noop, @lsrr={0x83, 0x13, 0x5b, [@private=0xa010102, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010100, @empty]}, @cipso={0x86, 0x54, 0x3, [{0x1, 0xd, "0644395d7bb05ba18bb3f9"}, {0x1, 0xb, "b9213cda6f2adb4f2d"}, {0x5, 0x6, "cd21c631"}, {0x1, 0x4, "d6e5"}, {0x2, 0x5, "ab61dd"}, {0x2eeb2d89f599d7d2, 0x6, "5a194a23"}, {0x5, 0xf, "5250286e264aa161eb358a294e"}, {0x5, 0xa, "56dfcd6103d8ac44"}, {0x2, 0x8, "2ef8260f3be7"}]}, @ra={0x94, 0x4, 0x1}, @end, @cipso={0x86, 0x69, 0x2, [{0x0, 0x10, "4e0fed2ae336e2a2eea2e77e85d8"}, {0x1, 0x9, "6c78925cca71c4"}, {0x1, 0x5, "f9f1d2"}, {0x1, 0xd, "75ce97215b3ed63d790459"}, {0x909f59a37577897c, 0xe, "17efad56fd22338e2680678a"}, {0x7, 0xf, "8f3e14d58f413152482a501309"}, {0x7, 0xf, "2d5589ec793383f2254c73536a"}, {0x1, 0xc, "97b9fda213f52a5552c4"}]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xbc}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast2}}}], 0x228}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket(0x10, 0x3, 0x0)
connect$netlink(r8, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
r9 = socket(0x2a, 0x2, 0xffffffff)
bind$alg(r9, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

607.979µs ago: executing program 0 (id=751):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write(r0, &(0x7f0000000680), 0x0)
pipe(&(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$iommufd(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
write$binfmt_elf32(0xffffffffffffffff, 0x0, 0x69)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x1)
fcntl$setstatus(r1, 0x4, 0x2800)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x1ff, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r6 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r6, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
sendmsg$tipc(r6, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0) (fail_nth: 3)

0s ago: executing program 3 (id=752):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000007000000000000000000009500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
r7 = socket(0x1e, 0x4, 0x0)
r8 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r8, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r7, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
close_range(r6, 0xffffffffffffffff, 0x0)
r9 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x34, r9, 0x1, 0x70bd2c, 0x4, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}]}, 0x34}}, 0x0)

kernel console output (not intermixed with test programs):

T6707]  </TASK>
[  126.774094][ T6718] FAULT_INJECTION: forcing a failure.
[  126.774094][ T6718] name failslab, interval 1, probability 0, space 0, times 0
[  126.789149][ T5897] usb 2-1: USB disconnect, device number 6
[  126.797726][ T6718] CPU: 1 UID: 0 PID: 6718 Comm: syz.3.233 Not tainted 6.13.0-rc2-syzkaller #0
[  126.806598][ T6718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  126.816641][ T6718] Call Trace:
[  126.819904][ T6718]  <TASK>
[  126.822819][ T6718]  dump_stack_lvl+0x16c/0x1f0
[  126.827492][ T6718]  should_fail_ex+0x497/0x5b0
[  126.832161][ T6718]  should_failslab+0xc2/0x120
[  126.836826][ T6718]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  126.842195][ T6718]  ? skb_clone+0x190/0x3f0
[  126.846615][ T6718]  skb_clone+0x190/0x3f0
[  126.850848][ T6718]  netlink_deliver_tap+0xabd/0xd30
[  126.855953][ T6718]  netlink_unicast+0x5e1/0x7f0
[  126.860710][ T6718]  ? __pfx_netlink_unicast+0x10/0x10
[  126.865988][ T6718]  netlink_sendmsg+0x8b8/0xd70
[  126.870744][ T6718]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.876026][ T6718]  ____sys_sendmsg+0xaaf/0xc90
[  126.880802][ T6718]  ? copy_msghdr_from_user+0x10b/0x160
[  126.886258][ T6718]  ? __pfx_____sys_sendmsg+0x10/0x10
[  126.891538][ T6718]  ___sys_sendmsg+0x135/0x1e0
[  126.896208][ T6718]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.901406][ T6718]  ? __pfx_lock_release+0x10/0x10
[  126.906418][ T6718]  ? trace_lock_acquire+0x14e/0x1f0
[  126.911616][ T6718]  ? __fget_files+0x206/0x3a0
[  126.916284][ T6718]  __sys_sendmsg+0x16e/0x220
[  126.920867][ T6718]  ? __pfx___sys_sendmsg+0x10/0x10
[  126.925991][ T6718]  do_syscall_64+0xcd/0x250
[  126.930483][ T6718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.936372][ T6718] RIP: 0033:0x7f41a917fed9
[  126.940769][ T6718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.960364][ T6718] RSP: 002b:00007f41a9ef9058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.968763][ T6718] RAX: ffffffffffffffda RBX: 00007f41a9345fa0 RCX: 00007f41a917fed9
[  126.976719][ T6718] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  126.984673][ T6718] RBP: 00007f41a9ef90a0 R08: 0000000000000000 R09: 0000000000000000
[  126.992626][ T6718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.000581][ T6718] R13: 0000000000000000 R14: 00007f41a9345fa0 R15: 00007ffd1a91ea88
[  127.008548][ T6718]  </TASK>
[  127.039109][ T6718] netlink: 4 bytes leftover after parsing attributes in process `syz.3.233'.
[  128.272605][   T29] audit: type=1400 audit(1733772300.000:284): avc:  denied  { bind } for  pid=6730 comm="syz.3.238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  128.349020][ T6731] trusted_key: encrypted_key: insufficient parameters specified
[  128.409261][   T29] audit: type=1400 audit(1733772300.140:286): avc:  denied  { watch watch_reads } for  pid=6735 comm="syz.1.239" path="/proc/159/net" dev="proc" ino=11218 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  128.654508][   T29] audit: type=1400 audit(1733772300.140:285): avc:  denied  { watch watch_reads } for  pid=6735 comm="syz.1.239" path="/proc/159/net" dev="proc" ino=11218 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  128.677751][    C0] vkms_vblank_simulate: vblank timer overrun
[  129.343561][ T5830] Bluetooth: hci4: command 0x0405 tx timeout
[  129.413652][ T5897] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  129.673841][ T5815] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  129.719714][ T5897] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  129.729773][ T5897] usb 4-1: New USB device found, idVendor=056e, idProduct=00fb, bcdDevice= 0.00
[  129.859347][ T5815] usb 5-1: Using ep0 maxpacket: 32
[  129.870456][ T5815] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  129.890357][ T5897] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.181837][ T5897] usb 4-1: config 0 descriptor??
[  130.242084][ T5815] usb 5-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  130.251622][ T5815] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.260000][ T5815] usb 5-1: Product: syz
[  130.264314][ T5815] usb 5-1: Manufacturer: syz
[  130.268950][ T5815] usb 5-1: SerialNumber: syz
[  130.276941][ T5815] usb 5-1: config 0 descriptor??
[  130.284216][ T5815] usb 5-1: bad CDC descriptors
[  130.292414][ T5815] usb 5-1: unsupported MDLM descriptors
[  131.374406][ T5897] usbhid 4-1:0.0: can't add hid device: -71
[  131.381216][ T5897] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  131.400403][ T5897] usb 4-1: USB disconnect, device number 4
[  131.481015][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  131.481040][   T29] audit: type=1400 audit(1733772303.210:289): avc:  denied  { accept } for  pid=6747 comm="syz.4.243" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  131.964358][ T5897] usb 5-1: USB disconnect, device number 3
[  131.981873][ T6780] trusted_key: encrypted_key: insufficient parameters specified
[  132.726524][ T5830] Bluetooth: hci4: command 0x0405 tx timeout
[  133.553895][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  136.490800][ T6821] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  136.987027][ T6825] trusted_key: encrypted_key: insufficient parameters specified
[  137.872751][ T6839] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  138.836749][   T29] audit: type=1400 audit(1733772309.450:290): avc:  denied  { setopt } for  pid=6834 comm="syz.3.262" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  138.922720][   T29] audit: type=1400 audit(1733772310.230:291): avc:  denied  { mount } for  pid=6840 comm="syz.0.269" name="/" dev="autofs" ino=12038 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  139.183980][   T29] audit: type=1400 audit(1733772310.640:292): avc:  denied  { unmount } for  pid=5823 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  139.372402][ T6857] binder: 6854:6857 ioctl c0306201 20000580 returned -14
[  139.392622][ T6856] binder: 6854:6856 ioctl c0306201 200002c0 returned -22
[  140.220540][ T6867] trusted_key: encrypted_key: insufficient parameters specified
[  140.593558][   T25] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  140.886281][   T25] usb 4-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[  140.895498][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.908644][   T25] usb 4-1: Product: syz
[  140.912940][   T25] usb 4-1: Manufacturer: syz
[  140.983424][ T6878] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  141.559409][   T25] usb 4-1: SerialNumber: syz
[  141.566863][   T25] usb 4-1: config 0 descriptor??
[  141.576209][   T25] gspca_main: sq905c-2.14.0 probing 2770:9052
[  141.616882][    T9] IPVS: starting estimator thread 0...
[  141.649099][   T29] audit: type=1400 audit(1733772313.370:293): avc:  denied  { create } for  pid=6881 comm="syz.1.281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  141.740714][ T6882] IPVS: using max 33 ests per chain, 79200 per kthread
[  141.792392][ T6871] netlink: 4 bytes leftover after parsing attributes in process `syz.3.279'.
[  141.833891][   T25] gspca_sq905c: sq905c_command: usb_control_msg failed (-71)
[  141.841384][   T25] sq905c 4-1:0.0: Get version command failed
[  141.847756][   T25] sq905c 4-1:0.0: probe with driver sq905c failed with error -71
[  141.923654][   T25] usb 4-1: USB disconnect, device number 5
[  142.173580][   T29] audit: type=1400 audit(1733772313.880:294): avc:  denied  { write } for  pid=6881 comm="syz.1.281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  144.606188][   T29] audit: type=1400 audit(1733772316.320:295): avc:  denied  { setopt } for  pid=6909 comm="syz.4.289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  144.814774][   T25] IPVS: starting estimator thread 0...
[  144.822548][ T6920] FAULT_INJECTION: forcing a failure.
[  144.822548][ T6920] name failslab, interval 1, probability 0, space 0, times 0
[  144.837342][ T6920] CPU: 1 UID: 0 PID: 6920 Comm: syz.1.293 Not tainted 6.13.0-rc2-syzkaller #0
[  144.846215][ T6920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  144.856281][ T6920] Call Trace:
[  144.859566][ T6920]  <TASK>
[  144.862502][ T6920]  dump_stack_lvl+0x16c/0x1f0
[  144.867191][ T6920]  should_fail_ex+0x497/0x5b0
[  144.871883][ T6920]  ? fs_reclaim_acquire+0xae/0x150
[  144.877017][ T6920]  should_failslab+0xc2/0x120
[  144.881708][ T6920]  __kmalloc_node_noprof+0xd1/0x510
[  144.886914][ T6920]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  144.892379][ T6920]  ? __nf_unregister_net_hook+0x2d5/0x680
[  144.898112][ T6920]  __kvmalloc_node_noprof+0xad/0x1a0
[  144.903416][ T6920]  __nf_hook_entries_try_shrink+0x15f/0x400
[  144.909326][ T6920]  __nf_unregister_net_hook+0x2e5/0x680
[  144.914887][ T6920]  nf_unregister_net_hooks+0x11b/0x160
[  144.920353][ T6920]  nf_ct_netns_do_put+0x10d/0x2f0
[  144.925385][ T6920]  nf_ct_netns_put+0x71/0x80
[  144.929988][ T6920]  ip_vs_unlink_service+0x808/0xba0
[  144.935207][ T6920]  ? __might_fault+0xe3/0x190
[  144.939900][ T6920]  ip_vs_flush+0x1c0/0x230
[  144.944333][ T6920]  do_ip_vs_set_ctl+0xe8e/0x11c0
[  144.946724][ T6923] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  144.949277][ T6920]  ? __print_lock_name+0x1f0/0x260
[  144.966039][ T6920]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[  144.971435][ T6920]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  144.977432][ T6920]  ? rcu_is_watching+0x12/0xc0
[  144.982203][ T6920]  ? __mutex_lock+0x1cc/0xa60
[  144.986884][ T6920]  ? __mutex_unlock_slowpath+0x164/0x690
[  144.992530][ T6920]  ? nf_setsockopt+0x8a/0xf0
[  144.997114][ T6920]  nf_setsockopt+0x8a/0xf0
[  145.001522][ T6920]  ip_setsockopt+0xcb/0xf0
[  145.005939][ T6920]  tcp_setsockopt+0xa4/0x100
[  145.010523][ T6920]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  145.016405][ T6920]  do_sock_setsockopt+0x222/0x480
[  145.021422][ T6920]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  145.026954][ T6920]  ? lock_acquire+0x2f/0xb0
[  145.031456][ T6920]  __sys_setsockopt+0x1a0/0x230
[  145.036302][ T6920]  __x64_sys_setsockopt+0xbd/0x160
[  145.041406][ T6920]  ? do_syscall_64+0x91/0x250
[  145.046071][ T6920]  ? lockdep_hardirqs_on+0x7c/0x110
[  145.051254][ T6920]  do_syscall_64+0xcd/0x250
[  145.055746][ T6920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.061628][ T6920] RIP: 0033:0x7f238217fed9
[  145.066028][ T6920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.085621][ T6920] RSP: 002b:00007f2382ed1058 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  145.094019][ T6920] RAX: ffffffffffffffda RBX: 00007f2382345fa0 RCX: 00007f238217fed9
[  145.101973][ T6920] RDX: 0000000000000485 RSI: 0000000000000000 RDI: 0000000000000004
[  145.109927][ T6920] RBP: 00007f2382ed10a0 R08: 0000000000000000 R09: 0000000000000000
[  145.117905][ T6920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.125860][ T6920] R13: 0000000000000000 R14: 00007f2382345fa0 R15: 00007fff9bf3b4c8
[  145.133840][ T6920]  </TASK>
[  145.140318][    T9] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  145.172338][ T6923] syz_tun: entered promiscuous mode
[  145.194529][ T6921] IPVS: using max 32 ests per chain, 76800 per kthread
[  145.519995][ T6923] syz_tun: left promiscuous mode
[  145.828276][   T29] audit: type=1400 audit(1733772317.560:296): avc:  denied  { create } for  pid=6933 comm="syz.3.297" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  145.883768][    T9] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  145.913167][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.933599][    T9] usb 3-1: Product: syz
[  145.937851][    T9] usb 3-1: Manufacturer: syz
[  145.956021][ T6937] FAULT_INJECTION: forcing a failure.
[  145.956021][ T6937] name failslab, interval 1, probability 0, space 0, times 0
[  145.956568][    T9] usb 3-1: SerialNumber: syz
[  145.973062][ T6937] CPU: 1 UID: 0 PID: 6937 Comm: syz.3.298 Not tainted 6.13.0-rc2-syzkaller #0
[  145.982450][ T6937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  145.992519][ T6937] Call Trace:
[  145.995803][ T6937]  <TASK>
[  145.998742][ T6937]  dump_stack_lvl+0x16c/0x1f0
[  146.003439][ T6937]  should_fail_ex+0x497/0x5b0
[  146.003983][    T9] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  146.008120][ T6937]  ? fs_reclaim_acquire+0xae/0x150
[  146.008156][ T6937]  should_failslab+0xc2/0x120
[  146.025972][ T6937]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  146.031356][ T6937]  ? skb_clone+0x190/0x3f0
[  146.035786][ T6937]  skb_clone+0x190/0x3f0
[  146.040043][ T6937]  pfkey_process+0xc7/0x840
[  146.044558][ T6937]  ? rcu_is_watching+0x12/0xc0
[  146.049335][ T6937]  ? __pfx_pfkey_process+0x10/0x10
[  146.054479][ T6937]  ? __virt_addr_valid+0x5e/0x590
[  146.059524][ T6937]  ? __phys_addr_symbol+0x30/0x80
[  146.064569][ T6937]  pfkey_sendmsg+0x43b/0x840
[  146.069178][ T6937]  ____sys_sendmsg+0xaaf/0xc90
[  146.073950][ T6937]  ? copy_msghdr_from_user+0x10b/0x160
[  146.079423][ T6937]  ? __pfx_____sys_sendmsg+0x10/0x10
[  146.084740][ T6937]  ___sys_sendmsg+0x135/0x1e0
[  146.089441][ T6937]  ? __pfx____sys_sendmsg+0x10/0x10
[  146.094664][ T6937]  ? __pfx_lock_release+0x10/0x10
[  146.099695][ T6937]  ? trace_lock_acquire+0x14e/0x1f0
[  146.104920][ T6937]  ? __fget_files+0x206/0x3a0
[  146.109609][ T6937]  __sys_sendmsg+0x16e/0x220
[  146.114215][ T6937]  ? __pfx___sys_sendmsg+0x10/0x10
[  146.119358][ T6937]  do_syscall_64+0xcd/0x250
[  146.123872][ T6937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.129766][ T6937] RIP: 0033:0x7f41a917fed9
[  146.134181][ T6937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.153800][ T6937] RSP: 002b:00007f41a9ef9058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  146.162230][ T6937] RAX: ffffffffffffffda RBX: 00007f41a9345fa0 RCX: 00007f41a917fed9
[  146.170205][ T6937] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  146.178167][ T6937] RBP: 00007f41a9ef90a0 R08: 0000000000000000 R09: 0000000000000000
[  146.186123][ T6937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.194080][ T6937] R13: 0000000000000000 R14: 00007f41a9345fa0 R15: 00007ffd1a91ea88
[  146.202047][ T6937]  </TASK>
[  146.231552][ T5865] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  146.938534][ T6916] netlink: 'syz.2.291': attribute type 4 has an invalid length.
[  147.102652][ T6916] netlink: 'syz.2.291': attribute type 4 has an invalid length.
[  147.193092][   T29] audit: type=1400 audit(1733772318.920:297): avc:  denied  { listen } for  pid=6954 comm="syz.0.302" path=000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  147.282075][ T5865] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  147.558943][ T5865] ath9k_htc: Failed to initialize the device
[  147.641798][ T5865] usb 3-1: ath9k_htc: USB layer deinitialized
[  148.276849][ T6969] FAULT_INJECTION: forcing a failure.
[  148.276849][ T6969] name failslab, interval 1, probability 0, space 0, times 0
[  148.289788][ T6969] CPU: 0 UID: 0 PID: 6969 Comm: syz.0.305 Not tainted 6.13.0-rc2-syzkaller #0
[  148.298651][ T6969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  148.308719][ T6969] Call Trace:
[  148.312003][ T6969]  <TASK>
[  148.314939][ T6969]  dump_stack_lvl+0x16c/0x1f0
[  148.319616][ T6969]  should_fail_ex+0x497/0x5b0
[  148.324297][ T6969]  ? fs_reclaim_acquire+0xae/0x150
[  148.329423][ T6969]  should_failslab+0xc2/0x120
[  148.334119][ T6969]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  148.340461][ T6969]  ? __pfx_down_read+0x10/0x10
[  148.345233][ T6969]  ? dh_data_from_key+0x164/0x2d0
[  148.350255][ T6969]  kmemdup_noprof+0x29/0x60
[  148.354744][ T6969]  dh_data_from_key+0x164/0x2d0
[  148.359587][ T6969]  __keyctl_dh_compute+0x3a2/0xf50
[  148.364692][ T6969]  ? __pfx___keyctl_dh_compute+0x10/0x10
[  148.370314][ T6969]  ? lockdep_hardirqs_on+0x7c/0x110
[  148.375497][ T6969]  ? __schedule+0x3d6c/0x5ad0
[  148.380160][ T6969]  ? local_clock_noinstr+0xd1/0xe0
[  148.385271][ T6969]  keyctl_dh_compute+0xd3/0x140
[  148.390109][ T6969]  ? __pfx_keyctl_dh_compute+0x10/0x10
[  148.395566][ T6969]  __do_sys_keyctl+0x4df/0x590
[  148.400336][ T6969]  do_syscall_64+0xcd/0x250
[  148.404843][ T6969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.410732][ T6969] RIP: 0033:0x7f38fb97fed9
[  148.415135][ T6969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.434731][ T6969] RSP: 002b:00007f38fc744058 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  148.443132][ T6969] RAX: ffffffffffffffda RBX: 00007f38fbb46160 RCX: 00007f38fb97fed9
[  148.451086][ T6969] RDX: 00000000200000c0 RSI: 0000000020000140 RDI: 0000000000000017
[  148.459039][ T6969] RBP: 00007f38fc7440a0 R08: 0000000000000000 R09: 0000000000000000
[  148.466995][ T6969] R10: fffffffffffffe4f R11: 0000000000000246 R12: 0000000000000001
[  148.474949][ T6969] R13: 0000000000000000 R14: 00007f38fbb46160 R15: 00007ffecd750c88
[  148.482916][ T6969]  </TASK>
[  148.508656][   T29] audit: type=1400 audit(1733772320.030:298): avc:  denied  { create } for  pid=6970 comm="syz.4.307" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  148.766758][ T6980] netlink: 'syz.3.309': attribute type 10 has an invalid length.
[  148.789728][   T29] audit: type=1400 audit(1733772320.520:299): avc:  denied  { bind } for  pid=6970 comm="syz.4.307" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  148.809334][   T29] audit: type=1400 audit(1733772320.520:300): avc:  denied  { read write } for  pid=6981 comm="syz.1.310" name="vmci" dev="devtmpfs" ino=697 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  148.841701][ T6983] FAULT_INJECTION: forcing a failure.
[  148.841701][ T6983] name failslab, interval 1, probability 0, space 0, times 0
[  148.852774][ T6980] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  148.866280][   T29] audit: type=1400 audit(1733772320.520:301): avc:  denied  { open } for  pid=6981 comm="syz.1.310" path="/dev/vmci" dev="devtmpfs" ino=697 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  148.889418][ T6983] CPU: 1 UID: 0 PID: 6983 Comm: syz.3.309 Not tainted 6.13.0-rc2-syzkaller #0
[  148.890580][   T29] audit: type=1400 audit(1733772320.520:302): avc:  denied  { ioctl } for  pid=6981 comm="syz.1.310" path="/dev/vmci" dev="devtmpfs" ino=697 ioctlcmd=0x7a7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  148.898268][ T6983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  148.898282][ T6983] Call Trace:
[  148.898289][ T6983]  <TASK>
[  148.898296][ T6983]  dump_stack_lvl+0x16c/0x1f0
[  148.898322][ T6983]  should_fail_ex+0x497/0x5b0
[  148.898351][ T6983]  should_failslab+0xc2/0x120
[  148.952625][ T6983]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  148.958004][ T6983]  ? skb_clone+0x190/0x3f0
[  148.962495][ T6983]  skb_clone+0x190/0x3f0
[  148.966714][ T6983]  netlink_deliver_tap+0xabd/0xd30
[  148.971834][ T6983]  netlink_unicast+0x5e1/0x7f0
[  148.976591][ T6983]  ? __pfx_netlink_unicast+0x10/0x10
[  148.981877][ T6983]  netlink_sendmsg+0x8b8/0xd70
[  148.986655][ T6983]  ? __pfx_netlink_sendmsg+0x10/0x10
[  148.991942][ T6983]  ____sys_sendmsg+0xaaf/0xc90
[  148.996707][ T6983]  ? copy_msghdr_from_user+0x10b/0x160
[  149.002168][ T6983]  ? __pfx_____sys_sendmsg+0x10/0x10
[  149.007446][ T6983]  ___sys_sendmsg+0x135/0x1e0
[  149.012121][ T6983]  ? __pfx____sys_sendmsg+0x10/0x10
[  149.017323][ T6983]  ? __pfx_lock_release+0x10/0x10
[  149.022330][ T6983]  ? trace_lock_acquire+0x14e/0x1f0
[  149.027540][ T6983]  ? __fget_files+0x206/0x3a0
[  149.032212][ T6983]  __sys_sendmsg+0x16e/0x220
[  149.036788][ T6983]  ? __pfx___sys_sendmsg+0x10/0x10
[  149.041911][ T6983]  do_syscall_64+0xcd/0x250
[  149.046408][ T6983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.052295][ T6983] RIP: 0033:0x7f41a917fed9
[  149.056711][ T6983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.076319][ T6983] RSP: 002b:00007f41a9ed8058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  149.084732][ T6983] RAX: ffffffffffffffda RBX: 00007f41a9346080 RCX: 00007f41a917fed9
[  149.092694][ T6983] RDX: 0000000024044884 RSI: 0000000020000300 RDI: 0000000000000004
[  149.100740][ T6983] RBP: 00007f41a9ed80a0 R08: 0000000000000000 R09: 0000000000000000
[  149.108711][ T6983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.116663][ T6983] R13: 0000000000000000 R14: 00007f41a9346080 R15: 00007ffd1a91ea88
[  149.124640][ T6983]  </TASK>
[  149.199839][ T6978] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  149.383139][ T5911] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  150.186724][ T5911] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  150.196978][ T5911] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  150.229848][ T5911] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  150.243963][ T5911] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  150.253013][ T5911] usb 2-1: SerialNumber: syz
[  150.288210][    T9] usb 3-1: USB disconnect, device number 2
[  150.703549][   T29] audit: type=1400 audit(1733772322.430:303): avc:  denied  { write } for  pid=6981 comm="syz.1.310" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  151.704439][   T47] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  151.962966][   T47] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  152.012324][   T47] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  152.102812][   T47] usb 4-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  152.172939][   T47] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.255290][   T47] usb 4-1: config 0 descriptor??
[  153.153675][   T29] audit: type=1400 audit(1733772324.310:304): avc:  denied  { read } for  pid=7017 comm="syz.2.320" name="usbmon3" dev="devtmpfs" ino=725 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  153.177468][   T29] audit: type=1400 audit(1733772324.320:305): avc:  denied  { open } for  pid=7017 comm="syz.2.320" path="/dev/usbmon3" dev="devtmpfs" ino=725 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  153.660787][ T5911] usb 2-1: 0:2 : does not exist
[  153.680680][   T47] usb 4-1: Max retries (5) exceeded reading string descriptor 200
[  153.709714][   T47] letsketch 0003:6161:4D15.0001: probe with driver letsketch failed with error -71
[  153.829248][   T47] usb 4-1: USB disconnect, device number 6
[  153.861757][ T5911] usb 2-1: USB disconnect, device number 7
[  154.144095][   T25] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  154.308843][   T25] usb 1-1: Using ep0 maxpacket: 32
[  154.326813][   T25] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  154.358322][ T7034] FAULT_INJECTION: forcing a failure.
[  154.358322][ T7034] name failslab, interval 1, probability 0, space 0, times 0
[  154.381749][   T25] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  154.393712][   T25] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.412149][   T25] usb 1-1: Product: syz
[  154.421894][   T25] usb 1-1: Manufacturer: syz
[  154.436059][ T7034] CPU: 0 UID: 0 PID: 7034 Comm: syz.3.326 Not tainted 6.13.0-rc2-syzkaller #0
[  154.449515][ T7034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  154.449531][ T7034] Call Trace:
[  154.449539][ T7034]  <TASK>
[  154.449547][ T7034]  dump_stack_lvl+0x16c/0x1f0
[  154.449573][ T7034]  should_fail_ex+0x497/0x5b0
[  154.449600][ T7034]  should_failslab+0xc2/0x120
[  154.449621][ T7034]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  154.449641][ T7034]  ? skb_clone+0x190/0x3f0
[  154.449668][ T7034]  skb_clone+0x190/0x3f0
[  154.449686][ T7034]  netlink_deliver_tap+0xabd/0xd30
[  154.449716][ T7034]  netlink_unicast+0x5e1/0x7f0
[  154.449743][ T7034]  ? __pfx_netlink_unicast+0x10/0x10
[  154.449774][ T7034]  netlink_sendmsg+0x8b8/0xd70
[  154.449803][ T7034]  ? __pfx_netlink_sendmsg+0x10/0x10
[  154.449837][ T7034]  ____sys_sendmsg+0xaaf/0xc90
[  154.449859][ T7034]  ? copy_msghdr_from_user+0x10b/0x160
[  154.489386][   T25] usb 1-1: SerialNumber: syz
[  154.489825][ T7034]  ? __pfx_____sys_sendmsg+0x10/0x10
[  154.508440][   T25] usb 1-1: config 0 descriptor??
[  154.509167][ T7034]  ___sys_sendmsg+0x135/0x1e0
[  154.519198][   T25] usb 1-1: bad CDC descriptors
[  154.523926][ T7034]  ? __pfx____sys_sendmsg+0x10/0x10
[  154.523972][ T7034]  ? __pfx_lock_release+0x10/0x10
[  154.530266][   T25] usb 1-1: unsupported MDLM descriptors
[  154.534069][ T7034]  ? trace_lock_acquire+0x14e/0x1f0
[  154.534110][ T7034]  ? __fget_files+0x206/0x3a0
[  154.534135][ T7034]  __sys_sendmsg+0x16e/0x220
[  154.583777][ T7034]  ? __pfx___sys_sendmsg+0x10/0x10
[  154.588877][ T7034]  do_syscall_64+0xcd/0x250
[  154.593357][ T7034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.599229][ T7034] RIP: 0033:0x7f41a917fed9
[  154.603620][ T7034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.623199][ T7034] RSP: 002b:00007f41a9ef9058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  154.631585][ T7034] RAX: ffffffffffffffda RBX: 00007f41a9345fa0 RCX: 00007f41a917fed9
[  154.639530][ T7034] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  154.647475][ T7034] RBP: 00007f41a9ef90a0 R08: 0000000000000000 R09: 0000000000000000
[  154.655421][ T7034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.663365][ T7034] R13: 0000000000000000 R14: 00007f41a9345fa0 R15: 00007ffd1a91ea88
[  154.671318][ T7034]  </TASK>
[  154.674415][    C0] vkms_vblank_simulate: vblank timer overrun
[  154.717278][ T7034] netlink: 'syz.3.326': attribute type 11 has an invalid length.
[  154.726704][ T5826] udevd[5826]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  154.914091][   T29] audit: type=1400 audit(1733772326.650:306): avc:  denied  { ioctl } for  pid=7026 comm="syz.0.323" path="socket:[13619]" dev="sockfs" ino=13619 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  154.938541][    C0] vkms_vblank_simulate: vblank timer overrun
[  155.120221][ T5911] usb 1-1: USB disconnect, device number 6
[  156.039117][ T7047] trusted_key: encrypted_key: insufficient parameters specified
[  156.134226][ T7052] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  156.800571][   T29] audit: type=1400 audit(1733772328.530:307): avc:  denied  { create } for  pid=7058 comm="syz.2.333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  156.806330][ T5191] udevd[5191]: worker [5826] terminated by signal 33 (Unknown signal 33)
[  156.832475][ T5191] udevd[5191]: worker [5826] failed while handling '/devices/virtual/misc/kvm'
[  157.432716][ T7068] trusted_key: encrypted_key: insufficient parameters specified
[  157.480743][   T29] audit: type=1400 audit(1733772329.180:308): avc:  denied  { connect } for  pid=7062 comm="syz.0.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  158.450147][   T29] audit: type=1400 audit(1733772329.180:309): avc:  denied  { create } for  pid=7062 comm="syz.0.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  159.590610][   T29] audit: type=1400 audit(1733772331.190:310): avc:  denied  { write } for  pid=7078 comm="syz.1.338" name="001" dev="devtmpfs" ino=745 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  159.630995][   T29] audit: type=1400 audit(1733772331.300:311): avc:  denied  { execute } for  pid=7078 comm="syz.1.338" path="/dev/bsg/cpuacct.usage_percpu" dev="devtmpfs" ino=2776 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=file permissive=1
[  161.023001][   T29] audit: type=1400 audit(1733772332.620:312): avc:  denied  { name_bind } for  pid=7088 comm="syz.4.340" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  162.159944][ T7111] netlink: 'syz.1.346': attribute type 10 has an invalid length.
[  162.495928][   T29] audit: type=1400 audit(1733772334.230:313): avc:  denied  { connect } for  pid=7112 comm="syz.3.347" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  162.525450][   T29] audit: type=1400 audit(1733772334.230:314): avc:  denied  { name_connect } for  pid=7112 comm="syz.3.347" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  162.564609][ T7111] syz_tun: entered promiscuous mode
[  162.574021][ T7111] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  164.367381][ T7137] netlink: 84 bytes leftover after parsing attributes in process `syz.3.352'.
[  166.266478][   T25] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  166.443711][   T25] usb 3-1: Using ep0 maxpacket: 8
[  166.480643][   T25] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  166.739424][   T25] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  166.752784][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[  166.763975][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  166.774180][   T25] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  166.792272][   T25] usb 3-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  166.792300][   T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  166.792320][   T25] usb 3-1: Product: syz
[  166.792334][   T25] usb 3-1: Manufacturer: syz
[  166.792349][   T25] usb 3-1: SerialNumber: syz
[  166.794128][   T25] usb 3-1: config 0 descriptor??
[  167.094533][   T25] radio-si470x 3-1:0.0: si470x_get_report: usb_control_msg returned -71
[  167.103012][   T25] radio-si470x 3-1:0.0: probe with driver radio-si470x failed with error -5
[  167.129566][ T7178] ���]-�V!z���uY: renamed from lo (while UP)
[  167.142918][   T25] usb 3-1: USB disconnect, device number 3
[  167.163423][   T29] audit: type=1400 audit(1733772338.890:315): avc:  denied  { write } for  pid=7177 comm="syz.0.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  168.266177][ T7190] trusted_key: encrypted_key: insufficient parameters specified
[  170.670514][   T29] audit: type=1400 audit(1733772342.400:316): avc:  denied  { create } for  pid=7225 comm="syz.1.379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  170.924109][   T29] audit: type=1400 audit(1733772342.650:317): avc:  denied  { setopt } for  pid=7225 comm="syz.1.379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  171.420843][   T29] audit: type=1400 audit(1733772343.140:318): avc:  denied  { ioctl } for  pid=7229 comm="syz.0.380" path="/dev/ppp" dev="devtmpfs" ino=709 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  171.555538][   T29] audit: type=1326 audit(1733772343.290:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7229 comm="syz.0.380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  171.648117][   T29] audit: type=1326 audit(1733772343.320:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7229 comm="syz.0.380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  171.690575][   T29] audit: type=1326 audit(1733772343.320:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7229 comm="syz.0.380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  171.695458][ T7236] input: syz1 as /devices/virtual/input/input7
[  171.729832][   T29] audit: type=1326 audit(1733772343.320:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7229 comm="syz.0.380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f38fb97e8ec code=0x7ffc0000
[  171.973683][   T29] audit: type=1326 audit(1733772343.320:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7229 comm="syz.0.380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  172.035130][   T29] audit: type=1326 audit(1733772343.320:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7229 comm="syz.0.380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  172.059966][   T29] audit: type=1326 audit(1733772343.450:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7229 comm="syz.0.380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  173.790187][ T7258] netlink: 20 bytes leftover after parsing attributes in process `syz.1.388'.
[  173.821990][ T7258] trusted_key: encrypted_key: insufficient parameters specified
[  174.600290][ T7273] FAULT_INJECTION: forcing a failure.
[  174.600290][ T7273] name failslab, interval 1, probability 0, space 0, times 0
[  174.613245][ T7273] CPU: 1 UID: 0 PID: 7273 Comm: syz.4.393 Not tainted 6.13.0-rc2-syzkaller #0
[  174.622094][ T7273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  174.632224][ T7273] Call Trace:
[  174.635501][ T7273]  <TASK>
[  174.638413][ T7273]  dump_stack_lvl+0x16c/0x1f0
[  174.643081][ T7273]  should_fail_ex+0x497/0x5b0
[  174.647752][ T7273]  should_failslab+0xc2/0x120
[  174.652411][ T7273]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  174.657769][ T7273]  ? skb_clone+0x190/0x3f0
[  174.662182][ T7273]  skb_clone+0x190/0x3f0
[  174.666409][ T7273]  netlink_deliver_tap+0xabd/0xd30
[  174.671517][ T7273]  netlink_unicast+0x5e1/0x7f0
[  174.676271][ T7273]  ? __pfx_netlink_unicast+0x10/0x10
[  174.681586][ T7273]  netlink_sendmsg+0x8b8/0xd70
[  174.686355][ T7273]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.691655][ T7273]  ____sys_sendmsg+0xaaf/0xc90
[  174.696413][ T7273]  ? copy_msghdr_from_user+0x10b/0x160
[  174.701875][ T7273]  ? __pfx_____sys_sendmsg+0x10/0x10
[  174.707150][ T7273]  ___sys_sendmsg+0x135/0x1e0
[  174.711819][ T7273]  ? __pfx____sys_sendmsg+0x10/0x10
[  174.717033][ T7273]  ? __pfx_lock_release+0x10/0x10
[  174.722039][ T7273]  ? trace_lock_acquire+0x14e/0x1f0
[  174.727231][ T7273]  ? __fget_files+0x206/0x3a0
[  174.731900][ T7273]  __sys_sendmsg+0x16e/0x220
[  174.736492][ T7273]  ? __pfx___sys_sendmsg+0x10/0x10
[  174.741612][ T7273]  do_syscall_64+0xcd/0x250
[  174.746109][ T7273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.751985][ T7273] RIP: 0033:0x7ff7fe37fed9
[  174.753593][    T9] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  174.756376][ T7273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.756397][ T7273] RSP: 002b:00007ff7ff11f058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.756430][ T7273] RAX: ffffffffffffffda RBX: 00007ff7fe545fa0 RCX: 00007ff7fe37fed9
[  174.756443][ T7273] RDX: 0000000000000000 RSI: 00000000200006c0 RDI: 0000000000000003
[  174.756454][ T7273] RBP: 00007ff7ff11f0a0 R08: 0000000000000000 R09: 0000000000000000
[  174.815768][ T7273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.823734][ T7273] R13: 0000000000000000 R14: 00007ff7fe545fa0 R15: 00007ffe37cb51d8
[  174.831712][ T7273]  </TASK>
[  175.001816][ T7279] FAULT_INJECTION: forcing a failure.
[  175.001816][ T7279] name failslab, interval 1, probability 0, space 0, times 0
[  175.015511][ T7279] CPU: 1 UID: 0 PID: 7279 Comm: syz.3.396 Not tainted 6.13.0-rc2-syzkaller #0
[  175.024400][ T7279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  175.034454][ T7279] Call Trace:
[  175.037729][ T7279]  <TASK>
[  175.040667][ T7279]  dump_stack_lvl+0x16c/0x1f0
[  175.045341][ T7279]  should_fail_ex+0x497/0x5b0
[  175.050011][ T7279]  ? fs_reclaim_acquire+0xae/0x150
[  175.055119][ T7279]  should_failslab+0xc2/0x120
[  175.059785][ T7279]  __kmalloc_noprof+0xcb/0x510
[  175.064539][ T7279]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  175.070164][ T7279]  ? rcu_is_watching+0x12/0xc0
[  175.074923][ T7279]  tomoyo_realpath_from_path+0xb9/0x720
[  175.080467][ T7279]  tomoyo_check_open_permission+0x2ad/0x3c0
[  175.086349][ T7279]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  175.092760][ T7279]  ? avc_has_perm_noaudit+0x119/0x3a0
[  175.098139][ T7279]  ? __pfx_hook_file_open+0x10/0x10
[  175.103331][ T7279]  ? lock_acquire+0x2f/0xb0
[  175.107826][ T7279]  tomoyo_file_open+0x6b/0x90
[  175.112495][ T7279]  security_file_open+0x84/0x1e0
[  175.117424][ T7279]  do_dentry_open+0x57e/0x1ea0
[  175.122189][ T7279]  ? inode_permission+0xdd/0x5f0
[  175.127119][ T7279]  vfs_open+0x82/0x3f0
[  175.131176][ T7279]  ? may_open+0x1f2/0x400
[  175.135504][ T7279]  path_openat+0x1e6a/0x2d60
[  175.140089][ T7279]  ? __pfx_path_openat+0x10/0x10
[  175.145017][ T7279]  ? __pfx___lock_acquire+0x10/0x10
[  175.150221][ T7279]  ? lock_acquire.part.0+0x11b/0x380
[  175.155519][ T7279]  ? find_held_lock+0x2d/0x110
[  175.160288][ T7279]  do_filp_open+0x20c/0x470
[  175.164784][ T7279]  ? __pfx_do_filp_open+0x10/0x10
[  175.169798][ T7279]  ? find_held_lock+0x2d/0x110
[  175.174658][ T7279]  ? _raw_spin_unlock+0x28/0x50
[  175.179498][ T7279]  ? alloc_fd+0x41f/0x760
[  175.183821][ T7279]  do_sys_openat2+0x17a/0x1e0
[  175.188491][ T7279]  ? __pfx_do_sys_openat2+0x10/0x10
[  175.193687][ T7279]  ? __fget_files+0x206/0x3a0
[  175.198354][ T7279]  __x64_sys_open+0x154/0x1e0
[  175.203022][ T7279]  ? __pfx___x64_sys_open+0x10/0x10
[  175.208216][ T7279]  do_syscall_64+0xcd/0x250
[  175.212710][ T7279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.218600][ T7279] RIP: 0033:0x7f41a917fed9
[  175.223001][ T7279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.242598][ T7279] RSP: 002b:00007f41a9ef9058 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  175.250998][ T7279] RAX: ffffffffffffffda RBX: 00007f41a9345fa0 RCX: 00007f41a917fed9
[  175.258956][ T7279] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040
[  175.266915][ T7279] RBP: 00007f41a9ef90a0 R08: 0000000000000000 R09: 0000000000000000
[  175.274890][ T7279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.282846][ T7279] R13: 0000000000000000 R14: 00007f41a9345fa0 R15: 00007ffd1a91ea88
[  175.290812][ T7279]  </TASK>
[  175.295601][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  175.306755][    T9] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  175.323672][ T7279] ERROR: Out of memory at tomoyo_realpath_from_path.
[  175.356650][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.378691][    T9] usb 3-1: config 0 descriptor??
[  175.633648][   T25] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  175.833641][  T970] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  175.846852][   T25] usb 2-1: Using ep0 maxpacket: 8
[  176.046897][   T25] usb 2-1: unable to get BOS descriptor or descriptor too short
[  176.047979][    T9] keytouch 0003:0926:3333.0002: fixing up Keytouch IEC report descriptor
[  176.055609][   T25] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  176.066525][    T9] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.0002/input/input8
[  176.084244][   T25] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 2
[  176.168932][  T970] usb 4-1: Using ep0 maxpacket: 8
[  176.222074][  T970] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  176.244779][   T25] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  176.253935][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.262192][   T25] usb 2-1: Product: syz
[  176.266987][   T25] usb 2-1: Manufacturer: syz
[  176.271643][   T25] usb 2-1: SerialNumber: syz
[  176.277028][  T970] usb 4-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[  176.286204][  T970] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105
[  176.294511][  T970] usb 4-1: SerialNumber: syz
[  176.312529][    T9] keytouch 0003:0926:3333.0002: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0
[  176.316792][  T970] usb 4-1: config 0 descriptor??
[  176.351845][  T970] usb 4-1: Found UVC 0.00 device <unnamed> (05ac:8501)
[  176.360041][  T970] uvcvideo 4-1:0.0: Entity type for entity Output 255 was not initialized!
[  176.369979][  T970] usb 4-1: Failed to create links for entity 255
[  176.376931][  T970] usb 4-1: Failed to register entities (-22).
[  176.690819][   T25] usb 2-1: USB disconnect, device number 8
[  177.350903][   T25] usb 4-1: USB disconnect, device number 7
[  177.416643][ T5911] usb 3-1: USB disconnect, device number 4
[  178.153641][ T5911] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  178.333567][ T5911] usb 5-1: Using ep0 maxpacket: 8
[  178.347698][ T5911] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  178.358827][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  178.358841][   T29] audit: type=1400 audit(1733772350.100:328): avc:  denied  { sqpoll } for  pid=7323 comm="syz.1.408" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  178.387810][ T7324] PKCS7: Unknown OID: [4] 2.19.13055.170809666(bad)
[  178.394949][ T5911] usb 5-1: config 0 has no interface number 0
[  178.401394][ T5911] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 17257, setting to 1024
[  178.413014][ T7324] PKCS7: Only support pkcs7_signedData type
[  178.420507][ T5911] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  178.435792][ T5911] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.448149][ T5911] usb 5-1: config 0 descriptor??
[  178.461983][ T5911] iowarrior 5-1:0.1: no interrupt-in endpoint found
[  178.667075][   T47] usb 5-1: USB disconnect, device number 4
[  179.369838][   T29] audit: type=1400 audit(1733772351.100:329): avc:  denied  { search } for  pid=5173 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  179.415567][   T25] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  179.493615][  T970] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  179.573775][   T25] usb 2-1: Using ep0 maxpacket: 8
[  179.592390][   T25] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.603574][   T25] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  179.615166][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[  179.626079][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  179.635900][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  179.659957][   T25] usb 2-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  179.669202][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  179.677462][   T25] usb 2-1: Product: syz
[  179.681729][   T25] usb 2-1: Manufacturer: syz
[  179.686506][   T25] usb 2-1: SerialNumber: syz
[  179.697522][  T970] usb 3-1: Using ep0 maxpacket: 32
[  179.711108][   T25] usb 2-1: config 0 descriptor??
[  179.741820][  T970] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.759215][  T970] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  179.768471][  T970] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.776780][  T970] usb 3-1: Product: syz
[  179.781057][  T970] usb 3-1: Manufacturer: syz
[  179.823497][  T970] usb 3-1: SerialNumber: syz
[  179.842840][  T970] usb 3-1: config 0 descriptor??
[  179.850115][  T970] usb 3-1: bad CDC descriptors
[  179.856565][  T970] usb 3-1: unsupported MDLM descriptors
[  180.126454][   T25] radio-si470x 2-1:0.0: si470x_get_report: usb_control_msg returned -71
[  180.149196][   T25] radio-si470x 2-1:0.0: probe with driver radio-si470x failed with error -5
[  180.177664][   T25] usb 2-1: USB disconnect, device number 9
[  180.628261][    T9] usb 3-1: USB disconnect, device number 5
[  180.636113][ T7349] FAULT_INJECTION: forcing a failure.
[  180.636113][ T7349] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.649297][ T7349] CPU: 1 UID: 0 PID: 7349 Comm: syz.4.415 Not tainted 6.13.0-rc2-syzkaller #0
[  180.658169][ T7349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  180.668240][ T7349] Call Trace:
[  180.671529][ T7349]  <TASK>
[  180.674471][ T7349]  dump_stack_lvl+0x16c/0x1f0
[  180.679173][ T7349]  should_fail_ex+0x497/0x5b0
[  180.683881][ T7349]  _copy_to_user+0x32/0xd0
[  180.688327][ T7349]  simple_read_from_buffer+0xd0/0x160
[  180.693731][ T7349]  proc_fail_nth_read+0x198/0x270
[  180.698791][ T7349]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  180.703624][   T29] audit: type=1400 audit(1733772352.420:330): avc:  denied  { mount } for  pid=7348 comm="syz.4.415" name="/" dev="ramfs" ino=15515 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  180.704350][ T7349]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  180.731964][ T7349]  vfs_read+0x1df/0xbe0
[  180.736124][ T7349]  ? __fget_files+0x1fc/0x3a0
[  180.740782][ T7349]  ? __pfx___mutex_lock+0x10/0x10
[  180.745787][ T7349]  ? __pfx_vfs_read+0x10/0x10
[  180.750456][ T7349]  ? __fget_files+0x206/0x3a0
[  180.755117][ T7349]  ksys_read+0x12b/0x250
[  180.759338][ T7349]  ? __pfx_ksys_read+0x10/0x10
[  180.764082][ T7349]  do_syscall_64+0xcd/0x250
[  180.768572][ T7349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.774447][ T7349] RIP: 0033:0x7ff7fe37e8ec
[  180.778842][ T7349] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  180.798443][ T7349] RSP: 002b:00007ff7ff11f050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  180.806857][ T7349] RAX: ffffffffffffffda RBX: 00007ff7fe545fa0 RCX: 00007ff7fe37e8ec
[  180.814821][ T7349] RDX: 000000000000000f RSI: 00007ff7ff11f0b0 RDI: 000000000000000a
[  180.822771][ T7349] RBP: 00007ff7ff11f0a0 R08: 0000000000000000 R09: 0000000000000000
[  180.830720][ T7349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.838679][ T7349] R13: 0000000000000000 R14: 00007ff7fe545fa0 R15: 00007ffe37cb51d8
[  180.846639][ T7349]  </TASK>
[  181.055859][   T29] audit: type=1400 audit(1733772352.790:331): avc:  denied  { create } for  pid=7353 comm="syz.0.416" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  181.379094][   T29] audit: type=1400 audit(1733772353.110:332): avc:  denied  { ioctl } for  pid=7357 comm="syz.1.418" path="socket:[14720]" dev="sockfs" ino=14720 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  181.417835][   T54] Bluetooth: hci1: command 0x0406 tx timeout
[  181.417909][ T5829] Bluetooth: hci4: command 0x0405 tx timeout
[  181.427424][   T54] Bluetooth: hci2: command 0x0406 tx timeout
[  181.430235][ T5137] Bluetooth: hci3: command 0x0406 tx timeout
[  181.653810][   T25] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  181.793514][   T25] usb 2-1: device descriptor read/64, error -71
[  181.841086][   T29] audit: type=1400 audit(1733772353.570:333): avc:  denied  { bind } for  pid=7364 comm="syz.2.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  181.896081][   T29] audit: type=1400 audit(1733772353.570:334): avc:  denied  { name_bind } for  pid=7364 comm="syz.2.422" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  181.934081][    T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  182.087518][   T25] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  182.113974][   T29] audit: type=1400 audit(1733772353.570:335): avc:  denied  { node_bind } for  pid=7364 comm="syz.2.422" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  182.159412][    T9] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  182.175065][    T9] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  182.184951][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  182.193522][    T9] usb 5-1: SerialNumber: syz
[  182.214672][    T9] usb 5-1: bad CDC descriptors
[  182.253593][   T25] usb 2-1: device descriptor read/64, error -71
[  182.383789][   T25] usb usb2-port1: attempt power cycle
[  182.753855][   T25] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  183.072727][   T25] usb 2-1: device descriptor read/8, error -71
[  183.363659][   T25] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  183.413767][   T25] usb 2-1: device descriptor read/8, error -71
[  183.464665][    T9] usb 5-1: USB disconnect, device number 5
[  183.565107][   T25] usb usb2-port1: unable to enumerate USB device
[  183.738549][ T7387] FAULT_INJECTION: forcing a failure.
[  183.738549][ T7387] name failslab, interval 1, probability 0, space 0, times 0
[  183.751477][ T7387] CPU: 0 UID: 0 PID: 7387 Comm: syz.0.427 Not tainted 6.13.0-rc2-syzkaller #0
[  183.760321][ T7387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  183.770365][ T7387] Call Trace:
[  183.773631][ T7387]  <TASK>
[  183.776558][ T7387]  dump_stack_lvl+0x16c/0x1f0
[  183.781220][ T7387]  should_fail_ex+0x497/0x5b0
[  183.785875][ T7387]  ? fs_reclaim_acquire+0xae/0x150
[  183.790974][ T7387]  should_failslab+0xc2/0x120
[  183.795630][ T7387]  __kmalloc_noprof+0xcb/0x510
[  183.800376][ T7387]  alloc_pipe_info+0x1ec/0x590
[  183.803603][   T29] audit: type=1400 audit(1733772355.470:336): avc:  denied  { read write } for  pid=7385 comm="syz.0.427" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  183.805119][ T7387]  splice_direct_to_actor+0x793/0xa40
[  183.805150][ T7387]  ? __pfx_direct_splice_actor+0x10/0x10
[  183.838994][ T7387]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  183.844878][ T7387]  ? __pfx___might_resched+0x10/0x10
[  183.850163][ T7387]  do_splice_direct+0x178/0x250
[  183.854996][ T7387]  ? __pfx_do_splice_direct+0x10/0x10
[  183.860349][ T7387]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  183.866236][ T7387]  ? bpf_lsm_file_permission+0x9/0x10
[  183.871670][ T7387]  ? security_file_permission+0x71/0x210
[  183.877310][ T7387]  do_sendfile+0xaed/0xe30
[  183.881727][ T7387]  ? __pfx_do_sendfile+0x10/0x10
[  183.886647][ T7387]  ? preempt_schedule_thunk+0x1a/0x30
[  183.891999][ T7387]  ? fput+0x67/0x440
[  183.895892][ T7387]  __x64_sys_sendfile64+0x1da/0x220
[  183.901069][ T7387]  ? ksys_write+0x1ba/0x250
[  183.905548][ T7387]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  183.911260][ T7387]  do_syscall_64+0xcd/0x250
[  183.915746][ T7387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.921636][ T7387] RIP: 0033:0x7f38fb97fed9
[  183.926030][ T7387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.945618][ T7387] RSP: 002b:00007f38fc765058 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  183.954008][ T7387] RAX: ffffffffffffffda RBX: 00007f38fbb46080 RCX: 00007f38fb97fed9
[  183.961956][ T7387] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005
[  183.969904][ T7387] RBP: 00007f38fc7650a0 R08: 0000000000000000 R09: 0000000000000000
[  183.977852][ T7387] R10: 000020000000003f R11: 0000000000000246 R12: 0000000000000001
[  183.985799][ T7387] R13: 0000000000000000 R14: 00007f38fbb46080 R15: 00007ffecd750c88
[  183.993768][ T7387]  </TASK>
[  184.078104][   T29] audit: type=1400 audit(1733772355.470:337): avc:  denied  { open } for  pid=7385 comm="syz.0.427" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  184.943538][   T25] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  185.125785][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  185.136971][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  185.150347][   T25] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  185.159795][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.197688][   T25] usb 2-1: config 0 descriptor??
[  185.683877][ T7407] binder: 7404:7407 ioctl c0306201 0 returned -14
[  185.984937][   T25] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  186.118366][   T25] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  186.118691][ T7409] FAULT_INJECTION: forcing a failure.
[  186.118691][ T7409] name failslab, interval 1, probability 0, space 0, times 0
[  186.139048][ T7409] CPU: 0 UID: 0 PID: 7409 Comm: syz.2.434 Not tainted 6.13.0-rc2-syzkaller #0
[  186.148003][ T7409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  186.158048][ T7409] Call Trace:
[  186.161314][ T7409]  <TASK>
[  186.164231][ T7409]  dump_stack_lvl+0x16c/0x1f0
[  186.168904][ T7409]  should_fail_ex+0x497/0x5b0
[  186.173580][ T7409]  should_failslab+0xc2/0x120
[  186.178248][ T7409]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  186.183619][ T7409]  ? skb_clone+0x190/0x3f0
[  186.188029][ T7409]  skb_clone+0x190/0x3f0
[  186.192255][ T7409]  netlink_deliver_tap+0xabd/0xd30
[  186.197362][ T7409]  netlink_unicast+0x5e1/0x7f0
[  186.202121][ T7409]  ? __pfx_netlink_unicast+0x10/0x10
[  186.207411][ T7409]  netlink_sendmsg+0x8b8/0xd70
[  186.212176][ T7409]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.217464][ T7409]  ____sys_sendmsg+0xaaf/0xc90
[  186.222236][ T7409]  ? copy_msghdr_from_user+0x10b/0x160
[  186.227692][ T7409]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.232975][ T7409]  ___sys_sendmsg+0x135/0x1e0
[  186.237647][ T7409]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.242848][ T7409]  ? __pfx_lock_release+0x10/0x10
[  186.247880][ T7409]  ? trace_lock_acquire+0x14e/0x1f0
[  186.253078][ T7409]  ? __fget_files+0x206/0x3a0
[  186.257747][ T7409]  __sys_sendmsg+0x16e/0x220
[  186.262332][ T7409]  ? __pfx___sys_sendmsg+0x10/0x10
[  186.267472][ T7409]  do_syscall_64+0xcd/0x250
[  186.271969][ T7409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.277855][ T7409] RIP: 0033:0x7efc99d7fed9
[  186.282255][ T7409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.301852][ T7409] RSP: 002b:00007efc9abd5058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  186.310276][ T7409] RAX: ffffffffffffffda RBX: 00007efc99f45fa0 RCX: 00007efc99d7fed9
[  186.318236][ T7409] RDX: 0000000000040020 RSI: 0000000020000200 RDI: 0000000000000003
[  186.326211][ T7409] RBP: 00007efc9abd50a0 R08: 0000000000000000 R09: 0000000000000000
[  186.334167][ T7409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.342122][ T7409] R13: 0000000000000000 R14: 00007efc99f45fa0 R15: 00007ffe6649ad58
[  186.350089][ T7409]  </TASK>
[  186.382145][ T7409] netlink: 24 bytes leftover after parsing attributes in process `syz.2.434'.
[  186.458334][   T25] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  186.488241][   T25] usb 2-1: USB disconnect, device number 14
[  186.547689][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  187.669319][   T29] audit: type=1400 audit(1733772359.400:338): avc:  denied  { bind } for  pid=7412 comm="syz.2.436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  187.752927][ T7416] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  187.753503][   T29] audit: type=1400 audit(1733772359.460:339): avc:  denied  { setopt } for  pid=7412 comm="syz.2.436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  188.187527][   T29] audit: type=1400 audit(1733772359.850:340): avc:  denied  { search } for  pid=5485 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  188.227949][   T29] audit: type=1326 audit(1733772359.920:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7417 comm="syz.0.438" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f38fb97fed9 code=0x0
[  188.280569][   T29] audit: type=1400 audit(1733772359.960:342): avc:  denied  { read } for  pid=5485 comm="dhcpcd" name="n101" dev="tmpfs" ino=3661 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  188.353566][   T29] audit: type=1400 audit(1733772359.960:343): avc:  denied  { open } for  pid=5485 comm="dhcpcd" path="/run/udev/data/n101" dev="tmpfs" ino=3661 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  188.382734][   T29] audit: type=1400 audit(1733772359.960:344): avc:  denied  { getattr } for  pid=5485 comm="dhcpcd" path="/run/udev/data/n101" dev="tmpfs" ino=3661 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  188.433930][   T29] audit: type=1400 audit(1733772360.120:345): avc:  denied  { read } for  pid=7432 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=1706 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  188.457026][ T5871] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  188.473529][ T7427] kvm: pic: non byte write
[  188.623640][   T25] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  188.638227][ T5871] usb 5-1: config 0 has an invalid interface number: 189 but max is 0
[  188.656069][ T5871] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  188.670115][ T5871] usb 5-1: config 0 has no interface number 0
[  188.676758][ T5871] usb 5-1: config 0 interface 189 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  188.717715][ T5871] usb 5-1: New USB device found, idVendor=07b4, idProduct=01f0, bcdDevice= 1.02
[  188.737500][ T5871] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.746317][ T5871] usb 5-1: Product: syz
[  188.770870][ T5871] usb 5-1: Manufacturer: syz
[  188.782678][ T5871] usb 5-1: SerialNumber: syz
[  188.789878][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.800971][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.812770][ T5871] usb 5-1: config 0 descriptor??
[  188.821699][   T25] usb 3-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00
[  188.841781][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.865215][   T25] usb 3-1: config 0 descriptor??
[  189.059868][ T7420] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  189.151423][ T7420] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  189.225694][ T7420] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  189.243789][ T7420] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  189.382290][    T8] usb 5-1: USB disconnect, device number 6
[  189.680331][ T7473] audit_log_lost: 9 callbacks suppressed
[  189.680365][ T7473] audit: audit_lost=2 audit_rate_limit=0 audit_backlog_limit=64
[  189.704751][   T25] hid (null): global environment stack underflow
[  189.718016][   T25] uclogic 0003:5543:0522.0004: global environment stack underflow
[  189.726730][   T25] uclogic 0003:5543:0522.0004: item 0 1 1 11 parsing failed
[  189.739641][   T25] uclogic 0003:5543:0522.0004: parse failed
[  189.745888][ T7473] audit: out of memory in audit_log_start
[  189.751985][   T25] uclogic 0003:5543:0522.0004: probe with driver uclogic failed with error -22
[  189.853654][ T5871] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  190.016940][ T5871] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 5
[  190.028366][ T7491] netlink: 'syz.1.447': attribute type 1 has an invalid length.
[  190.036340][ T5871] usb 4-1: config 0 has no interface number 0
[  190.047606][ T5871] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.062539][ T5871] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 58112, setting to 1024
[  190.100109][ T5871] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  190.159072][ T5871] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.204487][ T5871] usb 4-1: config 0 descriptor??
[  190.265317][ T7509] FAULT_INJECTION: forcing a failure.
[  190.265317][ T7509] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.306620][ T7502] ptrace attach of "./syz-executor exec"[7510] was attempted by "./syz-executor exec"[7502]
[  190.312662][ T7509] CPU: 0 UID: 0 PID: 7509 Comm: syz.4.450 Not tainted 6.13.0-rc2-syzkaller #0
[  190.325574][ T7509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  190.335646][ T7509] Call Trace:
[  190.338927][ T7509]  <TASK>
[  190.341855][ T7509]  dump_stack_lvl+0x16c/0x1f0
[  190.346540][ T7509]  should_fail_ex+0x497/0x5b0
[  190.351220][ T7509]  _copy_to_user+0x32/0xd0
[  190.355637][ T7509]  simple_read_from_buffer+0xd0/0x160
[  190.361004][ T7509]  proc_fail_nth_read+0x198/0x270
[  190.366023][ T7509]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  190.371562][ T7509]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  190.377100][ T7509]  vfs_read+0x1df/0xbe0
[  190.381269][ T7509]  ? __fget_files+0x1fc/0x3a0
[  190.385964][ T7509]  ? __pfx___mutex_lock+0x10/0x10
[  190.391008][ T7509]  ? __pfx_vfs_read+0x10/0x10
[  190.395680][ T7509]  ? __fget_files+0x206/0x3a0
[  190.400349][ T7509]  ksys_read+0x12b/0x250
[  190.404588][ T7509]  ? __pfx_ksys_read+0x10/0x10
[  190.409345][ T7509]  do_syscall_64+0xcd/0x250
[  190.413853][ T7509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.419772][ T7509] RIP: 0033:0x7ff7fe37e8ec
[  190.424185][ T7509] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  190.443802][ T7509] RSP: 002b:00007ff7ff11f050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  190.452216][ T7509] RAX: ffffffffffffffda RBX: 00007ff7fe545fa0 RCX: 00007ff7fe37e8ec
[  190.460527][ T7509] RDX: 000000000000000f RSI: 00007ff7ff11f0b0 RDI: 0000000000000004
[  190.468486][ T7509] RBP: 00007ff7ff11f0a0 R08: 0000000000000000 R09: 0000000000000000
[  190.476444][ T7509] R10: 0000000000000fff R11: 0000000000000246 R12: 0000000000000001
[  190.484488][ T7509] R13: 0000000000000000 R14: 00007ff7fe545fa0 R15: 00007ffe37cb51d8
[  190.492458][ T7509]  </TASK>
[  190.514946][ T5871] uclogic 0003:256C:006D.0005: No inputs registered, leaving
[  190.535061][ T5871] uclogic 0003:256C:006D.0005: hidraw0: USB HID v0.00 Device [HID 256c:006d] on usb-dummy_hcd.3-1/input1
[  190.581245][   T25] usb 4-1: USB disconnect, device number 8
[  190.958882][   T29] audit: type=1400 audit(1733772362.660:355): avc:  denied  { write } for  pid=7526 comm="syz.0.453" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  191.102389][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  191.409992][ T7535] netlink: 8 bytes leftover after parsing attributes in process `syz.0.455'.
[  191.451697][ T7535] netlink: 12 bytes leftover after parsing attributes in process `syz.0.455'.
[  191.577183][    T9] usb 3-1: USB disconnect, device number 6
[  191.577645][   T29] audit: type=1400 audit(1733772363.310:356): avc:  denied  { setopt } for  pid=7537 comm="syz.1.457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  191.674146][   T29] audit: type=1400 audit(1733772363.370:357): avc:  denied  { bind } for  pid=7537 comm="syz.1.457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  191.820699][   T29] audit: type=1400 audit(1733772363.370:358): avc:  denied  { create } for  pid=7537 comm="syz.1.457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  191.923608][   T25] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  191.974347][   T29] audit: type=1400 audit(1733772363.380:359): avc:  denied  { setopt } for  pid=7537 comm="syz.1.457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  192.203587][   T25] usb 2-1: Using ep0 maxpacket: 32
[  192.241062][   T25] usb 2-1: config 3 has an invalid interface number: 116 but max is 1
[  192.352746][   T25] usb 2-1: config 3 has an invalid interface number: 72 but max is 1
[  192.390880][   T25] usb 2-1: config 3 contains an unexpected descriptor of type 0x2, skipping
[  192.429661][   T25] usb 2-1: config 3 contains an unexpected descriptor of type 0x2, skipping
[  192.479737][   T25] usb 2-1: config 3 has no interface number 0
[  192.494096][   T25] usb 2-1: config 3 has no interface number 1
[  192.510428][   T25] usb 2-1: config 3 interface 116 altsetting 127 has an endpoint descriptor with address 0x12, changing to 0x2
[  192.547365][   T25] usb 2-1: config 3 interface 116 altsetting 127 endpoint 0x2 has invalid maxpacket 1023, setting to 64
[  192.680438][   T25] usb 2-1: config 3 interface 116 altsetting 127 has an invalid descriptor for endpoint zero, skipping
[  192.763704][   T25] usb 2-1: config 3 interface 116 altsetting 127 endpoint 0x5 has invalid maxpacket 7928, setting to 64
[  192.837857][   T25] usb 2-1: config 3 interface 116 altsetting 127 endpoint 0x7 has invalid maxpacket 512, setting to 64
[  192.903518][   T25] usb 2-1: config 3 interface 116 altsetting 127 has a duplicate endpoint with address 0x5, skipping
[  193.010093][   T25] usb 2-1: config 3 interface 116 altsetting 127 has an invalid descriptor for endpoint zero, skipping
[  193.054858][   T29] audit: type=1326 audit(1733772364.770:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7545 comm="syz.2.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  193.092743][   T25] usb 2-1: config 3 interface 116 altsetting 127 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  193.197787][   T25] usb 2-1: config 3 interface 116 altsetting 127 has a duplicate endpoint with address 0x3, skipping
[  193.237456][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0xB, skipping
[  193.260853][   T29] audit: type=1326 audit(1733772364.770:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7545 comm="syz.2.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  193.593837][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0x5, skipping
[  193.604764][   T25] usb 2-1: config 3 interface 72 altsetting 3 endpoint 0xC has invalid maxpacket 1023, setting to 64
[  193.618132][   T25] usb 2-1: config 3 interface 72 altsetting 3 endpoint 0x1 has invalid maxpacket 1023, setting to 64
[  193.629121][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0x2, skipping
[  193.683946][   T29] audit: type=1326 audit(1733772364.770:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7545 comm="syz.2.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  193.757138][   T25] usb 2-1: config 3 interface 72 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  193.796091][ T7551] netlink: 20 bytes leftover after parsing attributes in process `syz.0.460'.
[  193.808403][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0x5, skipping
[  193.867868][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0x2, skipping
[  193.927066][ T7551] trusted_key: encrypted_key: insufficient parameters specified
[  193.946876][   T25] usb 2-1: config 3 interface 72 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  194.013488][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0x5, skipping
[  194.093995][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0x9, skipping
[  194.153486][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  194.217145][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  194.243841][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  194.283498][   T25] usb 2-1: config 3 interface 72 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  194.313508][   T25] usb 2-1: config 3 interface 116 has no altsetting 0
[  194.320326][   T25] usb 2-1: config 3 interface 72 has no altsetting 0
[  194.460456][ T7564] FAULT_INJECTION: forcing a failure.
[  194.460456][ T7564] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.533053][ T7565] netlink: 'syz.0.463': attribute type 10 has an invalid length.
[  194.561967][ T7564] CPU: 0 UID: 0 PID: 7564 Comm: syz.4.464 Not tainted 6.13.0-rc2-syzkaller #0
[  194.570866][ T7564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  194.580949][ T7564] Call Trace:
[  194.584227][ T7564]  <TASK>
[  194.587163][ T7564]  dump_stack_lvl+0x16c/0x1f0
[  194.591852][ T7564]  should_fail_ex+0x497/0x5b0
[  194.596546][ T7564]  _copy_to_user+0x32/0xd0
[  194.600976][ T7564]  simple_read_from_buffer+0xd0/0x160
[  194.606459][ T7564]  proc_fail_nth_read+0x198/0x270
[  194.611514][ T7564]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  194.617085][ T7564]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  194.622642][ T7564]  vfs_read+0x1df/0xbe0
[  194.626800][ T7564]  ? __fget_files+0x1fc/0x3a0
[  194.631480][ T7564]  ? __pfx___mutex_lock+0x10/0x10
[  194.636515][ T7564]  ? __pfx_vfs_read+0x10/0x10
[  194.641201][ T7564]  ? __fget_files+0x206/0x3a0
[  194.645889][ T7564]  ksys_read+0x12b/0x250
[  194.650132][ T7564]  ? __pfx_ksys_read+0x10/0x10
[  194.654903][ T7564]  do_syscall_64+0xcd/0x250
[  194.659416][ T7564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.665314][ T7564] RIP: 0033:0x7ff7fe37e8ec
[  194.669757][ T7564] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  194.689369][ T7564] RSP: 002b:00007ff7ff0fe050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  194.697794][ T7564] RAX: ffffffffffffffda RBX: 00007ff7fe546080 RCX: 00007ff7fe37e8ec
[  194.705765][ T7564] RDX: 000000000000000f RSI: 00007ff7ff0fe0b0 RDI: 0000000000000004
[  194.713737][ T7564] RBP: 00007ff7ff0fe0a0 R08: 0000000000000000 R09: 0000000000000000
[  194.721792][ T7564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.729764][ T7564] R13: 0000000000000000 R14: 00007ff7fe546080 R15: 00007ffe37cb51d8
[  194.737749][ T7564]  </TASK>
[  195.586574][ T7565] syz_tun: entered promiscuous mode
[  195.680142][ T7565] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  195.733626][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  196.074650][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  196.074666][   T29] audit: type=1400 audit(1733772367.760:368): avc:  denied  { mount } for  pid=7559 comm="syz.4.464" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  196.081210][   T25] usb 2-1: string descriptor 0 read error: -71
[  196.112450][   T25] usb 2-1: New USB device found, idVendor=046d, idProduct=08c5, bcdDevice=75.6f
[  196.121592][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.167815][   T25] usb 2-1: can't set config #3, error -71
[  196.182816][   T25] usb 2-1: USB disconnect, device number 15
[  196.201531][   T29] audit: type=1400 audit(1733772367.900:369): avc:  denied  { unmount } for  pid=5813 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  196.250356][ T7575] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  196.320649][   T29] audit: type=1326 audit(1733772368.050:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7579 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe37fed9 code=0x7ffc0000
[  196.347243][   T29] audit: type=1326 audit(1733772368.050:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7579 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe37fed9 code=0x7ffc0000
[  196.371367][   T29] audit: type=1326 audit(1733772368.050:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7579 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7ff7fe37fed9 code=0x7ffc0000
[  196.830861][   T29] audit: type=1326 audit(1733772368.050:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7579 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe37fed9 code=0x7ffc0000
[  196.855353][   T29] audit: type=1326 audit(1733772368.050:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7579 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7ff7fe37e8ec code=0x7ffc0000
[  196.879004][   T29] audit: type=1326 audit(1733772368.050:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7579 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe37fed9 code=0x7ffc0000
[  196.884102][ T7575] trusted_key: encrypted_key: insufficient parameters specified
[  196.902580][   T29] audit: type=1326 audit(1733772368.050:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7579 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7ff7fe37fed9 code=0x7ffc0000
[  196.980164][   T29] audit: type=1326 audit(1733772368.710:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7579 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe37fed9 code=0x7ffc0000
[  198.722498][ T7612] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  198.888575][ T7615] netlink: 20 bytes leftover after parsing attributes in process `syz.1.481'.
[  198.958982][ T7618] netlink: 20 bytes leftover after parsing attributes in process `syz.1.481'.
[  200.566996][ T7646] FAULT_INJECTION: forcing a failure.
[  200.566996][ T7646] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  200.580223][ T7646] CPU: 1 UID: 0 PID: 7646 Comm: syz.3.490 Not tainted 6.13.0-rc2-syzkaller #0
[  200.589087][ T7646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  200.599132][ T7646] Call Trace:
[  200.602396][ T7646]  <TASK>
[  200.605316][ T7646]  dump_stack_lvl+0x16c/0x1f0
[  200.610005][ T7646]  should_fail_ex+0x497/0x5b0
[  200.614678][ T7646]  _copy_to_user+0x32/0xd0
[  200.619090][ T7646]  simple_read_from_buffer+0xd0/0x160
[  200.624456][ T7646]  proc_fail_nth_read+0x198/0x270
[  200.629472][ T7646]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.635014][ T7646]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.640552][ T7646]  vfs_read+0x1df/0xbe0
[  200.644695][ T7646]  ? __fget_files+0x1fc/0x3a0
[  200.649360][ T7646]  ? __pfx___mutex_lock+0x10/0x10
[  200.654377][ T7646]  ? __pfx_vfs_read+0x10/0x10
[  200.659042][ T7646]  ? __fget_files+0x206/0x3a0
[  200.663714][ T7646]  ksys_read+0x12b/0x250
[  200.667943][ T7646]  ? __pfx_ksys_read+0x10/0x10
[  200.672697][ T7646]  do_syscall_64+0xcd/0x250
[  200.677193][ T7646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.683090][ T7646] RIP: 0033:0x7f41a917e8ec
[  200.687490][ T7646] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  200.707106][ T7646] RSP: 002b:00007f41a9ed8050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  200.715511][ T7646] RAX: ffffffffffffffda RBX: 00007f41a9346080 RCX: 00007f41a917e8ec
[  200.723467][ T7646] RDX: 000000000000000f RSI: 00007f41a9ed80b0 RDI: 0000000000000009
[  200.731423][ T7646] RBP: 00007f41a9ed80a0 R08: 0000000000000000 R09: 0000000000000000
[  200.739381][ T7646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  200.747352][ T7646] R13: 0000000000000000 R14: 00007f41a9346080 R15: 00007ffd1a91ea88
[  200.755318][ T7646]  </TASK>
[  200.934791][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  200.995172][ T7647] netlink: 20 bytes leftover after parsing attributes in process `syz.2.489'.
[  201.009836][ T7649] process 'syz.4.491' launched '/dev/fd/3' with NULL argv: empty string added
[  201.112566][ T7657] trusted_key: encrypted_key: insufficient parameters specified
[  201.246718][ T7663] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  201.498010][ T7658] trusted_key: encrypted_key: insufficient parameters specified
[  201.990406][  T970] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  202.263596][  T970] usb 5-1: Using ep0 maxpacket: 8
[  202.277773][  T970] usb 5-1: config 1 interface 0 has no altsetting 0
[  202.290769][  T970] usb 5-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.40
[  202.315816][  T970] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.326444][  T970] usb 5-1: Product: syz
[  202.330630][  T970] usb 5-1: Manufacturer: syz
[  202.335753][  T970] usb 5-1: SerialNumber: syz
[  202.578220][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  202.578238][   T29] audit: type=1400 audit(1733772374.310:385): avc:  denied  { watch watch_reads } for  pid=7682 comm="syz.2.502" path="/103" dev="tmpfs" ino=561 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  202.621490][  T970] usbhid 5-1:1.0: can't add hid device: -71
[  202.634637][  T970] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  202.728143][  T970] usb 5-1: USB disconnect, device number 7
[  203.574304][   T29] audit: type=1400 audit(1733772375.240:386): avc:  denied  { shutdown } for  pid=7702 comm="syz.2.508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  204.778624][ T7721] FAULT_INJECTION: forcing a failure.
[  204.778624][ T7721] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  204.798577][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  204.805925][ T7721] CPU: 0 UID: 0 PID: 7721 Comm: syz.3.513 Not tainted 6.13.0-rc2-syzkaller #0
[  204.814783][ T7721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  204.823586][   T29] audit: type=1400 audit(1733772376.540:387): avc:  denied  { create } for  pid=7722 comm="syz.1.514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  204.824831][ T7721] Call Trace:
[  204.824841][ T7721]  <TASK>
[  204.850428][ T7721]  dump_stack_lvl+0x16c/0x1f0
[  204.855089][ T7721]  should_fail_ex+0x497/0x5b0
[  204.859791][ T7721]  _copy_from_iter+0x2a1/0x1560
[  204.864629][ T7721]  ? trace_lock_acquire+0x14e/0x1f0
[  204.869840][ T7721]  ? __alloc_skb+0x1fe/0x380
[  204.874418][ T7721]  ? __pfx__copy_from_iter+0x10/0x10
[  204.879685][ T7721]  ? __virt_addr_valid+0x1a4/0x590
[  204.884778][ T7721]  ? __virt_addr_valid+0x5e/0x590
[  204.889778][ T7721]  ? __phys_addr_symbol+0x30/0x80
[  204.894778][ T7721]  ? __check_object_size+0x488/0x710
[  204.900051][ T7721]  netlink_sendmsg+0x813/0xd70
[  204.904793][ T7721]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.910059][ T7721]  ____sys_sendmsg+0xaaf/0xc90
[  204.914798][ T7721]  ? copy_msghdr_from_user+0x10b/0x160
[  204.920235][ T7721]  ? __pfx_____sys_sendmsg+0x10/0x10
[  204.925501][ T7721]  ___sys_sendmsg+0x135/0x1e0
[  204.930157][ T7721]  ? __pfx____sys_sendmsg+0x10/0x10
[  204.935341][ T7721]  ? __pfx_lock_release+0x10/0x10
[  204.940342][ T7721]  ? trace_lock_acquire+0x14e/0x1f0
[  204.945524][ T7721]  ? __fget_files+0x206/0x3a0
[  204.950178][ T7721]  __sys_sendmsg+0x16e/0x220
[  204.954749][ T7721]  ? __pfx___sys_sendmsg+0x10/0x10
[  204.959845][ T7721]  do_syscall_64+0xcd/0x250
[  204.964325][ T7721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.970194][ T7721] RIP: 0033:0x7f41a917fed9
[  204.974586][ T7721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.994166][ T7721] RSP: 002b:00007f41a9ef9058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  205.002554][ T7721] RAX: ffffffffffffffda RBX: 00007f41a9345fa0 RCX: 00007f41a917fed9
[  205.010501][ T7721] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003
[  205.018447][ T7721] RBP: 00007f41a9ef90a0 R08: 0000000000000000 R09: 0000000000000000
[  205.026392][ T7721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.034340][ T7721] R13: 0000000000000000 R14: 00007f41a9345fa0 R15: 00007ffd1a91ea88
[  205.042293][ T7721]  </TASK>
[  205.088679][ T7723] netlink: 'syz.1.514': attribute type 10 has an invalid length.
[  205.101896][ T7723] team0: Device ipvlan1 failed to register rx_handler
[  205.305775][ T7734] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  205.316880][ T7734] trusted_key: encrypted_key: insufficient parameters specified
[  205.452880][   T29] audit: type=1400 audit(1733772377.180:388): avc:  denied  { ioctl } for  pid=7722 comm="syz.1.514" path="socket:[16623]" dev="sockfs" ino=16623 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  206.695199][ T7759] FAULT_INJECTION: forcing a failure.
[  206.695199][ T7759] name failslab, interval 1, probability 0, space 0, times 0
[  206.708165][ T7759] CPU: 0 UID: 0 PID: 7759 Comm: syz.0.526 Not tainted 6.13.0-rc2-syzkaller #0
[  206.717042][ T7759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  206.727117][ T7759] Call Trace:
[  206.730405][ T7759]  <TASK>
[  206.733340][ T7759]  dump_stack_lvl+0x16c/0x1f0
[  206.738034][ T7759]  should_fail_ex+0x497/0x5b0
[  206.742725][ T7759]  ? fs_reclaim_acquire+0xae/0x150
[  206.747859][ T7759]  should_failslab+0xc2/0x120
[  206.752554][ T7759]  __kmalloc_noprof+0xcb/0x510
[  206.757330][ T7759]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  206.762982][ T7759]  tomoyo_realpath_from_path+0xb9/0x720
[  206.768545][ T7759]  ? tomoyo_path_number_perm+0x235/0x590
[  206.774193][ T7759]  ? tomoyo_path_number_perm+0x235/0x590
[  206.779849][ T7759]  tomoyo_path_number_perm+0x248/0x590
[  206.785319][ T7759]  ? tomoyo_path_number_perm+0x235/0x590
[  206.790963][ T7759]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  206.796981][ T7759]  ? __pfx_lock_release+0x10/0x10
[  206.802041][ T7759]  ? trace_lock_acquire+0x14e/0x1f0
[  206.807260][ T7759]  ? lock_acquire+0x2f/0xb0
[  206.811772][ T7759]  ? __fget_files+0x40/0x3a0
[  206.816377][ T7759]  ? __fget_files+0x206/0x3a0
[  206.821078][ T7759]  security_file_ioctl+0x9b/0x240
[  206.826119][ T7759]  __x64_sys_ioctl+0xb7/0x200
[  206.830816][ T7759]  do_syscall_64+0xcd/0x250
[  206.835336][ T7759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.841237][ T7759] RIP: 0033:0x7f38fb97fed9
[  206.845671][ T7759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.865266][ T7759] RSP: 002b:00007f38fc786058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  206.873683][ T7759] RAX: ffffffffffffffda RBX: 00007f38fbb45fa0 RCX: 00007f38fb97fed9
[  206.881641][ T7759] RDX: 0000000020000080 RSI: 00000000c04c6100 RDI: 0000000000000003
[  206.889614][ T7759] RBP: 00007f38fc7860a0 R08: 0000000000000000 R09: 0000000000000000
[  206.897572][ T7759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.905526][ T7759] R13: 0000000000000000 R14: 00007f38fbb45fa0 R15: 00007ffecd750c88
[  206.913496][ T7759]  </TASK>
[  206.966220][ T7759] ERROR: Out of memory at tomoyo_realpath_from_path.
[  207.357850][ T7767] trusted_key: encrypted_key: insufficient parameters specified
[  208.079848][ T7775] nvme_fabrics: unknown parameter or missing value '0x0000000000000009' in ctrl creation request
[  209.551478][ T7789] netlink: 'syz.3.534': attribute type 10 has an invalid length.
[  209.563061][ T7789] team0: Device ipvlan1 failed to register rx_handler
[  209.783716][   T29] audit: type=1400 audit(1733772381.500:389): avc:  denied  { ioctl } for  pid=7788 comm="syz.3.534" path="socket:[16746]" dev="sockfs" ino=16746 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  210.933692][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  213.203906][ T7856] netlink: 8 bytes leftover after parsing attributes in process `syz.4.557'.
[  213.243733][ T5865] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  213.404084][ T5865] usb 2-1: Using ep0 maxpacket: 16
[  213.412123][ T5865] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  213.431682][ T5865] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  213.442057][ T5865] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.453545][    T8] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  213.477176][ T5865] usb 2-1: Product: syz
[  213.481447][ T5865] usb 2-1: Manufacturer: syz
[  213.488495][ T5865] usb 2-1: SerialNumber: syz
[  213.619371][    T8] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  213.630523][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.640313][    T8] usb 5-1: Product: syz
[  213.646755][    T8] usb 5-1: Manufacturer: syz
[  213.653368][    T8] usb 5-1: SerialNumber: syz
[  213.664907][    T8] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  213.690256][    T9] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  214.371250][ T5911] usb 5-1: USB disconnect, device number 8
[  214.385222][ T5865] cdc_ncm 2-1:1.0: bind() failure
[  214.392778][ T5865] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  214.417965][ T5865] cdc_ncm 2-1:1.1: bind() failure
[  214.429284][ T5865] usb 2-1: USB disconnect, device number 16
[  214.492034][   T29] audit: type=1400 audit(1733772386.220:390): avc:  denied  { create } for  pid=7865 comm="syz.3.560" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  214.521175][ T7866] mkiss: ax0: crc mode is auto.
[  214.545454][   T29] audit: type=1400 audit(1733772386.250:391): avc:  denied  { read write } for  pid=7865 comm="syz.3.560" name="file0" dev="tmpfs" ino=504 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  214.568080][    C0] vkms_vblank_simulate: vblank timer overrun
[  214.723147][   T29] audit: type=1400 audit(1733772386.250:392): avc:  denied  { open } for  pid=7865 comm="syz.3.560" path="/94/file0" dev="tmpfs" ino=504 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  214.900942][    T9] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  214.907980][    T9] ath9k_htc: Failed to initialize the device
[  214.918125][ T5911] usb 5-1: ath9k_htc: USB layer deinitialized
[  215.433576][   T29] audit: type=1400 audit(1733772387.140:393): avc:  denied  { unlink } for  pid=5817 comm="syz-executor" name="file0" dev="tmpfs" ino=504 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  216.103374][   T47] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  216.263569][   T47] usb 4-1: Using ep0 maxpacket: 16
[  216.270382][   T47] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[  216.279273][   T47] usb 4-1: config 0 has no interface number 0
[  216.288018][   T47] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  216.344391][   T47] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  216.944050][   T47] usb 4-1: config 0 interface 41 has no altsetting 0
[  217.004532][   T47] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  217.054932][   T47] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.087454][   T47] usb 4-1: Product: syz
[  217.091874][   T47] usb 4-1: Manufacturer: syz
[  217.096987][   T47] usb 4-1: SerialNumber: syz
[  217.333643][ T7905] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  217.473263][   T47] usb 4-1: config 0 descriptor??
[  217.540918][ T7874] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  217.549079][ T7874] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  217.941690][ T7908] netlink: 'syz.1.574': attribute type 3 has an invalid length.
[  217.961491][ T7874] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  217.968970][ T7874] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  218.180156][ T7916] Invalid logical block size (32)
[  218.635071][   T47] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): sr_get_phy_addr : Error reading PHYID register:ffffffe0
[  218.734203][    T9] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[  219.006165][    T9] usb 5-1: not running at top speed; connect to a high speed hub
[  219.580614][   T47] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): Failed to send software reset:ffffffb9
[  219.591587][   T47] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): Failed to reset PHY: -71
[  219.601168][   T47] CoreChips 4-1:0.41: probe with driver CoreChips failed with error -71
[  219.609270][    T9] usb 5-1: config 1 has an invalid interface number: 63 but max is 1
[  219.620793][   T47] usb 4-1: USB disconnect, device number 9
[  219.637651][    T9] usb 5-1: config 1 has an invalid interface number: 65 but max is 1
[  219.646582][    T9] usb 5-1: config 1 has no interface number 0
[  219.671793][    T9] usb 5-1: config 1 has no interface number 1
[  219.679013][    T9] usb 5-1: config 1 interface 65 altsetting 4 endpoint 0xC has invalid maxpacket 1040, setting to 64
[  219.693970][    T9] usb 5-1: config 1 interface 65 has no altsetting 0
[  219.702333][    T9] usb 5-1: New USB device found, idVendor=0af0, idProduct=6811, bcdDevice=2f.e1
[  219.716774][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.783970][    T9] usb 5-1: Product: syz
[  219.788154][    T9] usb 5-1: Manufacturer: syz
[  219.792723][    T9] usb 5-1: SerialNumber: syz
[  220.837452][ T7957] tipc: Started in network mode
[  220.842534][ T7957] tipc: Node identity 080211000001, cluster identity 4711
[  220.849991][ T7957] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  221.223964][    T9] hso 5-1:1.63: Not our interface
[  221.325307][    T9] hso 5-1:1.65: Not our interface
[  221.368454][    T9] usb 5-1: USB disconnect, device number 9
[  222.056508][   T47] tipc: Node number set to 134418688
[  222.383572][   T29] audit: type=1326 audit(1733772394.080:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  222.408964][   T29] audit: type=1326 audit(1733772394.080:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  222.450344][ T7974] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  222.468253][   T29] audit: type=1326 audit(1733772394.080:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  222.502331][   T29] audit: type=1326 audit(1733772394.080:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f41a917e8ec code=0x7ffc0000
[  222.558221][   T29] audit: type=1326 audit(1733772394.080:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  222.581713][   T29] audit: type=1326 audit(1733772394.080:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  222.605037][   T29] audit: type=1326 audit(1733772394.080:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  222.628386][   T29] audit: type=1326 audit(1733772394.080:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  222.651890][   T29] audit: type=1326 audit(1733772394.080:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  222.675484][   T29] audit: type=1326 audit(1733772394.080:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  223.831986][ T7996] FAULT_INJECTION: forcing a failure.
[  223.831986][ T7996] name failslab, interval 1, probability 0, space 0, times 0
[  223.913474][ T7996] CPU: 0 UID: 0 PID: 7996 Comm: syz.0.600 Not tainted 6.13.0-rc2-syzkaller #0
[  223.922361][ T7996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  223.932399][ T7996] Call Trace:
[  223.935657][ T7996]  <TASK>
[  223.938568][ T7996]  dump_stack_lvl+0x16c/0x1f0
[  223.943227][ T7996]  should_fail_ex+0x497/0x5b0
[  223.947895][ T7996]  should_failslab+0xc2/0x120
[  223.952565][ T7996]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  223.957955][ T7996]  ? skb_clone+0x190/0x3f0
[  223.962362][ T7996]  skb_clone+0x190/0x3f0
[  223.966593][ T7996]  netlink_deliver_tap+0xabd/0xd30
[  223.971699][ T7996]  netlink_unicast+0x5e1/0x7f0
[  223.976455][ T7996]  ? __pfx_netlink_unicast+0x10/0x10
[  223.981736][ T7996]  netlink_sendmsg+0x8b8/0xd70
[  223.986494][ T7996]  ? __pfx_netlink_sendmsg+0x10/0x10
[  223.991775][ T7996]  ____sys_sendmsg+0xaaf/0xc90
[  223.996528][ T7996]  ? copy_msghdr_from_user+0x10b/0x160
[  224.001977][ T7996]  ? __pfx_____sys_sendmsg+0x10/0x10
[  224.007261][ T7996]  ___sys_sendmsg+0x135/0x1e0
[  224.011931][ T7996]  ? __pfx____sys_sendmsg+0x10/0x10
[  224.017142][ T7996]  ? __pfx_lock_release+0x10/0x10
[  224.022152][ T7996]  ? trace_lock_acquire+0x14e/0x1f0
[  224.027351][ T7996]  ? __fget_files+0x206/0x3a0
[  224.032019][ T7996]  __sys_sendmsg+0x16e/0x220
[  224.036603][ T7996]  ? __pfx___sys_sendmsg+0x10/0x10
[  224.041718][ T7996]  do_syscall_64+0xcd/0x250
[  224.046215][ T7996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.052096][ T7996] RIP: 0033:0x7f38fb97fed9
[  224.056495][ T7996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.076091][ T7996] RSP: 002b:00007f38fc786058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  224.084492][ T7996] RAX: ffffffffffffffda RBX: 00007f38fbb45fa0 RCX: 00007f38fb97fed9
[  224.092447][ T7996] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  224.100404][ T7996] RBP: 00007f38fc7860a0 R08: 0000000000000000 R09: 0000000000000000
[  224.108359][ T7996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  224.116315][ T7996] R13: 0000000000000000 R14: 00007f38fbb45fa0 R15: 00007ffecd750c88
[  224.124304][ T7996]  </TASK>
[  225.184243][ T8013] netlink: 'syz.3.606': attribute type 3 has an invalid length.
[  225.191994][ T8013] netlink: 3 bytes leftover after parsing attributes in process `syz.3.606'.
[  225.469092][ T8021] FAULT_INJECTION: forcing a failure.
[  225.469092][ T8021] name failslab, interval 1, probability 0, space 0, times 0
[  225.483530][ T8021] CPU: 0 UID: 0 PID: 8021 Comm: syz.3.607 Not tainted 6.13.0-rc2-syzkaller #0
[  225.492411][ T8021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  225.502457][ T8021] Call Trace:
[  225.505722][ T8021]  <TASK>
[  225.508640][ T8021]  dump_stack_lvl+0x16c/0x1f0
[  225.513311][ T8021]  should_fail_ex+0x497/0x5b0
[  225.517993][ T8021]  ? fs_reclaim_acquire+0xae/0x150
[  225.523122][ T8021]  should_failslab+0xc2/0x120
[  225.527791][ T8021]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  225.533238][ T8021]  ? __kernfs_new_node+0xd3/0x890
[  225.538255][ T8021]  ? queue_limits_commit_update+0x292/0x330
[  225.544160][ T8021]  __kernfs_new_node+0xd3/0x890
[  225.549018][ T8021]  ? __pfx___kernfs_new_node+0x10/0x10
[  225.554476][ T8021]  ? __pfx_loop_reconfigure_limits+0x10/0x10
[  225.560444][ T8021]  ? bdev_mark_dead+0x10f/0x1c0
[  225.565290][ T8021]  kernfs_new_node+0x186/0x240
[  225.570043][ T8021]  kernfs_create_dir_ns+0x4c/0x150
[  225.575142][ T8021]  internal_create_group+0x34e/0xf10
[  225.580419][ T8021]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  225.586389][ T8021]  ? __pfx_internal_create_group+0x10/0x10
[  225.592189][ T8021]  ? filemap_write_and_wait_range+0x7d/0x130
[  225.598163][ T8021]  loop_configure+0x8b1/0x11f0
[  225.602923][ T8021]  lo_ioctl+0xa6a/0x18b0
[  225.607159][ T8021]  ? avc_has_extended_perms+0x902/0xf70
[  225.612700][ T8021]  ? __pfx_lo_ioctl+0x10/0x10
[  225.617367][ T8021]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  225.623256][ T8021]  ? tomoyo_path_number_perm+0x298/0x590
[  225.628876][ T8021]  ? __pfx_lock_release+0x10/0x10
[  225.633898][ T8021]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  225.639780][ T8021]  ? blkdev_common_ioctl+0x1d9/0x2220
[  225.645163][ T8021]  ? __pfx_lock_release+0x10/0x10
[  225.650191][ T8021]  ? __pfx_lo_ioctl+0x10/0x10
[  225.654860][ T8021]  blkdev_ioctl+0x276/0x6d0
[  225.659354][ T8021]  ? __pfx_blkdev_ioctl+0x10/0x10
[  225.664369][ T8021]  ? selinux_file_ioctl+0x180/0x270
[  225.669554][ T8021]  ? selinux_file_ioctl+0xb4/0x270
[  225.674657][ T8021]  ? __pfx_blkdev_ioctl+0x10/0x10
[  225.679673][ T8021]  __x64_sys_ioctl+0x190/0x200
[  225.684449][ T8021]  do_syscall_64+0xcd/0x250
[  225.688947][ T8021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.694830][ T8021] RIP: 0033:0x7f41a917fed9
[  225.699229][ T8021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.718823][ T8021] RSP: 002b:00007f41a9ef9058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  225.727222][ T8021] RAX: ffffffffffffffda RBX: 00007f41a9345fa0 RCX: 00007f41a917fed9
[  225.735180][ T8021] RDX: 0000000020000780 RSI: 0000000000004c0a RDI: 0000000000000003
[  225.743135][ T8021] RBP: 00007f41a9ef90a0 R08: 0000000000000000 R09: 0000000000000000
[  225.751092][ T8021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.759048][ T8021] R13: 0000000000000000 R14: 00007f41a9345fa0 R15: 00007ffd1a91ea88
[  225.767015][ T8021]  </TASK>
[  225.770029][    C0] vkms_vblank_simulate: vblank timer overrun
[  226.753679][ T8021] loop9: detected capacity change from 0 to 7
[  226.814364][ T8021] Dev loop9: unable to read RDB block 7
[  226.980716][ T8021]  loop9: unable to read partition table
[  227.003992][ T8021] loop9: partition table beyond EOD, truncated
[  227.016178][ T8021] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  227.016178][ T8021] 
) failed (rc=-5)
[  227.050439][ T8029] netlink: 4 bytes leftover after parsing attributes in process `syz.1.610'.
[  227.987324][ T8037] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  229.123556][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  229.123576][   T29] audit: type=1400 audit(1733772400.670:412): avc:  denied  { write } for  pid=8035 comm="syz.1.613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  229.167062][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  229.295912][   T29] audit: type=1400 audit(1733772400.920:413): avc:  denied  { listen } for  pid=8034 comm="syz.3.612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  229.576105][ T8054] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  229.586492][ T8056] netlink: 4 bytes leftover after parsing attributes in process `syz.2.617'.
[  230.093618][ T8056] trusted_key: encrypted_key: insufficient parameters specified
[  230.392844][   T29] audit: type=1326 audit(1733772402.120:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8057 comm="syz.3.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  230.421987][   T29] audit: type=1326 audit(1733772402.120:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8057 comm="syz.3.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  230.445766][   T29] audit: type=1326 audit(1733772402.150:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8057 comm="syz.3.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  230.469345][   T29] audit: type=1326 audit(1733772402.150:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8057 comm="syz.3.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  230.501372][   T29] audit: type=1326 audit(1733772402.230:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8057 comm="syz.3.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f41a917e8ec code=0x7ffc0000
[  230.549951][   T29] audit: type=1326 audit(1733772402.230:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8057 comm="syz.3.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  230.601859][   T29] audit: type=1326 audit(1733772402.230:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8057 comm="syz.3.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  230.692246][   T29] audit: type=1326 audit(1733772402.390:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8057 comm="syz.3.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41a917fed9 code=0x7ffc0000
[  231.949838][ T8091] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  231.958876][ T8093] netlink: 4 bytes leftover after parsing attributes in process `syz.2.630'.
[  232.093784][  T970] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  232.267145][ T8093] trusted_key: encrypted_key: insufficient parameters specified
[  232.427331][  T970] usb 5-1: Using ep0 maxpacket: 32
[  232.534479][  T970] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  232.547708][  T970] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[  232.583202][  T970] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 28739, setting to 1024
[  232.630680][  T970] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  232.643498][  T970] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 48932, setting to 1024
[  232.760781][  T970] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  232.819760][  T970] usb 5-1: config 0 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  232.862264][  T970] usb 5-1: New USB device found, idVendor=10cf, idProduct=8067, bcdDevice=2c.27
[  232.872123][  T970] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.901995][  T970] usb 5-1: Product: syz
[  232.906861][  T970] usb 5-1: Manufacturer: syz
[  232.923594][  T970] usb 5-1: SerialNumber: syz
[  232.929909][  T970] usb 5-1: config 0 descriptor??
[  232.944555][ T8088] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  232.952041][ T8088] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  232.968390][  T970] comedi comedi0: driver 'vmk80xx' has successfully auto-configured 'K8061 (VM140)'.
[  232.991379][ T8101] input: syz0 as /devices/virtual/input/input9
[  233.185449][  T970] usb 5-1: USB disconnect, device number 10
[  233.689493][ T8119] FAULT_INJECTION: forcing a failure.
[  233.689493][ T8119] name failslab, interval 1, probability 0, space 0, times 0
[  233.746655][ T8119] CPU: 0 UID: 0 PID: 8119 Comm: syz.1.636 Not tainted 6.13.0-rc2-syzkaller #0
[  233.755635][ T8119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  233.765677][ T8119] Call Trace:
[  233.768940][ T8119]  <TASK>
[  233.771854][ T8119]  dump_stack_lvl+0x16c/0x1f0
[  233.776524][ T8119]  should_fail_ex+0x497/0x5b0
[  233.781197][ T8119]  ? fs_reclaim_acquire+0xae/0x150
[  233.786325][ T8119]  should_failslab+0xc2/0x120
[  233.790992][ T8119]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  233.796354][ T8119]  ? getname_flags.part.0+0x4c/0x550
[  233.801634][ T8119]  getname_flags.part.0+0x4c/0x550
[  233.806737][ T8119]  getname_flags+0x93/0xf0
[  233.811142][ T8119]  user_path_at+0x24/0x60
[  233.815465][ T8119]  __x64_sys_mount+0x1fc/0x320
[  233.820218][ T8119]  ? __pfx___x64_sys_mount+0x10/0x10
[  233.825494][ T8119]  do_syscall_64+0xcd/0x250
[  233.829987][ T8119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.835868][ T8119] RIP: 0033:0x7f238217fed9
[  233.840287][ T8119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.859881][ T8119] RSP: 002b:00007f2382ed1058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  233.868280][ T8119] RAX: ffffffffffffffda RBX: 00007f2382345fa0 RCX: 00007f238217fed9
[  233.876237][ T8119] RDX: 0000000020000040 RSI: 0000000020000140 RDI: 0000000000000000
[  233.884211][ T8119] RBP: 00007f2382ed10a0 R08: 0000000020000200 R09: 0000000000000000
[  233.892171][ T8119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.900130][ T8119] R13: 0000000000000000 R14: 00007f2382345fa0 R15: 00007fff9bf3b4c8
[  233.908100][ T8119]  </TASK>
[  234.013166][ T8121] fuseblk: Bad value for 'fd'
[  234.679629][ T8131] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  234.839839][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  234.839856][   T29] audit: type=1400 audit(1733772406.570:424): avc:  denied  { accept } for  pid=8130 comm="syz.4.641" lport=52943 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  234.913759][   T29] audit: type=1400 audit(1733772406.570:425): avc:  denied  { getopt } for  pid=8130 comm="syz.4.641" lport=52943 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  236.130214][ T8148] fuse: Bad value for 'fd'
[  236.970575][    T9] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  237.267804][    T9] usb 4-1: Using ep0 maxpacket: 32
[  237.275366][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.287787][    T9] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  237.297125][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.305379][    T9] usb 4-1: Product: syz
[  237.309547][    T9] usb 4-1: Manufacturer: syz
[  237.314240][    T9] usb 4-1: SerialNumber: syz
[  237.320459][    T9] usb 4-1: config 0 descriptor??
[  237.327631][    T9] usb 4-1: bad CDC descriptors
[  237.332687][    T9] usb 4-1: unsupported MDLM descriptors
[  237.881036][ T8168] fuseblk: Bad value for 'fd'
[  237.923624][  T970] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  238.037986][   T29] audit: type=1400 audit(1733772409.770:426): avc:  denied  { getopt } for  pid=8145 comm="syz.3.647" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  238.063112][   T29] audit: type=1400 audit(1733772409.800:427): avc:  denied  { accept } for  pid=8145 comm="syz.3.647" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  238.464331][ T8180] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  238.683567][  T970] usb 2-1: Using ep0 maxpacket: 32
[  238.755122][ T5871] usb 4-1: USB disconnect, device number 10
[  238.766949][  T970] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  238.775494][  T970] usb 2-1: config 0 has no interface number 0
[  238.807337][  T970] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  238.828927][  T970] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.850228][  T970] usb 2-1: Product: syz
[  238.856971][   T29] audit: type=1400 audit(1733772410.590:428): avc:  denied  { ioctl } for  pid=8182 comm="syz.0.657" path="/dev/sg0" dev="devtmpfs" ino=749 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  238.863472][  T970] usb 2-1: Manufacturer: syz
[  238.930698][  T970] usb 2-1: SerialNumber: syz
[  238.941838][   T29] audit: type=1400 audit(1733772410.670:429): avc:  denied  { write } for  pid=8184 comm="syz.2.658" path="socket:[18222]" dev="sockfs" ino=18222 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  238.967036][  T970] usb 2-1: config 0 descriptor??
[  238.981548][ T8187] FAULT_INJECTION: forcing a failure.
[  238.981548][ T8187] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  238.982989][  T970] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  239.028807][ T8187] CPU: 1 UID: 0 PID: 8187 Comm: syz.0.659 Not tainted 6.13.0-rc2-syzkaller #0
[  239.037718][ T8187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  239.047793][ T8187] Call Trace:
[  239.051077][ T8187]  <TASK>
[  239.054009][ T8187]  dump_stack_lvl+0x16c/0x1f0
[  239.058699][ T8187]  should_fail_ex+0x497/0x5b0
[  239.063391][ T8187]  _copy_from_user+0x2e/0xd0
[  239.067991][ T8187]  kstrtouint_from_user+0xd7/0x1c0
[  239.073110][ T8187]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  239.078848][ T8187]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  239.084497][ T8187]  proc_fail_nth_write+0x84/0x250
[  239.089548][ T8187]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  239.095196][ T8187]  ? ksys_write+0x12b/0x250
[  239.099711][ T8187]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  239.105357][ T8187]  vfs_write+0x24c/0x1150
[  239.109715][ T8187]  ? __fget_files+0x1fc/0x3a0
[  239.115010][ T8187]  ? __pfx___mutex_lock+0x10/0x10
[  239.120043][ T8187]  ? __pfx_vfs_write+0x10/0x10
[  239.124826][ T8187]  ? __fget_files+0x206/0x3a0
[  239.129519][ T8187]  ksys_write+0x12b/0x250
[  239.133856][ T8187]  ? __pfx_ksys_write+0x10/0x10
[  239.138722][ T8187]  do_syscall_64+0xcd/0x250
[  239.143244][ T8187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.149168][ T8187] RIP: 0033:0x7f38fb97e98f
[  239.153602][ T8187] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  239.173222][ T8187] RSP: 002b:00007f38fc786050 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  239.181615][ T8187] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f38fb97e98f
[  239.189564][ T8187] RDX: 0000000000000001 RSI: 00007f38fc7860b0 RDI: 0000000000000006
[  239.197512][ T8187] RBP: 00007f38fc7860a0 R08: 0000000000000000 R09: 0000000000000000
[  239.205458][ T8187] R10: 0000000020000100 R11: 0000000000000293 R12: 0000000000000001
[  239.213402][ T8187] R13: 0000000000000000 R14: 00007f38fbb45fa0 R15: 00007ffecd750c88
[  239.221363][ T8187]  </TASK>
[  239.370997][ T8163] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  240.043665][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  240.101595][ T8163] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  240.589817][ T8198] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  240.680928][ T8206] fuseblk: Bad value for 'fd'
[  240.873611][ T8208] nvme_fabrics: unknown parameter or missing value '0x0000000000000003' in ctrl creation request
[  242.017880][  T970] usb 2-1: qt2_attach - failed to power on unit: -71
[  242.032659][  T970] quatech2 2-1:0.51: probe with driver quatech2 failed with error -71
[  242.716656][  T970] usb 2-1: USB disconnect, device number 17
[  244.719907][   T29] audit: type=1400 audit(1733772416.450:430): avc:  denied  { bind } for  pid=8255 comm="syz.2.683" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  244.811300][   T29] audit: type=1400 audit(1733772416.540:431): avc:  denied  { setopt } for  pid=8255 comm="syz.2.683" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  248.593068][   T29] audit: type=1326 audit(1733772420.320:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8286 comm="syz.2.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  249.566594][   T29] audit: type=1326 audit(1733772420.320:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8286 comm="syz.2.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7efc99d7e8ec code=0x7ffc0000
[  249.593540][   T29] audit: type=1326 audit(1733772420.320:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8286 comm="syz.2.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  249.634153][   T29] audit: type=1326 audit(1733772420.320:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8286 comm="syz.2.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  250.310182][   T29] audit: type=1326 audit(1733772421.360:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8286 comm="syz.2.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  250.333643][   T29] audit: type=1326 audit(1733772421.360:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8286 comm="syz.2.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  250.439136][ T8309] fuseblk: Bad value for 'fd'
[  254.394695][  T970] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  254.843434][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  254.943485][  T970] usb 3-1: Using ep0 maxpacket: 8
[  255.936463][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  255.997552][  T970] usb 3-1: config index 0 descriptor too short (expected 75, got 45)
[  256.008910][  T970] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  256.026803][  T970] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  256.049239][  T970] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  256.059210][  T970] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  256.169219][ T8372] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  256.424524][  T970] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  256.541196][  T970] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  256.550712][  T970] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.567960][  T970] usbtmc 3-1:16.0: probe with driver usbtmc failed with error -22
[  257.435301][  T970] usb 3-1: USB disconnect, device number 7
[  257.456328][   T29] audit: type=1326 audit(1733772429.190:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8378 comm="syz.0.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  257.499502][   T29] audit: type=1326 audit(1733772429.230:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8378 comm="syz.0.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f38fb97e8ec code=0x7ffc0000
[  257.657844][ T8387] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  257.874730][   T29] audit: type=1326 audit(1733772429.230:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8378 comm="syz.0.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  257.903661][   T29] audit: type=1326 audit(1733772429.230:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8378 comm="syz.0.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  257.927310][   T29] audit: type=1326 audit(1733772429.640:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8378 comm="syz.0.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  257.951020][   T29] audit: type=1326 audit(1733772429.640:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8378 comm="syz.0.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38fb97fed9 code=0x7ffc0000
[  258.444676][   T29] audit: type=1400 audit(1733772430.180:444): avc:  denied  { read } for  pid=8396 comm="syz.1.719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  258.474589][ T3515] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  258.492624][ T3515] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  259.707453][   T29] audit: type=1400 audit(1733772431.420:445): avc:  denied  { mount } for  pid=8405 comm="syz.2.722" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  259.733719][  T970] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  259.937565][  T970] usb 2-1: Using ep0 maxpacket: 32
[  259.972873][  T970] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  260.086560][  T970] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  260.362932][  T970] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  260.415535][  T970] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.542107][  T970] usb 2-1: Product: syz
[  260.546400][  T970] usb 2-1: Manufacturer: syz
[  260.550999][  T970] usb 2-1: SerialNumber: syz
[  260.559062][  T970] cdc_ncm 2-1:1.0: skipping garbage
[  260.833531][ T8397] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  261.684618][ T8397] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  261.955550][  T970] cdc_ncm 2-1:1.0: bind() failure
[  261.970797][  T970] cdc_ncm 2-1:1.1: probe with driver cdc_ncm failed with error -71
[  261.981640][  T970] cdc_mbim 2-1:1.1: probe with driver cdc_mbim failed with error -71
[  262.005339][  T970] usbtest 2-1:1.1: probe with driver usbtest failed with error -71
[  262.039889][  T970] usb 2-1: USB disconnect, device number 18
[  262.441507][   T29] audit: type=1400 audit(1733772434.170:446): avc:  denied  { unmount } for  pid=5821 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  263.055265][ T8444] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  263.298136][   T29] audit: type=1326 audit(1733772435.030:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  263.352512][   T29] audit: type=1326 audit(1733772435.030:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  263.394718][   T29] audit: type=1326 audit(1733772435.030:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7efc99d7e8ec code=0x7ffc0000
[  263.585071][   T29] audit: type=1326 audit(1733772435.030:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  264.568947][   T29] audit: type=1326 audit(1733772435.030:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  264.596001][   T29] audit: type=1326 audit(1733772435.060:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  264.650649][   T29] audit: type=1326 audit(1733772435.060:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  264.673951][   T29] audit: type=1326 audit(1733772435.060:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  264.697089][   T29] audit: type=1326 audit(1733772435.060:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  264.722554][   T29] audit: type=1326 audit(1733772435.060:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8436 comm="syz.2.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc99d7fed9 code=0x7ffc0000
[  264.948487][ T8463] trusted_key: encrypted_key: insufficient parameters specified
[  266.456528][ T8466] nvme_fabrics: unknown parameter or missing value '0x000000000000000a' in ctrl creation request
[  266.817686][ T5820] Bluetooth: hci4: command 0x0405 tx timeout
[  270.136978][ T5828] ------------[ cut here ]------------
[  270.142836][ T5828] WARNING: CPU: 1 PID: 5828 at net/bluetooth/hci_conn.c:567 hci_conn_timeout+0x11a/0x210
[  270.152756][ T5828] Modules linked in:
[  270.156765][ T5828] CPU: 1 UID: 0 PID: 5828 Comm: kworker/u9:6 Not tainted 6.13.0-rc2-syzkaller #0
[  270.166301][ T5828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  270.176830][ T5828] Workqueue: hci4 hci_conn_timeout
[  270.182000][ T5828] RIP: 0010:hci_conn_timeout+0x11a/0x210
[  270.187782][ T5828] Code: 00 e8 ba 21 74 f7 4c 89 f1 4c 89 e2 48 c7 c6 00 0c b4 8c 48 c7 c7 50 bb 5a 90 e8 21 0f a8 fa e9 4d ff ff ff e8 97 21 74 f7 90 <0f> 0b 90 e8 8e 21 74 f7 48 8d bb 55 f7 ff ff 48 b8 00 00 00 00 00
[  270.207495][ T5828] RSP: 0018:ffffc9000442fc98 EFLAGS: 00010293
[  270.213648][ T5828] RAX: 0000000000000000 RBX: ffff8880257248e8 RCX: ffffffff8a25e1ff
[  270.221643][ T5828] RDX: ffff88802fb2c880 RSI: ffffffff8a25e2a9 RDI: 0000000000000005
[  270.229673][ T5828] RBP: 00000000ffffffff R08: 0000000000000005 R09: 0000000000000000
[  270.237698][ T5828] R10: 00000000ffffffff R11: 0000000000000001 R12: ffff888025724000
[  270.245700][ T5828] R13: 0000000000000001 R14: 0000000000000000 R15: ffff888032416400
[  270.253686][ T5828] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  270.262611][ T5828] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  270.269404][ T5828] CR2: 00007f38fbb0a2d8 CR3: 0000000024686000 CR4: 00000000003526f0
[  270.277612][ T5828] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  270.285697][ T5828] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  270.293721][ T5828] Call Trace:
[  270.296996][ T5828]  <TASK>
[  270.299910][ T5828]  ? __warn+0xea/0x3c0
[  270.304046][ T5828]  ? hci_conn_timeout+0x11a/0x210
[  270.309089][ T5828]  ? report_bug+0x3c0/0x580
[  270.313660][ T5828]  ? handle_bug+0x54/0xa0
[  270.317982][ T5828]  ? exc_invalid_op+0x17/0x50
[  270.322643][ T5828]  ? asm_exc_invalid_op+0x1a/0x20
[  270.327686][ T5828]  ? hci_conn_timeout+0x6f/0x210
[  270.332609][ T5828]  ? hci_conn_timeout+0x119/0x210
[  270.337631][ T5828]  ? hci_conn_timeout+0x11a/0x210
[  270.342639][ T5828]  ? hci_conn_timeout+0x119/0x210
[  270.347671][ T5828]  process_one_work+0x9c5/0x1ba0
[  270.352609][ T5828]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  270.358237][ T5828]  ? __pfx_process_one_work+0x10/0x10
[  270.363626][ T5828]  ? rcu_is_watching+0x12/0xc0
[  270.368578][ T5828]  ? assign_work+0x1a0/0x250
[  270.373151][ T5828]  worker_thread+0x6c8/0xf00
[  270.377943][ T5828]  ? __pfx_worker_thread+0x10/0x10
[  270.383053][ T5828]  kthread+0x2c1/0x3a0
[  270.387155][ T5828]  ? _raw_spin_unlock_irq+0x23/0x50
[  270.392349][ T5828]  ? __pfx_kthread+0x10/0x10
[  270.396946][ T5828]  ret_from_fork+0x45/0x80
[  270.401342][ T5828]  ? __pfx_kthread+0x10/0x10
[  270.405942][ T5828]  ret_from_fork_asm+0x1a/0x30
[  270.410713][ T5828]  </TASK>
[  270.413735][ T5828] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  270.420988][ T5828] CPU: 1 UID: 0 PID: 5828 Comm: kworker/u9:6 Not tainted 6.13.0-rc2-syzkaller #0
[  270.430071][ T5828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  270.440107][ T5828] Workqueue: hci4 hci_conn_timeout
[  270.445206][ T5828] Call Trace:
[  270.448462][ T5828]  <TASK>
[  270.451369][ T5828]  dump_stack_lvl+0x3d/0x1f0
[  270.455948][ T5828]  panic+0x71d/0x800
[  270.459844][ T5828]  ? __pfx_panic+0x10/0x10
[  270.464241][ T5828]  ? show_trace_log_lvl+0x29d/0x3d0
[  270.469420][ T5828]  ? check_panic_on_warn+0x1f/0xb0
[  270.474522][ T5828]  ? hci_conn_timeout+0x11a/0x210
[  270.479547][ T5828]  check_panic_on_warn+0xab/0xb0
[  270.484478][ T5828]  __warn+0xf6/0x3c0
[  270.488346][ T5828]  ? hci_conn_timeout+0x11a/0x210
[  270.493362][ T5828]  report_bug+0x3c0/0x580
[  270.497669][ T5828]  handle_bug+0x54/0xa0
[  270.501802][ T5828]  exc_invalid_op+0x17/0x50
[  270.506284][ T5828]  asm_exc_invalid_op+0x1a/0x20
[  270.511111][ T5828] RIP: 0010:hci_conn_timeout+0x11a/0x210
[  270.516723][ T5828] Code: 00 e8 ba 21 74 f7 4c 89 f1 4c 89 e2 48 c7 c6 00 0c b4 8c 48 c7 c7 50 bb 5a 90 e8 21 0f a8 fa e9 4d ff ff ff e8 97 21 74 f7 90 <0f> 0b 90 e8 8e 21 74 f7 48 8d bb 55 f7 ff ff 48 b8 00 00 00 00 00
[  270.536307][ T5828] RSP: 0018:ffffc9000442fc98 EFLAGS: 00010293
[  270.542348][ T5828] RAX: 0000000000000000 RBX: ffff8880257248e8 RCX: ffffffff8a25e1ff
[  270.550297][ T5828] RDX: ffff88802fb2c880 RSI: ffffffff8a25e2a9 RDI: 0000000000000005
[  270.558259][ T5828] RBP: 00000000ffffffff R08: 0000000000000005 R09: 0000000000000000
[  270.566207][ T5828] R10: 00000000ffffffff R11: 0000000000000001 R12: ffff888025724000
[  270.574157][ T5828] R13: 0000000000000001 R14: 0000000000000000 R15: ffff888032416400
[  270.582111][ T5828]  ? hci_conn_timeout+0x6f/0x210
[  270.587047][ T5828]  ? hci_conn_timeout+0x119/0x210
[  270.592053][ T5828]  ? hci_conn_timeout+0x119/0x210
[  270.597057][ T5828]  process_one_work+0x9c5/0x1ba0
[  270.601979][ T5828]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  270.607601][ T5828]  ? __pfx_process_one_work+0x10/0x10
[  270.612947][ T5828]  ? rcu_is_watching+0x12/0xc0
[  270.617711][ T5828]  ? assign_work+0x1a0/0x250
[  270.622276][ T5828]  worker_thread+0x6c8/0xf00
[  270.626851][ T5828]  ? __pfx_worker_thread+0x10/0x10
[  270.631941][ T5828]  kthread+0x2c1/0x3a0
[  270.636005][ T5828]  ? _raw_spin_unlock_irq+0x23/0x50
[  270.641182][ T5828]  ? __pfx_kthread+0x10/0x10
[  270.645752][ T5828]  ret_from_fork+0x45/0x80
[  270.650143][ T5828]  ? __pfx_kthread+0x10/0x10
[  270.654710][ T5828]  ret_from_fork_asm+0x1a/0x30
[  270.659465][ T5828]  </TASK>
[  270.662672][ T5828] Kernel Offset: disabled
[  270.667032][ T5828] Rebooting in 86400 seconds..