last executing test programs:

9.232133263s ago: executing program 0 (id=372):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x20)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x5, [@union={0x3, 0x1, 0x0, 0x5, 0x1, 0xb22, [{0x10, 0x0, 0x3ff}]}]}, {0x0, [0x30, 0x30, 0x61]}}, &(0x7f0000000f40)=""/4081, 0x35, 0xff1, 0x8, 0xffffffff, 0x0, @void, @value}, 0x28)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r2, 0x84, 0x77, 0x0, &(0x7f0000004740))
syz_open_dev$sndpcmc(&(0x7f0000000100), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}]}], {0x14}}, 0xd4}}, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
syz_emit_ethernet(0x7a, &(0x7f00000009c0)={@random="856b1200ff00", @local, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "381f34", 0x44, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x88a8}}}}}}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$l2tp6(0xa, 0x2, 0x73)
r5 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), r4)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r5, @ANYRES8=r0], 0x5c}, 0x1, 0x6c}, 0x20000000)

8.338074338s ago: executing program 0 (id=375):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc1105518, &(0x7f0000000c40)={{0x2000000, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x108000000000000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x40, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0xfffffffffffffffa, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x80000000000000, 0xfffffffc, 0x1, 0x8, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x4, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0xfffffffc, 0x7]})

7.908728783s ago: executing program 0 (id=377):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c01000000090401001186eee2000905821704"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xfffffffffffffea8, &(0x7f00000000c0)=ANY=[])

7.334503935s ago: executing program 2 (id=381):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x10c4, 0x0, 0x0, 0x80000}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e8500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000f000000850000007500000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='netlink_extack\x00', r3}, 0x18)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000056000100000000f70000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0)

6.399185681s ago: executing program 2 (id=385):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000980), r0)
sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="20100000", @ANYRES16=r1, @ANYBLOB="11012cbd7000fedbdf251f0000000a0001007770616e33000000"], 0x20}, 0x1, 0x0, 0x0, 0xc000884}, 0x4000)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000300), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40020}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x28, r4, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}]}, 0x28}, 0x1, 0x0, 0x0, 0x801}, 0x20008800)
close(r3)
write$UHID_CREATE2(r2, &(0x7f00000002c0)=ANY=[], 0x118)
socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000580)=@newtaction={0x70, 0x30, 0x200, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_simple={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xf, 0x3, '\\^]!${{%@:\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x0, 0xe4ffffff}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x70}}, 0x0)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240), 0x8042, 0x0)
write$vga_arbiter(r5, &(0x7f00000002c0)=ANY=[@ANYBLOB='lock '], 0x8)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r6}, 0x10)
move_pages(0x0, 0x2064, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], &(0x7f0000001180), &(0x7f0000000000), 0x0)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
r7 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000e80)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x28, 0x2, [@TCA_CAKE_FLOW_MODE={0x8, 0x5, 0x6}, @TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x4}, @TCA_CAKE_MEMORY={0x8, 0xa, 0x66aa}, @TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x8000000000000000}]}}]}, 0x58}}, 0x0)
r10 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBENT(r10, 0x4b47, &(0x7f0000000400)={0x0, 0x7f, 0x700})

6.278497837s ago: executing program 3 (id=386):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f0000000040)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0x2, 0x1501, &(0x7f00000002c0)="$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")
creat(&(0x7f0000000200)='./file2\x00', 0x1e2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000), 0x208e24b)
rename(&(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='./file0/file0\x00')
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f00000000c0)={[{@dyn}]})
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0xb)

6.206669011s ago: executing program 1 (id=387):
r0 = syz_open_dev$usbfs(0x0, 0x76, 0x101301)
ioctl$USBDEVFS_CLAIM_PORT(r0, 0x80045518, 0x0)

5.906214006s ago: executing program 1 (id=388):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000002c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000400)={0x0, 0x7f, 0x700}) (fail_nth: 4)

5.77422075s ago: executing program 0 (id=389):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4d8, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x5, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x0, 0x0, 0x7}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x18, &(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00\b'], 0x0, 0x0, 0x0, 0x0}, 0x0)

5.444886293s ago: executing program 3 (id=390):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc1105518, &(0x7f0000000c40)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x108000000000000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x40, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0xfffffffffffffffa, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000, 0x43, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x80000000000000, 0xfffffffc, 0x1, 0x8, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x4, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0xfffffffc, 0x7]})
ioctl$SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, &(0x7f0000000140))
clock_gettime(0x0, &(0x7f00000001c0)={<r1=>0x0, <r2=>0x0})
futex(&(0x7f0000000180)=0x1, 0x0, 0x0, &(0x7f0000000200)={r1, r2+10000000}, &(0x7f0000000240)=0x2, 0x1)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f0000000000)={0x2, @raw_data="c9ec621eb4371554acc5b17478975a6e3963d1e03433fa6d33b58e1be8781b8277e3b80916b4d50cb64a2798640f35f0c052a5bf34f475f8e637b51ad10ef155bb31b0cdc47f26ca3e47d357288ed184cf29b11f27c4c7b3cef97dbd8e8e35ff12942657f17e289737502f118b21e6cea1c51cdc71333783b9db6312c7f2cb0996785c962fbab7db549fb71faa1bae0772f1be5b2367ffa138e4f4860cda850f423bd2d716d242f7b8c7ad39413294ec6653cd0a4dd7e15c4ecd89b90f2976d12bd27e85b88a05f5"})

5.440719092s ago: executing program 4 (id=391):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x64, 0x16, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x38, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'geneve0\x00'}, {0x14, 0x1, 'veth1_to_bond\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x10}]}]}], {0x14, 0x10}}, 0xac}}, 0x0)

5.234032975s ago: executing program 1 (id=392):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

5.233364308s ago: executing program 2 (id=393):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e8500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000f000000850000007500000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x18)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000056000100000000f70000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0) (fail_nth: 8)

4.557714891s ago: executing program 4 (id=394):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3030000dc6626c898", 0xc)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
sendmsg$nl_route_sched_retired(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100), 0xe078}}, 0x0)
recvmmsg(r1, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000580)=""/63, 0x3f}], 0x1}}, {{0x0, 0x0, &(0x7f0000000800)=[{0x0}], 0x1}, 0xfffffffd}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000005c40)=""/4105, 0x1009}, {&(0x7f0000000380)=""/82, 0x52}, {&(0x7f0000000840)=""/127, 0x7f}, {&(0x7f00000008c0)=""/249, 0xf9}, {&(0x7f0000000400)=""/32, 0x20}, {0x0}], 0x6}}], 0x3, 0x2000, 0x0)

4.383349625s ago: executing program 3 (id=395):
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
socket(0x2b, 0x80801, 0x1)
socket(0x10, 0x3, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x2)
syz_io_uring_setup(0x1e21, &(0x7f0000000200)={0x0, 0x86f7, 0x800, 0x10000, 0x2000000}, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='attr/current\x00')
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x1, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x4, 0x400000000, 0x4, 0x7fffffff}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x1e4011, 0xbf)

4.296041339s ago: executing program 1 (id=396):
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000580)={[{@nfs_export_on}, {@metacopy_on}]})
llistxattr(&(0x7f0000000000)='./bus/../file0\x00', &(0x7f00000005c0)=""/4096, 0x1000)

4.210384385s ago: executing program 2 (id=397):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_to_bond\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x4c, 0x16, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_to_bond\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x10}]}]}], {0x14, 0x10}}, 0xec}}, 0x0)

3.978078705s ago: executing program 4 (id=398):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x15, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000100850000000100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0), &(0x7f0000000840), 0x307}, 0x38)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000bc0)={r1, 0x0, 0x0}, 0x10)

3.389108418s ago: executing program 1 (id=399):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000062d14406d0470084761000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000240)={0xc, &(0x7f0000000140)={0x0, 0x6, 0xa3, {0xa3, 0x10, "50d4e74ca46663400e2c73043f0ad1701d59bd376a02abf66673a7d684a087107af3e5db7bd9dcc2248c8207ef420fa8c68db96ee358e67b398b0e3c8b1701c314e3953a8b87db5a299f3cc8fb3c3080fd87490a584af4249e1a8af62d655a0f1e7eddbad8db4d162b0a1a6df6100e3a79ca16c8e119be48bb374a79cfb9b2e897ad6e66c9738e67750e7685dd6c42ff4598788a59dc196b6047661896b1d699d5"}}, &(0x7f0000000200)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x860}}}, &(0x7f0000000540)={0x24, &(0x7f00000002c0)={0x40, 0x18, 0xac, "8cec60343f4ea53016ee340a7c1e0841f635d6c342f2033fec087769cffa03ffe435e081f41bf8474d29a5e23d32ae732f3a4d0cb302058537e996d927afa0801615b8d86903ccc6b662a6f7184856a0a61bbf1b88120cae27f6f38c775f8fd6cfb74554fd52bfa4c36080d40bd674175daa3b7ddbc4bb63c56f0c6af30ef7b8b83de4fa650d51062e8f52cdb910fc7fc02af7fc07c1f115a64ecce9007b510b31f87f312e5b1ddab69aa271"}, &(0x7f0000000380)={0x0, 0xa, 0x1, 0x5}, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0xf5}, &(0x7f0000000400)={0x20, 0x81, 0x2, "95eb"}, &(0x7f0000000440)={0x20, 0x82, 0x3, "3770b0"}, &(0x7f0000000480)={0x20, 0x83, 0x2, "920a"}, &(0x7f00000004c0)={0x20, 0x84, 0x4, "e106bef1"}, &(0x7f0000000500)={0x20, 0x85, 0x3, "17b740"}})
setsockopt$inet_mreqn(r1, 0x0, 0x27, &(0x7f0000000100)={@multicast2, @local}, 0xc)
r2 = socket$inet(0x2, 0x3, 0x2)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x22048854, &(0x7f0000000200)={0x2, 0x4e23, @empty}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff})
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x50, 0x24, 0xf0b, 0x0, 0x1000001, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x20, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0xfff}, @TCA_CAKE_MEMORY={0x8, 0xa, 0x4c4c}, @TCA_CAKE_INGRESS={0x8, 0xf, 0x1}]}}]}, 0x50}}, 0x10)
sendto$inet(r4, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0xd000, 0x11, 0x0, 0x27)
sendto$inet6(r3, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x18115, @rand_addr, 0x983a}, 0x1c)
setsockopt$inet_mreqsrc(r2, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
r9 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r9, &(0x7f0000000400)={{0x6, @rose}, [@bcast, @bcast, @null, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa0000000003"], 0x1c)
r10 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r10, 0x10d, 0xc3, &(0x7f0000000240), &(0x7f00000003c0)=0x4)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x80, 0x0, 0x7fff7ffc}]})
close_range(r11, 0xffffffffffffffff, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)

3.384415597s ago: executing program 2 (id=400):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c01000000090401001186eee2000905821704"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xfffffffffffffea8, &(0x7f00000000c0)=ANY=[])

3.018270592s ago: executing program 0 (id=401):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
creat(&(0x7f0000000200)='./file2\x00', 0x1e2)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
rename(&(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='./file0/file0\x00')
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f00000000c0)={[{@dyn}]})
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0xb)

2.952862586s ago: executing program 3 (id=402):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r1 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r1, 0xc0184800, &(0x7f0000000100)={0x4, <r2=>r0})
listxattr(&(0x7f0000000140)='./file1\x00', &(0x7f00000002c0)=""/166, 0xa6)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000080), 0x40007, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r4, 0xc100565c, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000007c0)=ANY=[@ANYRESHEX=r0], 0x119)
lsetxattr$trusted_overlay_origin(&(0x7f0000000200)='./file1\x00', &(0x7f0000000240), &(0x7f0000000280), 0x2, 0x2)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x385bddf8440c9fd2, &(0x7f0000000440)={[{@norecovery}, {@nolazytime}, {@abort}, {@dax_never}, {@nolazytime}, {@jqfmt_vfsv0}, {@quota}, {@nobh}]}, 0x4, 0x5ee, &(0x7f0000000f00)="$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")
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r5, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendto$inet6(r5, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0x2, 0x4e24, 0x0, @local}, 0x1c)
openat(0xffffffffffffff9c, &(0x7f0000002600)='./file1\x00', 0x105042, 0x0)
r6 = syz_io_uring_setup(0xa6, &(0x7f0000000480)={0x0, 0x0, 0x1, 0x44, 0x335}, &(0x7f0000000080)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x0, @fd_index=0x3, 0x7fffffffffffffff, 0x0})
io_uring_enter(r6, 0x47ba, 0x0, 0x0, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$vim2m(0x0, 0x7fffffff, 0x2)
getsockopt$inet_mreqn(r2, 0x0, 0x33, &(0x7f00000003c0)={@empty, @private}, &(0x7f00000004c0)=0xc)
socket$nl_route(0x10, 0x3, 0x0)
close(0x3)
r9 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
preadv(r9, &(0x7f0000000740)=[{&(0x7f00000017c0)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/236, 0xec}, {&(0x7f00000006c0)=""/76, 0x4c}], 0x3, 0x31, 0x4)
ioctl$FIONREAD(r2, 0x541b, 0x0)
syz_open_dev$video(&(0x7f00000001c0), 0xa7, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
socket(0x2b, 0x80801, 0x1)

2.821230952s ago: executing program 4 (id=403):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x24, r1, 0x331, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r3}]}, 0x24}, 0x1, 0x0, 0x0, 0x804}, 0x0) (fail_nth: 7)

1.898068231s ago: executing program 3 (id=404):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x64, 0x16, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x38, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'geneve0\x00'}, {0x14, 0x1, 'veth1_to_bond\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x10}]}]}], {0x14, 0x10}}, 0xac}}, 0x0)

1.59801761s ago: executing program 0 (id=405):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000026c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0xfffc}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x13}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x6}]}}}]}]}], {0x14}}, 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x8044)
syz_emit_ethernet(0x2a, &(0x7f0000000540)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x18, 0xfffe, 0x0, 0xa0, 0x2f, 0x0, @loopback, @multicast1}, {0x2001, 0x880b, 0x8}}}}}, 0x0)
syz_mount_image$nilfs2(&(0x7f0000000100), &(0x7f0000000040)='./file1\x00', 0x1014800, &(0x7f0000000000)=ANY=[@ANYRES8=0x0], 0x1, 0xda6, &(0x7f0000003c80)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x40000, 0x0)
getdents64(r1, 0xfffffffffffffffe, 0x29)
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
write$vga_arbiter(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB='lock m'], 0x9)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="2c000000190001090000000000000000021800000000fd090000000008000100ac14140008000f00ff007f"], 0x2c}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000709c3120e80401669b81010203010902120001010000000904"], 0x0)

1.59527429s ago: executing program 4 (id=406):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

1.247582927s ago: executing program 3 (id=407):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0xcf, 0x8b, 0xed, 0x20, 0xfd9, 0x25, 0x2940, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xca, 0xfb, 0x1a}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000700)={0x20, 0x11, 0x1, "ce"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000055000100000000000000000007", @ANYRES32], 0x38}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0xe4428, &(0x7f0000000040)={[{@huge_always}]})
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000140)={0x0, 0xd0, 0x4, &(0x7f0000000080)={0x11, "42cae8b3df20afbcfcdd178c50e5d84526580489979a473f112453b228922bd31c"}})

874.435022ms ago: executing program 4 (id=408):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r3=>0x0})
socket(0x23, 0x5, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='nobarrier,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030343030302c6e6f6465636f6d706f73652c747970653df268d6512c756d61736b3d3030303030303034352c00"], 0x3, 0x6b2, &(0x7f0000000280)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000005c0)='cpu.stat\x00', 0x275a, 0x0)
open(&(0x7f0000000100)='./file1\x00', 0x379042, 0x88)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_io_uring_setup(0x5097, &(0x7f0000000a00)={0x0, 0x59b0, 0x10000, 0x1, 0x244, 0x0, r4}, &(0x7f0000000940)=<r6=>0x0, &(0x7f0000000180)=<r7=>0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r5, 0x455b, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_OIF={0x8, 0x5, r3}]}, 0x20}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000100)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {0xa, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)
r8 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r8, 0x84, 0x23, &(0x7f0000000040)={0x0, 0x7ff}, 0x8)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r9, 0x8946, &(0x7f0000000000)={'gretap0\x00', &(0x7f0000000100)=@ethtool_wolinfo={0x6, 0x9, 0x3, "746478bdfd09"}})
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r10 = socket$nl_rdma(0x10, 0x3, 0x14)
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x8)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r10, 0x0, 0x0)
syz_open_dev$dri(0x0, 0x1f, 0x0)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_read_num_supported_iac={{}, {0xb1, 0x5}}}}, 0x8)
readlink(&(0x7f0000000240)='./file0\x00', 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

242.065591ms ago: executing program 1 (id=409):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004380)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x4000000000000, {0x0, 0x200000000, 0x20000000, 0x4, 0x6, 0x0, {0x0, 0x10001, 0x0, 0xd, 0x8000000000000, 0x100, 0x10000, 0x2, 0x0, 0x0, 0xfffffffc, r2, 0x0, 0x7}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004300)={0x50, 0x0, r1, {0x7, 0x26, 0x8, 0xfffffffff3a35ac6, 0x0, 0xfffc, 0x6, 0x5d3186cc, 0x0, 0x0, 0x1, 0x10001}}, 0x50)
creat(&(0x7f0000000180)='./file0/file0\x00', 0x0) (fail_nth: 8)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)={0xa0, 0x0, 0x16, {{0x3, 0x0, 0x4, 0x0, 0xfffffffb, 0x3, {0x0, 0x7fff, 0x6, 0xffff, 0x4, 0x1, 0x1ff, 0x9, 0x0, 0x8000, 0x0, r2, 0xee01, 0xfffffff9, 0x1}}, {0x0, 0x2}}}, 0x0, 0x0})

0s ago: executing program 2 (id=410):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_to_bond\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x4c, 0x16, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_to_bond\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x10}]}]}], {0x14, 0x10}}, 0xec}}, 0x0)

kernel console output (not intermixed with test programs):

005 RCX: 0000000080000100
[  282.797769][ T6126] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  282.797851][ T6126] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  282.797933][ T6126] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  282.798016][ T6126] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  282.798132][ T6126]  </TASK>
[  283.451007][   T24] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  283.619730][   T24] usb 2-1: device descriptor read/64, error -71
[  283.812488][ T5418] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  283.859889][   T24] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  283.870347][    T9] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  284.014402][ T5418] usb 5-1: Using ep0 maxpacket: 16
[  284.036569][   T24] usb 2-1: device descriptor read/64, error -71
[  284.044212][ T5418] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  284.056046][ T5418] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  284.065838][ T5418] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.110051][    T9] usb 3-1: Using ep0 maxpacket: 32
[  284.129579][    T9] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  284.139227][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.157743][   T24] usb usb2-port1: attempt power cycle
[  284.162940][ T5418] usb 5-1: config 0 descriptor??
[  284.186955][    T9] usb 3-1: config 0 descriptor??
[  284.431199][    T9] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  284.466477][   T45] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  284.511768][    T9] usb 3-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  284.543104][    T9] usb 3-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  284.565137][   T24] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  284.691174][   T45] usb 1-1: Using ep0 maxpacket: 32
[  284.738559][ T5418] mcp2221 0003:04D8:00DD.0004: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.4-1/input0
[  284.775219][   T45] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  284.785147][   T45] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  284.794589][   T45] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  284.804309][   T45] usb 1-1: config 1 has no interface number 0
[  284.811221][   T45] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  284.824798][   T45] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  284.841436][   T45] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  284.851236][   T45] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.939696][   T45] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  284.955450][   T24] usb 2-1: device descriptor read/8, error -71
[  285.221146][ T5418] usb 5-1: USB disconnect, device number 6
[  285.289507][   T45] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached
[  285.523556][   T45] usb 1-1: USB disconnect, device number 5
[  285.580949][   T45] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  285.831989][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  285.838701][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  286.961975][ T6158] netlink: 20 bytes leftover after parsing attributes in process `syz.0.64'.
[  287.429680][ T5418] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  287.599510][ T5418] usb 4-1: Using ep0 maxpacket: 32
[  287.630142][ T5418] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  287.639224][ T5418] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  287.648122][ T5418] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  287.657672][ T5418] usb 4-1: config 1 has no interface number 0
[  287.664278][ T5418] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  287.675700][ T5418] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  287.695087][ T5418] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  287.706457][ T5418] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.869206][ T5418] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  288.068040][ T5418] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  288.552882][   T24] usb 4-1: USB disconnect, device number 7
[  288.561241][   T24] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  288.677995][   T30] audit: type=1326 audit(1746268440.942:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.700508][   T30] audit: type=1326 audit(1746268440.942:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.725066][   T30] audit: type=1326 audit(1746268440.942:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.747224][   T30] audit: type=1326 audit(1746268440.942:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.769511][   T30] audit: type=1326 audit(1746268440.942:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.791790][   T30] audit: type=1326 audit(1746268440.942:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.815576][   T30] audit: type=1326 audit(1746268440.942:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.838207][   T30] audit: type=1326 audit(1746268440.942:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.861361][   T30] audit: type=1326 audit(1746268440.942:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.883703][   T30] audit: type=1326 audit(1746268441.062:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6166 comm="syz.4.67" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2558 code=0x7ffc0000
[  288.965221][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  289.399336][ T5418] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  289.469301][   T24] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  289.596214][ T5418] usb 1-1: Using ep0 maxpacket: 32
[  289.622171][ T5418] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  289.631752][ T5418] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.659222][   T24] usb 2-1: Using ep0 maxpacket: 16
[  289.683975][   T24] usb 2-1: config 8 has an invalid interface number: 39 but max is 0
[  289.692896][   T24] usb 2-1: config 8 has no interface number 0
[  289.699635][   T24] usb 2-1: config 8 interface 39 altsetting 1 has an endpoint descriptor with address 0xDF, changing to 0x8F
[  289.711852][   T24] usb 2-1: config 8 interface 39 altsetting 1 endpoint 0x8F has invalid wMaxPacketSize 0
[  289.722202][ T5418] usb 1-1: config 0 descriptor??
[  289.722258][   T24] usb 2-1: config 8 interface 39 altsetting 1 bulk endpoint 0x8F has invalid maxpacket 0
[  289.739228][   T24] usb 2-1: config 8 interface 39 has no altsetting 0
[  289.933105][   T24] usb 2-1: New USB device found, idVendor=05ac, idProduct=c704, bcdDevice=62.77
[  289.944765][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  289.954054][   T24] usb 2-1: Product: syz
[  289.958469][   T24] usb 2-1: Manufacturer: syz
[  289.963569][   T24] usb 2-1: SerialNumber: syz
[  289.980547][ T5418] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  290.158854][ T6179] netlink: 8 bytes leftover after parsing attributes in process `syz.4.72'.
[  290.473818][   T24] ipheth 2-1:8.39: ipheth_enable_ncm: usb_control_msg: -71
[  290.500129][   T24] ipheth 2-1:8.39: Apple iPhone USB Ethernet device attached
[  290.659269][   T24] usb 2-1: USB disconnect, device number 9
[  290.736178][ T6183] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  290.777766][   T24] ipheth 2-1:8.39: Apple iPhone USB Ethernet now disconnected
[  291.086299][   T45] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  291.242282][ T6185] netlink: 28 bytes leftover after parsing attributes in process `syz.4.75'.
[  291.251633][ T6185] netlink: 'syz.4.75': attribute type 7 has an invalid length.
[  291.255868][ T6187] loop9: detected capacity change from 0 to 8
[  291.259637][ T6185] netlink: 'syz.4.75': attribute type 8 has an invalid length.
[  291.259717][ T6185] netlink: 4 bytes leftover after parsing attributes in process `syz.4.75'.
[  291.280795][ T6185] team0: entered promiscuous mode
[  291.294820][ T6185] team_slave_0: entered promiscuous mode
[  291.302771][ T6185] team_slave_1: entered promiscuous mode
[  291.319204][ T6185] bond0: entered promiscuous mode
[  291.324551][ T6185] bond_slave_0: entered promiscuous mode
[  291.331734][ T6185] bond_slave_1: entered promiscuous mode
[  291.344454][ T6185] gretap0: entered promiscuous mode
[  291.363482][ T6185] 8021q: adding VLAN 0 to HW filter on device hsr1
[  291.387798][   T45] usb 4-1: device descriptor read/64, error -71
[  291.435964][ T6187]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[  291.441887][ T6187] loop9: partition table partially beyond EOD, truncated
[  291.451471][ T6187] loop9: p1 size 81768186 extends beyond EOD, truncated
[  291.687496][   T45] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  291.889587][   T45] usb 4-1: device descriptor read/64, error -71
[  292.011737][   T45] usb usb4-port1: attempt power cycle
[  292.409511][   T45] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  292.477871][ T5946] udevd[5946]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[  292.491134][   T45] usb 4-1: device descriptor read/8, error -71
[  292.769471][   T45] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  292.847935][   T45] usb 4-1: device descriptor read/8, error -71
[  292.972416][   T45] usb usb4-port1: unable to enumerate USB device
[  293.036863][ T6201] loop0: detected capacity change from 0 to 2048
[  293.227511][ T6206] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  293.251932][   T24] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  293.359824][ T6206] NILFS (loop0): vblocknr = 18 has abnormal lifetime: start cno (= 504403158265495554) > current cno (= 3)
[  293.372158][ T6206] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=2)
[  293.410315][ T6206] Remounting filesystem read-only
[  293.459869][   T24] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  293.469262][   T24] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  293.482619][   T24] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  293.493532][   T24] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  293.505148][   T24] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  293.550446][   T24] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  293.560772][   T24] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  293.569356][   T24] usb 5-1: Product: syz
[  293.573784][   T24] usb 5-1: Manufacturer: syz
[  293.633238][   T24] cdc_wdm 5-1:1.0: skipping garbage
[  293.639412][   T24] cdc_wdm 5-1:1.0: skipping garbage
[  293.656261][   T24] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  293.662983][   T24] cdc_wdm 5-1:1.0: Unknown control protocol
[  294.266460][ T6212] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  294.507220][ T6216] trusted_key: syz.1.86 sent an empty control message without MSG_MORE.
[  294.611112][ T5797] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[  295.214284][ T6220] loop3: detected capacity change from 0 to 512
[  295.378091][ T6220] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  295.391826][ T6220] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  295.460034][   T30] kauditd_printk_skb: 114 callbacks suppressed
[  295.460214][   T30] audit: type=1800 audit(1746268447.732:127): pid=6220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.89" name="file2" dev="loop3" ino=16 res=0 errno=0
[  295.499403][   T24] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  295.672212][   T24] usb 2-1: Using ep0 maxpacket: 32
[  295.702465][   T24] usb 2-1: unable to get BOS descriptor or descriptor too short
[  295.742943][   T24] usb 2-1: config 0 has an invalid interface number: 143 but max is 0
[  295.751706][   T24] usb 2-1: config 0 has no interface number 0
[  295.758104][   T24] usb 2-1: config 0 interface 143 altsetting 77 endpoint 0x5 has invalid maxpacket 1024, setting to 64
[  295.769935][   T24] usb 2-1: config 0 interface 143 has no altsetting 0
[  295.837518][   T24] usb 2-1: New USB device found, idVendor=13b1, idProduct=0041, bcdDevice=b0.69
[  295.847590][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  295.856194][   T24] usb 2-1: Product: syz
[  295.860951][   T24] usb 2-1: Manufacturer: syz
[  295.865814][   T24] usb 2-1: SerialNumber: syz
[  295.972282][   T24] r8152-cfgselector 2-1: Unknown version 0x0000
[  295.979481][   T24] r8152-cfgselector 2-1: config 0 descriptor??
[  296.020912][   T24] r8152 2-1:0.143: Expected endpoints are not found
[  296.105326][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.164188][ T1881] usb 5-1: USB disconnect, device number 7
[  296.210017][ T6225] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  296.220189][ T6225] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  296.341366][   T24] r8152-cfgselector 2-1: USB disconnect, device number 10
[  296.909239][   T24] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  297.099831][   T24] usb 5-1: Using ep0 maxpacket: 16
[  297.129616][ T6243] netlink: 12 bytes leftover after parsing attributes in process `syz.3.95'.
[  297.141500][ T6243] netlink: 12 bytes leftover after parsing attributes in process `syz.3.95'.
[  297.177829][   T24] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  297.190451][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  297.314793][   T24] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  297.324505][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.333062][   T24] usb 5-1: Product: syz
[  297.337470][   T24] usb 5-1: Manufacturer: syz
[  297.342449][   T24] usb 5-1: SerialNumber: syz
[  297.448101][   T24] usb 5-1: config 0 descriptor??
[  297.485916][   T24] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  297.495871][   T24] em28xx 5-1:0.0: Audio interface 0 found (Vendor Class)
[  298.170792][ T6254] FAULT_INJECTION: forcing a failure.
[  298.170792][ T6254] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  298.184465][ T6254] CPU: 0 UID: 0 PID: 6254 Comm: syz.1.98 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  298.184609][ T6254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  298.184707][ T6254] Call Trace:
[  298.184759][ T6254]  <TASK>
[  298.184808][ T6254]  __dump_stack+0x26/0x30
[  298.184993][ T6254]  dump_stack_lvl+0x1df/0x270
[  298.185176][ T6254]  dump_stack+0x1e/0x25
[  298.185334][ T6254]  should_fail_ex+0x7dc/0x8a0
[  298.185554][ T6254]  should_fail+0x2a/0x40
[  298.185734][ T6254]  should_fail_usercopy+0x2e/0x40
[  298.185944][ T6254]  _copy_from_iter+0x1ba/0x3220
[  298.186111][ T6254]  ? skb_set_owner_w+0x327/0x3c0
[  298.186254][ T6254]  ? kmsan_get_metadata+0x105/0x1b0
[  298.186466][ T6254]  hci_sock_sendmsg+0x79b/0x19f0
[  298.186621][ T6254]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  298.186756][ T6254]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  298.186889][ T6254]  __sock_sendmsg+0x330/0x3d0
[  298.187064][ T6254]  sock_write_iter+0x318/0x390
[  298.187274][ T6254]  vfs_write+0xb31/0x1560
[  298.187449][ T6254]  ? __pfx_sock_write_iter+0x10/0x10
[  298.187618][ T6254]  __ia32_sys_write+0x1f9/0x4d0
[  298.187794][ T6254]  ia32_sys_call+0x30f2/0x42c0
[  298.187929][ T6254]  __do_fast_syscall_32+0xb0/0x110
[  298.188142][ T6254]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  298.188312][ T6254]  do_fast_syscall_32+0x38/0x80
[  298.188483][ T6254]  do_SYSENTER_32+0x1f/0x30
[  298.188649][ T6254]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  298.188818][ T6254] RIP: 0023:0xf7fc2539
[  298.188914][ T6254] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  298.189034][ T6254] RSP: 002b:00000000f50e655c EFLAGS: 00000206 ORIG_RAX: 0000000000000004
[  298.189159][ T6254] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000000
[  298.189249][ T6254] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000000
[  298.189327][ T6254] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  298.189407][ T6254] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  298.189486][ T6254] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  298.189600][ T6254]  </TASK>
[  298.331909][   T24] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  298.576573][ T6256] loop3: detected capacity change from 0 to 8
[  298.779526][   T24] em28xx 5-1:0.0: Config register raw data: 0xfffffffb
[  298.827855][   T24] em28xx 5-1:0.0: AC97 chip type couldn't be determined
[  298.835682][   T24] em28xx 5-1:0.0: No AC97 audio processor
[  298.939327][ T1881] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  299.179085][ T1881] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  299.189920][ T1881] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  299.199293][ T1881] usb 4-1: config 1 has no interface number 0
[  299.205646][ T1881] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  299.217029][ T1881] usb 4-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  299.422530][ T1881] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  299.432349][ T1881] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.441099][ T1881] usb 4-1: Product: syz
[  299.445603][ T1881] usb 4-1: Manufacturer: syz
[  299.450548][ T1881] usb 4-1: SerialNumber: syz
[  299.601303][ T6264] syz.0.103(6264): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  299.762240][ T5801] Bluetooth: hci0: link tx timeout
[  299.767651][ T5801] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[  300.745907][   T24] usb 5-1: USB disconnect, device number 8
[  300.754035][   T24] em28xx 5-1:0.0: Disconnecting em28xx
[  300.871430][   T24] em28xx 5-1:0.0: Freeing device
[  301.799832][ T5801] Bluetooth: hci0: command 0x0406 tx timeout
[  302.065253][ T1881] cdc_ncm 4-1:1.1: bind() failure
[  302.109796][ T1881] usb 4-1: USB disconnect, device number 12
[  302.181018][ T6288] loop4: detected capacity change from 0 to 1024
[  303.365650][ T6298] Bluetooth: MGMT ver 1.23
[  303.845551][ T6303] FAULT_INJECTION: forcing a failure.
[  303.845551][ T6303] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  303.859717][ T6303] CPU: 1 UID: 0 PID: 6303 Comm: syz.4.116 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  303.859857][ T6303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  303.859939][ T6303] Call Trace:
[  303.859990][ T6303]  <TASK>
[  303.860037][ T6303]  __dump_stack+0x26/0x30
[  303.860202][ T6303]  dump_stack_lvl+0x1df/0x270
[  303.860378][ T6303]  dump_stack+0x1e/0x25
[  303.860537][ T6303]  should_fail_ex+0x7dc/0x8a0
[  303.860747][ T6303]  should_fail+0x2a/0x40
[  303.860923][ T6303]  should_fail_usercopy+0x2e/0x40
[  303.861121][ T6303]  _copy_from_iter+0x1ba/0x3220
[  303.861292][ T6303]  ? kmsan_get_metadata+0x105/0x1b0
[  303.861495][ T6303]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  303.861682][ T6303]  ? kmsan_get_metadata+0x105/0x1b0
[  303.861904][ T6303]  netlink_sendmsg+0xc64/0x1250
[  303.862074][ T6303]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.862209][ T6303]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.862349][ T6303]  __sock_sendmsg+0x330/0x3d0
[  303.862532][ T6303]  ____sys_sendmsg+0x7e0/0xd80
[  303.862701][ T6303]  ___sys_sendmsg+0x271/0x3b0
[  303.862842][ T6303]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  303.863030][ T6303]  ? __rcu_read_unlock+0x6d/0xd0
[  303.863192][ T6303]  ? __fget_files+0x3b4/0x4a0
[  303.863351][ T6303]  ? __fget_files+0x3b9/0x4a0
[  303.863518][ T6303]  ? kmsan_get_metadata+0x105/0x1b0
[  303.863710][ T6303]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  303.863905][ T6303]  __sys_sendmsg+0x1aa/0x300
[  303.864074][ T6303]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  303.864304][ T6303]  ia32_sys_call+0x3692/0x42c0
[  303.864446][ T6303]  __do_fast_syscall_32+0xb0/0x110
[  303.864630][ T6303]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  303.864807][ T6303]  do_fast_syscall_32+0x38/0x80
[  303.864985][ T6303]  do_SYSENTER_32+0x1f/0x30
[  303.865159][ T6303]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.865340][ T6303] RIP: 0023:0xf7ff2539
[  303.865443][ T6303] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  303.865557][ T6303] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  303.865686][ T6303] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  303.865779][ T6303] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  303.865861][ T6303] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  303.865942][ T6303] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  303.866036][ T6303] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  303.866148][ T6303]  </TASK>
[  304.677616][ T6313] tmpfs: Bad value for 'mpol'
[  304.742021][ T6308] loop4: detected capacity change from 0 to 24
[  304.765950][ T6308] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  304.899500][ T1881] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[  304.918378][ T6313] process 'syz.4.119' launched './file0' with NULL argv: empty string added
[  304.959629][ T6314] netlink: 'syz.3.121': attribute type 3 has an invalid length.
[  305.124391][ T1881] usb 2-1: config 0 has an invalid interface number: 120 but max is 0
[  305.133036][ T1881] usb 2-1: config 0 has no interface number 0
[  305.139571][ T1881] usb 2-1: config 0 interface 120 altsetting 0 endpoint 0x2 has invalid maxpacket 6400, setting to 64
[  305.150944][ T1881] usb 2-1: config 0 interface 120 altsetting 0 endpoint 0xC has invalid maxpacket 65535, setting to 64
[  305.192204][ T1881] usb 2-1: New USB device found, idVendor=e828, idProduct=cea8, bcdDevice=50.03
[  305.207414][ T1881] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  305.217875][ T1881] usb 2-1: Product: syz
[  305.222436][ T1881] usb 2-1: Manufacturer: syz
[  305.227393][ T1881] usb 2-1: SerialNumber: syz
[  305.272877][ T1881] usb 2-1: config 0 descriptor??
[  305.281339][ T6310] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  305.311360][ T6310] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  305.548540][ T6318] loop0: detected capacity change from 0 to 1024
[  305.653312][ T1881] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  305.660911][ T1881] usb 2-1: MIDIStreaming interface descriptor not found
[  305.857811][ T6321] ucma_write: process 55 (syz.2.123) changed security contexts after opening file descriptor, this is not allowed.
[  305.964580][ T1881] usb 2-1: USB disconnect, device number 11
[  306.086218][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  306.097797][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  306.120794][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  307.030797][ T6008] udevd[6008]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.120/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  307.231773][ T6336] fuse: Unknown parameter 'user_id00000000000000000000'
[  307.575810][ T5801] Bluetooth: hci3: link tx timeout
[  307.582746][ T5801] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  308.596819][ T6343] loop1: detected capacity change from 0 to 1024
[  308.629692][   T45] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  308.644093][ T6348] loop0: detected capacity change from 0 to 1024
[  308.712545][ T6343] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  308.725757][ T6348] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  308.736680][ T6348] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  308.827005][ T6348] EXT4-fs (loop0): invalid journal inode
[  308.833287][ T6348] EXT4-fs (loop0): can't get journal size
[  308.859927][   T45] usb 5-1: Using ep0 maxpacket: 16
[  308.877853][ T6348] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 17104912: comm syz.0.134: lblock 2 mapped to illegal pblock 17104912 (length 1)
[  308.881943][   T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  308.907285][   T45] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  308.916842][   T45] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.995795][ T6348] EXT4-fs (loop0): Remounting filesystem read-only
[  309.003653][ T6348] EXT4-fs (loop0): failed to initialize system zone (-117)
[  309.036415][ T6348] EXT4-fs (loop0): mount failed
[  309.067512][   T45] usb 5-1: config 0 descriptor??
[  309.586918][   T45] usbhid 5-1:0.0: can't add hid device: -71
[  309.593910][   T45] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  309.648400][ T5801] Bluetooth: hci3: command 0x0406 tx timeout
[  309.722668][   T45] usb 5-1: USB disconnect, device number 9
[  310.007192][ T6359] loop2: detected capacity change from 0 to 1024
[  310.265707][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.480194][ T6370] misc userio: No port type given on /dev/userio
[  311.676622][ T6373] fuse: Unknown parameter 'user_id00000000000000000000'
[  312.247280][ T6379] FAULT_INJECTION: forcing a failure.
[  312.247280][ T6379] name failslab, interval 1, probability 0, space 0, times 0
[  312.260708][ T6379] CPU: 0 UID: 0 PID: 6379 Comm: syz.3.146 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  312.260850][ T6379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  312.260924][ T6379] Call Trace:
[  312.260972][ T6379]  <TASK>
[  312.261022][ T6379]  __dump_stack+0x26/0x30
[  312.261190][ T6379]  dump_stack_lvl+0x1df/0x270
[  312.261366][ T6379]  dump_stack+0x1e/0x25
[  312.261517][ T6379]  should_fail_ex+0x7dc/0x8a0
[  312.261735][ T6379]  should_failslab+0x15b/0x200
[  312.261917][ T6379]  __kmalloc_noprof+0x182/0x1310
[  312.262111][ T6379]  ? nla_strdup+0x171/0x2a0
[  312.262238][ T6379]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  312.262424][ T6379]  ? kmsan_get_metadata+0x105/0x1b0
[  312.262609][ T6379]  nla_strdup+0x171/0x2a0
[  312.262761][ T6379]  nf_tables_newtable+0xb5e/0x2e10
[  312.263010][ T6379]  ? __pfx_nf_tables_newtable+0x10/0x10
[  312.263191][ T6379]  nfnetlink_rcv+0x228f/0x5420
[  312.263471][ T6379]  ? __netlink_deliver_tap+0xda9/0xdd0
[  312.263692][ T6379]  ? kmsan_get_metadata+0x105/0x1b0
[  312.263865][ T6379]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  312.264044][ T6379]  ? kmsan_get_metadata+0x105/0x1b0
[  312.264215][ T6379]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  312.264390][ T6379]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  312.264533][ T6379]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  312.264681][ T6379]  netlink_unicast+0xed5/0x1290
[  312.264886][ T6379]  netlink_sendmsg+0x10b3/0x1250
[  312.265043][ T6379]  ? __pfx_netlink_sendmsg+0x10/0x10
[  312.265173][ T6379]  ? __pfx_netlink_sendmsg+0x10/0x10
[  312.265309][ T6379]  __sock_sendmsg+0x330/0x3d0
[  312.265479][ T6379]  ____sys_sendmsg+0x7e0/0xd80
[  312.265647][ T6379]  ___sys_sendmsg+0x271/0x3b0
[  312.265798][ T6379]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  312.265988][ T6379]  ? __rcu_read_unlock+0x6d/0xd0
[  312.266151][ T6379]  ? __fget_files+0x3b4/0x4a0
[  312.266310][ T6379]  ? __fget_files+0x3b9/0x4a0
[  312.266476][ T6379]  ? kmsan_get_metadata+0x105/0x1b0
[  312.266646][ T6379]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  312.266833][ T6379]  __sys_sendmsg+0x1aa/0x300
[  312.266999][ T6379]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  312.267218][ T6379]  ia32_sys_call+0x3692/0x42c0
[  312.267361][ T6379]  __do_fast_syscall_32+0xb0/0x110
[  312.267536][ T6379]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  312.267713][ T6379]  do_fast_syscall_32+0x38/0x80
[  312.267882][ T6379]  do_SYSENTER_32+0x1f/0x30
[  312.268044][ T6379]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  312.268242][ T6379] RIP: 0023:0xf70be539
[  312.268340][ T6379] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  312.268454][ T6379] RSP: 002b:00000000f50ae55c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  312.268583][ T6379] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  312.268679][ T6379] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  312.268759][ T6379] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  312.268838][ T6379] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  312.268918][ T6379] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  312.269030][ T6379]  </TASK>
[  313.239129][   T45] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  313.302983][ T6385] loop0: detected capacity change from 0 to 1024
[  313.429286][   T45] usb 2-1: Using ep0 maxpacket: 16
[  313.457368][   T45] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  313.469104][   T45] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  313.478408][   T45] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.549412][   T45] usb 2-1: config 0 descriptor??
[  313.649261][   T24] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  313.859464][   T24] usb 5-1: Using ep0 maxpacket: 32
[  313.926720][   T24] usb 5-1: config index 0 descriptor too short (expected 35577, got 27)
[  313.936147][   T24] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  313.945745][   T24] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92
[  313.955301][   T24] usb 5-1: config 1 has no interface number 0
[  313.966406][   T24] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  313.977919][   T24] usb 5-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  313.991665][   T24] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  314.001385][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.092096][   T45] usbhid 2-1:0.0: can't add hid device: -71
[  314.099093][   T45] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  314.147686][   T45] usb 2-1: USB disconnect, device number 12
[  314.215180][   T24] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found
[  314.441350][   T24] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now attached
[  314.951489][ T5848] usb 5-1: USB disconnect, device number 10
[  314.960731][ T5848] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected
[  315.360862][ T6400] fuse: Unknown parameter 'user_id00000000000000000000'
[  315.473042][ T6402] loop0: detected capacity change from 0 to 64
[  315.620155][   T30] audit: type=1800 audit(1746268467.882:128): pid=6402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.156" name="file1" dev="loop0" ino=18 res=0 errno=0
[  315.966350][ T6406] FAULT_INJECTION: forcing a failure.
[  315.966350][ T6406] name failslab, interval 1, probability 0, space 0, times 0
[  315.979741][ T6406] CPU: 1 UID: 0 PID: 6406 Comm: syz.2.158 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  315.979884][ T6406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  315.979962][ T6406] Call Trace:
[  315.980011][ T6406]  <TASK>
[  315.980059][ T6406]  __dump_stack+0x26/0x30
[  315.980231][ T6406]  dump_stack_lvl+0x1df/0x270
[  315.980428][ T6406]  dump_stack+0x1e/0x25
[  315.980583][ T6406]  should_fail_ex+0x7dc/0x8a0
[  315.980795][ T6406]  should_failslab+0x15b/0x200
[  315.980981][ T6406]  kmem_cache_alloc_node_noprof+0xf3/0xf00
[  315.981184][ T6406]  ? __alloc_skb+0x1e0/0x7d0
[  315.981397][ T6406]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  315.981564][ T6406]  ? kmsan_get_metadata+0x105/0x1b0
[  315.981736][ T6406]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.981924][ T6406]  __alloc_skb+0x1e0/0x7d0
[  315.982119][ T6406]  netlink_ack+0x23f/0xf80
[  315.982306][ T6406]  ? stack_depot_save_flags+0x35/0x7c0
[  315.982529][ T6406]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.982719][ T6406]  netlink_rcv_skb+0x3f9/0x680
[  315.982941][ T6406]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  315.983115][ T6406]  rtnetlink_rcv+0x35/0x40
[  315.983251][ T6406]  ? __pfx_rtnetlink_rcv+0x10/0x10
[  315.983396][ T6406]  netlink_unicast+0xed5/0x1290
[  315.983608][ T6406]  netlink_sendmsg+0x10b3/0x1250
[  315.983773][ T6406]  ? __pfx_netlink_sendmsg+0x10/0x10
[  315.983903][ T6406]  ? __pfx_netlink_sendmsg+0x10/0x10
[  315.984039][ T6406]  __sock_sendmsg+0x330/0x3d0
[  315.984202][ T6406]  ____sys_sendmsg+0x7e0/0xd80
[  315.984377][ T6406]  ___sys_sendmsg+0x271/0x3b0
[  315.984515][ T6406]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.984696][ T6406]  ? __rcu_read_unlock+0x6d/0xd0
[  315.984856][ T6406]  ? __fget_files+0x3b4/0x4a0
[  315.985013][ T6406]  ? __fget_files+0x3b9/0x4a0
[  315.985174][ T6406]  ? kmsan_get_metadata+0x105/0x1b0
[  315.985354][ T6406]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  315.985539][ T6406]  __sys_sendmsg+0x1aa/0x300
[  315.985704][ T6406]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  315.985919][ T6406]  ia32_sys_call+0x3692/0x42c0
[  315.986053][ T6406]  __do_fast_syscall_32+0xb0/0x110
[  315.986234][ T6406]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  315.986416][ T6406]  do_fast_syscall_32+0x38/0x80
[  315.986590][ T6406]  do_SYSENTER_32+0x1f/0x30
[  315.986757][ T6406]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  315.986933][ T6406] RIP: 0023:0xf7f42539
[  315.987033][ T6406] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  315.987149][ T6406] RSP: 002b:00000000f506655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  315.987278][ T6406] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000040
[  315.987378][ T6406] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  315.987458][ T6406] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  315.987549][ T6406] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  315.987627][ T6406] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  315.987739][ T6406]  </TASK>
[  316.791878][ T6409] fuse: Bad value for 'fd'
[  316.808307][ T6411] loop0: detected capacity change from 0 to 1024
[  317.326404][ T6419] loop2: detected capacity change from 0 to 1024
[  317.481862][ T6419] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  317.569356][ T6412] sctp: failed to load transform for md5: -2
[  317.809923][ T6419] FAULT_INJECTION: forcing a failure.
[  317.809923][ T6419] name failslab, interval 1, probability 0, space 0, times 0
[  317.824053][ T6419] CPU: 1 UID: 0 PID: 6419 Comm: syz.2.163 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  317.824198][ T6419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  317.824283][ T6419] Call Trace:
[  317.824333][ T6419]  <TASK>
[  317.824382][ T6419]  __dump_stack+0x26/0x30
[  317.824553][ T6419]  dump_stack_lvl+0x1df/0x270
[  317.824750][ T6419]  dump_stack+0x1e/0x25
[  317.824906][ T6419]  should_fail_ex+0x7dc/0x8a0
[  317.825123][ T6419]  should_failslab+0x15b/0x200
[  317.825315][ T6419]  __kmalloc_noprof+0x182/0x1310
[  317.825504][ T6419]  ? ext4_find_extent+0x355/0x1940
[  317.825702][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.825874][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.826061][ T6419]  ext4_find_extent+0x355/0x1940
[  317.826263][ T6419]  ? stack_depot_save_flags+0x35/0x7c0
[  317.826458][ T6419]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  317.826640][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.826809][ T6419]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  317.826996][ T6419]  ext4_ext_map_blocks+0x1a7/0xb190
[  317.827133][ T6419]  ? stack_depot_save_flags+0x35/0x7c0
[  317.827318][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.827479][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.827646][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.827813][ T6419]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  317.828004][ T6419]  ? __rcu_read_unlock+0x6d/0xd0
[  317.828166][ T6419]  ? ima_match_policy+0x2db1/0x2e60
[  317.828357][ T6419]  ? ima_match_policy+0x2e00/0x2e60
[  317.828565][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.828754][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.828913][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.829078][ T6419]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  317.829272][ T6419]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  317.829460][ T6419]  ext4_map_query_blocks+0xd8/0x4a0
[  317.829625][ T6419]  ? down_read+0xf5/0x220
[  317.829784][ T6419]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  317.829973][ T6419]  ext4_map_blocks+0x56c/0x2580
[  317.830118][ T6419]  ? ext4_get_block_unwritten+0x141/0x1b0
[  317.830302][ T6419]  ? filter_irq_stacks+0x49/0x190
[  317.830454][ T6419]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  317.830640][ T6419]  ? stack_depot_save_flags+0x35/0x7c0
[  317.830836][ T6419]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  317.831005][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.831193][ T6419]  ext4_getblk+0x1ed/0xdf0
[  317.831377][ T6419]  ext4_bread_batch+0x95/0x6d0
[  317.831540][ T6419]  ? __cond_resched+0x15/0x130
[  317.831685][ T6419]  __ext4_find_entry+0x20c5/0x3a90
[  317.831853][ T6419]  ? filter_irq_stacks+0x49/0x190
[  317.832010][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.832184][ T6419]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  317.832383][ T6419]  ? ext4_fname_setup_ci_filename+0xa6/0x600
[  317.832616][ T6419]  ? ext4_fname_prepare_lookup+0x536/0x5f0
[  317.832809][ T6419]  ext4_lookup+0x18b/0xbe0
[  317.832974][ T6419]  ? kmsan_get_metadata+0x105/0x1b0
[  317.833154][ T6419]  ? __pfx_ext4_lookup+0x10/0x10
[  317.833292][ T6419]  lookup_one_qstr_excl_raw+0x204/0x5b0
[  317.833505][ T6419]  do_rmdir+0x4ee/0xf30
[  317.833641][ T6419]  ? getname_flags+0x5f4/0xac0
[  317.833828][ T6419]  __ia32_sys_rmdir+0x70/0xa0
[  317.833975][ T6419]  ia32_sys_call+0x31ce/0x42c0
[  317.834108][ T6419]  __do_fast_syscall_32+0xb0/0x110
[  317.834292][ T6419]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  317.834467][ T6419]  do_fast_syscall_32+0x38/0x80
[  317.834645][ T6419]  do_SYSENTER_32+0x1f/0x30
[  317.834814][ T6419]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  317.834990][ T6419] RIP: 0023:0xf7f42539
[  317.835090][ T6419] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  317.835206][ T6419] RSP: 002b:00000000f506655c EFLAGS: 00000206 ORIG_RAX: 0000000000000028
[  317.835341][ T6419] RAX: ffffffffffffffda RBX: 00000000800000c0 RCX: 0000000000000000
[  317.835432][ T6419] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  317.835512][ T6419] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  317.835592][ T6419] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  317.835673][ T6419] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  317.835787][ T6419]  </TASK>
[  318.949537][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.612300][ T6440] fuse: Bad value for 'fd'
[  319.949204][   T24] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  319.969378][   T45] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  320.169286][   T24] usb 5-1: Using ep0 maxpacket: 8
[  320.175254][   T45] usb 4-1: Using ep0 maxpacket: 32
[  320.210740][   T45] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  320.219800][   T45] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  320.229072][   T45] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  320.238487][   T45] usb 4-1: config 1 has no interface number 0
[  320.245307][   T45] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  320.258658][   T45] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  320.276035][   T45] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  320.286165][   T45] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.332748][   T24] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  320.342375][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  320.350877][   T24] usb 5-1: Product: syz
[  320.357072][   T24] usb 5-1: Manufacturer: syz
[  320.370408][   T24] usb 5-1: SerialNumber: syz
[  320.445685][   T45] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  320.465299][   T24] usb 5-1: config 0 descriptor??
[  320.649607][   T45] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  320.715418][   T24] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  320.847694][ T6452] loop2: detected capacity change from 0 to 1024
[  321.115622][   T45] usb 4-1: USB disconnect, device number 13
[  321.124242][   T45] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  321.178921][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  321.577564][   T24] dvb_usb_rtl28xxu 5-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  321.617289][ T6455] loop1: detected capacity change from 0 to 2048
[  321.626756][   T24] usb 5-1: USB disconnect, device number 11
[  321.788685][ T6456] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  321.888045][   T30] audit: type=1800 audit(1746268474.152:129): pid=6455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.176" name="file2" dev="loop1" ino=16 res=0 errno=0
[  322.050965][ T6455] NILFS (loop1): vblocknr = 12 has abnormal lifetime: start cno (= 150994946) > current cno (= 3)
[  322.062609][ T6455] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=16)
[  322.127857][ T6455] Remounting filesystem read-only
[  322.133602][ T6459] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117
[  322.140417][ T6459] PKCS7: Only support pkcs7_signedData type
[  322.222056][ T6461] loop3: detected capacity change from 0 to 16
[  322.271992][ T6461] cramfs: Unknown parameter ''
[  322.382781][ T6455] NILFS error (device loop1): nilfs_lookup: deleted inode referenced: 12
[  322.480403][ T6455] NILFS error (device loop1): nilfs_lookup: deleted inode referenced: 12
[  323.799944][ T5786] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer
[  323.815603][ T6480] fuse: Bad value for 'fd'
[  323.979350][ T6475] loop4: detected capacity change from 0 to 2048
[  324.065333][ T6475] udf: Unknown parameter 'not'
[  325.282772][ T6497] loop3: detected capacity change from 0 to 1024
[  325.390347][ T6503] netlink: 16 bytes leftover after parsing attributes in process `syz.2.190'.
[  325.719289][ T1881] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  325.901958][ T1881] usb 2-1: Using ep0 maxpacket: 16
[  325.932269][ T1881] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  325.943955][ T1881] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  325.953507][ T1881] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.037530][ T6507] loop4: detected capacity change from 0 to 64
[  326.083965][ T1881] usb 2-1: config 0 descriptor??
[  326.567169][ T1881] usbhid 2-1:0.0: can't add hid device: -71
[  326.573998][ T1881] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  326.691338][ T1881] usb 2-1: USB disconnect, device number 13
[  327.142119][ T6515] fuse: Bad value for 'fd'
[  327.302630][ T6519] FAULT_INJECTION: forcing a failure.
[  327.302630][ T6519] name fail_futex, interval 1, probability 0, space 0, times 1
[  327.323148][ T6519] CPU: 0 UID: 0 PID: 6519 Comm: syz.4.195 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  327.323295][ T6519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  327.323372][ T6519] Call Trace:
[  327.323423][ T6519]  <TASK>
[  327.323473][ T6519]  __dump_stack+0x26/0x30
[  327.323662][ T6519]  dump_stack_lvl+0x1df/0x270
[  327.323867][ T6519]  dump_stack+0x1e/0x25
[  327.324013][ T6519]  should_fail_ex+0x7dc/0x8a0
[  327.324252][ T6519]  should_fail+0x2a/0x40
[  327.324428][ T6519]  get_futex_key+0x188/0x11d0
[  327.324616][ T6519]  ? kmsan_get_metadata+0x105/0x1b0
[  327.324807][ T6519]  futex_wake+0xfe/0x890
[  327.324961][ T6519]  ? kmsan_get_metadata+0x105/0x1b0
[  327.325140][ T6519]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  327.325329][ T6519]  do_futex+0x416/0x480
[  327.325528][ T6519]  mm_release+0x1a6/0x3e0
[  327.325722][ T6519]  exit_mm_release+0x2e/0x40
[  327.325892][ T6519]  exit_mm+0x5d/0x340
[  327.326013][ T6519]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  327.326213][ T6519]  do_exit+0xb5d/0x4120
[  327.326402][ T6519]  ? filter_irq_stacks+0x49/0x190
[  327.326588][ T6519]  do_group_exit+0x259/0x390
[  327.326715][ T6519]  ? kmsan_get_metadata+0x105/0x1b0
[  327.326908][ T6519]  get_signal+0x23c0/0x2a20
[  327.327077][ T6519]  ? stack_depot_save_flags+0x35/0x7c0
[  327.327338][ T6519]  arch_do_signal_or_restart+0x53/0xbe0
[  327.327538][ T6519]  ? kmsan_get_metadata+0x105/0x1b0
[  327.327710][ T6519]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  327.327898][ T6519]  ? syscall_exit_to_user_mode_prepare+0x2b/0x90
[  327.328103][ T6519]  syscall_exit_to_user_mode+0x6c/0xb0
[  327.328285][ T6519]  __do_fast_syscall_32+0xbd/0x110
[  327.328466][ T6519]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  327.328639][ T6519]  do_fast_syscall_32+0x38/0x80
[  327.328807][ T6519]  do_SYSENTER_32+0x1f/0x30
[  327.328971][ T6519]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  327.329150][ T6519] RIP: 0023:0xf7ff2539
[  327.329247][ T6519] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  327.329366][ T6519] RSP: 002b:00000000f50f555c EFLAGS: 00000206 ORIG_RAX: 00000000000000bb
[  327.329492][ T6519] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000000007
[  327.329573][ T6519] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  327.329649][ T6519] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  327.329726][ T6519] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  327.329807][ T6519] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  327.329922][ T6519]  </TASK>
[  327.591532][    C0] vkms_vblank_simulate: vblank timer overrun
[  329.373690][ T6542] netlink: 40 bytes leftover after parsing attributes in process `syz.4.205'.
[  329.383066][ T6542] netlink: 24 bytes leftover after parsing attributes in process `syz.4.205'.
[  329.539726][ T6539] loop0: detected capacity change from 0 to 1024
[  329.786977][ T6539] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  330.395819][ T5797] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.720167][ T1881] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[  330.820474][ T5848] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  330.834494][ T6564] loop4: detected capacity change from 0 to 64
[  330.959537][ T1881] usb 4-1: config 0 has no interfaces?
[  330.994995][ T6568] loop0: detected capacity change from 0 to 128
[  331.029717][ T5848] usb 2-1: Using ep0 maxpacket: 16
[  331.049177][ T1881] usb 4-1: New USB device found, idVendor=17dd, idProduct=5500, bcdDevice=f3.5e
[  331.058693][ T1881] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  331.067493][ T1881] usb 4-1: Product: syz
[  331.072142][ T1881] usb 4-1: Manufacturer: syz
[  331.077002][ T1881] usb 4-1: SerialNumber: syz
[  331.129288][ T5848] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  331.140902][ T5848] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  331.150430][ T5848] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.180032][ T1881] usb 4-1: config 0 descriptor??
[  331.191105][ T5848] usb 2-1: config 0 descriptor??
[  331.459767][ T6558] FAULT_INJECTION: forcing a failure.
[  331.459767][ T6558] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  331.473569][ T6558] CPU: 0 UID: 0 PID: 6558 Comm: syz.3.208 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  331.473712][ T6558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  331.473784][ T6558] Call Trace:
[  331.473828][ T6558]  <TASK>
[  331.473873][ T6558]  __dump_stack+0x26/0x30
[  331.474038][ T6558]  dump_stack_lvl+0x1df/0x270
[  331.474210][ T6558]  dump_stack+0x1e/0x25
[  331.474360][ T6558]  should_fail_ex+0x7dc/0x8a0
[  331.474561][ T6558]  should_fail+0x2a/0x40
[  331.474752][ T6558]  should_fail_usercopy+0x2e/0x40
[  331.474949][ T6558]  _copy_from_iter+0x1ba/0x3220
[  331.475125][ T6558]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  331.475297][ T6558]  ? sysvec_apic_timer_interrupt+0x52/0x90
[  331.475461][ T6558]  ? kmsan_get_metadata+0x105/0x1b0
[  331.475675][ T6558]  raw_sendmsg+0x1a7e/0x26f0
[  331.475863][ T6558]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  331.476118][ T6558]  ? __pfx_raw_sendmsg+0x10/0x10
[  331.476284][ T6558]  inet_sendmsg+0x269/0x2a0
[  331.476467][ T6558]  __sock_sendmsg+0x278/0x3d0
[  331.476628][ T6558]  ____sys_sendmsg+0x893/0xd80
[  331.476794][ T6558]  ___sys_sendmsg+0x271/0x3b0
[  331.476934][ T6558]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  331.477153][ T6558]  ? kmsan_get_metadata+0x105/0x1b0
[  331.477316][ T6558]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  331.477494][ T6558]  __sys_sendmmsg+0x3c2/0x7d0
[  331.477624][ T6558]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  331.477782][ T6558]  ? vfs_write+0x1342/0x1560
[  331.477947][ T6558]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  331.478126][ T6558]  __ia32_compat_sys_sendmmsg+0xd2/0x160
[  331.478343][ T6558]  ia32_sys_call+0x3a66/0x42c0
[  331.478472][ T6558]  __do_fast_syscall_32+0xb0/0x110
[  331.478644][ T6558]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  331.478807][ T6558]  do_fast_syscall_32+0x38/0x80
[  331.478977][ T6558]  do_SYSENTER_32+0x1f/0x30
[  331.479155][ T6558]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  331.479330][ T6558] RIP: 0023:0xf70be539
[  331.479430][ T6558] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  331.479545][ T6558] RSP: 002b:00000000f50ae55c EFLAGS: 00000206 ORIG_RAX: 0000000000000159
[  331.479674][ T6558] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000a00
[  331.479767][ T6558] RDX: 0000000000000001 RSI: 0000000020044840 RDI: 0000000000000000
[  331.479853][ T6558] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  331.479935][ T6558] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  331.480025][ T6558] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  331.480142][ T6558]  </TASK>
[  331.843945][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[  331.860688][ T5844] usb 4-1: USB disconnect, device number 14
[  331.868253][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[  331.870802][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[  331.872582][ T5848] usbhid 2-1:0.0: can't add hid device: -32
[  331.892250][ T5848] usbhid 2-1:0.0: probe with driver usbhid failed with error -32
[  331.934938][ T5848] usb 2-1: USB disconnect, device number 14
[  332.322386][ T6570] loop0: detected capacity change from 0 to 4096
[  332.811226][ T6570] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[  333.109559][ T6581] loop4: detected capacity change from 0 to 256
[  333.240348][ T6582] Cannot find set identified by id 1 to match
[  333.315587][ T6581] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  333.434164][ T6581] FAULT_INJECTION: forcing a failure.
[  333.434164][ T6581] name failslab, interval 1, probability 0, space 0, times 0
[  333.447452][ T6581] CPU: 0 UID: 0 PID: 6581 Comm: syz.4.216 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  333.447601][ T6581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  333.447683][ T6581] Call Trace:
[  333.447733][ T6581]  <TASK>
[  333.447783][ T6581]  __dump_stack+0x26/0x30
[  333.447964][ T6581]  dump_stack_lvl+0x1df/0x270
[  333.448140][ T6581]  dump_stack+0x1e/0x25
[  333.448292][ T6581]  should_fail_ex+0x7dc/0x8a0
[  333.448503][ T6581]  should_failslab+0x15b/0x200
[  333.448681][ T6581]  kmem_cache_alloc_lru_noprof+0xf7/0xed0
[  333.448892][ T6581]  ? __d_alloc+0x66/0xab0
[  333.449062][ T6581]  ? kmsan_get_metadata+0x105/0x1b0
[  333.449230][ T6581]  ? kmsan_get_metadata+0x105/0x1b0
[  333.449409][ T6581]  __d_alloc+0x66/0xab0
[  333.449558][ T6581]  ? kmsan_get_metadata+0x105/0x1b0
[  333.449710][ T6581]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  333.449885][ T6581]  d_alloc_parallel+0x94/0x26a0
[  333.450049][ T6581]  ? __rcu_read_unlock+0x6d/0xd0
[  333.450192][ T6581]  ? __d_lookup+0x8a2/0x930
[  333.450368][ T6581]  ? __d_lookup+0x8af/0x930
[  333.450523][ T6581]  ? filter_irq_stacks+0x49/0x190
[  333.450670][ T6581]  ? stack_depot_save_flags+0x35/0x7c0
[  333.450846][ T6581]  ? kmsan_get_metadata+0x105/0x1b0
[  333.451000][ T6581]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  333.451169][ T6581]  ? d_lookup+0x1b6/0x1e0
[  333.451338][ T6581]  path_openat+0x1139/0x6760
[  333.451483][ T6581]  ? filter_irq_stacks+0x49/0x190
[  333.451640][ T6581]  ? kmsan_get_metadata+0x105/0x1b0
[  333.451820][ T6581]  do_filp_open+0x280/0x660
[  333.452006][ T6581]  do_sys_openat2+0x1bb/0x2f0
[  333.452192][ T6581]  __ia32_compat_sys_open+0x211/0x2c0
[  333.452390][ T6581]  ia32_sys_call+0x796/0x42c0
[  333.452509][ T6581]  __do_fast_syscall_32+0xb0/0x110
[  333.452671][ T6581]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  333.452824][ T6581]  do_fast_syscall_32+0x38/0x80
[  333.453016][ T6581]  do_SYSENTER_32+0x1f/0x30
[  333.453179][ T6581]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.453330][ T6581] RIP: 0023:0xf7ff2539
[  333.453417][ T6581] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  333.453519][ T6581] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000005
[  333.453654][ T6581] RAX: ffffffffffffffda RBX: 0000000080000100 RCX: 0000000000143142
[  333.453738][ T6581] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  333.453811][ T6581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.453889][ T6581] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  333.453962][ T6581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.454065][ T6581]  </TASK>
[  334.685818][ T6589] loop3: detected capacity change from 0 to 256
[  334.760319][ T6589] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  334.771704][ T6589] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  334.830177][ T6597] pim6reg: entered allmulticast mode
[  334.951481][ T6589] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  335.629977][ T6606] netlink: 12 bytes leftover after parsing attributes in process `syz.0.223'.
[  335.639579][ T6606] netlink: 8 bytes leftover after parsing attributes in process `syz.0.223'.
[  335.940537][ T6612] input: syz0 as /devices/virtual/input/input10
[  336.375236][ T6616] loop4: detected capacity change from 0 to 128
[  336.427941][ T6606] sctp: failed to load transform for md5: -2
[  336.489488][ T5946] udevd[5946]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  336.620349][ T6616] mmap: syz.4.227 (6616) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  336.909335][ T5844] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  337.101380][ T5844] usb 2-1: Using ep0 maxpacket: 16
[  337.131657][ T5844] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  337.143447][ T5844] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  337.154809][ T5844] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.241085][ T5844] usb 2-1: config 0 descriptor??
[  337.984544][ T5844] usbhid 2-1:0.0: can't add hid device: -71
[  337.991534][ T5844] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  338.056017][ T5844] usb 2-1: USB disconnect, device number 15
[  338.650471][ T5844] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  338.857885][ T6637] loop3: detected capacity change from 0 to 1024
[  338.859403][ T5844] usb 5-1: Using ep0 maxpacket: 16
[  338.927577][ T5844] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  338.939363][ T5844] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  338.949633][ T5844] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  338.962998][ T5844] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  338.972595][ T5844] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  339.007107][ T5844] usb 5-1: config 0 descriptor??
[  339.490603][ T6635] loop4: detected capacity change from 0 to 256
[  339.662459][ T3665] hfsplus: b-tree write err: -5, ino 4
[  339.884673][ T6635] FAT-fs (loop4): Directory bread(block 64) failed
[  339.892183][ T6635] FAT-fs (loop4): Directory bread(block 65) failed
[  339.899372][ T6635] FAT-fs (loop4): Directory bread(block 66) failed
[  339.906194][ T6635] FAT-fs (loop4): Directory bread(block 67) failed
[  339.920202][ T6635] FAT-fs (loop4): Directory bread(block 68) failed
[  339.929120][ T6635] FAT-fs (loop4): Directory bread(block 69) failed
[  339.936104][ T6635] FAT-fs (loop4): Directory bread(block 70) failed
[  339.943168][ T6635] FAT-fs (loop4): Directory bread(block 71) failed
[  339.950256][ T6635] FAT-fs (loop4): Directory bread(block 72) failed
[  339.957054][ T6635] FAT-fs (loop4): Directory bread(block 73) failed
[  340.483878][ T6648] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  340.494881][ T6648] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  340.841312][ T6635] misc userio: Invalid payload size
[  341.127462][ T6643] loop3: detected capacity change from 0 to 4096
[  341.208609][ T6643] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  341.571039][ T6643] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[  341.675171][ T6655] loop1: detected capacity change from 0 to 1024
[  341.736586][ T5844] microsoft 0003:045E:07DA.0005: unbalanced collection at end of report description
[  341.774524][ T5844] microsoft 0003:045E:07DA.0005: parse failed
[  341.781695][ T5844] microsoft 0003:045E:07DA.0005: probe with driver microsoft failed with error -22
[  343.361666][ T6671] FAULT_INJECTION: forcing a failure.
[  343.361666][ T6671] name failslab, interval 1, probability 0, space 0, times 0
[  343.375134][ T6671] CPU: 0 UID: 0 PID: 6671 Comm: syz.3.248 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  343.375285][ T6671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  343.375368][ T6671] Call Trace:
[  343.375419][ T6671]  <TASK>
[  343.375471][ T6671]  __dump_stack+0x26/0x30
[  343.375646][ T6671]  dump_stack_lvl+0x1df/0x270
[  343.375832][ T6671]  dump_stack+0x1e/0x25
[  343.375989][ T6671]  should_fail_ex+0x7dc/0x8a0
[  343.376194][ T6671]  should_failslab+0x15b/0x200
[  343.376378][ T6671]  kmem_cache_alloc_noprof+0xf0/0xec0
[  343.376576][ T6671]  ? vm_area_alloc+0x5c/0x230
[  343.376757][ T6671]  ? kmsan_get_metadata+0x105/0x1b0
[  343.376943][ T6671]  vm_area_alloc+0x5c/0x230
[  343.377112][ T6671]  mmap_region+0x1859/0x48d0
[  343.377433][ T6671]  ? kmsan_get_metadata+0x105/0x1b0
[  343.377626][ T6671]  do_mmap+0x1881/0x1d60
[  343.377836][ T6671]  vm_mmap_pgoff+0x48e/0x770
[  343.378069][ T6671]  ksys_mmap_pgoff+0x16c/0x7c0
[  343.378233][ T6671]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  343.378425][ T6671]  __ia32_sys_mmap_pgoff+0x11a/0x1d0
[  343.378618][ T6671]  ia32_sys_call+0x33d6/0x42c0
[  343.378760][ T6671]  __do_fast_syscall_32+0xb0/0x110
[  343.378937][ T6671]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  343.379111][ T6671]  do_fast_syscall_32+0x38/0x80
[  343.379285][ T6671]  do_SYSENTER_32+0x1f/0x30
[  343.379455][ T6671]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  343.379632][ T6671] RIP: 0023:0xf70be539
[  343.379739][ T6671] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  343.379859][ T6671] RSP: 002b:00000000f50ae340 EFLAGS: 00000206 ORIG_RAX: 00000000000000c0
[  343.379988][ T6671] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000008400000
[  343.380081][ T6671] RDX: 0000000000000003 RSI: 0000000000000022 RDI: 00000000ffffffff
[  343.380166][ T6671] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  343.380246][ T6671] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  343.380328][ T6671] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  343.380443][ T6671]  </TASK>
[  344.001163][ T5844] usb 5-1: USB disconnect, device number 12
[  344.377427][ T6676] FAULT_INJECTION: forcing a failure.
[  344.377427][ T6676] name failslab, interval 1, probability 0, space 0, times 0
[  344.391120][ T6676] CPU: 1 UID: 0 PID: 6676 Comm: syz.0.250 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  344.391268][ T6676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  344.391348][ T6676] Call Trace:
[  344.391398][ T6676]  <TASK>
[  344.391449][ T6676]  __dump_stack+0x26/0x30
[  344.391621][ T6676]  dump_stack_lvl+0x1df/0x270
[  344.391807][ T6676]  dump_stack+0x1e/0x25
[  344.391963][ T6676]  should_fail_ex+0x7dc/0x8a0
[  344.392178][ T6676]  should_failslab+0x15b/0x200
[  344.392362][ T6676]  __kmalloc_noprof+0x182/0x1310
[  344.392555][ T6676]  ? sock_kmalloc+0x18d/0x240
[  344.392697][ T6676]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  344.392894][ T6676]  sock_kmalloc+0x18d/0x240
[  344.393047][ T6676]  ip6_mc_source+0x1329/0x1df0
[  344.393212][ T6676]  ? kmsan_get_metadata+0xa0/0x1b0
[  344.393429][ T6676]  do_ipv6_mcast_group_source+0x68d/0x6a0
[  344.393785][ T6676]  do_ipv6_setsockopt+0x1faf/0x4cb0
[  344.393991][ T6676]  ? __pfx_kstrtoull+0x1/0x10
[  344.394132][ T6676]  ? kmsan_get_metadata+0x105/0x1b0
[  344.394304][ T6676]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  344.394518][ T6676]  ? aa_label_sk_perm+0x6f0/0x7b0
[  344.394675][ T6676]  ? kmsan_get_metadata+0xa0/0x1b0
[  344.394885][ T6676]  ipv6_setsockopt+0xe7/0x2f0
[  344.395018][ T6676]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  344.395204][ T6676]  sctp_setsockopt+0x1f8/0x2150
[  344.395352][ T6676]  ? kmsan_get_metadata+0x105/0x1b0
[  344.395537][ T6676]  ? __pfx_sctp_setsockopt+0x10/0x10
[  344.395680][ T6676]  sock_common_setsockopt+0xf2/0x140
[  344.395874][ T6676]  do_sock_setsockopt+0x4d9/0x820
[  344.396083][ T6676]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  344.396269][ T6676]  __ia32_sys_setsockopt+0x2ac/0x490
[  344.396506][ T6676]  ia32_sys_call+0x41fa/0x42c0
[  344.396640][ T6676]  __do_fast_syscall_32+0xb0/0x110
[  344.396826][ T6676]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  344.397008][ T6676]  do_fast_syscall_32+0x38/0x80
[  344.397182][ T6676]  do_SYSENTER_32+0x1f/0x30
[  344.397351][ T6676]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  344.397528][ T6676] RIP: 0023:0xf7fb3539
[  344.397622][ T6676] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  344.397741][ T6676] RSP: 002b:00000000f50d655c EFLAGS: 00000206 ORIG_RAX: 000000000000016e
[  344.397877][ T6676] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000029
[  344.397965][ T6676] RDX: 000000000000002e RSI: 0000000080000080 RDI: 0000000000000108
[  344.398052][ T6676] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  344.398133][ T6676] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  344.398215][ T6676] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  344.398328][ T6676]  </TASK>
[  345.782143][ T6695] FAULT_INJECTION: forcing a failure.
[  345.782143][ T6695] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.796266][ T6695] CPU: 1 UID: 0 PID: 6695 Comm: syz.3.256 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  345.796408][ T6695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  345.796486][ T6695] Call Trace:
[  345.796535][ T6695]  <TASK>
[  345.796584][ T6695]  __dump_stack+0x26/0x30
[  345.796756][ T6695]  dump_stack_lvl+0x1df/0x270
[  345.796933][ T6695]  dump_stack+0x1e/0x25
[  345.797081][ T6695]  should_fail_ex+0x7dc/0x8a0
[  345.797309][ T6695]  should_fail+0x2a/0x40
[  345.797496][ T6695]  should_fail_usercopy+0x2e/0x40
[  345.797704][ T6695]  _copy_to_user+0x35/0x120
[  345.797900][ T6695]  bpf_verifier_vlog+0xc8d/0x10c0
[  345.798103][ T6695]  ? kmsan_get_metadata+0x105/0x1b0
[  345.798321][ T6695]  __btf_verifier_log+0x1b2/0x1d0
[  345.798543][ T6695]  ? kmsan_get_metadata+0x105/0x1b0
[  345.798728][ T6695]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  345.798917][ T6695]  btf_parse_hdr+0x5c9/0xcc0
[  345.799060][ T6695]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  345.799258][ T6695]  btf_new_fd+0xf40/0x1840
[  345.799459][ T6695]  bpf_btf_load+0x39e/0x3e0
[  345.799650][ T6695]  __sys_bpf+0x96e/0xe60
[  345.799862][ T6695]  __ia32_sys_bpf+0xa4/0xf0
[  345.800016][ T6695]  ia32_sys_call+0x2544/0x42c0
[  345.800153][ T6695]  __do_fast_syscall_32+0xb0/0x110
[  345.800337][ T6695]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  345.800524][ T6695]  do_fast_syscall_32+0x38/0x80
[  345.800702][ T6695]  do_SYSENTER_32+0x1f/0x30
[  345.800890][ T6695]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  345.801064][ T6695] RIP: 0023:0xf70be539
[  345.801160][ T6695] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  345.801275][ T6695] RSP: 002b:00000000f50ae55c EFLAGS: 00000206 ORIG_RAX: 0000000000000165
[  345.801398][ T6695] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00000000800000c0
[  345.801490][ T6695] RDX: 0000000000000028 RSI: 0000000000000000 RDI: 0000000000000000
[  345.801571][ T6695] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  345.801650][ T6695] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  345.801732][ T6695] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  345.801842][ T6695]  </TASK>
[  346.711858][ T6701] loop0: detected capacity change from 0 to 1024
[  346.826771][ T6701] FAULT_INJECTION: forcing a failure.
[  346.826771][ T6701] name failslab, interval 1, probability 0, space 0, times 0
[  346.840527][ T6701] CPU: 0 UID: 0 PID: 6701 Comm: syz.0.259 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  346.840671][ T6701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  346.840749][ T6701] Call Trace:
[  346.840801][ T6701]  <TASK>
[  346.840852][ T6701]  __dump_stack+0x26/0x30
[  346.841027][ T6701]  dump_stack_lvl+0x1df/0x270
[  346.841204][ T6701]  dump_stack+0x1e/0x25
[  346.841365][ T6701]  should_fail_ex+0x7dc/0x8a0
[  346.841577][ T6701]  should_failslab+0x15b/0x200
[  346.841761][ T6701]  kmem_cache_alloc_noprof+0xf0/0xec0
[  346.841955][ T6701]  ? security_inode_alloc+0x85/0x6f0
[  346.842127][ T6701]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  346.842306][ T6701]  ? kmsan_get_metadata+0x105/0x1b0
[  346.842498][ T6701]  security_inode_alloc+0x85/0x6f0
[  346.842675][ T6701]  inode_init_always_gfp+0x754/0x8a0
[  346.842850][ T6701]  alloc_inode+0x129/0x4a0
[  346.843005][ T6701]  iget_locked+0x239/0x12d0
[  346.843161][ T6701]  ? kmsan_get_metadata+0x105/0x1b0
[  346.843425][ T6701]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  346.843630][ T6701]  ? kmsan_get_metadata+0x105/0x1b0
[  346.843797][ T6701]  hfsplus_iget+0x5c/0xb80
[  346.843962][ T6701]  ? kmsan_get_metadata+0x105/0x1b0
[  346.844120][ T6701]  ? kmsan_get_metadata+0x105/0x1b0
[  346.844288][ T6701]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  346.844473][ T6701]  hfsplus_lookup+0xd5f/0xf70
[  346.844693][ T6701]  ? __memcg_slab_post_alloc_hook+0x89a/0x12b0
[  346.844912][ T6701]  ? kmsan_get_metadata+0x105/0x1b0
[  346.845102][ T6701]  ? kmsan_get_metadata+0x105/0x1b0
[  346.845264][ T6701]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  346.845437][ T6701]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  346.845604][ T6701]  ? kmsan_get_metadata+0x105/0x1b0
[  346.845778][ T6701]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  346.845952][ T6701]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  346.846118][ T6701]  ? _raw_spin_unlock+0x30/0x50
[  346.846272][ T6701]  ? kmsan_get_metadata+0x105/0x1b0
[  346.846449][ T6701]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  346.846629][ T6701]  ? __pfx_hfsplus_lookup+0x10/0x10
[  346.846825][ T6701]  lookup_one_qstr_excl_raw+0x204/0x5b0
[  346.847040][ T6701]  do_renameat2+0x9a6/0x1d70
[  346.847191][ T6701]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  346.847436][ T6701]  __ia32_sys_rename+0xd7/0x140
[  346.847611][ T6701]  ia32_sys_call+0x3d36/0x42c0
[  346.847747][ T6701]  __do_fast_syscall_32+0xb0/0x110
[  346.847938][ T6701]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  346.848128][ T6701]  do_fast_syscall_32+0x38/0x80
[  346.848297][ T6701]  do_SYSENTER_32+0x1f/0x30
[  346.848467][ T6701]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  346.848655][ T6701] RIP: 0023:0xf7fb3539
[  346.848758][ T6701] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  346.848884][ T6701] RSP: 002b:00000000f50d655c EFLAGS: 00000206 ORIG_RAX: 0000000000000026
[  346.849015][ T6701] RAX: ffffffffffffffda RBX: 00000000800001c0 RCX: 0000000080000800
[  346.849111][ T6701] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  346.849196][ T6701] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  346.849279][ T6701] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  346.849363][ T6701] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  346.849480][ T6701]  </TASK>
[  347.334508][    T9] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  347.355214][    T9] dvb_usb_az6027 3-1:0.0: probe with driver dvb_usb_az6027 failed with error -110
[  347.370187][ T5418] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  347.375466][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  347.394346][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  347.395540][ T5418] dvb_usb_az6027 1-1:0.0: probe with driver dvb_usb_az6027 failed with error -2
[  347.440885][ T5418] usb 1-1: USB disconnect, device number 6
[  347.450917][    T9] usb 3-1: USB disconnect, device number 4
[  347.761978][    T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  347.949988][    T9] usb 3-1: device descriptor read/64, error -71
[  347.992671][ T6709] loop1: detected capacity change from 0 to 4096
[  348.153750][ T6714] FAULT_INJECTION: forcing a failure.
[  348.153750][ T6714] name failslab, interval 1, probability 0, space 0, times 0
[  348.167586][ T6714] CPU: 1 UID: 0 PID: 6714 Comm: syz.0.263 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  348.167742][ T6714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  348.167827][ T6714] Call Trace:
[  348.167876][ T6714]  <TASK>
[  348.167919][ T6714]  __dump_stack+0x26/0x30
[  348.168091][ T6714]  dump_stack_lvl+0x1df/0x270
[  348.168280][ T6714]  dump_stack+0x1e/0x25
[  348.168449][ T6714]  should_fail_ex+0x7dc/0x8a0
[  348.168655][ T6714]  should_failslab+0x15b/0x200
[  348.168836][ T6714]  __kvmalloc_node_noprof+0x252/0x14b0
[  348.169010][ T6714]  ? io_alloc_cache_init+0x53/0x150
[  348.169175][ T6714]  ? kmsan_get_metadata+0x105/0x1b0
[  348.169344][ T6714]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  348.169537][ T6714]  io_alloc_cache_init+0x53/0x150
[  348.169685][ T6714]  io_ring_ctx_alloc+0x617/0x12f0
[  348.169881][ T6714]  io_uring_create+0x32f/0x1400
[  348.170089][ T6714]  __se_sys_io_uring_setup+0x572/0x590
[  348.170292][ T6714]  __ia32_sys_io_uring_setup+0x76/0xb0
[  348.170456][ T6714]  ia32_sys_call+0x1e10/0x42c0
[  348.170586][ T6714]  __do_fast_syscall_32+0xb0/0x110
[  348.170757][ T6714]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  348.170920][ T6714]  do_fast_syscall_32+0x38/0x80
[  348.171086][ T6714]  do_SYSENTER_32+0x1f/0x30
[  348.171256][ T6714]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  348.171429][ T6714] RIP: 0023:0xf7fb3539
[  348.171524][ T6714] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  348.171643][ T6714] RSP: 002b:00000000f50d650c EFLAGS: 00000206 ORIG_RAX: 00000000000001a9
[  348.171766][ T6714] RAX: ffffffffffffffda RBX: 00000000000013ac RCX: 0000000080000100
[  348.171854][ T6714] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  348.171933][ T6714] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  348.172013][ T6714] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  348.172094][ T6714] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  348.172216][ T6714]  </TASK>
[  348.393605][    T9] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  348.570434][ T6716] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  348.591525][    T9] usb 3-1: device descriptor read/64, error -71
[  348.700462][    T9] usb usb3-port1: attempt power cycle
[  349.109566][    T9] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  349.340686][ T6719] loop0: detected capacity change from 0 to 4096
[  349.595160][    T9] usb 3-1: device descriptor read/8, error -71
[  350.047210][   T30] audit: type=1800 audit(1746268502.312:130): pid=6719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.265" name="file1" dev="loop0" ino=33 res=0 errno=0
[  351.414420][ T5794] Bluetooth: hci1: link tx timeout
[  351.420296][ T5794] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  351.890571][ T6746] loop1: detected capacity change from 0 to 1024
[  352.059284][ T5844] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  352.346034][ T5844] usb 5-1: New USB device found, idVendor=0b95, idProduct=772b, bcdDevice=a2.4c
[  352.355934][ T5844] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.365071][ T5844] usb 5-1: Product: syz
[  352.369749][ T5844] usb 5-1: Manufacturer: syz
[  352.374620][ T5844] usb 5-1: SerialNumber: syz
[  352.398504][ T5844] usb 5-1: config 0 descriptor??
[  352.509389][   T24] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  352.673668][ T6749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  352.683872][ T6749] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  352.740967][   T24] usb 4-1: Using ep0 maxpacket: 8
[  352.805292][   T24] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  352.815869][   T24] usb 4-1: config 0 has no interface number 0
[  352.823146][   T24] usb 4-1: config 0 interface 1 has no altsetting 0
[  352.909141][   T24] usb 4-1: New USB device found, idVendor=041e, idProduct=0005, bcdDevice=da.9a
[  352.920707][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.929968][   T24] usb 4-1: Product: syz
[  352.934644][   T24] usb 4-1: Manufacturer: syz
[  352.939893][   T24] usb 4-1: SerialNumber: syz
[  353.076944][   T24] usb 4-1: config 0 descriptor??
[  353.392019][ T6762] FAULT_INJECTION: forcing a failure.
[  353.392019][ T6762] name failslab, interval 1, probability 0, space 0, times 0
[  353.410021][ T6762] CPU: 0 UID: 0 PID: 6762 Comm: syz.0.281 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  353.410177][ T6762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  353.410262][ T6762] Call Trace:
[  353.410316][ T6762]  <TASK>
[  353.410367][ T6762]  __dump_stack+0x26/0x30
[  353.410545][ T6762]  dump_stack_lvl+0x1df/0x270
[  353.410729][ T6762]  dump_stack+0x1e/0x25
[  353.410886][ T6762]  should_fail_ex+0x7dc/0x8a0
[  353.411113][ T6762]  should_failslab+0x15b/0x200
[  353.411302][ T6762]  __kmalloc_noprof+0x182/0x1310
[  353.411500][ T6762]  ? tomoyo_realpath_from_path+0xeb/0x9f0
[  353.411691][ T6762]  ? tomoyo_path_number_perm+0x51/0x7d0
[  353.411840][ T6762]  ? filter_irq_stacks+0x49/0x190
[  353.412000][ T6762]  ? kmsan_get_metadata+0x105/0x1b0
[  353.412190][ T6762]  tomoyo_realpath_from_path+0xeb/0x9f0
[  353.412383][ T6762]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  353.412575][ T6762]  ? __srcu_read_lock+0x5e/0xd0
[  353.412770][ T6762]  tomoyo_path_number_perm+0x1d0/0x7d0
[  353.412925][ T6762]  ? stack_depot_save_flags+0x35/0x7c0
[  353.413149][ T6762]  ? kmsan_get_metadata+0x105/0x1b0
[  353.413325][ T6762]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  353.413561][ T6762]  tomoyo_file_ioctl+0x3d/0x50
[  353.413766][ T6762]  security_file_ioctl_compat+0x141/0x590
[  353.413999][ T6762]  __ia32_compat_sys_ioctl+0x150/0x1260
[  353.414157][ T6762]  ? kmsan_get_metadata+0x105/0x1b0
[  353.414331][ T6762]  ? kmsan_get_metadata+0x105/0x1b0
[  353.414528][ T6762]  ia32_sys_call+0x2d07/0x42c0
[  353.414673][ T6762]  __do_fast_syscall_32+0xb0/0x110
[  353.414861][ T6762]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  353.415048][ T6762]  do_fast_syscall_32+0x38/0x80
[  353.415229][ T6762]  do_SYSENTER_32+0x1f/0x30
[  353.415405][ T6762]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  353.415587][ T6762] RIP: 0023:0xf7fb3539
[  353.415689][ T6762] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  353.415815][ T6762] RSP: 002b:00000000f50d655c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  353.415956][ T6762] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008946
[  353.416051][ T6762] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  353.416140][ T6762] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  353.416224][ T6762] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  353.416306][ T6762] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  353.416423][ T6762]  </TASK>
[  353.416478][ T6762] ERROR: Out of memory at tomoyo_realpath_from_path.
[  353.433324][   T24] snd-usb-audio 4-1:0.1: probe with driver snd-usb-audio failed with error -22
[  353.480686][ T5794] Bluetooth: hci1: command 0x0406 tx timeout
[  353.645573][ T6749] loop4: detected capacity change from 0 to 1024
[  353.654748][   T24] usb 4-1: USB disconnect, device number 15
[  353.926522][ T6749] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5
[  353.936573][ T6749] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  353.949132][ T6749] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.277: Failed to acquire dquot type 0
[  354.063925][ T6749] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  354.079281][ T6749] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.277: corrupted inode contents
[  354.205348][ T6749] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #13: comm syz.4.277: mark_inode_dirty error
[  354.270745][ T6133] udevd[6133]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  354.325709][ T6749] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.277: corrupted inode contents
[  354.368504][ T6749] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.277: mark_inode_dirty error
[  354.385631][ T6749] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.277: corrupted inode contents
[  354.400548][ T6749] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  354.411550][ T6749] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.277: corrupted inode contents
[  354.431086][ T6749] EXT4-fs error (device loop4): ext4_truncate:4255: inode #13: comm syz.4.277: mark_inode_dirty error
[  354.444110][ T6749] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  354.570298][ T6749] EXT4-fs (loop4): 1 truncate cleaned up
[  354.580370][ T6749] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  354.979408][ T6749] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.436185][ T6771] loop0: detected capacity change from 0 to 4096
[  355.552200][ T5844] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  355.564497][ T5844] asix 5-1:0.0: probe with driver asix failed with error -71
[  355.609834][    T9] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  355.710564][ T5844] usb 5-1: USB disconnect, device number 13
[  355.830603][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  355.842280][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  355.852837][    T9] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  355.862270][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.014218][    T9] usb 4-1: config 0 descriptor??
[  356.146604][   T30] audit: type=1800 audit(1746268508.402:131): pid=6771 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.284" name="file1" dev="loop0" ino=33 res=0 errno=0
[  356.207490][ T6781] ip6t_srh: unknown srh invflags 85DA
[  356.259698][ T5844] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  356.340779][ T6781] loop4: detected capacity change from 0 to 1024
[  356.490123][    T9] hid-steam 0003:28DE:1142.0006: unknown main item tag 0x0
[  356.491709][ T5844] usb 3-1: Using ep0 maxpacket: 8
[  356.497738][    T9] hid-steam 0003:28DE:1142.0006: unknown main item tag 0x0
[  356.523275][    T9] hid-steam 0003:28DE:1142.0006: item fetching failed at offset 2/5
[  356.556254][ T5844] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  356.566193][ T5844] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.620730][    T9] hid-steam 0003:28DE:1142.0006: steam_probe:parse of hid interface failed
[  356.629319][ T6781] netlink: 16 bytes leftover after parsing attributes in process `syz.4.288'.
[  356.630150][    T9] hid-steam 0003:28DE:1142.0006: probe with driver hid-steam failed with error -22
[  356.653761][ T5844] usb 3-1: config 0 descriptor??
[  356.749244][    T9] usb 4-1: USB disconnect, device number 16
[  356.928479][ T5844] asix 3-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  357.185705][ T1148] hfsplus: b-tree write err: -5, ino 4
[  357.694994][ T6784] loop0: detected capacity change from 0 to 128
[  357.773948][ T6784] FAT-fs (loop0): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  358.084935][ T6790] loop3: detected capacity change from 0 to 64
[  358.187536][ T5844] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  358.198241][ T5844] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0088: ffffffb9
[  358.211482][ T5844] asix 3-1:0.0: probe with driver asix failed with error -71
[  358.264616][ T6790] BFS-fs: bfs_fill_super(): Inode 0x00000032 corrupted on loop3
[  358.400241][ T5844] usb 3-1: USB disconnect, device number 9
[  358.751862][ T6796] netlink: 24 bytes leftover after parsing attributes in process `syz.4.294'.
[  358.770344][ T6796] bond0: option ad_select: unable to set because the bond device is up
[  359.223148][ T6801] loop3: detected capacity change from 0 to 256
[  359.247649][ T6801] exfat: Deprecated parameter 'namecase'
[  359.254028][ T6801] exfat: Bad value for 'uid'
[  359.259073][ T6801] exfat: Bad value for 'uid'
[  359.341310][ T6803] fuse: Unknown parameter '0x0000000000000003'
[  359.563555][ T5801] Bluetooth: hci2: command 0x0406 tx timeout
[  359.570148][ T5801] Bluetooth: hci4: command 0x0406 tx timeout
[  359.759276][ T6801] netlink: 'syz.3.296': attribute type 2 has an invalid length.
[  359.834141][ T6813] FAULT_INJECTION: forcing a failure.
[  359.834141][ T6813] name failslab, interval 1, probability 0, space 0, times 0
[  359.835999][ T6801] netlink: 'syz.3.296': attribute type 2 has an invalid length.
[  359.847592][ T6813] CPU: 0 UID: 0 PID: 6813 Comm: syz.4.301 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  359.847758][ T6813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  359.847849][ T6813] Call Trace:
[  359.847906][ T6813]  <TASK>
[  359.847960][ T6813]  __dump_stack+0x26/0x30
[  359.848146][ T6813]  dump_stack_lvl+0x1df/0x270
[  359.848353][ T6813]  dump_stack+0x1e/0x25
[  359.848521][ T6813]  should_fail_ex+0x7dc/0x8a0
[  359.848758][ T6813]  should_failslab+0x15b/0x200
[  359.848959][ T6813]  __kmalloc_cache_noprof+0xcb/0xed0
[  359.849173][ T6813]  ? ieee80211_set_qos_map+0x6d/0x210
[  359.849369][ T6813]  ? kmsan_get_metadata+0x105/0x1b0
[  359.849547][ T6813]  ? kmsan_get_metadata+0x105/0x1b0
[  359.849743][ T6813]  ieee80211_set_qos_map+0x6d/0x210
[  359.849922][ T6813]  ? __pfx_ieee80211_set_qos_map+0x10/0x10
[  359.850095][ T6813]  nl80211_set_qos_map+0xc54/0x11a0
[  359.850288][ T6813]  ? __pfx_nl80211_set_qos_map+0x10/0x10
[  359.850443][ T6813]  genl_family_rcv_msg_doit+0x335/0x3f0
[  359.850668][ T6813]  genl_rcv_msg+0xacf/0xc10
[  359.850823][ T6813]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  359.850982][ T6813]  ? __pfx_nl80211_set_qos_map+0x10/0x10
[  359.851149][ T6813]  ? __pfx_nl80211_post_doit+0x10/0x10
[  359.851374][ T6813]  netlink_rcv_skb+0x54a/0x680
[  359.851615][ T6813]  ? __pfx_genl_rcv_msg+0x10/0x10
[  359.851807][ T6813]  genl_rcv+0x41/0x60
[  359.851958][ T6813]  ? __pfx_genl_rcv+0x10/0x10
[  359.852111][ T6813]  netlink_unicast+0xed5/0x1290
[  359.852346][ T6813]  netlink_sendmsg+0x10b3/0x1250
[  359.852527][ T6813]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.852670][ T6813]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.852815][ T6813]  __sock_sendmsg+0x330/0x3d0
[  359.853000][ T6813]  ____sys_sendmsg+0x7e0/0xd80
[  359.853204][ T6813]  ___sys_sendmsg+0x271/0x3b0
[  359.853370][ T6813]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  359.853573][ T6813]  ? __rcu_read_unlock+0x6d/0xd0
[  359.853751][ T6813]  ? __fget_files+0x3b4/0x4a0
[  359.853920][ T6813]  ? __fget_files+0x3b9/0x4a0
[  359.854099][ T6813]  ? kmsan_get_metadata+0x105/0x1b0
[  359.854286][ T6813]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  359.854498][ T6813]  __sys_sendmsg+0x1aa/0x300
[  359.854678][ T6813]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  359.854912][ T6813]  ia32_sys_call+0x3692/0x42c0
[  359.855044][ T6813]  __do_fast_syscall_32+0xb0/0x110
[  359.855219][ T6813]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  359.855412][ T6813]  do_fast_syscall_32+0x38/0x80
[  359.855604][ T6813]  do_SYSENTER_32+0x1f/0x30
[  359.855787][ T6813]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  359.855991][ T6813] RIP: 0023:0xf7ff2539
[  359.856095][ T6813] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  359.856225][ T6813] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  359.856388][ T6813] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080003240
[  359.856493][ T6813] RDX: 000000000000c010 RSI: 0000000000000000 RDI: 0000000000000000
[  359.856587][ T6813] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  359.856677][ T6813] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  359.856771][ T6813] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  359.856902][ T6813]  </TASK>
[  360.577502][ T6816] loop2: detected capacity change from 0 to 256
[  360.710709][ T6810] loop0: detected capacity change from 0 to 4096
[  360.913864][ T6818] netlink: 8 bytes leftover after parsing attributes in process `syz.4.303'.
[  361.383800][   T30] audit: type=1800 audit(1746268513.642:132): pid=6810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.299" name="file1" dev="loop0" ino=33 res=0 errno=0
[  361.637921][ T6825] loop2: detected capacity change from 0 to 512
[  361.713521][ T6825] EXT4-fs: Ignoring removed mblk_io_submit option
[  361.721744][ T6825] EXT4-fs: Ignoring removed mblk_io_submit option
[  361.800584][ T6825] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  361.907229][ T6825] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  361.916728][ T6825] System zones: 1-12
[  361.948085][ T6825] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.306: corrupted in-inode xattr: e_value size too large
[  362.119840][ T6825] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.306: couldn't read orphan inode 15 (err -117)
[  362.232349][ T6825] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.996657][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.406605][ T6856] loop0: detected capacity change from 0 to 2048
[  364.414547][ T5844] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  364.563083][ T6856] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  364.638437][ T5844] usb 3-1: Using ep0 maxpacket: 8
[  364.649549][ T6856] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  364.665256][ T5844] usb 3-1: config 1 has an invalid interface number: 181 but max is 0
[  364.675481][ T5844] usb 3-1: config 1 has no interface number 0
[  364.684146][ T5844] usb 3-1: config 1 interface 181 has no altsetting 0
[  364.715913][ T6856] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  364.989198][ T5844] usb 3-1: New USB device found, idVendor=1608, idProduct=0309, bcdDevice=ae.52
[  364.998599][ T5844] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.010358][ T5844] usb 3-1: Product: syz
[  365.014778][ T5844] usb 3-1: Manufacturer: syz
[  365.020236][ T5844] usb 3-1: SerialNumber: syz
[  365.271661][ T5844] io_ti 3-1:1.181: required endpoints missing
[  365.310094][ T5844] usb 3-1: USB disconnect, device number 10
[  365.452759][ T6870] loop4: detected capacity change from 0 to 4096
[  365.521555][ T6871] loop3: detected capacity change from 0 to 4096
[  365.574416][ T6875] loop0: detected capacity change from 0 to 256
[  365.778143][ T6875] FAT-fs (loop0): Directory bread(block 64) failed
[  365.785135][ T6875] FAT-fs (loop0): Directory bread(block 65) failed
[  365.792467][ T6875] FAT-fs (loop0): Directory bread(block 66) failed
[  365.799681][ T6875] FAT-fs (loop0): Directory bread(block 67) failed
[  365.806636][ T6875] FAT-fs (loop0): Directory bread(block 68) failed
[  365.813669][ T6875] FAT-fs (loop0): Directory bread(block 69) failed
[  365.827410][ T6875] FAT-fs (loop0): Directory bread(block 70) failed
[  365.836182][ T6875] FAT-fs (loop0): Directory bread(block 71) failed
[  365.843349][ T6875] FAT-fs (loop0): Directory bread(block 72) failed
[  365.850320][ T6875] FAT-fs (loop0): Directory bread(block 73) failed
[  366.022575][ T6875] netlink: 24 bytes leftover after parsing attributes in process `syz.0.322'.
[  366.295089][ T6881] loop2: detected capacity change from 0 to 764
[  366.954788][ T6887] loop0: detected capacity change from 0 to 1024
[  367.059984][ T6887] hfsplus: extend alloc file! (8192,8,110)
[  367.327487][ T5844] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  367.522201][ T5844] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  367.533844][ T5844] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  367.546784][ T5844] usb 3-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  367.556315][ T5844] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  367.610041][ T6898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  367.619583][ T6898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  367.651051][ T5844] usb 3-1: config 0 descriptor??
[  367.831250][   T24] usb 4-1: new full-speed USB device number 17 using dummy_hcd
[  367.994607][   T24] usb 4-1: device descriptor read/64, error -71
[  368.110724][ T5844] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  368.168331][ T5844] cp2112 0003:10C4:EA90.0007: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.2-1/input0
[  368.232462][ T6903] netlink: 'syz.4.330': attribute type 25 has an invalid length.
[  368.306347][ T5844] cp2112 0003:10C4:EA90.0007: Part Number: 0x6C Device Version: 0xBE
[  368.318903][   T24] usb 4-1: new full-speed USB device number 18 using dummy_hcd
[  368.482966][   T24] usb 4-1: device descriptor read/64, error -71
[  368.610091][   T24] usb usb4-port1: attempt power cycle
[  368.979609][   T24] usb 4-1: new full-speed USB device number 19 using dummy_hcd
[  369.029507][   T24] usb 4-1: device descriptor read/8, error -71
[  369.263921][ T5844] cp2112 0003:10C4:EA90.0007: error reading lock byte: -71
[  369.289662][   T24] usb 4-1: new full-speed USB device number 20 using dummy_hcd
[  369.346975][   T24] usb 4-1: device descriptor read/8, error -71
[  369.360487][   T45] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  369.460307][   T24] usb usb4-port1: unable to enumerate USB device
[  369.545235][ T6917] netlink: 4 bytes leftover after parsing attributes in process `syz.0.337'.
[  369.556475][   T45] usb 2-1: Using ep0 maxpacket: 8
[  369.578100][   T45] usb 2-1: config 0 has an invalid interface number: 246 but max is 0
[  369.578655][ T6917] loop0: detected capacity change from 0 to 64
[  369.587454][   T45] usb 2-1: config 0 has no interface number 0
[  369.616793][   T45] usb 2-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  369.626609][   T45] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  369.635153][   T45] usb 2-1: Product: syz
[  369.639909][   T45] usb 2-1: Manufacturer: syz
[  369.644763][   T45] usb 2-1: SerialNumber: syz
[  369.659767][   T45] usb 2-1: config 0 descriptor??
[  369.939312][   T45] msi2500 2-1:0.246: Registered as swradio24
[  369.945632][   T45] msi2500 2-1:0.246: SDR API is still slightly experimental and functionality changes may follow
[  370.090783][ T5844] usb 3-1: USB disconnect, device number 11
[  370.429626][ T5844] usb 2-1: USB disconnect, device number 16
[  370.965354][ T6934] netlink: 24 bytes leftover after parsing attributes in process `syz.3.342'.
[  371.270943][ T5844] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  371.316464][ T6939] FAULT_INJECTION: forcing a failure.
[  371.316464][ T6939] name failslab, interval 1, probability 0, space 0, times 0
[  371.329852][ T6939] CPU: 1 UID: 0 PID: 6939 Comm: syz.4.344 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  371.330004][ T6939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  371.330092][ T6939] Call Trace:
[  371.330144][ T6939]  <TASK>
[  371.330192][ T6939]  __dump_stack+0x26/0x30
[  371.330370][ T6939]  dump_stack_lvl+0x1df/0x270
[  371.330544][ T6939]  dump_stack+0x1e/0x25
[  371.330699][ T6939]  should_fail_ex+0x7dc/0x8a0
[  371.330917][ T6939]  should_failslab+0x15b/0x200
[  371.331108][ T6939]  __kmalloc_cache_noprof+0xcb/0xed0
[  371.331308][ T6939]  ? __hw_addr_add_ex+0x371/0xcc0
[  371.331485][ T6939]  ? filter_irq_stacks+0x49/0x190
[  371.331637][ T6939]  ? kmsan_get_metadata+0x105/0x1b0
[  371.331827][ T6939]  __hw_addr_add_ex+0x371/0xcc0
[  371.332059][ T6939]  dev_addr_init+0xec/0x1e0
[  371.332231][ T6939]  ? kmsan_get_metadata+0x105/0x1b0
[  371.332418][ T6939]  alloc_netdev_mqs+0x46f/0x2390
[  371.332610][ T6939]  ? snprintf+0x1d2/0x210
[  371.332745][ T6939]  ? __pfx_hsr_dev_setup+0x10/0x10
[  371.332907][ T6939]  rtnl_create_link+0x504/0x1ba0
[  371.333103][ T6939]  ? __pfx_hsr_dev_setup+0x10/0x10
[  371.333269][ T6939]  rtnl_newlink_create+0x300/0x1230
[  371.333460][ T6939]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  371.333629][ T6939]  ? kmsan_get_metadata+0x105/0x1b0
[  371.333813][ T6939]  rtnl_newlink+0x2f13/0x3a90
[  371.334058][ T6939]  ? kmsan_get_metadata+0x105/0x1b0
[  371.334235][ T6939]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  371.334404][ T6939]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  371.334572][ T6939]  ? apparmor_capable+0x32d/0x410
[  371.334763][ T6939]  ? kmsan_get_metadata+0x105/0x1b0
[  371.334938][ T6939]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  371.335129][ T6939]  ? kmsan_get_metadata+0x105/0x1b0
[  371.335304][ T6939]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  371.335491][ T6939]  ? __rcu_read_unlock+0x6d/0xd0
[  371.335658][ T6939]  ? __pfx_rtnl_newlink+0x10/0x10
[  371.335804][ T6939]  rtnetlink_rcv_msg+0x106c/0x14b0
[  371.335956][ T6939]  ? stack_depot_save_flags+0x35/0x7c0
[  371.336151][ T6939]  ? kmsan_get_metadata+0x105/0x1b0
[  371.336366][ T6939]  netlink_rcv_skb+0x54a/0x680
[  371.336593][ T6939]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  371.336765][ T6939]  rtnetlink_rcv+0x35/0x40
[  371.336903][ T6939]  ? __pfx_rtnetlink_rcv+0x10/0x10
[  371.337045][ T6939]  netlink_unicast+0xed5/0x1290
[  371.337263][ T6939]  netlink_sendmsg+0x10b3/0x1250
[  371.337430][ T6939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  371.337563][ T6939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  371.337701][ T6939]  __sock_sendmsg+0x330/0x3d0
[  371.337870][ T6939]  ____sys_sendmsg+0x7e0/0xd80
[  371.338042][ T6939]  ___sys_sendmsg+0x271/0x3b0
[  371.338193][ T6939]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  371.338378][ T6939]  ? __rcu_read_unlock+0x6d/0xd0
[  371.338535][ T6939]  ? __fget_files+0x3b4/0x4a0
[  371.338689][ T6939]  ? __fget_files+0x3b9/0x4a0
[  371.338854][ T6939]  ? kmsan_get_metadata+0x105/0x1b0
[  371.339023][ T6939]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  371.339208][ T6939]  __sys_sendmsg+0x1aa/0x300
[  371.339377][ T6939]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  371.339591][ T6939]  ia32_sys_call+0x3692/0x42c0
[  371.339729][ T6939]  __do_fast_syscall_32+0xb0/0x110
[  371.339905][ T6939]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  371.340090][ T6939]  do_fast_syscall_32+0x38/0x80
[  371.340267][ T6939]  do_SYSENTER_32+0x1f/0x30
[  371.340436][ T6939]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  371.340610][ T6939] RIP: 0023:0xf7ff2539
[  371.340710][ T6939] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  371.340831][ T6939] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  371.340964][ T6939] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800002c0
[  371.341065][ T6939] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 0000000000000000
[  371.341150][ T6939] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  371.341247][ T6939] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  371.341330][ T6939] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  371.341442][ T6939]  </TASK>
[  371.809205][    T9] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  371.949688][ T5844] usb 4-1: device descriptor read/64, error -71
[  372.007825][    T9] usb 1-1: config 150 has an invalid interface number: 204 but max is 1
[  372.016967][    T9] usb 1-1: config 150 has no interface number 0
[  372.023703][    T9] usb 1-1: config 150 interface 204 has no altsetting 0
[  372.031027][    T9] usb 1-1: config 150 interface 1 has no altsetting 0
[  372.130370][    T9] usb 1-1: New USB device found, idVendor=04e2, idProduct=1424, bcdDevice=c7.eb
[  372.140148][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  372.148450][    T9] usb 1-1: Product: syz
[  372.153040][    T9] usb 1-1: Manufacturer: syz
[  372.157898][    T9] usb 1-1: SerialNumber: syz
[  372.209641][ T5844] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  372.359864][ T5844] usb 4-1: device descriptor read/64, error -71
[  372.489585][ T5844] usb usb4-port1: attempt power cycle
[  372.648129][ T6947] netlink: 36 bytes leftover after parsing attributes in process `syz.1.348'.
[  372.743791][ T6948] loop1: detected capacity change from 0 to 128
[  372.794587][ T6948] vfat: Unknown parameter 'D'
[  372.879198][ T5844] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  372.938138][ T5844] usb 4-1: device descriptor read/8, error -71
[  372.999632][ T5086] Bluetooth: hci3: command 0x0406 tx timeout
[  373.195437][ T5844] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  373.245440][ T5844] usb 4-1: device descriptor read/8, error -71
[  373.363500][ T5844] usb usb4-port1: unable to enumerate USB device
[  373.679868][ T5418] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  373.899408][ T5418] usb 2-1: Using ep0 maxpacket: 16
[  373.944033][ T5418] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  373.955973][ T5418] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  373.965804][ T5418] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  374.042149][ T5418] usb 2-1: config 0 descriptor??
[  374.345408][    T9] xr_serial 1-1:150.204: xr_serial converter detected
[  374.380035][    T9] xr_serial ttyUSB0: Failed to set reg 0x60: -71
[  374.387570][    T9] xr_serial ttyUSB0: probe with driver xr_serial failed with error -71
[  374.427784][    T9] usb 1-1: USB disconnect, device number 7
[  374.438441][    T9] xr_serial 1-1:150.204: device disconnected
[  374.740702][ T5418] usbhid 2-1:0.0: can't add hid device: -71
[  374.747526][ T5418] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  374.773588][ T5418] usb 2-1: USB disconnect, device number 17
[  374.852502][ T6969] netlink: 4 bytes leftover after parsing attributes in process `syz.0.356'.
[  375.049277][    T9] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  375.173127][ T5848] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  375.219236][    T9] usb 4-1: Using ep0 maxpacket: 8
[  375.256219][    T9] usb 4-1: config 2 interface 0 altsetting 8 endpoint 0x9 has invalid wMaxPacketSize 0
[  375.266516][    T9] usb 4-1: config 2 interface 0 has no altsetting 0
[  375.328934][    T9] usb 4-1: New USB device found, idVendor=04e2, idProduct=1412, bcdDevice=ca.10
[  375.338437][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  375.352544][    T9] usb 4-1: Product: syz
[  375.356981][    T9] usb 4-1: Manufacturer: syz
[  375.363701][    T9] usb 4-1: SerialNumber: syz
[  375.411902][ T5848] usb 1-1: New USB device found, idVendor=13d8, idProduct=0011, bcdDevice=d0.62
[  375.421454][ T5848] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  375.429950][ T5848] usb 1-1: Product: syz
[  375.434392][ T5848] usb 1-1: Manufacturer: syz
[  375.439394][ T5848] usb 1-1: SerialNumber: syz
[  375.481580][ T5848] usb 1-1: config 0 descriptor??
[  375.518218][ T5848] usb 1-1: selecting invalid altsetting 1
[  375.524642][ T5848] comedi comedi0: could not switch to alternate setting 1
[  375.532529][ T5848] usbduxfast 1-1:0.0: driver 'usbduxfast' failed to auto-configure device.
[  375.719079][ T5848] usb 1-1: USB disconnect, device number 8
[  375.893050][    T9] usb 4-1: USB disconnect, device number 25
[  376.961723][ T6993] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  377.264832][ T6996] loop2: detected capacity change from 0 to 2048
[  377.310794][ T6996] ext4: Unknown parameter 'func'
[  377.659335][ T2164] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  377.680849][    T9] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  377.854901][ T2164] usb 4-1: Using ep0 maxpacket: 16
[  377.879156][ T2164] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  377.879270][    T9] usb 3-1: Using ep0 maxpacket: 16
[  377.889992][    T9] usb 3-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  377.890935][ T2164] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  377.895596][    T9] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  377.908195][ T2164] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.942708][    T9] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  377.952938][    T9] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8
[  377.978379][    T9] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  378.032966][ T2164] usb 4-1: config 0 descriptor??
[  378.142758][    T9] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  378.152627][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  378.161110][    T9] usb 3-1: SerialNumber: syz
[  378.245222][ T6996] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  378.303236][    T9] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  378.324853][    T9] cdc_acm 3-1:1.0: probe with driver cdc_acm failed with error -12
[  378.362435][ T7008] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x3
[  378.449743][ T7008] netlink: 72 bytes leftover after parsing attributes in process `syz.0.372'.
[  378.510886][    T9] usb 3-1: USB disconnect, device number 12
[  378.530719][ T2164] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  378.538345][ T2164] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  378.546486][ T2164] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  378.556697][ T2164] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  378.564208][ T2164] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0
[  378.634413][ T2164] mcp2221 0003:04D8:00DD.0008: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  378.747101][ T2164] usb 4-1: USB disconnect, device number 26
[  378.805045][ T7011] loop4: detected capacity change from 0 to 1024
[  378.850065][ T7011] EXT4-fs: Ignoring removed orlov option
[  378.856113][ T7011] EXT4-fs: Ignoring removed nomblk_io_submit option
[  378.934191][ T7011] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  379.034898][   T30] audit: type=1800 audit(1746268531.292:133): pid=7011 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.374" name="file1" dev="loop4" ino=15 res=0 errno=0
[  379.529429][    T9] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  379.586894][ T5787] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.730526][    T9] usb 1-1: Using ep0 maxpacket: 32
[  379.758891][    T9] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  379.767798][    T9] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  379.775435][ T7028] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  379.776888][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  379.792915][    T9] usb 1-1: config 1 has no interface number 0
[  379.799876][    T9] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  379.811137][    T9] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  379.824613][    T9] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  379.834190][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  379.889883][    T9] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  380.095045][    T9] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached
[  380.565903][ T5844] usb 1-1: USB disconnect, device number 9
[  380.574419][ T5844] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  380.990228][ T7042] loop3: detected capacity change from 0 to 256
[  381.045650][ T7042] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  381.117277][ T7042] exFAT-fs (loop3): start_clu is invalid cluster(0xffffffff)
[  381.125794][ T7042] exFAT-fs (loop3): valid_size(150994954) is greater than size(10)
[  381.344059][ T7046] FAULT_INJECTION: forcing a failure.
[  381.344059][ T7046] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  381.357918][ T7046] CPU: 0 UID: 0 PID: 7046 Comm: syz.1.388 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  381.358069][ T7046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  381.358159][ T7046] Call Trace:
[  381.358214][ T7046]  <TASK>
[  381.358264][ T7046]  __dump_stack+0x26/0x30
[  381.358442][ T7046]  dump_stack_lvl+0x1df/0x270
[  381.358617][ T7046]  dump_stack+0x1e/0x25
[  381.358780][ T7046]  should_fail_ex+0x7dc/0x8a0
[  381.358998][ T7046]  should_fail+0x2a/0x40
[  381.359180][ T7046]  should_fail_usercopy+0x2e/0x40
[  381.359377][ T7046]  _copy_to_user+0x35/0x120
[  381.359567][ T7046]  simple_read_from_buffer+0x1b2/0x340
[  381.359736][ T7046]  proc_fail_nth_read+0x1d2/0x2c0
[  381.359933][ T7046]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  381.360121][ T7046]  vfs_read+0x279/0xef0
[  381.360268][ T7046]  ? stack_depot_save_flags+0x35/0x7c0
[  381.360459][ T7046]  ? kmsan_get_metadata+0x105/0x1b0
[  381.360639][ T7046]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  381.360833][ T7046]  __ia32_sys_read+0x1f9/0x4d0
[  381.361007][ T7046]  ia32_sys_call+0x184c/0x42c0
[  381.361158][ T7046]  __do_fast_syscall_32+0xb0/0x110
[  381.361345][ T7046]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  381.361528][ T7046]  do_fast_syscall_32+0x38/0x80
[  381.361705][ T7046]  do_SYSENTER_32+0x1f/0x30
[  381.361878][ T7046]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  381.362057][ T7046] RIP: 0023:0xf7fc2539
[  381.362171][ T7046] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  381.362293][ T7046] RSP: 002b:00000000f50e6590 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[  381.362424][ T7046] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50e6620
[  381.362519][ T7046] RDX: 000000000000000f RSI: 00000000f7452ff4 RDI: 0000000000000000
[  381.362604][ T7046] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  381.362687][ T7046] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  381.362774][ T7046] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  381.362899][ T7046]  </TASK>
[  381.909151][ T5844] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  382.038419][ T7053] FAULT_INJECTION: forcing a failure.
[  382.038419][ T7053] name failslab, interval 1, probability 0, space 0, times 0
[  382.051788][ T7053] CPU: 0 UID: 0 PID: 7053 Comm: syz.2.393 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  382.051943][ T7053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  382.052027][ T7053] Call Trace:
[  382.052080][ T7053]  <TASK>
[  382.052134][ T7053]  __dump_stack+0x26/0x30
[  382.052322][ T7053]  dump_stack_lvl+0x1df/0x270
[  382.052524][ T7053]  dump_stack+0x1e/0x25
[  382.052679][ T7053]  should_fail_ex+0x7dc/0x8a0
[  382.052896][ T7053]  should_failslab+0x15b/0x200
[  382.053082][ T7053]  kmem_cache_alloc_noprof+0xf0/0xec0
[  382.053279][ T7053]  ? skb_clone+0x3ca/0x580
[  382.053428][ T7053]  ? kmsan_get_metadata+0x105/0x1b0
[  382.053636][ T7053]  skb_clone+0x3ca/0x580
[  382.053782][ T7053]  __netlink_deliver_tap+0x695/0xdd0
[  382.053991][ T7053]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  382.054165][ T7053]  ? kmsan_get_metadata+0x105/0x1b0
[  382.054347][ T7053]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  382.054544][ T7053]  netlink_sendskb+0x224/0x270
[  382.054741][ T7053]  netlink_unicast+0x746/0x1290
[  382.054955][ T7053]  netlink_ack+0xacc/0xf80
[  382.055138][ T7053]  ? stack_depot_save_flags+0x35/0x7c0
[  382.055379][ T7053]  netlink_rcv_skb+0x3f9/0x680
[  382.055602][ T7053]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  382.055777][ T7053]  rtnetlink_rcv+0x35/0x40
[  382.055913][ T7053]  ? __pfx_rtnetlink_rcv+0x10/0x10
[  382.056056][ T7053]  netlink_unicast+0xed5/0x1290
[  382.056259][ T7053]  netlink_sendmsg+0x10b3/0x1250
[  382.056429][ T7053]  ? __pfx_netlink_sendmsg+0x10/0x10
[  382.056568][ T7053]  ? __pfx_netlink_sendmsg+0x10/0x10
[  382.056699][ T7053]  __sock_sendmsg+0x330/0x3d0
[  382.056856][ T7053]  ____sys_sendmsg+0x7e0/0xd80
[  382.057016][ T7053]  ___sys_sendmsg+0x271/0x3b0
[  382.057158][ T7053]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  382.057334][ T7053]  ? __rcu_read_unlock+0x6d/0xd0
[  382.057498][ T7053]  ? __fget_files+0x3b4/0x4a0
[  382.057647][ T7053]  ? __fget_files+0x3b9/0x4a0
[  382.057809][ T7053]  ? kmsan_get_metadata+0x105/0x1b0
[  382.057974][ T7053]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  382.058158][ T7053]  __sys_sendmsg+0x1aa/0x300
[  382.058321][ T7053]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  382.058541][ T7053]  ia32_sys_call+0x3692/0x42c0
[  382.058670][ T7053]  __do_fast_syscall_32+0xb0/0x110
[  382.058846][ T7053]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  382.059014][ T7053]  do_fast_syscall_32+0x38/0x80
[  382.059182][ T7053]  do_SYSENTER_32+0x1f/0x30
[  382.059373][ T7053]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  382.059554][ T7053] RIP: 0023:0xf7f42539
[  382.059652][ T7053] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  382.059775][ T7053] RSP: 002b:00000000f506655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  382.059910][ T7053] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000600
[  382.060004][ T7053] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  382.060088][ T7053] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  382.060171][ T7053] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  382.060256][ T7053] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  382.060378][ T7053]  </TASK>
[  382.399358][ T5844] usb 1-1: Using ep0 maxpacket: 16
[  382.443118][ T5844] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  382.454843][ T5844] usb 1-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  382.455997][ T7056] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  382.464262][ T5844] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.574776][ T5844] usb 1-1: config 0 descriptor??
[  383.067598][ T7064] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  383.108136][ T7064] overlayfs: missing 'lowerdir'
[  383.134855][ T5844] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  383.152792][ T5844] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  383.162375][ T5844] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  383.169897][ T5844] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  383.177374][ T5844] mcp2221 0003:04D8:00DD.0009: unknown main item tag 0x0
[  383.806856][ T5844] mcp2221 0003:04D8:00DD.0009: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  383.900587][ T5844] usb 1-1: USB disconnect, device number 10
[  384.264302][ T2164] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  384.378588][ T7076] loop3: detected capacity change from 0 to 1024
[  384.464977][ T2164] usb 2-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  384.474758][ T2164] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  384.479045][    T9] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  384.494783][ T2164] usb 2-1: config 0 descriptor??
[  384.514191][ T2164] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  384.529404][ T7080] FAULT_INJECTION: forcing a failure.
[  384.529404][ T7080] name failslab, interval 1, probability 0, space 0, times 0
[  384.542914][ T7080] CPU: 1 UID: 0 PID: 7080 Comm: syz.4.403 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  384.543070][ T7080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  384.543154][ T7080] Call Trace:
[  384.543205][ T7080]  <TASK>
[  384.543258][ T7080]  __dump_stack+0x26/0x30
[  384.543430][ T7080]  dump_stack_lvl+0x1df/0x270
[  384.543612][ T7080]  dump_stack+0x1e/0x25
[  384.543765][ T7080]  should_fail_ex+0x7dc/0x8a0
[  384.543989][ T7080]  should_failslab+0x15b/0x200
[  384.544173][ T7080]  kmem_cache_alloc_node_noprof+0xf3/0xf00
[  384.544380][ T7080]  ? __alloc_skb+0x1e0/0x7d0
[  384.544570][ T7080]  ? kmsan_get_metadata+0x105/0x1b0
[  384.544745][ T7080]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  384.544945][ T7080]  __alloc_skb+0x1e0/0x7d0
[  384.545144][ T7080]  netlink_dump+0x316/0x1690
[  384.545369][ T7080]  ? kmsan_get_metadata+0x105/0x1b0
[  384.545560][ T7080]  __netlink_dump_start+0x716/0xd60
[  384.545784][ T7080]  genl_family_rcv_msg_dumpit+0x27d/0x370
[  384.545971][ T7080]  ? __pfx_genl_start+0x10/0x10
[  384.546125][ T7080]  ? __pfx_genl_dumpit+0x10/0x10
[  384.546277][ T7080]  ? __pfx_genl_done+0x10/0x10
[  384.546449][ T7080]  genl_rcv_msg+0xa7a/0xc10
[  384.546601][ T7080]  ? __pfx_batadv_hardif_neigh_dump+0x10/0x10
[  384.546859][ T7080]  netlink_rcv_skb+0x54a/0x680
[  384.547082][ T7080]  ? __pfx_genl_rcv_msg+0x10/0x10
[  384.547262][ T7080]  genl_rcv+0x41/0x60
[  384.547401][ T7080]  ? __pfx_genl_rcv+0x10/0x10
[  384.547549][ T7080]  netlink_unicast+0xed5/0x1290
[  384.547761][ T7080]  netlink_sendmsg+0x10b3/0x1250
[  384.547937][ T7080]  ? __pfx_netlink_sendmsg+0x10/0x10
[  384.548067][ T7080]  ? __pfx_netlink_sendmsg+0x10/0x10
[  384.548208][ T7080]  __sock_sendmsg+0x330/0x3d0
[  384.548381][ T7080]  ____sys_sendmsg+0x7e0/0xd80
[  384.548553][ T7080]  ___sys_sendmsg+0x271/0x3b0
[  384.548702][ T7080]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  384.548913][ T7080]  ? __rcu_read_unlock+0x6d/0xd0
[  384.549070][ T7080]  ? __fget_files+0x3b4/0x4a0
[  384.549244][ T7080]  ? __fget_files+0x3b9/0x4a0
[  384.549413][ T7080]  ? kmsan_get_metadata+0x105/0x1b0
[  384.549585][ T7080]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  384.549779][ T7080]  __sys_sendmsg+0x1aa/0x300
[  384.549955][ T7080]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  384.550175][ T7080]  ia32_sys_call+0x3692/0x42c0
[  384.550309][ T7080]  __do_fast_syscall_32+0xb0/0x110
[  384.550492][ T7080]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  384.550670][ T7080]  do_fast_syscall_32+0x38/0x80
[  384.550870][ T7080]  do_SYSENTER_32+0x1f/0x30
[  384.551042][ T7080]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  384.551224][ T7080] RIP: 0023:0xf7ff2539
[  384.551323][ T7080] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  384.551448][ T7080] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  384.551582][ T7080] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080004340
[  384.551676][ T7080] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  384.551760][ T7080] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  384.551844][ T7080] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  384.551938][ T7080] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  384.552056][ T7080]  </TASK>
[  384.882147][    C1] vkms_vblank_simulate: vblank timer overrun
[  384.999146][    T9] usb 3-1: Using ep0 maxpacket: 32
[  385.109685][    T9] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[  385.118578][    T9] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  385.127697][    T9] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[  385.137194][    T9] usb 3-1: config 1 has no interface number 0
[  385.143638][    T9] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  385.155038][    T9] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  385.168449][    T9] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  385.183629][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  385.554479][    T9] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[  385.781152][    T9] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[  385.882888][ T7086] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  385.911299][ T2164] usb 2-1: USB disconnect, device number 18
[  386.231969][ T2164] usb 3-1: USB disconnect, device number 13
[  386.240622][ T2164] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[  386.389352][    T9] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  386.444476][ T7090] loop4: detected capacity change from 0 to 1024
[  386.589061][    T9] usb 4-1: Using ep0 maxpacket: 32
[  386.624749][    T9] usb 4-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  386.634318][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  386.657749][ T7092] loop0: detected capacity change from 0 to 4096
[  386.667330][    T9] usb 4-1: config 0 descriptor??
[  386.739816][ T7092] NILFS (loop0): invalid segment: Checksum error in segment payload
[  386.748368][ T7092] NILFS (loop0): trying rollback from an earlier position
[  386.870385][ T7092] NILFS (loop0): recovery complete
[  386.891942][ T7094] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  386.929537][    T9] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  386.950495][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  386.963678][    T9] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  386.971788][    T9] usb 4-1: media controller created
[  387.021932][ T5801] Bluetooth: hci0: command 0x0406 tx timeout
[  387.089551][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  387.146172][ T7088] netlink: 32 bytes leftover after parsing attributes in process `syz.3.407'.
[  387.229711][ T5848] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  387.234766][ T7088] =====================================================
[  387.247354][ T7088] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xcc/0x120
[  387.255391][ T7088]  _copy_to_user+0xcc/0x120
[  387.260539][ T7088]  i2cdev_ioctl_smbus+0x586/0x660
[  387.265821][ T7088]  compat_i2cdev_ioctl+0x48f/0xb40
[  387.271447][ T7088]  __ia32_compat_sys_ioctl+0x7f6/0x1260
[  387.277221][ T7088]  ia32_sys_call+0x2d07/0x42c0
[  387.282508][ T7088]  __do_fast_syscall_32+0xb0/0x110
[  387.288455][ T7088]  do_fast_syscall_32+0x38/0x80
[  387.294240][ T7088]  do_SYSENTER_32+0x1f/0x30
[  387.299173][ T7088]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  387.305752][ T7088] 
[  387.308205][ T7088] Uninit was stored to memory at:
[  387.313747][ T7088]  __i2c_smbus_xfer+0x254d/0x2f60
[  387.319886][ T7088]  i2c_smbus_xfer+0x31d/0x4d0
[  387.326662][ T7088]  i2cdev_ioctl_smbus+0x4a1/0x660
[  387.334143][ T7088]  compat_i2cdev_ioctl+0x48f/0xb40
[  387.339953][ T7088]  __ia32_compat_sys_ioctl+0x7f6/0x1260
[  387.345720][ T7088]  ia32_sys_call+0x2d07/0x42c0
[  387.350962][ T7088]  __do_fast_syscall_32+0xb0/0x110
[  387.356326][ T7088]  do_fast_syscall_32+0x38/0x80
[  387.361693][ T7088]  do_SYSENTER_32+0x1f/0x30
[  387.366442][ T7088]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  387.373258][ T7088] 
[  387.375704][ T7088] Local variable msgbuf1.i created at:
[  387.381653][ T7088]  __i2c_smbus_xfer+0x86a/0x2f60
[  387.386807][ T7088]  i2c_smbus_xfer+0x31d/0x4d0
[  387.391860][ T7088] 
[  387.394409][ T7088] Bytes 0-1 of 2 are uninitialized
[  387.400339][ T7088] Memory access of size 2 starts at ffff888127c57c86
[  387.407181][ T7088] Data copied to user address 0000000080000080
[  387.413752][ T7088] 
[  387.416226][ T7088] CPU: 1 UID: 0 PID: 7088 Comm: syz.3.407 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  387.417895][ T5848] usb 1-1: Using ep0 maxpacket: 32
[  387.430541][ T7088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  387.430645][ T7088] =====================================================
[  387.430686][ T7088] Disabling lock debugging due to kernel taint
[  387.430747][ T7088] Kernel panic - not syncing: kmsan.panic set ...
[  387.430831][ T7088] CPU: 1 UID: 0 PID: 7088 Comm: syz.3.407 Tainted: G    B               6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[  387.430997][ T7088] Tainted: [B]=BAD_PAGE
[  387.431039][ T7088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  387.431108][ T7088] Call Trace:
[  387.431149][ T7088]  <TASK>
[  387.431191][ T7088]  __dump_stack+0x26/0x30
[  387.431343][ T7088]  dump_stack_lvl+0x53/0x270
[  387.431499][ T7088]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  387.431676][ T7088]  dump_stack+0x1e/0x25
[  387.431811][ T7088]  panic+0x4bd/0xd50
[  387.432014][ T7088]  kmsan_report+0x29d/0x2a0
[  387.432178][ T7088]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  387.432314][ T7088]  ? kmsan_internal_check_memory+0x496/0x570
[  387.432443][ T7088]  ? kmsan_copy_to_user+0xca/0xe0
[  387.432606][ T7088]  ? _copy_to_user+0xcc/0x120
[  387.432760][ T7088]  ? i2cdev_ioctl_smbus+0x586/0x660
[  387.432921][ T7088]  ? compat_i2cdev_ioctl+0x48f/0xb40
[  387.433086][ T7088]  ? __ia32_compat_sys_ioctl+0x7f6/0x1260
[  387.433204][ T7088]  ? ia32_sys_call+0x2d07/0x42c0
[  387.433305][ T7088]  ? __do_fast_syscall_32+0xb0/0x110
[  387.433457][ T7088]  ? do_fast_syscall_32+0x38/0x80
[  387.433607][ T7088]  ? do_SYSENTER_32+0x1f/0x30
[  387.433745][ T7088]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  387.433923][ T7088]  ? __pfx_az6027_i2c_xfer+0x10/0x10
[  387.434084][ T7088]  ? __i2c_transfer+0x11ca/0x30e0
[  387.434234][ T7088]  ? kmsan_get_metadata+0x105/0x1b0
[  387.434387][ T7088]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  387.434532][ T7088]  ? kmsan_get_metadata+0x105/0x1b0
[  387.434693][ T7088]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  387.434875][ T7088]  ? __i2c_smbus_xfer+0x1e93/0x2f60
[  387.435017][ T7088]  ? kmsan_get_metadata+0x105/0x1b0
[  387.435183][ T7088]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  387.435367][ T7088]  kmsan_internal_check_memory+0x496/0x570
[  387.435547][ T7088]  kmsan_copy_to_user+0xca/0xe0
[  387.435708][ T7088]  ? should_fail_usercopy+0x2e/0x40
[  387.435902][ T7088]  _copy_to_user+0xcc/0x120
[  387.436081][ T7088]  i2cdev_ioctl_smbus+0x586/0x660
[  387.436286][ T7088]  compat_i2cdev_ioctl+0x48f/0xb40
[  387.436491][ T7088]  ? __pfx_compat_i2cdev_ioctl+0x10/0x10
[  387.436679][ T7088]  __ia32_compat_sys_ioctl+0x7f6/0x1260
[  387.436815][ T7088]  ? kmsan_get_metadata+0x105/0x1b0
[  387.436969][ T7088]  ? kmsan_get_metadata+0x105/0x1b0
[  387.437144][ T7088]  ia32_sys_call+0x2d07/0x42c0
[  387.437260][ T7088]  __do_fast_syscall_32+0xb0/0x110
[  387.437426][ T7088]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  387.437597][ T7088]  do_fast_syscall_32+0x38/0x80
[  387.437755][ T7088]  do_SYSENTER_32+0x1f/0x30
[  387.437908][ T7088]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  387.438068][ T7088] RIP: 0023:0xf70be539
[  387.438147][ T7088] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  387.438265][ T7088] RSP: 002b:00000000f50ae55c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  387.438375][ T7088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000720
[  387.438457][ T7088] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  387.438534][ T7088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  387.438640][ T7088] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  387.438718][ T7088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  387.438829][ T7088]  </TASK>
[  387.440040][ T7088] Kernel Offset: disabled