last executing test programs:

21.801899161s ago: executing program 1 (id=3016):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000300)={0xa, 0x2, 0xfffffffc, @empty, 0x80000001}, 0x1c)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r1, &(0x7f0000000340)="fb", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e24, 0x0, @loopback, 0x1}}, 0x0, 0x0, 0x2, 0x0, "10baa70a93289349d889de25b87376f64276337642b890d33cb5b592266c5b98fb19402835fee1b3871b7ef6619db5b2a94edb6f73ea08b02aa3b47debd38b6d889a8c986b33eb49c3157f1f370dfd67"}, 0xd8)
r2 = dup(r1)
sendto$packet(r2, &(0x7f0000000400)='(', 0x1, 0x24004090, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

20.72486592s ago: executing program 1 (id=3021):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb60000000000000000850000007500000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10) (async, rerun: 64)
r2 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 64)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=@newtaction={0xfc, 0x30, 0xb, 0x0, 0x0, {}, [{0xe8, 0x1, [@m_mpls={0xe4, 0x4, 0x0, 0x0, {{0x9}, {0x54, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x2, 0xffff, 0xffffffffffffffff, 0x8, 0x9}, 0x4}}, @TCA_MPLS_LABEL={0x8, 0x5, 0xb513e}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0xd, 0x9, 0x1, 0x4, 0x7f}, 0x1}}, @TCA_MPLS_TTL={0x5, 0x7, 0x80}]}, {0x67, 0x6, "34b3483b92d1fd4738538531bd18de19e30b140c6fb1cf864153b369fce044c54a46d9d591217130db3529151735894492d13bd8a05167979d8cc1f3e5864af5c1edd5206ac1a2e3ad8a2c7a4cdbb1ed323df610c7309431c9dadb125c482ad72252bc"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x8000}, 0x0) (async, rerun: 32)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) (rerun: 32)
ioctl$VHOST_GET_FEATURES(r3, 0x8008af00, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
r4 = userfaultfd(0x80001)
connect$rxrpc(r4, &(0x7f0000000300)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e20, 0x2, @empty, 0x6}}, 0x24)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0)) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x14, 0x2, 0x6, 0x201, 0x0, 0x6000, {0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) (async)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x34, 0x9, 0x6, 0x5, 0x0, 0x0, {0x6}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e20}]}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x804) (async)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r6, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20) (async)
ioctl$UFFDIO_COPY(r4, 0xc028aa05, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000013000/0x4000)=nil, 0x3000, 0x3})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r6, 0x40189429, &(0x7f00000001c0)={0x1, 0x5, 0x8}) (async)
getsockopt$MRT6(0xffffffffffffffff, 0x29, 0x1e, &(0x7f0000000280), &(0x7f00000002c0)=0x4)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="3000000011140100000000000000000008004b"], 0x30}}, 0x40)

15.987686859s ago: executing program 0 (id=3037):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}, {&(0x7f00000005c0)="f2b314c96d500b", 0x7}], 0x2}}], 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000b40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0xe0, 0x29, 0x4, {0x4, 0x18, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x58, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f683"}, @calipso={0x7, 0x38, {0x1, 0xc, 0x7a, 0x8001, [0x5, 0x9, 0x4, 0x6, 0x4, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @hao={0xc9, 0x10, @private2}, @generic={0x93}]}}}, @hoplimit={{0x14}}, @hopopts={{0x110, 0x29, 0x36, {0x5e, 0x1e, '\x00', [@generic={0xff, 0x34, "50d650847249ad288702ebd0d654b985e8908defb7ec6c5ff115c58e128b9e3a21c34b45ef9de99984e143ca7c3509a971b2ec42"}, @pad1, @pad1, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x38, {0x3, 0xc, 0x0, 0xfff, [0x2, 0x966, 0x7, 0xfffffffffffffff7, 0x1, 0x1]}}, @generic={0x8, 0x55, "c8a110995d439fbfac9716a99c357bcb2d59a850490739734f6b321d19b3754df39cc2dc26cf263cbebbddb9a7f17b6771f74c46623f9e38bd23e6f0a2fd3a9a017f66738394aca44d1a9f0b35d9df0a964360ab09"}, @calipso={0x7, 0x18, {0x3, 0x4, 0x3, 0x7, [0x0, 0x8000]}}, @generic={0x1}]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x18}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x2c0}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=000000000100000,user_i', @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_INIT(0xffffffffffffffff, &(0x7f00000002c0)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x2b, 0x400, 0x0, 0x800, 0x4, 0x9, 0x4, 0x0, 0x0, 0x100, 0x1}}, 0x50)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

15.559576223s ago: executing program 0 (id=3038):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
close(0x3)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
r3 = syz_usb_connect(0x2, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="12010000d972a440b72040155ab7010203010902120001000000000904800000ff"], 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r3, 0x0, 0x0)
syz_usb_control_io$hid(r3, 0x0, &(0x7f0000000980)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB="6018030036ade4e60000e6663d"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r3, 0x0, 0x0)
syz_usb_control_io$hid(r3, 0x0, &(0x7f0000000580)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="401308"], 0x0, 0x0, 0x0, 0x0})
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={<r4=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x7a, &(0x7f0000000480)={r4, @in={{0x2, 0xce23, @empty}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r1, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0xfffffffffffffce0, &(0x7f0000000340)=ANY=[], 0x30, 0x24044844}], 0x1, 0x4800)
io_setup(0x5, &(0x7f0000000100))
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000880)={<r5=>0x0, @in6={{0x2, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x24}}, 0x1}}, 0x0, 0xeffc}, &(0x7f0000000300)=0x90)
socket$netlink(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000000)={r5, 0x7}, 0x8)

11.367569786s ago: executing program 0 (id=3046):
r0 = syz_open_dev$I2C(&(0x7f0000000280), 0x0, 0x20301)
ioctl$I2C_TENBIT(r0, 0x704, 0x4)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000580)=@abs, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x1, 0x0)
fchdir(r4)
r5 = open(&(0x7f0000000000)='./file1\x00', 0x80242, 0x8)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x4, 0x1, 0x5, 0x400000000006, 0x8600, 0x1, {0x1, 0x180, 0x5, 0x2, 0x100, 0x7cf4, 0x8, 0x7ffdfffd, 0xfffffffe, 0x8000, 0x1, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080), 0x4d9b6eaf)
r6 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000e7cc6120c4108a81ad7d0102030109021b00010000c00509042300010300000009058503"], 0x0)
syz_usb_control_io$sierra_net(r6, 0x0, &(0x7f0000000440)={0x1c, &(0x7f0000000340)=ANY=[@ANYBLOB="400092"], 0x0, 0x0})

10.13688977s ago: executing program 4 (id=3050):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x800008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
clock_gettime(0x0, &(0x7f00000003c0)={<r1=>0x0, <r2=>0x0})
setitimer(0x1, &(0x7f0000000400)={{r1, r2/1000+60000}}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4a23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000580), r3)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='jfs\x00', 0x1a0c000, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = signalfd(0xffffffffffffffff, &(0x7f0000000200)={[0x9]}, 0x8)
write$cgroup_int(r6, &(0x7f0000000240)=0x9, 0x12)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="640000000206010200000000000000000000000014000780080012404b3762bc080008400000003716000300686173683a6e65742c706f72742c6e6574000000050005000a00000005000400000000000900020073797a31000080000500010007"], 0x64}}, 0x0)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000440)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="090327bd7000fedbdf2516000000040001801400098008000100010000000800020007000000"], 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0xa, 0x20002f7})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
socket$inet_sctp(0x2, 0x1, 0x84)

9.679678112s ago: executing program 4 (id=3051):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}, {&(0x7f00000005c0)="f2b314c96d500b66f7", 0x9}], 0x2}}], 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000b40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0xe0, 0x29, 0x4, {0x4, 0x18, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x58, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f683"}, @calipso={0x7, 0x38, {0x1, 0xc, 0x7a, 0x8001, [0x5, 0x9, 0x4, 0x6, 0x4, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @hao={0xc9, 0x10, @private2}, @generic={0x93}]}}}, @hoplimit={{0x14}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x18}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x1b0}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_INIT(0xffffffffffffffff, &(0x7f00000002c0)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x2b, 0x400, 0x0, 0x800, 0x4, 0x9, 0x4, 0x0, 0x0, 0x100, 0x1}}, 0x50)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

9.301352318s ago: executing program 4 (id=3053):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
write$cgroup_int(r0, &(0x7f0000000100), 0x1001)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='.\x00', &(0x7f0000000000)='vxfs\x00', 0x1000080, 0x0)
r1 = syz_usb_connect(0x0, 0x36, &(0x7f0000000580)=ANY=[@ANYBLOB="120141014813442024040075ee69010203010902240001000010000904b8070296d1ca000905060200020d0006090582020002000110b1f077d2d1537ad58645a002c749041761123a870ef4d622b7f06d6d02db228bd324dcc196bdca8bf150de1e2a5685b0e58f8be3f4bf09b63707bf6118ba239335b1d511f9e663319dd099fd9fa60542b11f2327655cf96ef2c185e13cd2ac0d6d444b49c5f292d146b3f856f0a484c0f7d1198391257e0d78371cc41f5cc0c8a02887ff030000eee9a08c602284c4cf30cc3ef69234bcd6e4214665786f7718e3a9f090f67dd88fd0eeb84f7c8f1afde248b2e46ebb6a946726c00de47e7d08de62f8"], 0x0)
syz_usb_control_io$uac1(r1, 0x0, 0x0)
syz_usb_control_io$sierra_net(r1, 0x0, &(0x7f0000000200)={0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1d00"/15], 0x0, 0x0})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
syz_usb_control_io$uac1(r1, 0x0, &(0x7f00000013c0)={0x44, &(0x7f0000000440)=ANY=[@ANYBLOB="001604000000fd98000010a23ad9be792b76331856af7e01903a714b2d51bb1361cb5cc26e73c4643e92ef52e3a33646f8cf208ef0ee3307d234b2eb5c891a3ccc31a16fe578237489911ea37dbe2fad9bde58bffbe193c2918720c922f1a496c62eab74403a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000880)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000d40)={0x84, &(0x7f00000008c0)={0x40, 0x16, 0xa, "269b153988d7394af6d0"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073000000850000000f00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000001c0)='page_pool_update_nid\x00', r0, 0x0, 0xff}, 0x18)
ioctl$SIOCSIFHWADDR(r0, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}})
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000080)={[{0x9, 0x7, 0x6, 0x85, 0x5, 0xfe, 0x4e, 0x3, 0x79, 0x1, 0x5, 0x8, 0x8000200000000000}, {0x40002, 0x9ff7, 0x8, 0xf, 0x44, 0x7, 0x6, 0xf1, 0x7, 0xff, 0x2, 0x7d, 0xfffffffffffffffe}, {0xe2a5, 0x7, 0x0, 0x4, 0x30, 0x19, 0x8, 0xa, 0xff, 0x8a, 0x3, 0x7f}]})
syz_usb_connect$cdc_ncm(0x4, 0xd1, &(0x7f0000000040)=ANY=[@ANYBLOB="12011003020000182505a1a44000010203010902bf0002010650000900000000020d00000524060001082400a9b30d240f010a0000000300ff000606241a05001407240a050905580c240c00000000a90c0900030424020204240200042406024424"], 0x0)
syz_usb_connect(0x3, 0xf5, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000772aed408680070bb96c010203010902e30003dc2000000904003f000e01000505a40600010524007f000d240f0104000000080000000006241a03000a05240101070424020a1524120009a317a88b045e4f01a607c0ffcb7e392a09044c03003a92a2010a240109000102010205240401050c2402"], 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000101c1b021b00000000000109022400010000400009040000010300400009210000000122050009058103"], 0x0)
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)

8.981687628s ago: executing program 2 (id=3054):
ftruncate(0xffffffffffffffff, 0xc17a)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f00000013c0))
getsockopt(r0, 0x28, 0x6, &(0x7f0000001680)=""/59, &(0x7f0000000000)=0x3b)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
syz_open_dev$evdev(&(0x7f0000000180), 0xffffffffffffffff, 0x280001)
io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x635c, 0x1f480, 0x0, 0x399})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r1, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r1, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000340)="b9cd14c222ee", 0x4b}], 0x1}}], 0x1, 0x20008000)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x404, &(0x7f0000002140)=ANY=[@ANYBLOB, @ANYBLOB, @ANYBLOB, @ANYRESDEC=0x0])
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000140)=@gcm_128={{0x304}, "60000100", "9de66ebc3914c06f0f109088d190e700", '\x00', "f8dde5bf3eba23db"}, 0x28)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
sendmsg$IPSET_CMD_SAVE(0xffffffffffffffff, 0x0, 0x20000010)
syz_usb_connect(0x5, 0x41, &(0x7f0000000280)={{0x12, 0x1, 0x110, 0xd4, 0xf8, 0x65, 0x40, 0x4d8, 0x83, 0xda47, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2f, 0x1, 0x2, 0x8, 0x40, 0xb3, [{{0x9, 0x4, 0x0, 0xb2, 0x0, 0x2, 0x2, 0x1, 0x94, [@cdc_ncm={{0x5}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x10, 0xd5, 0xff, 0x3}, {0x6, 0x24, 0x1a, 0x3, 0x6422595bae3614d5}}]}}]}}]}}, 0x0)

8.071477429s ago: executing program 0 (id=3056):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)

7.974323317s ago: executing program 0 (id=3058):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0) (fail_nth: 1)

7.500453253s ago: executing program 0 (id=3060):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
write$cgroup_int(r0, &(0x7f0000000100), 0x1001)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='.\x00', &(0x7f0000000000)='vxfs\x00', 0x1000080, 0x0)
r1 = syz_usb_connect(0x0, 0x36, &(0x7f0000000580)=ANY=[@ANYBLOB="120141014813442024040075ee69010203010902240001000010000904b8070296d1ca000905060200020d0006090582020002000110b1f077d2d1537ad58645a002c749041761123a870ef4d622b7f06d6d02db228bd324dcc196bdca8bf150de1e2a5685b0e58f8be3f4bf09b63707bf6118ba239335b1d511f9e663319dd099fd9fa60542b11f2327655cf96ef2c185e13cd2ac0d6d444b49c5f292d146b3f856f0a484c0f7d1198391257e0d78371cc41f5cc0c8a02887ff030000eee9a08c602284c4cf30cc3ef69234bcd6e4214665786f7718e3a9f090f67dd88fd0eeb84f7c8f1afde248b2e46ebb6a946726c00de47e7d08de62f8"], 0x0)
syz_usb_control_io$uac1(r1, 0x0, 0x0)
syz_usb_control_io$sierra_net(r1, 0x0, &(0x7f0000000200)={0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1d00"/15], 0x0, 0x0})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
syz_usb_control_io$uac1(r1, 0x0, &(0x7f00000013c0)={0x44, &(0x7f0000000440)=ANY=[@ANYBLOB="001604000000fd98000010a23ad9be792b76331856af7e01903a714b2d51bb1361cb5cc26e73c4643e92ef52e3a33646f8cf208ef0ee3307d234b2eb5c891a3ccc31a16fe578237489911ea37dbe2fad9bde58bffbe193c2918720c922f1a496c62eab74403a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000880)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000d40)={0x84, &(0x7f00000008c0)={0x40, 0x16, 0xa, "269b153988d7394af6d0"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073000000850000000f00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000001c0)='page_pool_update_nid\x00', r0, 0x0, 0xff}, 0x18)
ioctl$SIOCSIFHWADDR(r0, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}})
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000080)={[{0x9, 0x7, 0x6, 0x85, 0x5, 0xfe, 0x4e, 0x3, 0x79, 0x1, 0x5, 0x8, 0x8000200000000000}, {0x40002, 0x9ff7, 0x8, 0xf, 0x44, 0x7, 0x6, 0xf1, 0x7, 0xff, 0x2, 0x7d, 0xfffffffffffffffe}, {0xe2a5, 0x7, 0x0, 0x4, 0x30, 0x19, 0x8, 0xa, 0xff, 0x8a, 0x3, 0x7f}]})
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)

7.356770796s ago: executing program 3 (id=3061):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}, {&(0x7f00000005c0)="f2b314c96d500b66f7", 0x9}], 0x2}}], 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000b40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0xb0, 0x29, 0x4, {0x4, 0x12, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x2c, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d4178745408"}, @calipso={0x7, 0x30, {0x1, 0xa, 0x7a, 0x8001, [0x5, 0x9, 0x6, 0x4, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @hao={0xc9, 0x10, @private2}, @generic={0x93}]}}}, @hoplimit={{0x14}}, @hopopts={{0x110, 0x29, 0x36, {0x5e, 0x1e, '\x00', [@generic={0xff, 0x34, "50d650847249ad288702ebd0d654b985e8908defb7ec6c5ff115c58e128b9e3a21c34b45ef9de99984e143ca7c3509a971b2ec42"}, @pad1, @pad1, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x38, {0x3, 0xc, 0x0, 0xfff, [0x2, 0x966, 0x7, 0xfffffffffffffff7, 0x1, 0x1]}}, @generic={0x8, 0x55, "c8a110995d439fbfac9716a99c357bcb2d59a850490739734f6b321d19b3754df39cc2dc26cf263cbebbddb9a7f17b6771f74c46623f9e38bd23e6f0a2fd3a9a017f66738394aca44d1a9f0b35d9df0a964360ab09"}, @calipso={0x7, 0x18, {0x3, 0x4, 0x3, 0x7, [0x0, 0x8000]}}, @generic={0x1}]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x18}}], 0x258}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = dup(r2)
sendmsg$inet(r3, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_INIT(r3, &(0x7f00000002c0)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x2b, 0x400, 0x0, 0x800, 0x4, 0x9, 0x4, 0x0, 0x0, 0x100, 0x1}}, 0x50)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r6 = accept4(r5, 0x0, 0x0, 0x800)
sendmmsg$alg(r6, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)}], 0x1, 0x40800)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

7.057444671s ago: executing program 2 (id=3062):
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = dup(0xffffffffffffffff)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r5, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7c, &(0x7f0000000180), &(0x7f0000000440)=0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r6 = socket$kcm(0x10, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x60, 0x9, 0x6, 0x3, 0x0, 0x0, {0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x38, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_PROTO={0x5, 0x7, 0xff}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
recvmsg(0xffffffffffffffff, 0x0, 0x20)
sendmsg$kcm(r6, &(0x7f00000000c0)={0x0, 0x60, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188040f46ecdb4cb9cca7480ef43c000000e3bd6efb440009000e000a0010000000ba8000001201", 0x2e}], 0x1}, 0x0)
mmap(&(0x7f000008d000/0x3000)=nil, 0x3000, 0x10, 0x1010, r4, 0x96921000)

7.048982507s ago: executing program 3 (id=3063):
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xc, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)

6.206295841s ago: executing program 4 (id=3064):
ftruncate(0xffffffffffffffff, 0xc17a)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f00000013c0))
getsockopt(r0, 0x28, 0x6, &(0x7f0000001680)=""/59, &(0x7f0000000000)=0x3b)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
syz_open_dev$evdev(&(0x7f0000000180), 0xffffffffffffffff, 0x280001)
io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x635c, 0x1f480, 0x0, 0x399})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r1, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r1, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000340)="b9cd14c222ee", 0x4b}], 0x1}}], 0x1, 0x20008000)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x404, &(0x7f0000002140)=ANY=[@ANYBLOB, @ANYBLOB, @ANYBLOB, @ANYRESDEC=0x0])
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000140)=@gcm_128={{0x304}, "60000100", "9de66ebc3914c06f0f109088d190e700", '\x00', "f8dde5bf3eba23db"}, 0x28)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
creat(&(0x7f0000000040)='./file0\x00', 0xc)
sendmsg$IPSET_CMD_SAVE(r3, 0x0, 0x20000010)
syz_usb_connect(0x5, 0x41, &(0x7f0000000280)={{0x12, 0x1, 0x110, 0xd4, 0xf8, 0x65, 0x40, 0x4d8, 0x83, 0xda47, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2f, 0x1, 0x2, 0x8, 0x40, 0xb3, [{{0x9, 0x4, 0x0, 0xb2, 0x0, 0x2, 0x2, 0x1, 0x94, [@cdc_ncm={{0x5}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x10, 0xd5, 0xff, 0x3}, {0x6, 0x24, 0x1a, 0x3, 0x6422595bae3614d5}}]}}]}}]}}, 0x0)

5.565317093s ago: executing program 3 (id=3065):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2a, 0xa9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_io_uring_setup(0x7831, 0x0, 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r6=>0x0})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100fdfffffffcdbdf250200000008000300", @ANYRES32=r6, @ANYBLOB="080026007f170000080400e7ca010000"], 0x2c}, 0x1, 0x0, 0x0, 0xd37697ff280d3c0e}, 0x0)

4.292791858s ago: executing program 2 (id=3066):
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_emit_ethernet(0x4e, &(0x7f0000001080)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0xb, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp={0x7, 0xc, 0x5, 0x0, 0x0, [0x0, 0x0]}, @ssrr={0x89, 0x7, 0x13, [@dev={0xac, 0x14, 0x14, 0x20}]}, @ssrr={0x89, 0x3, 0x1}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32, @ANYRES32, @ANYBLOB="00000000000000000000000000008efa951100"/28, @ANYRESOCT=r0], 0x50)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETVESABLANK(r3, 0x541c, &(0x7f0000000000))

4.177028205s ago: executing program 3 (id=3067):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x16, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c252500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180100002020702500000000002020207b1ad8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000080000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$HIDIOCGDEVINFO(0xffffffffffffffff, 0x801c4803, &(0x7f00000004c0)=""/157)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r2 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r2, &(0x7f00000002c0)='./file1\x00', 0x400, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r2, &(0x7f0000000100)='./file1\x00', r2, &(0x7f0000000240)='./file0\x00', 0x1000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f0000000640)=""/150)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2)

3.765346993s ago: executing program 4 (id=3068):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160-generic\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
recvmmsg$unix(r4, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)

3.464476493s ago: executing program 1 (id=3029):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x7, 0x1}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYRES32=r0], &(0x7f0000000100)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='btrfs_sync_file\x00', r3}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000480)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getsockopt$CAN_RAW_FILTER(r5, 0x65, 0x1, 0x0, &(0x7f0000000400)=0xffffffffffffff67)
connect$can_bcm(r2, &(0x7f0000000080), 0x10)
sendmsg$can_bcm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="050000000000000000000000000024005bb3fbf62abcfe835edd747621f63ad54756643a4af56ea5f2204468b70a37eadeb3d004b7a7878c7f36", @ANYRES64=r0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="00000000010000000100006000010000fe07b014172eda3f"], 0x48}, 0x1, 0x0, 0x0, 0x40850}, 0x0)
sendmsg$can_bcm(r2, &(0x7f00000001c0)={0x0, 0xf, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="0500000015000000feffffff00000000", @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="007c73c6d94cf25eba36ec170fc83c58ee000000010000000200000002e59e23183b0e3daa6813cf"], 0x48}, 0x1, 0x0, 0x0, 0x6686ae64641a9d97}, 0x0)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000000)=0x200000, 0x4)
getsockopt$IP_VS_SO_GET_TIMEOUT(r1, 0x0, 0x486, &(0x7f0000000040), &(0x7f00000000c0)=0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f0000000600)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

3.310572021s ago: executing program 2 (id=3070):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
getpgrp(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002000)=""/102400, 0x19000)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160-generic\x00'}, 0x58)
r6 = accept4(r5, 0x0, 0x0, 0x0)
recvmmsg$unix(r6, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)
poll(&(0x7f0000000180)=[{r1, 0x40}, {r0, 0x11080}, {r1, 0x100}, {}, {r3, 0x4000}, {r0, 0x2000}, {r2, 0x2}, {r3, 0x400e}], 0x8, 0x1)

2.51506787s ago: executing program 4 (id=3071):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001400)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000000, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb0100180000000000000018000000180000000200000000130ebf0100000500"/50], &(0x7f0000000f40)=""/4089, 0x32, 0xff9, 0xa}, 0x20)
recvmmsg(r0, &(0x7f0000006a40)=[{{&(0x7f0000000240)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/251, 0xfb}, {&(0x7f0000000140)=""/34, 0x22}, {&(0x7f0000000440)=""/161, 0xa1}], 0x3, &(0x7f0000000580)=""/123, 0x7b}, 0x401}, {{&(0x7f0000000600)=@nfc_llcp, 0x80, &(0x7f0000000a40)=[{&(0x7f0000006940)=""/248, 0xf8}, {&(0x7f0000000ac0)=""/106, 0x6a}, {&(0x7f00000002c0)}, {&(0x7f0000000840)=""/144, 0x90}, {&(0x7f0000000500)=""/21, 0x15}, {&(0x7f0000000900)=""/227, 0xe3}, {&(0x7f0000001f40)=""/4096, 0x1000}, {&(0x7f0000000a00)=""/63, 0x3f}], 0x8, &(0x7f0000000ac0)}, 0x409}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f00000068c0)=""/102, 0x66}, {&(0x7f0000000b80)=""/147, 0x93}, {&(0x7f0000000c40)=""/243, 0xf3}, {&(0x7f0000000d40)=""/20, 0x14}, {&(0x7f0000000d80)=""/172, 0xac}], 0x5, &(0x7f0000006bc0)=""/4096, 0x1000}, 0x2}, {{&(0x7f0000000ec0)=@alg, 0x80, &(0x7f0000005380)=[{&(0x7f0000003f40)=""/242, 0xf2}, {&(0x7f0000004040)=""/4096, 0x1000}, {&(0x7f0000005040)=""/178, 0xb2}, {&(0x7f0000005100)=""/252, 0xfc}, {&(0x7f0000005200)=""/176, 0xb0}, {&(0x7f00000052c0)=""/178, 0xb2}], 0x6, &(0x7f0000005400)=""/108, 0x6c}, 0x6}, {{0x0, 0x0, &(0x7f0000005480), 0x0, &(0x7f0000000b40)=""/36, 0x24}, 0x3}, {{&(0x7f00000007c0)=@l2tp={0x2, 0x0, @empty}, 0x80, &(0x7f0000006700)=[{&(0x7f0000005580)=""/212, 0xd4}, {&(0x7f0000005680)=""/4096, 0x1000}, {&(0x7f0000006680)=""/73, 0x49}], 0x3}, 0x10000}], 0x6, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000780))
r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r2)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00')
mount(&(0x7f0000000000), &(0x7f0000000040)='./cgroup\x00', 0x0, 0x1001, 0x0)
unshare(0x48020200)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.idle_time\x00', 0x26e1, 0x0)
r3 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$6lowpan_control(r3, &(0x7f0000000300)='connect aa:aa:aa:aa:aa:11 1', 0x1b)
ioctl$SIOCSIFHWADDR(r1, 0x8b19, &(0x7f0000000040)={'wlan1\x00', @random="0100"})

2.232171263s ago: executing program 1 (id=3072):
bind$tipc(0xffffffffffffffff, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x200, 0xfffffffd}}, 0x10)
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0xfffffffffffffc8f)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@mcast2, 0x0, 0x0, 0x1, 0x4, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0xbd1, 0x0, 0x3}, {0x81, 0x2}, 0x1fffffc, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x8000, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x0, 0x0, 0x7, 0x7, 0x0, 0x2}}, 0xe8)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000580)={{{@in=@private=0xa010101, @in6=@local, 0x4e24, 0x7, 0x4e23, 0xe, 0xa, 0x80, 0x0, 0x3b}, {0x7fff, 0xec, 0x4, 0x8000000000000001, 0x0, 0x7, 0x9, 0x5}, {0xe, 0x4, 0xfffffffffffffffd, 0x4}, 0x7f, 0x6e6bb9, 0x1, 0x0, 0x2}, {{@in6=@mcast2, 0x4d5, 0x2b}, 0xa, @in6=@local, 0x3503, 0x3, 0x3, 0x89, 0xa, 0x81, 0x7f0000}}, 0xe8)
socket$kcm(0x10, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000180)=0xe)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/devices.allow\x00', 0x2, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100))
mq_notify(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x3, 0x2, @thr={&(0x7f00000001c0), 0x0}})
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0500000001000000400000004008000041000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000002290f13c98a07686415018c026bc220f858571cc0ab5eca33b5c0465cda9c408d275302b22b75bc87a54b1dcbca81078cccf4dd2d7a14ed07b9eacf479613a223c5122ffc7f4a625e5b7eadee5be785ed7de6242e521697c2faa", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000007040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000000000000000a00ecff0800010073797a300000000074000000160a010100000000000000000a00000008000740000000014000038008000140000000002c000380140001006e657464657673696d300000000000001400010076657468305f766c616e00000000000008000240000000070900010073797a3000000000090002"], 0xbc}}, 0x0)

2.093676985s ago: executing program 2 (id=3073):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}, {&(0x7f00000005c0)="f2b314c96d500b66f7", 0x9}], 0x2}}], 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000b40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0xe0, 0x29, 0x4, {0x4, 0x18, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x58, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f683"}, @calipso={0x7, 0x38, {0x1, 0xc, 0x7a, 0x8001, [0x5, 0x9, 0x4, 0x6, 0x4, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @hao={0xc9, 0x10, @private2}, @generic={0x93}]}}}, @hoplimit={{0x14}}, @hopopts={{0x18, 0x29, 0x36, {0x5e}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x18}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x1c8}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_INIT(0xffffffffffffffff, &(0x7f00000002c0)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x2b, 0x400, 0x0, 0x800, 0x4, 0x9, 0x4, 0x0, 0x0, 0x100, 0x1}}, 0x50)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.968476474s ago: executing program 1 (id=3074):
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xc, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)

1.032458764s ago: executing program 2 (id=3075):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20a00, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
ioprio_set$uid(0x3, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
preadv(r1, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x18, 0x8, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000100), 0x2, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x410001, 0x1, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r5, 0xc058560f, &(0x7f0000000340)=@mmap={0x0, 0x2, 0x4, 0xffffff7f, 0x101, {}, {0x0, 0xc, 0x0, 0x0, 0x0, 0x2, "186856f3"}})
r6 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x6800c0, 0xbd, 0x31}, 0x18)
r7 = openat2(r6, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)={0x161000, 0x69, 0x1}, 0x18)
bind$alg(r4, &(0x7f00000002c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha384\x00'}, 0x58)
r8 = syz_open_dev$evdev(&(0x7f00000003c0), 0x800, 0x80)
ioctl$EVIOCGSW(r8, 0x8040451b, &(0x7f0000000440)=""/192)
r9 = accept4(r4, 0x0, 0x0, 0x800)
pidfd_send_signal(r7, 0x1e, &(0x7f0000000600)={0x1c, 0x6, 0x65}, 0x0)
sendmmsg$alg(r9, &(0x7f0000000040)=[{0x0, 0x0, 0x0}], 0x1, 0x40800)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000080)={<r10=>0x0, 0x9d16}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r9, 0x84, 0x77, &(0x7f0000000100)={r10, 0x800, 0x2, [0x8, 0x6]}, 0xc)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f00000c6000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0xaaaaaaaaaaaaac3, 0x38, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r3, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0xfffffea8, {0xf000}}, "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", "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"})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000007910b800000000009500000000000000f3fb55b39e182a5ab19623ac11b9e128af17e81318bef26ab7db3cb3621fd65de8eb55db4acb850f3f7c5e5d0d09a9868510422164d880c898dc92fa850b999889648774b329c46061e9caef339b003dec0fca2961b88a8560a9266115683dd6e6f1634fa98fc048cdc2e79a5f00a766c7ac796a41e32f85a7a2392d59c6e6cc209b4298ce8aadf6758fbb70845c6c"], &(0x7f0000000040)='GPL\x00', 0x2}, 0x94)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.012157771s ago: executing program 1 (id=3076):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20a00, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
ioprio_set$uid(0x3, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
preadv(r1, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x18, 0x8, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000100), 0x2, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x410001, 0x1, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r5, 0xc058560f, &(0x7f0000000340)=@mmap={0x0, 0x2, 0x4, 0xffffff7f, 0x101, {}, {0x0, 0xc, 0x0, 0x0, 0x0, 0x2, "186856f3"}})
r6 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x6800c0, 0xbd, 0x31}, 0x18)
r7 = openat2(r6, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)={0x161000, 0x69, 0x1}, 0x18)
bind$alg(r4, &(0x7f00000002c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha384\x00'}, 0x58)
r8 = syz_open_dev$evdev(&(0x7f00000003c0), 0x800, 0x80)
ioctl$EVIOCGSW(r8, 0x8040451b, &(0x7f0000000440)=""/192)
r9 = accept4(r4, 0x0, 0x0, 0x800)
pidfd_send_signal(r7, 0x1e, &(0x7f0000000600)={0x1c, 0x6, 0x65}, 0x0)
sendmmsg$alg(r9, &(0x7f0000000040)=[{0x0, 0x0, 0x0}], 0x1, 0x40800)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000080)={<r10=>0x0, 0x9d16}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r9, 0x84, 0x77, &(0x7f0000000100)={r10, 0x800, 0x2, [0x8, 0x6]}, 0xc)
ioctl$KVM_SET_NESTED_STATE(r3, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0xfffffea8, {0xf000}}, "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", "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"})
syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f00000be000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, &(0x7f0000000140)="0fba230766b9050100400f3265660fc7740066b8013c00000f23c80f21f866350000c0000f23f80f01d10f01d166660fef102ef30f0128ee0f35", 0x3a}], 0x1, 0x41, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

948.154979ms ago: executing program 3 (id=3077):
socket$rds(0x15, 0x5, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x803, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB], 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000340)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)

0s ago: executing program 3 (id=3078):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002480), 0x0, &(0x7f0000000380)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}})
socket$nl_generic(0x10, 0x3, 0x10)
r1 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2c003, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xa, 0x0, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f000001b700)=""/102392, 0x18ff8)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x2000000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="f80000001600010000000000000000000a01010000000000000000000000000000000000000000000000ffff00"/55, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000033000000ff0100000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff0000000000000000000000b46c000000000000000000000000000002000000000000000200"/127], 0xf8}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="20010000120013070000000000000000e0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f0000000140)='./file0\x00')
getpid()
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020100000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a32000000001400000011001f"], 0x7c}}, 0x0)
r6 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000240)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c0100000009040100"], 0x0)
syz_usb_control_io$uac1(r6, 0x0, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340), &(0x7f0000000280))

kernel console output (not intermixed with test programs):

oyo_realpath_from_path+0xc2/0x6e0
[ 1083.876473][T16861]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1083.876493][T16861]  ? tomoyo_profile+0x47/0x60
[ 1083.876519][T16861]  tomoyo_path_number_perm+0x245/0x580
[ 1083.876536][T16861]  ? tomoyo_path_number_perm+0x237/0x580
[ 1083.876555][T16861]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1083.876571][T16861]  ? find_held_lock+0x2b/0x80
[ 1083.876601][T16861]  ? find_held_lock+0x2b/0x80
[ 1083.876615][T16861]  ? hook_file_ioctl_common+0x144/0x410
[ 1083.876646][T16861]  ? __fget_files+0x20e/0x3c0
[ 1083.876675][T16861]  security_file_ioctl+0x9b/0x240
[ 1083.876697][T16861]  __x64_sys_ioctl+0xb7/0x210
[ 1083.876714][T16861]  do_syscall_64+0xcd/0xf80
[ 1083.876732][T16861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1083.876744][T16861] RIP: 0033:0x7fc2d3d8f749
[ 1083.876754][T16861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1083.876764][T16861] RSP: 002b:00007fc2d4c9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1083.876779][T16861] RAX: ffffffffffffffda RBX: 00007fc2d3fe5fa0 RCX: 00007fc2d3d8f749
[ 1083.876790][T16861] RDX: 00002000000000c0 RSI: 00000000c018480b RDI: 0000000000000004
[ 1083.876800][T16861] RBP: 00007fc2d4c9e090 R08: 0000000000000000 R09: 0000000000000000
[ 1083.876809][T16861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1083.876818][T16861] R13: 00007fc2d3fe6038 R14: 00007fc2d3fe5fa0 R15: 00007ffc8c616638
[ 1083.876841][T16861]  </TASK>
[ 1083.876849][T16861] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1084.100965][ T5972] hid-thrustmaster 0003:044F:B65D.0017: unknown main item tag 0x0
[ 1084.146115][ T5972] hid-thrustmaster 0003:044F:B65D.0017: unknown main item tag 0x0
[ 1084.154705][ T5972] hid-thrustmaster 0003:044F:B65D.0017: item fetching failed at offset 2/5
[ 1084.178647][ T5972] hid-thrustmaster 0003:044F:B65D.0017: parse failed with error -22
[ 1084.188278][ T5972] hid-thrustmaster 0003:044F:B65D.0017: probe with driver hid-thrustmaster failed with error -22
[ 1084.338069][ T5972] usb 1-1: USB disconnect, device number 32
[ 1084.427990][T12793] tipc: Node number set to 2130706433
[ 1084.439749][T16819] syzkaller1: entered promiscuous mode
[ 1084.446546][T16819] syzkaller1: entered allmulticast mode
[ 1084.984954][T16884] netlink: 'syz.2.2686': attribute type 10 has an invalid length.
[ 1084.995522][T16884] team0: Device ipvlan1 failed to register rx_handler
[ 1085.332855][   T24] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[ 1085.549467][   T24] usb 2-1: Using ep0 maxpacket: 16
[ 1085.557082][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1085.568711][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1085.579025][   T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1085.604494][   T24] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1085.635511][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1085.681253][   T24] usb 2-1: config 0 descriptor??
[ 1086.127304][ T9329] usb 4-1: USB disconnect, device number 40
[ 1086.655884][T16900] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1086.662376][T16900] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1086.760507][T16911] netlink: 216 bytes leftover after parsing attributes in process `syz.3.2695'.
[ 1086.770382][T16911] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2695'.
[ 1087.097412][T16900] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1087.110744][T16900] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1087.117160][T16900] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1087.178409][   T30] audit: type=1400 audit(1767402119.303:491): avc:  denied  { read } for  pid=16913 comm="syz.2.2694" name="file2" dev="tmpfs" ino=2967 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[ 1087.247499][T16908] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1087.279451][T16908] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1087.308557][   T30] audit: type=1400 audit(1767402119.393:492): avc:  denied  { ioctl } for  pid=16913 comm="syz.2.2694" path="/562/file2" dev="tmpfs" ino=2967 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[ 1087.984993][T16924] netlink: 216 bytes leftover after parsing attributes in process `syz.0.2696'.
[ 1087.994459][T16924] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2696'.
[ 1088.683938][T16768] Bluetooth: hci2: command 0x0406 tx timeout
[ 1088.694564][T15881] Bluetooth: hci0: command 0x0406 tx timeout
[ 1088.971581][   T24] usbhid 2-1:0.0: can't add hid device: -71
[ 1089.002994][   T24] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1089.065542][   T24] usb 2-1: USB disconnect, device number 34
[ 1089.181056][T16768] Bluetooth: hci3: command 0x0406 tx timeout
[ 1089.181588][T15909] Bluetooth: hci1: command 0x0406 tx timeout
[ 1089.188412][T15881] Bluetooth: hci4: command 0x0406 tx timeout
[ 1089.353153][   T44] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1089.953024][   T44] usb 4-1: device descriptor read/64, error -71
[ 1090.222836][   T44] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1090.812894][   T44] usb 4-1: device descriptor read/64, error -71
[ 1090.902908][ T6183] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[ 1090.954507][   T44] usb usb4-port1: attempt power cycle
[ 1091.005550][T16948] random: crng reseeded on system resumption
[ 1091.224536][ T6183] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1091.243197][ T6183] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1091.298382][ T6183] usb 5-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[ 1091.321609][   T30] audit: type=1400 audit(1767402123.443:493): avc:  denied  { getopt } for  pid=16952 comm="syz.1.2707" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1091.352887][   T44] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[ 1091.368167][ T6183] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1091.394642][T16955] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61456 sclass=netlink_route_socket pid=16955 comm=syz.0.2706
[ 1091.415975][   T44] usb 4-1: device descriptor read/8, error -71
[ 1091.422506][ T6183] usb 5-1: config 0 descriptor??
[ 1091.701056][   T44] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1092.084096][T16960] binder: 16941:16960 ioctl 4018620d 0 returned -22
[ 1092.137856][T16962] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1092.145022][T16962] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1092.181003][   T44] usb 4-1: device descriptor read/8, error -71
[ 1092.188427][T16962] bridge0: entered allmulticast mode
[ 1092.234846][T16965] netlink: 'syz.0.2706': attribute type 2 has an invalid length.
[ 1092.248738][T16943] bridge0: port 3(syz_tun) entered disabled state
[ 1092.313963][   T44] usb usb4-port1: unable to enumerate USB device
[ 1092.394590][T16962] bridge_slave_1: left allmulticast mode
[ 1092.409790][T16943] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1092.418398][T16943] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1092.434012][ T6183] usbhid 5-1:0.0: can't add hid device: -71
[ 1092.448625][T16962] bridge_slave_1: left promiscuous mode
[ 1092.470422][T16962] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1092.496772][T16965] capability: warning: `syz.0.2706' uses 32-bit capabilities (legacy support in use)
[ 1092.506494][ T6183] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1092.554927][ T6183] usb 5-1: USB disconnect, device number 40
[ 1092.561435][T16962] bridge_slave_0: left allmulticast mode
[ 1092.587646][T16962] bridge_slave_0: left promiscuous mode
[ 1092.608171][T16962] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1092.859530][T16972] FAULT_INJECTION: forcing a failure.
[ 1092.859530][T16972] name failslab, interval 1, probability 0, space 0, times 0
[ 1092.919994][T16972] CPU: 0 UID: 0 PID: 16972 Comm: syz.1.2711 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1092.920022][T16972] Tainted: [L]=SOFTLOCKUP
[ 1092.920027][T16972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1092.920036][T16972] Call Trace:
[ 1092.920040][T16972]  <TASK>
[ 1092.920045][T16972]  dump_stack_lvl+0x16c/0x1f0
[ 1092.920065][T16972]  should_fail_ex+0x512/0x640
[ 1092.920084][T16972]  ? fs_reclaim_acquire+0xae/0x150
[ 1092.920100][T16972]  should_failslab+0xc2/0x120
[ 1092.920116][T16972]  __kmalloc_noprof+0xeb/0x910
[ 1092.920134][T16972]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1092.920152][T16972]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1092.920166][T16972]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1092.920182][T16972]  ? tomoyo_profile+0x47/0x60
[ 1092.920199][T16972]  tomoyo_path_number_perm+0x245/0x580
[ 1092.920210][T16972]  ? tomoyo_path_number_perm+0x237/0x580
[ 1092.920223][T16972]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1092.920236][T16972]  ? find_held_lock+0x2b/0x80
[ 1092.920264][T16972]  ? find_held_lock+0x2b/0x80
[ 1092.920279][T16972]  ? hook_file_ioctl_common+0x144/0x410
[ 1092.920298][T16972]  ? __fget_files+0x20e/0x3c0
[ 1092.920315][T16972]  security_file_ioctl+0x9b/0x240
[ 1092.920331][T16972]  __x64_sys_ioctl+0xb7/0x210
[ 1092.920352][T16972]  do_syscall_64+0xcd/0xf80
[ 1092.920366][T16972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1092.920377][T16972] RIP: 0033:0x7f786c38f749
[ 1092.920385][T16972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1092.920396][T16972] RSP: 002b:00007f786d24f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1092.920406][T16972] RAX: ffffffffffffffda RBX: 00007f786c5e5fa0 RCX: 00007f786c38f749
[ 1092.920412][T16972] RDX: 0000200000000100 RSI: 000000004020aea5 RDI: 0000000000000004
[ 1092.920419][T16972] RBP: 00007f786d24f090 R08: 0000000000000000 R09: 0000000000000000
[ 1092.920425][T16972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1092.920432][T16972] R13: 00007f786c5e6038 R14: 00007f786c5e5fa0 R15: 00007ffcd5ab79c8
[ 1092.920445][T16972]  </TASK>
[ 1092.920858][T16972] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1094.472888][ T5935] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[ 1094.832978][   T44] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[ 1095.034409][   T44] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1095.044714][   T44] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1095.067499][   T44] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1095.079480][   T44] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1095.080660][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2719'.
[ 1095.088552][   T44] usb 3-1: SerialNumber: syz
[ 1095.097395][ T5935] usb 5-1: Using ep0 maxpacket: 16
[ 1095.108959][ T5935] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1095.124583][ T5935] usb 5-1: New USB device found, idVendor=5543, idProduct=0064, bcdDevice= 0.00
[ 1095.135046][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2719'.
[ 1095.144452][ T5935] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1095.157087][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2719'.
[ 1095.168614][ T5935] usb 5-1: config 0 descriptor??
[ 1095.181503][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2719'.
[ 1095.197769][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2719'.
[ 1098.138192][ T5935] usbhid 5-1:0.0: can't add hid device: -71
[ 1098.145278][ T5935] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1098.231426][ T5935] usb 5-1: USB disconnect, device number 41
[ 1098.689243][   T30] audit: type=1400 audit(1767402130.813:494): avc:  denied  { read } for  pid=17024 comm="syz.3.2727" name="ptp0" dev="devtmpfs" ino=1265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1098.816462][   T30] audit: type=1400 audit(1767402130.943:495): avc:  denied  { create } for  pid=17024 comm="syz.3.2727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1099.228371][   T30] audit: type=1400 audit(1767402131.283:496): avc:  denied  { bind } for  pid=17024 comm="syz.3.2727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1099.281699][   T30] audit: type=1400 audit(1767402131.283:497): avc:  denied  { connect } for  pid=17024 comm="syz.3.2727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1099.302545][   T30] audit: type=1400 audit(1767402131.283:498): avc:  denied  { append } for  pid=17024 comm="syz.3.2727" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[ 1099.344800][   T30] audit: type=1400 audit(1767402131.303:499): avc:  denied  { write } for  pid=17024 comm="syz.3.2727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1099.391881][T17026] tmpfs: Bad value for 'huge'
[ 1099.402887][ T5935] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[ 1099.499177][   T44] usb 3-1: 0:2 : does not exist
[ 1099.521792][   T44] usb 3-1: unit 5 not found!
[ 1099.574354][ T5935] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1099.607890][   T44] usb 3-1: USB disconnect, device number 31
[ 1099.650904][ T5935] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1099.694735][T15657] udevd[15657]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1099.738208][ T5935] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1099.770584][ T5935] usb 1-1: config 0 descriptor??
[ 1100.314370][ T5935] usbhid 1-1:0.0: can't add hid device: -71
[ 1100.320377][ T5935] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1100.335899][ T5935] usb 1-1: USB disconnect, device number 33
[ 1101.310678][T17030] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1101.319480][T17030] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1101.326626][T17030] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1101.334755][T17030] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1101.341938][T17030] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1101.361304][T17046] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1101.394266][T17046] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1101.402843][T15909] Bluetooth: hci0: command 0x0406 tx timeout
[ 1101.469009][T17063] binder: BINDER_SET_CONTEXT_MGR already set
[ 1101.504017][T17063] binder: 17062:17063 ioctl 4018620d 200000004a80 returned -16
[ 1101.603333][ T6232] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 1101.607954][ T6183] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1101.869322][ T6183] usb 4-1: config 0 has an invalid interface number: 117 but max is 0
[ 1101.890256][ T6183] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1101.923205][   T44] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[ 1101.939016][ T6183] usb 4-1: config 0 has no interface number 0
[ 1101.975081][ T6183] usb 4-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[ 1102.028117][ T6183] usb 4-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1102.106595][ T6183] usb 4-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[ 1102.126893][   T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1102.148285][ T6183] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1102.169838][   T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1102.187857][ T6183] usb 4-1: Product: syz
[ 1102.202616][ T6183] usb 4-1: Manufacturer: syz
[ 1102.216199][   T44] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1102.234757][ T6183] usb 4-1: SerialNumber: syz
[ 1102.358757][   T44] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1102.384036][ T6232] usb 3-1: config 2 interface 0 has no altsetting 0
[ 1102.407156][ T6183] usb 4-1: config 0 descriptor??
[ 1102.422095][   T44] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1102.458415][T17074] tmpfs: Bad value for 'huge'
[ 1102.477180][T17073] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1102.495028][T17073] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1102.899806][T17073] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1102.908747][T17073] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1102.915371][T17073] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1102.939762][   T44] usb 2-1: config 0 descriptor??
[ 1103.000759][ T6232] usb 3-1: string descriptor 0 read error: -71
[ 1103.007159][ T6232] usb 3-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1103.016811][ T6232] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1103.045054][ T6232] usb 3-1: can't set config #2, error -71
[ 1103.069420][ T6232] usb 3-1: USB disconnect, device number 32
[ 1103.129869][ T5972] usb 4-1: USB disconnect, device number 45
[ 1103.807114][   T44] usbhid 2-1:0.0: can't add hid device: -71
[ 1103.827569][   T44] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1103.852431][   T44] usb 2-1: USB disconnect, device number 35
[ 1103.862120][T17085] FAULT_INJECTION: forcing a failure.
[ 1103.862120][T17085] name failslab, interval 1, probability 0, space 0, times 0
[ 1103.885681][T17085] CPU: 1 UID: 0 PID: 17085 Comm: syz.2.2744 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1103.885708][T17085] Tainted: [L]=SOFTLOCKUP
[ 1103.885713][T17085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1103.885722][T17085] Call Trace:
[ 1103.885728][T17085]  <TASK>
[ 1103.885735][T17085]  dump_stack_lvl+0x16c/0x1f0
[ 1103.885761][T17085]  should_fail_ex+0x512/0x640
[ 1103.885786][T17085]  ? fs_reclaim_acquire+0xae/0x150
[ 1103.885812][T17085]  should_failslab+0xc2/0x120
[ 1103.885835][T17085]  __kmalloc_noprof+0xeb/0x910
[ 1103.885861][T17085]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1103.885890][T17085]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1103.885911][T17085]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1103.885936][T17085]  ? tomoyo_profile+0x47/0x60
[ 1103.885963][T17085]  tomoyo_path_number_perm+0x245/0x580
[ 1103.885981][T17085]  ? tomoyo_path_number_perm+0x237/0x580
[ 1103.886002][T17085]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1103.886022][T17085]  ? find_held_lock+0x2b/0x80
[ 1103.886070][T17085]  ? find_held_lock+0x2b/0x80
[ 1103.886093][T17085]  ? hook_file_ioctl_common+0x144/0x410
[ 1103.886123][T17085]  ? __fget_files+0x20e/0x3c0
[ 1103.886150][T17085]  security_file_ioctl+0x9b/0x240
[ 1103.886173][T17085]  __x64_sys_ioctl+0xb7/0x210
[ 1103.886194][T17085]  do_syscall_64+0xcd/0xf80
[ 1103.886217][T17085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1103.886233][T17085] RIP: 0033:0x7faf7e58f749
[ 1103.886245][T17085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1103.886261][T17085] RSP: 002b:00007faf7f3bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1103.886279][T17085] RAX: ffffffffffffffda RBX: 00007faf7e7e5fa0 RCX: 00007faf7e58f749
[ 1103.886289][T17085] RDX: 0000000000000000 RSI: 00000000000054a3 RDI: 0000000000000003
[ 1103.886298][T17085] RBP: 00007faf7f3bf090 R08: 0000000000000000 R09: 0000000000000000
[ 1103.886312][T17085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1103.886320][T17085] R13: 00007faf7e7e6038 R14: 00007faf7e7e5fa0 R15: 00007ffc84d76eb8
[ 1103.886343][T17085]  </TASK>
[ 1103.886399][T17085] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1104.353197][ T6232] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[ 1104.432926][ T5935] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1104.502949][ T6232] usb 3-1: Using ep0 maxpacket: 16
[ 1104.512133][ T6232] usb 3-1: config 6 has an invalid interface number: 223 but max is 0
[ 1104.521248][ T6232] usb 3-1: config 6 has no interface number 0
[ 1104.532922][T15881] Bluetooth: hci0: command 0x0406 tx timeout
[ 1104.538964][T15909] Bluetooth: hci2: command 0x0406 tx timeout
[ 1104.550541][ T6232] usb 3-1: config 6 interface 223 has no altsetting 0
[ 1104.574414][ T6232] usb 3-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=ba.fb
[ 1104.592037][ T5935] usb 4-1: Using ep0 maxpacket: 8
[ 1104.608564][ T6232] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1104.614590][T17093] hfsplus: unable to find HFS+ superblock
[ 1104.617080][ T5935] usb 4-1: config 0 has an invalid interface number: 243 but max is 0
[ 1104.641311][ T6232] usb 3-1: Product: syz
[ 1104.693255][ T6232] usb 3-1: Manufacturer: syz
[ 1104.738930][ T5935] usb 4-1: config 0 has no interface number 0
[ 1104.745524][ T6232] usb 3-1: SerialNumber: syz
[ 1104.750838][ T5935] usb 4-1: config 0 interface 243 altsetting 0 endpoint 0x6 has invalid maxpacket 943, setting to 64
[ 1104.769807][ T5935] usb 4-1: config 0 interface 243 altsetting 0 has a duplicate endpoint with address 0x6, skipping
[ 1104.942850][T15881] Bluetooth: hci3: command 0x0406 tx timeout
[ 1104.965978][T15909] Bluetooth: hci4: command 0x0406 tx timeout
[ 1105.009852][T16768] Bluetooth: hci1: command 0x0406 tx timeout
[ 1105.050823][ T5935] usb 4-1: New USB device found, idVendor=12d1, idProduct=b865, bcdDevice=ed.d7
[ 1105.066524][ T5935] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1105.077677][ T6232] hdpvr 3-1:6.223: Could not find bulk-in endpoint
[ 1105.090391][ T5935] usb 4-1: Product: syz
[ 1105.095871][ T5935] usb 4-1: Manufacturer: syz
[ 1105.100453][ T5935] usb 4-1: SerialNumber: syz
[ 1105.105525][ T6232] hdpvr 3-1:6.223: probe with driver hdpvr failed with error -12
[ 1105.116885][ T6232] usb 3-1: USB disconnect, device number 33
[ 1105.144063][ T5935] usb 4-1: config 0 descriptor??
[ 1105.156742][ T5935] option 4-1:0.243: GSM modem (1-port) converter detected
[ 1105.305621][   T30] audit: type=1400 audit(1767402137.433:500): avc:  denied  { call } for  pid=17101 comm="syz.4.2750" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1105.327184][T17102] binder_alloc: 17101: binder_alloc_buf, no vma
[ 1105.365794][ T5935] usb 4-1: USB disconnect, device number 46
[ 1105.394350][ T5935] option 4-1:0.243: device disconnected
[ 1106.059855][   T44] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[ 1106.213882][   T30] audit: type=1400 audit(1767402138.333:501): avc:  denied  { mount } for  pid=17110 comm="syz.1.2752" name="/" dev="hugetlbfs" ino=68708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[ 1106.307577][   T44] usb 5-1: config 2 interface 0 has no altsetting 0
[ 1106.345358][   T44] usb 5-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1106.381785][   T44] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1106.434827][   T44] usb 5-1: Product: syz
[ 1106.444726][   T44] usb 5-1: Manufacturer: syz
[ 1106.502943][   T44] usb 5-1: SerialNumber: syz
[ 1107.952927][ T6183] usb 1-1: new full-speed USB device number 34 using dummy_hcd
[ 1108.173202][ T6183] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[ 1108.194414][   T44] usb 5-1: USB disconnect, device number 42
[ 1108.201778][ T6183] usb 1-1: config 0 has no interface number 0
[ 1108.248344][ T6183] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1108.276815][ T6183] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1108.304883][ T6183] usb 1-1: Product: syz
[ 1108.309122][ T6183] usb 1-1: Manufacturer: syz
[ 1108.313754][ T6183] usb 1-1: SerialNumber: syz
[ 1108.325492][ T6183] usb 1-1: config 0 descriptor??
[ 1108.912972][ T6183] usb 1-1: Firmware version (0.0) predates our first public release.
[ 1108.942826][   T30] audit: type=1400 audit(1767402141.063:502): avc:  denied  { unmount } for  pid=5809 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[ 1108.962847][ T6183] usb 1-1: Please update to version 0.2 or newer
[ 1109.164843][T17136] binder_alloc: 17135: binder_alloc_buf, no vma
[ 1109.366408][T17144] netlink: 'syz.1.2760': attribute type 10 has an invalid length.
[ 1109.705882][T17144] team0: Device ipvlan1 failed to register rx_handler
[ 1109.754202][   T30] audit: type=1400 audit(1767402141.883:503): avc:  denied  { setopt } for  pid=17120 comm="syz.0.2755" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1111.065607][ T6232] usb 1-1: USB disconnect, device number 34
[ 1112.103642][T17162] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1112.139994][T17162] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1112.213982][T17162] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1112.224364][T17162] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1112.271200][T17162] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1112.643469][T14290] usb 5-1: new full-speed USB device number 43 using dummy_hcd
[ 1112.824153][T14290] usb 5-1: config 0 has an invalid interface number: 128 but max is 0
[ 1112.843468][   T24] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[ 1112.851973][T14290] usb 5-1: config 0 has no interface number 0
[ 1112.862680][T14290] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1112.872823][T14290] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1112.880823][T14290] usb 5-1: Product: syz
[ 1112.885542][T14290] usb 5-1: Manufacturer: syz
[ 1112.890946][T14290] usb 5-1: SerialNumber: syz
[ 1112.903817][T14290] usb 5-1: config 0 descriptor??
[ 1113.010763][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1113.093260][   T24] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1113.218048][   T24] usb 2-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[ 1113.352784][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1113.369784][   T24] usb 2-1: Product: syz
[ 1113.382840][T14290] usb 5-1: Firmware version (0.0) predates our first public release.
[ 1113.390937][T14290] usb 5-1: Please update to version 0.2 or newer
[ 1113.397402][   T24] usb 2-1: Manufacturer: syz
[ 1114.365922][   T24] usb 2-1: SerialNumber: syz
[ 1114.373286][T15881] Bluetooth: hci4: command 0x0406 tx timeout
[ 1114.377695][ T5815] Bluetooth: hci1: command 0x0406 tx timeout
[ 1114.379911][T15909] Bluetooth: hci2: command 0x0406 tx timeout
[ 1114.385342][T16394] Bluetooth: hci3: command 0x0406 tx timeout
[ 1114.391729][T16768] Bluetooth: hci0: command 0x0406 tx timeout
[ 1114.410580][   T24] usb 2-1: config 0 descriptor??
[ 1114.702308][   T24] usb 2-1: ucan: probing device on interface #0
[ 1114.709266][   T24] usb 2-1: ucan: invalid EP count (0)
[ 1114.714783][   T24] usb 2-1: ucan: probe failed; try to update the device firmware
[ 1114.873042][   T30] audit: type=1400 audit(1767402146.983:504): avc:  denied  { read } for  pid=17190 comm="syz.2.2775" name="nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[ 1114.942693][T17191] netlink: 'syz.2.2775': attribute type 23 has an invalid length.
[ 1114.987159][   T30] audit: type=1400 audit(1767402147.003:505): avc:  denied  { open } for  pid=17190 comm="syz.2.2775" path="/dev/nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[ 1115.006355][T14290] usb 5-1: USB disconnect, device number 43
[ 1115.113897][   T30] audit: type=1400 audit(1767402147.003:506): avc:  denied  { write } for  pid=17190 comm="syz.2.2775" name="nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[ 1115.213017][T17175] netlink: 'syz.1.2768': attribute type 1 has an invalid length.
[ 1115.419287][T17175] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1116.143190][   T30] audit: type=1400 audit(1767402147.623:507): avc:  denied  { ioctl } for  pid=17198 comm="syz.0.2770" path="socket:[68174]" dev="sockfs" ino=68174 ioctlcmd=0x660b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1116.168387][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.316900][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.711476][T17216] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2777'.
[ 1117.155563][T17220] tmpfs: Bad value for 'huge'
[ 1117.175037][T17197] bond6: (slave veth3): Enslaving as an active interface with a down link
[ 1117.842160][T17217] tmpfs: Bad value for 'huge'
[ 1117.998670][T17213] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1118.019790][T17213] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1118.049515][T17213] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1118.078680][T17213] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1118.107294][T17213] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1118.206246][T14290] usb 2-1: USB disconnect, device number 36
[ 1118.805483][T17235] netlink: 'syz.1.2782': attribute type 10 has an invalid length.
[ 1118.819896][T17235] team0: Device ipvlan1 failed to register rx_handler
[ 1120.102837][T16768] Bluetooth: hci2: command 0x0406 tx timeout
[ 1120.109153][T16768] Bluetooth: hci0: command 0x0406 tx timeout
[ 1120.122865][T16768] Bluetooth: hci4: command 0x0406 tx timeout
[ 1120.128988][T16768] Bluetooth: hci3: command 0x0406 tx timeout
[ 1120.135642][T15909] Bluetooth: hci1: command 0x0406 tx timeout
[ 1120.693943][T17252] netlink: get zone limit has 4 unknown bytes
[ 1123.820908][ T6232] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[ 1124.670912][ T6232] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1124.762879][T14290] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 1124.863250][ T6232] usb 2-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[ 1124.876475][ T6232] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1124.889355][ T6232] usb 2-1: Product: syz
[ 1124.894163][ T6232] usb 2-1: Manufacturer: syz
[ 1124.899403][ T6232] usb 2-1: SerialNumber: syz
[ 1124.973588][ T6232] usb 2-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[ 1124.994733][T17293] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2798'.
[ 1125.034283][T14290] usb 1-1: config 2 interface 0 has no altsetting 0
[ 1125.052971][T14290] usb 1-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1125.072535][T14290] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1125.096852][T14290] usb 1-1: Product: syz
[ 1125.105206][T14290] usb 1-1: Manufacturer: syz
[ 1125.115005][T14290] usb 1-1: SerialNumber: syz
[ 1125.298396][T17298] FAULT_INJECTION: forcing a failure.
[ 1125.298396][T17298] name failslab, interval 1, probability 0, space 0, times 0
[ 1125.316183][T17298] CPU: 1 UID: 0 PID: 17298 Comm: syz.4.2795 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1125.316214][T17298] Tainted: [L]=SOFTLOCKUP
[ 1125.316219][T17298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1125.316230][T17298] Call Trace:
[ 1125.316236][T17298]  <TASK>
[ 1125.316243][T17298]  dump_stack_lvl+0x16c/0x1f0
[ 1125.316269][T17298]  should_fail_ex+0x512/0x640
[ 1125.316295][T17298]  ? fs_reclaim_acquire+0xae/0x150
[ 1125.316320][T17298]  should_failslab+0xc2/0x120
[ 1125.316342][T17298]  __kmalloc_noprof+0xeb/0x910
[ 1125.316370][T17298]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1125.316397][T17298]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1125.316419][T17298]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1125.316445][T17298]  ? tomoyo_profile+0x47/0x60
[ 1125.316473][T17298]  tomoyo_path_number_perm+0x245/0x580
[ 1125.316493][T17298]  ? tomoyo_path_number_perm+0x237/0x580
[ 1125.316514][T17298]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1125.316534][T17298]  ? find_held_lock+0x2b/0x80
[ 1125.316581][T17298]  ? find_held_lock+0x2b/0x80
[ 1125.316605][T17298]  ? hook_file_ioctl_common+0x144/0x410
[ 1125.316637][T17298]  ? __fget_files+0x20e/0x3c0
[ 1125.316665][T17298]  security_file_ioctl+0x9b/0x240
[ 1125.316687][T17298]  __x64_sys_ioctl+0xb7/0x210
[ 1125.316709][T17298]  do_syscall_64+0xcd/0xf80
[ 1125.316733][T17298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1125.316750][T17298] RIP: 0033:0x7f7d48d8f749
[ 1125.316764][T17298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1125.316779][T17298] RSP: 002b:00007f7d49b76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1125.316796][T17298] RAX: ffffffffffffffda RBX: 00007f7d48fe6090 RCX: 00007f7d48d8f749
[ 1125.316806][T17298] RDX: 0000200000000000 RSI: 000000004004af61 RDI: 0000000000000003
[ 1125.316817][T17298] RBP: 00007f7d49b76090 R08: 0000000000000000 R09: 0000000000000000
[ 1125.316828][T17298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1125.316837][T17298] R13: 00007f7d48fe6128 R14: 00007f7d48fe6090 R15: 00007fffb30ecef8
[ 1125.316861][T17298]  </TASK>
[ 1125.316884][T17298] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1126.305252][T14290] usb 1-1: USB disconnect, device number 35
[ 1126.421016][ T6232] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1126.879323][ T6232] dvbdev: DVB: registering new adapter (774 Friio White ISDB-T USB2.0)
[ 1126.910156][ T6232] usb 2-1: media controller created
[ 1126.944066][ T6232] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1127.071991][T17316] tmpfs: Bad value for 'huge'
[ 1127.181635][ T6232] usb 2-1: USB disconnect, device number 37
[ 1127.202543][T17312] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1127.227800][T17312] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1127.256029][T17312] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1127.265919][T17312] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1127.278126][T17312] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1128.400715][T17328] FAULT_INJECTION: forcing a failure.
[ 1128.400715][T17328] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1128.416872][T17328] CPU: 1 UID: 0 PID: 17328 Comm: syz.2.2808 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1128.416899][T17328] Tainted: [L]=SOFTLOCKUP
[ 1128.416905][T17328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1128.416915][T17328] Call Trace:
[ 1128.416921][T17328]  <TASK>
[ 1128.416927][T17328]  dump_stack_lvl+0x16c/0x1f0
[ 1128.416951][T17328]  should_fail_ex+0x512/0x640
[ 1128.416978][T17328]  _copy_from_user+0x2e/0xd0
[ 1128.417001][T17328]  copy_msghdr_from_user+0x98/0x160
[ 1128.417018][T17328]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1128.417039][T17328]  ? __pfx__kstrtoull+0x10/0x10
[ 1128.417060][T17328]  ___sys_sendmsg+0xfe/0x1d0
[ 1128.417078][T17328]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1128.417106][T17328]  ? find_held_lock+0x2b/0x80
[ 1128.417145][T17328]  __sys_sendmmsg+0x200/0x420
[ 1128.417165][T17328]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1128.417189][T17328]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1128.417221][T17328]  ? fput+0x70/0xf0
[ 1128.417236][T17328]  ? ksys_write+0x1ac/0x250
[ 1128.417255][T17328]  ? __pfx_ksys_write+0x10/0x10
[ 1128.417279][T17328]  __x64_sys_sendmmsg+0x9c/0x100
[ 1128.417295][T17328]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1128.417321][T17328]  do_syscall_64+0xcd/0xf80
[ 1128.417343][T17328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1128.417359][T17328] RIP: 0033:0x7faf7e58f749
[ 1128.417373][T17328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1128.417389][T17328] RSP: 002b:00007faf7f3bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1128.417406][T17328] RAX: ffffffffffffffda RBX: 00007faf7e7e5fa0 RCX: 00007faf7e58f749
[ 1128.417416][T17328] RDX: 0400000000000172 RSI: 0000200000003cc0 RDI: 0000000000000004
[ 1128.417426][T17328] RBP: 00007faf7f3bf090 R08: 0000000000000000 R09: 0000000000000000
[ 1128.417436][T17328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1128.417445][T17328] R13: 00007faf7e7e6038 R14: 00007faf7e7e5fa0 R15: 00007ffc84d76eb8
[ 1128.417468][T17328]  </TASK>
[ 1129.084033][T16394] Bluetooth: hci0: command 0x0406 tx timeout
[ 1129.237210][T17339] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2811'.
[ 1129.247430][T16394] Bluetooth: hci2: command 0x0406 tx timeout
[ 1129.341692][T16768] Bluetooth: hci1: command 0x0406 tx timeout
[ 1129.348052][T16394] Bluetooth: hci4: command 0x0406 tx timeout
[ 1129.357329][T15909] Bluetooth: hci3: command 0x0406 tx timeout
[ 1129.419066][T17340] mmap: syz.1.2811 (17340) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 1129.777136][T17350] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2806'.
[ 1131.450982][T17357] futex_wake_op: syz.4.2816 tries to shift op by -1; fix this program
[ 1132.063657][   T30] audit: type=1400 audit(1767402164.033:508): avc:  denied  { mount } for  pid=17356 comm="syz.4.2816" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[ 1132.271247][T17372] loop2: detected capacity change from 0 to 7
[ 1132.352064][T17372] Dev loop2: unable to read RDB block 7
[ 1132.391606][T17372]  loop2: AHDI p1 p2 p3
[ 1132.406126][T17372] loop2: partition table partially beyond EOD, truncated
[ 1132.424863][T17372] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1132.439705][T17372] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1132.475752][T17377] FAULT_INJECTION: forcing a failure.
[ 1132.475752][T17377] name failslab, interval 1, probability 0, space 0, times 0
[ 1132.501926][T17377] CPU: 0 UID: 0 PID: 17377 Comm: syz.4.2821 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1132.501955][T17377] Tainted: [L]=SOFTLOCKUP
[ 1132.501960][T17377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1132.501970][T17377] Call Trace:
[ 1132.501976][T17377]  <TASK>
[ 1132.501983][T17377]  dump_stack_lvl+0x16c/0x1f0
[ 1132.502014][T17377]  should_fail_ex+0x512/0x640
[ 1132.502039][T17377]  ? fs_reclaim_acquire+0xae/0x150
[ 1132.502064][T17377]  should_failslab+0xc2/0x120
[ 1132.502088][T17377]  __kmalloc_noprof+0xeb/0x910
[ 1132.502115][T17377]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1132.502144][T17377]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1132.502165][T17377]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1132.502189][T17377]  ? tomoyo_profile+0x47/0x60
[ 1132.502216][T17377]  tomoyo_path_number_perm+0x245/0x580
[ 1132.502234][T17377]  ? tomoyo_path_number_perm+0x237/0x580
[ 1132.502256][T17377]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1132.502276][T17377]  ? find_held_lock+0x2b/0x80
[ 1132.502323][T17377]  ? find_held_lock+0x2b/0x80
[ 1132.502347][T17377]  ? hook_file_ioctl_common+0x144/0x410
[ 1132.502377][T17377]  ? __fget_files+0x20e/0x3c0
[ 1132.502405][T17377]  security_file_ioctl+0x9b/0x240
[ 1132.502428][T17377]  __x64_sys_ioctl+0xb7/0x210
[ 1132.502450][T17377]  do_syscall_64+0xcd/0xf80
[ 1132.502473][T17377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1132.502490][T17377] RIP: 0033:0x7f7d48d8f749
[ 1132.502507][T17377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1132.502523][T17377] RSP: 002b:00007f7d49b97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1132.502539][T17377] RAX: ffffffffffffffda RBX: 00007f7d48fe5fa0 RCX: 00007f7d48d8f749
[ 1132.502551][T17377] RDX: 00002000000002c0 RSI: 0000000000004c0a RDI: 0000000000000003
[ 1132.502560][T17377] RBP: 00007f7d49b97090 R08: 0000000000000000 R09: 0000000000000000
[ 1132.502570][T17377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1132.502579][T17377] R13: 00007f7d48fe6038 R14: 00007f7d48fe5fa0 R15: 00007fffb30ecef8
[ 1132.502601][T17377]  </TASK>
[ 1132.780164][T17377] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1132.834749][T17377] loop2: detected capacity change from 0 to 7
[ 1132.854955][T17375] Dev loop2: unable to read RDB block 7
[ 1132.868074][T17375]  loop2: AHDI p1 p2 p3
[ 1132.888950][T17375] loop2: partition table partially beyond EOD, truncated
[ 1132.917538][T17375] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1132.947898][T17375] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1132.970564][T17377] Dev loop2: unable to read RDB block 7
[ 1132.985453][T17380] netlink: 'syz.2.2820': attribute type 1 has an invalid length.
[ 1132.995264][T17377]  loop2: AHDI p1 p2 p3
[ 1133.003040][T17377] loop2: partition table partially beyond EOD, truncated
[ 1133.019931][T17377] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1133.036984][T17380] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1133.049327][T17377] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1133.101495][T17385] bond7: (slave veth3): Enslaving as an active interface with a down link
[ 1133.114434][T17380] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=18834 sclass=netlink_route_socket pid=17380 comm=syz.2.2820
[ 1133.527270][ T6232] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[ 1133.597947][T17393] binder: BINDER_SET_CONTEXT_MGR already set
[ 1133.647534][T17393] binder: 17392:17393 ioctl 4018620d 200000004a80 returned -16
[ 1133.703268][ T6232] usb 3-1: Using ep0 maxpacket: 8
[ 1133.831972][ T6232] usb 3-1: config 0 has an invalid interface number: 243 but max is 0
[ 1133.841078][ T6232] usb 3-1: config 0 has no interface number 0
[ 1133.861445][ T6232] usb 3-1: config 0 interface 243 altsetting 0 endpoint 0x6 has invalid maxpacket 943, setting to 64
[ 1133.913388][ T6232] usb 3-1: config 0 interface 243 altsetting 0 has a duplicate endpoint with address 0x6, skipping
[ 1134.086625][ T6232] usb 3-1: New USB device found, idVendor=12d1, idProduct=b865, bcdDevice=ed.d7
[ 1134.171530][ T6232] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1134.261427][ T6232] usb 3-1: Product: syz
[ 1134.326968][ T6232] usb 3-1: Manufacturer: syz
[ 1134.348618][ T6232] usb 3-1: SerialNumber: syz
[ 1134.428717][ T6232] usb 3-1: config 0 descriptor??
[ 1134.464902][ T6232] option 3-1:0.243: GSM modem (1-port) converter detected
[ 1134.816444][T14290] usb 3-1: USB disconnect, device number 34
[ 1134.846949][T14290] option 3-1:0.243: device disconnected
[ 1135.927062][T17437] FAULT_INJECTION: forcing a failure.
[ 1135.927062][T17437] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1135.976473][T17437] CPU: 0 UID: 0 PID: 17437 Comm: syz.0.2837 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1135.976497][T17437] Tainted: [L]=SOFTLOCKUP
[ 1135.976501][T17437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1135.976506][T17437] Call Trace:
[ 1135.976510][T17437]  <TASK>
[ 1135.976514][T17437]  dump_stack_lvl+0x16c/0x1f0
[ 1135.976533][T17437]  should_fail_ex+0x512/0x640
[ 1135.976551][T17437]  _copy_from_user+0x2e/0xd0
[ 1135.976567][T17437]  copy_msghdr_from_user+0x98/0x160
[ 1135.976579][T17437]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1135.976595][T17437]  ___sys_sendmsg+0xfe/0x1d0
[ 1135.976607][T17437]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1135.976633][T17437]  __sys_sendmsg+0x16d/0x220
[ 1135.976644][T17437]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1135.976659][T17437]  ? fput+0x70/0xf0
[ 1135.976671][T17437]  do_syscall_64+0xcd/0xf80
[ 1135.976685][T17437]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.976696][T17437] RIP: 0033:0x7fa82018f749
[ 1135.976705][T17437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1135.976715][T17437] RSP: 002b:00007fa8210ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1135.976726][T17437] RAX: ffffffffffffffda RBX: 00007fa8203e5fa0 RCX: 00007fa82018f749
[ 1135.976732][T17437] RDX: 0000000004041080 RSI: 0000200000006040 RDI: 0000000000000004
[ 1135.976738][T17437] RBP: 00007fa8210ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1135.976744][T17437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1135.976750][T17437] R13: 00007fa8203e6038 R14: 00007fa8203e5fa0 R15: 00007fffe9845388
[ 1135.976763][T17437]  </TASK>
[ 1137.953226][ T6232] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[ 1138.114441][ T6232] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1138.133285][ T6232] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1138.173135][T12793] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 1138.194184][ T6232] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1138.219324][ T6232] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1138.235513][ T6232] usb 5-1: SerialNumber: syz
[ 1138.352294][T12793] usb 1-1: config 2 interface 0 has no altsetting 0
[ 1138.374429][T12793] usb 1-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1138.447037][T12793] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1138.472140][ T6232] usb 5-1: 0:2 : does not exist
[ 1138.503851][ T6232] usb 5-1: unit 5 not found!
[ 1138.508569][T12793] usb 1-1: Product: syz
[ 1138.533478][T12793] usb 1-1: Manufacturer: syz
[ 1138.538107][T12793] usb 1-1: SerialNumber: syz
[ 1138.736588][ T6232] usb 5-1: USB disconnect, device number 44
[ 1138.850331][T17389] udevd[17389]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1138.955839][T12793] usb 1-1: USB disconnect, device number 36
[ 1141.786591][T17486] Mount JFS Failure: -5
[ 1142.144739][T17482] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2850'.
[ 1142.193172][T17490] FAULT_INJECTION: forcing a failure.
[ 1142.193172][T17490] name failslab, interval 1, probability 0, space 0, times 0
[ 1142.266423][T17490] CPU: 1 UID: 0 PID: 17490 Comm: syz.4.2852 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1142.266451][T17490] Tainted: [L]=SOFTLOCKUP
[ 1142.266456][T17490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1142.266465][T17490] Call Trace:
[ 1142.266470][T17490]  <TASK>
[ 1142.266477][T17490]  dump_stack_lvl+0x16c/0x1f0
[ 1142.266503][T17490]  should_fail_ex+0x512/0x640
[ 1142.266526][T17490]  ? fs_reclaim_acquire+0xae/0x150
[ 1142.266549][T17490]  should_failslab+0xc2/0x120
[ 1142.266569][T17490]  __kmalloc_noprof+0xeb/0x910
[ 1142.266594][T17490]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1142.266622][T17490]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1142.266644][T17490]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1142.266670][T17490]  ? tomoyo_profile+0x47/0x60
[ 1142.266697][T17490]  tomoyo_path_number_perm+0x245/0x580
[ 1142.266715][T17490]  ? tomoyo_path_number_perm+0x237/0x580
[ 1142.266737][T17490]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1142.266757][T17490]  ? find_held_lock+0x2b/0x80
[ 1142.266803][T17490]  ? find_held_lock+0x2b/0x80
[ 1142.266827][T17490]  ? hook_file_ioctl_common+0x144/0x410
[ 1142.266858][T17490]  ? __fget_files+0x20e/0x3c0
[ 1142.266885][T17490]  security_file_ioctl+0x9b/0x240
[ 1142.266908][T17490]  __x64_sys_ioctl+0xb7/0x210
[ 1142.266929][T17490]  do_syscall_64+0xcd/0xf80
[ 1142.266953][T17490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1142.266976][T17490] RIP: 0033:0x7f7d48d8f749
[ 1142.266990][T17490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1142.267006][T17490] RSP: 002b:00007f7d49b97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1142.267024][T17490] RAX: ffffffffffffffda RBX: 00007f7d48fe5fa0 RCX: 00007f7d48d8f749
[ 1142.267034][T17490] RDX: 0000000000000000 RSI: 0000000000006407 RDI: 0000000000000003
[ 1142.267044][T17490] RBP: 00007f7d49b97090 R08: 0000000000000000 R09: 0000000000000000
[ 1142.267054][T17490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1142.267063][T17490] R13: 00007f7d48fe6038 R14: 00007f7d48fe5fa0 R15: 00007fffb30ecef8
[ 1142.267087][T17490]  </TASK>
[ 1142.267094][T17490] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1143.524250][T17504] overlayfs: missing 'lowerdir'
[ 1143.591239][   T30] audit: type=1400 audit(1767402175.653:509): avc:  denied  { mounton } for  pid=17496 comm="syz.4.2855" path="/574/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[ 1143.942922][ T5935] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[ 1144.094267][ T5935] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1144.112837][ T6232] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[ 1144.122930][T12793] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[ 1144.190100][ T5935] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1144.261588][ T5935] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1144.322889][T12793] usb 3-1: Using ep0 maxpacket: 32
[ 1144.374889][ T6232] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1144.404024][T12793] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1144.470823][T17523] netlink: get zone limit has 4 unknown bytes
[ 1144.811263][ T6232] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1144.824396][ T5935] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1144.833486][T12793] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1144.855605][ T5935] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1144.883788][T12793] usb 3-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[ 1144.893675][ T6232] usb 5-1: New USB device found, idVendor=0bfd, idProduct=010c, bcdDevice=2d.16
[ 1144.906313][ T6232] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1144.914881][ T5935] usb 4-1: config 0 descriptor??
[ 1144.922001][T12793] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1144.938755][ T6232] usb 5-1: Product: syz
[ 1144.944771][ T6232] usb 5-1: Manufacturer: syz
[ 1144.952059][T12793] usb 3-1: config 0 descriptor??
[ 1144.963485][ T6232] usb 5-1: SerialNumber: syz
[ 1144.980692][ T6232] usb 5-1: config 0 descriptor??
[ 1144.989169][ T6232] kvaser_usb 5-1:0.0: error -ENODEV: Cannot get usb endpoint(s)
[ 1145.279204][ T6232] usb 5-1: USB disconnect, device number 45
[ 1145.359566][ T5935] plantronics 0003:047F:FFFF.0018: reserved main item tag 0xe
[ 1145.382105][T12793] ft260 0003:0403:6030.0019: unknown main item tag 0x7
[ 1145.390153][ T5935] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[ 1145.572463][ T5935] plantronics 0003:047F:FFFF.0018: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[ 1145.620515][T12793] ft260 0003:0403:6030.0019: chip code: 6424 8183
[ 1145.796712][T12793] ft260 0003:0403:6030.0019: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.2-1/input0
[ 1146.088680][T12793] ft260 0003:0403:6030.0019: failed to retrieve status: -32, no wakeup
[ 1146.417411][T17509] FAULT_INJECTION: forcing a failure.
[ 1146.417411][T17509] name failslab, interval 1, probability 0, space 0, times 0
[ 1146.495272][T17509] CPU: 0 UID: 0 PID: 17509 Comm: syz.2.2858 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1146.495294][T17509] Tainted: [L]=SOFTLOCKUP
[ 1146.495298][T17509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1146.495304][T17509] Call Trace:
[ 1146.495308][T17509]  <TASK>
[ 1146.495312][T17509]  dump_stack_lvl+0x16c/0x1f0
[ 1146.495334][T17509]  should_fail_ex+0x512/0x640
[ 1146.495351][T17509]  ? fs_reclaim_acquire+0xae/0x150
[ 1146.495367][T17509]  should_failslab+0xc2/0x120
[ 1146.495381][T17509]  __kmalloc_noprof+0xeb/0x910
[ 1146.495397][T17509]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1146.495414][T17509]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1146.495427][T17509]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1146.495443][T17509]  ? tomoyo_profile+0x47/0x60
[ 1146.495459][T17509]  tomoyo_path_number_perm+0x245/0x580
[ 1146.495470][T17509]  ? tomoyo_path_number_perm+0x237/0x580
[ 1146.495484][T17509]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1146.495496][T17509]  ? find_held_lock+0x2b/0x80
[ 1146.495528][T17509]  ? find_held_lock+0x2b/0x80
[ 1146.495542][T17509]  ? hook_file_ioctl_common+0x144/0x410
[ 1146.495562][T17509]  ? __fget_files+0x20e/0x3c0
[ 1146.495579][T17509]  security_file_ioctl+0x9b/0x240
[ 1146.495593][T17509]  __x64_sys_ioctl+0xb7/0x210
[ 1146.495607][T17509]  do_syscall_64+0xcd/0xf80
[ 1146.495620][T17509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1146.495631][T17509] RIP: 0033:0x7faf7e58f749
[ 1146.495640][T17509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1146.495650][T17509] RSP: 002b:00007faf7f3bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1146.495661][T17509] RAX: ffffffffffffffda RBX: 00007faf7e7e5fa0 RCX: 00007faf7e58f749
[ 1146.495668][T17509] RDX: 0000200000000180 RSI: 0000000000000720 RDI: 0000000000000004
[ 1146.495674][T17509] RBP: 00007faf7f3bf090 R08: 0000000000000000 R09: 0000000000000000
[ 1146.495679][T17509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1146.495685][T17509] R13: 00007faf7e7e6038 R14: 00007faf7e7e5fa0 R15: 00007ffc84d76eb8
[ 1146.495699][T17509]  </TASK>
[ 1146.495703][T17509] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1146.883227][T12793] usb 4-1: USB disconnect, device number 47
[ 1146.919097][ T5935] usb 3-1: reset high-speed USB device number 35 using dummy_hcd
[ 1146.951104][T17532] fido_id[17532]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[ 1147.064714][T17509] ft260 0003:0403:6030.0019: ft260_i2c_read: failed with -38
[ 1147.208339][   T30] audit: type=1400 audit(1767402179.333:510): avc:  denied  { create } for  pid=17542 comm="syz.4.2868" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[ 1147.317016][T17550] netlink: 'syz.3.2867': attribute type 10 has an invalid length.
[ 1147.331160][T17550] team0: Device ipvlan1 failed to register rx_handler
[ 1147.423274][   T30] audit: type=1400 audit(1767402179.333:511): avc:  denied  { ioctl } for  pid=17542 comm="syz.4.2868" path="socket:[69825]" dev="sockfs" ino=69825 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[ 1147.706609][T17553] FAULT_INJECTION: forcing a failure.
[ 1147.706609][T17553] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1147.857168][T17553] CPU: 1 UID: 0 PID: 17553 Comm: syz.1.2866 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1147.857199][T17553] Tainted: [L]=SOFTLOCKUP
[ 1147.857205][T17553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1147.857216][T17553] Call Trace:
[ 1147.857222][T17553]  <TASK>
[ 1147.857229][T17553]  dump_stack_lvl+0x16c/0x1f0
[ 1147.857259][T17553]  should_fail_ex+0x512/0x640
[ 1147.857288][T17553]  _copy_from_user+0x2e/0xd0
[ 1147.857314][T17553]  copy_msghdr_from_user+0x98/0x160
[ 1147.857333][T17553]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1147.857358][T17553]  ? __pfx__kstrtoull+0x10/0x10
[ 1147.857382][T17553]  ___sys_sendmsg+0xfe/0x1d0
[ 1147.857400][T17553]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1147.857429][T17553]  ? find_held_lock+0x2b/0x80
[ 1147.857475][T17553]  __sys_sendmmsg+0x200/0x420
[ 1147.857497][T17553]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1147.857522][T17553]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1147.857556][T17553]  ? fput+0x70/0xf0
[ 1147.857570][T17553]  ? ksys_write+0x1ac/0x250
[ 1147.857590][T17553]  ? __pfx_ksys_write+0x10/0x10
[ 1147.857614][T17553]  __x64_sys_sendmmsg+0x9c/0x100
[ 1147.857631][T17553]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1147.857651][T17553]  do_syscall_64+0xcd/0xf80
[ 1147.857674][T17553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1147.857691][T17553] RIP: 0033:0x7f786c38f749
[ 1147.857705][T17553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1147.857722][T17553] RSP: 002b:00007f786d24f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1147.857740][T17553] RAX: ffffffffffffffda RBX: 00007f786c5e5fa0 RCX: 00007f786c38f749
[ 1147.857752][T17553] RDX: 0000000000000001 RSI: 0000200000001500 RDI: 0000000000000004
[ 1147.857762][T17553] RBP: 00007f786d24f090 R08: 0000000000000000 R09: 0000000000000000
[ 1147.857771][T17553] R10: 000000000000c040 R11: 0000000000000246 R12: 0000000000000001
[ 1147.857781][T17553] R13: 00007f786c5e6038 R14: 00007f786c5e5fa0 R15: 00007ffcd5ab79c8
[ 1147.857805][T17553]  </TASK>
[ 1148.425768][ T6232] usb 3-1: USB disconnect, device number 35
[ 1150.677438][T17580] FAULT_INJECTION: forcing a failure.
[ 1150.677438][T17580] name failslab, interval 1, probability 0, space 0, times 0
[ 1151.098565][T17580] CPU: 1 UID: 0 PID: 17580 Comm: syz.4.2876 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1151.098593][T17580] Tainted: [L]=SOFTLOCKUP
[ 1151.098599][T17580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1151.098608][T17580] Call Trace:
[ 1151.098614][T17580]  <TASK>
[ 1151.098621][T17580]  dump_stack_lvl+0x16c/0x1f0
[ 1151.098648][T17580]  should_fail_ex+0x512/0x640
[ 1151.098675][T17580]  should_failslab+0xc2/0x120
[ 1151.098698][T17580]  kmem_cache_alloc_node_noprof+0x86/0x800
[ 1151.098715][T17580]  ? __alloc_skb+0x156/0x410
[ 1151.098744][T17580]  ? __alloc_skb+0x156/0x410
[ 1151.098766][T17580]  __alloc_skb+0x156/0x410
[ 1151.098788][T17580]  ? __alloc_skb+0x35d/0x410
[ 1151.098811][T17580]  ? __pfx___alloc_skb+0x10/0x10
[ 1151.098850][T17580]  _sctp_make_chunk+0x51/0x270
[ 1151.098872][T17580]  sctp_make_abort+0x41/0x410
[ 1151.098891][T17580]  sctp_make_abort_user+0x7c/0x4b0
[ 1151.098913][T17580]  ? __pfx_sctp_make_abort_user+0x10/0x10
[ 1151.098933][T17580]  ? skb_dequeue+0x126/0x180
[ 1151.098961][T17580]  sctp_close+0x220/0x960
[ 1151.098988][T17580]  ? __pfx_sctp_close+0x10/0x10
[ 1151.099014][T17580]  ? ipv6_sock_ac_close+0x78/0x100
[ 1151.099037][T17580]  ? ip_mc_drop_socket+0x1f/0x280
[ 1151.099062][T17580]  inet_release+0xed/0x200
[ 1151.099078][T17580]  inet6_release+0x4f/0x70
[ 1151.099097][T17580]  __sock_release+0xb3/0x270
[ 1151.099116][T17580]  ? __pfx_sock_close+0x10/0x10
[ 1151.099132][T17580]  sock_close+0x1c/0x30
[ 1151.099149][T17580]  __fput+0x402/0xb70
[ 1151.099171][T17580]  fput_close_sync+0x118/0x260
[ 1151.099189][T17580]  ? __pfx_fput_close_sync+0x10/0x10
[ 1151.099204][T17580]  ? dnotify_flush+0x79/0x4c0
[ 1151.099230][T17580]  __x64_sys_close+0x8b/0x120
[ 1151.099248][T17580]  do_syscall_64+0xcd/0xf80
[ 1151.099272][T17580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.099289][T17580] RIP: 0033:0x7f7d48d8f749
[ 1151.099303][T17580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1151.099318][T17580] RSP: 002b:00007f7d49b76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 1151.099335][T17580] RAX: ffffffffffffffda RBX: 00007f7d48fe6090 RCX: 00007f7d48d8f749
[ 1151.099345][T17580] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1151.099354][T17580] RBP: 00007f7d49b76090 R08: 0000000000000000 R09: 0000000000000000
[ 1151.099363][T17580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1151.099372][T17580] R13: 00007f7d48fe6128 R14: 00007f7d48fe6090 R15: 00007fffb30ecef8
[ 1151.099395][T17580]  </TASK>
[ 1152.023310][T14290] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[ 1152.246452][T14290] usb 3-1: config 0 has an invalid interface number: 2 but max is 0
[ 1152.282898][T14290] usb 3-1: config 0 has no interface number 0
[ 1152.309632][T14290] usb 3-1: config 0 interface 2 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1152.415713][T17594] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2879'.
[ 1152.768686][T14290] usb 3-1: config 0 interface 2 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1152.831527][T14290] usb 3-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[ 1152.898660][T14290] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1152.924696][T17597] vxfs: unable to read disk superblock at 1
[ 1152.930728][T17597] vxfs: unable to read disk superblock at 8
[ 1152.948225][T14290] usb 3-1: config 0 descriptor??
[ 1152.968998][T17597] vxfs: can't find superblock.
[ 1153.243196][   T89] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[ 1153.407413][T14290] uclogic 0003:28BD:0905.001A: Interface probing failed: -22
[ 1153.414873][   T89] usb 5-1: Using ep0 maxpacket: 32
[ 1153.433434][   T89] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[ 1153.441617][   T89] usb 5-1: config 0 has no interface number 0
[ 1153.478628][T14290] uclogic 0003:28BD:0905.001A: interface is invalid, ignoring
[ 1153.485101][   T89] usb 5-1: config 0 interface 184 has no altsetting 0
[ 1153.529488][   T89] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1153.557237][   T89] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1153.602815][   T89] usb 5-1: Product: syz
[ 1153.619911][   T89] usb 5-1: Manufacturer: syz
[ 1153.634258][   T89] usb 5-1: SerialNumber: syz
[ 1153.654615][   T89] usb 5-1: config 0 descriptor??
[ 1153.674047][   T89] smsc75xx v1.0.0
[ 1154.130059][   T89] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[ 1154.224569][   T89] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[ 1154.262056][   T89] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[ 1154.287702][   T89] smsc75xx 5-1:0.184: probe with driver smsc75xx failed with error -61
[ 1154.808756][T17593] ALSA: mixer_oss: invalid OSS volume ''
[ 1155.632701][T17627] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1155.664546][T17627] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1155.745569][T17632] netlink: 216 bytes leftover after parsing attributes in process `syz.3.2888'.
[ 1155.755672][T17632] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2888'.
[ 1156.134789][   T89] usb 3-1: USB disconnect, device number 36
[ 1156.135516][T17627] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1156.213023][T14290] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[ 1156.243581][T17627] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1156.409836][T17635] FAULT_INJECTION: forcing a failure.
[ 1156.409836][T17635] name failslab, interval 1, probability 0, space 0, times 0
[ 1157.335153][T14290] usb 1-1: config 2 interface 0 has no altsetting 0
[ 1157.359532][T17635] CPU: 1 UID: 0 PID: 17635 Comm: syz.2.2889 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1157.359563][T17635] Tainted: [L]=SOFTLOCKUP
[ 1157.359569][T17635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1157.359579][T17635] Call Trace:
[ 1157.359586][T17635]  <TASK>
[ 1157.359593][T17635]  dump_stack_lvl+0x16c/0x1f0
[ 1157.359622][T17635]  should_fail_ex+0x512/0x640
[ 1157.359646][T17635]  ? fs_reclaim_acquire+0xae/0x150
[ 1157.359672][T17635]  should_failslab+0xc2/0x120
[ 1157.359695][T17635]  __kmalloc_noprof+0xeb/0x910
[ 1157.359723][T17635]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1157.359749][T17635]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1157.359770][T17635]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1157.359795][T17635]  ? tomoyo_profile+0x47/0x60
[ 1157.359823][T17635]  tomoyo_path_number_perm+0x245/0x580
[ 1157.359842][T17635]  ? tomoyo_path_number_perm+0x237/0x580
[ 1157.359864][T17635]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1157.359885][T17635]  ? find_held_lock+0x2b/0x80
[ 1157.359934][T17635]  ? find_held_lock+0x2b/0x80
[ 1157.359957][T17635]  ? hook_file_ioctl_common+0x144/0x410
[ 1157.359989][T17635]  ? __fget_files+0x20e/0x3c0
[ 1157.360019][T17635]  security_file_ioctl+0x9b/0x240
[ 1157.360048][T17635]  __x64_sys_ioctl+0xb7/0x210
[ 1157.360070][T17635]  do_syscall_64+0xcd/0xf80
[ 1157.360094][T17635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1157.360111][T17635] RIP: 0033:0x7faf7e58f749
[ 1157.360125][T17635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1157.360141][T17635] RSP: 002b:00007faf7f39e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1157.360158][T17635] RAX: ffffffffffffffda RBX: 00007faf7e7e6090 RCX: 00007faf7e58f749
[ 1157.360169][T17635] RDX: 00002000000000c0 RSI: 000000004040534e RDI: 0000000000000003
[ 1157.360180][T17635] RBP: 00007faf7f39e090 R08: 0000000000000000 R09: 0000000000000000
[ 1157.360190][T17635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1157.360200][T17635] R13: 00007faf7e7e6128 R14: 00007faf7e7e6090 R15: 00007ffc84d76eb8
[ 1157.360225][T17635]  </TASK>
[ 1157.360233][T17635] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1157.805025][T14290] usb 1-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1157.822795][T14290] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1157.841149][T14290] usb 1-1: Product: syz
[ 1157.851242][T14290] usb 1-1: Manufacturer: syz
[ 1157.855895][T14290] usb 1-1: SerialNumber: syz
[ 1157.943173][ T5972] usb 5-1: USB disconnect, device number 46
[ 1158.201615][T14290] usb 1-1: USB disconnect, device number 37
[ 1158.312769][ T5917] usb 4-1: new full-speed USB device number 48 using dummy_hcd
[ 1158.518233][ T5917] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1158.534975][ T5917] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1158.679529][ T5917] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1158.721980][ T5917] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1158.852089][ T5917] usb 4-1: Product: syz
[ 1158.953984][T17651] netlink: get zone limit has 4 unknown bytes
[ 1159.343469][T14290] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 1159.353709][ T5917] usb 4-1: Manufacturer: syz
[ 1159.358384][ T5917] usb 4-1: SerialNumber: syz
[ 1159.409429][ T5917] usb 4-1: config 0 descriptor??
[ 1159.436997][ T5917] usb 4-1: selecting invalid altsetting 0
[ 1159.512796][T14290] usb 1-1: Using ep0 maxpacket: 32
[ 1159.618422][T14290] usb 1-1: too many configurations: 220, using maximum allowed: 8
[ 1159.684163][T14290] usb 1-1: unable to read config index 0 descriptor/start: -61
[ 1159.719079][T14290] usb 1-1: can't read configurations, error -61
[ 1159.826079][   T89] usb 4-1: USB disconnect, device number 48
[ 1160.032346][T14290] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 1160.212952][T14290] usb 1-1: Using ep0 maxpacket: 32
[ 1160.362181][T14290] usb 1-1: too many configurations: 220, using maximum allowed: 8
[ 1160.415518][T14290] usb 1-1: unable to read config index 0 descriptor/start: -61
[ 1160.437259][T14290] usb 1-1: can't read configurations, error -61
[ 1160.461030][T14290] usb usb1-port1: attempt power cycle
[ 1160.832817][T14290] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 1161.021731][T17675] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2900'.
[ 1161.368918][T14290] usb 1-1: Using ep0 maxpacket: 32
[ 1161.407177][T14290] usb 1-1: too many configurations: 220, using maximum allowed: 8
[ 1162.423741][T14290] usb 1-1: unable to read config index 0 descriptor/start: -71
[ 1162.431344][T14290] usb 1-1: can't read configurations, error -71
[ 1162.593244][T17682] FAULT_INJECTION: forcing a failure.
[ 1162.593244][T17682] name failslab, interval 1, probability 0, space 0, times 0
[ 1162.658878][T17682] CPU: 0 UID: 0 PID: 17682 Comm: syz.4.2903 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1162.658898][T17682] Tainted: [L]=SOFTLOCKUP
[ 1162.658902][T17682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1162.658908][T17682] Call Trace:
[ 1162.658913][T17682]  <TASK>
[ 1162.658917][T17682]  dump_stack_lvl+0x16c/0x1f0
[ 1162.658936][T17682]  should_fail_ex+0x512/0x640
[ 1162.658951][T17682]  ? fs_reclaim_acquire+0xae/0x150
[ 1162.658967][T17682]  should_failslab+0xc2/0x120
[ 1162.658982][T17682]  __kmalloc_noprof+0xeb/0x910
[ 1162.658998][T17682]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1162.659016][T17682]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1162.659030][T17682]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1162.659046][T17682]  ? tomoyo_profile+0x47/0x60
[ 1162.659062][T17682]  tomoyo_path_number_perm+0x245/0x580
[ 1162.659074][T17682]  ? tomoyo_path_number_perm+0x237/0x580
[ 1162.659088][T17682]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1162.659101][T17682]  ? find_held_lock+0x2b/0x80
[ 1162.659128][T17682]  ? find_held_lock+0x2b/0x80
[ 1162.659143][T17682]  ? hook_file_ioctl_common+0x144/0x410
[ 1162.659163][T17682]  ? __fget_files+0x20e/0x3c0
[ 1162.659180][T17682]  security_file_ioctl+0x9b/0x240
[ 1162.659195][T17682]  __x64_sys_ioctl+0xb7/0x210
[ 1162.659208][T17682]  do_syscall_64+0xcd/0xf80
[ 1162.659223][T17682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1162.659234][T17682] RIP: 0033:0x7f7d48d8f749
[ 1162.659244][T17682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1162.659254][T17682] RSP: 002b:00007f7d49b97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1162.659265][T17682] RAX: ffffffffffffffda RBX: 00007f7d48fe5fa0 RCX: 00007f7d48d8f749
[ 1162.659272][T17682] RDX: 0000200000000180 RSI: 000000004020ae46 RDI: 0000000000000004
[ 1162.659278][T17682] RBP: 00007f7d49b97090 R08: 0000000000000000 R09: 0000000000000000
[ 1162.659284][T17682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1162.659290][T17682] R13: 00007f7d48fe6038 R14: 00007f7d48fe5fa0 R15: 00007fffb30ecef8
[ 1162.659304][T17682]  </TASK>
[ 1162.659309][T17682] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1163.299906][T17688] tipc: Started in network mode
[ 1163.358472][T17690] random: crng reseeded on system resumption
[ 1163.416725][T17688] tipc: Node identity 6e86076919a, cluster identity 4711
[ 1163.443397][T17688] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1163.470494][T17691] syzkaller0: entered promiscuous mode
[ 1163.480419][T17691] syzkaller0: entered allmulticast mode
[ 1163.542053][T17691] tipc: Resetting bearer <eth:syzkaller0>
[ 1164.079136][T17701] netlink: 216 bytes leftover after parsing attributes in process `syz.1.2907'.
[ 1164.088631][T17701] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2907'.
[ 1164.547003][T17703] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2902'.
[ 1164.942127][T17684] tipc: Resetting bearer <eth:syzkaller0>
[ 1165.010775][T17684] tipc: Disabling bearer <eth:syzkaller0>
[ 1165.176481][ T5972] tipc: Node number set to 1998980969
[ 1165.484205][T16768] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1165.494613][T16768] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1165.502324][T16768] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1165.520809][T16768] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1165.529791][T16768] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1165.690635][T17713] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1167.582849][T15909] Bluetooth: hci5: command tx timeout
[ 1167.926456][T17730] random: crng reseeded on system resumption
[ 1169.067571][   T37] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1169.206467][T17709] chnl_net:caif_netlink_parms(): no params data found
[ 1169.579668][   T37] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1169.723032][T15909] Bluetooth: hci5: command tx timeout
[ 1170.137111][T17750] random: crng reseeded on system resumption
[ 1170.155856][T17709] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1170.175829][T17709] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1170.245749][T17709] bridge_slave_0: entered allmulticast mode
[ 1170.266409][T17752] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2916'.
[ 1170.285365][T17709] bridge_slave_0: entered promiscuous mode
[ 1170.324173][T17755] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2916'.
[ 1170.427994][   T37] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1170.450139][T17752] macvtap1: entered promiscuous mode
[ 1170.462435][T17752] team0: entered promiscuous mode
[ 1170.479755][T17752] team_slave_0: entered promiscuous mode
[ 1170.497922][T17752] team_slave_1: entered promiscuous mode
[ 1170.515006][T17752] macvtap1: entered allmulticast mode
[ 1170.542784][T17752] team0: entered allmulticast mode
[ 1170.552964][   T10] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[ 1170.569391][T17752] team_slave_0: entered allmulticast mode
[ 1170.595927][T17752] team_slave_1: entered allmulticast mode
[ 1170.623310][T17752] 8021q: adding VLAN 0 to HW filter on device macvtap1
[ 1170.643503][T17709] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1170.662488][T17709] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1170.681688][T17709] bridge_slave_1: entered allmulticast mode
[ 1170.715391][T17709] bridge_slave_1: entered promiscuous mode
[ 1170.722840][   T10] usb 1-1: Using ep0 maxpacket: 32
[ 1170.738877][   T10] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[ 1170.749343][   T10] usb 1-1: config 0 has no interface number 0
[ 1170.755604][   T10] usb 1-1: config 0 interface 184 has no altsetting 0
[ 1170.768404][T17755] team0: left allmulticast mode
[ 1170.773390][T17755] team_slave_0: left allmulticast mode
[ 1170.778825][T17755] team_slave_1: left allmulticast mode
[ 1170.789332][   T10] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1170.802015][T17755] team0: left promiscuous mode
[ 1170.808850][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1170.819856][T17755] team_slave_0: left promiscuous mode
[ 1170.834394][   T10] usb 1-1: Product: syz
[ 1170.840300][T17755] team_slave_1: left promiscuous mode
[ 1170.849383][   T10] usb 1-1: Manufacturer: syz
[ 1170.881825][   T10] usb 1-1: SerialNumber: syz
[ 1170.889829][   T37] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1170.919283][   T10] usb 1-1: config 0 descriptor??
[ 1170.957106][   T10] smsc75xx v1.0.0
[ 1171.031800][T17709] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1171.138311][T17709] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1171.320871][   T10] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[ 1171.347270][   T10] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -71
[ 1171.355308][T17709] team0: Port device team_slave_0 added
[ 1171.470637][T17709] team0: Port device team_slave_1 added
[ 1171.552270][T17763] netlink: 'syz.4.2920': attribute type 10 has an invalid length.
[ 1171.803052][T16768] Bluetooth: hci5: command tx timeout
[ 1171.880647][   T10] usb 1-1: USB disconnect, device number 42
[ 1172.079796][T17763] team0: Device ipvlan1 failed to register rx_handler
[ 1172.236924][T17709] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1172.278247][T17709] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1172.418949][T17709] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1172.432423][T17709] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1172.503448][T17709] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1172.642795][T17709] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1172.656096][   T30] audit: type=1400 audit(1767402204.783:512): avc:  denied  { map } for  pid=17769 comm="syz.1.2921" path="socket:[71180]" dev="sockfs" ino=71180 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[ 1172.693232][   T37] bridge_slave_1: left allmulticast mode
[ 1172.722346][   T37] bridge_slave_1: left promiscuous mode
[ 1172.744171][   T37] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1174.602773][T16768] Bluetooth: hci5: command tx timeout
[ 1174.673809][   T37] bridge_slave_0: left allmulticast mode
[ 1174.697977][   T37] bridge_slave_0: left promiscuous mode
[ 1174.774273][T17793] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2924'.
[ 1174.803842][   T37] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1174.863657][   T30] audit: type=1400 audit(1767402206.993:513): avc:  denied  { getopt } for  pid=17769 comm="syz.1.2921" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1176.235147][T17810] netlink: 216 bytes leftover after parsing attributes in process `syz.3.2926'.
[ 1176.244632][T17810] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2926'.
[ 1176.675711][   T37] bond6 (unregistering): (slave gretap1): Releasing active interface
[ 1176.809329][T17812] Mount JFS Failure: -5
[ 1176.936799][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1176.943468][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.173943][T17817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2930'.
[ 1177.215716][   T30] audit: type=1400 audit(1767402209.273:514): avc:  denied  { read write } for  pid=17814 comm="syz.0.2930" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[ 1177.285242][   T30] audit: type=1400 audit(1767402209.283:515): avc:  denied  { open } for  pid=17814 comm="syz.0.2930" path="/dev/input/mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[ 1177.540722][   T37] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1177.559663][   T37] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1177.580677][   T37] bond0 (unregistering): Released all slaves
[ 1177.777832][   T37] bond1 (unregistering): Released all slaves
[ 1177.981189][   T37] bond2 (unregistering): Released all slaves
[ 1177.995548][T17823] netlink: 'syz.1.2932': attribute type 10 has an invalid length.
[ 1178.215068][   T37] bond3 (unregistering): Released all slaves
[ 1178.328261][   T37] bond4 (unregistering): Released all slaves
[ 1178.429193][   T37] bond5 (unregistering): Released all slaves
[ 1178.506954][   T37] bond6 (unregistering): Released all slaves
[ 1178.579053][   T37] bond7 (unregistering): (slave veth3): Releasing active interface
[ 1178.588683][   T37] bond7 (unregistering): Released all slaves
[ 1178.691811][T17823] team0: Device ipvlan1 failed to register rx_handler
[ 1178.884152][T17709] hsr_slave_0: entered promiscuous mode
[ 1178.896560][T17709] hsr_slave_1: entered promiscuous mode
[ 1178.913092][T17709] debugfs: 'hsr0' already exists in 'hsr'
[ 1178.927407][T17709] Cannot create hsr debugfs directory
[ 1178.985181][T17831] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2935'.
[ 1179.152933][ T5972] usb 1-1: new full-speed USB device number 43 using dummy_hcd
[ 1179.696376][ T5972] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[ 1179.708740][ T5972] usb 1-1: config 0 has no interface number 0
[ 1179.738860][ T5972] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1179.755947][ T5972] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1179.768358][ T5972] usb 1-1: Product: syz
[ 1179.772636][ T5972] usb 1-1: Manufacturer: syz
[ 1179.780586][ T5972] usb 1-1: SerialNumber: syz
[ 1179.787390][T17839] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2935'.
[ 1179.838996][ T5972] usb 1-1: config 0 descriptor??
[ 1179.855368][T17839] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2935'.
[ 1179.856936][T17846] tmpfs: Cannot change global quota limit on remount
[ 1179.907912][   T30] audit: type=1400 audit(1767402211.983:516): avc:  denied  { remount } for  pid=17828 comm="syz.1.2935" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 1179.978598][T17831] vcan0: entered promiscuous mode
[ 1179.993574][T17831] vcan0: entered allmulticast mode
[ 1180.262626][ T5972] usb 1-1: Firmware version (0.0) predates our first public release.
[ 1180.279608][ T5972] usb 1-1: Please update to version 0.2 or newer
[ 1180.352799][   T89] usb 5-1: new high-speed USB device number 47 using dummy_hcd
[ 1180.398275][   T37] hsr_slave_0: left promiscuous mode
[ 1180.407715][   T37] hsr_slave_1: left promiscuous mode
[ 1180.415040][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1180.422466][   T37] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1180.431963][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1180.441389][   T37] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1180.462866][ T5828] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[ 1180.476374][   T37] veth1_macvtap: left promiscuous mode
[ 1180.482306][   T37] veth0_macvtap: left promiscuous mode
[ 1180.489576][   T37] veth1_vlan: left promiscuous mode
[ 1180.495709][   T37] veth0_vlan: left promiscuous mode
[ 1180.517784][   T89] usb 5-1: config 2 interface 0 has no altsetting 0
[ 1180.534869][   T89] usb 5-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1180.572565][   T89] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1180.593311][   T89] usb 5-1: Product: syz
[ 1180.597683][   T89] usb 5-1: Manufacturer: syz
[ 1180.602292][   T89] usb 5-1: SerialNumber: syz
[ 1180.616763][ T5828] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1180.639441][ T5828] usb 4-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[ 1180.719815][ T5828] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1180.933545][ T5828] usb 4-1: config 0 descriptor??
[ 1181.286651][T14290] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[ 1181.321382][   T37] team0 (unregistering): Port device team_slave_1 removed
[ 1181.361147][ T5828] lenovo 0003:17EF:6047.001B: hidraw0: USB HID v0.00 Device [HID 17ef:6047] on usb-dummy_hcd.3-1/input0
[ 1181.374262][   T37] team0 (unregistering): Port device team_slave_0 removed
[ 1181.458516][T14290] usb 2-1: config 2 interface 0 has no altsetting 0
[ 1181.469654][T14290] usb 2-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1181.479118][T14290] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1181.488039][T14290] usb 2-1: Product: syz
[ 1181.492296][T14290] usb 2-1: Manufacturer: syz
[ 1181.508370][T14290] usb 2-1: SerialNumber: syz
[ 1181.661128][   T37] team0 (unregistering): Port device dummy0 removed
[ 1181.760232][T14290] usb 2-1: USB disconnect, device number 38
[ 1182.099295][ T5972] usb 1-1: USB disconnect, device number 43
[ 1182.176704][T17856] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1182.227504][T17856] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1182.278060][ T5828] lenovo 0003:17EF:6047.001B: Sensitivity setting failed: -71
[ 1182.354697][   T37] IPVS: stop unused estimator thread 0...
[ 1182.378622][ T5828] usb 4-1: USB disconnect, device number 49
[ 1182.701351][T17709] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1182.780825][T17709] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1182.869304][T17709] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1182.933475][   T89] usb 5-1: USB disconnect, device number 47
[ 1182.980181][T17709] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1184.538414][T17921] netlink: 216 bytes leftover after parsing attributes in process `syz.0.2948'.
[ 1184.547614][T17921] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2948'.
[ 1184.598128][T17709] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1184.699857][T17926] netlink: 'syz.1.2944': attribute type 10 has an invalid length.
[ 1184.929318][T17926] team0: Device ipvlan1 failed to register rx_handler
[ 1185.015201][T17709] 8021q: adding VLAN 0 to HW filter on device team0
[ 1185.031304][ T8360] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1185.038463][ T8360] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1185.083613][ T8360] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1185.090755][ T8360] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1185.362865][ T5935] usb 1-1: new full-speed USB device number 44 using dummy_hcd
[ 1185.459387][T17709] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1185.515310][T17709] veth0_vlan: entered promiscuous mode
[ 1185.532540][T17951] Mount JFS Failure: -5
[ 1185.544368][T17709] veth1_vlan: entered promiscuous mode
[ 1185.573507][ T5935] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[ 1185.598809][ T5935] usb 1-1: config 0 has no interface number 0
[ 1185.615949][T17709] veth0_macvtap: entered promiscuous mode
[ 1185.637651][ T5935] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1185.661642][T17709] veth1_macvtap: entered promiscuous mode
[ 1185.667835][ T5935] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1185.678608][ T5935] usb 1-1: Product: syz
[ 1185.691928][ T5935] usb 1-1: Manufacturer: syz
[ 1185.698124][T17709] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1185.705853][ T5935] usb 1-1: SerialNumber: syz
[ 1185.718745][ T5935] usb 1-1: config 0 descriptor??
[ 1185.777151][T17709] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1185.812389][ T6000] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1185.842789][ T6000] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1185.883612][ T6000] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1185.998282][ T6000] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1186.146887][ T5935] usb 1-1: Firmware version (0.0) predates our first public release.
[ 1186.170624][  T379] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1186.179592][ T5935] usb 1-1: Please update to version 0.2 or newer
[ 1186.204835][  T379] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1186.319945][ T1119] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1186.361122][ T1119] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1186.405664][   T30] audit: type=1400 audit(1767402218.533:517): avc:  denied  { mounton } for  pid=17709 comm="syz-executor" path="/root/syzkaller.I6ancl/syz-tmp" dev="sda1" ino=2047 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 1186.500172][ T5935] usb 1-1: USB disconnect, device number 44
[ 1186.509240][   T30] audit: type=1400 audit(1767402218.573:518): avc:  denied  { mounton } for  pid=17709 comm="syz-executor" path="/root/syzkaller.I6ancl/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[ 1186.537869][   T30] audit: type=1400 audit(1767402218.573:519): avc:  denied  { mounton } for  pid=17709 comm="syz-executor" path="/root/syzkaller.I6ancl/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=72768 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[ 1186.624285][   T30] audit: type=1400 audit(1767402218.743:520): avc:  denied  { mounton } for  pid=17709 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2784 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 1187.223446][T14290] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[ 1187.434483][T14290] usb 4-1: config 2 interface 0 has no altsetting 0
[ 1187.453082][T14290] usb 4-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1187.481658][T14290] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1187.512939][T14290] usb 4-1: Product: syz
[ 1187.529246][T14290] usb 4-1: Manufacturer: syz
[ 1187.544176][T14290] usb 4-1: SerialNumber: syz
[ 1188.305128][T18003] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2962'.
[ 1188.474622][T15909] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1188.488845][T15909] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1188.524790][T15909] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1188.737732][T14290] usb 4-1: USB disconnect, device number 50
[ 1188.751935][T15909] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1188.761577][T15909] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1188.924687][ T5810] syz_tun (unregistering): left allmulticast mode
[ 1188.946740][ T5810] syz_tun (unregistering): left promiscuous mode
[ 1188.958397][ T5810] bridge0: port 3(syz_tun) entered disabled state
[ 1189.784182][   T65] bridge_slave_1: left allmulticast mode
[ 1189.805460][   T65] bridge_slave_1: left promiscuous mode
[ 1189.826029][   T65] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1190.090606][T18045] overlayfs: failed to resolve './file1': -2
[ 1190.157070][T18048] Mount JFS Failure: -5
[ 1190.218230][   T65] bridge_slave_0: left allmulticast mode
[ 1190.259736][   T65] bridge_slave_0: left promiscuous mode
[ 1190.373075][   T65] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1190.555859][   T89] usb 1-1: new full-speed USB device number 45 using dummy_hcd
[ 1190.815058][   T89] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[ 1190.832848][   T89] usb 1-1: config 0 has no interface number 0
[ 1190.853153][T15909] Bluetooth: hci4: command tx timeout
[ 1190.869819][   T89] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1190.925538][   T89] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1190.964711][   T89] usb 1-1: Product: syz
[ 1190.980773][   T89] usb 1-1: Manufacturer: syz
[ 1190.999772][   T89] usb 1-1: SerialNumber: syz
[ 1191.031364][   T89] usb 1-1: config 0 descriptor??
[ 1191.063497][ T5935] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[ 1191.079766][   T65] bond1 (unregistering): (slave gretap1): Releasing active interface
[ 1191.243873][ T5935] usb 2-1: config 2 interface 0 has no altsetting 0
[ 1191.282414][ T5935] usb 2-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1191.309145][ T5935] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1191.330028][ T5935] usb 2-1: Product: syz
[ 1191.334619][ T5935] usb 2-1: Manufacturer: syz
[ 1191.339424][ T5935] usb 2-1: SerialNumber: syz
[ 1191.463264][   T89] usb 1-1: Firmware version (0.0) predates our first public release.
[ 1191.489610][   T89] usb 1-1: Please update to version 0.2 or newer
[ 1191.550101][   T65] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1191.587972][   T65] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1191.605060][   T65] bond0 (unregistering): Released all slaves
[ 1191.638478][ T5935] usb 2-1: USB disconnect, device number 39
[ 1191.752027][   T65] bond1 (unregistering): Released all slaves
[ 1191.834628][   T65] bond2 (unregistering): Released all slaves
[ 1191.911156][   T65] bond3 (unregistering): Released all slaves
[ 1191.932851][ T6232] usb 4-1: new high-speed USB device number 51 using dummy_hcd
[ 1192.005640][   T65] bond4 (unregistering): Released all slaves
[ 1192.086520][ T6232] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1192.101038][ T6232] usb 4-1: config 0 has no interface number 0
[ 1192.113994][ T6232] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1192.124131][ T6232] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1192.132284][ T6232] usb 4-1: Product: syz
[ 1192.137005][ T6232] usb 4-1: Manufacturer: syz
[ 1192.141615][ T6232] usb 4-1: SerialNumber: syz
[ 1192.146952][   T65] bond5 (unregistering): Released all slaves
[ 1192.167647][ T6232] usb 4-1: config 0 descriptor??
[ 1192.391445][ T6232] usb 4-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[ 1192.423376][ T6232] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1192.498162][ T6232] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[ 1192.561066][ T6232] usb 4-1: media controller created
[ 1192.741541][ T6232] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1192.810992][   T65] bond6 (unregistering): Released all slaves
[ 1192.839300][ T6232] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[ 1192.855408][T18063] netdevsim netdevsim2: Direct firmware load for þ failed with error -2
[ 1192.876023][   T89] usb 1-1: USB disconnect, device number 45
[ 1192.876717][T18063] netdevsim netdevsim2: Falling back to sysfs fallback for: þ
[ 1192.882041][   T30] audit: type=1400 audit(1767402225.003:521): avc:  denied  { firmware_load } for  pid=18060 comm="syz.2.2973" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 1192.922843][T15909] Bluetooth: hci4: command tx timeout
[ 1192.994820][ T6232] usb 4-1: USB disconnect, device number 51
[ 1193.302262][T18087] Mount JFS Failure: -5
[ 1193.403340][T18093] netlink: 216 bytes leftover after parsing attributes in process `syz.0.2981'.
[ 1193.413217][T18093] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2981'.
[ 1194.325361][T18004] chnl_net:caif_netlink_parms(): no params data found
[ 1194.353411][ T9329] usb 1-1: new full-speed USB device number 46 using dummy_hcd
[ 1194.605506][ T9329] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[ 1194.683449][ T9329] usb 1-1: config 0 has no interface number 0
[ 1194.711798][   T65] hsr_slave_0: left promiscuous mode
[ 1194.745619][   T30] audit: type=1400 audit(1767402226.843:522): avc:  denied  { getopt } for  pid=18120 comm="syz.2.2989" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1194.754125][ T9329] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1194.802580][   T65] hsr_slave_1: left promiscuous mode
[ 1194.824933][T18125] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2988'.
[ 1194.849343][   T65] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1194.892199][T18122] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2988'.
[ 1194.931433][ T9329] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1194.935589][   T65] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1194.991387][ T9329] usb 1-1: Product: syz
[ 1195.003067][T15909] Bluetooth: hci4: command tx timeout
[ 1195.071814][ T9329] usb 1-1: Manufacturer: syz
[ 1195.113687][ T9329] usb 1-1: SerialNumber: syz
[ 1195.217375][   T10] usb 4-1: new high-speed USB device number 52 using dummy_hcd
[ 1195.236078][ T9329] usb 1-1: config 0 descriptor??
[ 1195.383044][   T10] usb 4-1: Using ep0 maxpacket: 32
[ 1195.390939][   T10] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1195.424605][   T10] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1195.465788][   T10] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1195.542689][   T10] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1195.592796][   T10] usb 4-1: config 1 has no interface number 0
[ 1195.606462][   T10] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1195.643664][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1195.671126][   T10] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[ 1195.722261][ T9329] usb 1-1: Firmware version (0.0) predates our first public release.
[ 1195.775817][ T9329] usb 1-1: Please update to version 0.2 or newer
[ 1195.925158][   T10] snd_usb_pod 4-1:1.1: endpoint not available, using fallback values
[ 1195.944574][   T10] snd_usb_pod 4-1:1.1: invalid control EP
[ 1195.953140][   T10] snd_usb_pod 4-1:1.1: cannot start listening: -22
[ 1195.965323][   T10] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[ 1195.974172][   T10] snd_usb_pod 4-1:1.1: probe with driver snd_usb_pod failed with error -22
[ 1196.093396][T18141] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2990'.
[ 1196.783220][   T89] usb 4-1: USB disconnect, device number 52
[ 1197.083168][T15909] Bluetooth: hci4: command tx timeout
[ 1197.268565][T18147] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2992'.
[ 1197.332951][   T65] team0 (unregistering): Port device team_slave_1 removed
[ 1197.455408][T18153] netlink: 148 bytes leftover after parsing attributes in process `syz.2.2994'.
[ 1197.513578][   T65] team0 (unregistering): Port device team_slave_0 removed
[ 1197.526151][T18158] netlink: 148 bytes leftover after parsing attributes in process `syz.1.2993'.
[ 1198.031234][T18164] netlink: 148 bytes leftover after parsing attributes in process `syz.3.2996'.
[ 1199.118523][T18181] netlink: 'syz.1.2999': attribute type 10 has an invalid length.
[ 1199.502099][ T9329] usb 1-1: USB disconnect, device number 46
[ 1199.522037][T18181] team0: Device ipvlan1 failed to register rx_handler
[ 1199.672479][T18004] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1199.699546][T18004] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1199.716583][T18004] bridge_slave_0: entered allmulticast mode
[ 1199.794112][T18004] bridge_slave_0: entered promiscuous mode
[ 1199.891554][T18004] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1199.913019][T18004] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1199.926363][T18004] bridge_slave_1: entered allmulticast mode
[ 1199.949345][T18004] bridge_slave_1: entered promiscuous mode
[ 1200.202828][ T9329] usb 1-1: new full-speed USB device number 47 using dummy_hcd
[ 1200.239540][T18004] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1200.330920][T18004] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1200.375030][   T65] IPVS: stop unused estimator thread 0...
[ 1200.388169][ T9329] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[ 1200.425198][ T9329] usb 1-1: config 0 has no interface number 0
[ 1200.452158][T18004] team0: Port device team_slave_0 added
[ 1200.464113][ T9329] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1200.478563][T18004] team0: Port device team_slave_1 added
[ 1200.488275][ T9329] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1200.524733][ T9329] usb 1-1: Product: syz
[ 1200.549316][ T9329] usb 1-1: Manufacturer: syz
[ 1200.556437][ T9329] usb 1-1: SerialNumber: syz
[ 1200.568705][ T9329] usb 1-1: config 0 descriptor??
[ 1200.585714][T18004] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1200.604110][T18004] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1200.667153][T18004] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1200.802452][ T9329] usb 1-1: Firmware version (0.0) predates our first public release.
[ 1200.814566][ T9329] usb 1-1: Please update to version 0.2 or newer
[ 1200.828306][T18004] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1200.840666][T18004] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1200.872993][T18004] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1200.935101][ T9329] usb 1-1: USB disconnect, device number 47
[ 1201.121523][T18004] hsr_slave_0: entered promiscuous mode
[ 1201.146871][T18004] hsr_slave_1: entered promiscuous mode
[ 1201.389629][T18218] FAULT_INJECTION: forcing a failure.
[ 1201.389629][T18218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1201.403877][T18218] CPU: 1 UID: 0 PID: 18218 Comm: syz.0.3003 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1201.403901][T18218] Tainted: [L]=SOFTLOCKUP
[ 1201.403907][T18218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1201.403915][T18218] Call Trace:
[ 1201.403920][T18218]  <TASK>
[ 1201.403926][T18218]  dump_stack_lvl+0x16c/0x1f0
[ 1201.403948][T18218]  should_fail_ex+0x512/0x640
[ 1201.403970][T18218]  _copy_to_user+0x32/0xd0
[ 1201.403994][T18218]  simple_read_from_buffer+0xcb/0x170
[ 1201.404015][T18218]  proc_fail_nth_read+0x197/0x240
[ 1201.404030][T18218]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1201.404048][T18218]  ? rw_verify_area+0xcf/0x6c0
[ 1201.404063][T18218]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1201.404078][T18218]  vfs_read+0x1e4/0xcf0
[ 1201.404096][T18218]  ? __pfx___mutex_lock+0x10/0x10
[ 1201.404119][T18218]  ? __pfx_vfs_read+0x10/0x10
[ 1201.404145][T18218]  ? __fget_files+0x20e/0x3c0
[ 1201.404170][T18218]  ksys_read+0x12a/0x250
[ 1201.404187][T18218]  ? __pfx_ksys_read+0x10/0x10
[ 1201.404210][T18218]  do_syscall_64+0xcd/0xf80
[ 1201.404230][T18218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1201.404244][T18218] RIP: 0033:0x7fa82018e15c
[ 1201.404258][T18218] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1201.404273][T18218] RSP: 002b:00007fa8210ec030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1201.404289][T18218] RAX: ffffffffffffffda RBX: 00007fa8203e5fa0 RCX: 00007fa82018e15c
[ 1201.404299][T18218] RDX: 000000000000000f RSI: 00007fa8210ec0a0 RDI: 0000000000000003
[ 1201.404308][T18218] RBP: 00007fa8210ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1201.404317][T18218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1201.404326][T18218] R13: 00007fa8203e6038 R14: 00007fa8203e5fa0 R15: 00007fffe9845388
[ 1201.404349][T18218]  </TASK>
[ 1201.907692][T18232] Mount JFS Failure: -5
[ 1202.176822][T18241] binder: 18234:18241 unknown command 0
[ 1203.181930][T18241] binder: 18234:18241 ioctl c0306201 200000000080 returned -22
[ 1203.192930][   T30] audit: type=1400 audit(1767402235.303:523): avc:  denied  { mount } for  pid=18234 comm="syz.0.3006" name="/" dev="configfs" ino=209 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[ 1203.248587][   T30] audit: type=1400 audit(1767402235.323:524): avc:  denied  { search } for  pid=18234 comm="syz.0.3006" name="/" dev="configfs" ino=209 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[ 1203.302062][   T30] audit: type=1400 audit(1767402235.323:525): avc:  denied  { search } for  pid=18234 comm="syz.0.3006" name="/" dev="configfs" ino=209 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[ 1203.350901][   T30] audit: type=1400 audit(1767402235.323:526): avc:  denied  { setattr } for  pid=18234 comm="syz.0.3006" name="/" dev="configfs" ino=209 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[ 1203.912824][ T5917] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[ 1204.137054][T18004] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1204.223126][ T5917] usb 3-1: config 2 interface 0 has no altsetting 0
[ 1204.232826][ T5917] usb 3-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1204.241878][ T5917] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1204.250978][T18004] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1204.792217][ T5917] usb 3-1: Product: syz
[ 1204.792296][T18004] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1204.810343][ T5917] usb 3-1: Manufacturer: syz
[ 1204.815119][ T5917] usb 3-1: SerialNumber: syz
[ 1204.848760][T18004] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1205.132153][ T5917] usb 3-1: USB disconnect, device number 38
[ 1205.149700][T17833] udevd[17833]: setting mode of /dev/bus/usb/003/038 to 020664 failed: No such file or directory
[ 1206.158599][T17833] udevd[17833]: setting owner of /dev/bus/usb/003/038 to uid=0, gid=0 failed: No such file or directory
[ 1207.018219][T18004] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1208.039181][T18004] 8021q: adding VLAN 0 to HW filter on device team0
[ 1208.053257][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1208.060644][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1208.145258][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1208.152397][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1208.253661][T18004] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1208.311915][T18299] binder: 18298:18299 ioctl 4018620d 0 returned -22
[ 1208.373020][T18004] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1208.675298][   T30] audit: type=1400 audit(1767402240.803:527): avc:  denied  { name_bind } for  pid=18308 comm="syz.1.3016" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[ 1208.936087][T18004] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1209.139526][T18330] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3020'.
[ 1209.176119][T18322] netlink: 64 bytes leftover after parsing attributes in process `syz.3.3020'.
[ 1209.537508][T18004] veth0_vlan: entered promiscuous mode
[ 1209.570417][T18004] veth1_vlan: entered promiscuous mode
[ 1209.671592][T18004] veth0_macvtap: entered promiscuous mode
[ 1209.682320][T18004] veth1_macvtap: entered promiscuous mode
[ 1209.701644][T18347] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3021'.
[ 1209.702792][   T30] audit: type=1400 audit(1767402241.823:528): avc:  denied  { ioctl } for  pid=18337 comm="syz.1.3021" path="socket:[73592]" dev="sockfs" ino=73592 ioctlcmd=0x9429 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1209.733336][T18004] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1209.776465][T18004] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1209.866808][T15113] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1209.918784][T15113] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1209.974374][T15113] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1210.026754][T15113] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1210.157919][T15113] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1210.179294][T15113] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1210.249457][T17224] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1210.268596][T17224] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1211.007177][   T30] audit: type=1400 audit(1767402242.803:529): avc:  denied  { create } for  pid=18367 comm="syz.2.3025" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1211.008792][T18374] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2960'.
[ 1211.338372][T18381] binder: 18378:18381 ioctl 4018620d 0 returned -22
[ 1211.561713][T18387] Mount JFS Failure: -5
[ 1211.664738][T16768] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1211.674858][T16768] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1211.685688][T16768] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1211.693859][T16768] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1211.701318][T16768] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1213.153649][T18399] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3035'.
[ 1213.245400][T18391] chnl_net:caif_netlink_parms(): no params data found
[ 1213.486822][T18391] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1213.521598][T18391] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1213.560435][T18391] bridge_slave_0: entered allmulticast mode
[ 1213.586486][T18391] bridge_slave_0: entered promiscuous mode
[ 1213.626247][T18391] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1213.660625][T18391] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1213.684364][T18391] bridge_slave_1: entered allmulticast mode
[ 1213.712240][T18391] bridge_slave_1: entered promiscuous mode
[ 1213.723060][T15909] Bluetooth: hci2: command tx timeout
[ 1213.767419][T18391] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1213.781662][T18391] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1213.848472][T18391] team0: Port device team_slave_0 added
[ 1213.858766][T18391] team0: Port device team_slave_1 added
[ 1213.890937][T18391] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1213.899226][T18391] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1213.933897][T18391] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1213.947918][T18391] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1213.965157][T18391] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1214.062856][T14290] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[ 1214.075867][T18391] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1214.219342][T18391] hsr_slave_0: entered promiscuous mode
[ 1214.226322][T18391] hsr_slave_1: entered promiscuous mode
[ 1214.232615][T18391] debugfs: 'hsr0' already exists in 'hsr'
[ 1214.234249][T14290] usb 5-1: config 2 interface 0 has no altsetting 0
[ 1214.238789][T18391] Cannot create hsr debugfs directory
[ 1214.271324][T14290] usb 5-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1214.300913][T14290] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1214.328037][T14290] usb 5-1: Product: syz
[ 1214.338784][T14290] usb 5-1: Manufacturer: syz
[ 1214.349077][T14290] usb 5-1: SerialNumber: syz
[ 1214.441336][T18391] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1214.536058][T18391] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1214.552992][   T89] usb 1-1: new full-speed USB device number 48 using dummy_hcd
[ 1214.591558][T14290] usb 5-1: USB disconnect, device number 48
[ 1214.690476][T18391] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1214.724657][   T89] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[ 1214.750453][   T89] usb 1-1: config 0 has no interface number 0
[ 1214.773667][   T89] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1214.774778][T18391] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1214.793794][   T89] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1214.801834][   T89] usb 1-1: Product: syz
[ 1214.806675][   T89] usb 1-1: Manufacturer: syz
[ 1214.811270][   T89] usb 1-1: SerialNumber: syz
[ 1214.824038][   T89] usb 1-1: config 0 descriptor??
[ 1214.863553][ T8061] bridge_slave_1: left allmulticast mode
[ 1214.869297][ T8061] bridge_slave_1: left promiscuous mode
[ 1214.883181][ T8061] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1214.892364][ T8061] bridge_slave_0: left allmulticast mode
[ 1214.898816][ T8061] bridge_slave_0: left promiscuous mode
[ 1214.911701][ T8061] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1214.933012][T18375] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[ 1215.102834][T18375] usb 3-1: Using ep0 maxpacket: 16
[ 1215.119873][T18375] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1215.152434][T18375] usb 3-1: New USB device found, idVendor=5543, idProduct=0064, bcdDevice= 0.00
[ 1215.165144][T18375] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1215.202522][T18375] usb 3-1: config 0 descriptor??
[ 1215.238616][   T89] usb 1-1: Firmware version (0.0) predates our first public release.
[ 1215.261866][   T89] usb 1-1: Please update to version 0.2 or newer
[ 1215.428541][ T8061] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1215.488906][ T8061] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1215.501367][ T8061] bond0 (unregistering): Released all slaves
[ 1216.444859][T15909] Bluetooth: hci2: command tx timeout
[ 1217.592272][ T8061] bond1 (unregistering): Released all slaves
[ 1218.494369][T18375] usbhid 3-1:0.0: can't add hid device: -71
[ 1218.523051][T15909] Bluetooth: hci2: command tx timeout
[ 1218.531712][T18375] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 1218.604789][T18375] usb 3-1: USB disconnect, device number 39
[ 1218.970192][ T8061] bond2 (unregistering): Released all slaves
[ 1219.458471][ T8061] bond3 (unregistering): Released all slaves
[ 1220.000172][T18471] Mount JFS Failure: -5
[ 1220.085157][ T8061] bond4 (unregistering): Released all slaves
[ 1220.405337][ T8061] bond5 (unregistering): Released all slaves
[ 1220.594467][T18482] vxfs: unable to read disk superblock at 1
[ 1220.602845][T15909] Bluetooth: hci2: command tx timeout
[ 1220.621174][T18482] vxfs: unable to read disk superblock at 8
[ 1220.633696][T18482] vxfs: can't find superblock.
[ 1220.694264][ T8061] bond6 (unregistering): (slave veth3): Releasing active interface
[ 1220.722350][ T8061] bond6 (unregistering): Released all slaves
[ 1220.896161][   T10] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[ 1220.904253][   T89] usb 1-1: USB disconnect, device number 48
[ 1220.932358][T18391] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1221.010020][T18391] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1221.080643][   T10] usb 5-1: Using ep0 maxpacket: 32
[ 1221.302827][   T10] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[ 1221.310049][T18391] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1221.328254][   T10] usb 5-1: config 0 has no interface number 0
[ 1221.342960][   T10] usb 5-1: config 0 interface 184 has no altsetting 0
[ 1221.349790][ T8061] tipc: Disabling bearer <udp:syz2>
[ 1221.377510][ T8061] tipc: Left network mode
[ 1221.390602][   T10] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1221.401085][T18391] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1221.428130][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1221.458457][   T10] usb 5-1: Product: syz
[ 1221.462638][   T10] usb 5-1: Manufacturer: syz
[ 1221.477571][   T10] usb 5-1: SerialNumber: syz
[ 1221.483295][ T5972] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[ 1221.485717][   T10] usb 5-1: config 0 descriptor??
[ 1221.541403][   T10] smsc75xx v1.0.0
[ 1221.716069][ T5972] usb 3-1: config 2 interface 0 has no altsetting 0
[ 1221.733522][   T30] audit: type=1400 audit(1767402253.843:530): avc:  denied  { bind } for  pid=18494 comm="syz.3.3055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1221.792812][ T5972] usb 3-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1221.805051][ T5972] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1221.813797][ T5972] usb 3-1: Product: syz
[ 1221.818014][ T5972] usb 3-1: Manufacturer: syz
[ 1221.824287][ T5972] usb 3-1: SerialNumber: syz
[ 1221.932029][T18505] FAULT_INJECTION: forcing a failure.
[ 1221.932029][T18505] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1221.950441][T18505] CPU: 1 UID: 0 PID: 18505 Comm: syz.0.3058 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1221.950469][T18505] Tainted: [L]=SOFTLOCKUP
[ 1221.950475][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1221.950484][T18505] Call Trace:
[ 1221.950490][T18505]  <TASK>
[ 1221.950497][T18505]  dump_stack_lvl+0x16c/0x1f0
[ 1221.950524][T18505]  should_fail_ex+0x512/0x640
[ 1221.950556][T18505]  _copy_to_user+0x32/0xd0
[ 1221.950587][T18505]  simple_read_from_buffer+0xcb/0x170
[ 1221.950612][T18505]  proc_fail_nth_read+0x197/0x240
[ 1221.950632][T18505]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1221.950651][T18505]  ? rw_verify_area+0xcf/0x6c0
[ 1221.950670][T18505]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1221.950687][T18505]  vfs_read+0x1e4/0xcf0
[ 1221.950708][T18505]  ? __pfx___mutex_lock+0x10/0x10
[ 1221.950735][T18505]  ? __pfx_vfs_read+0x10/0x10
[ 1221.950762][T18505]  ? __fget_files+0x20e/0x3c0
[ 1221.950793][T18505]  ksys_read+0x12a/0x250
[ 1221.950812][T18505]  ? __pfx_ksys_read+0x10/0x10
[ 1221.950838][T18505]  do_syscall_64+0xcd/0xf80
[ 1221.950865][T18505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1221.950884][T18505] RIP: 0033:0x7fa82018e15c
[ 1221.950899][T18505] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1221.950916][T18505] RSP: 002b:00007fa8210cb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1221.950933][T18505] RAX: ffffffffffffffda RBX: 00007fa8203e6090 RCX: 00007fa82018e15c
[ 1221.950944][T18505] RDX: 000000000000000f RSI: 00007fa8210cb0a0 RDI: 0000000000000003
[ 1221.950954][T18505] RBP: 00007fa8210cb090 R08: 0000000000000000 R09: 0000000000000000
[ 1221.950964][T18505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1221.950973][T18505] R13: 00007fa8203e6128 R14: 00007fa8203e6090 R15: 00007fffe9845388
[ 1221.950996][T18505]  </TASK>
[ 1222.174068][   T10] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[ 1222.184932][   T10] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[ 1222.225985][T18391] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1222.231851][ T5972] usb 3-1: USB disconnect, device number 40
[ 1222.310438][   T10] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[ 1222.348100][T18509] vxfs: unable to read disk superblock at 1
[ 1222.355507][T18509] vxfs: unable to read disk superblock at 8
[ 1222.363793][T18507] Mount JFS Failure: -5
[ 1222.370934][T18509] vxfs: can't find superblock.
[ 1222.431106][   T10] smsc75xx 5-1:0.184: probe with driver smsc75xx failed with error -61
[ 1222.481998][T18391] 8021q: adding VLAN 0 to HW filter on device team0
[ 1222.501051][ T8360] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1222.508198][ T8360] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1222.550641][ T1155] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1222.557804][ T1155] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1222.748467][ T8061] hsr_slave_0: left promiscuous mode
[ 1222.791090][ T8061] hsr_slave_1: left promiscuous mode
[ 1222.797167][ T8061] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1222.807510][ T8061] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1222.816983][ T8061] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1222.825589][ T8061] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1222.913007][   T89] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[ 1223.468607][ T8061] veth1_macvtap: left promiscuous mode
[ 1223.474277][ T8061] veth0_macvtap: left promiscuous mode
[ 1223.479890][ T8061] veth1_vlan: left promiscuous mode
[ 1223.490644][ T8061] veth0_vlan: left promiscuous mode
[ 1223.592649][   T10] usb 5-1: USB disconnect, device number 49
[ 1223.598670][   T89] usb 1-1: Using ep0 maxpacket: 32
[ 1223.614474][   T89] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[ 1223.622674][   T89] usb 1-1: config 0 has no interface number 0
[ 1223.686084][T18523] netlink: 'syz.2.3062': attribute type 10 has an invalid length.
[ 1224.200075][   T89] usb 1-1: config 0 interface 184 has no altsetting 0
[ 1224.219495][   T89] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1224.239310][   T89] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1224.265027][   T89] usb 1-1: Product: syz
[ 1224.279082][   T89] usb 1-1: Manufacturer: syz
[ 1224.285187][   T89] usb 1-1: SerialNumber: syz
[ 1224.302636][   T89] usb 1-1: config 0 descriptor??
[ 1224.322157][   T89] smsc75xx v1.0.0
[ 1224.523142][   T10] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[ 1224.585127][ T8061] team0 (unregistering): Port device team_slave_1 removed
[ 1224.624076][ T8061] team0 (unregistering): Port device team_slave_0 removed
[ 1224.688039][   T10] usb 5-1: config 2 interface 0 has no altsetting 0
[ 1224.702405][   T10] usb 5-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=da.47
[ 1224.723378][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1224.731426][   T10] usb 5-1: Product: syz
[ 1224.735873][   T89] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[ 1224.754044][   T10] usb 5-1: Manufacturer: syz
[ 1224.758689][   T10] usb 5-1: SerialNumber: syz
[ 1224.772246][   T89] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[ 1224.792662][   T89] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[ 1224.803990][   T89] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -61
[ 1225.013538][T18531] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3065'.
[ 1225.336513][   T10] usb 5-1: USB disconnect, device number 50
[ 1225.444680][T18523] team0: Device ipvlan1 failed to register rx_handler
[ 1225.512335][T18391] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1225.620367][T18391] veth0_vlan: entered promiscuous mode
[ 1225.633678][T18391] veth1_vlan: entered promiscuous mode
[ 1225.663141][T18391] veth0_macvtap: entered promiscuous mode
[ 1225.672509][T18391] veth1_macvtap: entered promiscuous mode
[ 1225.690288][T18391] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1225.701053][T18391] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1225.923345][ T8367] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1225.947520][ T8367] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1225.971658][ T8367] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1226.010220][ T8367] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1226.094833][T18541] overlayfs: failed to resolve './file1': -2
[ 1226.111043][ T8367] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1226.121864][ T8367] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1226.232087][ T4566] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1226.253528][ T4566] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1226.292455][ T8061] IPVS: stop unused estimator thread 0...
[ 1226.399108][ T5917] usb 1-1: USB disconnect, device number 49
[ 1226.764743][   T30] audit: type=1400 audit(1767402258.893:531): avc:  denied  { getopt } for  pid=18547 comm="syz.1.3029" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1227.654088][T16768] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1227.667354][T16768] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1227.676591][T16768] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1227.694713][T16768] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1227.723180][T16768] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1227.769504][T18560] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3072'.
[ 1227.786084][T10733] smc: removing ib device syz1
[ 1227.803651][T18375] syz1: Port: 1 Link DOWN
[ 1229.496193][T18558] chnl_net:caif_netlink_parms(): no params data found
[ 1229.882805][T15909] Bluetooth: hci1: command tx timeout
[ 1229.988798][T18558] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1230.017265][T18558] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1230.017335][T18556] ------------[ cut here ]------------
[ 1230.030105][T18556] GID entry ref leak for dev syz1 index 2 ref=1
[ 1230.032885][T18558] bridge_slave_0: entered allmulticast mode
[ 1230.036428][T18556] WARNING: drivers/infiniband/core/cache.c:806 at gid_table_release_one+0x1ad/0x450, CPU#0: syz.4.3071/18556
[ 1230.054189][T18556] Modules linked in:
[ 1230.058339][T18556] CPU: 0 UID: 0 PID: 18556 Comm: syz.4.3071 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1230.069348][T18556] Tainted: [L]=SOFTLOCKUP
[ 1230.074068][T18556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1230.084431][T18556] RIP: 0010:gid_table_release_one+0x1b6/0x450
[ 1230.091497][T18556] Code: 4c 24 38 48 c1 e8 03 4d 01 fc 48 89 44 24 08 eb 54 48 89 34 24 e8 8a 77 4d f9 48 8d 3d 33 c1 23 08 48 8b 34 24 89 e9 44 89 f2 <67> 48 0f b9 3a e8 70 77 4d f9 48 89 d8 41 83 c6 01 48 c1 e8 03 42
[ 1230.112792][T18556] RSP: 0018:ffffc90003527a18 EFLAGS: 00010246
[ 1230.118908][T18556] RAX: 0000000000080000 RBX: ffff88802af99400 RCX: 0000000000000001
[ 1230.128446][T18556] RDX: 0000000000000002 RSI: ffff888056d5cd20 RDI: ffffffff90953270
[ 1230.136570][T18556] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffed1006691f20
[ 1230.144650][T18556] R10: ffff88803348f903 R11: ffffffff81000130 R12: ffffed10055f329b
[ 1230.152658][T18556] R13: ffff888053acc000 R14: 0000000000000002 R15: dffffc0000000000
[ 1230.160667][T18556] FS:  00007f5c7f3696c0(0000) GS:ffff8881248f5000(0000) knlGS:0000000000000000
[ 1230.169706][T18556] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1230.176314][T18556] CR2: 00007fc2d4c7dd58 CR3: 00000000592b1000 CR4: 00000000003526f0
[ 1230.184389][T18556] Call Trace:
[ 1230.187689][T18556]  <TASK>
[ 1230.190641][T18556]  ib_device_release+0xef/0x1e0
[ 1230.198014][T18556]  ? __pfx_ib_device_release+0x10/0x10
[ 1230.203598][T18556]  device_release+0xa4/0x240
[ 1230.208218][T18556]  kobject_put+0x1ef/0x6f0
[ 1230.212658][T18556]  put_device+0x1f/0x30
[ 1230.216877][T18556]  rdma_dev_exit_net+0x2e5/0x590
[ 1230.221826][T18556]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[ 1230.227386][T18556]  ? __pfx___might_resched+0x10/0x10
[ 1230.232680][T18556]  ? __pfx_cfg80211_pernet_exit+0x10/0x10
[ 1230.238468][T18556]  ? mutex_is_locked+0x17/0x60
[ 1230.243348][T18556]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[ 1230.248817][T18556]  ops_undo_list+0x2ee/0xab0
[ 1230.253480][T18556]  ? __pfx_ops_undo_list+0x10/0x10
[ 1230.258619][T18556]  ? ops_init+0x2f0/0x5f0
[ 1230.263022][T18556]  ? ops_init+0x2fa/0x5f0
[ 1230.267368][T18556]  setup_net+0x1ff/0x3a0
[ 1230.271645][T18556]  ? __pfx_setup_net+0x10/0x10
[ 1230.276451][T18556]  ? lockdep_init_map_type+0x5c/0x270
[ 1230.281860][T18556]  ? mutex_init_lockep+0x110/0x150
[ 1230.287629][T18556]  copy_net_ns+0x351/0x7c0
[ 1230.292076][T18556]  create_new_namespaces+0x3ea/0xab0
[ 1230.299840][T18556]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1230.305659][T18556]  ksys_unshare+0x45b/0xa40
[ 1230.310193][T18556]  ? __pfx_ksys_unshare+0x10/0x10
[ 1230.315353][T18556]  ? xfd_validate_state+0x61/0x180
[ 1230.320489][T18556]  __x64_sys_unshare+0x31/0x40
[ 1230.325352][T18556]  do_syscall_64+0xcd/0xf80
[ 1230.329869][T18556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1230.335848][T18556] RIP: 0033:0x7f5c7e58f749
[ 1230.340273][T18556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1230.359964][T18556] RSP: 002b:00007f5c7f369038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1230.368501][T18556] RAX: ffffffffffffffda RBX: 00007f5c7e7e5fa0 RCX: 00007f5c7e58f749
[ 1230.376528][T18556] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200
[ 1230.384577][T18556] RBP: 00007f5c7e613f91 R08: 0000000000000000 R09: 0000000000000000
[ 1230.392565][T18556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1230.403000][T18556] R13: 00007f5c7e7e6038 R14: 00007f5c7e7e5fa0 R15: 00007fffe4551c78
[ 1230.411012][T18556]  </TASK>
[ 1230.414110][T18556] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1230.421375][T18556] CPU: 0 UID: 0 PID: 18556 Comm: syz.4.3071 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1230.432281][T18556] Tainted: [L]=SOFTLOCKUP
[ 1230.436573][T18556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1230.446596][T18556] Call Trace:
[ 1230.449847][T18556]  <TASK>
[ 1230.452752][T18556]  dump_stack_lvl+0x3d/0x1f0
[ 1230.457320][T18556]  vpanic+0x640/0x6f0
[ 1230.461289][T18556]  ? gid_table_release_one+0x1ad/0x450
[ 1230.466717][T18556]  panic+0xca/0xd0
[ 1230.470410][T18556]  ? __pfx_panic+0x10/0x10
[ 1230.474803][T18556]  check_panic_on_warn+0xab/0xb0
[ 1230.479712][T18556]  __warn+0x108/0x3c0
[ 1230.483667][T18556]  __report_bug+0x2a0/0x520
[ 1230.488142][T18556]  ? gid_table_release_one+0x1ad/0x450
[ 1230.493571][T18556]  ? __pfx___report_bug+0x10/0x10
[ 1230.498573][T18556]  report_bug_entry+0xe1/0x290
[ 1230.503308][T18556]  ? gid_table_release_one+0x1b6/0x450
[ 1230.508742][T18556]  handle_bug+0x18a/0x260
[ 1230.513049][T18556]  exc_invalid_op+0x17/0x50
[ 1230.517529][T18556]  asm_exc_invalid_op+0x1a/0x20
[ 1230.522349][T18556] RIP: 0010:gid_table_release_one+0x1b6/0x450
[ 1230.528402][T18556] Code: 4c 24 38 48 c1 e8 03 4d 01 fc 48 89 44 24 08 eb 54 48 89 34 24 e8 8a 77 4d f9 48 8d 3d 33 c1 23 08 48 8b 34 24 89 e9 44 89 f2 <67> 48 0f b9 3a e8 70 77 4d f9 48 89 d8 41 83 c6 01 48 c1 e8 03 42
[ 1230.547980][T18556] RSP: 0018:ffffc90003527a18 EFLAGS: 00010246
[ 1230.554017][T18556] RAX: 0000000000080000 RBX: ffff88802af99400 RCX: 0000000000000001
[ 1230.561958][T18556] RDX: 0000000000000002 RSI: ffff888056d5cd20 RDI: ffffffff90953270
[ 1230.569900][T18556] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffed1006691f20
[ 1230.577842][T18556] R10: ffff88803348f903 R11: ffffffff81000130 R12: ffffed10055f329b
[ 1230.585785][T18556] R13: ffff888053acc000 R14: 0000000000000002 R15: dffffc0000000000
[ 1230.593730][T18556]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1230.599782][T18556]  ? gid_table_release_one+0x1a6/0x450
[ 1230.605218][T18556]  ib_device_release+0xef/0x1e0
[ 1230.610050][T18556]  ? __pfx_ib_device_release+0x10/0x10
[ 1230.615481][T18556]  device_release+0xa4/0x240
[ 1230.620044][T18556]  kobject_put+0x1ef/0x6f0
[ 1230.624438][T18556]  put_device+0x1f/0x30
[ 1230.628566][T18556]  rdma_dev_exit_net+0x2e5/0x590
[ 1230.633474][T18556]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[ 1230.638902][T18556]  ? __pfx___might_resched+0x10/0x10
[ 1230.644157][T18556]  ? __pfx_cfg80211_pernet_exit+0x10/0x10
[ 1230.649851][T18556]  ? mutex_is_locked+0x17/0x60
[ 1230.654588][T18556]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[ 1230.660015][T18556]  ops_undo_list+0x2ee/0xab0
[ 1230.664579][T18556]  ? __pfx_ops_undo_list+0x10/0x10
[ 1230.669675][T18556]  ? ops_init+0x2f0/0x5f0
[ 1230.673974][T18556]  ? ops_init+0x2fa/0x5f0
[ 1230.678276][T18556]  setup_net+0x1ff/0x3a0
[ 1230.682488][T18556]  ? __pfx_setup_net+0x10/0x10
[ 1230.687223][T18556]  ? lockdep_init_map_type+0x5c/0x270
[ 1230.692575][T18556]  ? mutex_init_lockep+0x110/0x150
[ 1230.697660][T18556]  copy_net_ns+0x351/0x7c0
[ 1230.702052][T18556]  create_new_namespaces+0x3ea/0xab0
[ 1230.707317][T18556]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1230.712929][T18556]  ksys_unshare+0x45b/0xa40
[ 1230.717403][T18556]  ? __pfx_ksys_unshare+0x10/0x10
[ 1230.722396][T18556]  ? xfd_validate_state+0x61/0x180
[ 1230.727483][T18556]  __x64_sys_unshare+0x31/0x40
[ 1230.732216][T18556]  do_syscall_64+0xcd/0xf80
[ 1230.736695][T18556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1230.742561][T18556] RIP: 0033:0x7f5c7e58f749
[ 1230.746946][T18556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1230.766525][T18556] RSP: 002b:00007f5c7f369038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1230.774907][T18556] RAX: ffffffffffffffda RBX: 00007f5c7e7e5fa0 RCX: 00007f5c7e58f749
[ 1230.782850][T18556] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200
[ 1230.790792][T18556] RBP: 00007f5c7e613f91 R08: 0000000000000000 R09: 0000000000000000
[ 1230.798733][T18556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1230.806679][T18556] R13: 00007f5c7e7e6038 R14: 00007f5c7e7e5fa0 R15: 00007fffe4551c78
[ 1230.814643][T18556]  </TASK>
[ 1230.817937][T18556] Kernel Offset: disabled
[ 1230.822238][T18556] Rebooting in 86400 seconds..