last executing test programs:

3.55583161s ago: executing program 4 (id=995):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x34000811)

3.342654896s ago: executing program 4 (id=999):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r0, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000240)=':', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)

2.442542019s ago: executing program 4 (id=1003):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x20, 0x0, 0x0, {0x0, 0x10}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
acct(&(0x7f00000001c0)='./file0\x00')
acct(0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r2, 0xffffffffffffffff, 0x0)

2.179111757s ago: executing program 4 (id=1009):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000080)=0x2)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0xffffffff, 0xbde, 0xb, 0x10000}})

2.151431119s ago: executing program 1 (id=1010):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='vegas\x00', 0x6)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
shutdown(r0, 0x1)

2.118962096s ago: executing program 3 (id=1011):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_io_uring_setup(0x4d7c, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0x40024e}, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x44, 0x0, r1, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r1, 0x627, 0x4c1, 0x43, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x41)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30)
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
umount2(&(0x7f00000001c0)='./file0\x00', 0x0)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x29, 0x0, 0x440, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x8, 0x80}}, 0x50)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$PTP_PEROUT_REQUEST2(0xffffffffffffffff, 0x40383d0c, &(0x7f0000000600)={{0x9, 0xfffffffa}, {0x9, 0x8}, 0xffffffff, 0x7})
sendmsg$DEVLINK_CMD_RATE_GET(r4, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x7c, 0x0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}]}, 0x7c}, 0x1, 0x0, 0x0, 0x44000}, 0x8800)
unshare(0x2040400)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000fddbdf25170000"], 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x40000000)
socket$inet6(0xa, 0xa, 0x218)
syz_fuse_handle_req(r2, &(0x7f0000004200)="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", 0x2000, 0x0)
r6 = syz_usb_connect$hid(0x3, 0x0, 0x0, 0x0)
syz_usb_control_io$hid(r6, 0x0, 0x0)
r7 = openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r7, 0x7a0, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, 0x0, 0x181080, 0x0)
r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04)
mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r9, 0x300000f, 0x32, 0xffffffffffffffff, 0x0)
syz_usb_control_io$hid(r6, 0x0, 0x0)
getpeername$tipc(r0, 0x0, 0x0)

2.04652131s ago: executing program 4 (id=1013):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="40000000090601020000000000000000000000000900020073797a31000000000500010007000000180007800c0001"], 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

2.046237588s ago: executing program 1 (id=1014):
socket$netlink(0x10, 0x3, 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000580), 0x42, 0x0)
syz_usb_connect$uac1(0x2, 0xdc, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206", @ANYRES8=r0, @ANYRES16=r1], 0x0)

1.915374934s ago: executing program 4 (id=1015):
syz_open_procfs(0x0, &(0x7f0000000080)='attr/current\x00')
syz_usb_connect(0x0, 0x3f, &(0x7f0000000000)=ANY=[@ANYBLOB="12011001d31ad240f0031d5842bb0102030109022d0001000000000904c50003ff0107000905050208000003010904", @ANYRES32], 0x0)

1.398770903s ago: executing program 2 (id=1022):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@link_local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @private=0x80000000, @local}, {0x0, 0x37c1, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}, 0x0)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000004c0)=ANY=[], 0x24}], 0x1}, 0x0)
sendmmsg$unix(r0, &(0x7f0000007b80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2404c054}}], 0x1, 0x2000c080)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x33, &(0x7f0000000100)=[{&(0x7f0000000000)=',', 0x584}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

1.355144534s ago: executing program 3 (id=1023):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, 0x0, 0x0, 0x700, 0x0, 0x0)

1.352518148s ago: executing program 2 (id=1024):
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d2", 0x1, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f0000000480)="472dba6f2899", 0x6, 0xfffffffffffffffd)
r2 = add_key$user(&(0x7f0000000040), &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000580)="cf670a", 0x3, 0xfffffffffffffffb)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r2, r1, r0}, 0x0, 0x0, 0x0)

1.271075732s ago: executing program 2 (id=1026):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
setrlimit(0x9, &(0x7f0000000000))
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

1.236437546s ago: executing program 0 (id=1027):
r0 = syz_open_procfs(0x0, &(0x7f0000002700)='cmdline\x00')
read$FUSE(r0, &(0x7f0000000000)={0x2020}, 0xfffffc7a)

1.158076226s ago: executing program 0 (id=1028):
r0 = landlock_create_ruleset(&(0x7f0000000140)={0x0, 0x2}, 0x18, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000000)={0x10, 0x0, 0x3}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
open(&(0x7f0000000280)='.\x00', 0x141080, 0x0)
landlock_restrict_self(r0, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)

1.114834355s ago: executing program 0 (id=1029):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000180)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)
pipe2$9p(0x0, 0x0)
openat$dsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x6, &(0x7f0000000080)={0x0, 0x8a4b, 0x13100, 0x0, 0x4}, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0)

1.051195419s ago: executing program 2 (id=1030):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000000000), 0x651, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0x8, 0x8, 0x80, 0x5, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x1, 0xffff2d37, 0xffffff01, 0x4, 0xff, 0x6, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x0, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x5, 0x7, 0x83, 0x8, 0x4c74, 0x0, 0x242, 0x2, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x20, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x85, 0x6, 0x8, 0x3ff, 0x83, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432e6, 0x88, 0xf9, 0xe, 0x2bb, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0xff, 0x0, 0x1000ff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0xbc2, 0x1, 0xfe000000, 0x8, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x4, 0x3, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x1, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0x94, 0x4, 0x3, 0x5, 0x800000, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x3038, 0x3e7, 0xb, 0x2, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x16d01, 0x6, 0x38, 0x800002, 0x600, 0x80, 0xbf7, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0x4a9, 0x5, 0x6, 0xac8, 0x5, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x2, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0xa, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x1, 0x7fff, 0xffff, 0xa620, 0x1, 0x7, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0xffffffff, 0xc8, 0x1, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xae, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x8, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0x7ff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

738.266654ms ago: executing program 1 (id=1031):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x34}}, 0x84)
syz_emit_ethernet(0x42, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd687fefc0000c11"], 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000dfff000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000004000038008000140000000002c0003801400010067656e65766530000000000000000000140001006c6f0000000000000000000000000000080002"], 0xb4}}, 0x0)

472.275732ms ago: executing program 3 (id=1032):
r0 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, 0x0, 0x0)

395.347027ms ago: executing program 1 (id=1033):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f0000000180)=ANY=[@ANYRES64=r2])

368.143024ms ago: executing program 3 (id=1034):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000340)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x1}]}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}]}, 0x5c}, 0x1, 0x0, 0x0, 0xc040}, 0x0)

326.009382ms ago: executing program 3 (id=1035):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYRES32=0x41424344], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850", 0x4, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xffffffffffffff02, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

271.517697ms ago: executing program 1 (id=1036):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000200)={0x4, <r2=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, 0x0)

204.640926ms ago: executing program 0 (id=1037):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000f40)={0xc0, 0x3, 0x4, 0x0, 0x5f})

119.655257ms ago: executing program 0 (id=1038):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000400)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, {0xa, 0x4e21, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, r1}}, 0x48)

117.50269ms ago: executing program 3 (id=1039):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x1000420, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/devices\x00', 0x0, 0x0)
poll(&(0x7f0000000140)=[{r3, 0x4100}], 0x1, 0x1)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x1}, 0x14}}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x4, &(0x7f0000000400)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x50}, [@ldst={0x4}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0x3e0, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x76, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000440)=[@text64={0x40, &(0x7f0000000180)="66baa000ecc744240011000000c7442402b16e0000ff2c2443f466baf80cb8f2c96789ef66bafc0c66ed0f072e0f01c248b820450000000000000f23d00f21f835000000010f23f8c46289900cabb9f9080000b8c93c0000ba000000000f30c4816857a601000000", 0x68}], 0x1, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

39.268355ms ago: executing program 2 (id=1040):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22, 0x0, @rand_addr, 0x99f}, 0x1c)
connect$inet6(r0, &(0x7f0000000340)={0x2, 0x4e21, 0x0, @private2}, 0x1c)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000080)="580000001500add427323b472545b45602117fffffff81000e224e217f000001925aa80020007b00090080007f000001e809000000ff0000f03ac71006000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x3, @empty, 0x7}, 0x1c)

38.987129ms ago: executing program 1 (id=1041):
io_setup(0x1, &(0x7f0000000000))
r0 = socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'xcbc(twofish-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="a95c55bcc7cb4a9362a5ce533229c8ee", 0x20)

6.072431ms ago: executing program 2 (id=1042):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000000c0)={0x48, r1, 0x1, 0x0, 0x25dfdbfd, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x12f}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r2}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r2}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x40080}, 0x0)

0s ago: executing program 0 (id=1043):
socket$inet6_sctp(0xa, 0x1, 0x84)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100000000000100"], 0x20}, 0x1, 0x0, 0x0, 0xaa34a4cfdb933291}, 0x10)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x490420, 0x0, 0x0, 0xcc, 0x0, 0x0, 0x0, 0x100}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x20c01, 0x99)
ioctl$SNAPSHOT_SET_SWAP_AREA(r2, 0x40806685, &(0x7f0000000180)={0x81, 0x3})

kernel console output (not intermixed with test programs):

th6kl: Failed to init ath6kl core: -71
[  271.625152][ T5895] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[  272.086124][ T5895] usb 5-1: USB disconnect, device number 28
[  272.561346][ T5895] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  272.866552][ T5895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  273.283598][ T5895] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  273.334246][ T5895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  273.365384][ T5895] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  274.136257][ T5895] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  274.179471][ T5895] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  274.784816][ T5895] usb 4-1: Product: syz
[  274.789027][ T5895] usb 4-1: Manufacturer: syz
[  274.812002][ T5895] usb 4-1: SerialNumber: syz
[  275.084135][ T5895] usb 4-1: config 0 descriptor??
[  275.103222][ T5895] ums-isd200 4-1:0.0: USB Mass Storage device detected
[  276.045357][ T8151] netlink: 'syz.3.436': attribute type 1 has an invalid length.
[  276.486728][ T5895] ums-isd200 4-1:0.0: probe with driver ums-isd200 failed with error -22
[  277.266474][ T5138] Bluetooth: hci0: unexpected event for opcode 0x200c
[  277.585976][ T8151] 8021q: adding VLAN 0 to HW filter on device bond6
[  277.760161][ T8154] veth15: entered promiscuous mode
[  277.863788][ T8170] netlink: 28 bytes leftover after parsing attributes in process `syz.0.446'.
[  277.882689][ T8170] 9pnet_fd: Insufficient options for proto=fd
[  278.333520][    T9] usb 4-1: USB disconnect, device number 25
[  279.762732][ T8183] netlink: 28 bytes leftover after parsing attributes in process `syz.0.449'.
[  283.669452][ T8192] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[  283.911051][ T5887] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  284.164401][ T5887] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  284.204810][ T5887] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  284.222694][ T5887] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  284.251001][ T5887] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  284.285167][ T5887] usb 1-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  284.304562][ T5887] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  284.328407][ T5887] usb 1-1: Product: syz
[  284.653115][ T5887] usb 1-1: Manufacturer: syz
[  284.677821][ T5887] usb 1-1: SerialNumber: syz
[  284.743596][ T5887] usb 1-1: config 0 descriptor??
[  284.773112][ T5887] ums-isd200 1-1:0.0: USB Mass Storage device detected
[  284.988078][ T5887] ums-isd200 1-1:0.0: probe with driver ums-isd200 failed with error -22
[  285.216602][ T8213] netlink: 'syz.0.456': attribute type 1 has an invalid length.
[  285.254668][ T8213] veth19: entered promiscuous mode
[  285.294368][ T5887] usb 1-1: USB disconnect, device number 36
[  287.455740][ T8251] binder: 8250:8251 ioctl c00c620f 2000000002c0 returned -22
[  288.613983][ T8266] netlink: 28 bytes leftover after parsing attributes in process `syz.0.466'.
[  288.632681][ T8266] 9pnet_fd: Insufficient options for proto=fd
[  289.331392][ T5895] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  289.501532][ T5895] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  289.641024][ T5895] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  289.670967][ T5895] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  290.826622][ T5895] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  290.843332][ T5895] usb 3-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  290.881031][ T5895] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  291.881052][ T5895] usb 3-1: Product: syz
[  291.885265][ T5895] usb 3-1: Manufacturer: syz
[  291.889869][ T5895] usb 3-1: SerialNumber: syz
[  291.945248][ T5895] usb 3-1: config 0 descriptor??
[  291.956440][ T5895] ums-isd200 3-1:0.0: USB Mass Storage device detected
[  291.973054][ T8283] binder: 8282:8283 ioctl c00c620f 2000000002c0 returned -22
[  292.989721][ T5895] scsi host1: usb-storage 3-1:0.0
[  293.013043][ T5895] usb 3-1: USB disconnect, device number 23
[  293.150640][ T8300] binder: 8299:8300 ioctl c00c620f 2000000002c0 returned -22
[  293.346134][ T5138] Bluetooth: hci3: unexpected event for opcode 0x200c
[  294.871510][ T5138] Bluetooth: hci4: unexpected event for opcode 0x200c
[  295.092147][ T8322] netlink: 20 bytes leftover after parsing attributes in process `syz.4.478'.
[  295.591266][    T9] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  295.752513][    T9] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  295.784344][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.834942][    T9] usb 5-1: config 0 descriptor??
[  297.693382][ T5922] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  297.853601][ T5922] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  298.051764][   T30] audit: type=1400 audit(1750229869.932:171): avc:  denied  { ioctl } for  pid=8348 comm="syz.0.483" path="socket:[15308]" dev="sockfs" ino=15308 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  298.412248][ T5922] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  298.569841][ T5922] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  298.683189][ T8355] netlink: 20 bytes leftover after parsing attributes in process `syz.1.484'.
[  299.464569][ T5887] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  299.836301][ T5922] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  299.852685][ T5922] usb 3-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  299.869320][ T5922] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.889759][ T5922] usb 3-1: Product: syz
[  299.965310][ T5922] usb 3-1: Manufacturer: syz
[  300.012257][ T5922] usb 3-1: SerialNumber: syz
[  300.296392][ T5922] usb 3-1: config 0 descriptor??
[  300.317773][    T9] ath6kl: Failed to submit usb control message: -71
[  300.328327][    T9] ath6kl: unable to send the bmi data to the device: -71
[  300.335487][    T9] ath6kl: Unable to send get target info: -71
[  300.343540][    T9] ath6kl: Failed to init ath6kl core: -71
[  300.348493][ T5922] ums-isd200 3-1:0.0: USB Mass Storage device detected
[  300.350136][    T9] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[  300.370689][    T9] usb 5-1: USB disconnect, device number 29
[  300.537491][ T5887] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  300.547543][ T5887] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.562799][ T5887] usb 2-1: config 0 descriptor??
[  301.027464][ T5922] scsi host1: usb-storage 3-1:0.0
[  301.100471][ T5922] usb 3-1: USB disconnect, device number 24
[  301.373593][ T5887] ath6kl: Failed to submit usb control message: -71
[  301.380253][ T5887] ath6kl: unable to send the bmi data to the device: -71
[  301.391051][ T5887] ath6kl: Unable to send get target info: -71
[  301.405240][ T5887] ath6kl: Failed to init ath6kl core: -71
[  301.419861][ T5887] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[  301.803469][ T5887] usb 2-1: USB disconnect, device number 34
[  302.767212][ T8389] netlink: 28 bytes leftover after parsing attributes in process `syz.4.491'.
[  302.785925][ T8389] 9pnet_fd: Insufficient options for proto=fd
[  308.025304][ T8435] netlink: 28 bytes leftover after parsing attributes in process `syz.0.500'.
[  308.044320][ T8435] 9pnet_fd: Insufficient options for proto=fd
[  310.444186][ T5138] Bluetooth: hci4: unexpected event for opcode 0x200c
[  312.971505][ T8457] binder: 8456:8457 ioctl c00c620f 2000000002c0 returned -22
[  316.725479][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  316.734570][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  316.751473][ T8479] binder: 8476:8479 ioctl c00c620f 2000000002c0 returned -22
[  316.911641][ T8477] netlink: 20 bytes leftover after parsing attributes in process `syz.1.512'.
[  319.052127][   T10] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  319.337241][ T8504] netlink: 28 bytes leftover after parsing attributes in process `syz.0.518'.
[  319.355973][ T8504] 9pnet_fd: Insufficient options for proto=fd
[  323.151100][ T8526] netlink: 28 bytes leftover after parsing attributes in process `syz.4.521'.
[  323.283079][ T8526] 9pnet_fd: Insufficient options for proto=fd
[  325.095897][ T5138] Bluetooth: hci0: unexpected event for opcode 0x200c
[  326.753466][ T8557] workqueue: Failed to create a rescuer kthread for wq "nfc4_nci_rx_wq": -EINTR
[  330.809583][ T8597] binder: 8596:8597 ioctl c00c620f 2000000002c0 returned -22
[  338.860994][ T5887] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  340.193518][ T5887] usb 2-1: device descriptor read/all, error -71
[  341.898113][ T8686] binder: 8685:8686 ioctl c00c620f 2000000002c0 returned -22
[  344.991456][ T8717] binder: 8716:8717 ioctl c00c620f 2000000002c0 returned -22
[  346.515147][ T8728] binder: 8726:8728 ioctl c00c620f 2000000002c0 returned -22
[  350.370996][   T24] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  350.522718][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  351.591333][   T24] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  351.764678][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  351.774550][   T24] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  351.785408][   T24] usb 2-1: string descriptor 0 read error: -71
[  351.792202][   T24] usb 2-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  351.801359][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  351.814111][   T24] usb 2-1: config 0 descriptor??
[  351.819588][   T24] usb 2-1: can't set config #0, error -71
[  351.828436][   T24] usb 2-1: USB disconnect, device number 38
[  354.527744][ T5887] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  354.900839][ T5887] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  354.942772][ T5887] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  355.004183][ T5887] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  355.014262][ T5887] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  355.032670][ T5887] usb 1-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  355.051244][ T5887] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  355.090442][ T5887] usb 1-1: Product: syz
[  355.111107][ T5887] usb 1-1: Manufacturer: syz
[  355.396074][ T5887] usb 1-1: SerialNumber: syz
[  355.420562][ T5887] usb 1-1: config 0 descriptor??
[  355.559861][ T5887] ums-isd200 1-1:0.0: USB Mass Storage device detected
[  355.988525][ T8789] netlink: 'syz.0.575': attribute type 1 has an invalid length.
[  356.074203][ T8789] 8021q: adding VLAN 0 to HW filter on device bond6
[  356.094071][ T5887] ums-isd200 1-1:0.0: probe with driver ums-isd200 failed with error -22
[  356.132348][   T10] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  356.276105][ T8789] veth21: entered promiscuous mode
[  356.284492][ T8821] vlan2: entered allmulticast mode
[  356.291165][ T8821] bond6: entered allmulticast mode
[  356.322475][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  356.337417][   T10] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  356.377103][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  356.397760][   T10] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  356.437615][ T8824] bridge_slave_1: left allmulticast mode
[  356.443413][ T8824] bridge_slave_1: left promiscuous mode
[  356.449172][ T8824] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.458971][   T10] usb 5-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  356.469664][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  356.488194][ T8824] bridge_slave_0: left allmulticast mode
[  356.495118][   T10] usb 5-1: Product: syz
[  356.502286][ T8824] bridge_slave_0: left promiscuous mode
[  356.508047][ T8824] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.515618][   T10] usb 5-1: Manufacturer: syz
[  356.557298][   T10] usb 5-1: SerialNumber: syz
[  356.583316][ T5942] usb 1-1: USB disconnect, device number 37
[  356.653912][   T10] usb 5-1: config 0 descriptor??
[  356.790787][   T10] ums-isd200 5-1:0.0: USB Mass Storage device detected
[  357.057996][   T10] ums-isd200 5-1:0.0: probe with driver ums-isd200 failed with error -22
[  359.047005][ T8852] netlink: 'syz.4.579': attribute type 1 has an invalid length.
[  359.153920][ T8852] 8021q: adding VLAN 0 to HW filter on device bond6
[  359.173443][   T24] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  359.371171][ T8817] veth19: entered promiscuous mode
[  359.414915][   T10] usb 5-1: USB disconnect, device number 30
[  359.458189][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  359.481948][   T24] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  359.492928][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  359.504906][   T24] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  359.520991][   T24] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  359.531854][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  359.540047][   T24] usb 4-1: Product: syz
[  359.557106][   T24] usb 4-1: Manufacturer: syz
[  359.597679][   T24] usb 4-1: SerialNumber: syz
[  360.717900][   T24] usb 4-1: config 0 descriptor??
[  360.762423][   T24] ums-isd200 4-1:0.0: USB Mass Storage device detected
[  361.125550][   T24] ums-isd200 4-1:0.0: probe with driver ums-isd200 failed with error -22
[  361.986381][ T8848] netlink: 'syz.3.584': attribute type 1 has an invalid length.
[  362.338673][ T8886] veth17: entered promiscuous mode
[  362.366977][ T8848] 8021q: adding VLAN 0 to HW filter on device bond7
[  362.500274][ T8893] vlan3: entered allmulticast mode
[  362.561826][ T8893] bond7: entered allmulticast mode
[  362.913284][ T5895] usb 4-1: USB disconnect, device number 26
[  363.151220][ T8914] binder: 8913:8914 ioctl c00c620f 2000000002c0 returned -22
[  364.025471][ T5942] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  365.197078][ T5942] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  365.230948][ T5942] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  365.279890][ T5942] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  365.318950][ T5942] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  366.370593][ T5942] usb 2-1: string descriptor 0 read error: -71
[  366.925226][ T5942] usb 2-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  366.942068][ T5942] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  366.971471][ T5942] usb 2-1: config 0 descriptor??
[  366.978388][ T5942] usb 2-1: can't set config #0, error -71
[  367.051602][ T5942] usb 2-1: USB disconnect, device number 39
[  367.062606][   T30] audit: type=1400 audit(1750229938.942:172): avc:  denied  { create } for  pid=8936 comm="syz.0.598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  367.101068][   T30] audit: type=1400 audit(1750229938.952:173): avc:  denied  { bind } for  pid=8936 comm="syz.0.598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  367.121671][ T8937] netlink: 40 bytes leftover after parsing attributes in process `syz.0.598'.
[  367.153640][   T30] audit: type=1400 audit(1750229938.972:174): avc:  denied  { setopt } for  pid=8936 comm="syz.0.598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  367.176700][   T30] audit: type=1400 audit(1750229938.972:175): avc:  denied  { accept } for  pid=8936 comm="syz.0.598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  367.215605][   T30] audit: type=1400 audit(1750229938.992:176): avc:  denied  { write } for  pid=8936 comm="syz.0.598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  367.363514][   T30] audit: type=1400 audit(1750229939.002:177): avc:  denied  { read } for  pid=8936 comm="syz.0.598" path="socket:[17925]" dev="sockfs" ino=17925 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  370.182608][   T30] audit: type=1400 audit(1750229941.932:178): avc:  denied  { create } for  pid=8961 comm="syz.3.607" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  370.203099][   T30] audit: type=1400 audit(1750229941.952:179): avc:  denied  { getopt } for  pid=8961 comm="syz.3.607" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  371.257340][   T24] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  371.741328][   T42] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  371.845036][   T24] usb 4-1: Using ep0 maxpacket: 16
[  371.881268][   T24] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  371.893371][   T24] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0
[  371.903591][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[  371.910410][   T24] usb 4-1: New USB device found, idVendor=04f2, idProduct=0418, bcdDevice= 0.00
[  371.921532][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.938669][   T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  371.949015][   T24] usb 4-1: config 0 descriptor??
[  371.957181][   T42] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  371.979358][   T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  371.989253][ T5922] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  372.072803][   T42] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  372.086914][   T42] usb 5-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  372.101156][   T42] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  372.775638][   T42] usb 5-1: Product: syz
[  372.809696][   T24] chicony 0003:04F2:0418.0001: hidraw0: USB HID v0.00 Device [HID 04f2:0418] on usb-dummy_hcd.3-1/input0
[  372.851527][   T42] usb 5-1: Manufacturer: syz
[  372.856186][   T42] usb 5-1: SerialNumber: syz
[  372.864003][ T5922] usb 2-1: config 0 has an invalid interface number: 3 but max is 0
[  372.873346][   T42] usb 5-1: config 0 descriptor??
[  373.052882][ T5922] usb 2-1: config 0 has no interface number 0
[  373.073327][   T42] ums-isd200 5-1:0.0: USB Mass Storage device detected
[  373.565480][   T24] usb 4-1: USB disconnect, device number 27
[  373.572550][ T5922] usb 2-1: New USB device found, idVendor=5276, idProduct=a15e, bcdDevice=ba.30
[  373.606759][ T5922] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.863704][   T42] scsi host1: usb-storage 5-1:0.0
[  373.883647][ T5922] usb 2-1: Product: syz
[  373.901695][ T5922] usb 2-1: Manufacturer: syz
[  373.908892][   T42] usb 5-1: USB disconnect, device number 31
[  373.923984][ T5922] usb 2-1: SerialNumber: syz
[  373.965087][ T5922] usb 2-1: config 0 descriptor??
[  375.501134][ T5922] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  375.508419][ T5922] usb 2-1: MIDIStreaming interface descriptor not found
[  376.100148][ T5922] usb 2-1: USB disconnect, device number 40
[  376.219468][ T9020] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  376.242661][   T30] audit: type=1400 audit(1750229948.092:180): avc:  denied  { search } for  pid=9021 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  376.281006][ T9020] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  376.351825][   T30] audit: type=1400 audit(1750229948.202:181): avc:  denied  { search } for  pid=9021 comm="dhcpcd-run-hook" name="dhcpcd" dev="tmpfs" ino=1833 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  376.374509][    C1] vkms_vblank_simulate: vblank timer overrun
[  376.395499][   T30] audit: type=1400 audit(1750229948.202:182): avc:  denied  { search } for  pid=9021 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1837 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  376.445410][   T30] audit: type=1400 audit(1750229948.202:183): avc:  denied  { search } for  pid=9021 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=1838 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  376.494040][   T30] audit: type=1400 audit(1750229948.222:184): avc:  denied  { read open } for  pid=9028 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1838 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  376.590952][ T9020] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  376.641085][ T9020] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  376.706480][   T30] audit: type=1400 audit(1750229948.222:185): avc:  denied  { getattr } for  pid=9028 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1838 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  376.732921][   T30] audit: type=1400 audit(1750229948.222:186): avc:  denied  { getattr } for  pid=9028 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf/eth0.dhcp" dev="tmpfs" ino=1880 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  376.759095][    C1] vkms_vblank_simulate: vblank timer overrun
[  376.823816][ T9035] tmpfs: Bad value for 'mpol'
[  376.959982][   T30] audit: type=1400 audit(1750229948.712:187): avc:  denied  { mounton } for  pid=9034 comm="syz.1.620" path="/123/file0" dev="tmpfs" ino=641 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  376.990375][   T30] audit: type=1400 audit(1750229948.732:188): avc:  denied  { read } for  pid=9030 comm="sed" name="eth0.dhcp" dev="tmpfs" ino=1880 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  377.014887][   T30] audit: type=1400 audit(1750229948.732:189): avc:  denied  { open } for  pid=9030 comm="sed" path="/run/dhcpcd/hook-state/resolv.conf/eth0.dhcp" dev="tmpfs" ino=1880 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  377.039772][    C1] vkms_vblank_simulate: vblank timer overrun
[  377.482049][ T9020] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  377.488004][ T9020] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  377.608615][ T9043] binder: 9041:9043 ioctl c00c620f 2000000002c0 returned -22
[  378.365399][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  378.372598][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  378.721045][   T42] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  378.810980][ T5895] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  379.891250][   T42] usb 2-1: device descriptor read/64, error -71
[  379.949347][ T5895] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  379.963535][ T5895] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  379.973522][ T5895] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  379.984023][ T5895] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  379.997737][ T5895] usb 3-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  380.030954][ T5895] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.041367][ T5895] usb 3-1: Product: syz
[  380.045673][ T5895] usb 3-1: Manufacturer: syz
[  380.050271][ T5895] usb 3-1: SerialNumber: syz
[  380.085696][ T5895] usb 3-1: config 0 descriptor??
[  380.103192][ T5895] ums-isd200 3-1:0.0: USB Mass Storage device detected
[  380.331123][   T42] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  381.301809][ T9081] veth21: entered promiscuous mode
[  381.454444][ T5895] ums-isd200 3-1:0.0: probe with driver ums-isd200 failed with error -22
[  381.504176][ T5895] usb 3-1: USB disconnect, device number 25
[  381.521206][ T5922] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  381.529334][   T42] usb 2-1: device descriptor read/64, error -71
[  381.673110][   T42] usb usb2-port1: attempt power cycle
[  381.681063][ T5922] usb 4-1: Using ep0 maxpacket: 16
[  381.753064][ T5922] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  381.933557][ T5922] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0
[  381.959697][ T5922] usb 4-1: config 0 interface 0 has no altsetting 0
[  382.097083][ T5922] usb 4-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00
[  382.106289][ T5922] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.118586][ T5922] usb 4-1: config 0 descriptor??
[  382.197030][ T9098] netlink: 20 bytes leftover after parsing attributes in process `syz.1.631'.
[  382.439405][ T9072] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  382.503673][ T9072] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  382.532819][ T9111] bridge0: entered allmulticast mode
[  382.549121][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  382.549141][   T30] audit: type=1400 audit(1750229954.432:198): avc:  denied  { setopt } for  pid=9069 comm="syz.3.628" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  382.605598][ T9114] FAULT_INJECTION: forcing a failure.
[  382.605598][ T9114] name failslab, interval 1, probability 0, space 0, times 1
[  382.632864][ T5922] usbhid 4-1:0.0: can't add hid device: -71
[  382.633763][ T9114] CPU: 0 UID: 0 PID: 9114 Comm: syz.4.633 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  382.633785][ T9114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  382.633795][ T9114] Call Trace:
[  382.633801][ T9114]  <TASK>
[  382.633806][ T9114]  dump_stack_lvl+0x16c/0x1f0
[  382.633839][ T9114]  should_fail_ex+0x512/0x640
[  382.633860][ T9114]  ? fs_reclaim_acquire+0xae/0x150
[  382.633878][ T9114]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  382.633900][ T9114]  should_failslab+0xc2/0x120
[  382.633922][ T9114]  __kmalloc_noprof+0xd2/0x510
[  382.633947][ T9114]  tomoyo_realpath_from_path+0xc2/0x6e0
[  382.633974][ T9114]  ? tomoyo_profile+0x47/0x60
[  382.634000][ T9114]  tomoyo_path_number_perm+0x245/0x580
[  382.634022][ T9114]  ? tomoyo_path_number_perm+0x237/0x580
[  382.634042][ T9114]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  382.634062][ T9114]  ? find_held_lock+0x2b/0x80
[  382.634100][ T9114]  ? find_held_lock+0x2b/0x80
[  382.634118][ T9114]  ? hook_file_ioctl_common+0x145/0x410
[  382.634139][ T9114]  ? __fget_files+0x20e/0x3c0
[  382.634165][ T9114]  security_file_ioctl+0x9b/0x240
[  382.634188][ T9114]  __x64_sys_ioctl+0xb7/0x210
[  382.634208][ T9114]  do_syscall_64+0xcd/0x4c0
[  382.634232][ T9114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.634248][ T9114] RIP: 0033:0x7f1d97b8e929
[  382.634261][ T9114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.634277][ T9114] RSP: 002b:00007f1d959f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  382.634295][ T9114] RAX: ffffffffffffffda RBX: 00007f1d97db5fa0 RCX: 00007f1d97b8e929
[  382.634305][ T9114] RDX: 0000200000000340 RSI: 00000000400448c8 RDI: 0000000000000007
[  382.634315][ T9114] RBP: 00007f1d959f6090 R08: 0000000000000000 R09: 0000000000000000
[  382.634324][ T9114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.634333][ T9114] R13: 0000000000000000 R14: 00007f1d97db5fa0 R15: 00007ffc387e0a38
[  382.634354][ T9114]  </TASK>
[  382.634376][ T9114] ERROR: Out of memory at tomoyo_realpath_from_path.
[  382.638921][ T5922] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  383.203932][   T42] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  383.319452][   T30] audit: type=1400 audit(1750229954.472:199): avc:  denied  { connect } for  pid=9112 comm="syz.4.633" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  383.441122][   T30] audit: type=1400 audit(1750229954.992:200): avc:  denied  { ioctl } for  pid=9112 comm="syz.4.633" path="socket:[18247]" dev="sockfs" ino=18247 ioctlcmd=0x48c8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  383.517256][   T42] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  383.527820][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  383.541208][ T5922] usb 4-1: USB disconnect, device number 28
[  383.586728][ T9131] FAULT_INJECTION: forcing a failure.
[  383.586728][ T9131] name failslab, interval 1, probability 0, space 0, times 0
[  383.615873][ T9131] CPU: 1 UID: 0 PID: 9131 Comm: syz.2.635 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  383.615901][ T9131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  383.615910][ T9131] Call Trace:
[  383.615919][ T9131]  <TASK>
[  383.615927][ T9131]  dump_stack_lvl+0x16c/0x1f0
[  383.615959][ T9131]  should_fail_ex+0x512/0x640
[  383.615981][ T9131]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  383.616006][ T9131]  should_failslab+0xc2/0x120
[  383.616030][ T9131]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  383.616052][ T9131]  ? getname_flags.part.0+0x4c/0x550
[  383.616075][ T9131]  getname_flags.part.0+0x4c/0x550
[  383.616095][ T9131]  getname_flags+0x93/0xf0
[  383.616117][ T9131]  do_sys_openat2+0xb8/0x1d0
[  383.616133][ T9131]  ? __pfx_do_sys_openat2+0x10/0x10
[  383.616152][ T9131]  ? __fget_files+0x20e/0x3c0
[  383.616179][ T9131]  __x64_sys_openat+0x174/0x210
[  383.616196][ T9131]  ? __pfx___x64_sys_openat+0x10/0x10
[  383.616211][ T9131]  ? ksys_write+0x1ac/0x250
[  383.616241][ T9131]  do_syscall_64+0xcd/0x4c0
[  383.616270][ T9131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.616288][ T9131] RIP: 0033:0x7f0d9d18d290
[  383.616303][ T9131] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  383.616320][ T9131] RSP: 002b:00007f0d9e0cdf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  383.616339][ T9131] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0d9d18d290
[  383.616350][ T9131] RDX: 0000000000000002 RSI: 00007f0d9e0cdfa0 RDI: 00000000ffffff9c
[  383.616361][ T9131] RBP: 00007f0d9e0cdfa0 R08: 0000000000000000 R09: 0000000000000000
[  383.616372][ T9131] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  383.616383][ T9131] R13: 0000000000000000 R14: 00007f0d9d3b5fa0 R15: 00007ffd2b44a548
[  383.616405][ T9131]  </TASK>
[  383.885302][   T42] usb 2-1: config 0 descriptor??
[  384.310210][   T42] ath6kl: Failed to submit usb control message: -71
[  384.367976][   T42] ath6kl: unable to send the bmi data to the device: -71
[  384.400934][   T42] ath6kl: Unable to send get target info: -71
[  384.723575][ T9154] netlink: 68 bytes leftover after parsing attributes in process `syz.2.639'.
[  385.008977][    T9] libceph: connect (1)[c::]:6789 error -101
[  385.014048][   T42] ath6kl: Failed to init ath6kl core: -71
[  385.032745][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  385.119228][   T42] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[  385.291760][ T9153] ceph: No mds server is up or the cluster is laggy
[  385.303515][    T9] libceph: connect (1)[c::]:6789 error -101
[  385.309519][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  385.329646][   T42] usb 2-1: USB disconnect, device number 43
[  385.942559][   T30] audit: type=1400 audit(1750229957.832:201): avc:  denied  { listen } for  pid=9159 comm="syz.0.641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  385.962063][    C0] vkms_vblank_simulate: vblank timer overrun
[  385.973162][ T9167] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  386.034314][   T30] audit: type=1400 audit(1750229957.832:202): avc:  denied  { connect } for  pid=9159 comm="syz.0.641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  386.057099][   T30] audit: type=1400 audit(1750229957.832:203): avc:  denied  { create } for  pid=9159 comm="syz.0.641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  387.163923][ T9186] netlink: 68 bytes leftover after parsing attributes in process `syz.3.644'.
[  388.132487][   T42] libceph: connect (1)[c::]:6789 error -101
[  388.168584][   T42] libceph: mon0 (1)[c::]:6789 connect error
[  388.216809][   T30] audit: type=1400 audit(1750229960.102:204): avc:  denied  { create } for  pid=9190 comm="syz.1.645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  388.309576][   T30] audit: type=1400 audit(1750229960.142:205): avc:  denied  { setopt } for  pid=9190 comm="syz.1.645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  388.328853][    C0] vkms_vblank_simulate: vblank timer overrun
[  388.450682][   T42] libceph: connect (1)[c::]:6789 error -101
[  388.463375][   T42] libceph: mon0 (1)[c::]:6789 connect error
[  388.775105][ T9194] FAULT_INJECTION: forcing a failure.
[  388.775105][ T9194] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  388.788328][ T9194] CPU: 1 UID: 0 PID: 9194 Comm: syz.0.646 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  388.788353][ T9194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  388.788363][ T9194] Call Trace:
[  388.788370][ T9194]  <TASK>
[  388.788379][ T9194]  dump_stack_lvl+0x16c/0x1f0
[  388.788410][ T9194]  should_fail_ex+0x512/0x640
[  388.788448][ T9194]  _copy_to_user+0x32/0xd0
[  388.788475][ T9194]  simple_read_from_buffer+0xcb/0x170
[  388.788500][ T9194]  proc_fail_nth_read+0x197/0x270
[  388.788523][ T9194]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  388.788547][ T9194]  ? rw_verify_area+0xcf/0x680
[  388.788566][ T9194]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  388.788589][ T9194]  vfs_read+0x1e1/0xc60
[  388.788614][ T9194]  ? __pfx___mutex_lock+0x10/0x10
[  388.788641][ T9194]  ? __pfx_vfs_read+0x10/0x10
[  388.788668][ T9194]  ? __fget_files+0x20e/0x3c0
[  388.788699][ T9194]  ksys_read+0x12a/0x250
[  388.788720][ T9194]  ? __pfx_ksys_read+0x10/0x10
[  388.788739][ T9194]  ? irq_work_single+0x13a/0x260
[  388.788769][ T9194]  do_syscall_64+0xcd/0x4c0
[  388.788799][ T9194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.788818][ T9194] RIP: 0033:0x7f1266f8d33c
[  388.788834][ T9194] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  388.788851][ T9194] RSP: 002b:00007f1267e6d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  388.788870][ T9194] RAX: ffffffffffffffda RBX: 00007f12671b5fa0 RCX: 00007f1266f8d33c
[  388.788882][ T9194] RDX: 000000000000000f RSI: 00007f1267e6d0a0 RDI: 0000000000000007
[  388.788893][ T9194] RBP: 00007f1267e6d090 R08: 0000000000000000 R09: 0000000000000000
[  388.788903][ T9194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.788914][ T9194] R13: 0000000000000000 R14: 00007f12671b5fa0 R15: 00007ffe68cad1c8
[  388.788943][ T9194]  </TASK>
[  389.243171][   T30] audit: type=1400 audit(1750229960.652:206): avc:  denied  { read write } for  pid=9193 comm="syz.0.646" name="fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  389.272121][ T5933] libceph: connect (1)[c::]:6789 error -101
[  389.347767][ T9184] ceph: No mds server is up or the cluster is laggy
[  389.405157][ T5933] libceph: mon0 (1)[c::]:6789 connect error
[  389.478285][   T30] audit: type=1400 audit(1750229960.652:207): avc:  denied  { open } for  pid=9193 comm="syz.0.646" path="/dev/fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  389.578920][   T30] audit: type=1400 audit(1750229961.052:208): avc:  denied  { unmount } for  pid=5812 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  389.599116][ T5942] usb 2-1: new full-speed USB device number 44 using dummy_hcd
[  389.711202][   T30] audit: type=1400 audit(1750229961.592:209): avc:  denied  { mount } for  pid=9212 comm="syz.3.650" name="/" dev="pipefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  389.798887][ T5942] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 41216, setting to 64
[  389.821501][ T5942] usb 2-1: New USB device found, idVendor=046d, idProduct=c52f, bcdDevice= 0.00
[  389.870958][ T5942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.885927][    T9] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[  389.931680][ T5942] usb 2-1: config 0 descriptor??
[  389.972089][ T9191] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  390.035045][ T9221] fuse: Bad value for 'user_id'
[  390.040013][ T9221] fuse: Bad value for 'user_id'
[  390.049395][   T30] audit: type=1400 audit(1750229961.932:210): avc:  denied  { create } for  pid=9212 comm="syz.3.650" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  390.567126][    T9] usb 1-1: Using ep0 maxpacket: 16
[  390.574026][    T9] usb 1-1: config 1 has an invalid descriptor of length 144, skipping remainder of the config
[  390.595897][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  390.648756][   T30] audit: type=1400 audit(1750229962.522:211): avc:  denied  { unlink } for  pid=5815 comm="syz-executor" name="file0" dev="tmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  390.710809][    T9] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  390.737986][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  390.781696][    T9] usb 1-1: Product: syz
[  390.785914][    T9] usb 1-1: Manufacturer: syz
[  390.811051][    T9] usb 1-1: SerialNumber: syz
[  390.903753][   T30] audit: type=1400 audit(1750229962.792:212): avc:  denied  { ioctl } for  pid=9190 comm="syz.1.645" path="socket:[18897]" dev="sockfs" ino=18897 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  390.955424][ T9195] netlink: 64 bytes leftover after parsing attributes in process `syz.1.645'.
[  391.024548][   T30] audit: type=1400 audit(1750229962.822:213): avc:  denied  { mount } for  pid=9229 comm="syz.3.651" name="/" dev="ramfs" ino=19481 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  391.101251][ T5942] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  391.164895][    T9] usb 1-1: 0:2 : does not exist
[  391.241060][ T5942] usb 3-1: device descriptor read/64, error -71
[  391.272366][    T9] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  391.439368][    T9] usb 1-1: 5:0: cannot get min/max values for control 3 (id 5)
[  391.501133][ T5942] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  391.569012][    T9] usb 1-1: 5:0: cannot get min/max values for control 4 (id 5)
[  391.681079][ T5942] usb 3-1: device descriptor read/64, error -71
[  391.728914][    T9] usb 1-1: 5:0: cannot get min/max values for control 5 (id 5)
[  391.842453][ T5942] usb usb3-port1: attempt power cycle
[  391.899694][    T9] usb 1-1: 5:0: cannot get min/max values for control 8 (id 5)
[  392.061147][    T9] usb 1-1: 5:0: cannot get min/max values for control 3 (id 5)
[  392.096638][    T9] usb 1-1: 5:0: cannot get min/max values for control 5 (id 5)
[  392.261166][ T5942] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  392.281656][ T5942] usb 3-1: device descriptor read/8, error -71
[  392.891609][    T9] usb 1-1: USB disconnect, device number 38
[  393.031020][ T5942] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  393.246761][ T5942] usb 3-1: device descriptor read/8, error -71
[  393.321982][ T5814] udevd[5814]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  393.360352][ T5822] usb 2-1: USB disconnect, device number 44
[  393.371600][ T5942] usb usb3-port1: unable to enumerate USB device
[  393.424662][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  393.424679][   T30] audit: type=1400 audit(1750229965.312:219): avc:  denied  { shutdown } for  pid=9267 comm="syz.1.660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  393.679399][   T30] audit: type=1400 audit(1750229965.382:220): avc:  denied  { setopt } for  pid=9268 comm="syz.4.658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  394.016390][ T9276] netlink: 20 bytes leftover after parsing attributes in process `syz.3.659'.
[  394.230994][ T5933] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[  394.284674][   T30] audit: type=1400 audit(1750229966.172:221): avc:  denied  { append } for  pid=9292 comm="syz.1.663" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  394.436549][ T5933] usb 1-1: Using ep0 maxpacket: 8
[  394.477860][ T5933] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  394.544914][ T5933] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[  394.561514][ T5933] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.574376][ T5933] usb 1-1: Product: syz
[  394.581201][ T5933] usb 1-1: Manufacturer: syz
[  394.587541][ T5933] usb 1-1: SerialNumber: syz
[  394.606768][ T5933] usbtest 1-1:1.0: couldn't get endpoints, -22
[  394.618921][ T5933] usbtest 1-1:1.0: probe with driver usbtest failed with error -22
[  394.621196][ T9302] bond0: entered promiscuous mode
[  394.633977][ T9302] bond_slave_0: entered promiscuous mode
[  394.641291][ T5922] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  394.651662][ T9302] bond_slave_1: entered promiscuous mode
[  394.659973][ T9302] batadv0: entered promiscuous mode
[  394.687423][ T9302] 8021q: adding VLAN 0 to HW filter on device hsr1
[  394.701538][ T9302] bond0: left promiscuous mode
[  394.707104][ T9302] bond_slave_0: left promiscuous mode
[  394.716306][ T9302] bond_slave_1: left promiscuous mode
[  394.724890][ T9302] batadv0: left promiscuous mode
[  394.802929][ T5922] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  394.861842][ T5922] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  394.942359][ T5933] usb 1-1: USB disconnect, device number 39
[  394.957470][ T5922] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  395.021301][ T5922] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  395.062560][ T5922] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  395.091613][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  395.199264][ T5922] usb 4-1: Product: syz
[  395.203990][ T5922] usb 4-1: Manufacturer: syz
[  395.208664][ T5922] usb 4-1: SerialNumber: syz
[  395.221573][ T5922] usb 4-1: config 0 descriptor??
[  395.632199][ T5922] ums-isd200 4-1:0.0: USB Mass Storage device detected
[  395.823089][ T5922] ums-isd200 4-1:0.0: probe with driver ums-isd200 failed with error -22
[  396.005422][ T9297] netlink: 'syz.3.665': attribute type 1 has an invalid length.
[  396.163097][ T9318] netlink: 'syz.0.671': attribute type 2 has an invalid length.
[  396.214821][ T9321] netlink: 68 bytes leftover after parsing attributes in process `syz.4.670'.
[  396.532259][   T30] audit: type=1400 audit(1750229968.092:222): avc:  denied  { setopt } for  pid=9314 comm="syz.4.670" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  396.574970][   T30] audit: type=1400 audit(1750229968.092:223): avc:  denied  { write } for  pid=9314 comm="syz.4.670" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  397.787167][ T9297] 8021q: adding VLAN 0 to HW filter on device bond8
[  397.817268][ T9326] vlan3: entered allmulticast mode
[  397.825707][ T9326] bond8: entered allmulticast mode
[  397.901316][ T5933] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[  398.139997][ T9328] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  398.193171][ T5822] usb 4-1: USB disconnect, device number 29
[  398.314451][ T5933] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  398.367142][ T9339] netlink: 20 bytes leftover after parsing attributes in process `syz.4.674'.
[  398.399534][ T5933] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  398.503533][ T5933] usb 1-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00
[  398.512694][ T5933] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  398.526670][ T5933] usb 1-1: config 0 descriptor??
[  398.951013][   T30] audit: type=1400 audit(1750229970.832:224): avc:  denied  { read } for  pid=9336 comm="syz.4.674" name="rtc0" dev="devtmpfs" ino=922 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  398.976511][   T30] audit: type=1400 audit(1750229970.832:225): avc:  denied  { open } for  pid=9336 comm="syz.4.674" path="/dev/rtc0" dev="devtmpfs" ino=922 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  399.346750][ T5933] uclogic 0003:5543:0522.0003: No inputs registered, leaving
[  399.396393][ T5933] uclogic 0003:5543:0522.0003: hidraw0: USB HID v0.00 Device [HID 5543:0522] on usb-dummy_hcd.0-1/input0
[  399.548065][ T5933] usb 1-1: USB disconnect, device number 40
[  399.564053][   T30] audit: type=1400 audit(1750229971.422:226): avc:  denied  { read write } for  pid=9317 comm="syz.0.671" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  399.751992][   T30] audit: type=1400 audit(1750229971.422:227): avc:  denied  { open } for  pid=9317 comm="syz.0.671" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  399.776343][    C0] vkms_vblank_simulate: vblank timer overrun
[  399.779657][ T9355] fido_id[9355]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  399.831203][   T30] audit: type=1400 audit(1750229971.422:228): avc:  denied  { read write } for  pid=9317 comm="syz.0.671" name="uinput" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  399.855451][   T30] audit: type=1400 audit(1750229971.422:229): avc:  denied  { open } for  pid=9317 comm="syz.0.671" path="/dev/uinput" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  399.878802][    C0] vkms_vblank_simulate: vblank timer overrun
[  399.898968][   T30] audit: type=1400 audit(1750229971.422:230): avc:  denied  { ioctl } for  pid=9317 comm="syz.0.671" path="/dev/uinput" dev="devtmpfs" ino=921 ioctlcmd=0x5564 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  399.952466][   T30] audit: type=1400 audit(1750229971.432:231): avc:  denied  { accept } for  pid=9317 comm="syz.0.671" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  400.177844][ T9363] netlink: 24 bytes leftover after parsing attributes in process `syz.2.679'.
[  400.341071][   T30] audit: type=1400 audit(1750229972.012:232): avc:  denied  { create } for  pid=9361 comm="syz.2.679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  400.408932][   T30] audit: type=1400 audit(1750229972.032:233): avc:  denied  { connect } for  pid=9361 comm="syz.2.679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  400.632077][ T9365] random: crng reseeded on system resumption
[  401.242400][ T9365] Restarting kernel threads ...
[  401.310229][ T9365] Done restarting kernel threads.
[  403.354089][ T9413] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9 sclass=netlink_route_socket pid=9413 comm=syz.3.685
[  403.489586][ T9418] input: syz0 as /devices/virtual/input/input7
[  404.011020][ T5922] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  404.166375][ T5922] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  404.879801][ T5922] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  404.922697][ T5922] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  404.968717][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  404.968732][   T30] audit: type=1400 audit(1750229976.852:246): avc:  denied  { mount } for  pid=9439 comm="syz.4.698" name="/" dev="hugetlbfs" ino=19244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  405.025898][ T5922] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  405.026244][ T9440] overlayfs: workdir and upperdir must reside under the same mount
[  405.061635][ T5922] usb 2-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  405.080950][ T5922] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.089068][ T5922] usb 2-1: Product: syz
[  405.099167][ T5922] usb 2-1: Manufacturer: syz
[  405.135022][ T9443] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1551 sclass=netlink_route_socket pid=9443 comm=syz.4.698
[  405.161895][   T30] audit: type=1400 audit(1750229977.022:247): avc:  denied  { mount } for  pid=9439 comm="syz.4.698" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  405.184060][    C0] vkms_vblank_simulate: vblank timer overrun
[  405.241235][ T5922] usb 2-1: SerialNumber: syz
[  405.255302][ T5922] usb 2-1: config 0 descriptor??
[  405.268944][   T30] audit: type=1400 audit(1750229977.112:248): avc:  denied  { write } for  pid=9446 comm="syz.0.699" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  406.144512][   T30] audit: type=1400 audit(1750229978.022:249): avc:  denied  { unmount } for  pid=5811 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  406.169081][ T5922] ums-isd200 2-1:0.0: USB Mass Storage device detected
[  406.293845][   T30] audit: type=1400 audit(1750229978.062:250): avc:  denied  { unmount } for  pid=5811 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  406.403168][ T5922] ums-isd200 2-1:0.0: probe with driver ums-isd200 failed with error -22
[  406.550485][ T9467] netlink: 68 bytes leftover after parsing attributes in process `syz.2.700'.
[  406.858117][ T5895] libceph: connect (1)[c::]:6789 error -101
[  406.873614][ T5895] libceph: mon0 (1)[c::]:6789 connect error
[  406.920588][ T9460] veth13: entered promiscuous mode
[  406.947967][   T30] audit: type=1400 audit(1750229978.832:251): avc:  denied  { create } for  pid=9462 comm="syz.4.702" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  406.967542][    C0] vkms_vblank_simulate: vblank timer overrun
[  406.976578][ T5822] usb 2-1: USB disconnect, device number 45
[  406.988489][ T9472] bridge_slave_1: left allmulticast mode
[  406.994599][ T9472] bridge_slave_1: left promiscuous mode
[  407.001254][ T9472] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.012104][ T9473] block nbd0: NBD_DISCONNECT
[  407.020553][ T9469] block nbd0: Disconnected due to user request.
[  407.030069][ T9469] block nbd0: shutting down sockets
[  407.040119][ T9464] ceph: No mds server is up or the cluster is laggy
[  407.151234][ T9472] bridge_slave_0: left allmulticast mode
[  407.161582][ T9472] bridge_slave_0: left promiscuous mode
[  407.170505][ T9472] bridge0: port 1(bridge_slave_0) entered disabled state
[  407.181185][ T5895] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  407.392904][ T5895] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  407.506467][ T5895] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  407.548221][ T5895] usb 5-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  407.557974][   T30] audit: type=1400 audit(1750229979.432:252): avc:  denied  { bind } for  pid=9483 comm="syz.0.706" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  407.577938][ T5895] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  407.626890][ T5895] usb 5-1: config 0 descriptor??
[  408.899697][ T9503] netlink: 68 bytes leftover after parsing attributes in process `syz.0.709'.
[  409.150196][ T5887] libceph: connect (1)[c::]:6789 error -101
[  409.165024][ T5895] isku 0003:1E7D:319C.0004: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.4-1/input0
[  409.185201][ T5887] libceph: mon0 (1)[c::]:6789 connect error
[  409.874130][ T5822] libceph: connect (1)[c::]:6789 error -101
[  409.880225][ T5822] libceph: mon0 (1)[c::]:6789 connect error
[  409.901484][ T9514] FAULT_INJECTION: forcing a failure.
[  409.901484][ T9514] name failslab, interval 1, probability 0, space 0, times 0
[  409.917294][ T9501] ceph: No mds server is up or the cluster is laggy
[  409.929069][ T9515] FAULT_INJECTION: forcing a failure.
[  409.929069][ T9515] name failslab, interval 1, probability 0, space 0, times 0
[  409.936598][ T9514] CPU: 0 UID: 0 PID: 9514 Comm: syz.2.712 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  409.936624][ T9514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  409.936633][ T9514] Call Trace:
[  409.936639][ T9514]  <TASK>
[  409.936645][ T9514]  dump_stack_lvl+0x16c/0x1f0
[  409.936674][ T9514]  should_fail_ex+0x512/0x640
[  409.936695][ T9514]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  409.936718][ T9514]  should_failslab+0xc2/0x120
[  409.936740][ T9514]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  409.936760][ T9514]  ? __alloc_skb+0x2b2/0x380
[  409.936785][ T9514]  __alloc_skb+0x2b2/0x380
[  409.936805][ T9514]  ? __pfx___alloc_skb+0x10/0x10
[  409.936828][ T9514]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  409.936850][ T9514]  netlink_alloc_large_skb+0x69/0x130
[  409.936868][ T9514]  netlink_sendmsg+0x6a1/0xdd0
[  409.936888][ T9514]  ? __pfx_netlink_sendmsg+0x10/0x10
[  409.936912][ T9514]  ____sys_sendmsg+0xa95/0xc70
[  409.936930][ T9514]  ? copy_msghdr_from_user+0x10a/0x160
[  409.936951][ T9514]  ? __pfx_____sys_sendmsg+0x10/0x10
[  409.936978][ T9514]  ___sys_sendmsg+0x134/0x1d0
[  409.937001][ T9514]  ? __pfx____sys_sendmsg+0x10/0x10
[  409.937021][ T9514]  ? __lock_acquire+0x622/0x1c90
[  409.937071][ T9514]  __sys_sendmsg+0x16d/0x220
[  409.937093][ T9514]  ? __pfx___sys_sendmsg+0x10/0x10
[  409.937129][ T9514]  do_syscall_64+0xcd/0x4c0
[  409.937153][ T9514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.937169][ T9514] RIP: 0033:0x7f0d9d18e929
[  409.937182][ T9514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.937196][ T9514] RSP: 002b:00007f0d9e0ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  409.937212][ T9514] RAX: ffffffffffffffda RBX: 00007f0d9d3b5fa0 RCX: 00007f0d9d18e929
[  409.937222][ T9514] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[  409.937231][ T9514] RBP: 00007f0d9e0ce090 R08: 0000000000000000 R09: 0000000000000000
[  409.937240][ T9514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  409.937249][ T9514] R13: 0000000000000000 R14: 00007f0d9d3b5fa0 R15: 00007ffd2b44a548
[  409.937270][ T9514]  </TASK>
[  410.159949][ T9515] CPU: 0 UID: 0 PID: 9515 Comm: syz.1.713 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  410.159974][ T9515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  410.159984][ T9515] Call Trace:
[  410.159990][ T9515]  <TASK>
[  410.159997][ T9515]  dump_stack_lvl+0x16c/0x1f0
[  410.160028][ T9515]  should_fail_ex+0x512/0x640
[  410.160050][ T9515]  ? fs_reclaim_acquire+0xae/0x150
[  410.160069][ T9515]  ? tomoyo_encode2+0x100/0x3e0
[  410.160091][ T9515]  should_failslab+0xc2/0x120
[  410.160116][ T9515]  __kmalloc_noprof+0xd2/0x510
[  410.160144][ T9515]  tomoyo_encode2+0x100/0x3e0
[  410.160170][ T9515]  tomoyo_encode+0x29/0x50
[  410.160192][ T9515]  tomoyo_realpath_from_path+0x18f/0x6e0
[  410.160218][ T9515]  ? tomoyo_profile+0x47/0x60
[  410.160247][ T9515]  tomoyo_path_number_perm+0x245/0x580
[  410.160266][ T9515]  ? tomoyo_path_number_perm+0x237/0x580
[  410.160288][ T9515]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  410.160309][ T9515]  ? find_held_lock+0x2b/0x80
[  410.160352][ T9515]  ? find_held_lock+0x2b/0x80
[  410.160371][ T9515]  ? hook_file_ioctl_common+0x145/0x410
[  410.160393][ T9515]  ? __fget_files+0x20e/0x3c0
[  410.160426][ T9515]  security_file_ioctl+0x9b/0x240
[  410.160454][ T9515]  __x64_sys_ioctl+0xb7/0x210
[  410.160475][ T9515]  do_syscall_64+0xcd/0x4c0
[  410.160503][ T9515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.160519][ T9515] RIP: 0033:0x7f2ee318e929
[  410.160533][ T9515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  410.160549][ T9515] RSP: 002b:00007f2ee3f95038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  410.160566][ T9515] RAX: ffffffffffffffda RBX: 00007f2ee33b5fa0 RCX: 00007f2ee318e929
[  410.160577][ T9515] RDX: 0000200000000080 RSI: 000000004048aecb RDI: 0000000000000005
[  410.160587][ T9515] RBP: 00007f2ee3f95090 R08: 0000000000000000 R09: 0000000000000000
[  410.160597][ T9515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  410.160607][ T9515] R13: 0000000000000000 R14: 00007f2ee33b5fa0 R15: 00007ffd3da11c58
[  410.160629][ T9515]  </TASK>
[  410.368425][    C0] vkms_vblank_simulate: vblank timer overrun
[  410.501678][ T9515] ERROR: Out of memory at tomoyo_realpath_from_path.
[  410.609675][ T9522] netlink: 830 bytes leftover after parsing attributes in process `syz.2.716'.
[  410.619393][ T9522] bond_slave_0: entered promiscuous mode
[  410.625422][ T9522] bond_slave_1: entered promiscuous mode
[  410.745997][ T9530] netlink: 12 bytes leftover after parsing attributes in process `syz.0.720'.
[  410.806751][ T9530] netlink: 28 bytes leftover after parsing attributes in process `syz.0.720'.
[  410.887266][   T30] audit: type=1400 audit(1750229982.772:253): avc:  denied  { append } for  pid=9527 comm="syz.1.718" name="nvme-fabrics" dev="devtmpfs" ino=702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  410.896291][    T9] IPVS: starting estimator thread 0...
[  411.132114][ T9535] IPVS: using max 46 ests per chain, 110400 per kthread
[  411.222564][   T30] audit: type=1400 audit(1750229983.052:254): avc:  denied  { map } for  pid=9543 comm="syz.0.723" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  411.298999][ T5933] usb 5-1: USB disconnect, device number 32
[  411.392309][ T5822] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  411.405229][   T30] audit: type=1400 audit(1750229983.052:255): avc:  denied  { execute } for  pid=9543 comm="syz.0.723" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  411.452908][ T9547] use of bytesused == 0 is deprecated and will be removed in the future,
[  411.639880][ T9547] use the actual size instead.
[  411.656422][ T5822] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  411.676895][ T5822] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  411.718824][ T5822] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  411.908728][ T5822] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  412.700976][ T5922] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  412.899626][ T5822] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  412.908868][ T5822] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  412.916902][ T5822] usb 4-1: Product: syz
[  412.921138][ T5822] usb 4-1: Manufacturer: syz
[  412.925732][ T5822] usb 4-1: SerialNumber: syz
[  412.932631][ T5822] usb 4-1: config 0 descriptor??
[  412.941307][ T5822] ums-isd200 4-1:0.0: USB Mass Storage device detected
[  413.120784][    T9] libceph: connect (1)[c::]:6789 error -101
[  413.127966][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  413.156131][   T30] audit: type=1400 audit(1750229985.042:256): avc:  denied  { create } for  pid=9565 comm="syz.4.728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.208404][ T9558] ceph: No mds server is up or the cluster is laggy
[  413.235229][ T5822] ums-isd200 4-1:0.0: probe with driver ums-isd200 failed with error -22
[  413.244020][   T30] audit: type=1400 audit(1750229985.062:257): avc:  denied  { bind } for  pid=9565 comm="syz.4.728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.278780][ T5922] usb 2-1: Using ep0 maxpacket: 16
[  413.284291][   T30] audit: type=1400 audit(1750229985.062:258): avc:  denied  { listen } for  pid=9565 comm="syz.4.728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.308557][ T5922] usb 2-1: too many configurations: 65, using maximum allowed: 8
[  413.316712][   T30] audit: type=1400 audit(1750229985.062:259): avc:  denied  { connect } for  pid=9565 comm="syz.4.728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.397466][ T5922] usb 2-1: config 0 has an invalid interface number: 160 but max is 0
[  413.433910][ T5922] usb 2-1: config 0 has no interface number 0
[  413.449832][   T30] audit: type=1400 audit(1750229985.072:260): avc:  denied  { write } for  pid=9565 comm="syz.4.728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.502771][ T5922] usb 2-1: config 0 has an invalid interface number: 160 but max is 0
[  413.631159][ T5922] usb 2-1: config 0 has no interface number 0
[  413.712353][ T5933] libceph: connect (1)[c::]:6789 error -101
[  413.724662][ T5922] usb 2-1: config 0 has an invalid interface number: 160 but max is 0
[  413.752909][   T30] audit: type=1400 audit(1750229985.082:261): avc:  denied  { accept } for  pid=9565 comm="syz.4.728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.775823][ T5933] libceph: mon0 (1)[c::]:6789 connect error
[  413.802499][ T9572] veth19: entered promiscuous mode
[  413.810961][    T9] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  413.832025][   T30] audit: type=1400 audit(1750229985.082:262): avc:  denied  { read } for  pid=9565 comm="syz.4.728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.851291][    C0] vkms_vblank_simulate: vblank timer overrun
[  413.863369][ T5942] usb 4-1: USB disconnect, device number 30
[  413.925587][ T5922] usb 2-1: config 0 has no interface number 0
[  413.934150][ T5922] usb 2-1: config 0 has an invalid interface number: 160 but max is 0
[  413.942426][ T5922] usb 2-1: config 0 has no interface number 0
[  413.949367][ T5922] usb 2-1: config 0 has an invalid interface number: 160 but max is 0
[  413.957628][ T5922] usb 2-1: config 0 has no interface number 0
[  413.964525][ T5922] usb 2-1: config 0 has an invalid interface number: 160 but max is 0
[  413.972748][ T5922] usb 2-1: config 0 has no interface number 0
[  413.980132][ T9568] ceph: No mds server is up or the cluster is laggy
[  414.130172][ T9577] netlink: 68 bytes leftover after parsing attributes in process `syz.2.729'.
[  414.169757][ T5922] usb 2-1: config 0 has an invalid interface number: 160 but max is 0
[  414.182029][ T5922] usb 2-1: config 0 has no interface number 0
[  414.216473][ T5895] libceph: connect (1)[c::]:6789 error -101
[  414.236311][ T5922] usb 2-1: config 0 has an invalid interface number: 160 but max is 0
[  414.260823][ T5895] libceph: mon0 (1)[c::]:6789 connect error
[  414.278451][ T5922] usb 2-1: config 0 has no interface number 0
[  414.339749][    T9] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  414.355961][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  414.367943][    T9] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  414.385454][    T9] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  414.389866][ T5922] usb 2-1: New USB device found, idVendor=1164, idProduct=1e8c, bcdDevice=c9.10
[  414.403247][ T5922] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.406550][    T9] usb 5-1: Manufacturer: syz
[  414.411815][ T5922] usb 2-1: Product: syz
[  414.420407][ T5922] usb 2-1: Manufacturer: syz
[  414.427865][ T5922] usb 2-1: SerialNumber: syz
[  414.435028][    T9] usb 5-1: config 0 descriptor??
[  414.435965][ T5922] usb 2-1: config 0 descriptor??
[  414.462586][ T9581] capability: warning: `syz.0.730' uses deprecated v2 capabilities in a way that may be insecure
[  414.511332][    T9] rc_core: IR keymap rc-hauppauge not found
[  414.517450][    T9] Registered IR keymap rc-empty
[  414.527464][    T9] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0
[  414.540162][    T9] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input8
[  414.620797][ T9575] ceph: No mds server is up or the cluster is laggy
[  414.673303][ T5922] dvb-usb: found a 'YUAN High-Tech DiBcom STK7700D' in cold state, will try to load a firmware
[  414.875036][ T9589] netlink: 68 bytes leftover after parsing attributes in process `syz.0.731'.
[  414.927851][ T5895] libceph: connect (1)[c::]:6789 error -101
[  414.963448][ T5922] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  415.037604][ T5895] libceph: mon0 (1)[c::]:6789 connect error
[  415.140097][ T5922] dib0700: firmware download failed at 7 with -22
[  415.274772][ T5922] usb 2-1: USB disconnect, device number 46
[  416.296033][ T5933] libceph: connect (1)[c::]:6789 error -101
[  416.311239][ T5933] libceph: mon0 (1)[c::]:6789 connect error
[  416.575965][ T9601] fuse: Unknown parameter 'fd 0x0000000000000006'
[  416.584951][ T9588] ceph: No mds server is up or the cluster is laggy
[  417.817985][ T5895] libceph: connect (1)[c::]:6789 error -101
[  417.961576][ T5895] libceph: mon0 (1)[c::]:6789 connect error
[  418.548873][ T9612] binder: 9611:9612 ioctl c00c620f 2000000002c0 returned -22
[  418.560629][ T9613] netlink: 68 bytes leftover after parsing attributes in process `syz.2.736'.
[  418.572184][    T9] libceph: connect (1)[c::]:6789 error -101
[  418.578279][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  418.604087][    T9] usb 5-1: USB disconnect, device number 33
[  418.720334][ T9610] ceph: No mds server is up or the cluster is laggy
[  419.107611][ T9619] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  420.261593][ T9644] FAULT_INJECTION: forcing a failure.
[  420.261593][ T9644] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  420.274852][ T9644] CPU: 0 UID: 0 PID: 9644 Comm: syz.3.743 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  420.274875][ T9644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  420.274883][ T9644] Call Trace:
[  420.274887][ T9644]  <TASK>
[  420.274891][ T9644]  dump_stack_lvl+0x16c/0x1f0
[  420.274912][ T9644]  should_fail_ex+0x512/0x640
[  420.274929][ T9644]  _copy_from_user+0x2e/0xd0
[  420.274946][ T9644]  get_bitmap+0xdf/0x1a0
[  420.274961][ T9644]  get_nodes+0x1df/0x210
[  420.274975][ T9644]  ? __pfx_get_nodes+0x10/0x10
[  420.274989][ T9644]  ? rcu_is_watching+0x12/0xc0
[  420.275003][ T9644]  ? irqentry_exit+0x3b/0x90
[  420.275018][ T9644]  ? lockdep_hardirqs_on+0x7c/0x110
[  420.275035][ T9644]  kernel_migrate_pages+0xeb/0x750
[  420.275052][ T9644]  ? __pfx_kernel_migrate_pages+0x10/0x10
[  420.275072][ T9644]  __x64_sys_migrate_pages+0x96/0x100
[  420.275089][ T9644]  ? lockdep_hardirqs_on+0x7c/0x110
[  420.275104][ T9644]  do_syscall_64+0xcd/0x4c0
[  420.275121][ T9644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.275132][ T9644] RIP: 0033:0x7f11c778e929
[  420.275141][ T9644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.275152][ T9644] RSP: 002b:00007f11c55d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100
[  420.275162][ T9644] RAX: ffffffffffffffda RBX: 00007f11c79b6080 RCX: 00007f11c778e929
[  420.275169][ T9644] RDX: 0000200000000000 RSI: 0000000000000005 RDI: 0000000000000000
[  420.275175][ T9644] RBP: 00007f11c55d5090 R08: 0000000000000000 R09: 0000000000000000
[  420.275181][ T9644] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  420.275187][ T9644] R13: 0000000000000000 R14: 00007f11c79b6080 R15: 00007fff04148d98
[  420.275201][ T9644]  </TASK>
[  421.270222][ T9651] FAULT_INJECTION: forcing a failure.
[  421.270222][ T9651] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  421.283394][ T9651] CPU: 1 UID: 0 PID: 9651 Comm: syz.3.744 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  421.283420][ T9651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  421.283430][ T9651] Call Trace:
[  421.283437][ T9651]  <TASK>
[  421.283444][ T9651]  dump_stack_lvl+0x16c/0x1f0
[  421.283475][ T9651]  should_fail_ex+0x512/0x640
[  421.283501][ T9651]  strncpy_from_user+0x3b/0x2e0
[  421.283526][ T9651]  getname_flags.part.0+0x8f/0x550
[  421.283548][ T9651]  getname_flags+0x93/0xf0
[  421.283570][ T9651]  __x64_sys_mknod+0x74/0xb0
[  421.283594][ T9651]  do_syscall_64+0xcd/0x4c0
[  421.283621][ T9651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.283639][ T9651] RIP: 0033:0x7f11c778e929
[  421.283653][ T9651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.283671][ T9651] RSP: 002b:00007f11c55b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  421.283688][ T9651] RAX: ffffffffffffffda RBX: 00007f11c79b6160 RCX: 00007f11c778e929
[  421.283699][ T9651] RDX: 0000000000000706 RSI: 00000000ffff2000 RDI: 00002000000002c0
[  421.283710][ T9651] RBP: 00007f11c55b4090 R08: 0000000000000000 R09: 0000000000000000
[  421.283721][ T9651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  421.283731][ T9651] R13: 0000000000000000 R14: 00007f11c79b6160 R15: 00007fff04148d98
[  421.283755][ T9651]  </TASK>
[  421.432840][    C1] vkms_vblank_simulate: vblank timer overrun
[  422.803310][ T9664] bridge4: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  422.902400][ T9670] FAULT_INJECTION: forcing a failure.
[  422.902400][ T9670] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  422.975666][ T9670] CPU: 1 UID: 0 PID: 9670 Comm: syz.3.748 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  422.975694][ T9670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  422.975704][ T9670] Call Trace:
[  422.975711][ T9670]  <TASK>
[  422.975717][ T9670]  dump_stack_lvl+0x16c/0x1f0
[  422.975749][ T9670]  should_fail_ex+0x512/0x640
[  422.975776][ T9670]  _copy_to_user+0x32/0xd0
[  422.975803][ T9670]  simple_read_from_buffer+0xcb/0x170
[  422.975829][ T9670]  proc_fail_nth_read+0x197/0x270
[  422.975851][ T9670]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  422.975874][ T9670]  ? rw_verify_area+0xcf/0x680
[  422.975891][ T9670]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  422.975910][ T9670]  vfs_read+0x1e1/0xc60
[  422.975933][ T9670]  ? __pfx___mutex_lock+0x10/0x10
[  422.975956][ T9670]  ? __pfx_vfs_read+0x10/0x10
[  422.975983][ T9670]  ? __fget_files+0x20e/0x3c0
[  422.976010][ T9670]  ksys_read+0x12a/0x250
[  422.976031][ T9670]  ? __pfx_ksys_read+0x10/0x10
[  422.976058][ T9670]  do_syscall_64+0xcd/0x4c0
[  422.976088][ T9670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.976105][ T9670] RIP: 0033:0x7f11c778d33c
[  422.976119][ T9670] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  422.976136][ T9670] RSP: 002b:00007f11c55d5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  422.976154][ T9670] RAX: ffffffffffffffda RBX: 00007f11c79b6080 RCX: 00007f11c778d33c
[  422.976166][ T9670] RDX: 000000000000000f RSI: 00007f11c55d50a0 RDI: 0000000000000004
[  422.976176][ T9670] RBP: 00007f11c55d5090 R08: 0000000000000000 R09: 0000000000000000
[  422.976186][ T9670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  422.976197][ T9670] R13: 0000000000000001 R14: 00007f11c79b6080 R15: 00007fff04148d98
[  422.976221][ T9670]  </TASK>
[  423.161642][    C1] vkms_vblank_simulate: vblank timer overrun
[  423.248639][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  423.248655][   T30] audit: type=1400 audit(1750229995.132:264): avc:  denied  { block_suspend } for  pid=9678 comm="syz.3.753" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  423.292680][    C1] vkms_vblank_simulate: vblank timer overrun
[  423.321089][ T5942] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  423.335183][   T30] audit: type=1326 audit(1750229995.222:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9678 comm="syz.3.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c778e929 code=0x7ffc0000
[  423.364761][   T30] audit: type=1326 audit(1750229995.242:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9678 comm="syz.3.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f11c778e929 code=0x7ffc0000
[  423.431077][   T30] audit: type=1326 audit(1750229995.242:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9678 comm="syz.3.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c778e929 code=0x7ffc0000
[  423.459921][   T30] audit: type=1326 audit(1750229995.242:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9678 comm="syz.3.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f11c778e929 code=0x7ffc0000
[  423.485889][   T30] audit: type=1326 audit(1750229995.242:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9678 comm="syz.3.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c778e929 code=0x7ffc0000
[  423.509079][    C1] vkms_vblank_simulate: vblank timer overrun
[  423.529065][ T5942] usb 5-1: Using ep0 maxpacket: 16
[  423.540660][ T5942] usb 5-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  423.568726][   T30] audit: type=1326 audit(1750229995.242:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9678 comm="syz.3.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7f11c778e929 code=0x7ffc0000
[  423.591898][    C1] vkms_vblank_simulate: vblank timer overrun
[  423.598504][ T5942] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  423.613639][ T5942] usb 5-1: config 0 descriptor??
[  423.634746][   T30] audit: type=1326 audit(1750229995.252:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9678 comm="syz.3.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c778e929 code=0x7ffc0000
[  423.657960][    C1] vkms_vblank_simulate: vblank timer overrun
[  423.667971][   T30] audit: type=1326 audit(1750229995.252:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9678 comm="syz.3.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7f11c778e929 code=0x7ffc0000
[  423.691106][    C1] vkms_vblank_simulate: vblank timer overrun
[  423.706588][   T30] audit: type=1326 audit(1750229995.252:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9678 comm="syz.3.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c778e929 code=0x7ffc0000
[  423.796833][ T9688] FAULT_INJECTION: forcing a failure.
[  423.796833][ T9688] name failslab, interval 1, probability 0, space 0, times 0
[  423.810175][ T9688] CPU: 0 UID: 0 PID: 9688 Comm: syz.3.755 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  423.810199][ T9688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  423.810210][ T9688] Call Trace:
[  423.810216][ T9688]  <TASK>
[  423.810223][ T9688]  dump_stack_lvl+0x16c/0x1f0
[  423.810256][ T9688]  should_fail_ex+0x512/0x640
[  423.810282][ T9688]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  423.810304][ T9688]  should_failslab+0xc2/0x120
[  423.810329][ T9688]  __kmalloc_cache_noprof+0x6a/0x3e0
[  423.810349][ T9688]  ? percpu_ref_init+0xec/0x410
[  423.810370][ T9688]  ? __pfx_free_ioctx_users+0x10/0x10
[  423.810393][ T9688]  percpu_ref_init+0xec/0x410
[  423.810411][ T9688]  ? __init_waitqueue_head+0xca/0x150
[  423.810434][ T9688]  ioctx_alloc+0x2db/0x2120
[  423.810462][ T9688]  ? lock_acquire+0x62/0x350
[  423.810487][ T9688]  ? find_held_lock+0x2b/0x80
[  423.810506][ T9688]  ? __pfx_ioctx_alloc+0x10/0x10
[  423.810536][ T9688]  ? __might_fault+0x13b/0x190
[  423.810564][ T9688]  __x64_sys_io_setup+0xc9/0x210
[  423.810588][ T9688]  do_syscall_64+0xcd/0x4c0
[  423.810613][ T9688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.810631][ T9688] RIP: 0033:0x7f11c778e929
[  423.810645][ T9688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.810662][ T9688] RSP: 002b:00007f11c55d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  423.810680][ T9688] RAX: ffffffffffffffda RBX: 00007f11c79b6080 RCX: 00007f11c778e929
[  423.810691][ T9688] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000202
[  423.810701][ T9688] RBP: 00007f11c55d5090 R08: 0000000000000000 R09: 0000000000000000
[  423.810711][ T9688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  423.810721][ T9688] R13: 0000000000000000 R14: 00007f11c79b6080 R15: 00007fff04148d98
[  423.810746][ T9688]  </TASK>
[  424.206349][ T5942] usbhid 5-1:0.0: can't add hid device: -71
[  424.212337][ T5942] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  424.222026][ T5942] usb 5-1: USB disconnect, device number 34
[  425.376480][ T9707] workqueue: Failed to create a rescuer kthread for wq "bond9": -EINTR
[  425.515850][ T9718] netlink: 'syz.3.761': attribute type 10 has an invalid length.
[  425.532996][ T9718] batman_adv: batadv0: Adding interface: wlan0
[  425.539234][ T9718] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  425.565777][ T9718] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active
[  425.710738][ T5942] libceph: connect (1)[c::]:6789 error -101
[  425.720585][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  426.834264][ T5942] libceph: connect (1)[c::]:6789 error -101
[  426.840402][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  426.853655][ T9723] ceph: No mds server is up or the cluster is laggy
[  426.886859][ T5942] libceph: connect (1)[c::]:6789 error -101
[  426.895280][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  427.291723][ T9730] ceph: No mds server is up or the cluster is laggy
[  427.329429][ T5942] libceph: connect (1)[c::]:6789 error -101
[  427.334595][ T5922] libceph: connect (1)[c::]:6789 error -101
[  427.339750][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  427.341558][ T5922] libceph: mon0 (1)[c::]:6789 connect error
[  427.498689][ T9748] netlink: 20 bytes leftover after parsing attributes in process `syz.2.768'.
[  427.621568][ T5922] libceph: connect (1)[c::]:6789 error -101
[  427.627727][ T5922] libceph: mon0 (1)[c::]:6789 connect error
[  427.766338][ T5942] libceph: connect (1)[c::]:6789 error -101
[  427.780517][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  427.788575][ T9737] ceph: No mds server is up or the cluster is laggy
[  427.800281][ T9760] netlink: 68 bytes leftover after parsing attributes in process `syz.1.767'.
[  427.818244][ T9759] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  427.901168][ T5895] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  428.041413][   T10] libceph: connect (1)[c::]:6789 error -101
[  428.145809][ T5895] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  428.157321][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  428.910620][ T9753] ceph: No mds server is up or the cluster is laggy
[  430.378681][ T5895] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.529092][ T5895] usb 3-1: config 0 descriptor??
[  430.565711][ T5895] usb 3-1: can't set config #0, error -71
[  430.596208][ T5895] usb 3-1: USB disconnect, device number 30
[  430.685252][ T9776] netlink: 4 bytes leftover after parsing attributes in process `syz.1.776'.
[  430.765973][   T30] kauditd_printk_skb: 25 callbacks suppressed
[  430.766012][   T30] audit: type=1400 audit(1750230002.652:299): avc:  denied  { setopt } for  pid=9775 comm="syz.1.776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  430.902480][   T30] audit: type=1400 audit(1750230002.712:300): avc:  denied  { connect } for  pid=9775 comm="syz.1.776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  430.950619][ T9782] usb usb5: selecting invalid altsetting 2
[  431.022473][   T30] audit: type=1400 audit(1750230002.752:301): avc:  denied  { write } for  pid=9775 comm="syz.1.776" name="001" dev="devtmpfs" ino=734 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  431.045241][    C0] vkms_vblank_simulate: vblank timer overrun
[  431.259033][   T30] audit: type=1400 audit(1750230002.862:302): avc:  denied  { write } for  pid=9775 comm="syz.1.776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  431.278285][    C0] vkms_vblank_simulate: vblank timer overrun
[  431.709076][ T9787] netlink: 4 bytes leftover after parsing attributes in process `syz.3.779'.
[  431.734203][ T5887] libceph: connect (1)[c::]:6789 error -101
[  431.744126][ T5887] libceph: mon0 (1)[c::]:6789 connect error
[  431.885999][ T9792] netlink: 8 bytes leftover after parsing attributes in process `syz.1.781'.
[  431.957488][ T9792] openvswitch: netlink: Invalid MD length 0 for MD type 0
[  431.983858][ T9792] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  432.012849][ T9792] netlink: 'syz.1.781': attribute type 1 has an invalid length.
[  432.022279][ T5887] libceph: connect (1)[c::]:6789 error -101
[  432.028363][ T5887] libceph: mon0 (1)[c::]:6789 connect error
[  432.042763][   T30] audit: type=1400 audit(1750230003.932:303): avc:  denied  { bind } for  pid=9796 comm="syz.3.783" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  432.108687][   T30] audit: type=1400 audit(1750230003.962:304): avc:  denied  { listen } for  pid=9796 comm="syz.3.783" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  432.127984][    C0] vkms_vblank_simulate: vblank timer overrun
[  432.167131][   T30] audit: type=1400 audit(1750230003.962:305): avc:  denied  { getopt } for  pid=9796 comm="syz.3.783" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  432.201616][ T9801] bond3: (slave gretap1): making interface the new active one
[  432.254032][ T9801] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  432.337181][ T5895] libceph: connect (1)[c::]:6789 error -101
[  432.384066][ T9784] ceph: No mds server is up or the cluster is laggy
[  432.411806][ T5895] libceph: mon0 (1)[c::]:6789 connect error
[  432.707785][   T42] libceph: connect (1)[c::]:6789 error -101
[  432.716611][   T42] libceph: mon0 (1)[c::]:6789 connect error
[  432.750167][   T30] audit: type=1400 audit(1750230004.632:306): avc:  denied  { write } for  pid=9817 comm="syz.3.785" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  432.774089][   T30] audit: type=1400 audit(1750230004.632:307): avc:  denied  { create } for  pid=9816 comm="syz.2.787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  432.795266][   T30] audit: type=1400 audit(1750230004.632:308): avc:  denied  { ioctl } for  pid=9816 comm="syz.2.787" path="socket:[21114]" dev="sockfs" ino=21114 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  432.965205][ T5887] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  433.201430][ T9805] ceph: No mds server is up or the cluster is laggy
[  433.965240][   T42] libceph: connect (1)[c::]:6789 error -101
[  433.972221][   T42] libceph: mon0 (1)[c::]:6789 connect error
[  434.003002][ T5887] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  434.024345][ T5887] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  434.621796][ T9832] FAULT_INJECTION: forcing a failure.
[  434.621796][ T9832] name failslab, interval 1, probability 0, space 0, times 0
[  434.634584][ T9832] CPU: 1 UID: 0 PID: 9832 Comm: syz.2.790 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  434.634610][ T9832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  434.634620][ T9832] Call Trace:
[  434.634626][ T9832]  <TASK>
[  434.634633][ T9832]  dump_stack_lvl+0x16c/0x1f0
[  434.634664][ T9832]  should_fail_ex+0x512/0x640
[  434.634686][ T9832]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  434.634713][ T9832]  should_failslab+0xc2/0x120
[  434.634738][ T9832]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  434.634761][ T9832]  ? alloc_empty_file+0x55/0x1e0
[  434.634781][ T9832]  alloc_empty_file+0x55/0x1e0
[  434.634799][ T9832]  path_openat+0xda/0x2cb0
[  434.634820][ T9832]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  434.634848][ T9832]  ? __pfx_path_openat+0x10/0x10
[  434.634873][ T9832]  ? __lock_acquire+0xb8a/0x1c90
[  434.634903][ T9832]  do_filp_open+0x20b/0x470
[  434.634927][ T9832]  ? __pfx_do_filp_open+0x10/0x10
[  434.634969][ T9832]  ? alloc_fd+0x471/0x7d0
[  434.635000][ T9832]  do_sys_openat2+0x11b/0x1d0
[  434.635016][ T9832]  ? __pfx_do_sys_openat2+0x10/0x10
[  434.635035][ T9832]  ? __fget_files+0x20e/0x3c0
[  434.635064][ T9832]  __x64_sys_openat+0x174/0x210
[  434.635081][ T9832]  ? __pfx___x64_sys_openat+0x10/0x10
[  434.635103][ T9832]  ? ksys_write+0x1ac/0x250
[  434.635134][ T9832]  do_syscall_64+0xcd/0x4c0
[  434.635163][ T9832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  434.635181][ T9832] RIP: 0033:0x7f0d9d18d290
[  434.635196][ T9832] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  434.635213][ T9832] RSP: 002b:00007f0d9e08bb70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  434.635231][ T9832] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0d9d18d290
[  434.635242][ T9832] RDX: 0000000000000002 RSI: 00007f0d9e08bc10 RDI: 00000000ffffff9c
[  434.635253][ T9832] RBP: 00007f0d9e08bc10 R08: 0000000000000000 R09: 00007f0d9e08b987
[  434.635264][ T9832] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  434.635274][ T9832] R13: 0000000000000000 R14: 00007f0d9d3b6160 R15: 00007ffd2b44a548
[  434.635299][ T9832]  </TASK>
[  434.985455][ T5887] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  434.995314][ T5887] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  435.008941][ T5887] usb 2-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  435.018179][ T5887] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  435.028003][ T5887] usb 2-1: Product: syz
[  435.032648][ T5887] usb 2-1: Manufacturer: syz
[  435.037303][ T5887] usb 2-1: SerialNumber: syz
[  435.493749][ T9832] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[  435.529521][ T5887] usb 2-1: config 0 descriptor??
[  435.551011][ T5822] libceph: connect (1)[c::]:6789 error -101
[  435.591644][ T9829] ceph: No mds server is up or the cluster is laggy
[  435.616694][ T5822] libceph: mon0 (1)[c::]:6789 connect error
[  435.687270][ T5887] usb 2-1: can't set config #0, error -71
[  435.741587][ T5887] usb 2-1: USB disconnect, device number 47
[  436.305756][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  436.305771][   T30] audit: type=1400 audit(1750230008.192:313): avc:  denied  { create } for  pid=9850 comm="syz.0.794" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  436.437724][ T9859] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  436.450459][ T9859] netlink: 8 bytes leftover after parsing attributes in process `syz.2.797'.
[  436.508852][   T30] audit: type=1400 audit(1750230008.252:314): avc:  denied  { setopt } for  pid=9856 comm="syz.3.796" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  436.528250][    C0] vkms_vblank_simulate: vblank timer overrun
[  436.534376][   T30] audit: type=1400 audit(1750230008.322:315): avc:  denied  { ioctl } for  pid=9858 comm="syz.2.797" path="socket:[22114]" dev="sockfs" ino=22114 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  437.561950][ T5822] libceph: connect (1)[c::]:6789 error -101
[  437.568059][ T5822] libceph: mon0 (1)[c::]:6789 connect error
[  437.971303][ T9866] netlink: 68 bytes leftover after parsing attributes in process `syz.1.795'.
[  438.599468][ T5822] libceph: connect (1)[c::]:6789 error -101
[  438.605936][ T5822] libceph: mon0 (1)[c::]:6789 connect error
[  438.750912][ T9862] ceph: No mds server is up or the cluster is laggy
[  438.955256][ T5822] libceph: connect (1)[c::]:6789 error -101
[  438.961507][ T5822] libceph: mon0 (1)[c::]:6789 connect error
[  438.977891][ T9861] loop9: detected capacity change from 0 to 8
[  438.988970][ T5824] Dev loop9: unable to read RDB block 8
[  439.001053][ T5824]  loop9: unable to read partition table
[  439.019276][ T9867] ceph: No mds server is up or the cluster is laggy
[  439.681357][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  439.687678][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  439.699520][ T5824] loop9: partition table beyond EOD, truncated
[  439.739787][ T9861] Dev loop9: unable to read RDB block 8
[  439.932898][ T9861]  loop9: unable to read partition table
[  439.939704][ T9861] loop9: partition table beyond EOD, truncated
[  439.953137][ T9861] loop_reread_partitions: partition scan of loop9 (þ被xü—ŸÑà– ) failed (rc=-5)
[  440.336674][ T5895] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  440.629063][   T30] audit: type=1400 audit(1750230012.512:316): avc:  denied  { unlink } for  pid=5812 comm="syz-executor" name="file0" dev="tmpfs" ino=833 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  440.854786][ T5895] usb 4-1: config 7 descriptor has 1 excess byte, ignoring
[  440.929156][ T9902] fuse: Bad value for 'fd'
[  441.062179][ T5895] usb 4-1: config 7 has 1 interface, different from the descriptor's value: 2
[  441.103831][ T5895] usb 4-1: New USB device found, idVendor=19d2, idProduct=1275, bcdDevice= 7.84
[  441.129953][ T5895] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  441.173719][ T5895] usb 4-1: Product: syz
[  441.178044][ T5895] usb 4-1: Manufacturer: syz
[  441.183066][ T5895] usb 4-1: SerialNumber: syz
[  441.194012][ T5895] rndis_host 4-1:7.0: skipping garbage
[  441.199590][ T5895] usb 4-1: bad CDC descriptors
[  441.211262][ T5895] option 4-1:7.0: GSM modem (1-port) converter detected
[  441.433598][ T9888] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  441.446693][ T9888] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  441.465846][ T5922] usb 4-1: USB disconnect, device number 31
[  441.474076][ T5922] option 4-1:7.0: device disconnected
[  441.926617][ T9912] netlink: 68 bytes leftover after parsing attributes in process `syz.0.805'.
[  442.134638][ T5922] libceph: connect (1)[c::]:6789 error -101
[  442.812041][ T5922] libceph: mon0 (1)[c::]:6789 connect error
[  443.065023][ T9911] ceph: No mds server is up or the cluster is laggy
[  443.097842][ T5922] libceph: connect (1)[c::]:6789 error -101
[  443.165320][ T5922] libceph: mon0 (1)[c::]:6789 connect error
[  443.176288][ T9916] ceph: No mds server is up or the cluster is laggy
[  443.443332][ T9931] Illegal XDP return value 4294967294 on prog  (id 78) dev N/A, expect packet loss!
[  445.142836][   T30] audit: type=1400 audit(1750230016.732:317): avc:  denied  { audit_write } for  pid=9933 comm="syz.2.811" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  445.892999][ T9929] process 'syz.0.809' launched './file2' with NULL argv: empty string added
[  445.909568][   T30] audit: type=1400 audit(1750230017.792:318): avc:  denied  { execute_no_trans } for  pid=9927 comm="syz.0.809" path="/165/file2" dev="tmpfs" ino=852 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  447.966224][ T5822] libceph: connect (1)[c::]:6789 error -101
[  448.014680][   T30] audit: type=1400 audit(1750230019.902:319): avc:  denied  { bind } for  pid=9966 comm="syz.2.818" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  448.051794][ T5822] libceph: mon0 (1)[c::]:6789 connect error
[  448.322579][ T5922] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[  448.415192][ T9971] ceph: No mds server is up or the cluster is laggy
[  448.415475][   T10] libceph: connect (1)[c::]:6789 error -101
[  448.451753][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  448.569111][ T5922] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88
[  448.581534][ T5922] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  448.592497][ T5922] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  448.607295][ T5922] usb 1-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[  448.620935][ T5922] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  448.628963][ T5922] usb 1-1: Product: syz
[  448.652253][ T5922] usb 1-1: Manufacturer: syz
[  448.800076][ T5922] usb 1-1: SerialNumber: syz
[  448.806986][ T5922] usb 1-1: config 0 descriptor??
[  448.815204][ T5922] iguanair 1-1:0.0: probe with driver iguanair failed with error -12
[  449.586597][ T5895] usb 1-1: USB disconnect, device number 41
[  449.719212][ T5887] libceph: connect (1)[c::]:6789 error -101
[  450.305086][ T5887] libceph: mon0 (1)[c::]:6789 connect error
[  450.311156][ T9993] ceph: No mds server is up or the cluster is laggy
[  451.165999][T10004] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  452.144841][T10012] netlink: 68 bytes leftover after parsing attributes in process `syz.4.823'.
[  452.168914][ T5895] libceph: connect (1)[c::]:6789 error -101
[  452.176794][ T5895] libceph: mon0 (1)[c::]:6789 connect error
[  452.449011][   T30] audit: type=1400 audit(1750230024.332:321): avc:  denied  { remount } for  pid=10014 comm="syz.3.824" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  452.498885][T10010] ceph: No mds server is up or the cluster is laggy
[  452.539498][   T30] audit: type=1400 audit(1750230024.332:320): avc:  denied  { mount } for  pid=10014 comm="syz.3.824" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  453.127577][   T30] audit: type=1400 audit(1750230024.542:322): avc:  denied  { unmount } for  pid=5815 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  453.400988][T10031] FAULT_INJECTION: forcing a failure.
[  453.400988][T10031] name failslab, interval 1, probability 0, space 0, times 0
[  453.413972][T10031] CPU: 1 UID: 0 PID: 10031 Comm: syz.2.828 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  453.413997][T10031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  453.414007][T10031] Call Trace:
[  453.414013][T10031]  <TASK>
[  453.414020][T10031]  dump_stack_lvl+0x16c/0x1f0
[  453.414051][T10031]  should_fail_ex+0x512/0x640
[  453.414073][T10031]  ? fs_reclaim_acquire+0xae/0x150
[  453.414093][T10031]  should_failslab+0xc2/0x120
[  453.414117][T10031]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  453.414139][T10031]  ? __init_rwsem+0xfd/0x1b0
[  453.414155][T10031]  ? security_inode_alloc+0x3b/0x2b0
[  453.414182][T10031]  security_inode_alloc+0x3b/0x2b0
[  453.414204][T10031]  inode_init_always_gfp+0xce4/0x1030
[  453.414232][T10031]  alloc_inode+0x86/0x240
[  453.414251][T10031]  sock_alloc+0x40/0x280
[  453.414271][T10031]  __sock_create+0xc1/0x8d0
[  453.414297][T10031]  mptcp_subflow_create_socket+0xf5/0xed0
[  453.414320][T10031]  ? __pfx___schedule+0x10/0x10
[  453.414347][T10031]  ? __pfx_mptcp_subflow_create_socket+0x10/0x10
[  453.414375][T10031]  __mptcp_nmpc_sk+0x182/0x7d0
[  453.414398][T10031]  ? __pfx___mptcp_nmpc_sk+0x10/0x10
[  453.414418][T10031]  ? lockdep_hardirqs_on+0x7c/0x110
[  453.414446][T10031]  ? __pfx_inet_stream_connect+0x10/0x10
[  453.414476][T10031]  mptcp_connect+0x7f/0xfe0
[  453.414495][T10031]  ? __inet_stream_connect+0xbc/0x1020
[  453.414521][T10031]  __inet_stream_connect+0x3c8/0x1020
[  453.414550][T10031]  ? __pfx___inet_stream_connect+0x10/0x10
[  453.414573][T10031]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  453.414596][T10031]  ? __pfx_inet_stream_connect+0x10/0x10
[  453.414620][T10031]  ? __local_bh_enable_ip+0xa4/0x120
[  453.414646][T10031]  ? __pfx_inet_stream_connect+0x10/0x10
[  453.414668][T10031]  inet_stream_connect+0x57/0xa0
[  453.414692][T10031]  __sys_connect_file+0x141/0x1a0
[  453.414716][T10031]  __sys_connect+0x13b/0x160
[  453.414737][T10031]  ? __pfx___sys_connect+0x10/0x10
[  453.414757][T10031]  ? rcu_is_watching+0x12/0xc0
[  453.414799][T10031]  __x64_sys_connect+0x72/0xb0
[  453.414819][T10031]  ? lockdep_hardirqs_on+0x7c/0x110
[  453.414843][T10031]  do_syscall_64+0xcd/0x4c0
[  453.414882][T10031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.414903][T10031] RIP: 0033:0x7f0d9d18e929
[  453.414918][T10031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  453.414935][T10031] RSP: 002b:00007f0d9e08c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  453.414954][T10031] RAX: ffffffffffffffda RBX: 00007f0d9d3b6160 RCX: 00007f0d9d18e929
[  453.414965][T10031] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000007
[  453.414975][T10031] RBP: 00007f0d9e08c090 R08: 0000000000000000 R09: 0000000000000000
[  453.414985][T10031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  453.414996][T10031] R13: 0000000000000000 R14: 00007f0d9d3b6160 R15: 00007ffd2b44a548
[  453.415020][T10031]  </TASK>
[  453.415209][T10031] socket: no more sockets
[  455.291224][ T5887] usb 4-1: new full-speed USB device number 32 using dummy_hcd
[  458.071143][ T5887] usb 4-1: device descriptor read/all, error -71
[  460.692260][ T5895] libceph: connect (1)[c::]:6789 error -101
[  460.708973][T10066] ceph: No mds server is up or the cluster is laggy
[  460.716210][ T5895] libceph: mon0 (1)[c::]:6789 connect error
[  461.271004][ T5895] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[  461.422593][ T5895] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  461.433630][ T5895] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  461.444433][ T5895] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  461.453542][ T5895] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  461.466429][T10074] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  461.478693][ T5895] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  462.652325][ T5822] usb 1-1: USB disconnect, device number 42
[  473.695947][T10081] netlink: 84 bytes leftover after parsing attributes in process `syz.0.840'.
[  486.618586][   T30] audit: type=1400 audit(1750230058.502:323): avc:  denied  { ioctl } for  pid=10085 comm="syz.0.841" path="socket:[22687]" dev="sockfs" ino=22687 ioctlcmd=0x8b27 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  486.618600][T10091] warning: `syz.0.841' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  487.194193][ T5822] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  489.470818][ T5942] libceph: connect (1)[c::]:6789 error -101
[  489.477852][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  489.483960][ T5822] usb 3-1: Using ep0 maxpacket: 32
[  490.751711][T10104] ceph: No mds server is up or the cluster is laggy
[  490.755868][ T5822] usb 3-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  490.780939][ T5822] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  490.809494][ T5822] usb 3-1: config 0 descriptor??
[  490.821588][ T5822] usb 3-1: can't set config #0, error -71
[  490.835540][ T5822] usb 3-1: USB disconnect, device number 31
[  490.975228][ T5888] libceph: connect (1)[c::]:6789 error -101
[  490.981787][ T5888] libceph: mon0 (1)[c::]:6789 connect error
[  491.705632][ T5888] libceph: connect (1)[c::]:6789 error -101
[  491.718386][ T5888] libceph: mon0 (1)[c::]:6789 connect error
[  491.899418][   T30] audit: type=1400 audit(1750230063.782:324): avc:  denied  { read write } for  pid=10128 comm="syz.0.850" name="mouse0" dev="devtmpfs" ino=981 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  492.235344][ T5942] libceph: connect (1)[c::]:6789 error -101
[  493.121394][ T5942] libceph: mon0 (1)[c::]:6789 connect error
[  493.170585][   T30] audit: type=1400 audit(1750230063.782:325): avc:  denied  { open } for  pid=10128 comm="syz.0.850" path="/dev/input/mouse0" dev="devtmpfs" ino=981 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  493.202289][T10124] ceph: No mds server is up or the cluster is laggy
[  493.386659][   T30] audit: type=1400 audit(1750230065.272:326): avc:  denied  { read } for  pid=10135 comm="syz.2.852" name="loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  494.014649][   T30] audit: type=1400 audit(1750230065.272:327): avc:  denied  { open } for  pid=10135 comm="syz.2.852" path="/dev/loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  494.351479][ T5888] libceph: connect (1)[c::]:6789 error -101
[  494.357563][ T5888] libceph: mon0 (1)[c::]:6789 connect error
[  495.098014][T10134] netlink: 68 bytes leftover after parsing attributes in process `syz.3.851'.
[  495.111119][ T5822] libceph: connect (1)[c::]:6789 error -101
[  495.117716][ T5822] libceph: mon0 (1)[c::]:6789 connect error
[  495.154518][   T30] audit: type=1400 audit(1750230066.952:328): avc:  denied  { ioctl } for  pid=10135 comm="syz.2.852" path="/dev/loop-control" dev="devtmpfs" ino=646 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  495.391354][ T5822] libceph: connect (1)[c::]:6789 error -101
[  495.397492][ T5822] libceph: mon0 (1)[c::]:6789 connect error
[  495.447331][T10137] ceph: No mds server is up or the cluster is laggy
[  496.421061][ T5822] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[  497.472730][ T5822] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  497.492796][ T5822] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  497.510951][ T5822] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  497.520662][ T5822] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  497.540238][ T5822] usb 1-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  497.550036][ T5822] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  497.567161][ T5822] usb 1-1: Product: syz
[  497.573854][ T5822] usb 1-1: Manufacturer: syz
[  497.578474][ T5822] usb 1-1: SerialNumber: syz
[  497.607261][ T5822] usb 1-1: config 0 descriptor??
[  497.625353][ T5933] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  497.639305][ T5822] ums-isd200 1-1:0.0: USB Mass Storage device detected
[  497.783429][ T5933] usb 3-1: Using ep0 maxpacket: 32
[  497.794597][ T5933] usb 3-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  497.819853][ T5933] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  497.944848][ T5822] ums-isd200 1-1:0.0: probe with driver ums-isd200 failed with error -22
[  498.082401][T10157] netlink: 12 bytes leftover after parsing attributes in process `syz.0.857'.
[  498.105695][ T5933] usb 3-1: Product: syz
[  498.109925][ T5933] usb 3-1: Manufacturer: syz
[  498.133684][ T5933] usb 3-1: SerialNumber: syz
[  498.166802][ T5933] usb 3-1: config 0 descriptor??
[  498.189465][ T5933] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  498.234409][T10184] veth23: entered promiscuous mode
[  498.266765][ T5822] usb 1-1: USB disconnect, device number 43
[  498.717765][   T30] audit: type=1400 audit(1750230070.602:329): avc:  denied  { create } for  pid=10187 comm="syz.4.863" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  499.900264][T10170] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  499.954635][T10170] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  500.210973][ T5933] gspca_ov534_9: reg_w failed -71
[  500.292202][T10214] netlink: 28 bytes leftover after parsing attributes in process `syz.1.869'.
[  500.307048][T10214] 9pnet_fd: Insufficient options for proto=fd
[  501.051387][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  501.057713][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  501.271316][T10225] netlink: 'syz.2.874': attribute type 1 has an invalid length.
[  502.225003][ T5933] gspca_ov534_9: Unknown sensor 0000
[  502.225093][ T5933] ov534_9 3-1:0.0: probe with driver ov534_9 failed with error -22
[  502.363329][ T5933] usb 3-1: USB disconnect, device number 32
[  502.380203][T10229] bond5: (slave gretap1): making interface the new active one
[  502.389313][T10229] bond5: (slave gretap1): Enslaving as an active interface with an up link
[  502.550653][T10236] veth1_to_batadv: entered promiscuous mode
[  502.569208][T10236] macsec1: entered promiscuous mode
[  502.610260][T10236] netlink: 8 bytes leftover after parsing attributes in process `syz.3.875'.
[  502.640758][   T30] audit: type=1400 audit(1750230074.522:330): avc:  denied  { shutdown } for  pid=10235 comm="syz.3.875" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  502.666365][T10243] FAULT_INJECTION: forcing a failure.
[  502.666365][T10243] name failslab, interval 1, probability 0, space 0, times 0
[  502.679482][T10243] CPU: 0 UID: 0 PID: 10243 Comm: syz.0.877 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  502.679507][T10243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  502.679517][T10243] Call Trace:
[  502.679523][T10243]  <TASK>
[  502.679529][T10243]  dump_stack_lvl+0x16c/0x1f0
[  502.679561][T10243]  should_fail_ex+0x512/0x640
[  502.679583][T10243]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  502.679608][T10243]  should_failslab+0xc2/0x120
[  502.679634][T10243]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  502.679656][T10243]  ? security_file_alloc+0x34/0x2b0
[  502.679686][T10243]  security_file_alloc+0x34/0x2b0
[  502.679710][T10243]  init_file+0x93/0x4c0
[  502.679738][T10243]  alloc_empty_file+0x73/0x1e0
[  502.679756][T10243]  path_openat+0xda/0x2cb0
[  502.679777][T10243]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.679804][T10243]  ? __pfx_path_openat+0x10/0x10
[  502.679829][T10243]  ? __lock_acquire+0xb8a/0x1c90
[  502.679859][T10243]  do_filp_open+0x20b/0x470
[  502.679883][T10243]  ? __pfx_do_filp_open+0x10/0x10
[  502.679924][T10243]  ? alloc_fd+0x471/0x7d0
[  502.679953][T10243]  do_sys_openat2+0x11b/0x1d0
[  502.679969][T10243]  ? __pfx_do_sys_openat2+0x10/0x10
[  502.679988][T10243]  ? __fget_files+0x20e/0x3c0
[  502.680014][T10243]  __x64_sys_openat+0x174/0x210
[  502.680031][T10243]  ? __pfx___x64_sys_openat+0x10/0x10
[  502.680046][T10243]  ? ksys_write+0x1ac/0x250
[  502.680076][T10243]  do_syscall_64+0xcd/0x4c0
[  502.680103][T10243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.680137][T10243] RIP: 0033:0x7f1266f8e929
[  502.680151][T10243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  502.680167][T10243] RSP: 002b:00007f1267e6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  502.680184][T10243] RAX: ffffffffffffffda RBX: 00007f12671b5fa0 RCX: 00007f1266f8e929
[  502.680194][T10243] RDX: 0040000000040201 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  502.680205][T10243] RBP: 00007f1267e6d090 R08: 0000000000000000 R09: 0000000000000000
[  502.680215][T10243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  502.680225][T10243] R13: 0000000000000000 R14: 00007f12671b5fa0 R15: 00007ffe68cad1c8
[  502.680248][T10243]  </TASK>
[  502.841909][ T5932] usb 2-1: new full-speed USB device number 48 using dummy_hcd
[  503.065908][ T5933] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  503.272247][ T5932] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 41216, setting to 64
[  503.293230][ T5932] usb 2-1: New USB device found, idVendor=046d, idProduct=c52f, bcdDevice= 0.00
[  503.308962][ T5932] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  503.349092][ T5933] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  503.814769][ T5933] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  503.830700][ T5932] usb 2-1: config 0 descriptor??
[  503.858119][T10219] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  503.875218][ T5933] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  503.917820][ T5933] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  503.946430][ T5933] usb 3-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  503.967871][ T5933] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  503.996552][ T5933] usb 3-1: Product: syz
[  504.029303][   T30] audit: type=1400 audit(1750230075.902:331): avc:  denied  { name_bind } for  pid=10268 comm="syz.4.881" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  504.301312][ T5887] libceph: connect (1)[c::]:6789 error -101
[  504.311989][ T5887] libceph: mon0 (1)[c::]:6789 connect error
[  504.650878][ T5933] usb 3-1: Manufacturer: syz
[  504.671999][ T5933] usb 3-1: SerialNumber: syz
[  504.702936][T10272] ceph: No mds server is up or the cluster is laggy
[  504.734053][ T5933] usb 3-1: config 0 descriptor??
[  504.826491][ T5933] ums-isd200 3-1:0.0: USB Mass Storage device detected
[  504.915937][ T5932] usbhid 2-1:0.0: can't add hid device: -71
[  504.957555][ T5932] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  505.010782][ T5932] usb 2-1: USB disconnect, device number 48
[  505.090040][T10284] netlink: 8 bytes leftover after parsing attributes in process `syz.3.883'.
[  505.099513][T10284] netlink: 28 bytes leftover after parsing attributes in process `syz.3.883'.
[  505.126061][ T5933] ums-isd200 3-1:0.0: probe with driver ums-isd200 failed with error -22
[  505.253949][T10292] netlink: 12 bytes leftover after parsing attributes in process `syz.2.876'.
[  505.457586][T10241] veth23: entered promiscuous mode
[  505.474908][T10298] netlink: 4 bytes leftover after parsing attributes in process `syz.3.887'.
[  505.516396][ T5932] usb 3-1: USB disconnect, device number 33
[  505.692867][T10298] hsr_slave_0 (unregistering): left promiscuous mode
[  505.809707][   T30] audit: type=1400 audit(1750230077.692:332): avc:  denied  { ioctl } for  pid=10307 comm="syz.0.890" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 ioctlcmd=0x63a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  506.026953][T10322] netlink: 'syz.0.895': attribute type 1 has an invalid length.
[  506.120271][T10325] trusted_key: syz.2.896 sent an empty control message without MSG_MORE.
[  506.427216][T10336] netlink: 'syz.0.901': attribute type 1 has an invalid length.
[  506.682904][   T30] audit: type=1400 audit(1750230078.572:333): avc:  denied  { read } for  pid=5173 comm="acpid" name="mouse2" dev="devtmpfs" ino=3156 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  506.769325][   T30] audit: type=1400 audit(1750230078.572:334): avc:  denied  { open } for  pid=5173 comm="acpid" path="/dev/input/mouse2" dev="devtmpfs" ino=3156 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  506.833414][   T30] audit: type=1400 audit(1750230078.572:335): avc:  denied  { ioctl } for  pid=5173 comm="acpid" path="/dev/input/mouse2" dev="devtmpfs" ino=3156 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  506.939028][   T30] audit: type=1400 audit(1750230078.652:336): avc:  denied  { connect } for  pid=10346 comm="syz.1.907" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  506.959583][   T30] audit: type=1400 audit(1750230078.682:337): avc:  denied  { write } for  pid=10346 comm="syz.1.907" name="ppp" dev="devtmpfs" ino=710 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  506.987188][   T30] audit: type=1400 audit(1750230078.682:338): avc:  denied  { open } for  pid=10346 comm="syz.1.907" path="/dev/ppp" dev="devtmpfs" ino=710 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  507.033787][   T30] audit: type=1400 audit(1750230078.682:339): avc:  denied  { ioctl } for  pid=10346 comm="syz.1.907" path="/dev/ppp" dev="devtmpfs" ino=710 ioctlcmd=0x7438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  507.057234][T10359] capability: warning: `syz.4.913' uses 32-bit capabilities (legacy support in use)
[  507.090990][   T30] audit: type=1400 audit(1750230078.902:340): avc:  denied  { read } for  pid=10356 comm="syz.0.912" name="sg0" dev="devtmpfs" ino=754 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  507.385176][T10377] program syz.4.921 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  507.633629][T10388] block nbd4: shutting down sockets
[  507.737261][T10398] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  507.804795][T10399] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  508.019407][T10415] pim6reg: entered allmulticast mode
[  508.053960][T10415] pim6reg: left allmulticast mode
[  508.384282][T10441] syz.1.944 uses obsolete (PF_INET,SOCK_PACKET)
[  508.909898][T10462] netlink: 8 bytes leftover after parsing attributes in process `syz.2.953'.
[  508.964258][T10465] netlink: 16 bytes leftover after parsing attributes in process `syz.2.955'.
[  509.260918][ T5942] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[  509.353747][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  509.353762][   T30] audit: type=1400 audit(1750230081.242:359): avc:  denied  { mounton } for  pid=10480 comm="syz.3.963" path="/syzcgroup/unified/syz3" dev="cgroup2" ino=67 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  509.362821][T10481] affs: No valid root block on device nullb0
[  509.384163][    C1] vkms_vblank_simulate: vblank timer overrun
[  509.410524][   T30] audit: type=1800 audit(1750230081.292:360): pid=10483 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.964" name="dmabuf" dev="dmabuf" ino=22 res=0 errno=0
[  509.433328][ T5942] usb 1-1: Using ep0 maxpacket: 32
[  509.444874][ T5942] usb 1-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  509.454268][ T5942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  509.474170][ T5942] usb 1-1: config 0 descriptor??
[  509.490108][ T5942] gspca_main: nw80x-2.14.0 probing 055f:d001
[  510.000940][ T5138] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  510.001128][T10411] Bluetooth: hci5: command 0x1003 tx timeout
[  510.222094][T10497] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  510.269872][   T30] audit: type=1400 audit(1750230082.152:361): avc:  denied  { write } for  pid=10498 comm="syz.3.971" path="socket:[24189]" dev="sockfs" ino=24189 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  510.295385][ T5942] gspca_nw80x: reg_r err -71
[  510.300093][ T5942] nw80x 1-1:0.0: probe with driver nw80x failed with error -71
[  510.309885][ T5942] usb 1-1: USB disconnect, device number 44
[  510.382942][   T30] audit: type=1400 audit(1750230082.272:362): avc:  denied  { connect } for  pid=10500 comm="syz.3.972" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  510.576859][T10505] sp0: Synchronizing with TNC
[  510.597354][T10504] [U] è
[  510.708758][ T5932] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  510.817209][   T30] audit: type=1400 audit(1750230082.702:363): avc:  denied  { bind } for  pid=10515 comm="syz.2.979" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  510.872974][ T5932] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  510.885425][ T5932] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  510.907056][   T30] audit: type=1400 audit(1750230082.782:364): avc:  denied  { mounton } for  pid=10519 comm="syz.2.981" path="/208/file0" dev="tmpfs" ino=1071 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  510.930168][ T5932] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.941846][ T5932] usb 4-1: config 0 descriptor??
[  510.949577][ T5932] pwc: Askey VC010 type 2 USB webcam detected.
[  510.959578][   T30] audit: type=1400 audit(1750230082.842:365): avc:  denied  { write } for  pid=10519 comm="syz.2.981" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  511.021796][   T30] audit: type=1400 audit(1750230082.842:366): avc:  denied  { open } for  pid=10519 comm="syz.2.981" path="/208/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  511.053755][   T30] audit: type=1400 audit(1750230082.932:367): avc:  denied  { unmount } for  pid=5813 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  511.426611][   T30] audit: type=1400 audit(1750230083.312:368): avc:  denied  { read write } for  pid=10542 comm="syz.4.988" name="rdma_cm" dev="devtmpfs" ino=1272 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  511.450836][    C1] vkms_vblank_simulate: vblank timer overrun
[  511.513122][T10546] tipc: Started in network mode
[  511.518369][T10546] tipc: Node identity aaaaaaaaaa35, cluster identity 4711
[  511.530684][T10546] tipc: Enabled bearer <eth:macvlan1>, priority 10
[  511.615913][ T5932] pwc: recv_control_msg error -71 req 02 val 2700
[  511.623074][ T5932] pwc: recv_control_msg error -71 req 02 val 2c00
[  511.629785][ T5932] pwc: recv_control_msg error -71 req 04 val 1000
[  511.636834][ T5932] pwc: recv_control_msg error -71 req 04 val 1300
[  511.643692][ T5932] pwc: recv_control_msg error -71 req 04 val 1400
[  511.650389][ T5932] pwc: recv_control_msg error -71 req 02 val 2000
[  511.657269][ T5932] pwc: recv_control_msg error -71 req 02 val 2100
[  511.681257][ T5932] pwc: recv_control_msg error -71 req 04 val 1500
[  511.688103][ T5932] pwc: recv_control_msg error -71 req 02 val 2500
[  511.701556][ T5932] pwc: recv_control_msg error -71 req 02 val 2400
[  511.711158][ T5932] pwc: recv_control_msg error -71 req 02 val 2600
[  511.728322][ T5932] pwc: recv_control_msg error -71 req 02 val 2900
[  511.744573][ T5932] pwc: recv_control_msg error -71 req 02 val 2800
[  511.755464][ T5932] pwc: recv_control_msg error -71 req 04 val 1100
[  511.762774][ T5932] pwc: recv_control_msg error -71 req 04 val 1200
[  511.787972][ T5932] pwc: Registered as video103.
[  511.801129][ T5887] usb 1-1: new full-speed USB device number 45 using dummy_hcd
[  511.807936][ T5932] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input10
[  511.881621][ T5932] usb 4-1: USB disconnect, device number 34
[  511.985295][ T5887] usb 1-1: config 0 has an invalid interface number: 41 but max is 0
[  512.210621][ T5887] usb 1-1: config 0 has no interface number 0
[  512.642879][ T5932] tipc: Node number set to 10463914
[  512.809311][ T5887] usb 1-1: config 0 interface 41 has no altsetting 0
[  512.818114][ T5887] usb 1-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  512.827361][ T5887] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.835397][ T5887] usb 1-1: Product: syz
[  512.839554][ T5887] usb 1-1: Manufacturer: syz
[  512.844232][ T5887] usb 1-1: SerialNumber: syz
[  512.852781][ T5887] usb 1-1: config 0 descriptor??
[  513.334736][T10598] af_packet: tpacket_rcv: packet too big, clamped from 388 to 4294967272. macoff=96
[  513.486745][ T5887] CoreChips 1-1:0.41: probe with driver CoreChips failed with error -71
[  513.508830][ T5887] usb 1-1: USB disconnect, device number 45
[  513.591112][ T5942] usb 2-1: new full-speed USB device number 49 using dummy_hcd
[  513.773858][ T5942] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  513.784490][ T5942] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  513.803034][ T5942] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  513.813183][ T5942] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  513.821516][ T5942] usb 2-1: Product: syz
[  513.825792][ T5942] usb 2-1: Manufacturer: syz
[  513.830392][ T5942] usb 2-1: SerialNumber: syz
[  514.058304][ T5942] usb 2-1: 0:2 : does not exist
[  514.077145][ T5942] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  514.126502][ T5942] usb 2-1: USB disconnect, device number 49
[  514.177860][T10186] udevd[10186]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  515.502410][T10667] 
[  515.504764][T10667] ======================================================
[  515.511796][T10667] WARNING: possible circular locking dependency detected
[  515.518805][T10667] 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 Not tainted
[  515.525891][T10667] ------------------------------------------------------
[  515.532886][T10667] syz.2.1042/10667 is trying to acquire lock:
[  515.538926][T10667] ffffffff8e72faa8 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470
[  515.548490][T10667] 
[  515.548490][T10667] but task is already holding lock:
[  515.555848][T10667] ffff888026be0a70 (&q->q_usage_counter(io)#49){++++}-{0:0}, at: blk_mq_update_nr_hw_queues+0x275/0xcb0
[  515.567006][T10667] 
[  515.567006][T10667] which lock already depends on the new lock.
[  515.567006][T10667] 
[  515.577389][T10667] 
[  515.577389][T10667] the existing dependency chain (in reverse order) is:
[  515.586381][T10667] 
[  515.586381][T10667] -> #2 (&q->q_usage_counter(io)#49){++++}-{0:0}:
[  515.594967][T10667]        blk_alloc_queue+0x619/0x760
[  515.600244][T10667]        blk_mq_alloc_queue+0x175/0x290
[  515.605774][T10667]        __blk_mq_alloc_disk+0x29/0x120
[  515.611308][T10667]        nbd_dev_add+0x4a0/0xbc0
[  515.616231][T10667]        nbd_init+0x181/0x320
[  515.620898][T10667]        do_one_initcall+0x120/0x6e0
[  515.626165][T10667]        kernel_init_freeable+0x5c2/0x900
[  515.631876][T10667]        kernel_init+0x1c/0x2b0
[  515.636708][T10667]        ret_from_fork+0x5d4/0x6f0
[  515.641806][T10667]        ret_from_fork_asm+0x1a/0x30
[  515.647075][T10667] 
[  515.647075][T10667] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  515.654276][T10667]        fs_reclaim_acquire+0x102/0x150
[  515.659811][T10667]        prepare_alloc_pages+0x162/0x610
[  515.665427][T10667]        __alloc_frozen_pages_noprof+0x18b/0x23f0
[  515.671829][T10667]        __alloc_pages_noprof+0xb/0x1b0
[  515.677359][T10667]        pcpu_populate_chunk+0x110/0xb00
[  515.682982][T10667]        pcpu_alloc_noprof+0x86a/0x1470
[  515.688511][T10667]        xt_percpu_counter_alloc+0x13e/0x1b0
[  515.694484][T10667]        find_check_entry.constprop.0+0xbc/0x9b0
[  515.700801][T10667]        translate_table+0xc98/0x1720
[  515.706162][T10667]        ipt_register_table+0x102/0x430
[  515.711698][T10667]        iptable_raw_table_init+0x63/0x90
[  515.717419][T10667]        xt_find_table_lock+0x2e1/0x520
[  515.722969][T10667]        xt_request_find_table_lock+0x28/0xf0
[  515.729038][T10667]        get_info+0x19c/0x7c0
[  515.733706][T10667]        do_ipt_get_ctl+0x169/0xaa0
[  515.738889][T10667]        nf_getsockopt+0x7c/0xe0
[  515.743810][T10667]        ip_getsockopt+0x18c/0x1e0
[  515.748926][T10667]        tcp_getsockopt+0x9e/0x100
[  515.754029][T10667]        do_sock_getsockopt+0x3fc/0x800
[  515.759557][T10667]        __sys_getsockopt+0x12f/0x260
[  515.764912][T10667]        __x64_sys_getsockopt+0xbd/0x160
[  515.770529][T10667]        do_syscall_64+0xcd/0x4c0
[  515.775559][T10667]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.781957][T10667] 
[  515.781957][T10667] -> #0 (pcpu_alloc_mutex){+.+.}-{4:4}:
[  515.789670][T10667]        __lock_acquire+0x126f/0x1c90
[  515.795032][T10667]        lock_acquire+0x179/0x350
[  515.800046][T10667]        __mutex_lock+0x199/0xb90
[  515.805059][T10667]        pcpu_alloc_noprof+0xb4c/0x1470
[  515.810601][T10667]        sbitmap_init_node+0x2fd/0x770
[  515.816056][T10667]        sbitmap_queue_init_node+0x41/0x560
[  515.821945][T10667]        blk_mq_init_tags+0x12d/0x2b0
[  515.827326][T10667]        blk_mq_alloc_map_and_rqs+0x237/0xf60
[  515.833396][T10667]        __blk_mq_alloc_map_and_rqs+0x128/0x1f0
[  515.839647][T10667]        blk_mq_update_nr_hw_queues+0x4ab/0xcb0
[  515.845878][T10667]        nbd_start_device+0x172/0xcd0
[  515.851239][T10667]        nbd_genl_connect+0x120e/0x1c20
[  515.856775][T10667]        genl_family_rcv_msg_doit+0x206/0x2f0
[  515.862829][T10667]        genl_rcv_msg+0x55c/0x800
[  515.867837][T10667]        netlink_rcv_skb+0x155/0x420
[  515.873103][T10667]        genl_rcv+0x28/0x40
[  515.877595][T10667]        netlink_unicast+0x53d/0x7f0
[  515.882949][T10667]        netlink_sendmsg+0x8d1/0xdd0
[  515.888217][T10667]        ____sys_sendmsg+0xa95/0xc70
[  515.893486][T10667]        ___sys_sendmsg+0x134/0x1d0
[  515.898670][T10667]        __sys_sendmsg+0x16d/0x220
[  515.903768][T10667]        do_syscall_64+0xcd/0x4c0
[  515.908785][T10667]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.915182][T10667] 
[  515.915182][T10667] other info that might help us debug this:
[  515.915182][T10667] 
[  515.925407][T10667] Chain exists of:
[  515.925407][T10667]   pcpu_alloc_mutex --> fs_reclaim --> &q->q_usage_counter(io)#49
[  515.925407][T10667] 
[  515.939036][T10667]  Possible unsafe locking scenario:
[  515.939036][T10667] 
[  515.946463][T10667]        CPU0                    CPU1
[  515.951819][T10667]        ----                    ----
[  515.957162][T10667]   lock(&q->q_usage_counter(io)#49);
[  515.962539][T10667]                                lock(fs_reclaim);
[  515.969026][T10667]                                lock(&q->q_usage_counter(io)#49);
[  515.976919][T10667]   lock(pcpu_alloc_mutex);
[  515.981408][T10667] 
[  515.981408][T10667]  *** DEADLOCK ***
[  515.981408][T10667] 
[  515.989528][T10667] 7 locks held by syz.2.1042/10667:
[  515.994708][T10667]  #0: ffffffff903f1a30 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  516.002875][T10667]  #1: ffffffff903f1ae8 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x577/0x800
[  516.011833][T10667]  #2: ffff888026bce230 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_genl_connect+0xa1a/0x1c20
[  516.021848][T10667]  #3: ffff888026bce188 (&set->update_nr_hwq_lock){++++}-{4:4}, at: blk_mq_update_nr_hw_queues+0x32/0xcb0
[  516.033166][T10667]  #4: ffff888026bce0d8 (&set->tag_list_lock){+.+.}-{4:4}, at: blk_mq_update_nr_hw_queues+0x45/0xcb0
[  516.044035][T10667]  #5: ffff888026be0a70 (&q->q_usage_counter(io)#49){++++}-{0:0}, at: blk_mq_update_nr_hw_queues+0x275/0xcb0
[  516.055593][T10667]  #6: ffff888026be0aa8 (&q->q_usage_counter(queue)){+.+.}-{0:0}, at: blk_mq_update_nr_hw_queues+0x275/0xcb0
[  516.067146][T10667] 
[  516.067146][T10667] stack backtrace:
[  516.073017][T10667] CPU: 1 UID: 0 PID: 10667 Comm: syz.2.1042 Not tainted 6.16.0-rc2-syzkaller-00047-g52da431bf03b #0 PREEMPT(full) 
[  516.073037][T10667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  516.073045][T10667] Call Trace:
[  516.073050][T10667]  <TASK>
[  516.073055][T10667]  dump_stack_lvl+0x116/0x1f0
[  516.073079][T10667]  print_circular_bug+0x275/0x350
[  516.073101][T10667]  check_noncircular+0x14c/0x170
[  516.073125][T10667]  __lock_acquire+0x126f/0x1c90
[  516.073149][T10667]  lock_acquire+0x179/0x350
[  516.073170][T10667]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  516.073189][T10667]  ? __pfx___might_resched+0x10/0x10
[  516.073208][T10667]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  516.073229][T10667]  __mutex_lock+0x199/0xb90
[  516.073250][T10667]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  516.073267][T10667]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  516.073284][T10667]  ? __pfx___mutex_lock+0x10/0x10
[  516.073305][T10667]  ? kasan_save_track+0x14/0x30
[  516.073322][T10667]  ? __kasan_kmalloc+0xaa/0xb0
[  516.073339][T10667]  ? blk_mq_init_tags+0x87/0x2b0
[  516.073358][T10667]  ? blk_mq_update_nr_hw_queues+0x4ab/0xcb0
[  516.073375][T10667]  ? nbd_start_device+0x172/0xcd0
[  516.073396][T10667]  ? netlink_unicast+0x53d/0x7f0
[  516.073411][T10667]  ? netlink_sendmsg+0x8d1/0xdd0
[  516.073424][T10667]  ? ____sys_sendmsg+0xa95/0xc70
[  516.073439][T10667]  ? ___sys_sendmsg+0x134/0x1d0
[  516.073457][T10667]  ? __sys_sendmsg+0x16d/0x220
[  516.073476][T10667]  ? do_syscall_64+0xcd/0x4c0
[  516.073497][T10667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.073513][T10667]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  516.073529][T10667]  pcpu_alloc_noprof+0xb4c/0x1470
[  516.073549][T10667]  sbitmap_init_node+0x2fd/0x770
[  516.073564][T10667]  sbitmap_queue_init_node+0x41/0x560
[  516.073578][T10667]  blk_mq_init_tags+0x12d/0x2b0
[  516.073598][T10667]  blk_mq_alloc_map_and_rqs+0x237/0xf60
[  516.073617][T10667]  ? lockdep_hardirqs_on+0x7c/0x110
[  516.073638][T10667]  __blk_mq_alloc_map_and_rqs+0x128/0x1f0
[  516.073657][T10667]  blk_mq_update_nr_hw_queues+0x4ab/0xcb0
[  516.073677][T10667]  ? nbd_add_socket+0x6d0/0xbe0
[  516.073696][T10667]  nbd_start_device+0x172/0xcd0
[  516.073715][T10667]  ? __nla_parse+0x40/0x60
[  516.073729][T10667]  nbd_genl_connect+0x120e/0x1c20
[  516.073750][T10667]  ? __pfx_nbd_genl_connect+0x10/0x10
[  516.073772][T10667]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  516.073791][T10667]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  516.073812][T10667]  genl_family_rcv_msg_doit+0x206/0x2f0
[  516.073830][T10667]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  516.073847][T10667]  ? genl_get_cmd+0x194/0x580
[  516.073865][T10667]  ? do_syscall_64+0xcd/0x4c0
[  516.073885][T10667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.073898][T10667]  ? __radix_tree_lookup+0x21f/0x2c0
[  516.073919][T10667]  genl_rcv_msg+0x55c/0x800
[  516.073941][T10667]  ? __pfx_genl_rcv_msg+0x10/0x10
[  516.073958][T10667]  ? __pfx_nbd_genl_connect+0x10/0x10
[  516.073980][T10667]  ? __lock_acquire+0x622/0x1c90
[  516.074001][T10667]  netlink_rcv_skb+0x155/0x420
[  516.074016][T10667]  ? __pfx_genl_rcv_msg+0x10/0x10
[  516.074033][T10667]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  516.074051][T10667]  ? netlink_deliver_tap+0x1ae/0xd30
[  516.074064][T10667]  ? is_vmalloc_addr+0x86/0xa0
[  516.074083][T10667]  genl_rcv+0x28/0x40
[  516.074098][T10667]  netlink_unicast+0x53d/0x7f0
[  516.074113][T10667]  ? __pfx_netlink_unicast+0x10/0x10
[  516.074130][T10667]  netlink_sendmsg+0x8d1/0xdd0
[  516.074145][T10667]  ? __pfx_netlink_sendmsg+0x10/0x10
[  516.074163][T10667]  ____sys_sendmsg+0xa95/0xc70
[  516.074178][T10667]  ? copy_msghdr_from_user+0x10a/0x160
[  516.074198][T10667]  ? __pfx_____sys_sendmsg+0x10/0x10
[  516.074215][T10667]  ? __pfx_futex_wake_mark+0x10/0x10
[  516.074231][T10667]  ___sys_sendmsg+0x134/0x1d0
[  516.074251][T10667]  ? __pfx____sys_sendmsg+0x10/0x10
[  516.074270][T10667]  ? __lock_acquire+0x622/0x1c90
[  516.074301][T10667]  __sys_sendmsg+0x16d/0x220
[  516.074321][T10667]  ? __pfx___sys_sendmsg+0x10/0x10
[  516.074341][T10667]  ? __x64_sys_futex+0x1e0/0x4c0
[  516.074367][T10667]  do_syscall_64+0xcd/0x4c0
[  516.074388][T10667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.074403][T10667] RIP: 0033:0x7f0d9d18e929
[  516.074415][T10667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  516.074430][T10667] RSP: 002b:00007f0d9e0ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  516.074443][T10667] RAX: ffffffffffffffda RBX: 00007f0d9d3b5fa0 RCX: 00007f0d9d18e929
[  516.074452][T10667] RDX: 0000000000000000 RSI: 0000200000001ac0 RDI: 0000000000000004
[  516.074461][T10667] RBP: 00007f0d9d210b39 R08: 0000000000000000 R09: 0000000000000000
[  516.074469][T10667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  516.074478][T10667] R13: 0000000000000000 R14: 00007f0d9d3b5fa0 R15: 00007ffd2b44a548
[  516.074491][T10667]  </TASK>
[  516.545247][    C1] vkms_vblank_simulate: vblank timer overrun
[  516.606804][ T5138] block nbd0: Receive control failed (result -32)
[  516.614274][ T5138] block nbd0: Receive control failed (result -32)