last executing test programs:

1m28.424128341s ago: executing program 3 (id=184):
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$IOCTL_STOP_ACCEL_DEV(r0, 0x541b, 0x0) (fail_nth: 3)

1m27.174711799s ago: executing program 3 (id=188):
socket$netlink(0x10, 0x3, 0x15)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
socket$netlink(0x10, 0x3, 0x15)
ioctl$vim2m_VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000100)={0x2, 0x6, 0x26, 0x84080, <r1=>0xffffffffffffffff})
ioctl$XFS_IOC_OPEN_BY_HANDLE(r0, 0xc038586b, &(0x7f0000000380)={r1, &(0x7f0000000140)='*\\\'%,]@#&\x00', 0x20200, &(0x7f00000001c0)={@_ha_fsid={[0x6, 0xf32039e]}, {0x8, 0xa, 0x9, 0x800}}, 0x6, &(0x7f00000002c0)={@_ha_fsid}, &(0x7f0000000300)=0x9})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x10, 0xe, &(0x7f0000000a80)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000000c0)={0x0, 0x0, 0xfffffffd}, 0x10}, 0x94)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x24c01, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000700)={r3, 0x20, &(0x7f00000006c0)={&(0x7f0000000500)=""/232, 0xe8, <r4=>0x0, &(0x7f0000000600)=""/147, 0x93}}, 0xffffffffffffffcc)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r4}, 0x94)
r5 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha1\x00'}, 0x58)
r7 = accept4(r6, 0x0, 0x0, 0x0)
sendto$packet(r7, &(0x7f00000000c0)="37fe0187610488b3d05d92015ee9ad38d34e1b37234adcd7a271dcd87da03ea3c1b0eb949065c29156446f75a0f3128825ba4f61f4b702bf489c5737aa6121dd0090d0729c829124ccc2197c0af536a4bf1add8929dddebfe0edee", 0xfffffffffffffec6, 0x100000000000000, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000140), 0x0)
ioctl$TCSETSF(r5, 0x5404, &(0x7f0000000040)={0xfdfdffff, 0xf, 0xffffffff, 0x40000005, 0xb, "088aefdd2000"})
dup(r5)
r8 = syz_open_dev$cec(&(0x7f00000000c0), 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r8, 0xc05c6104, &(0x7f00000001c0)={"1b000500", 0x100, 0x5, 0x2, 0x800, 0x0, "f759e100edc710000000d9fc6300", '\x00', "0300", "e8cc1304", ["8b59b4d766cbd6e4af000700", "c2fed6e1dcc98a1c907c6b40", '\x00', "0000000000000000001000"]})
semtimedop(0x0, 0x0, 0x0, 0x0)

1m21.633889785s ago: executing program 3 (id=198):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)=<r0=>0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r1 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f00000001c0)={0x5fa, 0xfffffeff, 0x2, {0x1, @raw_data="d1726cfa71d4ed4a810d74ff07ffc9488c698dc4e2b2cff7f2f005ff0fc1da163d964d1ecd6f9f91c61257338d3a02f2243bb2d85ccbaacc4812de079f6b6d42fe5cbbe2b284f9a8e552408c8f46173ce0571ae46e206ba928c34e1c27059ff9d5409ed4440954d1dd4a48452bb880a71684e6270228a478d0e5e4a8de37a918bdf2e18069ff646d4d6edc1ab8b608b5efa46408362badc01775247fd8a0ea6e823c3e0b7cc8438902987e2a0726ec864c6106bb58de94971887df9f5be363eab7f3b1af43096e79"}})
ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f00000003c0)={0x6, 0x8, 0x1, {0x9, @win={{0x1, 0x4ec0, 0x2, 0x5}, 0x2, 0xe, 0x0, 0x4, 0x0, 0x1}}, 0x4})
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x24000840)
fsetxattr$trusted_overlay_origin(r2, &(0x7f0000000080), &(0x7f0000000180), 0x2, 0x1)
openat$comedi(0xffffffffffffff9c, 0x0, 0x8ad01, 0x0)
epoll_create1(0x0)
syz_open_dev$usbmon(&(0x7f00000000c0), 0x0, 0x0)
r4 = socket(0x1e, 0x2, 0x0)
bind$bt_l2cap(r4, &(0x7f0000001500)={0x1f, 0x2, @any, 0x4, 0x1}, 0xe)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r5, &(0x7f0000000140)=[{&(0x7f0000000900)="580000001400192340834b80040d8c560a066e0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200060c10000000010000000000", 0x58}], 0x1)
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)

1m18.845446268s ago: executing program 3 (id=206):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000340)={@flat=@weak_handle={0x77682a85, 0x110a}, @fda={0x66646185, 0x5, 0x2, 0x35}, @flat=@binder={0x73622a85, 0x14, 0x1}}, &(0x7f0000000200)={0x0, 0x18, 0x38}}}], 0x0, 0x0, 0x0}) (fail_nth: 3)

1m18.305651827s ago: executing program 3 (id=212):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000007c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(sm4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000001280)="b7f2288a911993f08d3aaea2bc0000de", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da", 0x33}], 0x2}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}, {&(0x7f0000000280)=""/83, 0x53}], 0x2}, 0x0)

1m18.148726834s ago: executing program 3 (id=214):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="01000000060000000800000008"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1, 0x8, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x16}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}]}, &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = syz_open_dev$radio(&(0x7f0000000580), 0x2, 0x2)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$VIDIOC_S_TUNER(r2, 0x4054561e, &(0x7f0000000700)={0xffffffff, "a055babd9b8c29abbdd772a44c5518bc1661222efc50f8f5555dcf4617da81d7", 0x1, 0x1182, 0x3, 0x6, 0x2, 0x4, 0x4, 0x4})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = socket(0x200000000000011, 0x2, 0xd)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r7=>0x0})
bind$packet(r6, &(0x7f0000000080)={0x11, 0x800, r7, 0x1, 0x0, 0x6, @multicast}, 0x23)
r8 = socket(0x200000000000011, 0x2, 0x3c644)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f00000001c0)={0x0, 0x80000, <r9=>0xffffffffffffffff})
ioctl$DRM_IOCTL_ADD_CTX(r9, 0xc0086420, &(0x7f0000000240))
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r10=>0x0})
bind$packet(r8, &(0x7f0000000080)={0x11, 0x800, r10, 0x1, 0x0, 0x6, @multicast}, 0x23)
syz_emit_ethernet(0x22, &(0x7f0000000080)=ANY=[], 0x0)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r8, 0x84, 0x77, &(0x7f0000000000)={<r11=>0x0, 0x2, 0x2, [0x101, 0x6]}, &(0x7f0000000100)=0xc)
setsockopt$inet_sctp_SCTP_RESET_ASSOC(r8, 0x84, 0x78, &(0x7f0000000180)=r11, 0x4)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)

1m2.955928785s ago: executing program 32 (id=214):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="01000000060000000800000008"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1, 0x8, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x16}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}]}, &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = syz_open_dev$radio(&(0x7f0000000580), 0x2, 0x2)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$VIDIOC_S_TUNER(r2, 0x4054561e, &(0x7f0000000700)={0xffffffff, "a055babd9b8c29abbdd772a44c5518bc1661222efc50f8f5555dcf4617da81d7", 0x1, 0x1182, 0x3, 0x6, 0x2, 0x4, 0x4, 0x4})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = socket(0x200000000000011, 0x2, 0xd)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r7=>0x0})
bind$packet(r6, &(0x7f0000000080)={0x11, 0x800, r7, 0x1, 0x0, 0x6, @multicast}, 0x23)
r8 = socket(0x200000000000011, 0x2, 0x3c644)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f00000001c0)={0x0, 0x80000, <r9=>0xffffffffffffffff})
ioctl$DRM_IOCTL_ADD_CTX(r9, 0xc0086420, &(0x7f0000000240))
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r10=>0x0})
bind$packet(r8, &(0x7f0000000080)={0x11, 0x800, r10, 0x1, 0x0, 0x6, @multicast}, 0x23)
syz_emit_ethernet(0x22, &(0x7f0000000080)=ANY=[], 0x0)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r8, 0x84, 0x77, &(0x7f0000000000)={<r11=>0x0, 0x2, 0x2, [0x101, 0x6]}, &(0x7f0000000100)=0xc)
setsockopt$inet_sctp_SCTP_RESET_ASSOC(r8, 0x84, 0x78, &(0x7f0000000180)=r11, 0x4)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)

8.157349533s ago: executing program 2 (id=401):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000140)={0x100, r0}, 0x0)
ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0)
close(0xffffffffffffffff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
writev(0xffffffffffffffff, &(0x7f0000000880)=[{&(0x7f0000000540)='5', 0x1}], 0x1)
socket$inet_mptcp(0x2, 0x1, 0x106)

7.976560675s ago: executing program 2 (id=404):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
setpriority(0x1, 0xffffffffffffffff, 0x4af)
r0 = socket$netlink(0x10, 0x3, 0xd)
sendmsg$netlink(r0, &(0x7f0000000180)={&(0x7f0000000080)=@proc={0x10, 0x0, 0x25dfdbfd, 0x2000}, 0xc, &(0x7f0000000140)}, 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs$pagemap(0x0, &(0x7f0000000200))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f00000006c0)={0x60, 0x0, &(0x7f0000004000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x7fff, 0x0, 0x0, 0x0, 0x6f, 0x4a, 0x40, 0x4})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = open_tree(0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', 0x9100)
r4 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000180)={{0x2, 0x4e23, @broadcast}, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, 0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'lo\x00'})
fchdir(r3)
close(r3)
r5 = socket(0x1, 0x1, 0x1)
ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000340)=<r6=>0x0)
timer_create(0x7, &(0x7f0000000380)={0x0, 0x37, 0x2, @tid=r6}, &(0x7f00000003c0))
getsockopt$SO_COOKIE(r5, 0x1, 0x47, &(0x7f0000000080), &(0x7f0000000180)=0x8)
ioctl$TCSETSW2(r3, 0x402c542c, &(0x7f0000000300)={0x7, 0xc5c, 0x2, 0x4, 0x5b, "549887a7fc23b453b60d1d24f71b81092f06a0", 0x3ff, 0x3})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000002c0)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x4, 0x7, 0x5})
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
sigaltstack(&(0x7f0000000000)={0x0, 0x3}, 0x0)
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000500000008000600", @ANYRES32=r2, @ANYBLOB="08000300", @ANYRES32], 0x34}, 0x1, 0x0, 0x0, 0x40400b0}, 0x0)

7.864427237s ago: executing program 4 (id=405):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x3, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="1802000002000000000000000200000085000800d00000009500000000000000"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000480)={0x73622a85, 0x1000, 0x40})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000bc0)=[@transaction_sg={0x40486311, {0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @fd, @flat=@weak_handle={0x77682a85, 0xa, 0x1}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})

7.726194707s ago: executing program 4 (id=407):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0f000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x200000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="120100004898b610c2154100201f0102030109021b0001000500ea09040002018c78fd00090582f3c6"], 0x0)
syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000a40)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
r2 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$6lowpan_control(r2, &(0x7f0000000040)='connect aa:aa:aa:aa:aa:11 2', 0x1b)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

5.677532428s ago: executing program 2 (id=420):
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
r0 = syz_open_dev$evdev(&(0x7f0000001900), 0x0, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000300))
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x4)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
read$hidraw(r0, &(0x7f00000008c0)=""/257, 0x101) (fail_nth: 3)

5.194297547s ago: executing program 0 (id=423):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000040)={'\x00', {0x2, 0x4e22, @remote}})
r3 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7ff, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix_mp={0x1, 0xfffff109, 0x3132564e, 0x1, 0xc, [{0x27b, 0x1}, {0x7, 0xffffff65}, {0x3ff, 0x7f}, {0x7, 0xa}, {0x0, 0x10001}, {0x8da, 0x2}, {0xbbf3, 0x80000001}, {0x4b82}], 0xd2, 0x7, 0x9, 0x1, 0x2}})
unshare(0x2040400)
r4 = openat$binderfs(0xffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x1100})
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000480)={0x10, 0x0, &(0x7f0000000240)=[@acquire, @release], 0xfffffffffffffc6e, 0x0, 0x0})
openat$kvm(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
getsockopt$sock_buf(r6, 0x1, 0x1a, &(0x7f0000000100)=""/2, &(0x7f0000000140)=0x2)

5.171661288s ago: executing program 4 (id=424):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000140)={0x100, r0}, 0x0)
ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0)
close(0xffffffffffffffff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
writev(0xffffffffffffffff, &(0x7f0000000880)=[{&(0x7f0000000540)='5', 0x1}], 0x1)
socket$inet_mptcp(0x2, 0x1, 0x106)

5.082319249s ago: executing program 2 (id=425):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14)
recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r3, &(0x7f0000000280)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x7ffffffe, 0x4}, {}, {}, @result={0x1f00}}], 0x1c)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r6 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20)
r7 = accept4$alg(r6, 0x0, 0x0, 0x0)
read$alg(r7, &(0x7f0000002300)=""/4128, 0x1020)
sendmmsg$alg(r7, 0x0, 0x0, 0x43855)
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'veth0_virt_wifi\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r9, {0xa, 0x8}, {}, {0xc, 0x8}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x60000080}, 0x20000000)

4.581620648s ago: executing program 4 (id=429):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
setpriority(0x1, 0xffffffffffffffff, 0x4af)
r0 = socket$netlink(0x10, 0x3, 0xd)
sendmsg$netlink(r0, &(0x7f0000000180)={&(0x7f0000000080)=@proc={0x10, 0x0, 0x25dfdbfd, 0x2000}, 0xc, &(0x7f0000000140)}, 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs$pagemap(0x0, &(0x7f0000000200))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f00000006c0)={0x60, 0x0, &(0x7f0000004000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x7fff, 0x0, 0x0, 0x0, 0x6f, 0x4a, 0x40, 0x4})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = open_tree(0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', 0x9100)
r4 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000180)={{0x2, 0x4e23, @broadcast}, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, 0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'lo\x00'})
fchdir(r3)
close(r3)
r5 = socket(0x1, 0x1, 0x1)
ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000340)=<r6=>0x0)
timer_create(0x7, &(0x7f0000000380)={0x0, 0x37, 0x2, @tid=r6}, &(0x7f00000003c0))
getsockopt$SO_COOKIE(r5, 0x1, 0x47, &(0x7f0000000080), &(0x7f0000000180)=0x8)
ioctl$TCSETSW2(r3, 0x402c542c, &(0x7f0000000300)={0x7, 0xc5c, 0x2, 0x4, 0x5b, "549887a7fc23b453b60d1d24f71b81092f06a0", 0x3ff, 0x3})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000002c0)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x4, 0x7, 0x5})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r7=>0x0})
sigaltstack(&(0x7f0000000000)={0x0, 0x3}, 0x0)
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000000500000008000600", @ANYRES32=r2, @ANYBLOB="08000300", @ANYRES32=r7], 0x34}, 0x1, 0x0, 0x0, 0x40400b0}, 0x0)

4.11636239s ago: executing program 4 (id=433):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0f000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x200000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="120100004898b610c2154100201f0102030109021b0001000500ea09040002018c78fd00090582f3c6"], 0x0)
syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000a40)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
r2 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$6lowpan_control(r2, &(0x7f0000000040)='connect aa:aa:aa:aa:aa:11 2', 0x1b)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

4.064181371s ago: executing program 0 (id=434):
openat$sequencer(0xffffffffffffff9c, 0x0, 0x8002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000080)=[@ioring_restriction_register_op={0x0, 0x21}], 0x1)
r0 = io_uring_setup(0x115a, &(0x7f0000000440)={0x0, 0x8272, 0x40, 0x3, 0x117})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$XFS_IOC_ERROR_CLEARALL(r0, 0x40085875)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000030c0)=[{&(0x7f0000000280)="1400000016001963d25a80648c56915a1974a8d9", 0x14}], 0x1}, 0x44000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000200))

2.34166312s ago: executing program 0 (id=437):
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x3000c085) (async)
rt_sigprocmask(0x1, &(0x7f0000000000), &(0x7f0000000040), 0x8)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000240)={0x0, 0xf0ffffff, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec0012100001400a0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

2.326742362s ago: executing program 1 (id=438):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000140)={0x100, r0}, 0x0)
ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0)
close(0xffffffffffffffff)
r2 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
writev(r2, &(0x7f0000000880)=[{&(0x7f0000000540)='5', 0x1}], 0x1)
socket$inet_mptcp(0x2, 0x1, 0x106)

2.033208232s ago: executing program 1 (id=439):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYRESOCT=0x0], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff30, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockname$unix(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000280)=0x6e)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[], 0x24, 0x0)
mount$bind(0x0, &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x141091, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89d, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000000)=0x6, 0x4)
socket$inet_sctp(0x2, 0x1, 0x84)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1.45982627s ago: executing program 1 (id=440):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000007c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(sm4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000001280)="b7f2288a911993f08d3aaea2bc0000de", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb09587", 0x4b}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da", 0x33}], 0x3}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}, {&(0x7f0000000280)=""/83, 0x53}], 0x2}, 0x0)

1.458842354s ago: executing program 2 (id=441):
r0 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$kcm(0x2, 0x5, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4e23, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x3, 0x0, 0x0, 0x2, 0xffffffffffff8001, 0xfffffffffffffffe}, {0x0, 0x0, 0x200000000000, 0xb}, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3}}, 0xb8}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
sendmsg$inet(r4, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)="9f", 0x1}], 0x1}, 0x3e8)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000000)=0x11)

1.361820363s ago: executing program 0 (id=442):
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_linger(r0, 0x1, 0xd, 0x0, &(0x7f0000000040))

932.676581ms ago: executing program 1 (id=443):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000040)={'\x00', {0x2, 0x4e22, @remote}})
r3 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7ff, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix_mp={0x1, 0xfffff109, 0x3132564e, 0x1, 0xc, [{0x27b, 0x1}, {0x7, 0xffffff65}, {0x3ff, 0x7f}, {0x7, 0xa}, {0x0, 0x10001}, {0x8da, 0x2}, {0xbbf3, 0x80000001}, {0x4b82}], 0xd2, 0x7, 0x9, 0x1, 0x2}})
unshare(0x2040400)
r4 = openat$binderfs(0xffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x1100})
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000480)={0x10, 0x0, &(0x7f0000000240)=[@acquire, @release], 0xfffffffffffffc6e, 0x0, 0x0})
openat$kvm(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
getsockopt$sock_buf(r6, 0x1, 0x1a, &(0x7f0000000100)=""/2, &(0x7f0000000140)=0x2)

841.689418ms ago: executing program 0 (id=444):
socket$packet(0x11, 0x3, 0x300)
r0 = socket$netlink(0x10, 0x3, 0x12)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x4e24, @multicast2}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000009d00), r2)
sendmsg$NLBL_CALIPSO_C_ADD(r2, &(0x7f0000009dc0)={0x0, 0x0, &(0x7f0000009d80)={&(0x7f0000009d40)={0x1c, r3, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000001}, 0xc050)
r4 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
unshare(0x4000400)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x80, 0x4800003e, 0xffffffffffffffff, 0x0)
r6 = fsopen(&(0x7f0000000000)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000040)='source', &(0x7f0000005fc0)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcf\xcb\x92\xf1\x83\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x52)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d05c164a534308", 0x10)
r8 = accept4(r7, 0x0, 0x0, 0x0)
recvmmsg(r8, &(0x7f0000004c00)=[{{0x0, 0x0, &(0x7f0000000240)}, 0x2ca998c3}], 0x4000032, 0x40000021, 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000080)='source', &(0x7f0000000400)='//\xf2/\x06\b\xa30\\\\\x00\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas\x9d\x14\xe3\v\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7Gl\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\n\x8c<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/\xd15)\xeatn\xa3\x88\x13i\xb6\x7ft\x95\xd7\x01o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x94\x00\x00\x00\x00\x00\x00\x00g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xef\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xba\xec\x99@\xd2\t\n\xb1o', 0x0)
writev(r4, &(0x7f0000000880)=[{&(0x7f0000000540)='5', 0x1}], 0x1)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000600)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x4e21, 0x0, 0x0, 0x0, 0x2, 0x30, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x1, 0x4, 0x0, 0x4, 0x0, 0x6}, {0x0, 0x4, 0x400000003, 0xfffffffffffffffc}, 0x0, 0x0, 0x2, 0x0, 0x6}, {{@in=@private=0xa010102, 0x4, 0x32}, 0x0, @in6=@private0, 0x0, 0x4, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe8)
sendmmsg(r1, &(0x7f0000007fc0), 0x400000000000262, 0x1c)

483.760068ms ago: executing program 4 (id=445):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000040)={'\x00', {0x2, 0x4e22, @remote}})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7ff, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix_mp={0x1, 0xfffff109, 0x3132564e, 0x1, 0xc, [{0x27b, 0x1}, {0x7, 0xffffff65}, {0x3ff, 0x7f}, {0x7, 0xa}, {0x0, 0x10001}, {0x8da, 0x2}, {0xbbf3, 0x80000001}, {0x4b82}], 0xd2, 0x7, 0x9, 0x1, 0x2}})
unshare(0x2040400)
r3 = openat$binderfs(0xffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x1100})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000480)={0x10, 0x0, &(0x7f0000000240)=[@acquire, @release], 0xfffffffffffffc6e, 0x0, 0x0})
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$sock_buf(r5, 0x1, 0x1a, &(0x7f0000000100)=""/2, &(0x7f0000000140)=0x2)

429.645965ms ago: executing program 1 (id=446):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYRESOCT=0x0], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff30, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockname$unix(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000280)=0x6e)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[], 0x24, 0x0)
mount$bind(0x0, &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x141091, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89d, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000000)=0x6, 0x4)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)

194.144863ms ago: executing program 2 (id=447):
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0xf32}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_X2APIC_API(r1, 0x4068aea3, &(0x7f0000000140)={0xce, 0x0, 0x5})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r2 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='\x00', &(0x7f0000000140)={0x101800, 0x11, 0x8}, 0x18)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='memory.swap.current\x00', 0x275a, 0x0)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000240), 0x8202, 0x0)
mmap$binder(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x8000000000000000)
write$binfmt_script(r3, &(0x7f0000000100), 0x208e24b)
openat(r2, &(0x7f0000000240)='./file0/file2\x00', 0x421c2, 0x108)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1d0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})
accept$unix(0xffffffffffffffff, &(0x7f0000000280), &(0x7f0000000340)=0x6e)
r5 = add_key$fscrypt_v1(&(0x7f0000000440), &(0x7f0000000480)={'fscrypt:', @auto=[0x0, 0x0, 0x0, 0x34]}, &(0x7f00000000c0)={0x0, "3e82554dc8ccfbc2e85ec82d4ee9df60f6ae16b1a5f2c848722ba3b132e4fde178c945bd950b0477e801fc8a1be9b4ebbe9c2289a6b0aa00"}, 0x48, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000300)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r6, 0x5761, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100"])
add_key$keyring(&(0x7f0000000380), &(0x7f0000000400)={'syz', 0x3}, 0x0, 0x0, r5)
epoll_pwait(0xffffffffffffffff, &(0x7f00000034c0)=[{}, {}, {}, {}, {}, {}], 0x6, 0x2, &(0x7f0000003540), 0x8)

67.922804ms ago: executing program 1 (id=448):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000140)={0x100, r0}, 0x0)
ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0)
close(0xffffffffffffffff)
r2 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
writev(r2, &(0x7f0000000880)=[{&(0x7f0000000540)='5', 0x1}], 0x1)
socket$inet_mptcp(0x2, 0x1, 0x106)

0s ago: executing program 0 (id=449):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYRESOCT=0x0], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff30, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockname$unix(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000280)=0x6e)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[], 0x24, 0x0)
mount$bind(0x0, &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x141091, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89d, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000000)=0x6, 0x4)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)

kernel console output (not intermixed with test programs):

isconnect, device number 2
[  106.509763][ T5605] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  107.525378][ T5971] overlayfs: statfs failed on './file0'
[  110.886984][ T5700] em28xx 1-1:0.0: failed to get i2c transfer status from bridge register (error=-5)
[  110.887016][ T5700] em28xx 1-1:0.0: board has no eeprom
[  111.463164][ T5605] usb 5-1: device not accepting address 3, error -71
[  111.891989][ T5700] em28xx 1-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  111.892023][ T5700] em28xx 1-1:0.0: dvb set to bulk mode.
[  111.931836][ T5619] em28xx 1-1:0.0: Binding DVB extension
[  112.656996][ T5700] usb 1-1: USB disconnect, device number 6
[  112.686075][ T5700] em28xx 1-1:0.0: Disconnecting em28xx
[  112.956301][ T5987] FAULT_INJECTION: forcing a failure.
[  112.956301][ T5987] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  112.956340][ T5987] CPU: 1 UID: 0 PID: 5987 Comm: syz.0.59 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  112.956361][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  112.956372][ T5987] Call Trace:
[  112.956379][ T5987]  <TASK>
[  112.956387][ T5987]  dump_stack_lvl+0xe8/0x150
[  112.956424][ T5987]  should_fail_ex+0x46b/0x600
[  112.956459][ T5987]  prepare_alloc_pages+0x22a/0x6b0
[  112.956490][ T5987]  __alloc_frozen_pages_noprof+0x12f/0x380
[  112.956526][ T5987]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  112.956554][ T5987]  ? __pfx_policy_nodemask+0x10/0x10
[  112.956580][ T5987]  ? _parse_integer_limit+0x1ae/0x1f0
[  112.956615][ T5987]  alloc_pages_mpol+0xd1/0x380
[  112.956642][ T5987]  ___kmalloc_large_node+0x4e/0x120
[  112.956666][ T5987]  __kmalloc_large_node_noprof+0x18/0x90
[  112.956690][ T5987]  __kmalloc_noprof+0x4a3/0x7b0
[  112.956711][ T5987]  ? iovec_from_user+0x87/0x250
[  112.956737][ T5987]  iovec_from_user+0x87/0x250
[  112.956760][ T5987]  __import_iovec+0x163/0x7e0
[  112.956790][ T5987]  import_iovec+0x73/0xa0
[  112.956814][ T5987]  __se_sys_keyctl+0x6da/0x9e0
[  112.956844][ T5987]  ? __pfx___se_sys_keyctl+0x10/0x10
[  112.956890][ T5987]  ? ksys_write+0x248/0x270
[  112.956913][ T5987]  ? __pfx_ksys_write+0x10/0x10
[  112.956939][ T5987]  ? __x64_sys_keyctl+0x20/0xc0
[  112.956962][ T5987]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.956983][ T5987]  do_syscall_64+0x15f/0xf80
[  112.957003][ T5987]  ? trace_irq_disable+0x3b/0x140
[  112.957022][ T5987]  ? clear_bhb_loop+0x40/0x90
[  112.957044][ T5987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.957061][ T5987] RIP: 0033:0x7f838604cdd9
[  112.957084][ T5987] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  112.957098][ T5987] RSP: 002b:00007f83842a6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  112.957122][ T5987] RAX: ffffffffffffffda RBX: 00007f83862c5fa0 RCX: 00007f838604cdd9
[  112.957135][ T5987] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000014
[  112.957147][ T5987] RBP: 00007f83842a6090 R08: 0000000000000000 R09: 0000000000000000
[  112.957158][ T5987] R10: 1000000000000232 R11: 0000000000000246 R12: 0000000000000001
[  112.957170][ T5987] R13: 00007f83862c6038 R14: 00007f83862c5fa0 R15: 00007fff68454f68
[  112.957199][ T5987]  </TASK>
[  113.104970][   T37] kauditd_printk_skb: 55 callbacks suppressed
[  113.104985][   T37] audit: type=1326 audit(1777811881.059:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.105028][   T37] audit: type=1326 audit(1777811881.069:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.105066][   T37] audit: type=1326 audit(1777811881.069:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.108591][   T37] audit: type=1326 audit(1777811881.069:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.108649][   T37] audit: type=1326 audit(1777811881.069:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.108688][   T37] audit: type=1326 audit(1777811881.069:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.108724][   T37] audit: type=1326 audit(1777811881.069:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.108760][   T37] audit: type=1326 audit(1777811881.069:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.108797][   T37] audit: type=1326 audit(1777811881.069:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.332176][   T37] audit: type=1326 audit(1777811881.069:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5988 comm="syz.4.60" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  113.547634][ T5995] binder: 5991:5995 ioctl c0306201 200000000480 returned -14
[  114.282822][ T5999] netlink: 4 bytes leftover after parsing attributes in process `syz.0.62'.
[  114.476741][ T5619] em28xx 1-1:0.0: Registering input extension
[  114.481766][ T5700] em28xx 1-1:0.0: Closing input extension
[  114.660315][ T5700] em28xx 1-1:0.0: Freeing device
[  115.765292][ T6028] netlink: 8 bytes leftover after parsing attributes in process `syz.1.68'.
[  115.765947][ T6028] netlink: 20 bytes leftover after parsing attributes in process `syz.1.68'.
[  116.644188][ T6037] FAULT_INJECTION: forcing a failure.
[  116.644188][ T6037] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.644220][ T6037] CPU: 1 UID: 0 PID: 6037 Comm: syz.3.72 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  116.644241][ T6037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  116.644252][ T6037] Call Trace:
[  116.644260][ T6037]  <TASK>
[  116.644267][ T6037]  dump_stack_lvl+0xe8/0x150
[  116.644296][ T6037]  should_fail_ex+0x46b/0x600
[  116.644331][ T6037]  strncpy_from_user+0x36/0x2b0
[  116.644363][ T6037]  do_getname+0x77/0x250
[  116.644394][ T6037]  path_setxattrat+0x32d/0x440
[  116.644426][ T6037]  ? __pfx_path_setxattrat+0x10/0x10
[  116.644479][ T6037]  ? ksys_write+0x248/0x270
[  116.644503][ T6037]  ? __pfx_ksys_write+0x10/0x10
[  116.644530][ T6037]  __x64_sys_setxattr+0xbc/0xe0
[  116.644549][ T6037]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.644570][ T6037]  do_syscall_64+0x15f/0xf80
[  116.644591][ T6037]  ? trace_irq_disable+0x3b/0x140
[  116.644614][ T6037]  ? clear_bhb_loop+0x40/0x90
[  116.644638][ T6037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.644657][ T6037] RIP: 0033:0x7f276479cdd9
[  116.644674][ T6037] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  116.644689][ T6037] RSP: 002b:00007f27629f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  116.644709][ T6037] RAX: ffffffffffffffda RBX: 00007f2764a15fa0 RCX: 00007f276479cdd9
[  116.644723][ T6037] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000200000000240
[  116.644736][ T6037] RBP: 00007f27629f6090 R08: 0000000000000000 R09: 0000000000000000
[  116.644748][ T6037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.644759][ T6037] R13: 00007f2764a16038 R14: 00007f2764a15fa0 R15: 00007ffdfcaf0798
[  116.644787][ T6037]  </TASK>
[  117.559346][ T6055] netlink: 8 bytes leftover after parsing attributes in process `syz.2.79'.
[  117.637714][ T6063] FAULT_INJECTION: forcing a failure.
[  117.637714][ T6063] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.637743][ T6063] CPU: 0 UID: 0 PID: 6063 Comm: syz.4.81 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  117.637760][ T6063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  117.637768][ T6063] Call Trace:
[  117.637774][ T6063]  <TASK>
[  117.637780][ T6063]  dump_stack_lvl+0xe8/0x150
[  117.637804][ T6063]  should_fail_ex+0x46b/0x600
[  117.637836][ T6063]  _copy_to_user+0x31/0xb0
[  117.637858][ T6063]  simple_read_from_buffer+0xe1/0x170
[  117.637884][ T6063]  proc_fail_nth_read+0x1be/0x230
[  117.637909][ T6063]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  117.637932][ T6063]  ? rw_verify_area+0x2ac/0x4e0
[  117.637948][ T6063]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  117.637970][ T6063]  vfs_read+0x212/0xa80
[  117.637992][ T6063]  ? __pfx_vfs_read+0x10/0x10
[  117.638010][ T6063]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  117.638030][ T6063]  ? lockdep_hardirqs_on+0x7a/0x110
[  117.638046][ T6063]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  117.638062][ T6063]  ? mutex_lock_nested+0x152/0x1d0
[  117.638085][ T6063]  ? fdget_pos+0x252/0x320
[  117.638108][ T6063]  ksys_read+0x156/0x270
[  117.638127][ T6063]  ? __pfx_ksys_read+0x10/0x10
[  117.638150][ T6063]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.638166][ T6063]  do_syscall_64+0x15f/0xf80
[  117.638180][ T6063]  ? trace_irq_disable+0x3b/0x140
[  117.638197][ T6063]  ? clear_bhb_loop+0x40/0x90
[  117.638214][ T6063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.638227][ T6063] RIP: 0033:0x7f80f345d60e
[  117.638242][ T6063] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  117.638254][ T6063] RSP: 002b:00007f80f16f5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  117.638270][ T6063] RAX: ffffffffffffffda RBX: 00007f80f16f66c0 RCX: 00007f80f345d60e
[  117.638281][ T6063] RDX: 000000000000000f RSI: 00007f80f16f60a0 RDI: 0000000000000005
[  117.638290][ T6063] RBP: 00007f80f16f6090 R08: 0000000000000000 R09: 0000000000000000
[  117.638300][ T6063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.638310][ T6063] R13: 00007f80f3716038 R14: 00007f80f3715fa0 R15: 00007ffedd7b3018
[  117.638333][ T6063]  </TASK>
[  117.701755][ T6065] ./file0: Can't open blockdev
[  119.767300][   T37] kauditd_printk_skb: 102 callbacks suppressed
[  119.767318][   T37] audit: type=1400 audit(1777811887.689:256): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="_" object="5" requested=w pid=6071 comm="syz.0.85" saddr=127.0.0.1 src=20002 daddr=127.0.0.1 dest=59350 netif=lo
[  120.013601][   T37] audit: type=1326 audit(1777811887.969:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6086 comm="syz.1.89" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  120.013732][   T37] audit: type=1326 audit(1777811887.979:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6086 comm="syz.1.89" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  120.014034][   T37] audit: type=1326 audit(1777811887.979:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6086 comm="syz.1.89" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  120.014154][   T37] audit: type=1326 audit(1777811887.979:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6086 comm="syz.1.89" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  120.014328][   T37] audit: type=1326 audit(1777811887.979:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6086 comm="syz.1.89" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  120.014442][   T37] audit: type=1326 audit(1777811887.979:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6086 comm="syz.1.89" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  120.014610][   T37] audit: type=1326 audit(1777811887.979:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6086 comm="syz.1.89" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  120.015201][   T37] audit: type=1326 audit(1777811887.979:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6086 comm="syz.1.89" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  120.015367][   T37] audit: type=1326 audit(1777811887.979:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6086 comm="syz.1.89" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  120.033424][ T5619] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  120.153187][ T5825] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  120.193249][ T5619] usb 1-1: device descriptor read/64, error -71
[  120.247977][ T6090] capability: warning: `syz.1.90' uses deprecated v2 capabilities in a way that may be insecure
[  120.321444][ T5825] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  120.321471][ T5825] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  120.324692][ T5825] usb 4-1: New USB device found, idVendor=0582, idProduct=0582, bcdDevice= 0.40
[  120.324717][ T5825] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.324734][ T5825] usb 4-1: Product: syz
[  120.324747][ T5825] usb 4-1: Manufacturer: syz
[  120.324758][ T5825] usb 4-1: SerialNumber: syz
[  120.443397][ T5619] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  120.583133][ T5619] usb 1-1: device descriptor read/64, error -71
[  120.721030][ T5619] usb usb1-port1: attempt power cycle
[  120.808099][ T5825] usb 4-1: 0:1 : does not exist
[  120.808193][ T5825] usb 4-1: BAAD SPEAKER p_chmask mismatch
[  121.073280][ T5619] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  121.103833][ T5619] usb 1-1: device descriptor read/8, error -71
[  121.343213][ T5619] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  121.368698][ T5619] usb 1-1: device descriptor read/8, error -71
[  121.483515][ T5619] usb usb1-port1: unable to enumerate USB device
[  121.779803][ T6123] netlink: 12 bytes leftover after parsing attributes in process `syz.2.102'.
[  121.779825][ T6123] netlink: 20 bytes leftover after parsing attributes in process `syz.2.102'.
[  122.019927][ T5825] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[  122.036676][ T5825] usb 4-1: USB disconnect, device number 4
[  122.128097][ T6131] FAULT_INJECTION: forcing a failure.
[  122.128097][ T6131] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.128124][ T6131] CPU: 1 UID: 0 PID: 6131 Comm: syz.2.104 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  122.128141][ T6131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  122.128149][ T6131] Call Trace:
[  122.128154][ T6131]  <TASK>
[  122.128160][ T6131]  dump_stack_lvl+0xe8/0x150
[  122.128183][ T6131]  should_fail_ex+0x46b/0x600
[  122.128212][ T6131]  _copy_to_user+0x31/0xb0
[  122.128231][ T6131]  simple_read_from_buffer+0xe1/0x170
[  122.128258][ T6131]  proc_fail_nth_read+0x1be/0x230
[  122.128284][ T6131]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  122.128308][ T6131]  ? rw_verify_area+0x2ac/0x4e0
[  122.128323][ T6131]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  122.128351][ T6131]  vfs_read+0x212/0xa80
[  122.128376][ T6131]  ? __pfx_vfs_read+0x10/0x10
[  122.128396][ T6131]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  122.128415][ T6131]  ? lockdep_hardirqs_on+0x7a/0x110
[  122.128430][ T6131]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  122.128444][ T6131]  ? mutex_lock_nested+0x152/0x1d0
[  122.128463][ T6131]  ? fdget_pos+0x252/0x320
[  122.128483][ T6131]  ksys_read+0x156/0x270
[  122.128496][ T6131]  ? snd_pcm_oss_post+0xe2/0x3d0
[  122.128514][ T6131]  ? __pfx_ksys_read+0x10/0x10
[  122.128529][ T6131]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  122.128550][ T6131]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.128566][ T6131]  do_syscall_64+0x15f/0xf80
[  122.128582][ T6131]  ? trace_irq_disable+0x3b/0x140
[  122.128601][ T6131]  ? clear_bhb_loop+0x40/0x90
[  122.128619][ T6131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.128632][ T6131] RIP: 0033:0x7f3c23eed60e
[  122.128646][ T6131] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  122.128658][ T6131] RSP: 002b:00007f3c22185fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  122.128673][ T6131] RAX: ffffffffffffffda RBX: 00007f3c221866c0 RCX: 00007f3c23eed60e
[  122.128683][ T6131] RDX: 000000000000000f RSI: 00007f3c221860a0 RDI: 0000000000000004
[  122.128691][ T6131] RBP: 00007f3c22186090 R08: 0000000000000000 R09: 0000000000000000
[  122.128699][ T6131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.128707][ T6131] R13: 00007f3c241a6038 R14: 00007f3c241a5fa0 R15: 00007ffc54fb1098
[  122.128731][ T6131]  </TASK>
[  122.641304][ T5909] udevd[5909]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  122.979050][ T6136] ieee802154 phy0 wpan0: encryption failed: -22
[  123.808768][ T6146] netlink: 12 bytes leftover after parsing attributes in process `syz.2.109'.
[  123.847701][ T6146] FAULT_INJECTION: forcing a failure.
[  123.847701][ T6146] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  123.847734][ T6146] CPU: 0 UID: 0 PID: 6146 Comm: syz.2.109 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  123.847755][ T6146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  123.847765][ T6146] Call Trace:
[  123.847773][ T6146]  <TASK>
[  123.847785][ T6146]  dump_stack_lvl+0xe8/0x150
[  123.847813][ T6146]  should_fail_ex+0x46b/0x600
[  123.847849][ T6146]  _copy_from_user+0x2d/0xb0
[  123.847872][ T6146]  ___sys_recvmsg+0x175/0x590
[  123.847896][ T6146]  ? get_pid_task+0x20/0x1f0
[  123.847919][ T6146]  ? get_pid_task+0x20/0x1f0
[  123.847947][ T6146]  ? __pfx____sys_recvmsg+0x10/0x10
[  123.847976][ T6146]  ? __fget_files+0x2a/0x420
[  123.848009][ T6146]  ? __fget_files+0x3a6/0x420
[  123.848036][ T6146]  __x64_sys_recvmsg+0x1c0/0x2a0
[  123.848064][ T6146]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  123.848097][ T6146]  ? __pfx_ksys_write+0x10/0x10
[  123.848126][ T6146]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.848147][ T6146]  do_syscall_64+0x15f/0xf80
[  123.848168][ T6146]  ? trace_irq_disable+0x3b/0x140
[  123.848190][ T6146]  ? clear_bhb_loop+0x40/0x90
[  123.848213][ T6146]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.848232][ T6146] RIP: 0033:0x7f3c23f2cdd9
[  123.848249][ T6146] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  123.848264][ T6146] RSP: 002b:00007f3c22186028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  123.848284][ T6146] RAX: ffffffffffffffda RBX: 00007f3c241a5fa0 RCX: 00007f3c23f2cdd9
[  123.848298][ T6146] RDX: 0000000000000041 RSI: 00002000000003c0 RDI: 0000000000000008
[  123.848310][ T6146] RBP: 00007f3c22186090 R08: 0000000000000000 R09: 0000000000000000
[  123.848322][ T6146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.848333][ T6146] R13: 00007f3c241a6038 R14: 00007f3c241a5fa0 R15: 00007ffc54fb1098
[  123.848362][ T6146]  </TASK>
[  124.010188][ T6151] netlink: 112 bytes leftover after parsing attributes in process `syz.2.113'.
[  124.182438][ T6159] netlink: 592 bytes leftover after parsing attributes in process `syz.0.114'.
[  124.378273][ T6164] 9p: Bad value for 'dfltgid'
[  124.378292][ T6164] 9p: Bad value for 'dfltgid'
[  124.913536][ T6175] overlayfs: statfs failed on './file0'
[  127.563191][ T5736] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  128.023573][ T5613] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  128.142993][   T10] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  128.194057][ T5613] usb 3-1: Using ep0 maxpacket: 16
[  128.196716][ T5613] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  128.196743][ T5613] usb 3-1: config 0 interface 0 has no altsetting 0
[  128.209025][ T5613] usb 3-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[  128.209051][ T5613] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.209069][ T5613] usb 3-1: Product: syz
[  128.209133][ T5613] usb 3-1: Manufacturer: syz
[  128.209146][ T5613] usb 3-1: SerialNumber: syz
[  128.258577][ T6181] FAULT_INJECTION: forcing a failure.
[  128.258577][ T6181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  128.258609][ T6181] CPU: 0 UID: 0 PID: 6181 Comm: syz.1.122 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  128.258629][ T6181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  128.258640][ T6181] Call Trace:
[  128.258647][ T6181]  <TASK>
[  128.258654][ T6181]  dump_stack_lvl+0xe8/0x150
[  128.258682][ T6181]  should_fail_ex+0x46b/0x600
[  128.258718][ T6181]  _copy_to_user+0x31/0xb0
[  128.258742][ T6181]  simple_read_from_buffer+0xe1/0x170
[  128.258774][ T6181]  proc_fail_nth_read+0x1be/0x230
[  128.258807][ T6181]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  128.258840][ T6181]  ? rw_verify_area+0x2ac/0x4e0
[  128.258861][ T6181]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  128.258891][ T6181]  vfs_read+0x212/0xa80
[  128.258919][ T6181]  ? __pfx_vfs_read+0x10/0x10
[  128.258942][ T6181]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  128.258963][ T6181]  ? lockdep_hardirqs_on+0x7a/0x110
[  128.258983][ T6181]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  128.259002][ T6181]  ? mutex_lock_nested+0x152/0x1d0
[  128.259028][ T6181]  ? fdget_pos+0x252/0x320
[  128.259053][ T6181]  ksys_read+0x156/0x270
[  128.259076][ T6181]  ? __pfx_ksys_read+0x10/0x10
[  128.259104][ T6181]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.259123][ T6181]  do_syscall_64+0x15f/0xf80
[  128.259142][ T6181]  ? trace_irq_disable+0x3b/0x140
[  128.259164][ T6181]  ? clear_bhb_loop+0x40/0x90
[  128.259188][ T6181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.259206][ T6181] RIP: 0033:0x7feef884d60e
[  128.259223][ T6181] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  128.259238][ T6181] RSP: 002b:00007feef6ae5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  128.259257][ T6181] RAX: ffffffffffffffda RBX: 00007feef6ae66c0 RCX: 00007feef884d60e
[  128.259270][ T6181] RDX: 000000000000000f RSI: 00007feef6ae60a0 RDI: 0000000000000004
[  128.259280][ T6181] RBP: 00007feef6ae6090 R08: 0000000000000000 R09: 0000000000000000
[  128.259291][ T6181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.259302][ T6181] R13: 00007feef8b06038 R14: 00007feef8b05fa0 R15: 00007ffc37895698
[  128.259332][ T6181]  </TASK>
[  128.330112][ T6182] overlayfs: upper fs does not support file handles, falling back to index=off.
[  128.559765][   T37] kauditd_printk_skb: 141 callbacks suppressed
[  128.559784][   T37] audit: type=1326 audit(1777811896.509:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.559826][   T37] audit: type=1326 audit(1777811896.509:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.559864][   T37] audit: type=1326 audit(1777811896.509:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.559904][   T37] audit: type=1326 audit(1777811896.509:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.559943][   T37] audit: type=1326 audit(1777811896.509:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.559983][   T37] audit: type=1326 audit(1777811896.509:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.560022][   T37] audit: type=1326 audit(1777811896.509:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.560061][   T37] audit: type=1326 audit(1777811896.509:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.560101][   T37] audit: type=1326 audit(1777811896.519:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.560140][   T37] audit: type=1326 audit(1777811896.519:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6183 comm="syz.1.125" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feef888cdd9 code=0x7ffc0000
[  128.565741][ T6185] netlink: 8 bytes leftover after parsing attributes in process `syz.2.126'.
[  128.565761][ T6185] tc_dump_action: action bad kind
[  128.580743][ T5613] usb 3-1: config 0 descriptor??
[  128.589656][ T5613] usb 3-1: can't set config #0, error -71
[  128.855078][ T5613] usb 3-1: USB disconnect, device number 3
[  130.613130][ T5808] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  130.765469][ T5808] usb 5-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d
[  130.765498][ T5808] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.798444][ T5808] usb 5-1: config 0 descriptor??
[  131.090881][ T6221] binder: 6215:6221 ioctl c0306201 200000000480 returned -14
[  132.233326][ T5808] hackrf 5-1:0.0: usb_control_msg() failed -71 request 0f
[  132.233353][ T5808] hackrf 5-1:0.0: Could not detect board
[  132.233409][ T5808] hackrf 5-1:0.0: probe with driver hackrf failed with error -71
[  132.377641][ T5808] usb 5-1: USB disconnect, device number 5
[  132.532681][ T6227] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input10
[  132.630613][ T6231] FAULT_INJECTION: forcing a failure.
[  132.630613][ T6231] name failslab, interval 1, probability 0, space 0, times 0
[  132.630645][ T6231] CPU: 0 UID: 0 PID: 6231 Comm: syz.2.137 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  132.630667][ T6231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  132.630678][ T6231] Call Trace:
[  132.630685][ T6231]  <TASK>
[  132.630693][ T6231]  dump_stack_lvl+0xe8/0x150
[  132.630721][ T6231]  should_fail_ex+0x46b/0x600
[  132.630758][ T6231]  should_failslab+0xa8/0x100
[  132.630783][ T6231]  kmem_cache_alloc_noprof+0x87/0x680
[  132.630804][ T6231]  ? alloc_empty_file+0x5b/0x1d0
[  132.630837][ T6231]  alloc_empty_file+0x5b/0x1d0
[  132.630866][ T6231]  path_openat+0x11b/0x38a0
[  132.630897][ T6231]  ? try_to_take_rt_mutex+0x840/0xb00
[  132.630925][ T6231]  ? arch_stack_walk+0xfb/0x150
[  132.630961][ T6231]  ? __lock_acquire+0x6b5/0x2cf0
[  132.630992][ T6231]  ? __pfx_path_openat+0x10/0x10
[  132.631016][ T6231]  ? kasan_save_track+0x4f/0x80
[  132.631033][ T6231]  ? kasan_save_track+0x3e/0x80
[  132.631048][ T6231]  ? __kasan_slab_alloc+0x6c/0x80
[  132.631067][ T6231]  ? kmem_cache_alloc_noprof+0x33b/0x680
[  132.631095][ T6231]  ? do_raw_spin_lock+0x12b/0x2f0
[  132.631127][ T6231]  do_file_open+0x23e/0x4a0
[  132.631148][ T6231]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  132.631173][ T6231]  ? __pfx_do_file_open+0x10/0x10
[  132.631191][ T6231]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  132.631247][ T6231]  ? alloc_fd+0x64e/0x6c0
[  132.631286][ T6231]  do_sys_openat2+0x113/0x200
[  132.631318][ T6231]  ? __pfx_do_sys_openat2+0x10/0x10
[  132.631344][ T6231]  ? ksys_write+0x248/0x270
[  132.631366][ T6231]  ? __pfx_ksys_write+0x10/0x10
[  132.631388][ T6231]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.631408][ T6231]  __x64_sys_open+0x11e/0x150
[  132.631440][ T6231]  do_syscall_64+0x15f/0xf80
[  132.631460][ T6231]  ? trace_irq_disable+0x3b/0x140
[  132.631481][ T6231]  ? clear_bhb_loop+0x40/0x90
[  132.631504][ T6231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.631527][ T6231] RIP: 0033:0x7f3c23f2cdd9
[  132.631544][ T6231] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  132.631559][ T6231] RSP: 002b:00007f3c22186028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  132.631578][ T6231] RAX: ffffffffffffffda RBX: 00007f3c241a5fa0 RCX: 00007f3c23f2cdd9
[  132.631593][ T6231] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000080
[  132.631604][ T6231] RBP: 00007f3c22186090 R08: 0000000000000000 R09: 0000000000000000
[  132.631615][ T6231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.631626][ T6231] R13: 00007f3c241a6038 R14: 00007f3c241a5fa0 R15: 00007ffc54fb1098
[  132.631656][ T6231]  </TASK>
[  132.678011][ T6232] FAULT_INJECTION: forcing a failure.
[  132.678011][ T6232] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.678042][ T6232] CPU: 1 UID: 0 PID: 6232 Comm: syz.0.133 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  132.678063][ T6232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  132.678073][ T6232] Call Trace:
[  132.678080][ T6232]  <TASK>
[  132.678088][ T6232]  dump_stack_lvl+0xe8/0x150
[  132.678115][ T6232]  should_fail_ex+0x46b/0x600
[  132.678149][ T6232]  _copy_from_user+0x2d/0xb0
[  132.678170][ T6232]  vt_ioctl+0x1249/0x20c0
[  132.678204][ T6232]  ? __pfx_vt_ioctl+0x10/0x10
[  132.678230][ T6232]  ? __asan_memset+0x22/0x50
[  132.678257][ T6232]  ? smack_file_ioctl+0x263/0x360
[  132.678281][ T6232]  ? __pfx_smack_file_ioctl+0x10/0x10
[  132.678313][ T6232]  ? __fget_files+0x3a6/0x420
[  132.678329][ T6232]  ? __fget_files+0x2a/0x420
[  132.678348][ T6232]  tty_ioctl+0x92e/0xde0
[  132.678370][ T6232]  ? __pfx_tty_ioctl+0x10/0x10
[  132.678391][ T6232]  __se_sys_ioctl+0xff/0x170
[  132.678413][ T6232]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.678437][ T6232]  do_syscall_64+0x15f/0xf80
[  132.678456][ T6232]  ? trace_irq_disable+0x3b/0x140
[  132.678476][ T6232]  ? clear_bhb_loop+0x40/0x90
[  132.678498][ T6232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.678516][ T6232] RIP: 0033:0x7f838604cdd9
[  132.678533][ T6232] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  132.678548][ T6232] RSP: 002b:00007f83842a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  132.678567][ T6232] RAX: ffffffffffffffda RBX: 00007f83862c5fa0 RCX: 00007f838604cdd9
[  132.678580][ T6232] RDX: 0000200000000000 RSI: 0000000000004b66 RDI: 0000000000000005
[  132.678590][ T6232] RBP: 00007f83842a6090 R08: 0000000000000000 R09: 0000000000000000
[  132.678601][ T6232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.678611][ T6232] R13: 00007f83862c6038 R14: 00007f83862c5fa0 R15: 00007fff68454f68
[  132.678641][ T6232]  </TASK>
[  132.798217][ T1332] ieee802154 phy0 wpan0: encryption failed: -22
[  132.798287][ T1332] ieee802154 phy1 wpan1: encryption failed: -22
[  132.803439][   T10] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  133.955255][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  133.955288][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  133.955309][   T10] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  133.955348][   T10] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  133.955370][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.048707][   T37] kauditd_printk_skb: 45 callbacks suppressed
[  134.048724][   T37] audit: type=1326 audit(1777811901.899:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.048772][   T37] audit: type=1326 audit(1777811902.009:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.048813][   T37] audit: type=1326 audit(1777811902.009:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.048861][   T37] audit: type=1326 audit(1777811901.889:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.048901][   T37] audit: type=1326 audit(1777811902.009:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.048940][   T37] audit: type=1326 audit(1777811902.009:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.048977][   T37] audit: type=1326 audit(1777811902.009:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.049636][   T37] audit: type=1326 audit(1777811902.009:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.162255][   T37] audit: type=1326 audit(1777811902.009:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.162305][   T37] audit: type=1326 audit(1777811902.029:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6237 comm="syz.0.140" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  134.481248][ T6251] FAULT_INJECTION: forcing a failure.
[  134.481248][ T6251] name failslab, interval 1, probability 0, space 0, times 0
[  134.481280][ T6251] CPU: 0 UID: 0 PID: 6251 Comm: syz.3.141 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  134.481304][ T6251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  134.481315][ T6251] Call Trace:
[  134.481322][ T6251]  <TASK>
[  134.481330][ T6251]  dump_stack_lvl+0xe8/0x150
[  134.481358][ T6251]  should_fail_ex+0x46b/0x600
[  134.481393][ T6251]  should_failslab+0xa8/0x100
[  134.481418][ T6251]  kmem_cache_alloc_noprof+0x87/0x680
[  134.481439][ T6251]  ? alloc_empty_file+0x5b/0x1d0
[  134.481471][ T6251]  alloc_empty_file+0x5b/0x1d0
[  134.481499][ T6251]  path_openat+0x11b/0x38a0
[  134.481530][ T6251]  ? try_to_take_rt_mutex+0x840/0xb00
[  134.481558][ T6251]  ? arch_stack_walk+0xfb/0x150
[  134.481595][ T6251]  ? __lock_acquire+0x6b5/0x2cf0
[  134.481627][ T6251]  ? __pfx_path_openat+0x10/0x10
[  134.481652][ T6251]  ? kasan_save_track+0x4f/0x80
[  134.481669][ T6251]  ? kasan_save_track+0x3e/0x80
[  134.481685][ T6251]  ? __kasan_slab_alloc+0x6c/0x80
[  134.481703][ T6251]  ? kmem_cache_alloc_noprof+0x33b/0x680
[  134.481730][ T6251]  ? do_raw_spin_lock+0x12b/0x2f0
[  134.481761][ T6251]  do_file_open+0x23e/0x4a0
[  134.481782][ T6251]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  134.481807][ T6251]  ? __pfx_do_file_open+0x10/0x10
[  134.481833][ T6251]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  134.481882][ T6251]  ? alloc_fd+0x64e/0x6c0
[  134.481921][ T6251]  do_sys_openat2+0x113/0x200
[  134.481952][ T6251]  ? __pfx_do_sys_openat2+0x10/0x10
[  134.481981][ T6251]  ? ksys_write+0x248/0x270
[  134.482005][ T6251]  ? __pfx_ksys_write+0x10/0x10
[  134.482029][ T6251]  __x64_sys_openat+0x138/0x170
[  134.482060][ T6251]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.482079][ T6251]  do_syscall_64+0x15f/0xf80
[  134.482099][ T6251]  ? trace_irq_disable+0x3b/0x140
[  134.482121][ T6251]  ? clear_bhb_loop+0x40/0x90
[  134.482144][ T6251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.482163][ T6251] RIP: 0033:0x7f276475d60e
[  134.482180][ T6251] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  134.482194][ T6251] RSP: 002b:00007f27629b3b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  134.482212][ T6251] RAX: ffffffffffffffda RBX: 00007f27629b46c0 RCX: 00007f276475d60e
[  134.482225][ T6251] RDX: 0000000000101301 RSI: 00007f27629b3c00 RDI: ffffffffffffff9c
[  134.482237][ T6251] RBP: 00007f27629b3c00 R08: 0000000000000000 R09: 0000000000000000
[  134.482248][ T6251] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  134.482259][ T6251] R13: 00007f2764a16218 R14: 00007f2764a16180 R15: 00007ffdfcaf0798
[  134.482289][ T6251]  </TASK>
[  134.848222][   T10] usb 2-1: config 0 descriptor??
[  135.227375][ T6255] FAULT_INJECTION: forcing a failure.
[  135.227375][ T6255] name failslab, interval 1, probability 0, space 0, times 0
[  135.227408][ T6255] CPU: 1 UID: 0 PID: 6255 Comm: syz.0.144 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  135.227428][ T6255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  135.227439][ T6255] Call Trace:
[  135.227445][ T6255]  <TASK>
[  135.227453][ T6255]  dump_stack_lvl+0xe8/0x150
[  135.227481][ T6255]  should_fail_ex+0x46b/0x600
[  135.227514][ T6255]  should_failslab+0xa8/0x100
[  135.227539][ T6255]  kmem_cache_alloc_lru_noprof+0x8b/0x680
[  135.227561][ T6255]  ? __d_alloc+0x37/0x6f0
[  135.227584][ T6255]  __d_alloc+0x37/0x6f0
[  135.227608][ T6255]  d_alloc+0x4b/0x190
[  135.227624][ T6255]  ? lookup_one_qstr_excl+0xc4/0x360
[  135.227646][ T6255]  lookup_one_qstr_excl+0xd8/0x360
[  135.227672][ T6255]  start_creating_noperm+0x80/0xb0
[  135.227695][ T6255]  do_mq_open+0x246/0x7d0
[  135.227726][ T6255]  ? __pfx_do_mq_open+0x10/0x10
[  135.227750][ T6255]  ? rt_mutex_slowunlock+0x1cb/0x300
[  135.227784][ T6255]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  135.227820][ T6255]  __x64_sys_mq_open+0x185/0x1e0
[  135.227846][ T6255]  ? __pfx___x64_sys_mq_open+0x10/0x10
[  135.227867][ T6255]  ? ksys_write+0x248/0x270
[  135.227903][ T6255]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.227924][ T6255]  do_syscall_64+0x15f/0xf80
[  135.227945][ T6255]  ? trace_irq_disable+0x3b/0x140
[  135.227968][ T6255]  ? clear_bhb_loop+0x40/0x90
[  135.227993][ T6255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.228011][ T6255] RIP: 0033:0x7f838604cdd9
[  135.228037][ T6255] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  135.228052][ T6255] RSP: 002b:00007f83842a6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[  135.228071][ T6255] RAX: ffffffffffffffda RBX: 00007f83862c5fa0 RCX: 00007f838604cdd9
[  135.228083][ T6255] RDX: 0000000000000100 RSI: 0000000000000040 RDI: 00002000000000c0
[  135.228095][ T6255] RBP: 00007f83842a6090 R08: 0000000000000000 R09: 0000000000000000
[  135.228106][ T6255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.228117][ T6255] R13: 00007f83862c6038 R14: 00007f83862c5fa0 R15: 00007fff68454f68
[  135.228150][ T6255]  </TASK>
[  135.595753][ T6259] netlink: 20 bytes leftover after parsing attributes in process `syz.4.145'.
[  136.668265][   T10] usbhid 2-1:0.0: can't add hid device: -71
[  136.668580][   T10] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  136.737832][   T10] usb 2-1: USB disconnect, device number 3
[  137.081228][ T6275] binder: 6262:6275 ioctl c0306201 200000000480 returned -14
[  138.300713][ T6280] binder: 6273:6280 ioctl c0306201 200000000480 returned -14
[  138.963484][   T10] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  139.133663][   T10] usb 1-1: Using ep0 maxpacket: 32
[  139.136538][   T10] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  139.136578][   T10] usb 1-1: config 0 interface 0 altsetting 16 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  139.136602][   T10] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  139.136625][   T10] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x8F has invalid wMaxPacketSize 0
[  139.136645][   T10] usb 1-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  139.136670][   T10] usb 1-1: config 0 interface 0 has no altsetting 0
[  139.136706][   T10] usb 1-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  139.136727][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.226487][   T37] kauditd_printk_skb: 55 callbacks suppressed
[  139.226502][   T37] audit: type=1326 audit(1777811907.179:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.226544][   T37] audit: type=1326 audit(1777811907.189:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.226581][   T37] audit: type=1326 audit(1777811907.189:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.226825][   T37] audit: type=1326 audit(1777811907.189:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.230603][   T37] audit: type=1326 audit(1777811907.189:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.230646][   T37] audit: type=1326 audit(1777811907.189:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.230683][   T37] audit: type=1326 audit(1777811907.189:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.230720][   T37] audit: type=1326 audit(1777811907.189:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.239983][   T37] audit: type=1326 audit(1777811907.199:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.240026][   T37] audit: type=1326 audit(1777811907.199:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6284 comm="syz.4.154" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  139.479295][   T10] usb 1-1: config 0 descriptor??
[  139.600140][ T6290] FAULT_INJECTION: forcing a failure.
[  139.600140][ T6290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  139.600172][ T6290] CPU: 0 UID: 0 PID: 6290 Comm: syz.4.156 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  139.600193][ T6290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  139.600204][ T6290] Call Trace:
[  139.600211][ T6290]  <TASK>
[  139.600219][ T6290]  dump_stack_lvl+0xe8/0x150
[  139.600249][ T6290]  should_fail_ex+0x46b/0x600
[  139.600284][ T6290]  _copy_from_user+0x2d/0xb0
[  139.600307][ T6290]  video_usercopy+0x36f/0x1450
[  139.600338][ T6290]  ? smk_tskacc+0x311/0x3a0
[  139.600359][ T6290]  ? __pfx___video_do_ioctl+0x10/0x10
[  139.600383][ T6290]  ? __pfx_video_usercopy+0x10/0x10
[  139.600405][ T6290]  ? smack_file_ioctl+0x263/0x360
[  139.600442][ T6290]  ? __fget_files+0x2a/0x420
[  139.600459][ T6290]  ? __fget_files+0x3a6/0x420
[  139.600479][ T6290]  v4l2_ioctl+0x190/0x1e0
[  139.600505][ T6290]  ? __pfx_v4l2_ioctl+0x10/0x10
[  139.600529][ T6290]  __se_sys_ioctl+0xff/0x170
[  139.600551][ T6290]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.600571][ T6290]  do_syscall_64+0x15f/0xf80
[  139.600591][ T6290]  ? clear_bhb_loop+0x40/0x90
[  139.600615][ T6290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.600634][ T6290] RIP: 0033:0x7f80f349cdd9
[  139.600657][ T6290] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  139.600672][ T6290] RSP: 002b:00007f80f16f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  139.600691][ T6290] RAX: ffffffffffffffda RBX: 00007f80f3715fa0 RCX: 00007f80f349cdd9
[  139.600704][ T6290] RDX: 00002000000012c0 RSI: 00000000402c5639 RDI: 0000000000000003
[  139.600717][ T6290] RBP: 00007f80f16f6090 R08: 0000000000000000 R09: 0000000000000000
[  139.600728][ T6290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.600739][ T6290] R13: 00007f80f3716038 R14: 00007f80f3715fa0 R15: 00007ffedd7b3018
[  139.600766][ T6290]  </TASK>
[  139.873275][ T5736] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  139.905666][ T6292] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.082712][ T6296] FAULT_INJECTION: forcing a failure.
[  140.082712][ T6296] name failslab, interval 1, probability 0, space 0, times 0
[  140.082742][ T6296] CPU: 1 UID: 0 PID: 6296 Comm: syz.4.158 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  140.082763][ T6296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  140.082774][ T6296] Call Trace:
[  140.082781][ T6296]  <TASK>
[  140.082788][ T6296]  dump_stack_lvl+0xe8/0x150
[  140.082819][ T6296]  should_fail_ex+0x46b/0x600
[  140.082855][ T6296]  should_failslab+0xa8/0x100
[  140.082879][ T6296]  kmem_cache_alloc_noprof+0x87/0x680
[  140.082900][ T6296]  ? alloc_empty_file+0x5b/0x1d0
[  140.082931][ T6296]  alloc_empty_file+0x5b/0x1d0
[  140.082959][ T6296]  path_openat+0x11b/0x38a0
[  140.082990][ T6296]  ? try_to_take_rt_mutex+0x840/0xb00
[  140.083019][ T6296]  ? arch_stack_walk+0xfb/0x150
[  140.083052][ T6296]  ? __lock_acquire+0x6b5/0x2cf0
[  140.083081][ T6296]  ? __pfx_path_openat+0x10/0x10
[  140.083105][ T6296]  ? kasan_save_track+0x4f/0x80
[  140.083122][ T6296]  ? kasan_save_track+0x3e/0x80
[  140.083138][ T6296]  ? __kasan_slab_alloc+0x6c/0x80
[  140.083155][ T6296]  ? kmem_cache_alloc_noprof+0x33b/0x680
[  140.083181][ T6296]  ? do_raw_spin_lock+0x12b/0x2f0
[  140.083211][ T6296]  do_file_open+0x23e/0x4a0
[  140.083231][ T6296]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  140.083255][ T6296]  ? __pfx_do_file_open+0x10/0x10
[  140.083274][ T6296]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  140.083322][ T6296]  ? alloc_fd+0x64e/0x6c0
[  140.083369][ T6296]  do_sys_openat2+0x113/0x200
[  140.083401][ T6296]  ? __pfx_do_sys_openat2+0x10/0x10
[  140.083429][ T6296]  ? ksys_write+0x248/0x270
[  140.083452][ T6296]  ? __pfx_ksys_write+0x10/0x10
[  140.083476][ T6296]  __x64_sys_openat+0x138/0x170
[  140.083506][ T6296]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.083526][ T6296]  do_syscall_64+0x15f/0xf80
[  140.083546][ T6296]  ? trace_irq_disable+0x3b/0x140
[  140.083568][ T6296]  ? clear_bhb_loop+0x40/0x90
[  140.083591][ T6296]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.083609][ T6296] RIP: 0033:0x7f80f349cdd9
[  140.083626][ T6296] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  140.083642][ T6296] RSP: 002b:00007f80f16f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  140.083661][ T6296] RAX: ffffffffffffffda RBX: 00007f80f3715fa0 RCX: 00007f80f349cdd9
[  140.083674][ T6296] RDX: 0000000000080081 RSI: 0000200000000000 RDI: 00000000ffffff9c
[  140.083687][ T6296] RBP: 00007f80f16f6090 R08: 0000000000000000 R09: 0000000000000000
[  140.083698][ T6296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.083708][ T6296] R13: 00007f80f3716038 R14: 00007f80f3715fa0 R15: 00007ffedd7b3018
[  140.083737][ T6296]  </TASK>
[  140.136155][ T5736] usb 2-1: Using ep0 maxpacket: 32
[  140.214153][ T5736] usb 2-1: config 0 has an invalid interface number: 12 but max is 0
[  140.214177][ T5736] usb 2-1: config 0 has no interface number 0
[  140.214218][ T5736] usb 2-1: config 0 interface 12 has no altsetting 0
[  140.466780][ T5736] usb 2-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  140.466808][ T5736] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.466826][ T5736] usb 2-1: Product: syz
[  140.466838][ T5736] usb 2-1: Manufacturer: syz
[  140.466848][ T5736] usb 2-1: SerialNumber: syz
[  140.508939][   T10] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0
[  140.508975][   T10] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0
[  140.508999][   T10] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0
[  140.509023][   T10] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0
[  140.509046][   T10] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0
[  140.579231][ T6303] netlink: 20 bytes leftover after parsing attributes in process `syz.3.160'.
[  141.595807][ T5736] usb 2-1: config 0 descriptor??
[  142.172713][ T6287] netlink: 'syz.1.155': attribute type 2 has an invalid length.
[  143.497878][   T10] hid-thrustmaster 0003:044F:B65D.0001: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.0-1/input0
[  143.498104][   T10] hid-thrustmaster 0003:044F:B65D.0001: Wrong number of endpoints?
[  143.508722][    C0] hid-thrustmaster 0003:044F:B65D.0001: URB to get model id failed with error -71
[  143.588273][   T10] usb 1-1: USB disconnect, device number 12
[  144.345521][ T5736] f81534 2-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  144.345586][ T5736] f81534 2-1:0.12: f81534_find_config_idx: read failed: -71
[  144.345603][ T5736] f81534 2-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  144.345698][ T5736] f81534 2-1:0.12: probe with driver f81534 failed with error -71
[  144.540545][ T6320] fido_id[6320]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/1-1/report_descriptor': No such file or directory
[  144.541749][ T5736] usb 2-1: USB disconnect, device number 4
[  144.704013][ T5825] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  144.913525][ T5825] usb 5-1: Using ep0 maxpacket: 16
[  144.915712][ T5825] usb 5-1: config 8 has an invalid interface number: 206 but max is 0
[  144.915734][ T5825] usb 5-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  144.915751][ T5825] usb 5-1: config 8 has no interface number 0
[  144.956558][ T5825] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[  144.956584][ T5825] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.956601][ T5825] usb 5-1: Product: syz
[  144.956613][ T5825] usb 5-1: Manufacturer: syz
[  144.956626][ T5825] usb 5-1: SerialNumber: syz
[  145.081125][ T6341] netlink: 12 bytes leftover after parsing attributes in process `syz.0.172'.
[  145.262085][ T6324] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  145.262639][ T6324] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  145.294511][ T5825] garmin_gps 5-1:8.206: Garmin GPS usb/tty converter detected
[  145.299797][ T6339] qnx4: no qnx4 filesystem (no root dir).
[  145.353175][ T5736] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  145.381303][ T5825] garmin_gps ttyUSB0: failed to submit interrupt urb: -22
[  145.381357][ T5825] garmin_gps ttyUSB0: probe with driver garmin_gps failed with error -22
[  145.425100][ T5825] usb 5-1: USB disconnect, device number 6
[  145.511995][ T5825] garmin_gps 5-1:8.206: device disconnected
[  145.522698][ T5736] usb 2-1: unable to get BOS descriptor or descriptor too short
[  145.538047][ T5736] usb 2-1: config 63 has an invalid interface number: 66 but max is 0
[  145.538074][ T5736] usb 2-1: config 63 has an invalid descriptor of length 133, skipping remainder of the config
[  145.538092][ T5736] usb 2-1: config 63 has no interface number 0
[  145.538122][ T5736] usb 2-1: config 63 interface 66 has no altsetting 0
[  145.540621][ T5736] usb 2-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4
[  145.540646][ T5736] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.540663][ T5736] usb 2-1: Product: syz
[  145.540676][ T5736] usb 2-1: Manufacturer: syz
[  145.540689][ T5736] usb 2-1: SerialNumber: syz
[  145.615750][   T37] kauditd_printk_skb: 36 callbacks suppressed
[  145.615765][   T37] audit: type=1326 audit(1777811913.579:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  145.616032][   T37] audit: type=1326 audit(1777811913.579:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  145.618404][   T37] audit: type=1326 audit(1777811913.579:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  145.618812][   T37] audit: type=1326 audit(1777811913.579:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  145.619064][   T37] audit: type=1326 audit(1777811913.579:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  145.622735][   T37] audit: type=1326 audit(1777811913.579:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  145.624666][   T37] audit: type=1326 audit(1777811913.579:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  145.671715][   T37] audit: type=1326 audit(1777811913.629:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  145.671815][   T37] audit: type=1326 audit(1777811913.629:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  145.671857][   T37] audit: type=1326 audit(1777811913.629:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6349 comm="syz.0.175" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838604cdd9 code=0x7ffc0000
[  146.783701][ T6361] overlayfs: failed to resolve './file0': -2
[  148.643374][ T6363] binder: 6356:6363 ioctl c0306201 200000000480 returned -14
[  151.064078][ T5736] uvcvideo 2-1:63.66: Found UVC 0.07 device syz (174f:8acf)
[  151.064117][ T5736] uvcvideo 2-1:63.66: No valid video chain found.
[  151.089592][ T5736] usb 2-1: USB disconnect, device number 5
[  151.183590][ T4926] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  153.103315][ T6381] FAULT_INJECTION: forcing a failure.
[  153.103315][ T6381] name failslab, interval 1, probability 0, space 0, times 0
[  153.103355][ T6381] CPU: 1 UID: 0 PID: 6381 Comm: syz.3.184 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  153.103376][ T6381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  153.103387][ T6381] Call Trace:
[  153.103394][ T6381]  <TASK>
[  153.103400][ T6381]  dump_stack_lvl+0xe8/0x150
[  153.103427][ T6381]  should_fail_ex+0x46b/0x600
[  153.103461][ T6381]  should_failslab+0xa8/0x100
[  153.103486][ T6381]  __kmalloc_noprof+0xdf/0x7b0
[  153.103507][ T6381]  ? tomoyo_encode+0x28b/0x550
[  153.103541][ T6381]  tomoyo_encode+0x28b/0x550
[  153.103574][ T6381]  tomoyo_realpath_from_path+0x58d/0x5d0
[  153.103610][ T6381]  ? tomoyo_path_number_perm+0x219/0x630
[  153.103634][ T6381]  tomoyo_path_number_perm+0x246/0x630
[  153.103662][ T6381]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  153.103683][ T6381]  ? __lock_acquire+0x6b5/0x2cf0
[  153.103709][ T6381]  ? do_raw_spin_lock+0x12b/0x2f0
[  153.103762][ T6381]  ? __fget_files+0x2a/0x420
[  153.103782][ T6381]  ? __fget_files+0x2a/0x420
[  153.103798][ T6381]  ? __fget_files+0x3a6/0x420
[  153.103813][ T6381]  ? __fget_files+0x2a/0x420
[  153.103834][ T6381]  security_file_ioctl+0xc3/0x2a0
[  153.103862][ T6381]  __se_sys_ioctl+0x47/0x170
[  153.103884][ T6381]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.103905][ T6381]  do_syscall_64+0x15f/0xf80
[  153.103925][ T6381]  ? trace_irq_disable+0x3b/0x140
[  153.103947][ T6381]  ? clear_bhb_loop+0x40/0x90
[  153.103971][ T6381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.103988][ T6381] RIP: 0033:0x7f276479cdd9
[  153.104003][ T6381] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  153.104021][ T6381] RSP: 002b:00007f27629f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  153.104040][ T6381] RAX: ffffffffffffffda RBX: 00007f2764a15fa0 RCX: 00007f276479cdd9
[  153.104052][ T6381] RDX: 0000000000000000 RSI: 000000000000541b RDI: 0000000000000003
[  153.104062][ T6381] RBP: 00007f27629f6090 R08: 0000000000000000 R09: 0000000000000000
[  153.104072][ T6381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.104083][ T6381] R13: 00007f2764a16038 R14: 00007f2764a15fa0 R15: 00007ffdfcaf0798
[  153.104110][ T6381]  </TASK>
[  153.104136][ T6381] ERROR: Out of memory at tomoyo_realpath_from_path.
[  153.104504][ T6381] QAT: Invalid ioctl 21531
[  153.124138][ T6371] bridge0: port 3(vlan2) entered blocking state
[  153.124256][ T6371] bridge0: port 3(vlan2) entered disabled state
[  153.180052][ T6371] vlan2: entered allmulticast mode
[  153.180071][ T6371] geneve0: entered allmulticast mode
[  153.194556][ T6371] vlan2: entered promiscuous mode
[  153.194574][ T6371] geneve0: entered promiscuous mode
[  155.160398][ T6405] netlink: 12 bytes leftover after parsing attributes in process `syz.2.191'.
[  155.515234][ T6410] overlayfs: failed to resolve './file0': -2
[  158.610837][ T6417] 9p: Bad value for 'rfdno'
[  160.758667][ T6444] FAULT_INJECTION: forcing a failure.
[  160.758667][ T6444] name failslab, interval 1, probability 0, space 0, times 0
[  160.758698][ T6444] CPU: 1 UID: 0 PID: 6444 Comm: syz.0.203 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  160.758718][ T6444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  160.758729][ T6444] Call Trace:
[  160.758736][ T6444]  <TASK>
[  160.758744][ T6444]  dump_stack_lvl+0xe8/0x150
[  160.758771][ T6444]  should_fail_ex+0x46b/0x600
[  160.758800][ T6444]  should_failslab+0xa8/0x100
[  160.758821][ T6444]  __kmalloc_node_noprof+0xe7/0x7f0
[  160.758842][ T6444]  ? alloc_slab_obj_exts+0xbf/0x250
[  160.758863][ T6444]  alloc_slab_obj_exts+0xbf/0x250
[  160.758879][ T6444]  __memcg_slab_post_alloc_hook+0x5e5/0xed0
[  160.758913][ T6444]  kmem_cache_alloc_noprof+0x3f4/0x680
[  160.758932][ T6444]  ? prepare_creds+0x30/0x820
[  160.758973][ T6444]  prepare_creds+0x30/0x820
[  160.759006][ T6444]  copy_creds+0x10e/0xa30
[  160.759036][ T6444]  ? __raw_spin_lock_init+0x45/0x100
[  160.759061][ T6444]  copy_process+0xd6c/0x4450
[  160.759098][ T6444]  ? get_pid_task+0x20/0x1f0
[  160.759127][ T6444]  ? __lock_acquire+0x6b5/0x2cf0
[  160.759155][ T6444]  ? __pfx_copy_process+0x10/0x10
[  160.759190][ T6444]  kernel_clone+0x283/0x870
[  160.759215][ T6444]  ? __pfx_kernel_clone+0x10/0x10
[  160.759235][ T6444]  ? do_raw_spin_lock+0x12b/0x2f0
[  160.759274][ T6444]  __x64_sys_clone+0x1b6/0x230
[  160.759298][ T6444]  ? __pfx___x64_sys_clone+0x10/0x10
[  160.759335][ T6444]  ? __pfx_ksys_write+0x10/0x10
[  160.759363][ T6444]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.759382][ T6444]  do_syscall_64+0x15f/0xf80
[  160.759402][ T6444]  ? trace_irq_disable+0x3b/0x140
[  160.759422][ T6444]  ? clear_bhb_loop+0x40/0x90
[  160.759443][ T6444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.759462][ T6444] RIP: 0033:0x7f838604cdd9
[  160.759479][ T6444] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  160.759493][ T6444] RSP: 002b:00007f83842a5fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  160.759512][ T6444] RAX: ffffffffffffffda RBX: 00007f83862c5fa0 RCX: 00007f838604cdd9
[  160.759525][ T6444] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000080040000
[  160.759535][ T6444] RBP: 00007f83842a6090 R08: 0000000000000000 R09: 0000000000000000
[  160.759545][ T6444] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  160.759556][ T6444] R13: 00007f83862c6038 R14: 00007f83862c5fa0 R15: 00007fff68454f68
[  160.759585][ T6444]  </TASK>
[  161.696083][ T6451] FAULT_INJECTION: forcing a failure.
[  161.696083][ T6451] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  161.696122][ T6451] CPU: 1 UID: 0 PID: 6451 Comm: syz.3.206 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  161.696143][ T6451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  161.696154][ T6451] Call Trace:
[  161.696161][ T6451]  <TASK>
[  161.696169][ T6451]  dump_stack_lvl+0xe8/0x150
[  161.696195][ T6451]  should_fail_ex+0x46b/0x600
[  161.696232][ T6451]  _copy_from_user+0x2d/0xb0
[  161.696253][ T6451]  binder_ioctl_write_read+0x167/0xa490
[  161.696278][ T6451]  ? is_bpf_text_address+0x26/0x2b0
[  161.696313][ T6451]  ? try_to_take_rt_mutex+0x840/0xb00
[  161.696341][ T6451]  ? __kernel_text_address+0xd/0x30
[  161.696376][ T6451]  ? __lock_acquire+0x6b5/0x2cf0
[  161.696408][ T6451]  ? __pfx_binder_ioctl_write_read+0x10/0x10
[  161.696434][ T6451]  ? stack_depot_save_flags+0x33/0x810
[  161.696472][ T6451]  ? do_raw_spin_lock+0x12b/0x2f0
[  161.696509][ T6451]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  161.696530][ T6451]  ? lockdep_hardirqs_on+0x7a/0x110
[  161.696555][ T6451]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  161.696575][ T6451]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  161.696601][ T6451]  ? reacquire_held_locks+0x104/0x190
[  161.696628][ T6451]  ? rt_spin_lock+0x1e0/0x400
[  161.696656][ T6451]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  161.696684][ T6451]  ? rt_spin_unlock+0x14f/0x200
[  161.696719][ T6451]  ? binder_get_thread+0x177/0x6d0
[  161.696744][ T6451]  binder_ioctl+0x426/0x1b10
[  161.696765][ T6451]  ? tomoyo_path_number_perm+0x219/0x630
[  161.696790][ T6451]  ? tomoyo_path_number_perm+0x219/0x630
[  161.696816][ T6451]  ? do_vfs_ioctl+0x117b/0x1540
[  161.696839][ T6451]  ? __pfx_binder_ioctl+0x10/0x10
[  161.696861][ T6451]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  161.696882][ T6451]  ? __pfx_smack_log+0x10/0x10
[  161.696901][ T6451]  ? smk_access+0x14c/0x4e0
[  161.696933][ T6451]  ? smk_tskacc+0x311/0x3a0
[  161.696956][ T6451]  ? smack_file_ioctl+0x2c2/0x360
[  161.696980][ T6451]  ? __pfx_smack_file_ioctl+0x10/0x10
[  161.697009][ T6451]  ? __fget_files+0x2a/0x420
[  161.697025][ T6451]  ? __fget_files+0x3a6/0x420
[  161.697040][ T6451]  ? __fget_files+0x2a/0x420
[  161.697059][ T6451]  ? bpf_lsm_file_ioctl+0x9/0x20
[  161.697081][ T6451]  ? __pfx_binder_ioctl+0x10/0x10
[  161.697102][ T6451]  __se_sys_ioctl+0xff/0x170
[  161.697123][ T6451]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.697143][ T6451]  do_syscall_64+0x15f/0xf80
[  161.697163][ T6451]  ? trace_irq_disable+0x3b/0x140
[  161.697185][ T6451]  ? clear_bhb_loop+0x40/0x90
[  161.697208][ T6451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.697226][ T6451] RIP: 0033:0x7f276479cdd9
[  161.697244][ T6451] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  161.697258][ T6451] RSP: 002b:00007f27629f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  161.697278][ T6451] RAX: ffffffffffffffda RBX: 00007f2764a15fa0 RCX: 00007f276479cdd9
[  161.697291][ T6451] RDX: 00002000000001c0 RSI: 00000000c0306201 RDI: 0000000000000003
[  161.697302][ T6451] RBP: 00007f27629f6090 R08: 0000000000000000 R09: 0000000000000000
[  161.697312][ T6451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.697322][ T6451] R13: 00007f2764a16038 R14: 00007f2764a15fa0 R15: 00007ffdfcaf0798
[  161.697349][ T6451]  </TASK>
[  161.700559][ T6451] binder: 6450:6451 ioctl c0306201 2000000001c0 returned -14
[  161.869281][ T6455] netlink: 87 bytes leftover after parsing attributes in process `syz.4.208'.
[  162.263936][ T6469] netlink: 'syz.2.213': attribute type 61 has an invalid length.
[  164.893821][ T5808] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  165.129293][ T6473] overlayfs: statfs failed on './file0'
[  165.297189][ T5808] usb 3-1: Using ep0 maxpacket: 8
[  165.746111][ T6481] netlink: 20 bytes leftover after parsing attributes in process `syz.0.215'.
[  165.964580][   T31] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  166.633661][   T37] kauditd_printk_skb: 1 callbacks suppressed
[  166.633680][   T37] audit: type=1326 audit(1777811934.589:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6484 comm="syz.4.216" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  166.633985][   T37] audit: type=1326 audit(1777811934.599:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6484 comm="syz.4.216" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  166.720910][   T37] audit: type=1326 audit(1777811934.679:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6484 comm="syz.4.216" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  166.721322][   T37] audit: type=1326 audit(1777811934.679:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6484 comm="syz.4.216" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  166.722076][   T37] audit: type=1326 audit(1777811934.679:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6484 comm="syz.4.216" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f349cdd9 code=0x7ffc0000
[  166.866312][ T5808] usb 3-1: device descriptor read/all, error -71
[  167.030702][ T6494] FAULT_INJECTION: forcing a failure.
[  167.030702][ T6494] name failslab, interval 1, probability 0, space 0, times 0
[  167.030732][ T6494] CPU: 1 UID: 0 PID: 6494 Comm: syz.0.218 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  167.030755][ T6494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  167.030767][ T6494] Call Trace:
[  167.030774][ T6494]  <TASK>
[  167.030782][ T6494]  dump_stack_lvl+0xe8/0x150
[  167.030811][ T6494]  should_fail_ex+0x46b/0x600
[  167.030852][ T6494]  should_failslab+0xa8/0x100
[  167.030878][ T6494]  __kmalloc_noprof+0xdf/0x7b0
[  167.030900][ T6494]  ? anon_vma_name_alloc+0x40/0xf0
[  167.030930][ T6494]  anon_vma_name_alloc+0x40/0xf0
[  167.030955][ T6494]  set_anon_vma_name+0x171/0x380
[  167.030981][ T6494]  ? static_key_count+0x41/0x70
[  167.031008][ T6494]  ? security_task_prctl+0x163/0x190
[  167.031045][ T6494]  __se_sys_prctl+0x141d/0x1980
[  167.031080][ T6494]  ? __pfx___se_sys_prctl+0x10/0x10
[  167.031106][ T6494]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.031133][ T6494]  ? __x64_sys_prctl+0x20/0xc0
[  167.031160][ T6494]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.031181][ T6494]  do_syscall_64+0x15f/0xf80
[  167.031202][ T6494]  ? trace_irq_disable+0x3b/0x140
[  167.031225][ T6494]  ? clear_bhb_loop+0x40/0x90
[  167.031249][ T6494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.031267][ T6494] RIP: 0033:0x7f838604cdd9
[  167.031285][ T6494] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  167.031302][ T6494] RSP: 002b:00007f83842a6028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  167.031322][ T6494] RAX: ffffffffffffffda RBX: 00007f83862c5fa0 RCX: 00007f838604cdd9
[  167.031337][ T6494] RDX: 0000200000ffc000 RSI: 0000000000000000 RDI: 0000000053564d41
[  167.031350][ T6494] RBP: 00007f83842a6090 R08: 0000200000000000 R09: 0000000000000000
[  167.031363][ T6494] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000001
[  167.031375][ T6494] R13: 00007f83862c6038 R14: 00007f83862c5fa0 R15: 00007fff68454f68
[  167.031404][ T6494]  </TASK>
[  167.384011][ T6499] FAULT_INJECTION: forcing a failure.
[  167.384011][ T6499] name failslab, interval 1, probability 0, space 0, times 0
[  167.384044][ T6499] CPU: 1 UID: 0 PID: 6499 Comm: syz.2.219 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  167.384067][ T6499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  167.384078][ T6499] Call Trace:
[  167.384085][ T6499]  <TASK>
[  167.384092][ T6499]  dump_stack_lvl+0xe8/0x150
[  167.384122][ T6499]  should_fail_ex+0x46b/0x600
[  167.384158][ T6499]  should_failslab+0xa8/0x100
[  167.384183][ T6499]  kmem_cache_alloc_noprof+0x87/0x680
[  167.384204][ T6499]  ? alloc_empty_file+0x5b/0x1d0
[  167.384236][ T6499]  alloc_empty_file+0x5b/0x1d0
[  167.384265][ T6499]  path_openat+0x11b/0x38a0
[  167.384296][ T6499]  ? try_to_take_rt_mutex+0x840/0xb00
[  167.384325][ T6499]  ? arch_stack_walk+0xfb/0x150
[  167.384361][ T6499]  ? __lock_acquire+0x6b5/0x2cf0
[  167.384393][ T6499]  ? __pfx_path_openat+0x10/0x10
[  167.384419][ T6499]  ? kasan_save_track+0x4f/0x80
[  167.384436][ T6499]  ? kasan_save_track+0x3e/0x80
[  167.384459][ T6499]  ? __kasan_slab_alloc+0x6c/0x80
[  167.384478][ T6499]  ? kmem_cache_alloc_noprof+0x33b/0x680
[  167.384505][ T6499]  ? do_raw_spin_lock+0x12b/0x2f0
[  167.384536][ T6499]  do_file_open+0x23e/0x4a0
[  167.384558][ T6499]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  167.384583][ T6499]  ? __pfx_do_file_open+0x10/0x10
[  167.384602][ T6499]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  167.384652][ T6499]  ? alloc_fd+0x64e/0x6c0
[  167.384691][ T6499]  do_sys_openat2+0x113/0x200
[  167.384723][ T6499]  ? __pfx_do_sys_openat2+0x10/0x10
[  167.384753][ T6499]  ? ksys_write+0x248/0x270
[  167.384777][ T6499]  ? __pfx_ksys_write+0x10/0x10
[  167.384802][ T6499]  __x64_sys_openat+0x138/0x170
[  167.384834][ T6499]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.384855][ T6499]  do_syscall_64+0x15f/0xf80
[  167.384875][ T6499]  ? trace_irq_disable+0x3b/0x140
[  167.384898][ T6499]  ? clear_bhb_loop+0x40/0x90
[  167.384921][ T6499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.384940][ T6499] RIP: 0033:0x7f3c23eed60e
[  167.384958][ T6499] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  167.384975][ T6499] RSP: 002b:00007f3c22143f18 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  167.384996][ T6499] RAX: ffffffffffffffda RBX: 00007f3c221446c0 RCX: 00007f3c23eed60e
[  167.385010][ T6499] RDX: 0000000000000000 RSI: 00007f3c23fc2400 RDI: ffffffffffffff9c
[  167.385023][ T6499] RBP: 00007f3c22144090 R08: 0000000000000000 R09: 0000000000000000
[  167.385034][ T6499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.385046][ T6499] R13: 00007f3c241a6218 R14: 00007f3c241a6180 R15: 00007ffc54fb1098
[  167.385076][ T6499]  </TASK>
[  170.083149][   T31] usb 2-1: device descriptor read/64, error -71
[  170.326449][   T31] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  170.425664][ T6506] netlink: 'syz.2.222': attribute type 1 has an invalid length.
[  170.635256][ T6512] FAULT_INJECTION: forcing a failure.
[  170.635256][ T6512] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.635289][ T6512] CPU: 0 UID: 0 PID: 6512 Comm: syz.0.226 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  170.635310][ T6512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  170.635321][ T6512] Call Trace:
[  170.635328][ T6512]  <TASK>
[  170.635336][ T6512]  dump_stack_lvl+0xe8/0x150
[  170.635364][ T6512]  should_fail_ex+0x46b/0x600
[  170.635401][ T6512]  _copy_from_iter+0x1d3/0x1670
[  170.635420][ T6512]  ? rcu_is_watching+0x15/0xb0
[  170.635450][ T6512]  ? trace_kmem_cache_alloc+0x29/0xe0
[  170.635474][ T6512]  ? kmem_cache_alloc_noprof+0x388/0x680
[  170.635494][ T6512]  ? __pfx__copy_from_iter+0x10/0x10
[  170.635520][ T6512]  ? __build_skb+0x2a2/0x440
[  170.635545][ T6512]  ? netlink_sendmsg+0x650/0xb40
[  170.635567][ T6512]  ? skb_put+0x11b/0x210
[  170.635592][ T6512]  netlink_sendmsg+0x6c0/0xb40
[  170.635623][ T6512]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.635648][ T6512]  ? __fget_files+0x2a/0x420
[  170.635669][ T6512]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  170.635689][ T6512]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.635713][ T6512]  __sys_sendto+0x67f/0x710
[  170.635741][ T6512]  ? __pfx___sys_sendto+0x10/0x10
[  170.635786][ T6512]  ? ksys_write+0x248/0x270
[  170.635810][ T6512]  ? __pfx_ksys_write+0x10/0x10
[  170.635836][ T6512]  __x64_sys_sendto+0xde/0x100
[  170.635859][ T6512]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.635880][ T6512]  do_syscall_64+0x15f/0xf80
[  170.635901][ T6512]  ? trace_irq_disable+0x3b/0x140
[  170.635924][ T6512]  ? clear_bhb_loop+0x40/0x90
[  170.635948][ T6512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.635967][ T6512] RIP: 0033:0x7f838604cdd9
[  170.635985][ T6512] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  170.636001][ T6512] RSP: 002b:00007f83842a6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  170.636020][ T6512] RAX: ffffffffffffffda RBX: 00007f83862c5fa0 RCX: 00007f838604cdd9
[  170.636034][ T6512] RDX: 0000000000010a73 RSI: 0000200000000000 RDI: 0000000000000003
[  170.636052][ T6512] RBP: 00007f83842a6090 R08: 0000000000000000 R09: 4b6ae4f95a5de35b
[  170.636065][ T6512] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  170.636076][ T6512] R13: 00007f83862c6038 R14: 00007f83862c5fa0 R15: 00007fff68454f68
[  170.636106][ T6512]  </TASK>
[  170.872504][ T6516] netlink: 44 bytes leftover after parsing attributes in process `syz.1.224'.
[  173.197617][ T6520] bridge0: port 3(netdevsim0) entered blocking state
[  173.201293][ T6520] bridge0: port 3(netdevsim0) entered disabled state
[  173.217423][ T6520] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  173.282821][ T6520] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  173.314799][ T6520] bridge0: port 3(netdevsim0) entered blocking state
[  173.315450][ T6520] bridge0: port 3(netdevsim0) entered forwarding state
[  174.077423][ T6526] FAULT_INJECTION: forcing a failure.
[  174.077423][ T6526] name failslab, interval 1, probability 0, space 0, times 0
[  174.077454][ T6526] CPU: 0 UID: 0 PID: 6526 Comm: syz.0.229 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  174.077475][ T6526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  174.077496][ T6526] Call Trace:
[  174.077502][ T6526]  <TASK>
[  174.077510][ T6526]  dump_stack_lvl+0xe8/0x150
[  174.077539][ T6526]  should_fail_ex+0x46b/0x600
[  174.077575][ T6526]  should_failslab+0xa8/0x100
[  174.077600][ T6526]  __kmalloc_cache_noprof+0x84/0x690
[  174.077622][ T6526]  ? snd_pcm_oss_change_params_locked+0x175/0x3e00
[  174.077648][ T6526]  snd_pcm_oss_change_params_locked+0x175/0x3e00
[  174.077694][ T6526]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  174.077727][ T6526]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  174.077748][ T6526]  ? lockdep_hardirqs_on+0x7a/0x110
[  174.077769][ T6526]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  174.077789][ T6526]  ? mutex_lock_interruptible_nested+0x152/0x1d0
[  174.077817][ T6526]  ? snd_pcm_oss_get_active_substream+0x136/0x280
[  174.077843][ T6526]  snd_pcm_oss_get_active_substream+0x1e2/0x280
[  174.077870][ T6526]  snd_pcm_oss_set_channels+0x1b6/0x4d0
[  174.077896][ T6526]  snd_pcm_oss_ioctl+0xade/0xe00
[  174.077923][ T6526]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  174.077943][ T6526]  __se_sys_ioctl+0xff/0x170
[  174.077965][ T6526]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.077986][ T6526]  do_syscall_64+0x15f/0xf80
[  174.078009][ T6526]  ? clear_bhb_loop+0x40/0x90
[  174.078033][ T6526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.078050][ T6526] RIP: 0033:0x7f838604cdd9
[  174.078075][ T6526] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  174.078090][ T6526] RSP: 002b:00007f83842a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  174.078110][ T6526] RAX: ffffffffffffffda RBX: 00007f83862c5fa0 RCX: 00007f838604cdd9
[  174.078124][ T6526] RDX: 0000200000000700 RSI: 00000000c0045006 RDI: 0000000000000003
[  174.078136][ T6526] RBP: 00007f83842a6090 R08: 0000000000000000 R09: 0000000000000000
[  174.078148][ T6526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.078159][ T6526] R13: 00007f83862c6038 R14: 00007f83862c5fa0 R15: 00007fff68454f68
[  174.078190][ T6526]  </TASK>
[  174.130329][ T6525] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  174.130849][ T6525] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  174.343182][   T31] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  175.653796][   T31] usb 3-1: config 0 has no interfaces?
[  175.685339][   T31] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  175.685369][   T31] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  175.685389][   T31] usb 3-1: Product: syz
[  175.685404][   T31] usb 3-1: Manufacturer: syz
[  175.741103][   T31] usb 3-1: config 0 descriptor??
[  177.144678][ T5619] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  177.293112][ T5619] usb 1-1: Using ep0 maxpacket: 16
[  177.317087][ T5619] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  177.317119][ T5619] usb 1-1: config 0 interface 0 has no altsetting 0
[  177.325788][ T5619] usb 1-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[  177.325815][ T5619] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.325834][ T5619] usb 1-1: Product: syz
[  177.325848][ T5619] usb 1-1: Manufacturer: syz
[  177.325860][ T5619] usb 1-1: SerialNumber: syz
[  177.456822][   T31] usb 3-1: USB disconnect, device number 7
[  178.465564][ T5619] usb 1-1: config 0 descriptor??
[  179.187748][ T4914] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  179.231258][ T4914] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  179.238093][ T4914] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  179.244042][ T4914] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  179.263356][ T4914] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  179.329402][ T5619] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input13
[  180.302844][    C0] imon 1-1:0.0: imon usb_rx_callback_intf0: status(-71)
[  180.444095][ T5619] imon:send_packet: packet tx failed (-71)
[  180.463199][ T5619] imon 1-1:0.0: panel buttons/knobs setup failed
[  180.747433][ T6580] comedi: valid board names for 8255 driver are:
[  180.747450][ T6580]  8255
[  180.747457][ T6580] comedi: valid board names for vmk80xx driver are:
[  180.747465][ T6580]  vmk80xx
[  180.747472][ T6580] comedi: valid board names for usbduxsigma driver are:
[  180.747481][ T6580]  usbduxsigma
[  180.747487][ T6580] comedi: valid board names for usbduxfast driver are:
[  180.747496][ T6580]  usbduxfast
[  180.747502][ T6580] comedi: valid board names for usbdux driver are:
[  180.747511][ T6580]  usbdux
[  180.747517][ T6580] comedi: valid board names for ni6501 driver are:
[  180.747524][ T6580]  ni6501
[  180.747529][ T6580] comedi: valid board names for dt9812 driver are:
[  180.747537][ T6580]  dt9812
[  180.747543][ T6580] comedi: valid board names for ni_labpc_cs driver are:
[  180.747552][ T6580]  ni_labpc_cs
[  180.747558][ T6580] comedi: valid board names for ni_daq_700 driver are:
[  180.747566][ T6580]  ni_daq_700
[  180.747572][ T6580] comedi: valid board names for labpc_pci driver are:
[  180.747581][ T6580]  labpc_pci
[  180.747587][ T6580] comedi: valid board names for adl_pci9118 driver are:
[  180.747595][ T6580]  pci9118dg
[  180.747601][ T6580]  pci9118hg
[  180.747607][ T6580]  pci9118hr
[  180.747612][ T6580] comedi: valid board names for 8255_pci driver are:
[  180.747619][ T6580]  8255_pci
[  180.747625][ T6580] comedi: valid board names for s526 driver are:
[  180.747632][ T6580]  s526
[  180.747639][ T6580] comedi: valid board names for multiq3 driver are:
[  180.747646][ T6580]  multiq3
[  180.747652][ T6580] comedi: valid board names for pcmuio driver are:
[  180.747660][ T6580]  pcmuio48
[  180.747666][ T6580]  pcmuio96
[  180.747672][ T6580] comedi: valid board names for pcmmio driver are:
[  180.747680][ T6580]  pcmmio
[  180.747685][ T6580] comedi: valid board names for pcmda12 driver are:
[  180.747694][ T6580]  pcmda12
[  180.747699][ T6580] comedi: valid board names for pcmad driver are:
[  180.747707][ T6580]  pcmad12
[  180.747713][ T6580]  pcmad16
[  180.747719][ T6580] comedi: valid board names for ni_labpc driver are:
[  180.747727][ T6580]  lab-pc-1200
[  180.747733][ T6580]  lab-pc-1200ai
[  180.747739][ T6580]  lab-pc+
[  180.747745][ T6580] comedi: valid board names for atmio16 driver are:
[  180.747754][ T6580]  atmio16
[  180.747759][ T6580]  atmio16d
[  180.747766][ T6580] comedi: valid board names for ni_at_ao driver are:
[  180.747774][ T6580]  at-ao-6
[  180.747779][ T6580]  at-ao-10
[  180.747785][ T6580] comedi: valid board names for ni_at_a2150 driver are:
[  180.747793][ T6580]  ni_at_a2150
[  180.747800][ T6580] comedi: valid board names for adq12b driver are:
[  180.747808][ T6580]  adq12b
[  180.747814][ T6580] comedi: valid board names for mpc624 driver are:
[  180.747822][ T6580]  mpc624
[  180.747828][ T6580] comedi: valid board names for c6xdigio driver are:
[  180.747836][ T6580]  c6xdigio
[  180.747842][ T6580] comedi: valid board names for aio_iiro_16 driver are:
[  180.747851][ T6580]  aio_iiro_16
[  180.747857][ T6580] comedi: valid board names for aio_aio12_8 driver are:
[  180.747866][ T6580]  aio_aio12_8
[  180.747871][ T6580]  aio_ai12_8
[  180.747877][ T6580]  aio_ao12_4
[  180.747883][ T6580] comedi: valid board names for fl512 driver are:
[  180.747891][ T6580]  fl512
[  180.747897][ T6580] comedi: valid board names for dmm32at driver are:
[  180.747905][ T6580]  dmm32at
[  180.747911][ T6580] comedi: valid board names for dt282x driver are:
[  180.747919][ T6580]  dt2821
[  180.747925][ T6580]  dt2821-f
[  180.747930][ T6580]  dt2821-g
[  180.747937][ T6580]  dt2823
[  180.747942][ T6580]  dt2824-pgh
[  180.747948][ T6580]  dt2824-pgl
[  180.747954][ T6580]  dt2825
[  180.747960][ T6580]  dt2827
[  180.747965][ T6580]  dt2828
[  180.747971][ T6580]  dt2829
[  180.747977][ T6580]  dt21-ez
[  180.747983][ T6580]  dt23-ez
[  180.747988][ T6580]  dt24-ez
[  180.747994][ T6580]  dt24-ez-pgl
[  180.748000][ T6580] comedi: valid board names for dt2817 driver are:
[  180.748008][ T6580]  dt2817
[  180.748014][ T6580] comedi: valid board names for dt2815 driver are:
[  180.748023][ T6580]  dt2815
[  180.748029][ T6580] comedi: valid board names for dt2814 driver are:
[  180.748037][ T6580]  dt2814
[  180.748042][ T6580] comedi: valid board names for dt2811 driver are:
[  180.748051][ T6580]  dt2811-pgh
[  180.748057][ T6580]  dt2811-pgl
[  180.748063][ T6580] comedi: valid board names for dt2801 driver are:
[  180.748071][ T6580]  dt2801
[  180.748077][ T6580] comedi: valid board names for das6402 driver are:
[  180.748085][ T6580]  das6402-12
[  180.748091][ T6580]  das6402-16
[  180.748097][ T6580] comedi: valid board names for das1800 driver are:
[  180.748105][ T6580]  das-1701st
[  180.748111][ T6580]  das-1701st-da
[  180.748117][ T6580]  das-1702st
[  180.748123][ T6580]  das-1702st-da
[  180.748129][ T6580]  das-1702hr
[  180.748135][ T6580]  das-1702hr-da
[  180.748141][ T6580]  das-1701ao
[  180.748147][ T6580]  das-1702ao
[  180.748153][ T6580]  das-1801st
[  180.748159][ T6580]  das-1801st-da
[  180.748165][ T6580]  das-1802st
[  180.748170][ T6580]  das-1802st-da
[  180.748177][ T6580]  das-1802hr
[  180.748182][ T6580]  das-1802hr-da
[  180.748189][ T6580]  das-1801hc
[  180.748194][ T6580]  das-1802hc
[  180.748200][ T6580]  das-1801ao
[  180.748206][ T6580]  das-1802ao
[  180.748212][ T6580] comedi: valid board names for das800 driver are:
[  180.748220][ T6580]  das-800
[  180.748226][ T6580]  cio-das800
[  180.748232][ T6580]  das-801
[  180.748237][ T6580]  cio-das801
[  180.748244][ T6580]  das-802
[  180.748249][ T6580]  cio-das802
[  180.748256][ T6580]  cio-das802/16
[  180.748262][ T6580] comedi: valid board names for isa-das08 driver are:
[  180.748270][ T6580]  isa-das08
[  180.748276][ T6580]  das08-pgm
[  180.748282][ T6580]  das08-pgh
[  180.748288][ T6580]  das08-pgl
[  180.748294][ T6580]  das08-aoh
[  180.748300][ T6580]  das08-aol
[  180.748306][ T6580]  das08-aom
[  180.748312][ T6580]  das08/jr-ao
[  180.748318][ T6580]  das08jr-16-ao
[  180.748324][ T6580]  pc104-das08
[  180.748330][ T6580]  das08jr/16
[  180.748336][ T6580] comedi: valid board names for das16m1 driver are:
[  180.748344][ T6580]  das16m1
[  180.748350][ T6580] comedi: valid board names for dac02 driver are:
[  180.748358][ T6580]  dac02
[  180.748363][ T6580] comedi: valid board names for rti802 driver are:
[  180.748372][ T6580]  rti802
[  180.748377][ T6580] comedi: valid board names for rti800 driver are:
[  180.748386][ T6580]  rti800
[  180.748397][ T6580]  rti815
[  180.748403][ T6580] comedi: valid board names for pcm3724 driver are:
[  180.748412][ T6580]  pcm3724
[  180.748418][ T6580] comedi: valid board names for pcl818 driver are:
[  180.748426][ T6580]  pcl818l
[  180.748432][ T6580]  pcl818h
[  180.750572][ T6580]  pcl818hd
[  180.750582][ T6580]  pcl818hg
[  180.750588][ T6580]  pcl818
[  180.750594][ T6580]  pcl718
[  180.750599][ T6580]  pcm3718
[  180.750607][ T6580] comedi: valid board names for pcl816 driver are:
[  180.750615][ T6580]  pcl816
[  180.750622][ T6580]  pcl814b
[  180.750628][ T6580] comedi: valid board names for pcl812 driver are:
[  180.750635][ T6580]  pcl812
[  180.750641][ T6580]  pcl812pg
[  180.750647][ T6580]  acl8112pg
[  180.750652][ T6580]  acl8112dg
[  180.750657][ T6580]  acl8112hg
[  180.750663][ T6580]  a821pgl
[  180.750670][ T6580]  a821pglnda
[  180.750676][ T6580]  a821pgh
[  180.750681][ T6580]  a822pgl
[  180.750687][ T6580]  a822pgh
[  180.750693][ T6580]  a823pgl
[  180.750698][ T6580]  a823pgh
[  180.750704][ T6580]  pcl813
[  180.750710][ T6580]  pcl813b
[  180.750717][ T6580]  acl8113
[  180.750721][ T6580]  iso813
[  180.750727][ T6580]  acl8216
[  180.750732][ T6580]  a826pg
[  180.750738][ T6580] comedi: valid board names for pcl730 driver are:
[  180.750746][ T6580]  pcl730
[  180.750751][ T6580]  iso730
[  180.750756][ T6580]  acl7130
[  180.750761][ T6580]  pcm3730
[  180.750766][ T6580]  pcl725
[  180.750772][ T6580]  p8r8dio
[  180.750777][ T6580]  acl7225b
[  180.750784][ T6580]  p16r16dio
[  180.750789][ T6580]  pcl733
[  180.750794][ T6580]  pcl734
[  180.750800][ T6580]  opmm-1616-xt
[  180.750806][ T6580]  pearl-mm-p
[  180.750811][ T6580]  ir104-pbf
[  180.750816][ T6580] comedi: valid board names for pcl726 driver are:
[  180.750824][ T6580]  pcl726
[  180.750829][ T6580]  pcl727
[  180.750835][ T6580]  pcl728
[  180.750839][ T6580]  acl6126
[  180.750845][ T6580]  acl6128
[  180.750850][ T6580] comedi: valid board names for pcl724 driver are:
[  180.750858][ T6580]  pcl724
[  180.750864][ T6580]  pcl722
[  180.750869][ T6580]  pcl731
[  180.750875][ T6580]  acl7122
[  180.750881][ T6580]  acl7124
[  180.750887][ T6580]  pet48dio
[  180.750892][ T6580]  pcmio48
[  180.750897][ T6580]  onyx-mm-dio
[  180.750903][ T6580] comedi: valid board names for pcl711 driver are:
[  180.750911][ T6580]  pcl711
[  180.750916][ T6580]  pcl711b
[  180.750921][ T6580]  acl8112hg
[  180.750927][ T6580]  acl8112dg
[  180.750932][ T6580] comedi: valid board names for amplc_pc263 driver are:
[  180.750941][ T6580]  pc263
[  180.750946][ T6580] comedi: valid board names for amplc_pc236 driver are:
[  180.750955][ T6580]  pc36at
[  180.750960][ T6580] comedi: valid board names for amplc_dio200 driver are:
[  180.750969][ T6580]  pc212e
[  180.750974][ T6580]  pc214e
[  180.750980][ T6580]  pc215e
[  180.750986][ T6580]  pc218e
[  180.750991][ T6580]  pc272e
[  180.750997][ T6580] comedi: valid board names for comedi_parport driver are:
[  180.751005][ T6580]  comedi_parport
[  180.751012][ T6580] comedi: valid board names for comedi_test driver are:
[  180.751020][ T6580]  comedi_test
[  180.751026][ T6580] comedi: valid board names for comedi_bond driver are:
[  180.751034][ T6580]  comedi_bond
[  181.237975][ T6589] evm: overlay not supported
[  181.723252][ T4914] Bluetooth: hci5: command tx timeout
[  182.363266][ T5619] rc_core: IR keymap rc-imon-pad not found
[  182.363279][ T5619] Registered IR keymap rc-empty
[  182.363346][ T5619] imon 1-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  182.363356][ T5619] imon 1-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  182.380360][ T5619] imon:send_packet: packet tx failed (-71)
[  182.401287][ T5619] imon 1-1:0.0: remote input dev register failed
[  182.401452][ T5619] imon 1-1:0.0: imon_init_intf0: rc device setup failed
[  183.839009][ T5619] imon 1-1:0.0: unable to initialize intf0, err 0
[  183.839033][ T5619] imon:imon_probe: failed to initialize context!
[  183.839046][ T5619] imon 1-1:0.0: unable to register, err -19
[  183.889970][ T5619] usb 1-1: USB disconnect, device number 13
[  183.993469][ T4914] Bluetooth: hci5: command tx timeout
[  184.193863][ T6615] binder: 6609:6615 ioctl c0306201 200000000480 returned -14
[  184.926213][ T6616] netlink: 4 bytes leftover after parsing attributes in process `syz.0.252'.
[  185.244675][   T37] audit: type=1326 audit(1777811953.199:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.244728][   T37] audit: type=1326 audit(1777811953.199:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.317159][   T37] audit: type=1326 audit(1777811953.279:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.317212][   T37] audit: type=1326 audit(1777811953.279:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.322884][   T37] audit: type=1326 audit(1777811953.279:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.322932][   T37] audit: type=1326 audit(1777811953.279:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.322973][   T37] audit: type=1326 audit(1777811953.279:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.329260][ T6625] binder: 6617:6625 ioctl c0306201 200000000480 returned -14
[  185.461369][   T37] audit: type=1326 audit(1777811953.319:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.461418][   T37] audit: type=1326 audit(1777811953.419:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.461460][   T37] audit: type=1326 audit(1777811953.419:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6622 comm="syz.2.255" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3c23f2cdd9 code=0x7ffc0000
[  185.493759][ T5619] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  185.817538][ T5808] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  185.893733][ T5619] usb 1-1: device descriptor read/64, error -71
[  186.059540][ T4914] Bluetooth: hci5: command tx timeout
[  187.225384][ T6627] syz.2.255 (6627) used greatest stack depth: 18392 bytes left
[  188.647785][ T6633] binder: 6630:6633 ioctl c0306201 200000000480 returned -14
[  188.686982][ T4914] Bluetooth: hci5: command tx timeout
[  189.303137][ T5808] usb 5-1: Using ep0 maxpacket: 16
[  189.364416][ T5619] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  189.457911][ T5808] usb 5-1: device descriptor read/all, error -71
[  189.693680][ T6644] mmap: syz.0.260 (6644) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  189.776626][ T6648] FAULT_INJECTION: forcing a failure.
[  189.776626][ T6648] name failslab, interval 1, probability 0, space 0, times 0
[  189.776658][ T6648] CPU: 1 UID: 0 PID: 6648 Comm: syz.1.261 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  189.776693][ T6648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  189.776711][ T6648] Call Trace:
[  189.776719][ T6648]  <TASK>
[  189.776725][ T6648]  dump_stack_lvl+0xe8/0x150
[  189.776749][ T6648]  should_fail_ex+0x46b/0x600
[  189.776776][ T6648]  should_failslab+0xa8/0x100
[  189.776795][ T6648]  kmem_cache_alloc_noprof+0x87/0x680
[  189.776810][ T6648]  ? arch_stack_walk+0xfb/0x150
[  189.776828][ T6648]  ? vm_area_dup+0x2b/0x670
[  189.776849][ T6648]  vm_area_dup+0x2b/0x670
[  189.776870][ T6648]  __split_vma+0x1e4/0xa30
[  189.776891][ T6648]  ? __lock_acquire+0x6b5/0x2cf0
[  189.776918][ T6648]  ? __pfx___split_vma+0x10/0x10
[  189.776953][ T6648]  vms_gather_munmap_vmas+0x32d/0x1380
[  189.776971][ T6648]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  189.776989][ T6648]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  189.777016][ T6648]  ? mtree_range_walk+0x6fc/0x8b0
[  189.777036][ T6648]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  189.777064][ T6648]  ? mas_find+0xa7d/0xd30
[  189.777086][ T6648]  mmap_region+0x945/0x2280
[  189.777120][ T6648]  ? __pfx_mmap_region+0x10/0x10
[  189.777143][ T6648]  ? __lock_acquire+0x6b5/0x2cf0
[  189.777168][ T6648]  ? __lock_acquire+0x6b5/0x2cf0
[  189.777191][ T6648]  ? __lock_acquire+0x6b5/0x2cf0
[  189.777257][ T6648]  ? __lock_acquire+0x6b5/0x2cf0
[  189.777291][ T6648]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  189.777318][ T6648]  ? mm_get_unmapped_area_vmflags+0xd9/0x110
[  189.777335][ T6648]  ? cap_mmap_addr+0xaf/0x100
[  189.777356][ T6648]  ? bpf_lsm_mmap_addr+0x9/0x50
[  189.777377][ T6648]  ? shmem_mapping+0xd/0x50
[  189.777392][ T6648]  ? memfd_check_seals_mmap+0x16e/0x210
[  189.777420][ T6648]  do_mmap+0xc2f/0x10c0
[  189.777438][ T6648]  ? __pfx_mtree_load+0x10/0x10
[  189.777453][ T6648]  ? __pfx_do_mmap+0x10/0x10
[  189.777471][ T6648]  ? mmap_write_lock_killable+0x1f/0xc0
[  189.777499][ T6648]  __se_sys_remap_file_pages+0x6dd/0x8a0
[  189.777526][ T6648]  ? __pfx___se_sys_remap_file_pages+0x10/0x10
[  189.777544][ T6648]  ? ksys_write+0x248/0x270
[  189.777562][ T6648]  ? __pfx_ksys_write+0x10/0x10
[  189.777583][ T6648]  ? __x64_sys_remap_file_pages+0x20/0xc0
[  189.777598][ T6648]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.777614][ T6648]  do_syscall_64+0x15f/0xf80
[  189.777629][ T6648]  ? trace_irq_disable+0x3b/0x140
[  189.777646][ T6648]  ? clear_bhb_loop+0x40/0x90
[  189.777664][ T6648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.777679][ T6648] RIP: 0033:0x7feef888cdd9
[  189.777694][ T6648] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  189.777707][ T6648] RSP: 002b:00007feef6ae6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8
[  189.777724][ T6648] RAX: ffffffffffffffda RBX: 00007feef8b05fa0 RCX: 00007feef888cdd9
[  189.777735][ T6648] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000800000
[  189.777745][ T6648] RBP: 00007feef6ae6090 R08: 0000000000010000 R09: 0000000000000000
[  189.777754][ T6648] R10: 0000000000000600 R11: 0000000000000246 R12: 0000000000000001
[  189.777763][ T6648] R13: 00007feef8b06038 R14: 00007feef8b05fa0 R15: 00007ffc37895698
[  189.777787][ T6648]  </TASK>
[  190.353502][ T5619] usb 1-1: device descriptor read/64, error -71
[  190.464499][ T5619] usb usb1-port1: attempt power cycle
[  190.601389][ T6660] binder: 6652:6660 ioctl c0306201 200000000480 returned -14
[  191.593202][ T5619] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  191.614764][ T5619] usb 1-1: Using ep0 maxpacket: 16
[  191.616942][ T5619] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  191.616971][ T5619] usb 1-1: config 0 interface 0 has no altsetting 0
[  191.628603][ T5619] usb 1-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[  191.628642][ T5619] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.628660][ T5619] usb 1-1: Product: syz
[  191.628673][ T5619] usb 1-1: Manufacturer: syz
[  191.628686][ T5619] usb 1-1: SerialNumber: syz
[  191.734681][ T5736] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  191.884818][ T5619] usb 1-1: config 0 descriptor??
[  191.994064][ T5736] usb 5-1: Using ep0 maxpacket: 16
[  192.004790][ T5736] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  192.004823][ T5736] usb 5-1: config 0 interface 0 has no altsetting 0
[  192.011323][ T5736] usb 5-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[  192.011351][ T5736] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.011369][ T5736] usb 5-1: Product: syz
[  192.011381][ T5736] usb 5-1: Manufacturer: syz
[  192.011393][ T5736] usb 5-1: SerialNumber: syz
[  192.068735][ T5736] usb 5-1: config 0 descriptor??
[  192.149051][ T5619] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input15
[  192.360541][ T5736] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input16
[  193.113236][ T5619] rc_core: IR keymap rc-imon-pad not found
[  193.113256][ T5619] Registered IR keymap rc-empty
[  193.113401][ T5619] imon 1-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  193.113419][ T5619] imon 1-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  193.123178][ T5736] rc_core: IR keymap rc-imon-pad not found
[  193.123195][ T5736] Registered IR keymap rc-empty
[  193.123443][ T5736] imon 5-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  193.123463][ T5736] imon 5-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  193.226672][ T5736] rc rc1: iMON Remote (15c2:0041) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc1
[  193.260143][ T5619] rc rc0: iMON Remote (15c2:0041) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  193.290863][ T5619] input: iMON Remote (15c2:0041) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input17
[  193.323895][    C0] imon 1-1:0.0: imon usb_rx_callback_intf0: status(-71)
[  193.328303][    C1] imon 5-1:0.0: imon usb_rx_callback_intf0: status(-71)
[  193.342691][ T5619] imon 1-1:0.0: iMON device (15c2:0041, intf0) on usb<1:16> initialized
[  193.465993][ T5736] input: iMON Remote (15c2:0041) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc1/input18
[  193.476300][ T5736] imon 5-1:0.0: iMON device (15c2:0041, intf0) on usb<5:9> initialized
[  193.490842][ T5736] usb 5-1: USB disconnect, device number 9
[  193.539168][ T5619] usb 1-1: USB disconnect, device number 16
[  193.983301][ T5808] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  194.180371][ T1417] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.195639][ T5808] usb 2-1: Using ep0 maxpacket: 32
[  194.208686][ T5808] usb 2-1: config 0 has an invalid interface number: 85 but max is 0
[  194.208712][ T5808] usb 2-1: config 0 has no interface number 0
[  194.208751][ T5808] usb 2-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  194.208776][ T5808] usb 2-1: config 0 interface 85 has no altsetting 0
[  194.221496][ T1332] ieee802154 phy0 wpan0: encryption failed: -22
[  194.221643][ T1332] ieee802154 phy1 wpan1: encryption failed: -22
[  194.238274][ T5808] usb 2-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  194.238308][ T5808] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.238328][ T5808] usb 2-1: Product: syz
[  194.238341][ T5808] usb 2-1: Manufacturer: syz
[  194.238360][ T5808] usb 2-1: SerialNumber: syz
[  194.252007][ T5808] usb 2-1: config 0 descriptor??
[  194.982015][ T6701] binder: 6697:6701 ioctl c0306201 200000000480 returned -14
[  195.965338][ T5808] appletouch 2-1:0.85: Geyser mode initialized.
[  196.120251][ T5808] input: appletouch as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.85/input/input19
[  198.105767][ T1417] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.253223][ T5736] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  198.627424][ T5736] usb 5-1: Using ep0 maxpacket: 16
[  198.706610][ T6727] overlayfs: failed to resolve './file0': -2
[  200.417842][ T5736] usb 5-1: device descriptor read/all, error -71
[  201.130057][ T6746] netlink: 'syz.4.290': attribute type 1 has an invalid length.
[  201.310638][ T1417] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.820147][ T5616] Bluetooth: hci1: command 0x0406 tx timeout
[  202.186751][ T6566] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.186819][ T6566] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.186931][ T6566] bridge_slave_0: entered allmulticast mode
[  202.191640][ T6566] bridge_slave_0: entered promiscuous mode
[  202.268507][ T6566] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.268682][ T6566] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.268858][ T6566] bridge_slave_1: entered allmulticast mode
[  202.351060][ T6566] bridge_slave_1: entered promiscuous mode
[  202.783357][ T1417] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.803743][   T31] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  203.487017][   T31] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  203.487047][   T31] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.538974][   T31] usb 3-1: config 0 descriptor??
[  203.549769][   T31] cp210x 3-1:0.0: cp210x converter detected
[  204.019131][   T31] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -71
[  204.022350][   T31] cp210x 3-1:0.0: failed to get vendor val 0x370c size 73: -71
[  204.022377][   T31] cp210x 3-1:0.0: GPIO initialisation failed: -71
[  204.090008][ T6770] overlayfs: missing 'lowerdir'
[  204.130150][   T31] usb 3-1: cp210x converter now attached to ttyUSB0
[  204.160746][   T31] usb 3-1: USB disconnect, device number 8
[  204.195199][   T31] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  204.197954][   T31] cp210x 3-1:0.0: device disconnected
[  204.315386][ T6566] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  204.336919][ T6566] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  204.968540][ T6779] binder: 6776:6779 ioctl c0306201 200000000480 returned -14
[  205.591123][ T6566] team0: Port device team_slave_0 added
[  205.618493][ T6566] team0: Port device team_slave_1 added
[  205.902640][ T6782] 9p: Bad value for 'wfdno'
[  205.918295][ T6784] netlink: 16 bytes leftover after parsing attributes in process `syz.0.301'.
[  206.022477][ T6566] batman_adv: batadv0: Adding interface: batadv_slave_0
[  206.022492][ T6566] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  206.022516][ T6566] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  206.072737][ T6566] batman_adv: batadv0: Adding interface: batadv_slave_1
[  206.072751][ T6566] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  206.072771][ T6566] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  206.829506][   T10] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  207.107800][   T10] usb 3-1: Using ep0 maxpacket: 16
[  207.168909][   T10] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  207.168937][   T10] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  207.171436][   T10] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  207.171462][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.171482][   T10] usb 3-1: Product: syz
[  207.171495][   T10] usb 3-1: Manufacturer: syz
[  207.171508][   T10] usb 3-1: SerialNumber: syz
[  207.295694][   T10] usb 3-1: 0:2 : does not exist
[  207.295789][   T10] usb 3-1: unit 6 not found!
[  207.341372][ T6566] hsr_slave_0: entered promiscuous mode
[  207.349268][ T6566] hsr_slave_1: entered promiscuous mode
[  207.351804][ T6566] debugfs: 'hsr0' already exists in 'hsr'
[  207.351829][ T6566] Cannot create hsr debugfs directory
[  207.628741][   T10] usb 3-1: USB disconnect, device number 9
[  207.790844][   T31] usb 2-1: USB disconnect, device number 8
[  207.805075][ T5909] udevd[5909]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  208.026226][   T31] appletouch 2-1:0.85: input: appletouch disconnected
[  208.123294][ T5808] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  208.275084][ T5808] usb 1-1: Using ep0 maxpacket: 16
[  208.278546][ T5808] usb 1-1: unable to get BOS descriptor or descriptor too short
[  208.282320][ T5808] usb 1-1: config 42 has an invalid interface number: 178 but max is 0
[  208.282344][ T5808] usb 1-1: config 42 has no interface number 0
[  208.282374][ T5808] usb 1-1: config 42 interface 178 has no altsetting 0
[  208.332433][ T5808] usb 1-1: string descriptor 0 read error: -22
[  208.332574][ T5808] usb 1-1: New USB device found, idVendor=045e, idProduct=00f8, bcdDevice=e0.e5
[  208.332597][ T5808] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  208.400543][ T5808] uvcvideo 1-1:42.178: Found multiple Units with ID 1
[  208.400677][ T5808] uvcvideo 1-1:42.178: Found UVC 0.00 device <unnamed> (045e:00f8)
[  208.400702][ T5808] uvcvideo 1-1:42.178: No valid video chain found.
[  208.742559][ T5808] usb 1-1: USB disconnect, device number 17
[  209.053448][ T6841] netlink: 36 bytes leftover after parsing attributes in process `syz.4.321'.
[  209.246237][ T6845] binder: 6836:6845 ioctl c0306201 200000000480 returned -14
[  210.116800][ T1417] bridge_slave_1: left allmulticast mode
[  210.142469][ T1417] bridge_slave_1: left promiscuous mode
[  210.169141][ T1417] bridge0: port 2(bridge_slave_1) entered disabled state
[  211.293145][ T1417] bridge_slave_0: left allmulticast mode
[  211.293179][ T1417] bridge_slave_0: left promiscuous mode
[  211.293423][ T1417] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.903748][ T1417] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  211.983897][ T1417] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  212.004893][ T1417] bond0 (unregistering): Released all slaves
[  212.160336][ T5260] 8021q: adding VLAN 0 to HW filter on device eth1
[  212.470480][ T6890] netlink: 'syz.2.340': attribute type 1 has an invalid length.
[  212.804460][ T6566] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  213.066029][ T6566] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  213.095402][ T6900] netlink: 16 bytes leftover after parsing attributes in process `syz.0.341'.
[  213.335168][ T6566] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  213.837438][ T6566] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  214.595455][ T6940] netlink: 16 bytes leftover after parsing attributes in process `syz.2.353'.
[  214.948497][ T6566] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  215.819284][ T6566] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  216.625327][ T6566] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  216.716249][ T6566] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  217.132739][ T5260] 8021q: adding VLAN 0 to HW filter on device eth2
[  220.112898][ T6991] netlink: 'syz.0.366': attribute type 8 has an invalid length.
[  220.781673][ T7005] FAULT_INJECTION: forcing a failure.
[  220.781673][ T7005] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  220.781707][ T7005] CPU: 0 UID: 0 PID: 7005 Comm: syz.2.374 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  220.781729][ T7005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  220.781741][ T7005] Call Trace:
[  220.781748][ T7005]  <TASK>
[  220.781756][ T7005]  dump_stack_lvl+0xe8/0x150
[  220.781786][ T7005]  should_fail_ex+0x46b/0x600
[  220.781823][ T7005]  _copy_to_user+0x31/0xb0
[  220.781848][ T7005]  simple_read_from_buffer+0xe1/0x170
[  220.781883][ T7005]  proc_fail_nth_read+0x1be/0x230
[  220.781917][ T7005]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  220.781948][ T7005]  ? rw_verify_area+0x2ac/0x4e0
[  220.781968][ T7005]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  220.781997][ T7005]  vfs_read+0x212/0xa80
[  220.782023][ T7005]  ? __pfx_vfs_read+0x10/0x10
[  220.782046][ T7005]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  220.782068][ T7005]  ? lockdep_hardirqs_on+0x7a/0x110
[  220.782089][ T7005]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  220.782108][ T7005]  ? mutex_lock_nested+0x152/0x1d0
[  220.782133][ T7005]  ? fdget_pos+0x252/0x320
[  220.782159][ T7005]  ksys_read+0x156/0x270
[  220.782182][ T7005]  ? __pfx_ksys_read+0x10/0x10
[  220.782202][ T7005]  ? __pfx_posix_clock_ioctl+0x10/0x10
[  220.782245][ T7005]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.782265][ T7005]  do_syscall_64+0x15f/0xf80
[  220.782285][ T7005]  ? trace_irq_disable+0x3b/0x140
[  220.782307][ T7005]  ? clear_bhb_loop+0x40/0x90
[  220.782331][ T7005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.782350][ T7005] RIP: 0033:0x7f3c23eed60e
[  220.782367][ T7005] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  220.782384][ T7005] RSP: 002b:00007f3c22185fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  220.782403][ T7005] RAX: ffffffffffffffda RBX: 00007f3c221866c0 RCX: 00007f3c23eed60e
[  220.782417][ T7005] RDX: 000000000000000f RSI: 00007f3c221860a0 RDI: 0000000000000004
[  220.782429][ T7005] RBP: 00007f3c22186090 R08: 0000000000000000 R09: 0000000000000000
[  220.782441][ T7005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.782452][ T7005] R13: 00007f3c241a6038 R14: 00007f3c241a5fa0 R15: 00007ffc54fb1098
[  220.782482][ T7005]  </TASK>
[  220.976909][ T7011] netlink: 16 bytes leftover after parsing attributes in process `syz.4.371'.
[  221.216656][ T7019] netlink: 20 bytes leftover after parsing attributes in process `syz.1.379'.
[  221.255816][ T7019] netlink: 80 bytes leftover after parsing attributes in process `syz.1.379'.
[  221.255831][ T7019] netlink: 40 bytes leftover after parsing attributes in process `syz.1.379'.
[  224.524324][ T7029] overlayfs: statfs failed on './file0'
[  224.603831][ T5700] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  225.197921][ T7040] binder: 7035:7040 ioctl c0306201 200000000480 returned -14
[  227.330751][ T7067] netlink: 16 bytes leftover after parsing attributes in process `syz.4.392'.
[  228.187056][ T6566] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.313999][ T7090] overlayfs: failed to resolve './file0': -2
[  232.203261][ T1417] hsr_slave_0: left promiscuous mode
[  232.249485][ T1417] hsr_slave_1: left promiscuous mode
[  232.250878][ T1417] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  232.251030][ T1417] batman_adv: batadv0: Removing interface: batadv_slave_0
[  232.638422][ T1417] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  232.638448][ T1417] batman_adv: batadv0: Removing interface: batadv_slave_1
[  232.711155][ T7115] netlink: 16 bytes leftover after parsing attributes in process `syz.2.404'.
[  232.808889][ T1417] veth1_macvtap: left promiscuous mode
[  232.809192][ T1417] veth0_macvtap: left promiscuous mode
[  232.809681][ T1417] veth1_vlan: left promiscuous mode
[  232.810093][ T1417] veth0_vlan: left promiscuous mode
[  233.443235][ T5700] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  233.743126][ T5700] usb 5-1: Using ep0 maxpacket: 16
[  233.751929][ T5700] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  233.751960][ T5700] usb 5-1: config 0 interface 0 has no altsetting 0
[  233.763762][ T5700] usb 5-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[  233.763792][ T5700] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.763810][ T5700] usb 5-1: Product: syz
[  233.763822][ T5700] usb 5-1: Manufacturer: syz
[  233.763836][ T5700] usb 5-1: SerialNumber: syz
[  233.797716][ T5700] usb 5-1: config 0 descriptor??
[  234.103796][ T1417] team0 (unregistering): Port device team_slave_1 removed
[  234.104126][ T5700] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input21
[  234.153811][ T1417] team0 (unregistering): Port device team_slave_0 removed
[  234.560105][    C0] imon 5-1:0.0: imon usb_rx_callback_intf0: status(-71)
[  234.587265][ T5260] 8021q: adding VLAN 0 to HW filter on device eth3
[  234.686062][ T7146] FAULT_INJECTION: forcing a failure.
[  234.686062][ T7146] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.686094][ T7146] CPU: 1 UID: 0 PID: 7146 Comm: syz.0.419 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  234.686116][ T7146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  234.686127][ T7146] Call Trace:
[  234.686134][ T7146]  <TASK>
[  234.686142][ T7146]  dump_stack_lvl+0xe8/0x150
[  234.686170][ T7146]  should_fail_ex+0x46b/0x600
[  234.686206][ T7146]  _copy_from_user+0x2d/0xb0
[  234.686229][ T7146]  sk_getsockopt+0x1d4/0x2790
[  234.686261][ T7146]  ? __pfx_sk_getsockopt+0x10/0x10
[  234.686296][ T7146]  ? __lock_acquire+0x6b5/0x2cf0
[  234.686328][ T7146]  ? __might_fault+0xaf/0x130
[  234.686351][ T7146]  ? __might_fault+0xaf/0x130
[  234.686392][ T7146]  do_sock_getsockopt+0x2bd/0x7e0
[  234.686423][ T7146]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  234.686462][ T7146]  ? __fget_files+0x3a6/0x420
[  234.686479][ T7146]  ? __fget_files+0x2a/0x420
[  234.686503][ T7146]  __x64_sys_getsockopt+0x1aa/0x250
[  234.686533][ T7146]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.686556][ T7146]  do_syscall_64+0x15f/0xf80
[  234.686576][ T7146]  ? trace_irq_disable+0x3b/0x140
[  234.686597][ T7146]  ? clear_bhb_loop+0x40/0x90
[  234.686618][ T7146]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.686635][ T7146] RIP: 0033:0x7f838604cdd9
[  234.686652][ T7146] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  234.686668][ T7146] RSP: 002b:00007f83842a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  234.686688][ T7146] RAX: ffffffffffffffda RBX: 00007f83862c5fa0 RCX: 00007f838604cdd9
[  234.686702][ T7146] RDX: 000000000000000d RSI: 0000000000000001 RDI: 0000000000000003
[  234.686712][ T7146] RBP: 00007f83842a6090 R08: 0000200000000040 R09: 0000000000000000
[  234.686723][ T7146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.686733][ T7146] R13: 00007f83862c6038 R14: 00007f83862c5fa0 R15: 00007fff68454f68
[  234.686761][ T7146]  </TASK>
[  234.767069][ T5700] rc_core: IR keymap rc-imon-pad not found
[  234.767087][ T5700] Registered IR keymap rc-empty
[  234.767165][ T5700] imon 5-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  234.767182][ T5700] imon 5-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  234.767766][ T5700] imon:send_packet: packet tx failed (-71)
[  234.791627][ T5700] imon 5-1:0.0: remote input dev register failed
[  234.791813][ T5700] imon 5-1:0.0: imon_init_intf0: rc device setup failed
[  234.830433][ T6566] 8021q: adding VLAN 0 to HW filter on device team0
[  234.881430][ T1181] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.881551][ T1181] bridge0: port 1(bridge_slave_0) entered forwarding state
[  234.952618][ T7149] FAULT_INJECTION: forcing a failure.
[  234.952618][ T7149] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.952651][ T7149] CPU: 0 UID: 0 PID: 7149 Comm: syz.2.420 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  234.952676][ T7149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  234.952688][ T7149] Call Trace:
[  234.952695][ T7149]  <TASK>
[  234.952702][ T7149]  dump_stack_lvl+0xe8/0x150
[  234.952729][ T7149]  should_fail_ex+0x46b/0x600
[  234.952764][ T7149]  _copy_from_user+0x2d/0xb0
[  234.952785][ T7149]  restore_altstack+0xab/0x4c0
[  234.952809][ T7149]  ? reacquire_held_locks+0x104/0x190
[  234.952837][ T7149]  ? rt_spin_lock+0x1e0/0x400
[  234.952866][ T7149]  ? __pfx_restore_altstack+0x10/0x10
[  234.952892][ T7149]  ? rt_spin_unlock+0x14f/0x200
[  234.952921][ T7149]  ? rt_spin_unlock+0x160/0x200
[  234.952949][ T7149]  __ia32_sys_rt_sigreturn+0x2bd/0x8e0
[  234.952970][ T7149]  ? __lock_acquire+0x6b5/0x2cf0
[  234.952999][ T7149]  ? __pfx___ia32_sys_rt_sigreturn+0x10/0x10
[  234.953017][ T7149]  ? signal_setup_done+0x22f/0x310
[  234.953040][ T7149]  ? arch_do_signal_or_restart+0x4c3/0x830
[  234.953073][ T7149]  ? __task_pid_nr_ns+0x28/0x470
[  234.953111][ T7149]  ? __task_pid_nr_ns+0x28/0x470
[  234.953143][ T7149]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.953163][ T7149]  do_syscall_64+0x15f/0xf80
[  234.953182][ T7149]  ? trace_irq_disable+0x3b/0x140
[  234.953204][ T7149]  ? clear_bhb_loop+0x40/0x90
[  234.953226][ T7149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.953243][ T7149] RIP: 0033:0x7f3c23ece159
[  234.953261][ T7149] Code: 11 06 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 0c 25
[  234.953276][ T7149] RSP: 002b:00007f3c22185a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  234.953296][ T7149] RAX: ffffffffffffffda RBX: 00007f3c241a5fa0 RCX: 00007f3c23ece159
[  234.953310][ T7149] RDX: 00007f3c22185a80 RSI: 00007f3c22185bb0 RDI: 0000000000000021
[  234.953322][ T7149] RBP: 00007f3c22186090 R08: 0000000000000000 R09: 0000000000000000
[  234.953333][ T7149] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  234.953344][ T7149] R13: 00007f3c241a6038 R14: 00007f3c241a5fa0 R15: 00007ffc54fb1098
[  234.953371][ T7149]  </TASK>
[  234.997945][  T337] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.998065][  T337] bridge0: port 2(bridge_slave_1) entered forwarding state
[  235.723157][ T7164] binder: 7157:7164 ioctl c0306201 200000000480 returned -14
[  235.909012][ T5700] imon 5-1:0.0: unable to initialize intf0, err 0
[  235.909034][ T5700] imon:imon_probe: failed to initialize context!
[  235.909045][ T5700] imon 5-1:0.0: unable to register, err -19
[  235.967106][ T5700] usb 5-1: USB disconnect, device number 12
[  237.872868][ T4926] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  238.173183][ T4926] usb 5-1: Using ep0 maxpacket: 16
[  238.186099][ T4926] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  238.186132][ T4926] usb 5-1: config 0 interface 0 has no altsetting 0
[  238.223990][ T4926] usb 5-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[  238.224019][ T4926] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.224037][ T4926] usb 5-1: Product: syz
[  238.224049][ T4926] usb 5-1: Manufacturer: syz
[  238.224063][ T4926] usb 5-1: SerialNumber: syz
[  238.309172][ T4926] usb 5-1: config 0 descriptor??
[  238.826169][ T4926] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input23
[  239.116126][    C1] imon 5-1:0.0: imon usb_rx_callback_intf0: status(-71)
[  239.443132][ T4926] rc_core: IR keymap rc-imon-pad not found
[  239.443152][ T4926] Registered IR keymap rc-empty
[  239.443229][ T4926] imon 5-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  239.443246][ T4926] imon 5-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  239.443562][ T4926] imon:send_packet: packet tx failed (-71)
[  239.500211][ T4926] imon 5-1:0.0: remote input dev register failed
[  239.500369][ T4926] imon 5-1:0.0: imon_init_intf0: rc device setup failed
[  239.640203][ T5260] 8021q: adding VLAN 0 to HW filter on device eth4
[  239.704014][ T5616] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  239.735089][ T5616] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  239.738511][ T5616] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  239.741230][ T5616] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  239.749183][ T5616] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  239.777588][ T4926] imon 5-1:0.0: unable to initialize intf0, err 0
[  239.777607][ T4926] imon:imon_probe: failed to initialize context!
[  239.777618][ T4926] imon 5-1:0.0: unable to register, err -19
[  239.786049][ T4926] usb 5-1: USB disconnect, device number 13
[  240.304606][ T7240] binder: 7238:7240 ioctl c0306201 200000000480 returned -14
[  240.547322][ T6566] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000013: 0000 [#1] SMP KASAN PTI
[  240.547347][ T6566] KASAN: null-ptr-deref in range [0x0000000000000098-0x000000000000009f]
[  240.547366][ T6566] CPU: 0 UID: 0 PID: 6566 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  240.547388][ T6566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  240.547399][ T6566] RIP: 0010:klist_remove+0x159/0x340
[  240.547426][ T6566] Code: 49 c1 ed 03 43 80 7c 3d 00 00 74 08 4c 89 f7 e8 bd be 18 f7 4d 8b 26 49 83 e4 fe 49 8d bc 24 98 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 38 00 74 05 e8 9b be 18 f7 49 8b 84 24 98 00 00 00 48 89
[  240.547453][ T6566] RSP: 0018:ffffc9000dd5f620 EFLAGS: 00010202
[  240.547471][ T6566] RAX: 0000000000000013 RBX: ffff888038323d80 RCX: 0000000000000000
[  240.547484][ T6566] RDX: 0000000000000006 RSI: ffffffff8d6042a7 RDI: 0000000000000098
[  240.547497][ T6566] RBP: ffffc9000dd5f718 R08: ffffffff8f88e1f7 R09: 1ffffffff1f11c3e
[  240.547516][ T6566] R10: dffffc0000000000 R11: fffffbfff1f11c3f R12: 0000000000000000
[  240.547529][ T6566] R13: 1ffff1100be63494 R14: ffff88805f31a4a0 R15: dffffc0000000000
[  240.547543][ T6566] FS:  0000000000000000(0000) GS:ffff888126179000(0000) knlGS:0000000000000000
[  240.547558][ T6566] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  240.547571][ T6566] CR2: 00007f8386dfda08 CR3: 0000000033abe000 CR4: 00000000003526f0
[  240.547588][ T6566] Call Trace:
[  240.547594][ T6566]  <TASK>
[  240.547603][ T6566]  ? __pfx_klist_remove+0x10/0x10
[  240.547626][ T6566]  ? kobject_move+0x5e0/0x720
[  240.547646][ T6566]  ? __pfx_kobject_move+0x10/0x10
[  240.547667][ T6566]  ? get_device_parent+0x370/0x3a0
[  240.547687][ T6566]  device_move+0x193/0x740
[  240.547758][ T6566]  hci_conn_del_sysfs+0xb8/0x1a0
[  240.547781][ T6566]  hci_conn_del+0xc36/0x1230
[  240.547805][ T6566]  hci_conn_hash_flush+0x191/0x260
[  240.547834][ T6566]  hci_dev_close_sync+0x821/0x10e0
[  240.547860][ T6566]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  240.547883][ T6566]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  240.547903][ T6566]  ? hci_unregister_dev+0x212/0x5a0
[  240.547923][ T6566]  hci_unregister_dev+0x21a/0x5a0
[  240.547943][ T6566]  vhci_release+0x155/0x1b0
[  240.547972][ T6566]  ? __pfx_vhci_release+0x10/0x10
[  240.547998][ T6566]  __fput+0x461/0xa70
[  240.548029][ T6566]  task_work_run+0x1d9/0x270
[  240.548057][ T6566]  ? __pfx_task_work_run+0x10/0x10
[  240.548082][ T6566]  ? do_exit+0x70a/0x22c0
[  240.548106][ T6566]  ? kmem_cache_free+0x187/0x6c0
[  240.548127][ T6566]  ? put_net+0x191/0x260
[  240.548145][ T6566]  ? do_exit+0x70a/0x22c0
[  240.548170][ T6566]  do_exit+0x70f/0x22c0
[  240.548194][ T6566]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  240.548215][ T6566]  ? __pfx_do_exit+0x10/0x10
[  240.548237][ T6566]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  240.548264][ T6566]  ? reacquire_held_locks+0x104/0x190
[  240.548292][ T6566]  ? rt_spin_lock+0x1e0/0x400
[  240.548321][ T6566]  do_group_exit+0x21b/0x2d0
[  240.548345][ T6566]  ? rt_spin_unlock+0x160/0x200
[  240.548372][ T6566]  get_signal+0x125c/0x1310
[  240.548397][ T6566]  arch_do_signal_or_restart+0xbc/0x830
[  240.548427][ T6566]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  240.548456][ T6566]  ? sock_ioctl+0x5c9/0x7f0
[  240.548489][ T6566]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.548508][ T6566]  exit_to_user_mode_loop+0x86/0x480
[  240.548530][ T6566]  ? rcu_is_watching+0x15/0xb0
[  240.548558][ T6566]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.548576][ T6566]  do_syscall_64+0x33e/0xf80
[  240.548597][ T6566]  ? clear_bhb_loop+0x40/0x90
[  240.548617][ T6566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.548634][ T6566] RIP: 0033:0x7ff7698aca6b
[  240.548650][ T6566] Code: Unable to access opcode bytes at 0x7ff7698aca41.
[  240.548671][ T6566] RSP: 002b:00007ffd6f632ed0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  240.548690][ T6566] RAX: ffffffffffffffed RBX: 0000000000000005 RCX: 00007ff7698aca6b
[  240.548704][ T6566] RDX: 00007ffd6f632f30 RSI: 0000000000008933 RDI: 0000000000000005
[  240.548716][ T6566] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000004
[  240.548726][ T6566] R10: 0000000000000004 R11: 0000000000000246 R12: 00007ffd6f632fbc
[  240.548738][ T6566] R13: 00007ff769943378 R14: 00007ff76a654620 R15: 00007ff769943378
[  240.548758][ T6566]  </TASK>
[  240.548765][ T6566] Modules linked in:
[  240.548806][ T6566] ---[ end trace 0000000000000000 ]---
[  240.548854][ T6566] RIP: 0010:klist_remove+0x159/0x340
[  240.548877][ T6566] Code: 49 c1 ed 03 43 80 7c 3d 00 00 74 08 4c 89 f7 e8 bd be 18 f7 4d 8b 26 49 83 e4 fe 49 8d bc 24 98 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 38 00 74 05 e8 9b be 18 f7 49 8b 84 24 98 00 00 00 48 89
[  240.548893][ T6566] RSP: 0018:ffffc9000dd5f620 EFLAGS: 00010202
[  240.548908][ T6566] RAX: 0000000000000013 RBX: ffff888038323d80 RCX: 0000000000000000
[  240.548921][ T6566] RDX: 0000000000000006 RSI: ffffffff8d6042a7 RDI: 0000000000000098
[  240.548933][ T6566] RBP: ffffc9000dd5f718 R08: ffffffff8f88e1f7 R09: 1ffffffff1f11c3e
[  240.548947][ T6566] R10: dffffc0000000000 R11: fffffbfff1f11c3f R12: 0000000000000000
[  240.548960][ T6566] R13: 1ffff1100be63494 R14: ffff88805f31a4a0 R15: dffffc0000000000
[  240.548973][ T6566] FS:  0000000000000000(0000) GS:ffff888126179000(0000) knlGS:0000000000000000
[  240.548988][ T6566] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  240.549002][ T6566] CR2: 00007f8386dfda08 CR3: 0000000033abe000 CR4: 00000000003526f0
[  240.549020][ T6566] Kernel panic - not syncing: Fatal exception
[  240.549337][ T6566] Kernel Offset: disabled