last executing test programs:

39.234538282s ago: executing program 2 (id=313):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000740), 0x8202, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'nr0\x00', 0x2})
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000040))
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="650000005ea8737090da7f89727884be0724873c617501b64d30365c6931e6dcdb7eb3ca52b5c25f73c4fa7ac27fc0b5b981b2e978bf099778846852761fa06ed6781f249e534be37ebece064904e8bf55f16ef5f16cc538df3d6101de16569d38a3d6447e65a3bc133d1a115609e16d6996ca5c6f6954f9ff901022f4c18ed2768525e10ab09443d824a4861fe727943d934bd27833c80647032dcebf9f185041319a12f72b5e8dc68df00c64668a1d5526ee0510a7dde29a3f6df56214f5d43a94", @ANYRES16, @ANYBLOB="05002cbd7000000000000f00000008000300", @ANYRES32=0x0, @ANYBLOB="0c00990009000000100000002a000f006512ffffffffffffffffffffffff0802110000008c107604d780f1f4a163faa83cf5ce8992db0000100017800c000500333ad827d263619f"], 0x64}}, 0x0)
getsockopt$ARPT_SO_GET_ENTRIES(r4, 0x0, 0x61, 0x0, &(0x7f00000000c0)=0x28)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0xc018aec0, &(0x7f00000000c0)={0x0, 0x2, 0x0, 0x1000, &(0x7f0000001000/0x1000)=nil})
ioctl$PPPIOCSACTIVE(r3, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
write$ppp(r3, &(0x7f00000000c0)="e383ad0e4a", 0x5)
read(r3, 0x0, 0x5d)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0)
r8 = socket$packet(0x11, 0x2, 0x300)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x123200, 0x0)
ioctl$TUNSETOFFLOAD(r9, 0x5452, 0x20001439)
setsockopt$packet_int(r8, 0x107, 0x13, &(0x7f0000000000)=0x3, 0x4)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000000000/0x2000)=nil, 0x2000}, 0x4})

39.163611723s ago: executing program 2 (id=316):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$cgroup(0x0, 0x0, 0x0, 0x2010042, &(0x7f0000000000))
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r2=>0x0}, &(0x7f0000000080)=0xc)
setresuid(r2, r2, 0xee00)

39.163403823s ago: executing program 2 (id=317):
epoll_create1(0x0)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = socket(0x1e, 0x805, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='fdinfo/3\x00')
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000d84000)={0xa, 0x2, 0x9, @loopback, 0x101}, 0x1c)
sendto$inet6(r2, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
io_setup(0xe4, &(0x7f0000000000)=<r3=>0x0)
io_destroy(r3)
ioctl$int_in(r2, 0x5452, &(0x7f0000000040)=0x9)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000100)={<r4=>r2, 0x8000000000000001, 0x0, 0xb})
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000180)={{0x2, 0x4e20, @remote}, {0x1, @multicast}, 0x20, {0x2, 0x4e20, @multicast1}, 'bridge_slave_1\x00'})
shutdown(r2, 0x1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000240)=ANY=[], 0x32600)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000140)=0x3, 0x7)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
fstat(r5, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setreuid(0x0, r8)
fchmod(r7, 0x84)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_CAP_VM_DISABLE_NX_HUGE_PAGES(r10, 0x4068aea3, &(0x7f0000000080))

39.142642064s ago: executing program 2 (id=319):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioprio_set$pid(0x1, 0x0, 0x0)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x5)
writev(r1, &(0x7f0000000600)=[{&(0x7f00000003c0)="b464", 0x2}], 0x1)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x802, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000140)={0x8000000, 0x4000})
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000080)={0xeeef0000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000000c0)={0x6000, 0x7000})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPCTNL_MSG_EXP_DELETE(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x14, 0x2, 0x2, 0x5, 0x0, 0x0, {0x7, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0xc041}, 0x814)
r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, r4, 0x300000e, 0x20010, 0xffffffffffffffff, 0x0)

39.115164634s ago: executing program 2 (id=320):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f0000000040))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r3, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x0})
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd7000000000000300"], 0x6c}}, 0x0)

37.963010192s ago: executing program 2 (id=329):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x2b5})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

22.147096063s ago: executing program 32 (id=329):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x2b5})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

11.366670027s ago: executing program 3 (id=603):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000080)={0x1, 0x0, [{0x122, 0x0, 0x390}]})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
sendmsg$NL80211_CMD_TDLS_OPER(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0xc050)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f00000001c0)=[@enter_looper], 0x1ce, 0x0, &(0x7f0000000580)="de547e22bade76f1a03b79e954ee20bc43f7fe47218a02ff8ba942478a7b69462fc21aff55002ce55e854564e7d309f20d222f9220c8d9b1b0d196137252587ab17948adf2dcbba03d2f3e0e647c2e70b7a440b4187098442946238cdd38a235b264899fa2f8b51f8a660653545ab78b6a47b6462efaa8192061344501fb8d96f8de3b132ee012626f94be7b4a9e572a43167614409ee4aa2a40d2feb04bb54137ca025e367e2eee1e8b4f78b741aac17c55ab77d0fd2b7318207e91fd536b9fb7c994a9ad0769020b45bc05965f6dffb15fd462bb2e49632c788cfeb74472be3d9eaf3284719df7187a354b3915df2661363052a24baf8cc101728d302f75878515b436d1fbdb3fc5fc88e8745c56b1bd79dc2cc7e7b5be814275a3edfc67e923d199c97fd6a8b2d11d2923b688471fe8c1e771545d17bad44fc5f7a91cf43ba91b4627c9554a333b6e8ee1c457b54c30bccbbabdfed6158fed6e548cd54ad7409e0a03fb2f685f8987e98ee687a09a730c2a757d3b1595a1146d57230e178284ef3fed5553bbd1e82bd418a13c03f944421d013d96182302122d01c432e24c43a9dff19658a3680167297367a1ee7f70e0968ce28ca2bc8b8525c41f8d4f9cdcaaa25b2d0fea854626eba2e86e"})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
userfaultfd(0x1)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r5, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000100)={0xb4, 0x0, &(0x7f00000003c0)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffba, 0x0, 0x0, 0x0}}, @decrefs={0x40046307, 0x3}, @acquire_done, @decrefs], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)={0x44, 0x0, &(0x7f0000000340)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r5, 0x40046208, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x200a82, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x202, 0x0)

9.716425352s ago: executing program 3 (id=606):
socket$inet(0x2, 0x3, 0x82)

9.709321822s ago: executing program 0 (id=607):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000200)={0x73622a85, 0x1081, 0x200000000000})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f00000001c0)=[@enter_looper], 0x42, 0x0, &(0x7f0000000580)="de547e22bade76f1a03b79e954ee20bc43f7fe47feffffff5e854564e7d309f20d222f9220c8d9b1b0d196137252587ab17948adf2dcbba03d2f3e0e647c2e70b7a4"})
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip6_mr_vif\x00')
preadv(r1, &(0x7f00000001c0)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1, 0x33, 0x0)
ioctl$KVM_SET_FPU(r1, 0x41a0ae8d, &(0x7f0000000280)={'\x00', 0x5, 0xfff, 0xdc, 0x0, 0x3f, 0xdddd1000, 0x100000, '\x00', 0x3})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x10}], 0x0, 0x0, 0x0})

7.992962378s ago: executing program 0 (id=609):
r0 = gettid()
ptrace$setopts(0x4206, r0, 0x80, 0x100021)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000), 0x12)
r1 = socket(0xa, 0x1, 0x0)
ioctl(r1, 0x8936, &(0x7f0000000000))
timer_create(0x3, 0x0, &(0x7f0000000340)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000380)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_settime(r2, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, &(0x7f0000000080))
readv(r1, &(0x7f00000011c0)=[{&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f0000001040)=""/13, 0xd}, {&(0x7f0000001080)=""/19, 0x13}, {&(0x7f00000010c0)=""/234, 0xea}], 0x4)

7.992733268s ago: executing program 1 (id=610):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
set_robust_list(&(0x7f0000000180)={0x0, 0x5, &(0x7f0000000140)}, 0x18) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, 0x0, &(0x7f00000003c0)=0x3e) (async)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)={0x70, r1, 0x400, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x0, 0x36}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x53}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7ff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xe64a}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1f6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5}]}, 0x70}, 0x1, 0x0, 0x0, 0x810}, 0x0)
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB='max=00000000000000000000001,stats'])
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x40, r1, 0x800, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x30}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4b}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x0)

7.991157638s ago: executing program 3 (id=611):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)=ANY=[@ANYBLOB], 0x34}], 0x1, 0x0, 0x0, 0x4010}, 0x0)

6.165029656s ago: executing program 0 (id=612):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000300)={0x0, 0x0, @pic={0x4, 0x8, 0x1e, 0x7f, 0x4, 0x2f, 0x9e, 0xf3, 0x1, 0xd4, 0x9, 0x3, 0xd, 0x6, 0x14}})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202})
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f00000005c0)=ANY=[@ANYBLOB="0200000000000000040000000101000002000000a4bb0000070000001800000006000000000000000000000000000000130000c00900000000000000090000000000000003000006956ce100"/88])
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000740)=""/67, 0x0, 0xd000})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000a40))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000000c0)={'syz1\x00', {0x8000, 0xcb2, 0x4, 0xb1e9}, 0x3d, [0xfff, 0xb, 0x76, 0x80c, 0x2, 0xbbf2, 0x66, 0x6, 0x7fff, 0x8001, 0x1, 0x7fe00, 0x7, 0x4, 0x3, 0x9, 0x30a, 0x0, 0x4, 0x7, 0x690, 0x83c, 0xfffffffa, 0xe2, 0xf6c, 0x8, 0x161, 0xfffeffff, 0x6, 0x10000, 0x9, 0x9, 0xe13, 0x5, 0x1, 0x6, 0x3, 0x200, 0x5, 0xff, 0x5, 0x5, 0x7, 0x0, 0x800, 0xf, 0x4, 0x3, 0xf, 0x7, 0x7f, 0x8, 0xfff, 0x5, 0x4, 0x9, 0xe3, 0x2, 0x5, 0xfffffb3f, 0x0, 0x6, 0x7ff, 0x1], [0x1, 0xfffffc00, 0x4, 0x400, 0xe, 0x6, 0x8, 0x6, 0x1, 0x81, 0x9, 0xfffffffe, 0x7, 0x8, 0xa, 0x101, 0x70, 0xffff, 0xffff, 0x3, 0x0, 0x8, 0x2, 0x5, 0x4, 0x8, 0x10001, 0x8001, 0x2, 0x400, 0xfffffc00, 0x7, 0x5, 0x7, 0x8, 0x1, 0x0, 0x7, 0xe, 0x75e, 0x4, 0x9, 0x9a8, 0x10, 0xbf8, 0x84, 0xfffffc00, 0x7ff, 0xb, 0x2, 0x0, 0x1, 0x1000, 0x6, 0x6ccf4fc6, 0x0, 0x70, 0xffffff80, 0x5, 0x2fa20546, 0xe, 0x6, 0x8694, 0x4], [0x1, 0x8, 0x8, 0x8, 0x10000, 0x8, 0x4, 0xf8d, 0x401, 0x5, 0x8000, 0x7, 0x7, 0xc, 0xfffffff8, 0x1, 0x3, 0x5, 0x40, 0x4c04, 0x1, 0x40, 0x1, 0x8001, 0x3, 0xc212, 0x6, 0x8, 0xffffffff, 0x1, 0xc5, 0x2, 0x8, 0xe17d, 0x93a2, 0xfe, 0x9, 0x0, 0x0, 0x1, 0x3, 0x6, 0x3, 0xf, 0x2, 0x9, 0x5b1fbd6e, 0x7, 0xffffff81, 0x2, 0x2, 0x1, 0x4, 0x3, 0x74d, 0x6, 0x5, 0x6, 0x1, 0x0, 0x100, 0x9, 0x0, 0x7f], [0x8, 0xffff, 0x3, 0x2, 0x8, 0x3, 0x0, 0x400, 0xfffffff7, 0x3, 0xe, 0xb2, 0x80000000, 0x3, 0x800, 0xc6b, 0x8, 0x4, 0x3, 0x4, 0xfffffffd, 0x8, 0x7, 0x8c, 0x3c, 0x12000, 0x3d, 0x9, 0x6, 0x8, 0x3fb, 0x1, 0x0, 0x80, 0x69361293, 0x6, 0x401, 0x2, 0x992, 0x7fff, 0xfffffffe, 0x4, 0x6, 0x6, 0x400, 0x1, 0xc, 0xffff4e34, 0x53d, 0x6, 0x8, 0xffff8001, 0x8001, 0x5c, 0x10000, 0xb468, 0x6, 0xffff, 0x8, 0x8001, 0x2, 0x0, 0x9]}, 0x45c)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000540)={0x5, 0x0, [{0xb7a, 0x0, 0x6}, {0xa88, 0x0, 0x24000000000}, {0x8ea, 0x0, 0x3ff}, {0x887, 0x0, 0x200}, {0xa16, 0x0, 0x3666}]})
r5 = socket(0x10, 0x803, 0x0)
sendto(r5, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000009800)=[{{0x0, 0x0, 0x0}, 0x4}, {{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000002180)=""/4096, 0x1000}, {&(0x7f0000003240)=""/106, 0x6a}, {&(0x7f0000000000)=""/22, 0x16}, {&(0x7f00000032c0)=""/246, 0xf6}, {&(0x7f00000033c0)=""/231, 0xe7}, {&(0x7f00000034c0)=""/211, 0xd3}, {&(0x7f00000035c0)=""/76, 0x4c}], 0x7}, 0x81}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, 0x0}, 0x1ff}], 0x7, 0x2100, 0x0)

6.164751526s ago: executing program 1 (id=613):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
iopl(0x3)
ppoll(0x0, 0x0, &(0x7f0000000040)={0x0, 0x3938700}, 0x0, 0x0)
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000001c0)="08001efb3e6f0000", 0x8}], 0x1, 0x0, 0x0, 0xe0000000}, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
renameat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00')
creat(&(0x7f00000001c0)='./file0\x00', 0x8)

6.164425246s ago: executing program 3 (id=614):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
pipe(&(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

4.175264856s ago: executing program 0 (id=615):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = dup(r1)
setsockopt$inet_buf(r2, 0x0, 0x25, 0x0, 0x0)
r3 = accept4$tipc(r2, &(0x7f0000000000)=@id, &(0x7f0000000040)=0x10, 0x80000)
ioctl$sock_SIOCBRADDBR(r3, 0x89a0, &(0x7f0000000080)='geneve0\x00')
recvmmsg(r0, &(0x7f0000009800)=[{{0x0, 0x0, 0x0}, 0x4}, {{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000002180)=""/4096, 0x1000}, {&(0x7f0000003180)=""/177, 0xb1}, {&(0x7f0000003240)=""/106, 0x6a}, {&(0x7f00000032c0)=""/246, 0xf6}, {&(0x7f00000033c0)=""/231, 0xe7}, {&(0x7f00000034c0)=""/211, 0xd3}], 0x6}, 0x81}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, 0x0}, 0x1ff}], 0x7, 0x2100, 0x0)

4.174900056s ago: executing program 1 (id=616):
syz_open_dev$MSR(&(0x7f00000001c0), 0x2000000000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xb3)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='nr_inodes=1'])

4.170046556s ago: executing program 3 (id=617):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = accept$unix(r1, &(0x7f0000000040)=@abs, &(0x7f00000000c0)=0x6e) (async)
fcntl$getown(r1, 0x9) (async)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
fcntl$setsig(r3, 0xa, 0x3c)
lsm_set_self_attr(0x69, &(0x7f0000000140)={0x66, 0x9, 0xd7, 0xb7, "122f230997fd3d7a458bde99531deb9b4a8acc6ea8a22ef2d859bac08d100b090c5863968eb300986b68eb8b0d5ff64aad1f4f8269e2fce39e8a022177cdc8203de75ec9df5c44b0b3899002ce3680fa1c1fb7eb1d079926b217e3c5d155454b57196104d64beb49eee6a6e432826f015f8b23971d893995f7692e1efe0ff71b5a26381d70c31acef7e4f0a8aee54a74037f727c50ade5ecb8ba6479cfbbec0c20c06e26ac3e7276e82d6bed3666319589cab927548512"}, 0xd7, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_drop_memb(r4, 0x107, 0x2, &(0x7f0000000240)={0x0, 0x1, 0x6}, 0x10)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r5, 0x111, 0x1, 0xd, 0x4)
write(r5, &(0x7f0000000280)="1e43ce868ac65d19afe5fd0ce87345f3655e1d4b455c603d973b7061095cd01508683c26a9a7c355069e49b9b99f72524af946b4b0fe46f137fd0ebd89fa9ca655db323311c499c3258a2485d9f3bb0a1b2831549e8aa546e830c82f3c2b4884e2dae0895962d3e90c3f203bc9300e8786e7bf6ab243c4173717aa176020b6617bc22e48a6f2e0d54202f2ee0d802539f6abe1682fba2c6dfee4d71e36ec06108c91a0363f5afe54d230f6", 0xab) (async)
ioctl$RTC_PIE_OFF(r3, 0x7006) (async)
sendfile(r2, r0, &(0x7f0000000340)=0x5, 0x6) (async)
r6 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
ioctl$RTC_IRQP_READ(r6, 0x8008700b, &(0x7f0000000380)) (async)
setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f00000003c0), 0x4) (async)
ioctl$FS_IOC_READ_VERITY_METADATA(r6, 0xc0286687, &(0x7f0000000480)={0x1, 0x0, 0x61, &(0x7f0000000400)=""/97}) (async)
ioctl$HCIINQUIRY(r6, 0x800448f0, &(0x7f00000004c0)={0x0, 0x2a4, "7855fa", 0x8}) (async)
recvmsg$unix(r6, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000500)}], 0x1, &(0x7f0000000580)=[@cred={{0x1c, 0x1, 0x2, {0x0, <r7=>0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r8=>0xffffffffffffffff, 0xffffffffffffffff, <r9=>0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r12=>0x0}}}], 0x88}, 0x10000)
socket$netlink(0x10, 0x3, 0x2) (async)
ioctl$BTRFS_IOC_START_SYNC(r9, 0x80089418, &(0x7f0000000680)) (async)
write$P9_RXATTRCREATE(r6, &(0x7f00000006c0)={0x7, 0x21, 0x2}, 0x7) (async)
quotactl_fd$Q_QUOTAON(r11, 0x3, r7, &(0x7f0000000700)='./file0\x00') (async)
ioctl$BTRFS_IOC_BALANCE_CTL(r5, 0x40049421, 0x2) (async)
getsockopt$netlink(r10, 0x10e, 0x3, &(0x7f0000000740)=""/49, &(0x7f0000000780)=0x31) (async)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) (async)
sendmsg$inet(r6, &(0x7f0000000a00)={&(0x7f00000007c0)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000880)=[{&(0x7f0000000800)="555a2bcbd73cc8ce8cfb9717d78beb67a91a426b006fd72b0e26eb9ba4905e24c909005f9727437952a37ec5e5ea5773884ecd76944dd6e1b3ecc1cf45816c0cb6c221518de00c10d6d0167b2083da5d5f756650a68fbf7bb0fe4fa69ae58b58f65aa2aa998f40a647eea369a966751eebd614ff98f96a092cc4c8dfec", 0x7d}], 0x1, &(0x7f00000008c0)=[@ip_retopts={{0xdc, 0x0, 0x7, {[@noop, @rr={0x7, 0xb, 0xab, [@remote, @multicast2]}, @ssrr={0x89, 0x1f, 0x2e, [@loopback, @local, @dev={0xac, 0x14, 0x14, 0x10}, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast, @empty, @loopback]}, @timestamp_addr={0x44, 0x2c, 0x75, 0x1, 0x0, [{@multicast1, 0xffffe6b2}, {@multicast2, 0x2}, {@local, 0x8}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x7}, {@multicast2, 0x9}]}, @rr={0x7, 0x7, 0x1c, [@initdev={0xac, 0x1e, 0x1, 0x0}]}, @rr={0x7, 0x27, 0x24, [@private=0xa010102, @private=0xa010100, @rand_addr=0x64010100, @broadcast, @empty, @rand_addr=0x64010100, @empty, @loopback, @local]}, @timestamp_prespec={0x44, 0x44, 0x6b, 0x3, 0x3, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4}, {@multicast1, 0x8}, {@empty, 0x7f}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7}, {@private=0x80, 0x3}, {@empty}, {@multicast1, 0x2a7e}, {@multicast1, 0x9}]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_ttl={{0x14, 0x0, 0x2, 0x96}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @multicast2}}}], 0x130}, 0x0) (async)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000004, 0x11, r8, 0x645b0000)
r13 = getpgid(r12)
ptrace$setregs(0xd, r13, 0xc, &(0x7f0000000a40)="e6dcb73e80961d6f92b315e5c4c1e46d144c2395a006812c0e82a4ead56bd874a8586e1830c49466fdb7d3f2b39005b13f7731a0e47a7f2caaf466aef2222cfb64213e5a7cbeaccc41724850a17d41c930158c1522d176469194955e87199fbfe1265518df6354c7950c15d1d0c8bbc5597141856c6dd12bc1d62bda7d58f1640bd6d7612f43f7bcb4bcfe59d53be2dd166ef59ec27e97039bda420da283a547cfe86e40a85ca46af0f86ad9026fe9ea5b5e5f619550d34fd4aa58cb65da9cae8f369ec6bb65a98fa6b70cc8b809c23536d89ead69051c3419559e8a")

2.189943486s ago: executing program 0 (id=618):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000000000000730000400008000007"])
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x4)
setsockopt(r2, 0x0, 0x4, 0x0, 0x0)

2.189029417s ago: executing program 1 (id=619):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd1, &(0x7f0000000180)=0x5, 0x4)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000800)=[@transaction_sg={0x400c6314, {0x1, 0x0, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

2.188705237s ago: executing program 3 (id=620):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r0, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="0800050003000000"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32=r4, @ANYBLOB="28000e0080000000ffffffffffff0802110000000802110000000000000000000000000064000100080026006c09000008000c006400000008000d0000c300000a0034000202020202020000080035000000000004000501"], 0x74}}, 0x0)
sendmsg$NL80211_CMD_DISASSOCIATE(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f00000000c0)={0x17c, r1, 0x2, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xd, 0x56}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x80}, @NL80211_ATTR_IE={0x1e, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x1, 0x55, 0xb4}}, @link_id={0x65, 0x12, {@initial, @device_b, @broadcast}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @random="368582adca58"}, @NL80211_ATTR_IE={0x112, 0x2a, [@chsw_timing={0x68, 0x4, {0x5, 0x3}}, @mesh_id={0x72, 0x6}, @fast_bss_trans={0x37, 0xdf, {0x9, 0x8, "3e582c59f83ed822ad1305a888e16cef", "b6988a7b7b9c1be4cc3af97084977e173838c27eb769d5afae6267d315451fad", "d78749c89dcd63415b7eedf15481f4838b3b76e93b0ae4978ecbcd2f804c9821", [{0x4, 0x6, "d64f5bf43d66"}, {0x2, 0x14, "5eef2f000c9a399258bf92956d0644a4544c9c18"}, {0x1, 0x6, "c07837878a57"}, {0x2, 0x13, "8104aa410d5e72f7f489944560034755430c9f"}, {0x3, 0x9, "2c553ae26c9d748b57"}, {0x1, 0x24, "39d88853d8beeec0693bb02c6987634284c719ae8b62db1ded7153f718ea2abd13cebdd4"}, {0x4, 0x8, "3bc0fc269ef2b142"}, {0x3, 0x15, "c5c1897a32628cdbf4b9de294fe1d4ae397f8cf73d"}]}}, @erp={0x2a, 0x1}, @measure_req={0x26, 0x1a, {0xb5, 0x3, 0x10, "4d4fb934aa56ac66cfaae7ba0642eb00e09d5a30957bb1"}}]}]}, 0x17c}}, 0x20044840)
r5 = socket$inet_icmp(0x2, 0x2, 0x1)
setsockopt$sock_int(r5, 0x1, 0x3c, &(0x7f0000000000)=0x40, 0x4)

2.164742227s ago: executing program 1 (id=621):
openat$dir(0xffffffffffffff9c, &(0x7f0000002a00)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
fchownat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
write$FUSE_INIT(r0, &(0x7f00000001c0)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x0, 0x0, 0x401, 0x100, 0x400008, 0x0, 0x0, 0x2}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000061c0)="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", 0x2000, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={0x78, 0x0, 0x0, {0x7, 0x0, 0x0, {0x0, 0x0, 0x875, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_int(r2, 0x29, 0x49, 0x0, 0xff00)
utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
setxattr$incfs_metadata(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0, 0x0)

407.87µs ago: executing program 0 (id=622):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000500)={'batadv_slave_0\x00', <r7=>0x0})
ioctl$sock_inet6_SIOCADDRT(r5, 0x890b, &(0x7f0000000140)={@empty, @empty, @mcast1, 0x100001, 0x6, 0x0, 0x100, 0x10003, 0x180107, r7})
ioctl$BTRFS_IOC_DEFRAG(r5, 0x50009402, 0x0)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f0000000180)=ANY=[@ANYBLOB="0169d9416e37a4144c963acd840000e8510049fcaa18cb78aaa8993a7c40016f1e5580d27fe0b8c14a4df0f526b5226f7a96ab85fbe010ef96ece877204940fef781cf641b0d1d0fdbfe0eecbc8867b9b3033a1d5c75a7faf8a6932c0adcaa638cd23fef9e56023f953b9e22d74229cd5602612ea8d1ada2414b59a0873d68e73cc70d7661b88086b94bce5f5dff6b52a814c1e4ac08e27224b4c49bb7f25265fa01efc8c05fa2a0226c0a6f5d0bae6ee3c637a2054380540a52e8b66e7f"])
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x66)

0s ago: executing program 1 (id=623):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/image_size', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002100)={0x2020}, 0x2020)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x141000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000e80)={0x2, 0x0, [{0x7, 0x80000001, 0x4, 0x3, 0x1f17b93f, 0x9, 0x5}, {0x1, 0x7, 0x0, 0xfffffff9, 0x80000001, 0x200007e, 0x9}]})
openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
r4 = socket$nl_audit(0x10, 0x3, 0x9)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r5, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r6, 0x4, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x32)
ioctl$PPPIOCGMRU(r5, 0x80047453, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000040)={'veth0_to_bond\x00', &(0x7f0000000400)=@ethtool_cmd={0x4d, 0x2, 0xffbf, 0xffff, 0x7, 0x6, 0x40, 0x80, 0x5, 0xb4, 0x5, 0x81, 0x6, 0x2c, 0x40, 0x8, [0x8, 0xc]}})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r7, 0x8933, &(0x7f0000000080)={'wg2\x00', <r9=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)={0x24, r8, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x8, 0x8, 0x0, 0x1, [{0x4}]}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r9}]}, 0x24}}, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000000, 0x2010, r0, 0x8cc42000)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.101' (ED25519) to the list of known hosts.
[   25.484154][   T36] audit: type=1400 audit(1750455609.070:64): avc:  denied  { mounton } for  pid=281 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   25.485389][  T281] cgroup: Unknown subsys name 'net'
[   25.507919][   T36] audit: type=1400 audit(1750455609.070:65): avc:  denied  { mount } for  pid=281 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   25.536233][   T36] audit: type=1400 audit(1750455609.100:66): avc:  denied  { unmount } for  pid=281 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   25.536513][  T281] cgroup: Unknown subsys name 'devices'
[   25.659380][  T281] cgroup: Unknown subsys name 'hugetlb'
[   25.665543][  T281] cgroup: Unknown subsys name 'rlimit'
[   25.776642][   T36] audit: type=1400 audit(1750455609.370:67): avc:  denied  { setattr } for  pid=281 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   25.800698][   T36] audit: type=1400 audit(1750455609.370:68): avc:  denied  { mounton } for  pid=281 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   25.810534][  T283] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   25.827302][   T36] audit: type=1400 audit(1750455609.370:69): avc:  denied  { mount } for  pid=281 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   25.847616][  T281] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   25.860227][   T36] audit: type=1400 audit(1750455609.420:70): avc:  denied  { relabelto } for  pid=283 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   25.900421][   T36] audit: type=1400 audit(1750455609.420:71): avc:  denied  { write } for  pid=283 comm="mkswap" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   25.927250][   T36] audit: type=1400 audit(1750455609.430:72): avc:  denied  { read } for  pid=281 comm="syz-executor" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   25.954295][   T36] audit: type=1400 audit(1750455609.430:73): avc:  denied  { open } for  pid=281 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   26.751324][  T288] bridge0: port 1(bridge_slave_0) entered blocking state
[   26.761981][  T288] bridge0: port 1(bridge_slave_0) entered disabled state
[   26.769254][  T288] bridge_slave_0: entered allmulticast mode
[   26.775894][  T288] bridge_slave_0: entered promiscuous mode
[   26.783903][  T288] bridge0: port 2(bridge_slave_1) entered blocking state
[   26.792134][  T288] bridge0: port 2(bridge_slave_1) entered disabled state
[   26.799512][  T288] bridge_slave_1: entered allmulticast mode
[   26.806099][  T288] bridge_slave_1: entered promiscuous mode
[   26.827607][  T291] bridge0: port 1(bridge_slave_0) entered blocking state
[   26.834757][  T291] bridge0: port 1(bridge_slave_0) entered disabled state
[   26.843107][  T291] bridge_slave_0: entered allmulticast mode
[   26.850577][  T291] bridge_slave_0: entered promiscuous mode
[   26.858676][  T290] bridge0: port 1(bridge_slave_0) entered blocking state
[   26.867157][  T290] bridge0: port 1(bridge_slave_0) entered disabled state
[   26.878433][  T290] bridge_slave_0: entered allmulticast mode
[   26.886529][  T290] bridge_slave_0: entered promiscuous mode
[   26.902357][  T291] bridge0: port 2(bridge_slave_1) entered blocking state
[   26.910795][  T291] bridge0: port 2(bridge_slave_1) entered disabled state
[   26.918671][  T291] bridge_slave_1: entered allmulticast mode
[   26.925650][  T291] bridge_slave_1: entered promiscuous mode
[   26.932284][  T290] bridge0: port 2(bridge_slave_1) entered blocking state
[   26.940187][  T290] bridge0: port 2(bridge_slave_1) entered disabled state
[   26.948337][  T290] bridge_slave_1: entered allmulticast mode
[   26.954870][  T290] bridge_slave_1: entered promiscuous mode
[   27.003191][  T289] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.010594][  T289] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.018619][  T289] bridge_slave_0: entered allmulticast mode
[   27.024903][  T289] bridge_slave_0: entered promiscuous mode
[   27.031547][  T289] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.039229][  T289] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.046793][  T289] bridge_slave_1: entered allmulticast mode
[   27.053309][  T289] bridge_slave_1: entered promiscuous mode
[   27.203651][  T288] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.211189][  T288] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.218622][  T288] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.225764][  T288] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.237945][  T291] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.246056][  T291] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.255951][  T291] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.263417][  T291] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.275998][  T290] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.283672][  T290] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.291005][  T290] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.298060][  T290] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.346602][  T289] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.353892][  T289] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.361237][  T289] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.368301][  T289] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.378308][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.386287][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.394180][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.403438][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.411154][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.418794][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.426752][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.434736][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.456884][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.465869][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.473711][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.480793][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.505618][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.514044][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.528999][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.537463][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.549329][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.556587][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.564438][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.572084][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.584844][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.593579][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.607462][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.615129][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.648679][  T291] veth0_vlan: entered promiscuous mode
[   27.667817][  T288] veth0_vlan: entered promiscuous mode
[   27.690833][  T288] veth1_macvtap: entered promiscuous mode
[   27.699205][  T289] veth0_vlan: entered promiscuous mode
[   27.714418][  T291] veth1_macvtap: entered promiscuous mode
[   27.725720][  T290] veth0_vlan: entered promiscuous mode
[   27.739064][  T289] veth1_macvtap: entered promiscuous mode
[   27.771518][  T290] veth1_macvtap: entered promiscuous mode
[   27.779991][  T288] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   27.853314][  T312] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[   27.865787][  T312] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2'.
[   27.907975][  T314] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   27.959337][  T329] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   28.057120][  T331] Zero length message leads to an empty skb
[   28.411263][   T63] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   28.571304][   T63] usb 3-1: Using ep0 maxpacket: 16
[   28.578381][   T63] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   28.591724][   T63] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   28.604611][   T63] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   28.613777][   T63] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   28.622764][   T63] usb 3-1: config 0 descriptor??
[   28.916171][  T354] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   29.058317][   T63] HID 045e:07da: Invalid code 65791 type 1
[   29.071382][   T63] HID 045e:07da: Invalid code 768 type 1
[   29.079238][   T63] HID 045e:07da: Invalid code 769 type 1
[   29.095152][   T63] HID 045e:07da: Invalid code 770 type 1
[   29.101129][   T63] HID 045e:07da: Invalid code 771 type 1
[   29.108381][   T63] HID 045e:07da: Invalid code 772 type 1
[   29.115815][   T63] HID 045e:07da: Invalid code 773 type 1
[   29.121713][   T63] HID 045e:07da: Invalid code 774 type 1
[   29.127405][   T63] HID 045e:07da: Invalid code 775 type 1
[   29.133123][   T63] HID 045e:07da: Invalid code 776 type 1
[   29.141572][   T63] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0001/input/input4
[   29.155314][   T63] microsoft 0003:045E:07DA.0001: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[   29.244811][  T352] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   29.437159][  T352] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   29.447942][  T352] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[   29.460869][  T352] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   29.471120][  T352] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   29.479430][  T352] usb 4-1: SerialNumber: syz
[   29.713815][  T352] usb 4-1: 0:2 : does not exist
[   29.728117][  T352] usb 4-1: USB disconnect, device number 2
[   29.909152][  T347] udevd[347]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   30.036650][  T390] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:35
[   30.294571][  T305] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   30.316563][  T392] rust_binder: Error while translating object.
[   30.316593][  T392] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   30.323146][  T392] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:12
[   30.474212][  T305] usb 1-1: Using ep0 maxpacket: 32
[   30.501819][  T305] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[   30.510674][  T305] usb 1-1: config 0 has no interface number 0
[   30.528596][  T305] usb 1-1: config 0 interface 2 has no altsetting 0
[   30.539548][  T305] usb 1-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f
[   30.549818][  T305] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   30.558095][  T305] usb 1-1: Product: syz
[   30.562626][  T305] usb 1-1: Manufacturer: syz
[   30.567430][  T305] usb 1-1: SerialNumber: syz
[   30.581348][  T305] usb 1-1: config 0 descriptor??
[   30.648906][  T407] FAULT_INJECTION: forcing a failure.
[   30.648906][  T407] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   30.663756][  T407] CPU: 1 UID: 0 PID: 407 Comm: syz.1.36 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   30.663795][  T407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   30.663810][  T407] Call Trace:
[   30.663817][  T407]  <TASK>
[   30.663826][  T407]  __dump_stack+0x21/0x30
[   30.663860][  T407]  dump_stack_lvl+0x10c/0x190
[   30.663912][  T407]  ? __cfi_dump_stack_lvl+0x10/0x10
[   30.663931][  T407]  dump_stack+0x19/0x20
[   30.663948][  T407]  should_fail_ex+0x3d9/0x530
[   30.663969][  T407]  should_fail+0xf/0x20
[   30.663986][  T407]  should_fail_usercopy+0x1e/0x30
[   30.664006][  T407]  _copy_to_user+0x24/0xa0
[   30.664028][  T407]  simple_read_from_buffer+0xed/0x160
[   30.664054][  T407]  proc_fail_nth_read+0x19e/0x210
[   30.664071][  T407]  ? __cfi_proc_fail_nth_read+0x10/0x10
[   30.664087][  T407]  ? bpf_lsm_file_permission+0xd/0x20
[   30.664106][  T407]  ? __cfi_proc_fail_nth_read+0x10/0x10
[   30.664122][  T407]  vfs_read+0x278/0xb60
[   30.664142][  T407]  ? __cfi_vfs_read+0x10/0x10
[   30.664158][  T407]  ? __kasan_check_write+0x18/0x20
[   30.664176][  T407]  ? mutex_lock+0x92/0x1c0
[   30.664193][  T407]  ? __cfi_mutex_lock+0x10/0x10
[   30.664209][  T407]  ? __fget_files+0x2c5/0x340
[   30.664231][  T407]  ksys_read+0x141/0x250
[   30.664248][  T407]  ? __cfi_ksys_read+0x10/0x10
[   30.664268][  T407]  ? __kasan_check_read+0x15/0x20
[   30.664285][  T407]  __x64_sys_read+0x7f/0x90
[   30.664304][  T407]  x64_sys_call+0x2638/0x2ee0
[   30.664325][  T407]  do_syscall_64+0x58/0xf0
[   30.664347][  T407]  ? clear_bhb_loop+0x35/0x90
[   30.664371][  T407]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   30.664393][  T407] RIP: 0033:0x7f964978d33c
[   30.664414][  T407] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   30.664428][  T407] RSP: 002b:00007f964a699030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   30.664453][  T407] RAX: ffffffffffffffda RBX: 00007f96499b5fa0 RCX: 00007f964978d33c
[   30.664466][  T407] RDX: 000000000000000f RSI: 00007f964a6990a0 RDI: 0000000000000004
[   30.664478][  T407] RBP: 00007f964a699090 R08: 0000000000000000 R09: 0000000000000000
[   30.664489][  T407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   30.664500][  T407] R13: 0000000000000000 R14: 00007f96499b5fa0 R15: 00007ffccf1a3ea8
[   30.664515][  T407]  </TASK>
[   30.943900][  T305] usb 1-1: invalid MIDI in EP 0
[   30.965285][  T305] snd-usb-audio 1-1:0.2: probe with driver snd-usb-audio failed with error -22
[   30.983275][  T305] usb 1-1: USB disconnect, device number 2
[   31.001832][   T36] kauditd_printk_skb: 109 callbacks suppressed
[   31.002001][   T36] audit: type=1400 audit(1750455614.388:183): avc:  denied  { getopt } for  pid=408 comm="syz.1.37" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   31.119201][  T415] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[   31.159090][  T347] udevd[347]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.2/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   31.177205][  T415] rust_binder: Write failure EFAULT in pid:30
[   31.244659][   T36] audit: type=1400 audit(1750455614.622:184): avc:  denied  { create } for  pid=418 comm="syz.1.39" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ipx_socket permissive=1
[   31.272683][  T419] rust_binder: Write failure EINVAL in pid:34
[   31.314820][   T36] audit: type=1400 audit(1750455614.678:185): avc:  denied  { write } for  pid=422 comm="syz.1.41" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   31.348350][   T36] audit: type=1400 audit(1750455614.678:186): avc:  denied  { mount } for  pid=422 comm="syz.1.41" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   31.370262][   T36] audit: type=1400 audit(1750455614.687:187): avc:  denied  { map } for  pid=422 comm="syz.1.41" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[   31.381503][  T305] usb 3-1: USB disconnect, device number 2
[   31.399307][   T36] audit: type=1400 audit(1750455614.706:188): avc:  denied  { unmount } for  pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   31.486487][   T36] audit: type=1400 audit(1750455614.837:189): avc:  denied  { bind } for  pid=431 comm="syz.2.45" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   31.526927][   T36] audit: type=1400 audit(1750455614.875:190): avc:  denied  { ioctl } for  pid=433 comm="syz.2.46" path="socket:[4639]" dev="sockfs" ino=4639 ioctlcmd=0x8918 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   31.553141][   T36] audit: type=1400 audit(1750455614.875:191): avc:  denied  { nlmsg_tty_audit } for  pid=437 comm="syz.0.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[   31.596270][   T36] audit: type=1400 audit(1750455614.940:192): avc:  denied  { create } for  pid=439 comm="syz.1.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   31.618676][  T444] netlink: 260 bytes leftover after parsing attributes in process `syz.0.48'.
[   31.667673][  T453] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   31.714404][  T352] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   31.896097][  T352] usb 4-1: Using ep0 maxpacket: 32
[   31.902540][  T352] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[   31.914021][  T352] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[   31.925681][  T352] usb 4-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9
[   31.935315][  T352] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   31.943790][  T352] usb 4-1: Product: syz
[   31.948153][  T352] usb 4-1: Manufacturer: syz
[   31.953066][  T352] usb 4-1: SerialNumber: syz
[   31.958363][  T352] usb 4-1: config 0 descriptor??
[   31.964731][  T352] input: KB Gear Tablet as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input5
[   32.003122][   T63] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   32.164737][   T63] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   32.176080][   T63] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   32.180052][  T376] usb 4-1: USB disconnect, device number 3
[   32.185864][   T63] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   32.185904][   T63] usb 2-1: New USB device found, idVendor=056a, idProduct=0017, bcdDevice= 0.00
[   32.185921][   T63] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   32.186668][   T63] usb 2-1: config 0 descriptor??
[   32.631597][  T469] overlayfs: missing 'workdir'
[   32.651084][  T471] FAULT_INJECTION: forcing a failure.
[   32.651084][  T471] name failslab, interval 1, probability 0, space 0, times 1
[   32.664790][  T471] CPU: 1 UID: 0 PID: 471 Comm: syz.0.62 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   32.664818][  T471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   32.664827][  T471] Call Trace:
[   32.664832][  T471]  <TASK>
[   32.664838][  T471]  __dump_stack+0x21/0x30
[   32.664864][  T471]  dump_stack_lvl+0x10c/0x190
[   32.664878][  T471]  ? __cfi_dump_stack_lvl+0x10/0x10
[   32.664892][  T471]  ? alloc_super+0x751/0x930
[   32.664905][  T471]  ? get_tree_nodev+0x2e/0x170
[   32.664917][  T471]  ? bpf_get_tree+0x20/0x30
[   32.664935][  T471]  ? vfs_get_tree+0x9e/0x290
[   32.664948][  T471]  ? xas_create+0xe6c/0xfd0
[   32.664965][  T471]  ? __se_sys_mount+0x2bd/0x480
[   32.664982][  T471]  dump_stack+0x19/0x20
[   32.664997][  T471]  should_fail_ex+0x3d9/0x530
[   32.665013][  T471]  should_failslab+0xac/0x100
[   32.665032][  T471]  kmem_cache_alloc_lru_noprof+0x45/0x3a0
[   32.665049][  T471]  ? alloc_inode+0xa9/0x270
[   32.665071][  T471]  alloc_inode+0xa9/0x270
[   32.665091][  T471]  new_inode+0x25/0x1e0
[   32.665110][  T471]  ? ida_alloc_range+0xa12/0xa50
[   32.665127][  T471]  simple_fill_super+0xee/0x700
[   32.665147][  T471]  bpf_fill_super+0xf1/0xc70
[   32.665167][  T471]  ? _raw_spin_lock+0x8c/0x120
[   32.665183][  T471]  ? __cfi__raw_spin_lock+0x10/0x10
[   32.665200][  T471]  ? __cfi_bpf_fill_super+0x10/0x10
[   32.665217][  T471]  ? shrinker_register+0x168/0x220
[   32.665235][  T471]  ? sget_fc+0x9ce/0xad0
[   32.665247][  T471]  ? __cfi_set_anon_super_fc+0x10/0x10
[   32.665262][  T471]  get_tree_nodev+0xcb/0x170
[   32.665275][  T471]  ? __cfi_bpf_fill_super+0x10/0x10
[   32.665296][  T471]  bpf_get_tree+0x20/0x30
[   32.665314][  T471]  vfs_get_tree+0x9e/0x290
[   32.665330][  T471]  do_new_mount+0x251/0xb40
[   32.665348][  T471]  path_mount+0x688/0x1050
[   32.665364][  T471]  ? putname+0x113/0x150
[   32.665382][  T471]  __se_sys_mount+0x2bd/0x480
[   32.665400][  T471]  ? ksys_write+0x1ef/0x250
[   32.665419][  T471]  ? __x64_sys_mount+0xf0/0xf0
[   32.665438][  T471]  __x64_sys_mount+0xc3/0xf0
[   32.665456][  T471]  x64_sys_call+0x2021/0x2ee0
[   32.665477][  T471]  do_syscall_64+0x58/0xf0
[   32.665497][  T471]  ? clear_bhb_loop+0x35/0x90
[   32.665533][  T471]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   32.665555][  T471] RIP: 0033:0x7f923038e929
[   32.665571][  T471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   32.665585][  T471] RSP: 002b:00007f92312d3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   32.665606][  T471] RAX: ffffffffffffffda RBX: 00007f92305b5fa0 RCX: 00007f923038e929
[   32.665618][  T471] RDX: 0000200000000140 RSI: 00002000000000c0 RDI: 0000000000000000
[   32.665631][  T471] RBP: 00007f92312d3090 R08: 00002000000005c0 R09: 0000000000000000
[   32.665642][  T471] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000002
[   32.665653][  T471] R13: 0000000000000000 R14: 00007f92305b5fa0 R15: 00007fffd8e130b8
[   32.665667][  T471]  </TASK>
[   32.974678][   T63] wacom 0003:056A:0017.0002: unknown main item tag 0x0
[   32.982653][   T63] wacom 0003:056A:0017.0002: unknown main item tag 0x0
[   32.990824][   T63] wacom 0003:056A:0017.0002: unknown main item tag 0x0
[   32.999385][   T63] wacom 0003:056A:0017.0002: unknown main item tag 0x0
[   33.008051][   T63] wacom 0003:056A:0017.0002: unknown main item tag 0x0
[   33.017063][   T63] wacom 0003:056A:0017.0002: Unknown device_type for 'HID 056a:0017'. Assuming pen.
[   33.030428][   T63] wacom 0003:056A:0017.0002: hidraw0: USB HID v0.00 Device [HID 056a:0017] on usb-dummy_hcd.1-1/input0
[   33.043763][   T63] input: Wacom BambooFun 4x5 Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:0017.0002/input/input6
[   33.142881][  T488] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:60
[   33.165971][  T491] netlink: 12 bytes leftover after parsing attributes in process `syz.2.71'.
[   33.195313][  T491] netlink: 24 bytes leftover after parsing attributes in process `syz.2.71'.
[   33.209370][  T305] usb 2-1: USB disconnect, device number 2
[   33.247979][  T499] rust_binder: BINDER_SET_CONTEXT_MGR already set
[   33.248375][  T499] rust_binder: Failed to allocate buffer. len:200, is_oneway:false
[   33.251503][  T500] bond_slave_0: entered allmulticast mode
[   33.256279][  T499] capability: warning: `syz.3.75' uses deprecated v2 capabilities in a way that may be insecure
[   33.291969][  T499] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[   33.292002][  T499] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:28
[   33.303442][  T502] FAULT_INJECTION: forcing a failure.
[   33.303442][  T502] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   33.329696][  T502] CPU: 1 UID: 0 PID: 502 Comm: syz.2.77 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   33.329726][  T502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   33.329736][  T502] Call Trace:
[   33.329741][  T502]  <TASK>
[   33.329747][  T502]  __dump_stack+0x21/0x30
[   33.329774][  T502]  dump_stack_lvl+0x10c/0x190
[   33.329792][  T502]  ? __cfi_dump_stack_lvl+0x10/0x10
[   33.329810][  T502]  ? __sys_recvmsg_sock+0x60/0x60
[   33.329827][  T502]  dump_stack+0x19/0x20
[   33.329841][  T502]  should_fail_ex+0x3d9/0x530
[   33.329859][  T502]  should_fail+0xf/0x20
[   33.329872][  T502]  should_fail_usercopy+0x1e/0x30
[   33.329890][  T502]  _copy_from_user+0x22/0xb0
[   33.329910][  T502]  ___sys_recvmsg+0x12f/0x510
[   33.329926][  T502]  ? __sys_recvmsg+0x280/0x280
[   33.329939][  T502]  ? __cfi_kstrtouint_from_user+0x10/0x10
[   33.329954][  T502]  ? selinux_file_permission+0x309/0xb30
[   33.329975][  T502]  ? __fget_files+0x2c5/0x340
[   33.329996][  T502]  do_recvmmsg+0x326/0x770
[   33.330010][  T502]  ? __sys_recvmmsg+0x290/0x290
[   33.330025][  T502]  ? __cfi_vfs_write+0x10/0x10
[   33.330044][  T502]  ? fput+0x1a5/0x240
[   33.330067][  T502]  __x64_sys_recvmmsg+0x191/0x240
[   33.330082][  T502]  ? __cfi___x64_sys_recvmmsg+0x10/0x10
[   33.330094][  T502]  ? __kasan_check_read+0x15/0x20
[   33.330111][  T502]  x64_sys_call+0x292c/0x2ee0
[   33.330128][  T502]  do_syscall_64+0x58/0xf0
[   33.330147][  T502]  ? clear_bhb_loop+0x35/0x90
[   33.330169][  T502]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   33.330187][  T502] RIP: 0033:0x7fc9f278e929
[   33.330200][  T502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   33.330213][  T502] RSP: 002b:00007fc9f35f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   33.330230][  T502] RAX: ffffffffffffffda RBX: 00007fc9f29b5fa0 RCX: 00007fc9f278e929
[   33.330242][  T502] RDX: 0000000000000003 RSI: 0000200000002000 RDI: 0000000000000003
[   33.330253][  T502] RBP: 00007fc9f35f7090 R08: 0000000000000000 R09: 0000000000000000
[   33.330261][  T502] R10: 0000000040010022 R11: 0000000000000246 R12: 0000000000000002
[   33.330270][  T502] R13: 0000000000000000 R14: 00007fc9f29b5fa0 R15: 00007ffd3e8145d8
[   33.330282][  T502]  </TASK>
[   33.344202][  T504] overlayfs: failed to get index nlink (file1/bus, err=-61)
[   33.716623][  T519] netlink: 12 bytes leftover after parsing attributes in process `syz.3.84'.
[   33.725926][  T519] netlink: 24 bytes leftover after parsing attributes in process `syz.3.84'.
[   33.879177][  T541] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:70
[   33.903079][   T31] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   33.945804][  T546] netlink: 12 bytes leftover after parsing attributes in process `syz.1.94'.
[   33.955406][  T546] netlink: 24 bytes leftover after parsing attributes in process `syz.1.94'.
[   34.002207][   T63] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   34.055581][  T352] usb 3-1: new low-speed USB device number 3 using dummy_hcd
[   34.076995][   T31] usb 1-1: Using ep0 maxpacket: 32
[   34.083953][   T31] usb 1-1: config 0 has an invalid descriptor of length 195, skipping remainder of the config
[   34.094442][   T31] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[   34.105781][   T31] usb 1-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f
[   34.115635][   T31] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   34.123877][   T31] usb 1-1: Product: syz
[   34.128736][   T31] usb 1-1: Manufacturer: syz
[   34.133519][   T31] usb 1-1: SerialNumber: syz
[   34.141411][   T31] usb 1-1: config 0 descriptor??
[   34.162522][   T63] usb 4-1: Using ep0 maxpacket: 32
[   34.169074][   T63] usb 4-1: config 0 has an invalid interface number: 67 but max is 0
[   34.178361][   T63] usb 4-1: config 0 has no interface number 0
[   34.186098][   T63] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[   34.195560][   T63] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   34.203704][   T63] usb 4-1: Product: syz
[   34.207972][   T63] usb 4-1: Manufacturer: syz
[   34.212658][   T63] usb 4-1: SerialNumber: syz
[   34.218294][   T63] usb 4-1: config 0 descriptor??
[   34.223620][  T352] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   34.233191][  T352] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   34.241736][   T63] smsc95xx v2.0.0
[   34.246019][  T352] usb 3-1: config 0 descriptor??
[   34.334784][  T559] binder: Bad value for 'max'
[   34.374881][  T561] rust_binder: Write failure EINVAL in pid:90
[   34.663046][   T63] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[   34.680863][   T63] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[   34.836223][   T31] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   34.904484][  T352] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[   34.914996][  T352] asix 3-1:0.0: probe with driver asix failed with error -61
[   35.007048][   T31] usb 2-1: Using ep0 maxpacket: 16
[   35.012583][   T31] usb 2-1: no configurations
[   35.017860][   T31] usb 2-1: can't read configurations, error -22
[   35.129519][   T63] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000108: -71
[   35.140740][   T63] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -71
[   35.150440][   T63] usb 4-1: USB disconnect, device number 4
[   35.157386][   T31] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   35.317188][   T31] usb 2-1: Using ep0 maxpacket: 16
[   35.323284][   T31] usb 2-1: no configurations
[   35.328269][   T31] usb 2-1: can't read configurations, error -22
[   35.335229][   T31] usb usb2-port1: attempt power cycle
[   35.496747][  T570] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   35.505805][  T570] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   35.684477][  T572] netlink: 12 bytes leftover after parsing attributes in process `syz.3.104'.
[   35.697208][  T572] netlink: 24 bytes leftover after parsing attributes in process `syz.3.104'.
[   35.707683][   T31] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   35.734828][   T31] usb 2-1: Using ep0 maxpacket: 16
[   35.741354][   T31] usb 2-1: no configurations
[   35.746808][   T31] usb 2-1: can't read configurations, error -22
[   35.883705][   T31] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   35.896288][  T584] netlink: 324 bytes leftover after parsing attributes in process `syz.3.110'.
[   35.905527][   T31] usb 2-1: Using ep0 maxpacket: 16
[   35.912358][   T31] usb 2-1: no configurations
[   35.917412][   T31] usb 2-1: can't read configurations, error -22
[   35.923923][   T31] usb usb2-port1: unable to enumerate USB device
[   35.956900][  T590] netlink: 24 bytes leftover after parsing attributes in process `syz.3.113'.
[   36.022301][  T601] netlink: 596 bytes leftover after parsing attributes in process `syz.3.117'.
[   36.047372][   T13] Bluetooth: hci0: Frame reassembly failed (-84)
[   36.856712][   T31] usb 1-1: USB disconnect, device number 3
[   36.866809][   T36] kauditd_printk_skb: 4127 callbacks suppressed
[   36.866825][   T36] audit: type=1400 audit(1750455619.870:4318): avc:  denied  { append } for  pid=605 comm="syz.0.118" name="loop8" dev="devtmpfs" ino=57 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   36.898667][   T36] audit: type=1400 audit(1750455619.888:4319): avc:  denied  { read write } for  pid=609 comm="syz.0.119" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   36.923511][   T36] audit: type=1400 audit(1750455619.888:4320): avc:  denied  { open } for  pid=609 comm="syz.0.119" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   36.949605][   T36] audit: type=1400 audit(1750455619.888:4321): avc:  denied  { create } for  pid=609 comm="syz.0.119" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[   36.974537][   T36] audit: type=1400 audit(1750455619.888:4322): avc:  denied  { sys_admin } for  pid=609 comm="syz.0.119" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[   36.999245][   T36] audit: type=1400 audit(1750455619.935:4323): avc:  denied  { write } for  pid=614 comm="syz.0.121" name="binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   37.005745][   T63] usb 3-1: USB disconnect, device number 3
[   37.023070][   T36] audit: type=1400 audit(1750455619.935:4324): avc:  denied  { map } for  pid=614 comm="syz.0.121" path="/dev/binderfs/binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   37.053860][   T36] audit: type=1400 audit(1750455619.935:4325): avc:  denied  { call } for  pid=614 comm="syz.0.121" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   37.075201][   T36] audit: type=1400 audit(1750455620.038:4326): avc:  denied  { execute } for  pid=618 comm="syz.2.123" path="/20/cpu.stat" dev="tmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   37.197189][  T625] FAULT_INJECTION: forcing a failure.
[   37.197189][  T625] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   37.212077][  T625] CPU: 1 UID: 0 PID: 625 Comm: syz.2.124 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   37.212106][  T625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   37.212115][  T625] Call Trace:
[   37.212120][  T625]  <TASK>
[   37.212127][  T625]  __dump_stack+0x21/0x30
[   37.212148][  T625]  dump_stack_lvl+0x10c/0x190
[   37.212164][  T625]  ? __cfi_dump_stack_lvl+0x10/0x10
[   37.212182][  T625]  dump_stack+0x19/0x20
[   37.212197][  T625]  should_fail_ex+0x3d9/0x530
[   37.212213][  T625]  should_fail+0xf/0x20
[   37.212226][  T625]  should_fail_usercopy+0x1e/0x30
[   37.212242][  T625]  _copy_from_user+0x22/0xb0
[   37.212260][  T625]  do_pagemap_cmd+0xf8/0xc20
[   37.212273][  T625]  ? vfs_write+0x8ba/0xe80
[   37.212289][  T625]  ? __cfi_selinux_file_ioctl+0x10/0x10
[   37.212309][  T625]  ? __cfi_do_pagemap_cmd+0x10/0x10
[   37.212325][  T625]  ? __fget_files+0x2c5/0x340
[   37.212343][  T625]  ? bpf_lsm_file_ioctl+0xd/0x20
[   37.212358][  T625]  ? security_file_ioctl+0x34/0xd0
[   37.212376][  T625]  ? __cfi_do_pagemap_cmd+0x10/0x10
[   37.212389][  T625]  __se_sys_ioctl+0x132/0x1b0
[   37.212408][  T625]  __x64_sys_ioctl+0x7f/0xa0
[   37.212426][  T625]  x64_sys_call+0x1878/0x2ee0
[   37.212443][  T625]  do_syscall_64+0x58/0xf0
[   37.212460][  T625]  ? clear_bhb_loop+0x35/0x90
[   37.212480][  T625]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   37.212498][  T625] RIP: 0033:0x7fc9f278e929
[   37.212511][  T625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   37.212523][  T625] RSP: 002b:00007fc9f35f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   37.212540][  T625] RAX: ffffffffffffffda RBX: 00007fc9f29b5fa0 RCX: 00007fc9f278e929
[   37.212551][  T625] RDX: 0000200000000100 RSI: 00000000c0606610 RDI: 0000000000000006
[   37.212561][  T625] RBP: 00007fc9f35f7090 R08: 0000000000000000 R09: 0000000000000000
[   37.212570][  T625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   37.212580][  T625] R13: 0000000000000000 R14: 00007fc9f29b5fa0 R15: 00007ffd3e8145d8
[   37.212592][  T625]  </TASK>
[   37.453131][   T36] audit: type=1400 audit(1750455620.421:4327): avc:  denied  { create } for  pid=626 comm="syz.2.125" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   37.508645][   T31] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   37.669067][   T31] usb 1-1: Using ep0 maxpacket: 8
[   37.677616][   T31] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   37.690793][   T31] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   37.703223][   T31] usb 1-1: config 0 descriptor??
[   37.776366][  T305] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   37.925273][   T31] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[   37.936949][  T305] usb 3-1: Using ep0 maxpacket: 32
[   37.939187][   T31] asix 1-1:0.0: probe with driver asix failed with error -32
[   37.945870][  T305] usb 3-1: config 0 has an invalid interface number: 184 but max is 0
[   37.964145][  T305] usb 3-1: config 0 has no interface number 0
[   37.970422][  T305] usb 3-1: config 0 interface 184 has no altsetting 0
[   37.983604][  T305] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[   37.994942][  T305] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   38.005594][  T305] usb 3-1: Product: syz
[   38.010219][  T305] usb 3-1: Manufacturer: syz
[   38.016561][  T305] usb 3-1: SerialNumber: syz
[   38.022485][  T305] usb 3-1: config 0 descriptor??
[   38.029134][  T305] smsc75xx v1.0.0
[   38.246325][   T53] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   38.251682][  T603] Bluetooth: hci0: command 0x1003 tx timeout
[   38.254609][  T305] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[   38.280523][  T650] rust_binder: Write failure EINVAL in pid:72
[   38.280967][  T305] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[   38.298736][  T305] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[   38.313002][  T305] smsc75xx 3-1:0.184: probe with driver smsc75xx failed with error -71
[   38.350364][  T305] usb 3-1: USB disconnect, device number 4
[   38.599155][   T31] usb 4-1: new low-speed USB device number 5 using dummy_hcd
[   38.761091][   T31] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   38.770616][   T31] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   38.780962][   T31] usb 4-1: config 0 descriptor??
[   39.240608][  T536] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   39.400942][  T536] usb 2-1: Using ep0 maxpacket: 16
[   39.407806][  T536] usb 2-1: config 4 has an invalid interface number: 15 but max is 0
[   39.416374][  T536] usb 2-1: config 4 has no interface number 0
[   39.422832][  T536] usb 2-1: config 4 interface 15 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[   39.435061][  T536] usb 2-1: config 4 interface 15 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[   39.445307][  T536] usb 2-1: config 4 interface 15 has no altsetting 0
[   39.454653][  T536] usb 2-1: New USB device found, idVendor=0930, idProduct=0a13, bcdDevice=76.44
[   39.464160][  T536] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   39.472864][  T536] usb 2-1: Product: syz
[   39.478031][  T536] usb 2-1: Manufacturer: syz
[   39.482988][  T536] usb 2-1: SerialNumber: syz
[   39.489145][  T662] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[   39.496965][  T662] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[   39.764090][  T662] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[   39.771997][  T662] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[   40.078243][   T31] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[   40.088655][   T31] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[   40.099118][   T31] asix 4-1:0.0: probe with driver asix failed with error -71
[   40.107660][   T31] usb 4-1: USB disconnect, device number 5
[   40.172970][  T673] FAULT_INJECTION: forcing a failure.
[   40.172970][  T673] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   40.184007][   T63] usb 1-1: USB disconnect, device number 4
[   40.187940][  T673] CPU: 0 UID: 0 PID: 673 Comm: syz.2.140 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   40.187973][  T673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   40.187984][  T673] Call Trace:
[   40.187992][  T673]  <TASK>
[   40.188001][  T673]  __dump_stack+0x21/0x30
[   40.188030][  T673]  dump_stack_lvl+0x10c/0x190
[   40.188048][  T673]  ? __cfi_dump_stack_lvl+0x10/0x10
[   40.188067][  T673]  dump_stack+0x19/0x20
[   40.188084][  T673]  should_fail_ex+0x3d9/0x530
[   40.188102][  T673]  should_fail+0xf/0x20
[   40.188117][  T673]  should_fail_usercopy+0x1e/0x30
[   40.188135][  T673]  _copy_from_user+0x22/0xb0
[   40.188155][  T673]  __se_sys_mount+0x182/0x480
[   40.188175][  T673]  ? ksys_write+0x1ef/0x250
[   40.188194][  T673]  ? __x64_sys_mount+0xf0/0xf0
[   40.188212][  T673]  __x64_sys_mount+0xc3/0xf0
[   40.188229][  T673]  x64_sys_call+0x2021/0x2ee0
[   40.188248][  T673]  do_syscall_64+0x58/0xf0
[   40.188269][  T673]  ? clear_bhb_loop+0x35/0x90
[   40.188291][  T673]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   40.188312][  T673] RIP: 0033:0x7fc9f278e929
[   40.188327][  T673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.188340][  T673] RSP: 002b:00007fc9f35f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   40.188360][  T673] RAX: ffffffffffffffda RBX: 00007fc9f29b5fa0 RCX: 00007fc9f278e929
[   40.188372][  T673] RDX: 0000200000000340 RSI: 00002000000000c0 RDI: 0000000000000000
[   40.188383][  T673] RBP: 00007fc9f35f7090 R08: 00002000000001c0 R09: 0000000000000000
[   40.188394][  T673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.188404][  T673] R13: 0000000000000000 R14: 00007fc9f29b5fa0 R15: 00007ffd3e8145d8
[   40.188417][  T673]  </TASK>
[   40.188851][  T673] overlayfs: missing 'lowerdir'
[   40.226000][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0002: -71
[   40.803797][  T696] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0
[   40.803819][  T696] rust_binder: Error while translating object.
[   40.813495][  T696] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   40.819849][  T696] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:113
[   40.888552][  T707] can0: slcan on ptm0.
[   40.899206][  T305] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[   40.909016][  T707] capability: warning: `syz.1.155' uses 32-bit capabilities (legacy support in use)
[   40.951272][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71
[   40.963504][  T707] can0 (unregistered): slcan off ptm0.
[   41.075468][  T305] usb 4-1: Using ep0 maxpacket: 8
[   41.085476][  T305] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   41.094934][  T305] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   41.107628][  T305] usb 4-1: config 0 descriptor??
[   41.186436][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -71
[   41.198748][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to read reg index 0x0006: -71
[   41.210836][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): invalid MAC address, using random
[   41.224372][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0006: -71
[   41.236787][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0005: -71
[   41.249356][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71
[   41.262395][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71
[   41.275947][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71
[   41.288459][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71
[   41.300261][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0002: -71
[   41.312160][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71
[   41.326577][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0002: -71
[   41.328501][  T305] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[   41.339384][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -71
[   41.365453][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -71
[   41.367098][  T305] asix 4-1:0.0: probe with driver asix failed with error -32
[   41.383394][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71
[   41.406060][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x001f: -71
[   41.417813][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x0019: -71
[   41.429459][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x001f: -71
[   41.441814][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71
[   41.453703][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x000e: -71
[   41.465091][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71
[   41.478164][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to read reg index 0x000e: -71
[   41.490579][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71
[   41.502539][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x000e: -71
[   41.514490][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71
[   41.525905][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to write reg index 0x000e: -71
[   41.538987][  T536] ax88179_178a 2-1:4.15 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[   41.554918][  T536] ax88179_178a 2-1:4.15 eth1: register 'ax88179_178a' at usb-dummy_hcd.1-1, Toshiba USB Ethernet Adapter, 5e:5c:b2:2c:78:d2
[   41.573209][  T536] usb 2-1: USB disconnect, device number 7
[   41.580808][  T536] ax88179_178a 2-1:4.15 eth1: unregister 'ax88179_178a' usb-dummy_hcd.1-1, Toshiba USB Ethernet Adapter
[   41.671290][  T755] rust_binder: validate_parent_fixup: new_min_offset=56, sg_entry.length=0
[   41.671317][  T755] rust_binder: Error while translating object.
[   41.681297][  T755] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[   41.688197][  T755] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:102
[   41.854168][  T766] rust_binder: Failed to allocate buffer. len:40, is_oneway:false
[   41.977512][  T536] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[   41.993342][   T63] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   42.031711][  T782] FAULT_INJECTION: forcing a failure.
[   42.031711][  T782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   42.046102][  T782] CPU: 0 UID: 0 PID: 782 Comm: syz.2.173 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   42.046131][  T782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   42.046140][  T782] Call Trace:
[   42.046146][  T782]  <TASK>
[   42.046153][  T782]  __dump_stack+0x21/0x30
[   42.046184][  T782]  dump_stack_lvl+0x10c/0x190
[   42.046200][  T782]  ? __cfi_dump_stack_lvl+0x10/0x10
[   42.046217][  T782]  dump_stack+0x19/0x20
[   42.046232][  T782]  should_fail_ex+0x3d9/0x530
[   42.046249][  T782]  should_fail+0xf/0x20
[   42.046263][  T782]  should_fail_usercopy+0x1e/0x30
[   42.046279][  T782]  _copy_from_iter+0x1a3/0x14b0
[   42.046297][  T782]  ? __kasan_check_write+0x18/0x20
[   42.046313][  T782]  ? __build_skb_around+0x2a4/0x5a0
[   42.046332][  T782]  ? __cfi__copy_from_iter+0x10/0x10
[   42.046349][  T782]  ? check_stack_object+0x82/0x140
[   42.046366][  T782]  ? __virt_addr_valid+0x2a6/0x380
[   42.046387][  T782]  ? __check_object_size+0x455/0x620
[   42.046403][  T782]  netlink_sendmsg+0x680/0xaf0
[   42.046424][  T782]  ? __cfi_netlink_sendmsg+0x10/0x10
[   42.046443][  T782]  ? bpf_lsm_socket_sendmsg+0xd/0x20
[   42.046463][  T782]  ? security_socket_sendmsg+0x33/0xd0
[   42.046480][  T782]  ? __cfi_netlink_sendmsg+0x10/0x10
[   42.046505][  T782]  ____sys_sendmsg+0xa15/0xa70
[   42.046529][  T782]  ? __sys_sendmsg_sock+0x50/0x50
[   42.046549][  T782]  ? import_iovec+0x81/0xb0
[   42.046568][  T782]  ___sys_sendmsg+0x220/0x2a0
[   42.046588][  T782]  ? __sys_sendmsg+0x280/0x280
[   42.046607][  T782]  ? proc_fail_nth_write+0x17e/0x210
[   42.046622][  T782]  ? __cfi_proc_fail_nth_write+0x10/0x10
[   42.046640][  T782]  __x64_sys_sendmsg+0x1eb/0x2c0
[   42.046653][  T782]  ? fput+0x1a5/0x240
[   42.046673][  T782]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[   42.046686][  T782]  ? ksys_write+0x1ef/0x250
[   42.046709][  T782]  ? __kasan_check_read+0x15/0x20
[   42.046725][  T782]  x64_sys_call+0x2a4c/0x2ee0
[   42.046780][  T782]  do_syscall_64+0x58/0xf0
[   42.046799][  T782]  ? clear_bhb_loop+0x35/0x90
[   42.046823][  T782]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   42.046842][  T782] RIP: 0033:0x7fc9f278e929
[   42.046855][  T782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.046867][  T782] RSP: 002b:00007fc9f35f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   42.046884][  T782] RAX: ffffffffffffffda RBX: 00007fc9f29b5fa0 RCX: 00007fc9f278e929
[   42.046896][  T782] RDX: 0000000020004010 RSI: 0000200000000280 RDI: 0000000000000003
[   42.046906][  T782] RBP: 00007fc9f35f7090 R08: 0000000000000000 R09: 0000000000000000
[   42.046915][  T782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   42.046924][  T782] R13: 0000000000000000 R14: 00007fc9f29b5fa0 R15: 00007ffd3e8145d8
[   42.046936][  T782]  </TASK>
[   42.159185][   T63] usb 1-1: Using ep0 maxpacket: 16
[   42.297227][  T790] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:130
[   42.304917][  T536] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   42.330116][   T36] kauditd_printk_skb: 73 callbacks suppressed
[   42.330131][   T36] audit: type=1400 audit(1750455624.986:4401): avc:  denied  { ioctl } for  pid=788 comm="syz.2.176" path="socket:[7737]" dev="sockfs" ino=7737 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   42.337386][  T536] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   42.455873][   T63] usb 1-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   42.467104][   T63] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[   42.478359][   T63] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[   42.488858][   T63] usb 1-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[   42.503205][   T63] usb 1-1: config 1 interface 0 has no altsetting 0
[   42.510465][  T536] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   42.520507][  T536] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   42.534361][  T536] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   42.544958][  T536] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   42.554192][   T63] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   42.565985][   T63] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   42.575866][   T63] usb 1-1: SerialNumber: syz
[   42.583030][  T536] usb 2-1: config 0 descriptor??
[   42.590098][  T764] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[   42.598654][  T764] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[   43.038278][  T729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   43.049138][  T729] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   43.063616][  T729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   43.074781][  T729] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   43.182170][   T36] audit: type=1400 audit(1750455625.781:4402): avc:  denied  { ioctl } for  pid=794 comm="syz.2.177" path="socket:[7743]" dev="sockfs" ino=7743 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   43.474082][   T31] usb 3-1: new low-speed USB device number 5 using dummy_hcd
[   43.636358][   T31] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   43.645555][   T31] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   43.654420][   T31] usb 3-1: config 0 descriptor??
[   43.875590][   T31] asix 3-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[   43.876970][  T376] usb 4-1: USB disconnect, device number 6
[   44.286583][  T376] usb 4-1: new full-speed USB device number 7 using dummy_hcd
[   44.303394][   T31] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[   44.316200][   T31] asix 3-1:0.0: probe with driver asix failed with error -61
[   44.437908][  T376] usb 4-1: device descriptor read/64, error -71
[   44.551810][  T536] usbhid 2-1:0.0: can't add hid device: -71
[   44.560649][  T813] exfat: Unknown parameter 'workdir'
[   44.560821][  T536] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[   44.579239][  T536] usb 2-1: USB disconnect, device number 8
[   44.600702][  T817] rust_binder: Failed to allocate buffer. len:4224, is_oneway:false
[   44.608726][  T820] =======================================================
[   44.608726][  T820] WARNING: The mand mount option has been deprecated and
[   44.608726][  T820]          and is ignored by this kernel. Remove the mand
[   44.608726][  T820]          option from the mount to silence this warning.
[   44.608726][  T820] =======================================================
[   44.653302][   T36] audit: type=1400 audit(1750455627.166:4403): avc:  denied  { mount } for  pid=819 comm="syz.1.185" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   44.676815][   T36] audit: type=1400 audit(1750455627.175:4404): avc:  denied  { unmount } for  pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   44.705540][  T822] overlayfs: missing 'lowerdir'
[   44.724834][  T376] usb 4-1: device descriptor read/64, error -71
[   44.731182][   T36] audit: type=1400 audit(1750455627.231:4405): avc:  denied  { write } for  pid=823 comm="syz.1.187" path="socket:[6780]" dev="sockfs" ino=6780 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   44.777713][   T36] audit: type=1400 audit(1750455627.268:4406): avc:  denied  { getopt } for  pid=827 comm="syz.1.189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   44.943570][   T63] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -71
[   44.956584][   T63] usb 1-1: USB disconnect, device number 5
[   44.974761][  T836] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:106
[   44.981494][  T376] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[   45.028846][  T837] rust_binder: Write failure EINVAL in pid:106
[   45.131087][  T376] usb 4-1: device descriptor read/64, error -71
[   45.272331][   T36] audit: type=1400 audit(1750455627.736:4407): avc:  denied  { create } for  pid=797 comm="syz.2.178" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   45.293251][   T36] audit: type=1400 audit(1750455627.736:4408): avc:  denied  { bind } for  pid=797 comm="syz.2.178" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   45.398346][  T376] usb 4-1: device descriptor read/64, error -71
[   45.515995][  T376] usb usb4-port1: attempt power cycle
[   45.745395][   T36] audit: type=1326 audit(1750455628.176:4409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=829 comm="syz.1.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964978e929 code=0x7fc00000
[   45.779108][   T36] audit: type=1400 audit(1750455628.204:4410): avc:  denied  { mount } for  pid=839 comm="syz.1.193" name="/" dev="overlay" ino=356 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   45.857047][  T844] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=56316 sclass=netlink_audit_socket pid=844 comm=syz.1.195
[   45.879442][  T376] usb 4-1: new full-speed USB device number 9 using dummy_hcd
[   45.902119][  T376] usb 4-1: device descriptor read/8, error -71
[   46.042501][  T376] usb 4-1: device descriptor read/8, error -71
[   46.146683][   T10] usb 2-1: new full-speed USB device number 9 using dummy_hcd
[   46.178728][    T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   46.296356][  T376] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[   46.308443][   T10] usb 2-1: unable to get BOS descriptor or descriptor too short
[   46.316591][   T10] usb 2-1: not running at top speed; connect to a high speed hub
[   46.325628][   T10] usb 2-1: config 1 interface 0 altsetting 166 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   46.338939][   T10] usb 2-1: config 1 interface 0 has no altsetting 0
[   46.345627][    T9] usb 1-1: Using ep0 maxpacket: 32
[   46.350831][  T376] usb 4-1: device descriptor read/8, error -71
[   46.358159][    T9] usb 1-1: config 0 has an invalid interface number: 67 but max is 0
[   46.366409][    T9] usb 1-1: config 0 has no interface number 0
[   46.373884][   T10] usb 2-1: New USB device found, idVendor=046d, idProduct=c537, bcdDevice= 0.40
[   46.383685][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   46.395076][   T10] usb 2-1: Product: syz
[   46.399895][   T10] usb 2-1: Manufacturer: syz
[   46.405477][   T10] usb 2-1: SerialNumber: syz
[   46.410293][    T9] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[   46.421206][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   46.429743][    T9] usb 1-1: Product: syz
[   46.434697][    T9] usb 1-1: Manufacturer: syz
[   46.439286][   T63] usb 3-1: USB disconnect, device number 5
[   46.439546][    T9] usb 1-1: SerialNumber: syz
[   46.459323][    T9] usb 1-1: config 0 descriptor??
[   46.466087][    T9] smsc95xx v2.0.0
[   46.490086][  T376] usb 4-1: device descriptor read/8, error -71
[   46.606678][  T376] usb usb4-port1: unable to enumerate USB device
[   46.675416][  T848] SELinux: ebitmap: truncated map
[   46.682920][  T848] SELinux: failed to load policy
[   46.693155][   T10] usbhid 2-1:1.0: can't add hid device: -71
[   46.699598][   T10] usbhid 2-1:1.0: probe with driver usbhid failed with error -71
[   46.708594][   T10] usb 2-1: USB disconnect, device number 9
[   46.897755][    T9] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[   46.910012][    T9] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[   46.927154][   T63] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   47.087432][   T63] usb 3-1: Using ep0 maxpacket: 16
[   47.094172][   T63] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[   47.103620][   T63] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   47.114286][   T63] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[   47.125441][   T63] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   47.135082][   T63] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   47.143740][   T63] usb 3-1: Product: syz
[   47.148020][   T63] usb 3-1: Manufacturer: syz
[   47.152965][   T63] usb 3-1: SerialNumber: syz
[   47.396632][  T873] netlink: 24 bytes leftover after parsing attributes in process `syz.3.208'.
[   47.509719][  T883] netlink: 8 bytes leftover after parsing attributes in process `syz.3.212'.
[   47.518673][  T536] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[   47.573763][    T9] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[   47.585131][    T9] smsc95xx 1-1:0.67: probe with driver smsc95xx failed with error -71
[   47.592959][   T63] usb 3-1: 0:2 : does not exist
[   47.597951][    T9] usb 1-1: USB disconnect, device number 6
[   47.675812][  T536] usb 2-1: device descriptor read/64, error -71
[   47.793058][  T352] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[   47.814743][   T36] kauditd_printk_skb: 13 callbacks suppressed
[   47.814759][   T36] audit: type=1400 audit(1750455630.121:4424): avc:  denied  { write } for  pid=855 comm="syz.2.200" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   47.932235][  T536] usb 2-1: device descriptor read/64, error -71
[   47.953366][  T352] usb 4-1: Using ep0 maxpacket: 8
[   47.959701][  T352] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64
[   47.972023][  T352] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   47.981275][  T352] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   47.989300][  T352] usb 4-1: Product: ࡡ
[   47.993558][  T352] usb 4-1: Manufacturer: 
[   47.998501][  T352] usb 4-1: SerialNumber: 귤ꄝ鳩ᢋ펁㓓䂠䥞偪畱넷꼻ꋒ쐓餋Pꍛ稠ꋿꇄ﹵雮搜寘֊戹䏼亪椉㩟ᢣ諥爌䀨떁嵈ᯂ쁭ᝯᑯ鄰潐¯ᱏ⊆晵⡃㛪ꯈ숎눓ᨀ৭뺺᷒븋軔౓소瓈뙹浦ቷඨ埴纡ꏍ⎄膏䆟ᣟꚾᨷ䩇亴ꈅ琪쎀뾟꧓㸬⢝냪ℵ宽ꘒ鮁峌璗꒬ꄕ⥔裕⣴钱쵀
[   48.134283][  T887] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EFAULT }
[   48.134318][  T887] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EFAULT } my_pid:111
[   48.154486][   T36] audit: type=1400 audit(1750455630.430:4425): avc:  denied  { remount } for  pid=888 comm="syz.0.215" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   48.188716][  T536] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[   48.216456][   T36] audit: type=1400 audit(1750455630.486:4426): avc:  denied  { connect } for  pid=888 comm="syz.0.215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   48.246764][   T36] audit: type=1400 audit(1750455630.514:4427): avc:  denied  { setopt } for  pid=884 comm="syz.3.213" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   48.327549][  T536] usb 2-1: device descriptor read/64, error -71
[   48.498729][   T31] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   48.528594][  T895] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   48.539219][  T895] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   48.584178][  T536] usb 2-1: device descriptor read/64, error -71
[   48.660127][   T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   48.671211][   T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   48.681024][   T31] usb 1-1: New USB device found, idVendor=056a, idProduct=00c7, bcdDevice= 0.00
[   48.690173][   T31] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   48.698910][   T31] usb 1-1: config 0 descriptor??
[   48.704151][  T536] usb usb2-port1: attempt power cycle
[   49.065331][  T536] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[   49.098470][  T536] usb 2-1: device descriptor read/8, error -71
[   49.139790][   T31] usb 1-1: string descriptor 0 read error: -71
[   49.148132][   T31] usbhid 1-1:0.0: can't add hid device: -71
[   49.154878][   T31] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[   49.164002][   T31] usb 1-1: USB disconnect, device number 7
[   49.237232][  T536] usb 2-1: device descriptor read/8, error -71
[   49.492842][  T536] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[   49.517240][  T536] usb 2-1: device descriptor read/8, error -71
[   49.654446][  T536] usb 2-1: device descriptor read/8, error -71
[   49.689875][  T897] netlink: 24 bytes leftover after parsing attributes in process `syz.0.217'.
[   49.771354][  T536] usb usb2-port1: unable to enumerate USB device
[   49.779973][  T904] FAULT_INJECTION: forcing a failure.
[   49.779973][  T904] name failslab, interval 1, probability 0, space 0, times 0
[   49.795003][  T904] CPU: 0 UID: 0 PID: 904 Comm: syz.0.220 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   49.795030][  T904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   49.795040][  T904] Call Trace:
[   49.795047][  T904]  <TASK>
[   49.795054][  T904]  __dump_stack+0x21/0x30
[   49.795079][  T904]  dump_stack_lvl+0x10c/0x190
[   49.795096][  T904]  ? __cfi_dump_stack_lvl+0x10/0x10
[   49.795115][  T904]  dump_stack+0x19/0x20
[   49.795131][  T904]  should_fail_ex+0x3d9/0x530
[   49.795150][  T904]  should_failslab+0xac/0x100
[   49.795172][  T904]  __kmalloc_cache_noprof+0x41/0x3c0
[   49.795192][  T904]  ? alloc_fs_context+0x70/0x830
[   49.795211][  T904]  alloc_fs_context+0x70/0x830
[   49.795224][  T904]  ? _raw_read_unlock+0x16/0x40
[   49.795237][  T904]  fs_context_for_mount+0x26/0x40
[   49.795250][  T904]  do_new_mount+0x116/0xb40
[   49.795262][  T904]  path_mount+0x688/0x1050
[   49.795277][  T904]  ? putname+0x113/0x150
[   49.795297][  T904]  __se_sys_mount+0x2bd/0x480
[   49.795316][  T904]  ? ksys_write+0x1ef/0x250
[   49.795334][  T904]  ? __x64_sys_mount+0xf0/0xf0
[   49.795353][  T904]  __x64_sys_mount+0xc3/0xf0
[   49.795365][  T904]  x64_sys_call+0x2021/0x2ee0
[   49.795377][  T904]  do_syscall_64+0x58/0xf0
[   49.795388][  T904]  ? clear_bhb_loop+0x35/0x90
[   49.795401][  T904]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   49.795415][  T904] RIP: 0033:0x7f923038e929
[   49.795429][  T904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.795442][  T904] RSP: 002b:00007f92312d3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   49.795458][  T904] RAX: ffffffffffffffda RBX: 00007f92305b5fa0 RCX: 00007f923038e929
[   49.795468][  T904] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[   49.795474][  T904] RBP: 00007f92312d3090 R08: 00002000000000c0 R09: 0000000000000000
[   49.795480][  T904] R10: 0000000000008011 R11: 0000000000000246 R12: 0000000000000001
[   49.795487][  T904] R13: 0000000000000000 R14: 00007f92305b5fa0 R15: 00007fffd8e130b8
[   49.795498][  T904]  </TASK>
[   49.859922][   T63] usb 3-1: 1:0: failed to get current value for ch 0 (-22)
[   49.871339][  T906] mmap: syz.0.221 (906) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   49.890379][   T36] audit: type=1400 audit(1750455632.058:4428): avc:  denied  { read write } for  pid=907 comm="syz.2.222" name="uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   50.096432][   T36] audit: type=1400 audit(1750455632.076:4429): avc:  denied  { open } for  pid=907 comm="syz.2.222" path="/dev/uhid" dev="devtmpfs" ino=199 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   50.102931][   T63] usb 3-1: USB disconnect, device number 6
[   50.125805][   T36] audit: type=1400 audit(1750455632.104:4430): avc:  denied  { read write } for  pid=907 comm="syz.2.222" name="vhost-vsock" dev="devtmpfs" ino=200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   50.162529][   T36] audit: type=1400 audit(1750455632.104:4431): avc:  denied  { open } for  pid=907 comm="syz.2.222" path="/dev/vhost-vsock" dev="devtmpfs" ino=200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   50.193011][   T36] audit: type=1400 audit(1750455632.104:4432): avc:  denied  { ioctl } for  pid=907 comm="syz.2.222" path="/dev/vhost-vsock" dev="devtmpfs" ino=200 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   50.317792][  T411] udevd[411]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   50.328770][  T925] 9p: Unknown Cache mode or invalid value ;j��~.r�M���0�9���]�~ށ��a����΋�!B���\�nz�\A
/�	
[   50.423706][  T933] SELinux: security_context_str_to_sid () failed with errno=-22
[   50.490541][  T937] binder: Unknown parameter 'coyBLV�"i5������ntext'
[   50.641461][   T36] audit: type=1326 audit(1750455632.759:4433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=949 comm="syz.1.237" exe="/root/syz-executor" sig=9 arch=c000003e syscall=157 compat=0 ip=0x7f964978e929 code=0x0
[   50.643391][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.682217][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.692114][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.703662][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.712659][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.722618][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.734403][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.745826][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.756730][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.766063][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.774295][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.782250][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.790685][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.798844][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.806866][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.814906][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.822866][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.832404][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.840590][  T352] cdc_ncm 4-1:1.0: bind() failure
[   50.846048][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.856117][  T352] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[   50.861106][  T955] FAULT_INJECTION: forcing a failure.
[   50.861106][  T955] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.863141][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   50.876597][  T955] CPU: 0 UID: 0 PID: 955 Comm: syz.0.239 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   50.876626][  T955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   50.876637][  T955] Call Trace:
[   50.876643][  T955]  <TASK>
[   50.876651][  T955]  __dump_stack+0x21/0x30
[   50.876676][  T955]  dump_stack_lvl+0x10c/0x190
[   50.876693][  T955]  ? __cfi_dump_stack_lvl+0x10/0x10
[   50.876711][  T955]  ? __sys_recvmsg_sock+0x60/0x60
[   50.876728][  T955]  dump_stack+0x19/0x20
[   50.876744][  T955]  should_fail_ex+0x3d9/0x530
[   50.876762][  T955]  should_fail+0xf/0x20
[   50.876777][  T955]  should_fail_usercopy+0x1e/0x30
[   50.876793][  T955]  _copy_from_user+0x22/0xb0
[   50.876813][  T955]  ___sys_recvmsg+0x12f/0x510
[   50.876829][  T955]  ? __sys_recvmsg+0x280/0x280
[   50.876844][  T955]  ? __cfi_kstrtouint_from_user+0x10/0x10
[   50.876861][  T955]  ? selinux_file_permission+0x309/0xb30
[   50.876884][  T955]  ? __fget_files+0x2c5/0x340
[   50.876904][  T955]  do_recvmmsg+0x326/0x770
[   50.876920][  T955]  ? __sys_recvmmsg+0x290/0x290
[   50.876935][  T955]  ? __cfi_vfs_write+0x10/0x10
[   50.876954][  T955]  ? fput+0x1a5/0x240
[   50.876976][  T955]  __x64_sys_recvmmsg+0x191/0x240
[   50.876991][  T955]  ? __cfi___x64_sys_recvmmsg+0x10/0x10
[   50.877007][  T955]  ? __kasan_check_read+0x15/0x20
[   50.877024][  T955]  x64_sys_call+0x292c/0x2ee0
[   50.877044][  T955]  do_syscall_64+0x58/0xf0
[   50.877063][  T955]  ? clear_bhb_loop+0x35/0x90
[   50.877085][  T955]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   50.877106][  T955] RIP: 0033:0x7f923038e929
[   50.877119][  T955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.877133][  T955] RSP: 002b:00007f92312d3038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   50.877151][  T955] RAX: ffffffffffffffda RBX: 00007f92305b5fa0 RCX: 00007f923038e929
[   50.877164][  T955] RDX: 0000000000000007 RSI: 0000200000009800 RDI: 0000000000000003
[   50.877176][  T955] RBP: 00007f92312d3090 R08: 0000000000000000 R09: 0000000000000000
[   50.877187][  T955] R10: 0000000000002100 R11: 0000000000000246 R12: 0000000000000001
[   50.877197][  T955] R13: 0000000000000000 R14: 00007f92305b5fa0 R15: 00007fffd8e130b8
[   50.877211][  T955]  </TASK>
[   51.117618][  T352] cdc_ncm 4-1:1.1: bind() failure
[   51.117766][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.123972][  T352] usb 4-1: USB disconnect, device number 11
[   51.131141][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.144695][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.152824][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.161175][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.169586][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.177592][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.185531][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.193593][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.202103][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.210642][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.219008][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.227418][  T951] binder: Unknown parameter 'defcontext01777777777777777777777'
[   51.261682][  T962] rust_binder: Write failure EFAULT in pid:141
[   51.262618][  T962] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[   51.470626][  T352] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[   51.630940][  T352] usb 4-1: Using ep0 maxpacket: 16
[   51.637785][  T352] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   51.648299][  T352] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[   51.659136][  T352] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   51.668581][  T352] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   51.677300][  T352] usb 4-1: Product: syz
[   51.681647][  T352] usb 4-1: Manufacturer: syz
[   51.686728][  T352] usb 4-1: SerialNumber: syz
[   52.125295][  T352] usb 4-1: cannot find UAC_HEADER
[   52.133976][  T352] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[   52.150464][  T411] udevd[411]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   52.342021][  T352] usb 4-1: USB disconnect, device number 12
[   52.505441][  T977] rust_binder: Failed to vm_insert_page(35184372744192): vma_addr:35184372744192 i:0 err:EBUSY
[   52.505468][  T977] rust_binder: Error in use_page_slow: EBUSY
[   52.516186][  T977] rust_binder: use_range failure EBUSY
[   52.523020][  T977] rust_binder: Failed to allocate buffer. len:8, is_oneway:true
[   52.530802][  T977] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EBUSY }
[   52.540472][  T977] rust_binder: Failure BR_FAILED_REPLY { source: EBUSY } during reply - delivering BR_FAILED_REPLY to sender.
[   52.551040][  T977] rust_binder: Transaction failed: BR_TRANSACTION_COMPLETE my_pid:185
[   52.892032][  T981] syz.3.248: vmalloc error: size 8192, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0
[   52.917648][  T981] CPU: 1 UID: 0 PID: 981 Comm: syz.3.248 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   52.917675][  T981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   52.917686][  T981] Call Trace:
[   52.917692][  T981]  <TASK>
[   52.917699][  T981]  __dump_stack+0x21/0x30
[   52.917722][  T981]  dump_stack_lvl+0x10c/0x190
[   52.917739][  T981]  ? __cfi_dump_stack_lvl+0x10/0x10
[   52.917755][  T981]  ? _raw_spin_unlock_irqrestore+0x4a/0x70
[   52.917775][  T981]  dump_stack+0x19/0x20
[   52.917786][  T981]  warn_alloc+0x1bc/0x2a0
[   52.917795][  T981]  ? __cfi_warn_alloc+0x10/0x10
[   52.917804][  T981]  ? __kasan_kmalloc+0x96/0xb0
[   52.917817][  T981]  ? __kmalloc_node_noprof+0x1b1/0x450
[   52.917829][  T981]  __vmalloc_node_range_noprof+0x10d0/0x1420
[   52.917841][  T981]  ? __cfi___vmalloc_node_range_noprof+0x10/0x10
[   52.917851][  T981]  ? kasan_save_alloc_info+0x40/0x50
[   52.917860][  T981]  ? arch_dup_task_struct+0x5b/0xe0
[   52.917872][  T981]  ? __asan_memcpy+0x5a/0x80
[   52.917882][  T981]  dup_task_struct+0x5bd/0xc50
[   52.917891][  T981]  ? copy_process+0x538/0x3220
[   52.917900][  T981]  ? _raw_spin_lock_irq+0x8d/0x120
[   52.917911][  T981]  ? copy_process+0x3220/0x3220
[   52.917919][  T981]  ? __kasan_check_write+0x18/0x20
[   52.917930][  T981]  copy_process+0x538/0x3220
[   52.917939][  T981]  ? __cfi_copy_process+0x10/0x10
[   52.917954][  T981]  ? __kasan_check_write+0x18/0x20
[   52.917963][  T981]  ? __cfi_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   52.917978][  T981]  vhost_task_create+0x1d6/0x350
[   52.917991][  T981]  ? __cfi_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   52.918005][  T981]  ? __cfi_vhost_task_create+0x10/0x10
[   52.918017][  T981]  ? __cfi_vhost_task_fn+0x10/0x10
[   52.918028][  T981]  ? __kasan_check_write+0x18/0x20
[   52.918038][  T981]  ? mutex_lock+0x92/0x1c0
[   52.918046][  T981]  ? __cfi_mutex_lock+0x10/0x10
[   52.918055][  T981]  ? kernel_text_address+0xa9/0xe0
[   52.918065][  T981]  kvm_mmu_post_init_vm+0x1a6/0x310
[   52.918076][  T981]  kvm_arch_vcpu_ioctl_run+0xd7/0x1aa0
[   52.918086][  T981]  ? _parse_integer_limit+0x195/0x1e0
[   52.918097][  T981]  ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10
[   52.918107][  T981]  ? kstrtoull+0x13b/0x1e0
[   52.918115][  T981]  ? kstrtouint+0x78/0xf0
[   52.918124][  T981]  ? ioctl_has_perm+0x1aa/0x4d0
[   52.918137][  T981]  ? __asan_memcpy+0x5a/0x80
[   52.918146][  T981]  ? ioctl_has_perm+0x3e0/0x4d0
[   52.918158][  T981]  ? has_cap_mac_admin+0xd0/0xd0
[   52.918170][  T981]  ? __kasan_check_write+0x18/0x20
[   52.918180][  T981]  ? mutex_lock_killable+0x92/0x1c0
[   52.918188][  T981]  ? __cfi_mutex_lock_killable+0x10/0x10
[   52.918197][  T981]  ? proc_fail_nth_write+0x17e/0x210
[   52.918206][  T981]  kvm_vcpu_ioctl+0x96f/0xee0
[   52.918219][  T981]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   52.918231][  T981]  ? __cfi_vfs_write+0x10/0x10
[   52.918241][  T981]  ? __kasan_check_write+0x18/0x20
[   52.918251][  T981]  ? mutex_unlock+0x8b/0x240
[   52.918259][  T981]  ? __cfi_mutex_unlock+0x10/0x10
[   52.918267][  T981]  ? __fget_files+0x2c5/0x340
[   52.918280][  T981]  ? __fget_files+0x2c5/0x340
[   52.918291][  T981]  ? bpf_lsm_file_ioctl+0xd/0x20
[   52.918301][  T981]  ? security_file_ioctl+0x34/0xd0
[   52.918313][  T981]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[   52.918324][  T981]  __se_sys_ioctl+0x132/0x1b0
[   52.918337][  T981]  __x64_sys_ioctl+0x7f/0xa0
[   52.918348][  T981]  x64_sys_call+0x1878/0x2ee0
[   52.918359][  T981]  do_syscall_64+0x58/0xf0
[   52.918373][  T981]  ? clear_bhb_loop+0x35/0x90
[   52.918388][  T981]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   52.918401][  T981] RIP: 0033:0x7f0f2458e929
[   52.918410][  T981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.918418][  T981] RSP: 002b:00007f0f253ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   52.918430][  T981] RAX: ffffffffffffffda RBX: 00007f0f247b5fa0 RCX: 00007f0f2458e929
[   52.918437][  T981] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   52.918443][  T981] RBP: 00007f0f253ad090 R08: 0000000000000000 R09: 0000000000000000
[   52.918449][  T981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   52.918455][  T981] R13: 0000000000000000 R14: 00007f0f247b5fa0 R15: 00007ffcc2907348
[   52.918464][  T981]  </TASK>
[   52.918478][  T981] Mem-Info:
[   53.431723][  T981] active_anon:6533 inactive_anon:0 isolated_anon:0
[   53.431723][  T981]  active_file:6317 inactive_file:2186 isolated_file:0
[   53.431723][  T981]  unevictable:0 dirty:96 writeback:0
[   53.431723][  T981]  slab_reclaimable:4546 slab_unreclaimable:70654
[   53.431723][  T981]  mapped:24346 shmem:162 pagetables:892
[   53.431723][  T981]  sec_pagetables:0 bounce:0
[   53.431723][  T981]  kernel_misc_reclaimable:0
[   53.431723][  T981]  free:1541458 free_pcp:2030 free_cma:0
[   53.477849][  T852] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[   53.477876][  T981] Node 0 active_anon:26132kB inactive_anon:0kB active_file:25268kB inactive_file:8744kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:97384kB dirty:384kB writeback:0kB shmem:648kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4548kB pagetables:3568kB sec_pagetables:0kB all_unreclaimable? no
[   53.517357][  T981] DMA32 free:2960212kB boost:0kB min:19088kB low:23860kB high:28632kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2966004kB mlocked:0kB bounce:0kB free_pcp:5792kB local_pcp:64kB free_cma:0kB
[   53.548393][  T981] lowmem_reserve[]: 0 3921 3921
[   53.553342][  T981] Normal free:3205620kB boost:0kB min:25964kB low:32452kB high:38940kB reserved_highatomic:0KB free_highatomic:0KB active_anon:26132kB inactive_anon:0kB active_file:25268kB inactive_file:8744kB unevictable:0kB writepending:384kB present:5242880kB managed:4016120kB mlocked:0kB bounce:0kB free_pcp:2328kB local_pcp:1804kB free_cma:0kB
[   53.587380][  T981] lowmem_reserve[]: 0 0 0
[   53.591744][  T981] DMA32: 5*4kB (M) 2*8kB (M) 3*16kB (M) 4*32kB (M) 4*64kB (M) 3*128kB (M) 4*256kB (M) 4*512kB (M) 5*1024kB (UM) 5*2048kB (M) 718*4096kB (M) = 2960212kB
[   53.608720][  T981] Normal: 20*4kB (UME) 12*8kB (ME) 30*16kB (UME) 28*32kB (UME) 21*64kB (UME) 45*128kB (UME) 32*256kB (UM) 14*512kB (UM) 11*1024kB (UME) 10*2048kB (ME) 769*4096kB (M) = 3205584kB
[   53.627893][  T981] 8661 total pagecache pages
[   53.632648][  T981] 0 pages in swap cache
[   53.636891][  T981] Free swap  = 124728kB
[   53.641343][  T981] Total swap = 124996kB
[   53.645738][  T981] 2097051 pages RAM
[   53.650191][  T981] 0 pages HighMem/MovableOnly
[   53.655220][  T981] 351520 pages reserved
[   53.659629][  T981] 0 pages cma reserved
[   53.663416][  T852] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   53.665456][  T981] Memory allocations:
[   53.674308][  T852] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[   53.678000][  T981]          0 B        0 init/main.c:1370 func:do_initcalls
[   53.678022][  T981]          0 B        0 init/do_mounts.c:186 func:mount_root_generic
[   53.692691][  T852] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   53.698463][  T981]          0 B        0 init/do_mounts.c:158 func:do_mount_root
[   53.698488][  T981]          0 B        0 init/do_mounts.c:352 func:mount_nodev_root
[   53.706980][  T852] usb 2-1: New USB device strings: Mfr=16, Product=0, SerialNumber=1
[   53.716007][  T981]          0 B        0 init/do_mounts_rd.c:241 func:rd_load_image
[   53.724146][  T852] usb 2-1: Manufacturer: syz
[   53.732388][  T981]          0 B        0 init/do_mounts_rd.c:72 func:identify_ramdisk_image
[   53.742201][  T852] usb 2-1: SerialNumber: syz
[   53.750987][  T981]          0 B        0 init/initramfs.c:507 func:unpack_to_rootfs
[   53.759388][  T852] usb 2-1: bad CDC descriptors
[   53.771167][  T981]          0 B        0 init/initramfs.c:508 func:unpack_to_rootfs
[   53.797337][  T981]          0 B        0 init/initramfs.c:509 func:unpack_to_rootfs
[   53.805618][   T36] kauditd_printk_skb: 6 callbacks suppressed
[   53.805636][   T36] audit: type=1400 audit(1750455635.715:4440): avc:  denied  { create } for  pid=985 comm="syz.2.250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[   53.805974][  T981]          0 B        0 init/initramfs.c:101 func:find_link
[   53.888729][   T36] audit: type=1326 audit(1750455635.799:4441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=991 comm="syz.3.252" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0f2458e929 code=0x0
[   53.982339][   T36] audit: type=1400 audit(1750455635.874:4442): avc:  denied  { append } for  pid=983 comm="syz.1.249" name="001" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   53.983775][  T852] usb 2-1: USB disconnect, device number 14
[   54.196829][  T352] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[   54.358484][  T352] usb 4-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   54.372689][  T352] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   54.385936][  T352] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   54.399349][  T352] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[   54.408581][  T352] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.418828][  T993] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[   54.578614][   T36] audit: type=1400 audit(1750455636.435:4443): avc:  denied  { read } for  pid=998 comm="syz.1.255" name="msr" dev="devtmpfs" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   54.579062][  T999] audit: audit_lost=2 audit_rate_limit=0 audit_backlog_limit=64
[   54.603112][   T36] audit: type=1400 audit(1750455636.435:4444): avc:  denied  { open } for  pid=998 comm="syz.1.255" path="/dev/cpu/1/msr" dev="devtmpfs" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   54.610314][  T999] audit: out of memory in audit_log_start
[   54.635057][   T63] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[   54.713724][ T1012] netlink: 24 bytes leftover after parsing attributes in process `syz.0.259'.
[   54.789045][   T36] audit: type=1326 audit(1750455636.641:4445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1021 comm="syz.0.264" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f923038e929 code=0x0
[   54.817142][   T63] usb 3-1: Using ep0 maxpacket: 16
[   54.823847][   T63] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   54.835353][   T63] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   54.845879][   T63] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   54.859000][   T63] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   54.868239][   T63] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.878361][   T63] usb 3-1: config 0 descriptor??
[   54.990805][ T1034] overlayfs: failed to resolve './file0': -2
[   54.998006][ T1034] rust_binder: 1033 RLIMIT_NICE not set
[   55.008533][ T1036] netlink: 24 bytes leftover after parsing attributes in process `syz.1.269'.
[   55.047611][ T1040] netlink: 424 bytes leftover after parsing attributes in process `syz.1.271'.
[   55.057632][   T36] audit: type=1400 audit(1750455636.894:4446): avc:  denied  { ioctl } for  pid=1039 comm="syz.1.271" path="socket:[8895]" dev="sockfs" ino=8895 ioctlcmd=0x943d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   55.119013][ T1042] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1925786821 (246500713088 ns) > initial count (142045153280 ns). Using initial count to start timer.
[   55.182933][   T36] audit: type=1326 audit(1750455637.006:4447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1045 comm="syz.1.273" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f964978e929 code=0x0
[   55.314789][  T995] 9pnet_virtio: no channels available for device syz
[   55.539709][   T63] usbhid 3-1:0.0: can't add hid device: -71
[   55.547301][   T63] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[   55.561309][   T63] usb 3-1: USB disconnect, device number 7
[   55.618551][   T45] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[   55.757534][   T45] usb 2-1: device descriptor read/64, error -71
[   56.008589][ T1063] syz.0.279 uses obsolete (PF_INET,SOCK_PACKET)
[   56.014430][   T45] usb 2-1: device descriptor read/64, error -71
[   56.030087][ T1063] SELinux: failed to load policy
[   56.122545][ T1069] usb usb8: usbfs: process 1069 (syz.2.281) did not claim interface 0 before use
[   56.281382][   T45] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[   56.420441][   T45] usb 2-1: device descriptor read/64, error -71
[   56.676964][   T45] usb 2-1: device descriptor read/64, error -71
[   56.794605][   T45] usb usb2-port1: attempt power cycle
[   57.159260][   T45] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[   57.191107][   T45] usb 2-1: device descriptor read/8, error -71
[   57.270664][ T1084] FAULT_INJECTION: forcing a failure.
[   57.270664][ T1084] name failslab, interval 1, probability 0, space 0, times 0
[   57.283872][ T1084] CPU: 0 UID: 0 PID: 1084 Comm: syz.2.286 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   57.283902][ T1084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   57.283911][ T1084] Call Trace:
[   57.283915][ T1084]  <TASK>
[   57.283921][ T1084]  __dump_stack+0x21/0x30
[   57.283937][ T1084]  dump_stack_lvl+0x10c/0x190
[   57.283948][ T1084]  ? __cfi_dump_stack_lvl+0x10/0x10
[   57.283960][ T1084]  dump_stack+0x19/0x20
[   57.283969][ T1084]  should_fail_ex+0x3d9/0x530
[   57.283980][ T1084]  should_failslab+0xac/0x100
[   57.283993][ T1084]  __kmalloc_noprof+0x69/0x450
[   57.284004][ T1084]  ? genl_family_rcv_msg_attrs_parse+0xc6/0x390
[   57.284016][ T1084]  genl_family_rcv_msg_attrs_parse+0xc6/0x390
[   57.284027][ T1084]  genl_family_rcv_msg_doit+0xcd/0x330
[   57.284037][ T1084]  ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0
[   57.284047][ T1084]  ? selinux_capable+0x38/0x50
[   57.284058][ T1084]  ? bpf_lsm_capable+0xd/0x20
[   57.284070][ T1084]  ? security_capable+0xcf/0xf0
[   57.284080][ T1084]  ? ns_capable+0x91/0xf0
[   57.284092][ T1084]  genl_rcv_msg+0x609/0x7a0
[   57.284102][ T1084]  ? __cfi_genl_rcv_msg+0x10/0x10
[   57.284115][ T1084]  ? __cfi_wg_set_device+0x10/0x10
[   57.284126][ T1084]  netlink_rcv_skb+0x22b/0x4a0
[   57.284147][ T1084]  ? __cfi_genl_rcv_msg+0x10/0x10
[   57.284156][ T1084]  ? __cfi_netlink_rcv_skb+0x10/0x10
[   57.284168][ T1084]  ? rwsem_read_trylock+0x2b1/0x660
[   57.284179][ T1084]  ? down_read+0x79/0xe0
[   57.284189][ T1084]  ? __cfi_down_read+0x10/0x10
[   57.284199][ T1084]  ? is_vmalloc_addr+0x11/0x40
[   57.284213][ T1084]  genl_rcv+0x2c/0x40
[   57.284222][ T1084]  netlink_unicast+0x8c6/0xa60
[   57.284234][ T1084]  netlink_sendmsg+0x7f0/0xaf0
[   57.284247][ T1084]  ? __cfi_netlink_sendmsg+0x10/0x10
[   57.284260][ T1084]  ? bpf_lsm_socket_sendmsg+0xd/0x20
[   57.284274][ T1084]  ? security_socket_sendmsg+0x33/0xd0
[   57.284285][ T1084]  ? __cfi_netlink_sendmsg+0x10/0x10
[   57.284298][ T1084]  ____sys_sendmsg+0xa15/0xa70
[   57.284312][ T1084]  ? __sys_sendmsg_sock+0x50/0x50
[   57.284326][ T1084]  ? import_iovec+0x81/0xb0
[   57.284339][ T1084]  ___sys_sendmsg+0x220/0x2a0
[   57.284352][ T1084]  ? __sys_sendmsg+0x280/0x280
[   57.284365][ T1084]  ? proc_fail_nth_write+0x17e/0x210
[   57.284374][ T1084]  ? __cfi_proc_fail_nth_write+0x10/0x10
[   57.284385][ T1084]  __x64_sys_sendmsg+0x1eb/0x2c0
[   57.284393][ T1084]  ? fput+0x1a5/0x240
[   57.284407][ T1084]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[   57.284415][ T1084]  ? ksys_write+0x1ef/0x250
[   57.284426][ T1084]  ? __kasan_check_read+0x15/0x20
[   57.284436][ T1084]  x64_sys_call+0x2a4c/0x2ee0
[   57.284447][ T1084]  do_syscall_64+0x58/0xf0
[   57.284466][ T1084]  ? clear_bhb_loop+0x35/0x90
[   57.284480][ T1084]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   57.284493][ T1084] RIP: 0033:0x7fc9f278e929
[   57.284502][ T1084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.284511][ T1084] RSP: 002b:00007fc9f35f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.284523][ T1084] RAX: ffffffffffffffda RBX: 00007fc9f29b5fa0 RCX: 00007fc9f278e929
[   57.284530][ T1084] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[   57.284537][ T1084] RBP: 00007fc9f35f7090 R08: 0000000000000000 R09: 0000000000000000
[   57.284543][ T1084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.284549][ T1084] R13: 0000000000000000 R14: 00007fc9f29b5fa0 R15: 00007ffd3e8145d8
[   57.284556][ T1084]  </TASK>
[   57.437505][   T45] usb 2-1: device descriptor read/8, error -71
[   57.772912][ T1098] x_tables: duplicate underflow at hook 2
[   57.906348][   T45] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[   57.928790][   T45] usb 2-1: device descriptor read/8, error -71
[   58.067962][   T45] usb 2-1: device descriptor read/8, error -71
[   58.184386][   T45] usb usb2-port1: unable to enumerate USB device
[   58.962477][  T352] aiptek 4-1:17.0: Aiptek using 400 ms programming speed
[   58.970374][  T352] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input10
[   58.986096][  T352] usb 4-1: USB disconnect, device number 13
[   59.166514][   T36] kauditd_printk_skb: 77 callbacks suppressed
[   59.166531][   T36] audit: type=1400 audit(1750455640.729:4525): avc:  denied  { read write } for  pid=290 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   59.202900][   T36] audit: type=1400 audit(1750455640.748:4526): avc:  denied  { read } for  pid=1150 comm="syz.3.314" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[   59.229142][   T36] audit: type=1400 audit(1750455640.766:4527): avc:  denied  { read write } for  pid=290 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   59.259789][   T36] audit: type=1400 audit(1750455640.766:4528): avc:  denied  { read write } for  pid=291 comm="syz-executor" name="loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   59.287928][   T36] audit: type=1400 audit(1750455640.766:4529): avc:  denied  { create } for  pid=1153 comm="syz.2.316" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=0
[   59.308258][   T36] audit: type=1400 audit(1750455640.766:4530): avc:  denied  { append } for  pid=1153 comm="syz.2.316" name="001" dev="devtmpfs" ino=96 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=0
[   59.331859][   T36] audit: type=1400 audit(1750455640.766:4531): avc:  denied  { read write } for  pid=291 comm="syz-executor" name="loop2" dev="devtmpfs" ino=51 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   59.364018][   T36] audit: type=1400 audit(1750455640.766:4532): avc:  denied  { create } for  pid=1155 comm="syz.2.317" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=0
[   59.388216][   T36] audit: type=1400 audit(1750455640.794:4533): avc:  denied  { name_bind } for  pid=1155 comm="syz.2.317" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=0
[   59.410193][   T36] audit: type=1400 audit(1750455640.794:4534): avc:  denied  { read } for  pid=1152 comm="syz.3.315" dev="nsfs" ino=4026532306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=0
[   60.125688][ T1187] syz.1.327 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   60.147316][ T1189] FAULT_INJECTION: forcing a failure.
[   60.147316][ T1189] name failslab, interval 1, probability 0, space 0, times 0
[   60.160327][ T1189] CPU: 0 UID: 0 PID: 1189 Comm: syz.1.328 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   60.160359][ T1189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   60.160369][ T1189] Call Trace:
[   60.160375][ T1189]  <TASK>
[   60.160382][ T1189]  __dump_stack+0x21/0x30
[   60.160405][ T1189]  dump_stack_lvl+0x10c/0x190
[   60.160423][ T1189]  ? __cfi_dump_stack_lvl+0x10/0x10
[   60.160442][ T1189]  dump_stack+0x19/0x20
[   60.160458][ T1189]  should_fail_ex+0x3d9/0x530
[   60.160476][ T1189]  should_failslab+0xac/0x100
[   60.160495][ T1189]  kmem_cache_alloc_noprof+0x42/0x3a0
[   60.160514][ T1189]  ? security_file_alloc+0x49/0x200
[   60.160537][ T1189]  security_file_alloc+0x49/0x200
[   60.160557][ T1189]  init_file+0x9e/0x210
[   60.160637][ T1189]  alloc_empty_file+0xd9/0x280
[   60.160659][ T1189]  path_openat+0xf8/0x34b0
[   60.160684][ T1189]  ? kasan_save_track+0x4f/0x80
[   60.160703][ T1189]  ? kasan_save_alloc_info+0x40/0x50
[   60.160720][ T1189]  ? __kasan_slab_alloc+0x73/0x90
[   60.160740][ T1189]  ? kmem_cache_alloc_noprof+0x131/0x3a0
[   60.160773][ T1189]  ? getname_flags+0xc6/0x710
[   60.160792][ T1189]  ? do_sys_openat2+0xcb/0x1c0
[   60.160807][ T1189]  ? __x64_sys_openat+0x13a/0x170
[   60.160823][ T1189]  ? x64_sys_call+0xe69/0x2ee0
[   60.160841][ T1189]  ? do_syscall_64+0x58/0xf0
[   60.160863][ T1189]  ? do_filp_open+0x3e0/0x3e0
[   60.160985][ T1189]  do_filp_open+0x1c6/0x3e0
[   60.161007][ T1189]  ? __cfi_do_filp_open+0x10/0x10
[   60.161031][ T1189]  ? alloc_fd+0x4e7/0x5a0
[   60.161053][ T1189]  do_sys_openat2+0x12c/0x1c0
[   60.161070][ T1189]  ? do_sys_open+0x100/0x100
[   60.161086][ T1189]  ? __kasan_check_write+0x18/0x20
[   60.161105][ T1189]  ? do_user_addr_fault+0xbc4/0x1200
[   60.161126][ T1189]  ? __cfi_ksys_write+0x10/0x10
[   60.161143][ T1189]  __x64_sys_openat+0x13a/0x170
[   60.161167][ T1189]  x64_sys_call+0xe69/0x2ee0
[   60.161198][ T1189]  do_syscall_64+0x58/0xf0
[   60.161216][ T1189]  ? clear_bhb_loop+0x35/0x90
[   60.161238][ T1189]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   60.161256][ T1189] RIP: 0033:0x7f964978d290
[   60.161272][ T1189] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   60.161287][ T1189] RSP: 002b:00007f964a698b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   60.161308][ T1189] RAX: ffffffffffffffda RBX: 0000000000000040 RCX: 00007f964978d290
[   60.161324][ T1189] RDX: 0000000000000040 RSI: 00007f964a698c10 RDI: 00000000ffffff9c
[   60.161336][ T1189] RBP: 00007f964a698c10 R08: 0000000000000000 R09: 0000000000000000
[   60.161347][ T1189] R10: 0000000000000000 R11: 0000000000000293 R12: cccccccccccccccd
[   60.161360][ T1189] R13: 0000000000000000 R14: 00007f96499b5fa0 R15: 00007ffccf1a3ea8
[   60.161375][ T1189]  </TASK>
[   62.708623][ T1265] netlink: 12 bytes leftover after parsing attributes in process `syz.1.361'.
[   64.513171][   T36] kauditd_printk_skb: 28181 callbacks suppressed
[   64.513188][   T36] audit: type=1400 audit(1750455645.724:31912): avc:  denied  { setattr } for  pid=291 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[   64.521648][  T291] audit: audit_backlog=65 > audit_backlog_limit=64
[   64.544044][   T36] audit: type=1400 audit(1750455645.743:31913): avc:  denied  { setattr } for  pid=291 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[   64.550793][  T291] audit: audit_lost=271 audit_rate_limit=0 audit_backlog_limit=64
[   64.550811][  T291] audit: backlog limit exceeded
[   64.551123][  T291] audit: audit_backlog=65 > audit_backlog_limit=64
[   64.577124][ T1339] audit: audit_backlog=65 > audit_backlog_limit=64
[   64.586765][  T291] audit: audit_lost=272 audit_rate_limit=0 audit_backlog_limit=64
[   64.593946][ T1341] audit: audit_backlog=65 > audit_backlog_limit=64
[   64.601263][  T291] audit: backlog limit exceeded
[   64.652419][ T1348] FAULT_INJECTION: forcing a failure.
[   64.652419][ T1348] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   64.666285][ T1348] CPU: 0 UID: 0 PID: 1348 Comm: syz.0.393 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   64.666313][ T1348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   64.666336][ T1348] Call Trace:
[   64.666341][ T1348]  <TASK>
[   64.666347][ T1348]  __dump_stack+0x21/0x30
[   64.666400][ T1348]  dump_stack_lvl+0x10c/0x190
[   64.666417][ T1348]  ? __cfi_dump_stack_lvl+0x10/0x10
[   64.666433][ T1348]  ? __nla_put+0x9e/0xe0
[   64.666452][ T1348]  dump_stack+0x19/0x20
[   64.666468][ T1348]  should_fail_ex+0x3d9/0x530
[   64.666481][ T1348]  should_fail_alloc_page+0xeb/0x110
[   64.666502][ T1348]  __alloc_pages_noprof+0x19d/0x6c0
[   64.666515][ T1348]  ? rtnl_fill_ifinfo+0x11ca/0x1c20
[   64.666531][ T1348]  ? __cfi___alloc_pages_noprof+0x10/0x10
[   64.666544][ T1348]  ? cgroup_rstat_updated+0x132/0x7f0
[   64.666562][ T1348]  ? __cfi_cgroup_rstat_updated+0x10/0x10
[   64.666579][ T1348]  __folio_alloc_noprof+0x14/0x80
[   64.666593][ T1348]  folio_prealloc+0x46/0x240
[   64.666615][ T1348]  do_pte_missing+0x1603/0x3e50
[   64.666635][ T1348]  ? update_curr+0x60d/0xc60
[   64.666655][ T1348]  ? xfd_validate_state+0x68/0x150
[   64.666673][ T1348]  ? save_fpregs_to_fpstate+0x196/0x230
[   64.666693][ T1348]  ? pte_marker_clear+0x1b0/0x1b0
[   64.666713][ T1348]  ? __pte_offset_map+0x1b0/0x230
[   64.666728][ T1348]  ? pte_offset_map_rw_nolock+0xba/0x110
[   64.666743][ T1348]  handle_mm_fault+0x1166/0x1b90
[   64.666764][ T1348]  ? __cfi_handle_mm_fault+0x10/0x10
[   64.666783][ T1348]  ? find_vma+0xcd/0x110
[   64.666800][ T1348]  ? lock_mm_and_find_vma+0xb8/0x3a0
[   64.666820][ T1348]  do_user_addr_fault+0x4ca/0x1200
[   64.666841][ T1348]  exc_page_fault+0x59/0xc0
[   64.666860][ T1348]  asm_exc_page_fault+0x2b/0x30
[   64.666883][ T1348] RIP: 0010:rep_movs_alternative+0x4a/0xa0
[   64.666904][ T1348] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[   64.666918][ T1348] RSP: 0018:ffffc900108ef4d8 EFLAGS: 00050206
[   64.666936][ T1348] RAX: ffffffff82a24001 RBX: ffff88811b2f6000 RCX: 0000000000000c28
[   64.666949][ T1348] RDX: 0000000000000000 RSI: ffff88811b2f6000 RDI: 0000200000002180
[   64.666962][ T1348] RBP: ffffc900108ef630 R08: ffff88811b2f6c27 R09: 1ffff1102365ed84
[   64.666974][ T1348] R10: dffffc0000000000 R11: ffffed102365ed85 R12: 0000200000002180
[   64.666987][ T1348] R13: 0000000000000000 R14: 0000000000000c28 R15: ffffc900108efd48
[   64.667000][ T1348]  ? _copy_to_iter+0x331/0x14b0
[   64.667040][ T1348]  ? _copy_to_iter+0x444/0x14b0
[   64.667060][ T1348]  ? __cfi__copy_to_iter+0x10/0x10
[   64.667081][ T1348]  ? check_stack_object+0x82/0x140
[   64.667100][ T1348]  ? __virt_addr_valid+0x2a6/0x380
[   64.667120][ T1348]  ? __check_object_size+0x455/0x620
[   64.667140][ T1348]  __skb_datagram_iter+0x103/0x930
[   64.667162][ T1348]  ? __cfi_simple_copy_to_iter+0x10/0x10
[   64.667185][ T1348]  skb_copy_datagram_iter+0x44/0x160
[   64.667207][ T1348]  netlink_recvmsg+0x2c5/0xdf0
[   64.667230][ T1348]  ? __cfi_netlink_recvmsg+0x10/0x10
[   64.667254][ T1348]  ? bpf_lsm_socket_recvmsg+0xd/0x20
[   64.667277][ T1348]  ? security_socket_recvmsg+0x3a/0xf0
[   64.667296][ T1348]  ? __cfi_netlink_recvmsg+0x10/0x10
[   64.667321][ T1348]  ? __cfi_netlink_recvmsg+0x10/0x10
[   64.667343][ T1348]  sock_recvmsg_nosec+0x1df/0x230
[   64.667369][ T1348]  ____sys_recvmsg+0x3a9/0x460
[   64.667386][ T1348]  ? __sys_recvmsg_sock+0x60/0x60
[   64.667404][ T1348]  ? import_iovec+0x81/0xb0
[   64.667425][ T1348]  ___sys_recvmsg+0x1b6/0x510
[   64.667442][ T1348]  ? __sys_recvmsg+0x280/0x280
[   64.667456][ T1348]  ? __cfi_kstrtouint_from_user+0x10/0x10
[   64.667474][ T1348]  ? selinux_file_permission+0x309/0xb30
[   64.667498][ T1348]  ? __fget_files+0x2c5/0x340
[   64.667522][ T1348]  do_recvmmsg+0x326/0x770
[   64.667538][ T1348]  ? __sys_recvmmsg+0x290/0x290
[   64.667554][ T1348]  ? __cfi_vfs_write+0x10/0x10
[   64.667575][ T1348]  ? fput+0x1a5/0x240
[   64.667597][ T1348]  __x64_sys_recvmmsg+0x191/0x240
[   64.667614][ T1348]  ? __cfi___x64_sys_recvmmsg+0x10/0x10
[   64.667630][ T1348]  ? __kasan_check_read+0x15/0x20
[   64.667647][ T1348]  x64_sys_call+0x292c/0x2ee0
[   64.667667][ T1348]  do_syscall_64+0x58/0xf0
[   64.667688][ T1348]  ? clear_bhb_loop+0x35/0x90
[   64.667710][ T1348]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   64.667732][ T1348] RIP: 0033:0x7f923038e929
[   64.667747][ T1348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.667761][ T1348] RSP: 002b:00007f92312d3038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   64.667779][ T1348] RAX: ffffffffffffffda RBX: 00007f92305b5fa0 RCX: 00007f923038e929
[   64.667792][ T1348] RDX: 0000000000000007 RSI: 0000200000009800 RDI: 0000000000000003
[   64.667803][ T1348] RBP: 00007f92312d3090 R08: 0000000000000000 R09: 0000000000000000
[   64.667814][ T1348] R10: 0000000000002100 R11: 0000000000000246 R12: 0000000000000001
[   64.667825][ T1348] R13: 0000000000000000 R14: 00007f92305b5fa0 R15: 00007fffd8e130b8
[   64.667840][ T1348]  </TASK>
[   65.442265][ T1370] netlink: 'syz.1.404': attribute type 4 has an invalid length.
[   65.453543][ T1370] netlink: 'syz.1.404': attribute type 4 has an invalid length.
[   66.726370][ T1456] tap0: tun_chr_ioctl cmd 1074025677
[   66.731860][ T1456] tap0: linktype set to 776
[   68.298069][   T13] Bluetooth: hci0: Frame reassembly failed (-84)
[   69.256771][ T1574] FAULT_INJECTION: forcing a failure.
[   69.256771][ T1574] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   69.291822][ T1574] CPU: 1 UID: 0 PID: 1574 Comm: syz.3.492 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   69.291850][ T1574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   69.291862][ T1574] Call Trace:
[   69.291868][ T1574]  <TASK>
[   69.291875][ T1574]  __dump_stack+0x21/0x30
[   69.291907][ T1574]  dump_stack_lvl+0x10c/0x190
[   69.291929][ T1574]  ? __cfi_dump_stack_lvl+0x10/0x10
[   69.291949][ T1574]  ? __nla_put+0x9e/0xe0
[   69.291972][ T1574]  dump_stack+0x19/0x20
[   69.291989][ T1574]  should_fail_ex+0x3d9/0x530
[   69.292007][ T1574]  should_fail_alloc_page+0xeb/0x110
[   69.292029][ T1574]  __alloc_pages_noprof+0x19d/0x6c0
[   69.292046][ T1574]  ? rtnl_fill_ifinfo+0x11ca/0x1c20
[   69.292063][ T1574]  ? __cfi___alloc_pages_noprof+0x10/0x10
[   69.292082][ T1574]  __folio_alloc_noprof+0x14/0x80
[   69.292098][ T1574]  folio_prealloc+0x46/0x240
[   69.292120][ T1574]  do_pte_missing+0x1603/0x3e50
[   69.292143][ T1574]  ? xas_find+0xe0/0x840
[   69.292168][ T1574]  ? xa_find+0x11b/0x170
[   69.292182][ T1574]  ? pte_marker_clear+0x1b0/0x1b0
[   69.292204][ T1574]  ? __pte_offset_map+0x1b0/0x230
[   69.292221][ T1574]  ? pte_offset_map_rw_nolock+0xba/0x110
[   69.292239][ T1574]  handle_mm_fault+0x1166/0x1b90
[   69.292262][ T1574]  ? __cfi_handle_mm_fault+0x10/0x10
[   69.292283][ T1574]  ? find_vma+0xcd/0x110
[   69.292303][ T1574]  ? lock_mm_and_find_vma+0xb8/0x3a0
[   69.292323][ T1574]  do_user_addr_fault+0x4ca/0x1200
[   69.292346][ T1574]  exc_page_fault+0x59/0xc0
[   69.292364][ T1574]  asm_exc_page_fault+0x2b/0x30
[   69.292385][ T1574] RIP: 0010:rep_movs_alternative+0x4a/0xa0
[   69.292404][ T1574] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[   69.292418][ T1574] RSP: 0018:ffffc9000fa1f4d8 EFLAGS: 00050206
[   69.292435][ T1574] RAX: ffffffff82a24001 RBX: ffff888130386000 RCX: 0000000000000c28
[   69.292449][ T1574] RDX: 0000000000000000 RSI: ffff888130386000 RDI: 0000200000002180
[   69.292460][ T1574] RBP: ffffc9000fa1f630 R08: ffff888130386c27 R09: 1ffff11026070d84
[   69.292473][ T1574] R10: dffffc0000000000 R11: ffffed1026070d85 R12: 0000200000002180
[   69.292486][ T1574] R13: 0000000000000000 R14: 0000000000000c28 R15: ffffc9000fa1fd48
[   69.292499][ T1574]  ? _copy_to_iter+0x331/0x14b0
[   69.292521][ T1574]  ? _copy_to_iter+0x444/0x14b0
[   69.292542][ T1574]  ? __cfi__copy_to_iter+0x10/0x10
[   69.292562][ T1574]  ? check_stack_object+0x82/0x140
[   69.292581][ T1574]  ? __virt_addr_valid+0x2a6/0x380
[   69.292603][ T1574]  ? __check_object_size+0x455/0x620
[   69.292622][ T1574]  __skb_datagram_iter+0x103/0x930
[   69.292643][ T1574]  ? __cfi_simple_copy_to_iter+0x10/0x10
[   69.292665][ T1574]  skb_copy_datagram_iter+0x44/0x160
[   69.292687][ T1574]  netlink_recvmsg+0x2c5/0xdf0
[   69.292712][ T1574]  ? __cfi_netlink_recvmsg+0x10/0x10
[   69.292735][ T1574]  ? bpf_lsm_socket_recvmsg+0xd/0x20
[   69.292759][ T1574]  ? security_socket_recvmsg+0x3a/0xf0
[   69.292780][ T1574]  ? __cfi_netlink_recvmsg+0x10/0x10
[   69.292801][ T1574]  ? __cfi_netlink_recvmsg+0x10/0x10
[   69.292824][ T1574]  sock_recvmsg_nosec+0x1df/0x230
[   69.292844][ T1574]  ____sys_recvmsg+0x3a9/0x460
[   69.292861][ T1574]  ? __sys_recvmsg_sock+0x60/0x60
[   69.292878][ T1574]  ? import_iovec+0x81/0xb0
[   69.292905][ T1574]  ___sys_recvmsg+0x1b6/0x510
[   69.292921][ T1574]  ? __sys_recvmsg+0x280/0x280
[   69.292937][ T1574]  ? __cfi_kstrtouint_from_user+0x10/0x10
[   69.292954][ T1574]  ? selinux_file_permission+0x309/0xb30
[   69.292978][ T1574]  ? __fget_files+0x2c5/0x340
[   69.293000][ T1574]  do_recvmmsg+0x326/0x770
[   69.293017][ T1574]  ? __sys_recvmmsg+0x290/0x290
[   69.293032][ T1574]  ? __cfi_vfs_write+0x10/0x10
[   69.293052][ T1574]  ? fput+0x1a5/0x240
[   69.293074][ T1574]  __x64_sys_recvmmsg+0x191/0x240
[   69.293090][ T1574]  ? __cfi___x64_sys_recvmmsg+0x10/0x10
[   69.293107][ T1574]  ? __kasan_check_read+0x15/0x20
[   69.293125][ T1574]  x64_sys_call+0x292c/0x2ee0
[   69.293145][ T1574]  do_syscall_64+0x58/0xf0
[   69.293165][ T1574]  ? clear_bhb_loop+0x35/0x90
[   69.293187][ T1574]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   69.293209][ T1574] RIP: 0033:0x7f0f2458e929
[   69.293227][ T1574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.293240][ T1574] RSP: 002b:00007f0f253ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   69.293258][ T1574] RAX: ffffffffffffffda RBX: 00007f0f247b5fa0 RCX: 00007f0f2458e929
[   69.293270][ T1574] RDX: 0000000000000004 RSI: 0000200000009800 RDI: 0000000000000003
[   69.293282][ T1574] RBP: 00007f0f253ad090 R08: 0000000000000000 R09: 0000000000000000
[   69.293293][ T1574] R10: 0000000000002100 R11: 0000000000000246 R12: 0000000000000001
[   69.293304][ T1574] R13: 0000000000000000 R14: 00007f0f247b5fa0 R15: 00007ffcc2907348
[   69.293318][ T1574]  </TASK>
[   69.869130][   T36] kauditd_printk_skb: 36555 callbacks suppressed
[   69.869146][   T36] audit: type=1400 audit(1750455650.738:59894): avc:  denied  { setattr } for  pid=291 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[   69.877088][  T291] audit: audit_backlog=65 > audit_backlog_limit=64
[   69.911463][  T291] audit: audit_lost=3132 audit_rate_limit=0 audit_backlog_limit=64
[   69.912977][  T290] audit: audit_backlog=65 > audit_backlog_limit=64
[   69.919490][  T291] audit: backlog limit exceeded
[   69.931117][  T291] audit: audit_backlog=65 > audit_backlog_limit=64
[   69.937675][  T291] audit: audit_lost=3133 audit_rate_limit=0 audit_backlog_limit=64
[   69.945631][  T291] audit: backlog limit exceeded
[   69.950609][  T291] audit: audit_backlog=65 > audit_backlog_limit=64
[   69.954636][   T36] audit: type=1400 audit(1750455650.747:59895): avc:  denied  { setattr } for  pid=291 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[   70.267248][ T1597] FAULT_INJECTION: forcing a failure.
[   70.267248][ T1597] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   70.311139][ T1597] CPU: 0 UID: 0 PID: 1597 Comm: syz.3.501 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   70.311168][ T1597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   70.311179][ T1597] Call Trace:
[   70.311185][ T1597]  <TASK>
[   70.311192][ T1597]  __dump_stack+0x21/0x30
[   70.311217][ T1597]  dump_stack_lvl+0x10c/0x190
[   70.311236][ T1597]  ? __cfi_dump_stack_lvl+0x10/0x10
[   70.311255][ T1597]  ? __nla_put+0x9e/0xe0
[   70.311278][ T1597]  dump_stack+0x19/0x20
[   70.311295][ T1597]  should_fail_ex+0x3d9/0x530
[   70.311313][ T1597]  should_fail_alloc_page+0xeb/0x110
[   70.311336][ T1597]  __alloc_pages_noprof+0x19d/0x6c0
[   70.311352][ T1597]  ? rtnl_fill_ifinfo+0x11ca/0x1c20
[   70.311368][ T1597]  ? __cfi___alloc_pages_noprof+0x10/0x10
[   70.311388][ T1597]  __folio_alloc_noprof+0x14/0x80
[   70.311404][ T1597]  folio_prealloc+0x46/0x240
[   70.311426][ T1597]  do_pte_missing+0x1603/0x3e50
[   70.311448][ T1597]  ? xas_find+0xe0/0x840
[   70.311471][ T1597]  ? xa_find+0x11b/0x170
[   70.311486][ T1597]  ? pte_marker_clear+0x1b0/0x1b0
[   70.311508][ T1597]  ? __pte_offset_map+0x1b0/0x230
[   70.311526][ T1597]  ? pte_offset_map_rw_nolock+0xba/0x110
[   70.311542][ T1597]  handle_mm_fault+0x1166/0x1b90
[   70.311565][ T1597]  ? __cfi_handle_mm_fault+0x10/0x10
[   70.311585][ T1597]  ? find_vma+0xcd/0x110
[   70.311602][ T1597]  ? lock_mm_and_find_vma+0xb8/0x3a0
[   70.311620][ T1597]  do_user_addr_fault+0x4ca/0x1200
[   70.311640][ T1597]  exc_page_fault+0x59/0xc0
[   70.311656][ T1597]  asm_exc_page_fault+0x2b/0x30
[   70.311675][ T1597] RIP: 0010:rep_movs_alternative+0x4a/0xa0
[   70.311693][ T1597] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[   70.311707][ T1597] RSP: 0018:ffffc9000f9d74d8 EFLAGS: 00050206
[   70.311722][ T1597] RAX: ffffffff82a24001 RBX: ffff8881102d6000 RCX: 0000000000000c28
[   70.311733][ T1597] RDX: 0000000000000000 RSI: ffff8881102d6000 RDI: 0000200000002180
[   70.311745][ T1597] RBP: ffffc9000f9d7630 R08: ffff8881102d6c27 R09: 1ffff1102205ad84
[   70.311757][ T1597] R10: dffffc0000000000 R11: ffffed102205ad85 R12: 0000200000002180
[   70.311768][ T1597] R13: 0000000000000000 R14: 0000000000000c28 R15: ffffc9000f9d7d48
[   70.311792][ T1597]  ? _copy_to_iter+0x331/0x14b0
[   70.311814][ T1597]  ? _copy_to_iter+0x444/0x14b0
[   70.311834][ T1597]  ? __cfi__copy_to_iter+0x10/0x10
[   70.311855][ T1597]  ? check_stack_object+0x82/0x140
[   70.311873][ T1597]  ? __virt_addr_valid+0x2a6/0x380
[   70.311895][ T1597]  ? __check_object_size+0x455/0x620
[   70.311915][ T1597]  __skb_datagram_iter+0x103/0x930
[   70.311937][ T1597]  ? __cfi_simple_copy_to_iter+0x10/0x10
[   70.311960][ T1597]  skb_copy_datagram_iter+0x44/0x160
[   70.311982][ T1597]  netlink_recvmsg+0x2c5/0xdf0
[   70.312006][ T1597]  ? __cfi_netlink_recvmsg+0x10/0x10
[   70.312030][ T1597]  ? bpf_lsm_socket_recvmsg+0xd/0x20
[   70.312054][ T1597]  ? security_socket_recvmsg+0x3a/0xf0
[   70.312074][ T1597]  ? __cfi_netlink_recvmsg+0x10/0x10
[   70.312095][ T1597]  ? __cfi_netlink_recvmsg+0x10/0x10
[   70.312116][ T1597]  sock_recvmsg_nosec+0x1df/0x230
[   70.312136][ T1597]  ____sys_recvmsg+0x3a9/0x460
[   70.312153][ T1597]  ? __sys_recvmsg_sock+0x60/0x60
[   70.312171][ T1597]  ? import_iovec+0x81/0xb0
[   70.312192][ T1597]  ___sys_recvmsg+0x1b6/0x510
[   70.312208][ T1597]  ? __sys_recvmsg+0x280/0x280
[   70.312223][ T1597]  ? __cfi_kstrtouint_from_user+0x10/0x10
[   70.312241][ T1597]  ? selinux_file_permission+0x309/0xb30
[   70.312264][ T1597]  ? __fget_files+0x2c5/0x340
[   70.312287][ T1597]  do_recvmmsg+0x326/0x770
[   70.312304][ T1597]  ? __sys_recvmmsg+0x290/0x290
[   70.312319][ T1597]  ? __cfi_vfs_write+0x10/0x10
[   70.312339][ T1597]  ? fput+0x1a5/0x240
[   70.312361][ T1597]  __x64_sys_recvmmsg+0x191/0x240
[   70.312377][ T1597]  ? __cfi___x64_sys_recvmmsg+0x10/0x10
[   70.312394][ T1597]  ? __kasan_check_read+0x15/0x20
[   70.312412][ T1597]  x64_sys_call+0x292c/0x2ee0
[   70.312431][ T1597]  do_syscall_64+0x58/0xf0
[   70.312451][ T1597]  ? clear_bhb_loop+0x35/0x90
[   70.312472][ T1597]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   70.312494][ T1597] RIP: 0033:0x7f0f2458e929
[   70.312508][ T1597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.312522][ T1597] RSP: 002b:00007f0f253ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   70.312539][ T1597] RAX: ffffffffffffffda RBX: 00007f0f247b5fa0 RCX: 00007f0f2458e929
[   70.312552][ T1597] RDX: 0000000000000007 RSI: 0000200000009800 RDI: 0000000000000003
[   70.312563][ T1597] RBP: 00007f0f253ad090 R08: 0000000000000000 R09: 0000000000000000
[   70.312574][ T1597] R10: 0000000000002100 R11: 0000000000000246 R12: 0000000000000001
[   70.312585][ T1597] R13: 0000000000000000 R14: 00007f0f247b5fa0 R15: 00007ffcc2907348
[   70.312599][ T1597]  </TASK>
[   70.494769][   T53] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   70.778667][  T603] Bluetooth: hci0: command 0x1003 tx timeout
[   70.891685][ T1613] FAULT_INJECTION: forcing a failure.
[   70.891685][ T1613] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   70.905752][ T1613] CPU: 1 UID: 0 PID: 1613 Comm: syz.3.507 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   70.905779][ T1613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   70.905789][ T1613] Call Trace:
[   70.905794][ T1613]  <TASK>
[   70.905800][ T1613]  __dump_stack+0x21/0x30
[   70.905824][ T1613]  dump_stack_lvl+0x10c/0x190
[   70.905839][ T1613]  ? __cfi_dump_stack_lvl+0x10/0x10
[   70.905856][ T1613]  ? __nla_put+0x9e/0xe0
[   70.905877][ T1613]  dump_stack+0x19/0x20
[   70.905892][ T1613]  should_fail_ex+0x3d9/0x530
[   70.905909][ T1613]  should_fail_alloc_page+0xeb/0x110
[   70.905931][ T1613]  __alloc_pages_noprof+0x19d/0x6c0
[   70.905946][ T1613]  ? rtnl_fill_ifinfo+0x11ca/0x1c20
[   70.905962][ T1613]  ? __cfi___alloc_pages_noprof+0x10/0x10
[   70.905978][ T1613]  __folio_alloc_noprof+0x14/0x80
[   70.905993][ T1613]  folio_prealloc+0x46/0x240
[   70.906019][ T1613]  do_pte_missing+0x1603/0x3e50
[   70.906040][ T1613]  ? xas_find+0xe0/0x840
[   70.906061][ T1613]  ? xa_find+0x11b/0x170
[   70.906074][ T1613]  ? pte_marker_clear+0x1b0/0x1b0
[   70.906092][ T1613]  ? __pte_offset_map+0x1b0/0x230
[   70.906109][ T1613]  ? pte_offset_map_rw_nolock+0xba/0x110
[   70.906127][ T1613]  handle_mm_fault+0x1166/0x1b90
[   70.906149][ T1613]  ? __cfi_handle_mm_fault+0x10/0x10
[   70.906169][ T1613]  ? find_vma+0xcd/0x110
[   70.906189][ T1613]  ? lock_mm_and_find_vma+0xb8/0x3a0
[   70.906210][ T1613]  do_user_addr_fault+0x4ca/0x1200
[   70.906231][ T1613]  exc_page_fault+0x59/0xc0
[   70.906249][ T1613]  asm_exc_page_fault+0x2b/0x30
[   70.906271][ T1613] RIP: 0010:rep_movs_alternative+0x4a/0xa0
[   70.906289][ T1613] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[   70.906303][ T1613] RSP: 0018:ffffc9000fca74d8 EFLAGS: 00050206
[   70.906321][ T1613] RAX: ffffffff82a24001 RBX: ffff88812f1ba000 RCX: 0000000000000c28
[   70.906334][ T1613] RDX: 0000000000000000 RSI: ffff88812f1ba000 RDI: 0000200000002180
[   70.906347][ T1613] RBP: ffffc9000fca7630 R08: ffff88812f1bac27 R09: 1ffff11025e37584
[   70.906360][ T1613] R10: dffffc0000000000 R11: ffffed1025e37585 R12: 0000200000002180
[   70.906372][ T1613] R13: 0000000000000000 R14: 0000000000000c28 R15: ffffc9000fca7d48
[   70.906385][ T1613]  ? _copy_to_iter+0x331/0x14b0
[   70.906407][ T1613]  ? _copy_to_iter+0x444/0x14b0
[   70.906427][ T1613]  ? __cfi__copy_to_iter+0x10/0x10
[   70.906447][ T1613]  ? check_stack_object+0x82/0x140
[   70.906467][ T1613]  ? __virt_addr_valid+0x2a6/0x380
[   70.906489][ T1613]  ? __check_object_size+0x455/0x620
[   70.906507][ T1613]  __skb_datagram_iter+0x103/0x930
[   70.906528][ T1613]  ? __cfi_simple_copy_to_iter+0x10/0x10
[   70.906550][ T1613]  skb_copy_datagram_iter+0x44/0x160
[   70.906572][ T1613]  netlink_recvmsg+0x2c5/0xdf0
[   70.906596][ T1613]  ? __cfi_netlink_recvmsg+0x10/0x10
[   70.906619][ T1613]  ? bpf_lsm_socket_recvmsg+0xd/0x20
[   70.906642][ T1613]  ? security_socket_recvmsg+0x3a/0xf0
[   70.906660][ T1613]  ? __cfi_netlink_recvmsg+0x10/0x10
[   70.906682][ T1613]  ? __cfi_netlink_recvmsg+0x10/0x10
[   70.906704][ T1613]  sock_recvmsg_nosec+0x1df/0x230
[   70.906723][ T1613]  ____sys_recvmsg+0x3a9/0x460
[   70.906781][ T1613]  ? __sys_recvmsg_sock+0x60/0x60
[   70.906798][ T1613]  ? import_iovec+0x81/0xb0
[   70.906820][ T1613]  ___sys_recvmsg+0x1b6/0x510
[   70.906836][ T1613]  ? __sys_recvmsg+0x280/0x280
[   70.906852][ T1613]  ? __cfi_kstrtouint_from_user+0x10/0x10
[   70.906869][ T1613]  ? selinux_file_permission+0x309/0xb30
[   70.906894][ T1613]  ? __fget_files+0x2c5/0x340
[   70.906916][ T1613]  do_recvmmsg+0x326/0x770
[   70.906933][ T1613]  ? __sys_recvmmsg+0x290/0x290
[   70.906949][ T1613]  ? __cfi_vfs_write+0x10/0x10
[   70.906969][ T1613]  ? fput+0x1a5/0x240
[   70.906990][ T1613]  __x64_sys_recvmmsg+0x191/0x240
[   70.907007][ T1613]  ? __cfi___x64_sys_recvmmsg+0x10/0x10
[   70.907023][ T1613]  ? __kasan_check_read+0x15/0x20
[   70.907041][ T1613]  x64_sys_call+0x292c/0x2ee0
[   70.907062][ T1613]  do_syscall_64+0x58/0xf0
[   70.907081][ T1613]  ? clear_bhb_loop+0x35/0x90
[   70.907103][ T1613]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   70.907125][ T1613] RIP: 0033:0x7f0f2458e929
[   70.907140][ T1613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.907154][ T1613] RSP: 002b:00007f0f253ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   70.907172][ T1613] RAX: ffffffffffffffda RBX: 00007f0f247b5fa0 RCX: 00007f0f2458e929
[   70.907185][ T1613] RDX: 0000000000000004 RSI: 0000200000009800 RDI: 0000000000000003
[   70.907196][ T1613] RBP: 00007f0f253ad090 R08: 0000000000000000 R09: 0000000000000000
[   70.907207][ T1613] R10: 0000000000002100 R11: 0000000000000246 R12: 0000000000000001
[   70.907218][ T1613] R13: 0000000000000000 R14: 00007f0f247b5fa0 R15: 00007ffcc2907348
[   70.907232][ T1613]  </TASK>
[   71.412064][ T1615] tap0: tun_chr_ioctl cmd 1074025677
[   71.417520][ T1615] tap0: linktype set to 776
[   75.225366][   T36] kauditd_printk_skb: 47124 callbacks suppressed
[   75.225384][   T36] audit: type=1400 audit(1750455655.761:88317): avc:  denied  { setattr } for  pid=291 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[   75.263518][  T291] audit: audit_backlog=65 > audit_backlog_limit=64
[   75.270239][  T291] audit: audit_lost=9369 audit_rate_limit=0 audit_backlog_limit=64
[   75.275894][  T288] audit: audit_backlog=65 > audit_backlog_limit=64
[   75.278315][  T291] audit: backlog limit exceeded
[   75.290821][   T36] audit: type=1400 audit(1750455655.789:88318): avc:  denied  { setattr } for  pid=291 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[   75.297232][  T288] audit: audit_lost=9370 audit_rate_limit=0 audit_backlog_limit=64
[   75.314357][  T291] audit: audit_backlog=65 > audit_backlog_limit=64
[   75.328731][   T36] audit: type=1400 audit(1750455655.789:88319): avc:  denied  { setattr } for  pid=291 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=0
[   75.347084][  T288] audit: backlog limit exceeded
[   75.961118][ T1755] FAULT_INJECTION: forcing a failure.
[   75.961118][ T1755] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.979820][ T1755] CPU: 0 UID: 0 PID: 1755 Comm: syz.1.565 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   75.979850][ T1755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   75.979861][ T1755] Call Trace:
[   75.979867][ T1755]  <TASK>
[   75.979874][ T1755]  __dump_stack+0x21/0x30
[   75.979899][ T1755]  dump_stack_lvl+0x10c/0x190
[   75.979917][ T1755]  ? __cfi_dump_stack_lvl+0x10/0x10
[   75.979936][ T1755]  ? vsnprintf+0x7b4/0x1aa0
[   75.979956][ T1755]  ? __asan_memcpy+0x5a/0x80
[   75.979974][ T1755]  dump_stack+0x19/0x20
[   75.980001][ T1755]  should_fail_ex+0x3d9/0x530
[   75.980020][ T1755]  should_fail+0xf/0x20
[   75.980036][ T1755]  should_fail_usercopy+0x1e/0x30
[   75.980053][ T1755]  _copy_from_user+0x22/0xb0
[   75.980074][ T1755]  kstrtouint_from_user+0xc2/0x150
[   75.980092][ T1755]  ? __cfi_kstrtouint_from_user+0x10/0x10
[   75.980110][ T1755]  ? selinux_file_permission+0x309/0xb30
[   75.980133][ T1755]  ? __cfi_selinux_file_permission+0x10/0x10
[   75.980155][ T1755]  proc_fail_nth_write+0x89/0x210
[   75.980172][ T1755]  ? __cfi_proc_fail_nth_write+0x10/0x10
[   75.980188][ T1755]  ? bpf_lsm_file_permission+0xd/0x20
[   75.980206][ T1755]  ? __cfi_proc_fail_nth_write+0x10/0x10
[   75.980222][ T1755]  vfs_write+0x3c0/0xe80
[   75.980240][ T1755]  ? __cfi_vfs_write+0x10/0x10
[   75.980257][ T1755]  ? __kasan_check_write+0x18/0x20
[   75.980275][ T1755]  ? mutex_lock+0x92/0x1c0
[   75.980290][ T1755]  ? __cfi_mutex_lock+0x10/0x10
[   75.980306][ T1755]  ? __fget_files+0x2c5/0x340
[   75.980328][ T1755]  ksys_write+0x141/0x250
[   75.980347][ T1755]  ? __cfi_ksys_write+0x10/0x10
[   75.980365][ T1755]  ? __kasan_check_read+0x15/0x20
[   75.980383][ T1755]  __x64_sys_write+0x7f/0x90
[   75.980402][ T1755]  x64_sys_call+0x271c/0x2ee0
[   75.980421][ T1755]  do_syscall_64+0x58/0xf0
[   75.980441][ T1755]  ? clear_bhb_loop+0x35/0x90
[   75.980464][ T1755]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   75.980486][ T1755] RIP: 0033:0x7f964978d3df
[   75.980500][ T1755] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   75.980514][ T1755] RSP: 002b:00007f964a699030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   75.980534][ T1755] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f964978d3df
[   75.980546][ T1755] RDX: 0000000000000001 RSI: 00007f964a6990a0 RDI: 0000000000000003
[   75.980558][ T1755] RBP: 00007f964a699090 R08: 0000000000000000 R09: 0000000000000000
[   75.980569][ T1755] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   75.980579][ T1755] R13: 0000000000000000 R14: 00007f96499b5fa0 R15: 00007ffccf1a3ea8
[   75.980593][ T1755]  </TASK>
[   76.498644][   T13] bridge_slave_1: left allmulticast mode
[   76.504483][   T13] bridge_slave_1: left promiscuous mode
[   76.510142][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.517676][   T13] bridge_slave_0: left allmulticast mode
[   76.523452][   T13] bridge_slave_0: left promiscuous mode
[   76.529151][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.616747][   T13] veth1_macvtap: left promiscuous mode
[   76.622369][   T13] veth0_vlan: left promiscuous mode
[   78.443023][   T53] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   81.094275][   T36] kauditd_printk_skb: 8171 callbacks suppressed
[   81.094291][   T36] audit: type=1400 audit(1750455661.242:94059): avc:  denied  { read write } for  pid=289 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   81.623314][   T36] audit: type=1400 audit(1750455661.738:94060): avc:  denied  { execmem } for  pid=1812 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0
[   81.647024][   T36] audit: type=1400 audit(1750455661.738:94061): avc:  denied  { read } for  pid=1814 comm="syz.1.588" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[   81.669682][   T36] audit: type=1400 audit(1750455661.738:94062): avc:  denied  { read write } for  pid=1814 comm="syz.1.588" name="loop4" dev="devtmpfs" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   81.693648][   T36] audit: type=1400 audit(1750455661.738:94063): avc:  denied  { read write } for  pid=289 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   81.717853][   T36] audit: type=1400 audit(1750455661.766:94064): avc:  denied  { read write } for  pid=289 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   81.742006][   T36] audit: type=1400 audit(1750455661.766:94065): avc:  denied  { read } for  pid=1813 comm="syz.0.587" name="rnullb0" dev="devtmpfs" ino=31 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=0
[   81.765316][   T36] audit: type=1400 audit(1750455661.766:94066): avc:  denied  { create } for  pid=1815 comm="syz.3.589" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=0
[   81.787016][   T36] audit: type=1400 audit(1750455661.766:94067): avc:  denied  { read write } for  pid=288 comm="syz-executor" name="loop0" dev="devtmpfs" ino=49 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   81.811230][   T36] audit: type=1400 audit(1750455661.766:94068): avc:  denied  { read write } for  pid=289 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   87.041960][   T36] kauditd_printk_skb: 36 callbacks suppressed
[   87.041990][   T36] audit: type=1400 audit(1750455666.808:94105): avc:  denied  { execmem } for  pid=1846 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0
[   87.066219][ T1856] FAULT_INJECTION: forcing a failure.
[   87.066219][ T1856] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   87.078170][   T36] audit: type=1400 audit(1750455666.808:94106): avc:  denied  { create } for  pid=1849 comm="syz.1.602" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=0
[   87.091436][ T1856] CPU: 0 UID: 0 PID: 1856 Comm: syz.1.605 Not tainted 6.12.23-syzkaller-g6c1c18fcb8b7 #0 ba78288b1e32eb9f88d3f8d8da6b79a037cd8362
[   87.091472][ T1856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   87.091483][ T1856] Call Trace:
[   87.091490][ T1856]  <TASK>
[   87.091497][ T1856]  __dump_stack+0x21/0x30
[   87.091532][ T1856]  dump_stack_lvl+0x10c/0x190
[   87.091551][ T1856]  ? __cfi_dump_stack_lvl+0x10/0x10
[   87.091576][ T1856]  ? __nla_put+0x9e/0xe0
[   87.091602][ T1856]  dump_stack+0x19/0x20
[   87.091618][ T1856]  should_fail_ex+0x3d9/0x530
[   87.091636][ T1856]  should_fail_alloc_page+0xeb/0x110
[   87.091671][ T1856]  __alloc_pages_noprof+0x19d/0x6c0
[   87.091688][ T1856]  ? rtnl_fill_ifinfo+0x11ca/0x1c20
[   87.091706][ T1856]  ? __cfi___alloc_pages_noprof+0x10/0x10
[   87.091725][ T1856]  __folio_alloc_noprof+0x14/0x80
[   87.091741][ T1856]  folio_prealloc+0x46/0x240
[   87.091764][ T1856]  do_pte_missing+0x1603/0x3e50
[   87.091785][ T1856]  ? xas_find+0xe0/0x840
[   87.091809][ T1856]  ? xa_find+0x11b/0x170
[   87.091823][ T1856]  ? pte_marker_clear+0x1b0/0x1b0
[   87.091844][ T1856]  ? __pte_offset_map+0x1b0/0x230
[   87.091861][ T1856]  ? pte_offset_map_rw_nolock+0xba/0x110
[   87.091878][ T1856]  handle_mm_fault+0x1166/0x1b90
[   87.091937][ T1856]  ? __cfi_handle_mm_fault+0x10/0x10
[   87.091957][ T1856]  ? find_vma+0xcd/0x110
[   87.091975][ T1856]  ? lock_mm_and_find_vma+0xb8/0x3a0
[   87.091995][ T1856]  do_user_addr_fault+0x4ca/0x1200
[   87.092016][ T1856]  exc_page_fault+0x59/0xc0
[   87.092034][ T1856]  asm_exc_page_fault+0x2b/0x30
[   87.092068][ T1856] RIP: 0010:rep_movs_alternative+0x4a/0xa0
[   87.092087][ T1856] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[   87.092101][ T1856] RSP: 0018:ffffc9000e7174d8 EFLAGS: 00050206
[   87.092119][ T1856] RAX: ffffffff82a24001 RBX: ffff888130900000 RCX: 0000000000000c28
[   87.092132][ T1856] RDX: 0000000000000000 RSI: ffff888130900000 RDI: 0000200000002180
[   87.092144][ T1856] RBP: ffffc9000e717630 R08: ffff888130900c27 R09: 1ffff11026120184
[   87.092157][ T1856] R10: dffffc0000000000 R11: ffffed1026120185 R12: 0000200000002180
[   87.092169][ T1856] R13: 0000000000000000 R14: 0000000000000c28 R15: ffffc9000e717d48
[   87.092181][ T1856]  ? _copy_to_iter+0x331/0x14b0
[   87.092202][ T1856]  ? _copy_to_iter+0x444/0x14b0
[   87.092222][ T1856]  ? __cfi__copy_to_iter+0x10/0x10
[   87.092240][ T1856]  ? check_stack_object+0x82/0x140
[   87.092260][ T1856]  ? __virt_addr_valid+0x2a6/0x380
[   87.092281][ T1856]  ? __check_object_size+0x455/0x620
[   87.092300][ T1856]  __skb_datagram_iter+0x103/0x930
[   87.092323][ T1856]  ? __cfi_simple_copy_to_iter+0x10/0x10
[   87.092345][ T1856]  skb_copy_datagram_iter+0x44/0x160
[   87.092365][ T1856]  netlink_recvmsg+0x2c5/0xdf0
[   87.092389][ T1856]  ? __cfi_netlink_recvmsg+0x10/0x10
[   87.092411][ T1856]  ? bpf_lsm_socket_recvmsg+0xd/0x20
[   87.092434][ T1856]  ? security_socket_recvmsg+0x3a/0xf0
[   87.092453][ T1856]  ? __cfi_netlink_recvmsg+0x10/0x10
[   87.092473][ T1856]  ? __cfi_netlink_recvmsg+0x10/0x10
[   87.092494][ T1856]  sock_recvmsg_nosec+0x1df/0x230
[   87.092513][ T1856]  ____sys_recvmsg+0x3a9/0x460
[   87.092528][ T1856]  ? __sys_recvmsg_sock+0x60/0x60
[   87.092545][ T1856]  ? import_iovec+0x81/0xb0
[   87.092565][ T1856]  ___sys_recvmsg+0x1b6/0x510
[   87.092579][ T1856]  ? __sys_recvmsg+0x280/0x280
[   87.092595][ T1856]  ? __cfi_kstrtouint_from_user+0x10/0x10
[   87.092611][ T1856]  ? selinux_file_permission+0x309/0xb30
[   87.092633][ T1856]  ? __fget_files+0x2c5/0x340
[   87.092697][ T1856]  do_recvmmsg+0x326/0x770
[   87.092712][ T1856]  ? __sys_recvmmsg+0x290/0x290
[   87.092727][ T1856]  ? __cfi_vfs_write+0x10/0x10
[   87.092746][ T1856]  ? fput+0x1a5/0x240
[   87.092767][ T1856]  __x64_sys_recvmmsg+0x191/0x240
[   87.092782][ T1856]  ? __cfi___x64_sys_recvmmsg+0x10/0x10
[   87.092803][ T1856]  ? __kasan_check_read+0x15/0x20
[   87.092820][ T1856]  x64_sys_call+0x292c/0x2ee0
[   87.092840][ T1856]  do_syscall_64+0x58/0xf0
[   87.092858][ T1856]  ? clear_bhb_loop+0x35/0x90
[   87.092879][ T1856]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   87.092900][ T1856] RIP: 0033:0x7f964978e929
[   87.092914][ T1856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.092926][ T1856] RSP: 002b:00007f964a699038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   87.092943][ T1856] RAX: ffffffffffffffda RBX: 00007f96499b5fa0 RCX: 00007f964978e929
[   87.092955][ T1856] RDX: 0000000000000007 RSI: 0000200000009800 RDI: 0000000000000003
[   87.092966][ T1856] RBP: 00007f964a699090 R08: 0000000000000000 R09: 0000000000000000
[   87.093016][ T1856] R10: 0000000000002100 R11: 0000000000000246 R12: 0000000000000001
[   87.093029][ T1856] R13: 0000000000000000 R14: 00007f96499b5fa0 R15: 00007ffccf1a3ea8
[   87.093042][ T1856]  </TASK>
[   87.577709][   T36] audit: type=1400 audit(1750455666.808:94107): avc:  denied  { create } for  pid=1849 comm="syz.1.602" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=0
[   87.597506][   T36] audit: type=1400 audit(1750455666.808:94108): avc:  denied  { read } for  pid=1849 comm="syz.1.602" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[   87.620383][   T36] audit: type=1400 audit(1750455666.808:94109): avc:  denied  { read write } for  pid=288 comm="syz-executor" name="loop0" dev="devtmpfs" ino=49 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   87.644659][   T36] audit: type=1400 audit(1750455666.808:94110): avc:  denied  { read write } for  pid=289 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   87.668812][   T36] audit: type=1400 audit(1750455666.808:94111): avc:  denied  { read } for  pid=1853 comm="syz.0.604" dev="nsfs" ino=4026532314 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=0
[   87.690397][   T36] audit: type=1400 audit(1750455666.836:94112): avc:  denied  { read } for  pid=1847 comm="syz.3.603" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[   87.713141][   T36] audit: type=1400 audit(1750455666.836:94113): avc:  denied  { read } for  pid=1847 comm="syz.3.603" dev="nsfs" ino=4026532306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=0
[   87.734287][   T36] audit: type=1400 audit(1750455666.836:94114): avc:  denied  { create } for  pid=1847 comm="syz.3.603" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=0
[   94.175229][   T36] kauditd_printk_skb: 37 callbacks suppressed
[   94.175247][   T36] audit: type=1400 audit(1750455673.477:94152): avc:  denied  { execmem } for  pid=1879 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0
[   94.200929][   T36] audit: type=1400 audit(1750455673.477:94153): avc:  denied  { read } for  pid=1882 comm="syz.3.617" name="rtc0" dev="devtmpfs" ino=195 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=0
[   94.224233][   T36] audit: type=1400 audit(1750455673.477:94154): avc:  denied  { create } for  pid=1882 comm="syz.3.617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=0
[   94.244278][   T36] audit: type=1400 audit(1750455673.477:94155): avc:  denied  { create } for  pid=1882 comm="syz.3.617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=0
[   94.264019][   T36] audit: type=1400 audit(1750455673.487:94156): avc:  denied  { read write } for  pid=290 comm="syz-executor" name="loop3" dev="devtmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   94.288640][   T36] audit: type=1400 audit(1750455673.487:94157): avc:  denied  { read } for  pid=1880 comm="syz.0.615" dev="nsfs" ino=4026532314 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=0
[   94.309901][   T36] audit: type=1400 audit(1750455673.496:94158): avc:  denied  { read write } for  pid=288 comm="syz-executor" name="loop0" dev="devtmpfs" ino=49 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   94.334112][   T36] audit: type=1400 audit(1750455673.496:94159): avc:  denied  { mounton } for  pid=1881 comm="syz.1.616" path="/198/file0" dev="tmpfs" ino=1107 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=0
[   94.356754][   T36] audit: type=1400 audit(1750455673.505:94160): avc:  denied  { read write } for  pid=289 comm="syz-executor" name="loop1" dev="devtmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   96.214493][   T36] audit: type=1400 audit(1750455675.385:94161): avc:  denied  { execmem } for  pid=1889 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=0
[   98.703975][   T13] bridge_slave_1: left allmulticast mode
[   98.709629][   T13] bridge_slave_1: left promiscuous mode
[   98.715291][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.722710][   T13] bridge_slave_0: left allmulticast mode
[   98.728465][   T13] bridge_slave_0: left promiscuous mode
[   98.734096][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.741590][   T13] bridge_slave_1: left allmulticast mode
[   98.747350][   T13] bridge_slave_1: left promiscuous mode
[   98.753099][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.760600][   T13] bridge_slave_0: left allmulticast mode
[   98.766304][   T13] bridge_slave_0: left promiscuous mode
[   98.771882][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.779509][   T13] bridge_slave_1: left allmulticast mode
[   98.785235][   T13] bridge_slave_1: left promiscuous mode
[   98.790996][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.798620][   T13] bridge_slave_0: left allmulticast mode
[   98.804595][   T13] bridge_slave_0: left promiscuous mode
[   98.810439][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.080555][   T13] veth1_macvtap: left promiscuous mode
[   99.086176][   T13] veth0_vlan: left promiscuous mode
[   99.091994][   T13] veth1_macvtap: left promiscuous mode
[   99.097806][   T13] veth0_vlan: left promiscuous mode
[   99.103288][   T13] veth1_macvtap: left promiscuous mode
[   99.108907][   T13] veth0_vlan: left promiscuous mode
[  105.158875][   T31] sched: DL replenish lagged too much