last executing test programs:

6.311136285s ago: executing program 3 (id=10736):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket(0x22, 0x2, 0x3)
getsockopt$packet_buf(r1, 0x107, 0x1, &(0x7f0000000240)=""/1, &(0x7f0000002180)=0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsopen(&(0x7f00000000c0)='ramfs\x00', 0x0)
r4 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x4, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002e40)=ANY=[@ANYBLOB="dc010000160001000000000000000000ff020000000000000000000000000001fc00000000000000000000000000000000000000000000000000800000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c000000ff0200000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00004000fdffffff00000000000000000000000000000000ff7f0000e4002000ac1414bb000000000000000000000000ac1e000100", @ANYRES32=0x0, @ANYRES32=0x0], 0x1dc}}, 0x0)
r5 = syz_usb_connect(0x0, 0x24, &(0x7f0000004200)=ANY=[], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = syz_open_dev$evdev(0x0, 0x3, 0x100)
syz_usb_disconnect(r6)
syz_usb_connect(0x6, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="2a010002ba56c5ff110712326f5c0102030109021200015f64e2020904c00800b85d7809562178c925a964e13f345880897b4706d3210fa6e7fc9c881083df49def884911a2f294de74147e20f0a90550c254b4d6d42ce0160e54a967f9d55e54f8954bf18c98ee78a418b6749e826cb008019"], 0x0)
setreuid(0x0, 0xffffffffffffffff)
syz_usb_control_io$hid(r5, 0x0, &(0x7f0000000440)={0x2c, &(0x7f0000000240)={0x20, 0x18, 0x2, "81a9"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r5, 0x0, &(0x7f0000000740)={0x2c, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0})

5.917543794s ago: executing program 4 (id=10739):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000540)={0x0, 0x24, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r1], 0x44}}, 0x0)

5.789042937s ago: executing program 2 (id=10740):
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x24000400)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000580)={0x4, 0x3}, 0x4)
r1 = socket$kcm(0x10, 0x3, 0x10)
unshare(0x22020600)
r2 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
r4 = openat$cgroup_pressure(r3, &(0x7f0000000000)='memory.pressure\x00', 0x2, 0x0)
preadv(r4, &(0x7f00000000c0)=[{&(0x7f00000007c0)=""/4096, 0x1000}], 0x1, 0x0, 0x9)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$tipc(0x1e, 0x2, 0x0)
connect$inet6(r5, &(0x7f0000000300)={0xa, 0x0, 0x0, @private1}, 0x1c)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r6, 0x84, 0xc, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, &(0x7f0000000240)={r7, 0x1}, 0x8)
socket$packet(0x11, 0x2, 0x300)
clock_adjtime(0x0, &(0x7f0000000000)={0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b9ac9ff})
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803001d000b20d25a80648c2594f90124fc60100c030002180000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x3500000000000000)

5.624377718s ago: executing program 4 (id=10742):
syz_usb_connect(0x0, 0x3f, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000d0918108ac051582588f0000000109022d"], 0x0) (async)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000d0918108ac051582588f0000000109022d"], 0x0)
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0285629, &(0x7f0000000080)={0x3, @win={{0x0, 0x0, 0x0, 0x10000}, 0x0, 0x0, 0x0, 0x0, 0x0}})

5.499173795s ago: executing program 1 (id=10743):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000240)={0x1000000, 0xb, 0x4, 0x0, 0x9})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = getpgid(0x0)
kcmp(r2, r2, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
r3 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000140), 0x286, 0x0)
r4 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000100)={0x1b, "5660359c3245d1c42317afad7d48ed51000000000000000100", <r5=>0xffffffffffffffff})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f0000000000)={0xff, "340b7832c1efd131b8e6498c25f54a2700", <r6=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r5, 0xc0303e03, &(0x7f00000000c0)={"3c2413b9d44aec57f2e2ad238a7b448ed886910284ed923c31d4b8affbf514fd", r6, <r7=>0xffffffffffffffff})
poll(&(0x7f0000000500)=[{r7, 0x410}], 0x1, 0x9)
ioctl$SYNC_IOC_FILE_INFO(r7, 0x40103e05, &(0x7f00000001c0)={""/32, 0x0, 0x0, 0x0, 0x0, 0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'lo\x00'})

4.99045656s ago: executing program 1 (id=10745):
syz_open_procfs$pagemap(0x0, &(0x7f0000000140))
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cpuacct.usage_user\x00', 0x26e1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
socket(0x2, 0x80805, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
syz_usb_connect$uac1(0x3, 0xdc, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c2402", @ANYRES8=r1, @ANYRES16=r0], 0x0)

4.761510809s ago: executing program 2 (id=10746):
socket$igmp6(0xa, 0x3, 0x2)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)=0x5)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x0, 0x0}}, 0xfc36)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
ioctl$SOUND_MIXER_READ_STEREODEVS(0xffffffffffffffff, 0x80044dfb, &(0x7f0000000100))
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x80002, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug', 0x0, 0x11b)
fcntl$notify(r2, 0x402, 0x8)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r3 = dup(r1)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000400)=[@mss={0x2, 0x4}, @sack_perm, @sack_perm, @mss={0x2, 0x1}, @timestamp, @timestamp, @mss={0x2, 0x4}, @timestamp], 0x8)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0x9)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
connect$vsock_stream(r4, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r4, &(0x7f0000000040)={0x90000015})

4.471414117s ago: executing program 0 (id=10747):
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000))
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f0000000200)='./file1/file4/file5\x00', 0x81c0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file4/file6\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file1/file4/file7\x00', 0x1c0)
r0 = landlock_create_ruleset(&(0x7f00000002c0)={0x2001}, 0x18, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000340)={0x2000, r1}, 0x0)
landlock_restrict_self(r0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1/file4/file6\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file1/file4/file7/file6\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000600)='./file1/file4/file5\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file1/file4/file7/file6\x00', 0x2)

4.299077865s ago: executing program 0 (id=10748):
r0 = socket$packet(0x11, 0x1, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000580)={0x4, 0x3}, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001980)={0x1, 0x2000000000000243, &(0x7f00000013c0)=ANY=[@ANYBLOB="180000000000000000000000000000fd95"], &(0x7f0000001400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000040)={r1, 0xffffffffffffffff, 0x2e, 0x0, @void}, 0x10)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d00000000000109022400010000000009040000010300000009210000000122080009058103"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0)
r3 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGFLAG(r3, 0x8004480e, &(0x7f0000000980))
r4 = syz_usb_connect(0x2, 0x24, &(0x7f0000000700)={{0x12, 0x1, 0x0, 0x69, 0xf7, 0x4a, 0x20, 0x10b8, 0x1bb4, 0x3465, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x5d, 0x0, 0x0, 0x1c, 0x53, 0xc2}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r4, 0x0, &(0x7f0000000200)={0x1c, &(0x7f0000000140)={0x20, 0x17, 0x1, '\b'}, 0x0, 0x0})
syz_usb_control_io$uac1(r4, &(0x7f0000000100)={0x14, &(0x7f0000000180)={0x0, 0xb, 0xd7, {0xd7, 0x3, "8be80694a179a96ba2c8e7d70e2802b86318c39447bdf5a6071eeed2e94275271ae92e06866df0a3f98d41929edbcdac97815ea3b70999d42d632c2c2515348441fa0374fb8a49fac7f4f46475ed183ed7e4ae4faa40ba2173d9119f40747347121e9d77ccc41840f0077c842677cc6a8a5c0f9d6c7435216e1fee04dd1f07202618339918a66453608e9bc9cc57b4c0216089f5a0fdd7427cc56b1f4417564a392420e789328473bc1742971c32ec73aa0455d200402b8bffe9944995a00fd038af82d74cf73e1b874ecd3b8396ddbef42a782bbb"}}, &(0x7f00000000c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x2a69}}}, &(0x7f00000005c0)={0x44, &(0x7f0000000280)={0x40, 0x30, 0xa6, "a73be70d79ddd387f6b58bf8fd9811b43dab7c5f7327e24640f5014cee5b8daaea2c8268d5a07a786cb533f1f4dda84912ce6b95900938eaa1cea0f638c2190d3e6c0d6a985c69420e4fac7abba2cbde97811e9459a0828b2e53f2092153d3e44e97818f81a51464c8b10a6c10eef47b8fd9e3b0b019dac63d23a49c8b14f86b082a015775eeaaacd7dd7c657a7ec810a5bb7fa17952a225832b502eeee9ffbb8eed2c05de7c"}, &(0x7f0000000340)={0x0, 0xa, 0x1, 0xc}, &(0x7f0000000380)={0x0, 0x8, 0x1, 0x8}, &(0x7f00000003c0)={0x20, 0x81, 0x2, "51d6"}, &(0x7f0000000400)={0x20, 0x82, 0x3, "7d8fe9"}, &(0x7f0000000440)={0x20, 0x83, 0x2, "4b15"}, &(0x7f00000004c0)={0x20, 0x84, 0x3, "8616a5"}, &(0x7f0000000540)={0x20, 0x85, 0x3, "78b4bd"}})
r5 = socket$kcm(0x10, 0x4, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803001d000b20d25a80648c2594f90124fc60100c030002180000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x3500000000000000)

3.702696546s ago: executing program 2 (id=10749):
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc}, 0x10)
r1 = socket(0x1e, 0x4, 0x0)
recvmmsg(r0, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000480)=""/160, 0xa0}], 0x1}, 0x2174eda0}], 0x1, 0x1, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r2 = socket(0x1e, 0x80004, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x82, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)

3.389643458s ago: executing program 1 (id=10750):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='oom_score_adj\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x16}]})
socket$rds(0x15, 0x5, 0x0)
read$FUSE(r1, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_LABELS={0x4}]}, 0x68}}, 0x0)
r2 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2)
ioctl$VIDIOC_S_STD(r2, 0x40085618, &(0x7f0000000000))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'gretap0\x00', 0x4160})

3.167947131s ago: executing program 3 (id=10751):
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0xfffffffd, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0xe0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x11}}, 0xfffffffc}, 0x1c)

3.085724023s ago: executing program 3 (id=10752):
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$tipc(0x1e, 0x2, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
syz_open_dev$amidi(&(0x7f0000000140), 0x2, 0x180)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x3f, 0x0, 0x9, 0xfffffffffffffffd, 0x6}, 0x0, &(0x7f00000002c0)={0x3fc, 0x100000000000, 0x0, 0x7ff, 0x7, 0x0, 0x7fffffff}, 0x0, 0x0)

3.084385262s ago: executing program 3 (id=10753):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x81, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = dup(0xffffffffffffffff)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000480)={0x1, [<r8=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r6, 0x84, 0x22, &(0x7f0000000000)={0x9a72, 0x208, 0x8, 0x3, r8}, &(0x7f0000000040)=0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f0000000740)={0x5, 0x6, 0x8200, 0x246a, 0x4, 0x2, 0x7, 0x0, r8}, &(0x7f0000000780)=0x20)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, 0x0}], 0x1, 0x4e, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="0f080fae04a200400f01c426660f3a15e6160fc76bdbf08666350f2170260fed9c000066b9230b00000f32", 0x2b}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$SIOCGSTAMP(r3, 0x8906, &(0x7f00000006c0))
r9 = dup(r0)
write$6lowpan_enable(r9, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='/proc/1/\x00\x82q\xee\xe5\xa0\xbd\xc2\x98#YP\xee\x9c2G\xf0\x81x\x97'}, 0x30)
ioctl$I2C_RDWR(r9, 0x707, &(0x7f0000000680)={&(0x7f00000005c0)=[{0x1, 0x1800, 0x4e, &(0x7f0000000200)="3d9ac72fe4feb64363221d48767e83c950b9ffc64a1231803d675d1350f5f6dc1cfffb8cd31e837119b1200901bd9b0eb31410c829b19b70fc677ba495e63a4d616482b4958df912a6647fc852aa"}, {0x8, 0x11, 0xac, &(0x7f0000000280)="674e58d7f6400be9a0e700bed3af25465d80a36b1d8c7e37012058281a4e9a860bb91341d6e290b54e185dc331eb1fdd6f1474d8a3f4714d8f4ca96e96dde3eaceb8b0c2bb22becd48bbaec9f4bc7ae652bc26cabaa6977671e9df781d1dd81a2c90c1eba32904b0b5b986bf6bab1852568c783e6586d03d18d1e0ce5a0926f9f582de4dca538c53f82bf63dafbe2a0e3969a888061e02dc6ecdf3fae6ad42bd133ad731fc4ed1eaa147f1a1"}, {0x4, 0x2001, 0x38, &(0x7f0000000080)="de9898a5f56df4453fe46d402ad222cd6382e6883cc89eefc1890f733d1c5aa3eb929e1fea0fcac645c00b5d9c12dc72512ee3142b6e686f"}, {0x5, 0x10, 0x35, &(0x7f0000000340)="f786d87f659fdb9105edc1803d4708873ffaa55be9275674131977b38934d5bb7cd710465d8938f28648569be72ebcc9f2fb86d13b"}, {0x4, 0x10, 0xaf, &(0x7f0000000380)="9abfb183e157983be7c127460bc413523cfed9afd7d833eb02bfe57e1cc4c089c52f221def491361fc0aa171f00e194bc3d9bcc1a02022ca1bd90579c9079c05e7ea9e0855948f32e1a7fd36bfe7f9cebb292b923e9b58a06ce3412458a6f403458d52f0821d11680e09595ef17bd9dfdb7dfa180cd28a6b6a2b2e675f66e38a5ec761fd178f36f4733bc01dc0288c8cfe55d188c83e28ab47b80ae0edd0c7230a4876043ca21700bc2b2b3e35cf32"}, {0x5, 0x10, 0x13, &(0x7f0000000440)="e2b1cb91528d55342c8d44c58d9ee7f86678c3"}, {0x100, 0x3000, 0x7b, &(0x7f0000000480)="f328141022cc8cc4515e8657ecd478c2021e1e2dd4a9ba1e9cc349c305a2eb5003be9e8e4930c94e766e4f9b9e8688f36c35a6eeffeea53b9328759ee3bb545e259fc1b095ace210491c652288e14c07fd304376186461fb82165b8431e5fbdc7927d51e64510eeaf94819eea2aa90773579eab2c32a6c16cc76b5"}, {0xffff, 0xe800, 0x3b, &(0x7f0000000500)="d0fb3a2e402936ea20dc1f03e38c32b49fcb3d3583bd82badf9dcb695b9cdf32dee5e9401a6d3142fc0df2df19524dfc7e06eee7d655f2748875d6"}, {0x3, 0x0, 0x42, &(0x7f0000000540)="793e651666cb81814c0534c7db0f7ede2e57b4b2a235f303e8489af1646bdc5e339455ecacb8a8ae1da3c2f356468ba70306e2c5fa729d65ef30456fb30d5f2be33b"}], 0x9})
pipe2$9p(&(0x7f0000000700), 0x80)
fstat(0xffffffffffffffff, 0x0)

2.77190682s ago: executing program 2 (id=10754):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000600), 0x40000, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x377140)
openat$full(0xffffff9c, 0x0, 0x123300, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000300)=<r6=>0x0)
getresuid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)=<r7=>0x0)
quotactl_fd$Q_SETINFO(r4, 0xffffffff80000600, r7, &(0x7f0000000480)={0x3748, 0x8000, 0x1, 0x4})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r4, 0x47f9, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYBLOB="14", @ANYBLOB='\x00\x00\x00\x00\x00\x00\x002'], 0x14}}, 0x0)
r8 = io_uring_setup(0x5751, &(0x7f0000000100))
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a31000000800500050002"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="54000000090601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ffffffff0500070084000000060004404e2200000c000280080001407f1e0001"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
io_uring_register$IORING_REGISTER_BUFFERS(r8, 0x19, &(0x7f0000000300), 0x0)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000000000)='./file0\x00', 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=@known='system.posix_acl_access\x00')
ioctl$IOMMU_IOAS_COPY$syz(r0, 0x3b83, &(0x7f0000000700)={0x28, 0x0, 0x0, 0x0, 0x2d2501, 0x3, 0x1, 0x9d908})
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000002400128009000100626f6e64000000001400028008001c008c0400000500010004000000263165f1110f7bcd2f88ea00b39ea07e6711779da1c9b5a082e97dc0056ee68949b8a0690a56ad15089a8e1fd3f7eb6643d3b5c59cd78cd50cbcc7b346d0ec9d0551513f3d68c87040d5392f1ecaa0ea29e86c9b49e30769de97c82cd2fb948783d54f4f338b26d5a809969118e30f8efe34d2ace5422cb410ef59109e9679af93e738c273ecbfe9eae54b07d698aeed3be5e276a73bbaf192"], 0x44}}, 0x0)

2.471517316s ago: executing program 4 (id=10755):
r0 = epoll_create(0x7)
timer_create(0x2, 0x0, &(0x7f0000001680)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0)
timer_settime(r1, 0x0, &(0x7f0000001880)={{}, {0x77359400}}, 0x0)
timer_delete(r1)
epoll_pwait(r0, &(0x7f0000000f80)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x2, &(0x7f0000001000)={[0x8001]}, 0x8)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000200)=r4, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r3)
getsockname$inet(r2, &(0x7f0000001040), &(0x7f0000001080)=0x10)
syz_emit_ethernet(0xf78, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x0)

2.45484755s ago: executing program 1 (id=10756):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000480)=ANY=[@ANYBLOB="01000000000000006f0200000000000000000007", @ANYRES8=r0])
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$tipc(0x1e, 0x2, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
syz_open_dev$amidi(&(0x7f0000000140), 0x2, 0x180)
bpf$BPF_PROG_DETACH(0x9, 0xfffffffffffffffe, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='fd/3\x00')
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r3, &(0x7f0000000c40)={0x2000000b})
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), r3)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r3, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="64010008", @ANYRES16=r5, @ANYBLOB="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"], 0x164}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0xf95, 0x90101)
dup(r6)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$RDS_FREE_MR(r3, 0x114, 0x3, &(0x7f0000000200)={{0x3, 0xfffffffc}, 0x10}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r7 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa441, 0x0)
r8 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x48403, 0x0)
write$P9_RSTATu(r8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"/561, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x23d)
r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r9, 0x4038ae7a, &(0x7f0000001440)={0x2, 0x39d, 0x0, 0x0})
r10 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r10, 0x107, 0xe, &(0x7f00000005c0)=0x7, 0x4)
pselect6(0x40, &(0x7f00000001c0)={0x4, 0x0, 0x9, 0xfffffffffffffffd, 0x6}, 0x0, &(0x7f00000002c0)={0x3fc, 0x80000001, 0x0, 0x2, 0x7, 0x0, 0x7fffffff}, 0x0, 0x0)

2.321099432s ago: executing program 0 (id=10757):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x1, 0x0, &(0x7f0000002180))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002e40)=ANY=[@ANYBLOB="dc010000160001000000000000000000ff020000000000000000000000000001fc00000000000000000000000000000000000000000000000000800000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c000000ff0200000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00004000fdffffff00000000000000000000000000000000ff7f0000e4002000ac1414bb000000000000000000000000ac1e000100000000000000", @ANYRES32=0x0, @ANYRES32=0x0], 0x1dc}}, 0x0)

1.98543805s ago: executing program 1 (id=10758):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000540)=@newlink={0x40, 0x10, 0xc3b, 0x70bd29, 0x0, {0x0, 0x0, 0x0, r5, 0x0, 0x1006}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x21ed}]}}}]}, 0x40}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newtfilter={0x40, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xf}, {0x0, 0x7}, {0x7, 0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x4}]}}]}, 0x40}}, 0x24040084)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0) (async)
socket$unix(0x1, 0x1, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'}) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'erspan0\x00'}) (async)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000540)=@newlink={0x40, 0x10, 0xc3b, 0x70bd29, 0x0, {0x0, 0x0, 0x0, r5, 0x0, 0x1006}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x21ed}]}}}]}, 0x40}}, 0x0) (async)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newtfilter={0x40, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xf}, {0x0, 0x7}, {0x7, 0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x4}]}}]}, 0x40}}, 0x24040084) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)

1.844793079s ago: executing program 3 (id=10759):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x14b440, 0x0) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x1}) (async)
fsopen(&(0x7f0000000140)='btrfs\x00', 0x0)
io_uring_enter(0xffffffffffffffff, 0x47ba, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDCTL_SEQ_RESET(r0, 0x5100)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000f0f000000000700000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000003c000000050a01020000000000000000010000000c00024000000000000000010900010073797a3100000000040004800b00070066696c746572"], 0xc4}}, 0x0) (async)
r2 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_misc(r2, &(0x7f00000000c0)="2ba8f342b6d363052be58339da18457c85ca1f09e3af96ec3030985d5c10585c0062fa385f6bb828d86aa63b5178d2194344495bce333c88e194030df667c37cc7bbaed2cf", 0x45) (async)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @dev, @broadcast}, &(0x7f0000000080)=0xc)

1.705348212s ago: executing program 3 (id=10760):
r0 = eventfd(0xfffffffe)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'xfrm0\x00'})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8910, &(0x7f0000000280)={0xa, 0xfffc, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c)
epoll_create1(0x0)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
read$FUSE(r3, &(0x7f0000002800)={0x2020}, 0x2020)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
read$eventfd(r0, &(0x7f00000000c0), 0x8)

1.493633477s ago: executing program 1 (id=10761):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket(0x22, 0x2, 0x3)
getsockopt$packet_buf(r1, 0x107, 0x1, &(0x7f0000000240)=""/1, &(0x7f0000002180)=0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsopen(&(0x7f00000000c0)='ramfs\x00', 0x0)
r4 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x4, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002e40)=ANY=[@ANYBLOB="dc010000160001000000000000000000ff020000000000000000000000000001fc00000000000000000000000000000000000000000000000000800000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c000000ff0200000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00004000fdffffff00000000000000000000000000000000ff7f0000e4002000ac1414bb000000000000000000000000ac1e000100", @ANYRES32=0x0, @ANYRES32=0x0], 0x1dc}}, 0x0)
r5 = syz_usb_connect(0x0, 0x24, &(0x7f0000004200)=ANY=[], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = syz_open_dev$evdev(0x0, 0x3, 0x100)
syz_usb_disconnect(r6)
syz_usb_connect(0x6, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="2a010002ba56c5ff110712326f5c0102030109021200015f64e2020904c00800b85d7809562178c925a964e13f345880897b4706d3210fa6e7fc9c881083df49def884911a2f294de74147e20f0a90550c254b4d6d42ce0160e54a967f9d55e54f8954bf18c98ee78a418b6749e826cb008019"], 0x0)
setreuid(0x0, 0xffffffffffffffff)
syz_usb_control_io$hid(r5, 0x0, &(0x7f0000000440)={0x2c, &(0x7f0000000240)={0x20, 0x18, 0x2, "81a9"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r5, 0x0, &(0x7f0000000740)={0x2c, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0})

1.329445019s ago: executing program 4 (id=10762):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="680000001c", @ANYRES32=r1], 0x68}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xa}, 0x20)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x40000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
setsockopt$MRT_FLUSH(0xffffffffffffffff, 0x0, 0xd1, &(0x7f0000000000)=0x3, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
writev(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.309483248s ago: executing program 0 (id=10763):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="680000001c", @ANYRES32=r1], 0x68}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xa}, 0x20)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x40000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
setsockopt$MRT_FLUSH(0xffffffffffffffff, 0x0, 0xd1, &(0x7f0000000000)=0x3, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
writev(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 1)

695.577591ms ago: executing program 4 (id=10764):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000580)={0x4, 0x3}, 0x4)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03001d000b20d25a80648c2594f90124fc60100c030002180000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x3500000000000000)

599.35128ms ago: executing program 0 (id=10765):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f0000000200)='./file1/file4/file5\x00', 0x81c0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file4/file6\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file1/file4/file7\x00', 0x1c0)
r0 = landlock_create_ruleset(&(0x7f00000002c0)={0x2001}, 0x18, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000340)={0x2000, r1}, 0x0)
landlock_restrict_self(r0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1/file4/file6\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file1/file4/file7/file6\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000600)='./file1/file4/file5\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file1/file4/file7/file6\x00', 0x2) (fail_nth: 5)

593.729208ms ago: executing program 2 (id=10766):
r0 = socket(0x1e, 0x4, 0x0)
close_range(r0, 0xffffffffffffffff, 0x2)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000100)=r2)
r3 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
ioctl$I2C_SMBUS(r3, 0x720, &(0x7f0000000200)={0x1, 0x4, 0x4, &(0x7f00000001c0)={0x1e, "9516ee9106a0303d65d2e9e19d60c5d5ebfb945a67148257240ea648b6144c3671"}})
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc}, 0x10)
r4 = socket(0x1e, 0x4, 0x0)
recvmmsg(r0, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000480)=""/160, 0xa0}], 0x1}, 0x2174eda4}], 0x1, 0x40, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r4, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="ee", 0x1}], 0x1}}], 0x1, 0x0)
r5 = socket(0x1e, 0x80004, 0x0)
r6 = socket(0x1e, 0x4, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYRES32=r9, @ANYRESHEX=r5, @ANYBLOB="954b43f7c0b26e574dc63361015ff68e44d2f65ece5bdf374ff5e4ad671168e62e6a231528eec66a7c4b1f72000aa3ca6834a198818756613479036044aec50023ec4ed9eb8720c82e71c194cd7a2b5c069461dd52312c5d0c6e7998779b38f902732d27cc8859612cdec3e48ec27b7c96d185dbe66acb4ca381e9369ed666c541938fc444", @ANYRESOCT=r7, @ANYRESDEC=r5])
read$FUSE(r8, &(0x7f00000021c0)={0x2020, 0x0, <r10=>0x0}, 0x2020)
write$FUSE_INIT(r8, &(0x7f0000000040)={0x50, 0x0, r10, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r8, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r8, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x200000, 0xa000}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r11 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r11, &(0x7f0000000000)=[{&(0x7f0000000cc0)='\x00', 0x1}], 0x1)
r12 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r12, 0xffffffffffffffff, 0x0)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000200)=@req3={0x8, 0x10000006, 0x800, 0x1, 0xfffffffe, 0xc, 0x429b}, 0x1c)

61.460854ms ago: executing program 0 (id=10767):
syz_open_dev$sg(0x0, 0x0, 0x4000)
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x18b801, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
io_setup(0x8, 0x0)
sched_setattr(0x0, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
socket$netlink(0x10, 0x3, 0xa)
r3 = socket$inet(0x2, 0xa, 0x4000000)
setsockopt$inet_mreqn(r3, 0x0, 0x27, &(0x7f0000000100)={@multicast2, @local}, 0xc)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e28, @empty}, 0x10)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
io_setup(0x3ff, &(0x7f0000000500))
socket$inet6_udp(0xa, 0x2, 0x0)
io_setup(0xada, &(0x7f0000000380)=<r4=>0x0)
io_submit(r4, 0x4, &(0x7f0000000200)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x6, 0x8000, r1, &(0x7f00000003c0), 0x0, 0x7, 0x0, 0x2}, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x8, 0x80, 0xffffffffffffffff, &(0x7f0000000180)="7d9976ddeb8404c72f8cd7e93c3fc28a90896f8dcf28950d660448c27e6059bdaddb6465ac25cf53f1c27bc69fe4fb13", 0x30, 0xa12, 0x0, 0x1}])
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x791000)
ioctl$USBDEVFS_GET_CAPABILITIES(0xffffffffffffffff, 0x8004551a, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)

60.776246ms ago: executing program 4 (id=10768):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_pressure(r0, &(0x7f0000000140)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r1, &(0x7f00000001c0)={'full', 0x20, 0x7, 0x20, 0xfffda}, 0x2f)
r2 = msgget$private(0x0, 0x2c2)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000006380)={0x2020, 0x0, 0x0, <r4=>0x0, <r5=>0x0}, 0x2020)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x1, 0x100)
write$P9_RGETATTR(r6, &(0x7f0000000400)={0xa0, 0x19, 0x1, {0x204, {0x10, 0x3, 0x8}, 0xd, r4, r5, 0xb14b, 0x3, 0x7e46, 0x5, 0x3, 0x6, 0x8, 0x70, 0x3, 0x76, 0x8f, 0x100, 0x6, 0x8, 0x4}}, 0xa0)
fstat(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip_tables_targets\x00')
pread64(r8, &(0x7f0000000140)=""/15, 0xf, 0x4)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000300)={{{@in=@remote, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@empty}}, &(0x7f00000000c0)=0xe8)
r10 = syz_open_dev$video4linux(&(0x7f0000000180), 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r10, 0xc040564a, &(0x7f0000000080)={0x1000, 0x0, 0x2014, 0xfffffffd, 0x0, 0x0, 0x3544})
lstat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
r12 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r13 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000300), 0x601, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r13, 0xc0184800, &(0x7f0000000080)={0x4, r12, 0x40000})
r14 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x5, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x6, 0xffff, 0x0, 0x6, 0x4, 0x8008, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e6, 0x40c8, 0xf9, 0xe, 0x2c0, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x5, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x80000001, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xca, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x5, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa61e, 0x2, 0x5, 0x6, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xfffffff9, 0xffffeffd, 0x10000, 0x0, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
ioprio_set$pid(0x1, r14, 0x4000)
msgctl$IPC_SET(r2, 0x1, &(0x7f0000000400)={{0x0, r4, r7, r9, r11, 0x4, 0xeae}, 0x0, 0x0, 0x5, 0x1, 0x5, 0x31a6, 0x7ff, 0x3, 0x3, 0x6, 0xffffffffffffffff, r14})
ppoll(&(0x7f0000000180)=[{r1}], 0x1, 0x0, 0x0, 0x0)
close(r1)

0s ago: executing program 2 (id=10769):
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000002c0)={0x7f6e}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000000)={0x210a, r0}, 0x0)
landlock_restrict_self(r1, 0x0) (fail_nth: 5)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

kernel console output (not intermixed with test programs):

2, SerialNumber=3
[ 3204.113096][ T5878] usb 2-1: Product: syz
[ 3204.156373][ T5878] usb 2-1: Manufacturer: syz
[ 3204.161113][ T5878] usb 2-1: SerialNumber: syz
[ 3204.195609][T12052] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3204.304564][T12052] bond19: entered promiscuous mode
[ 3204.310447][T12052] bond19: entered allmulticast mode
[ 3204.452771][T12052] 8021q: adding VLAN 0 to HW filter on device bond19
[ 3204.540647][ T5878] usb 2-1: 0:2 : does not exist
[ 3204.550364][ T5878] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[ 3204.560560][T12066] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3204.667745][T12066] bond32: entered promiscuous mode
[ 3204.673032][T12066] bond32: entered allmulticast mode
[ 3204.678880][T12066] 8021q: adding VLAN 0 to HW filter on device bond32
[ 3204.727251][ T5878] usb 2-1: USB disconnect, device number 112
[ 3204.746601][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 3204.753060][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 3204.911075][T12078] netlink: 228 bytes leftover after parsing attributes in process `syz.0.10459'.
[ 3205.023078][ T5677] udevd[5677]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 3205.174051][ T8065] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[ 3205.324002][ T8065] usb 1-1: Using ep0 maxpacket: 16
[ 3205.561197][ T8065] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 3205.630770][ T8065] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[ 3205.644128][T29146] usb 2-1: new high-speed USB device number 113 using dummy_hcd
[ 3205.660995][ T8065] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3205.681334][ T8065] usb 1-1: Product: syz
[ 3205.884028][T29146] usb 2-1: Using ep0 maxpacket: 16
[ 3205.910705][T29146] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 3205.940806][T29146] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 3205.983519][T29146] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3205.997110][T29146] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3206.069980][T29146] usb 2-1: Product: syz
[ 3206.095049][T12088] fuse: Bad value for 'fd'
[ 3206.101981][T12088] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3206.124577][T29146] usb 2-1: Manufacturer: syz
[ 3206.129213][T29146] usb 2-1: SerialNumber: syz
[ 3206.153825][ T8065] usb 1-1: Manufacturer: syz
[ 3206.176595][T12088] bond20: entered promiscuous mode
[ 3206.182042][T12088] bond20: entered allmulticast mode
[ 3206.188217][T12088] 8021q: adding VLAN 0 to HW filter on device bond20
[ 3206.264163][ T8065] usb 1-1: SerialNumber: syz
[ 3206.284679][ T8065] usb 1-1: config 0 descriptor??
[ 3206.335028][ T8065] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[ 3206.351199][T29146] usb 2-1: 0:2 : does not exist
[ 3206.372293][ T8065] usb 1-1: Detected FT232H
[ 3206.564696][T29146] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[ 3206.606715][ T8065] ftdi_sio ttyUSB1: Unable to read latency timer: -32
[ 3206.717084][T29146] usb 2-1: USB disconnect, device number 113
[ 3206.914444][ T5677] udevd[5677]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 3207.655982][T12110] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3207.784191][T29146] usb 2-1: new high-speed USB device number 114 using dummy_hcd
[ 3207.874564][T12110] bond33: entered promiscuous mode
[ 3207.879848][T12110] bond33: entered allmulticast mode
[ 3207.885841][T12110] 8021q: adding VLAN 0 to HW filter on device bond33
[ 3207.934012][T29146] usb 2-1: Using ep0 maxpacket: 16
[ 3207.942220][T29146] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 3207.959777][T29146] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 3207.976450][T29146] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3207.986054][T29146] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3207.994834][T29146] usb 2-1: Product: syz
[ 3207.999277][T29146] usb 2-1: Manufacturer: syz
[ 3208.007284][T29146] usb 2-1: SerialNumber: syz
[ 3208.030195][T12119] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3208.296602][T12119] workqueue: Failed to create a rescuer kthread for wq "bond21": -EINTR
[ 3208.334417][T29146] usb 2-1: 0:2 : does not exist
[ 3208.359281][T29146] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[ 3208.378675][T29146] usb 2-1: USB disconnect, device number 114
[ 3208.484073][ T8065] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71
[ 3208.499746][ T8065] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB1
[ 3208.520464][ T8065] usb 1-1: USB disconnect, device number 32
[ 3208.896259][ T8065] ftdi_sio ttyUSB1: FTDI USB Serial Device converter now disconnected from ttyUSB1
[ 3208.929480][ T8065] ftdi_sio 1-1:0.0: device disconnected
[ 3209.118153][ T5677] udevd[5677]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 3210.584094][T12136] netlink: 228 bytes leftover after parsing attributes in process `syz.4.10470'.
[ 3211.934096][T29942] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[ 3212.094057][T29942] usb 1-1: Using ep0 maxpacket: 16
[ 3212.105125][T29942] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 3212.121357][T29942] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 3212.132672][T29942] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3212.146992][T29942] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3212.163735][T29942] usb 1-1: Product: syz
[ 3212.178934][T29942] usb 1-1: Manufacturer: syz
[ 3212.342687][T29942] usb 1-1: SerialNumber: syz
[ 3212.797274][T29942] usb 1-1: 0:2 : does not exist
[ 3212.809526][T29942] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[ 3212.853417][T29942] usb 1-1: USB disconnect, device number 33
[ 3213.084799][T29146] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[ 3213.134951][ T5677] udevd[5677]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 3213.245506][T29146] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3213.269257][T29146] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3213.286845][T29146] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3213.309776][T29146] usb 4-1: config 0 descriptor??
[ 3213.362084][T29146] pwc: Askey VC010 type 2 USB webcam detected.
[ 3213.565338][T29146] pwc: send_video_command error -71
[ 3213.572553][T29146] pwc: Failed to set video mode CIF@30 fps; return code = -71
[ 3213.580747][T29146] Philips webcam 4-1:0.0: probe with driver Philips webcam failed with error -71
[ 3213.640025][T29146] usb 4-1: USB disconnect, device number 3
[ 3214.074955][T12165] netlink: 'syz.0.10481': attribute type 32 has an invalid length.
[ 3214.394053][ T8065] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[ 3214.554192][ T8065] usb 1-1: Using ep0 maxpacket: 16
[ 3214.565667][ T8065] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 3215.207289][ T8065] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[ 3215.228080][ T8065] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3215.260517][ T8065] usb 1-1: Product: syz
[ 3215.286790][ T8065] usb 1-1: Manufacturer: syz
[ 3215.301685][ T8065] usb 1-1: SerialNumber: syz
[ 3215.525711][ T8065] usb 1-1: config 0 descriptor??
[ 3215.533864][ T8065] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[ 3215.543125][ T8065] usb 1-1: Detected FT232H
[ 3215.751304][ T8065] ftdi_sio ttyUSB1: Unable to read latency timer: -32
[ 3217.856532][T12188] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3217.908002][T12188] bond21: entered promiscuous mode
[ 3217.944363][T12188] bond21: entered allmulticast mode
[ 3217.978397][T12188] 8021q: adding VLAN 0 to HW filter on device bond21
[ 3218.462087][ T8065] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71
[ 3218.477025][ T8065] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB1
[ 3218.524493][ T8065] usb 1-1: USB disconnect, device number 34
[ 3218.627714][ T8065] ftdi_sio ttyUSB1: FTDI USB Serial Device converter now disconnected from ttyUSB1
[ 3218.644729][ T5677] udevd[5677]: setting owner of /dev/ttyUSB1 to uid=0, gid=18 failed: No such file or directory
[ 3218.666705][ T8065] ftdi_sio 1-1:0.0: device disconnected
[ 3218.918566][T12204] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3219.004425][T12204] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3219.583416][T12204] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3219.602580][T12204] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3220.311926][T12218] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3220.350487][T12220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3220.372235][T12220] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3220.402644][T12218] bond24: entered promiscuous mode
[ 3220.408137][T12218] bond24: entered allmulticast mode
[ 3220.414808][T12218] 8021q: adding VLAN 0 to HW filter on device bond24
[ 3221.500820][T12241] netlink: 'syz.4.10496': attribute type 32 has an invalid length.
[ 3221.540354][T12239] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3221.603296][T12239] bond22: entered promiscuous mode
[ 3221.610514][T12239] bond22: entered allmulticast mode
[ 3221.619322][T12239] 8021q: adding VLAN 0 to HW filter on device bond22
[ 3224.465965][T12266] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3224.996975][T12266] bond25: entered promiscuous mode
[ 3225.004857][T12266] bond25: entered allmulticast mode
[ 3225.010513][T12266] 8021q: adding VLAN 0 to HW filter on device bond25
[ 3225.018527][T12271] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3225.204517][T12271] bond34: entered promiscuous mode
[ 3225.239026][T12271] bond34: entered allmulticast mode
[ 3225.268542][T12271] 8021q: adding VLAN 0 to HW filter on device bond34
[ 3226.184700][T12289] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3226.302160][T12289] bond23: entered promiscuous mode
[ 3226.309122][T12289] bond23: entered allmulticast mode
[ 3226.325592][T12289] 8021q: adding VLAN 0 to HW filter on device bond23
[ 3226.784010][T29146] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 3227.220153][T29146] usb 1-1: device descriptor read/64, error -71
[ 3227.474442][T29146] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 3227.734129][T29146] usb 1-1: device descriptor read/64, error -71
[ 3227.878477][T29146] usb usb1-port1: attempt power cycle
[ 3228.250024][T29146] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[ 3228.286171][T29146] usb 1-1: device descriptor read/8, error -71
[ 3228.317576][T12306] netlink: 'syz.4.10510': attribute type 32 has an invalid length.
[ 3228.559996][T29146] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 3228.610500][T29146] usb 1-1: device descriptor read/8, error -71
[ 3228.739567][T29146] usb usb1-port1: unable to enumerate USB device
[ 3230.754186][T29146] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[ 3230.916772][T29146] usb 4-1: Using ep0 maxpacket: 16
[ 3230.926620][T29146] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 3230.941452][T29146] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 3230.960746][T29146] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3230.974515][T29146] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3231.016298][T29146] usb 4-1: Product: syz
[ 3231.030591][T29146] usb 4-1: Manufacturer: syz
[ 3231.063552][T29146] usb 4-1: SerialNumber: syz
[ 3231.256689][   T30] kauditd_printk_skb: 25 callbacks suppressed
[ 3231.256705][   T30] audit: type=1326 audit(1743325062.866:3794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3231.290758][T12332] sctp: [Deprecated]: syz.2.10517 (pid 12332) Use of int in max_burst socket option.
[ 3231.290758][T12332] Use struct sctp_assoc_value instead
[ 3231.322049][   T30] audit: type=1326 audit(1743325062.896:3795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3231.359482][T29146] usb 4-1: 0:2 : does not exist
[ 3231.369328][   T30] audit: type=1326 audit(1743325062.896:3796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3231.413087][T29146] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[ 3231.432910][   T30] audit: type=1326 audit(1743325062.896:3797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3231.482442][T29146] usb 4-1: USB disconnect, device number 4
[ 3231.527693][   T30] audit: type=1326 audit(1743325062.896:3798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3231.597931][   T30] audit: type=1326 audit(1743325062.896:3799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3231.625976][   T30] audit: type=1326 audit(1743325062.896:3800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3231.674878][   T30] audit: type=1326 audit(1743325062.896:3801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3231.713372][ T5677] udevd[5677]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 3231.801280][T12337] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10519'.
[ 3231.829375][   T30] audit: type=1326 audit(1743325062.896:3802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3231.867208][T12337] netlink: 88 bytes leftover after parsing attributes in process `syz.1.10519'.
[ 3231.895713][   T30] audit: type=1326 audit(1743325062.896:3803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.10517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98df18d169 code=0x7ffc0000
[ 3233.396594][T12357] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3233.427469][T12359] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3233.437854][T12359] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3233.563372][T12357] bond24: entered promiscuous mode
[ 3233.569008][T12357] bond24: entered allmulticast mode
[ 3233.576001][T12357] 8021q: adding VLAN 0 to HW filter on device bond24
[ 3234.262246][T29146] usb 2-1: new high-speed USB device number 115 using dummy_hcd
[ 3234.467414][T29146] usb 2-1: device descriptor read/64, error -71
[ 3234.704247][T29146] usb 2-1: new high-speed USB device number 116 using dummy_hcd
[ 3234.854480][T29146] usb 2-1: device descriptor read/64, error -71
[ 3234.969142][T29146] usb usb2-port1: attempt power cycle
[ 3235.394044][T29146] usb 2-1: new high-speed USB device number 117 using dummy_hcd
[ 3235.794857][T29146] usb 2-1: device descriptor read/8, error -71
[ 3235.912171][T12368] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3235.969023][T12368] bond39: entered promiscuous mode
[ 3235.975634][T12368] bond39: entered allmulticast mode
[ 3235.990765][T12368] 8021q: adding VLAN 0 to HW filter on device bond39
[ 3236.084156][T29146] usb 2-1: new high-speed USB device number 118 using dummy_hcd
[ 3236.128494][T29146] usb 2-1: device descriptor read/8, error -71
[ 3236.289273][T29146] usb usb2-port1: unable to enumerate USB device
[ 3237.144526][T12381] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3237.239110][T12381] bond25: entered promiscuous mode
[ 3237.255043][T12381] bond25: entered allmulticast mode
[ 3237.261700][T12381] 8021q: adding VLAN 0 to HW filter on device bond25
[ 3237.385031][T12394] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3238.075160][T12394] bond24: entered promiscuous mode
[ 3238.080412][T12394] bond24: entered allmulticast mode
[ 3238.086437][T12394] 8021q: adding VLAN 0 to HW filter on device bond24
[ 3238.848361][T12417] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3239.000356][T12417] bond26: entered promiscuous mode
[ 3239.008520][T12417] bond26: entered allmulticast mode
[ 3239.014692][T12417] 8021q: adding VLAN 0 to HW filter on device bond26
[ 3239.444191][T12418] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3239.751043][T12418] bond40: entered promiscuous mode
[ 3239.764010][T12418] bond40: entered allmulticast mode
[ 3239.769572][T12418] 8021q: adding VLAN 0 to HW filter on device bond40
[ 3240.636837][T12436] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3240.705332][T12436] bond35: entered promiscuous mode
[ 3240.710534][T12436] bond35: entered allmulticast mode
[ 3240.835391][T12436] 8021q: adding VLAN 0 to HW filter on device bond35
[ 3242.648551][T12459] netlink: 228 bytes leftover after parsing attributes in process `syz.4.10534'.
[ 3243.851390][T12468] netlink: 'syz.2.10540': attribute type 32 has an invalid length.
[ 3245.892660][T12482] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3245.935242][T12482] bond25: entered promiscuous mode
[ 3245.940510][T12482] bond25: entered allmulticast mode
[ 3245.947956][T12482] 8021q: adding VLAN 0 to HW filter on device bond25
[ 3246.982999][T12489] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3247.042687][T12489] bond26: entered promiscuous mode
[ 3247.048162][T12489] bond26: entered allmulticast mode
[ 3247.054893][T12489] 8021q: adding VLAN 0 to HW filter on device bond26
[ 3247.337664][T12503] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3247.593144][T12503] bond36: entered promiscuous mode
[ 3247.600096][T12503] bond36: entered allmulticast mode
[ 3247.635614][T12503] 8021q: adding VLAN 0 to HW filter on device bond36
[ 3248.174055][T29942] usb 2-1: new high-speed USB device number 119 using dummy_hcd
[ 3248.365876][T29942] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3248.380217][T29942] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3248.453570][T29942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3248.513835][T12510] sctp: [Deprecated]: syz.0.10549 (pid 12510) Use of int in max_burst socket option.
[ 3248.513835][T12510] Use struct sctp_assoc_value instead
[ 3248.533216][   T30] kauditd_printk_skb: 42 callbacks suppressed
[ 3248.533233][   T30] audit: type=1326 audit(1743325080.116:3846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3248.561866][    C0] vkms_vblank_simulate: vblank timer overrun
[ 3248.615206][   T30] audit: type=1326 audit(1743325080.116:3847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3248.660259][T29942] usb 2-1: config 0 descriptor??
[ 3248.678866][   T30] audit: type=1326 audit(1743325080.116:3848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3248.705014][T29942] pwc: Askey VC010 type 2 USB webcam detected.
[ 3248.991398][T29942] pwc: send_video_command error -71
[ 3249.003194][T29942] pwc: Failed to set video mode CIF@30 fps; return code = -71
[ 3249.032753][T29942] Philips webcam 2-1:0.0: probe with driver Philips webcam failed with error -71
[ 3249.042077][   T30] audit: type=1326 audit(1743325080.116:3849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3249.122316][T29942] usb 2-1: USB disconnect, device number 119
[ 3249.295090][   T30] audit: type=1326 audit(1743325080.116:3850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3249.531540][   T30] audit: type=1326 audit(1743325080.116:3851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3249.584057][T29942] usb 2-1: new high-speed USB device number 120 using dummy_hcd
[ 3249.779490][   T30] audit: type=1326 audit(1743325080.116:3852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3249.831036][   T30] audit: type=1326 audit(1743325080.116:3853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3249.839843][T29942] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3249.929408][   T30] audit: type=1326 audit(1743325080.116:3854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3249.972023][T29942] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3249.983476][T29942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3250.002921][T29942] usb 2-1: config 0 descriptor??
[ 3250.018510][T29942] pwc: Askey VC010 type 2 USB webcam detected.
[ 3250.197718][   T30] audit: type=1326 audit(1743325080.116:3855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.0.10549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f5d1258d169 code=0x7ffc0000
[ 3250.505430][T29942] pwc: recv_control_msg error -32 req 02 val 2b00
[ 3250.524502][T29942] pwc: recv_control_msg error -32 req 02 val 2700
[ 3250.535493][T29942] pwc: recv_control_msg error -32 req 02 val 2c00
[ 3250.555795][T29942] pwc: recv_control_msg error -32 req 04 val 1000
[ 3250.573541][T29942] pwc: recv_control_msg error -32 req 04 val 1300
[ 3250.586004][T29942] pwc: recv_control_msg error -32 req 04 val 1400
[ 3250.603517][T29942] pwc: recv_control_msg error -32 req 02 val 2000
[ 3250.632045][T29942] pwc: recv_control_msg error -32 req 02 val 2100
[ 3250.644768][T29942] pwc: recv_control_msg error -32 req 04 val 1500
[ 3250.675661][T29942] pwc: recv_control_msg error -32 req 02 val 2500
[ 3250.916608][T29942] pwc: recv_control_msg error -32 req 02 val 2600
[ 3250.992854][T29942] pwc: recv_control_msg error -32 req 02 val 2900
[ 3251.492775][T29942] pwc: recv_control_msg error -71 req 04 val 1100
[ 3251.506696][T29942] pwc: recv_control_msg error -71 req 04 val 1200
[ 3251.574207][T29942] pwc: Registered as video103.
[ 3251.613654][T29942] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input102
[ 3251.757954][T29942] usb 2-1: USB disconnect, device number 120
[ 3253.033596][T12530] netlink: 'syz.3.10554': attribute type 32 has an invalid length.
[ 3256.651137][T12572] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3256.703644][T12572] bond26: entered promiscuous mode
[ 3256.714195][T12572] bond26: entered allmulticast mode
[ 3256.719732][T12572] 8021q: adding VLAN 0 to HW filter on device bond26
[ 3257.761336][T12601] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3257.852459][T12601] bond27: entered promiscuous mode
[ 3257.857868][T12601] bond27: entered allmulticast mode
[ 3257.866205][T12601] 8021q: adding VLAN 0 to HW filter on device bond27
[ 3259.859375][T12616] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3259.899414][T12616] bond41: entered promiscuous mode
[ 3260.009203][T12616] bond41: entered allmulticast mode
[ 3260.372145][T12616] 8021q: adding VLAN 0 to HW filter on device bond41
[ 3260.731154][T12633] netlink: 'syz.4.10571': attribute type 32 has an invalid length.
[ 3262.987992][T12644] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3263.098358][T12644] bond37: entered promiscuous mode
[ 3263.103547][T12644] bond37: entered allmulticast mode
[ 3263.165575][T12644] 8021q: adding VLAN 0 to HW filter on device bond37
[ 3263.785058][T12658] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3263.820173][T12658] bond42: entered promiscuous mode
[ 3263.898936][T12658] bond42: entered allmulticast mode
[ 3263.905067][T12658] 8021q: adding VLAN 0 to HW filter on device bond42
[ 3265.392250][T12686] kvm: kvm [12683]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[ 3265.685015][T12700] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3265.784361][T29146] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 3265.943980][T29146] usb 1-1: Using ep0 maxpacket: 32
[ 3265.951912][T29146] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3265.962423][T29146] usb 1-1: config 0 has no interfaces?
[ 3265.968163][T29146] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 3265.978059][T29146] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3266.016519][T29146] usb 1-1: config 0 descriptor??
[ 3266.098487][T12700] bond38: entered promiscuous mode
[ 3266.103764][T12700] bond38: entered allmulticast mode
[ 3266.122335][T12700] 8021q: adding VLAN 0 to HW filter on device bond38
[ 3266.186137][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 3266.192807][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 3267.138553][T12719] netlink: 'syz.1.10588': attribute type 32 has an invalid length.
[ 3267.309587][T12723] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3267.321799][T12723] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3267.396180][T29942] usb 2-1: new high-speed USB device number 121 using dummy_hcd
[ 3267.625724][T29942] usb 2-1: device descriptor read/64, error -71
[ 3267.706414][T12732] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3267.776669][T12732] bond27: entered promiscuous mode
[ 3267.788782][T12732] bond27: entered allmulticast mode
[ 3267.800470][T12732] 8021q: adding VLAN 0 to HW filter on device bond27
[ 3267.873984][T29942] usb 2-1: new high-speed USB device number 122 using dummy_hcd
[ 3268.024755][T29942] usb 2-1: device descriptor read/64, error -71
[ 3268.127463][T12738] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3268.146024][T29942] usb usb2-port1: attempt power cycle
[ 3268.189212][T12738] bond28: entered promiscuous mode
[ 3268.194785][T12738] bond28: entered allmulticast mode
[ 3268.201353][T12738] 8021q: adding VLAN 0 to HW filter on device bond28
[ 3268.630206][ T6836] usb 1-1: USB disconnect, device number 39
[ 3268.708684][T12743] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3268.801314][T12743] bond39: entered promiscuous mode
[ 3268.814469][T12743] bond39: entered allmulticast mode
[ 3268.821432][T12743] 8021q: adding VLAN 0 to HW filter on device bond39
[ 3268.874072][T29942] usb 2-1: new high-speed USB device number 123 using dummy_hcd
[ 3269.017413][T29942] usb 2-1: device descriptor read/8, error -71
[ 3269.304071][T29942] usb 2-1: new high-speed USB device number 124 using dummy_hcd
[ 3269.328217][T29942] usb 2-1: device descriptor read/8, error -71
[ 3269.477038][T29942] usb usb2-port1: unable to enumerate USB device
[ 3271.757098][T12768] netlink: 'syz.3.10597': attribute type 32 has an invalid length.
[ 3272.056310][T12783] netlink: 'syz.0.10601': attribute type 32 has an invalid length.
[ 3272.074065][ T8065] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[ 3272.226590][ T8065] usb 4-1: Using ep0 maxpacket: 16
[ 3272.261956][ T8065] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 3272.353665][ T8065] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[ 3272.387744][ T8065] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3272.444078][ T6836] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 3272.458894][ T8065] usb 4-1: Product: syz
[ 3272.479021][ T8065] usb 4-1: Manufacturer: syz
[ 3272.498419][ T8065] usb 4-1: SerialNumber: syz
[ 3272.717161][ T8065] usb 4-1: config 0 descriptor??
[ 3272.733990][ T6836] usb 1-1: Using ep0 maxpacket: 16
[ 3272.741514][ T6836] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 3272.756474][ T6836] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 3272.844923][ T8065] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[ 3272.861961][ T6836] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3272.871599][ T6836] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3272.880166][ T6836] usb 1-1: Product: syz
[ 3272.889203][ T6836] usb 1-1: Manufacturer: syz
[ 3272.904911][ T6836] usb 1-1: SerialNumber: syz
[ 3272.912518][ T8065] usb 4-1: Detected FT232H
[ 3273.073742][ T8065] ftdi_sio ttyUSB1: Unable to read latency timer: -32
[ 3273.149754][ T6836] usb 1-1: 0:2 : does not exist
[ 3273.188226][ T6836] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[ 3273.488866][ T6836] usb 1-1: USB disconnect, device number 40
[ 3273.957334][ T5680] udevd[5680]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 3274.094519][T29146] usb 2-1: new high-speed USB device number 125 using dummy_hcd
[ 3274.264224][T29146] usb 2-1: Using ep0 maxpacket: 32
[ 3274.379867][T29146] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3274.390589][T29146] usb 2-1: config 0 has no interfaces?
[ 3274.404108][T29146] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 3274.422321][T29146] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3274.451778][T29146] usb 2-1: config 0 descriptor??
[ 3274.756898][T12795] netlink: 'syz.0.10605': attribute type 32 has an invalid length.
[ 3275.014032][T29942] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[ 3275.154080][T29942] usb 1-1: device descriptor read/64, error -71
[ 3275.387191][ T8065] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71
[ 3275.394404][T29942] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[ 3275.411144][ T8065] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB1
[ 3275.435540][ T8065] usb 4-1: USB disconnect, device number 5
[ 3275.516228][T12802] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3275.535271][ T8065] ftdi_sio ttyUSB1: FTDI USB Serial Device converter now disconnected from ttyUSB1
[ 3275.554582][T29942] usb 1-1: device descriptor read/64, error -71
[ 3275.586492][T12802] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3275.613655][ T8065] ftdi_sio 4-1:0.0: device disconnected
[ 3275.664306][T29942] usb usb1-port1: attempt power cycle
[ 3276.004044][T29942] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[ 3276.047146][T29942] usb 1-1: device descriptor read/8, error -71
[ 3276.384209][T29942] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[ 3276.404917][T29942] usb 1-1: device descriptor read/8, error -71
[ 3276.438470][T12809] netlink: 'syz.3.10607': attribute type 32 has an invalid length.
[ 3276.514313][T29942] usb usb1-port1: unable to enumerate USB device
[ 3276.694181][ T8065] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 3276.844006][ T8065] usb 4-1: Using ep0 maxpacket: 16
[ 3276.890328][T29942] usb 2-1: USB disconnect, device number 125
[ 3276.900550][ T8065] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 3276.927896][ T8065] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[ 3276.945161][ T8065] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3276.968058][ T8065] usb 4-1: Product: syz
[ 3276.986003][ T8065] usb 4-1: Manufacturer: syz
[ 3277.007483][ T8065] usb 4-1: SerialNumber: syz
[ 3277.022814][ T8065] usb 4-1: config 0 descriptor??
[ 3277.043458][ T8065] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[ 3277.058210][ T8065] usb 4-1: Detected FT232H
[ 3277.249464][ T8065] ftdi_sio ttyUSB1: Unable to read latency timer: -32
[ 3277.304220][T29942] usb 2-1: new high-speed USB device number 126 using dummy_hcd
[ 3277.455949][T29942] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3277.487736][T29942] usb 2-1: New USB device found, idVendor=17ef, idProduct=60a3, bcdDevice= 0.00
[ 3277.507320][T29942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3277.606641][T29942] usb 2-1: config 0 descriptor??
[ 3277.959862][T29942] usbhid 2-1:0.0: can't add hid device: -71
[ 3277.985406][T29942] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 3278.024745][T29942] usb 2-1: USB disconnect, device number 126
[ 3278.334031][ T5878] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[ 3278.366919][T12817] netlink: 'syz.2.10610': attribute type 32 has an invalid length.
[ 3278.407337][T12817] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3278.463313][T12817] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3278.507655][ T5878] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3278.529945][ T5878] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3278.588296][ T5878] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3278.610721][ T5878] usb 1-1: config 0 descriptor??
[ 3278.620292][ T5878] pwc: Askey VC010 type 2 USB webcam detected.
[ 3278.861700][T29942] usb 2-1: new high-speed USB device number 127 using dummy_hcd
[ 3278.950560][ T5878] pwc: send_video_command error -71
[ 3278.964479][ T5878] pwc: Failed to set video mode CIF@30 fps; return code = -71
[ 3278.980020][ T5878] Philips webcam 1-1:0.0: probe with driver Philips webcam failed with error -71
[ 3279.004551][T12821] kvm: kvm [12820]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[ 3279.048881][T29942] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3279.080272][T29942] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3279.140032][ T5878] usb 1-1: USB disconnect, device number 45
[ 3279.158051][T29942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3279.190044][T29942] usb 2-1: config 0 descriptor??
[ 3279.208795][T29942] pwc: Askey VC010 type 2 USB webcam detected.
[ 3279.422996][T29942] pwc: send_video_command error -71
[ 3279.444692][ T8065] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71
[ 3279.451998][ T8065] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB1
[ 3279.466105][ T5878] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[ 3279.491738][T29942] pwc: Failed to set video mode CIF@30 fps; return code = -71
[ 3279.528290][ T8065] usb 4-1: USB disconnect, device number 6
[ 3279.569312][T29942] Philips webcam 2-1:0.0: probe with driver Philips webcam failed with error -71
[ 3279.590925][ T8065] ftdi_sio ttyUSB1: FTDI USB Serial Device converter now disconnected from ttyUSB1
[ 3279.611051][T29942] usb 2-1: USB disconnect, device number 127
[ 3279.617767][ T8065] ftdi_sio 4-1:0.0: device disconnected
[ 3279.634571][ T5878] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3279.656028][ T5878] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3279.671139][ T5878] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3279.699328][ T5878] usb 1-1: config 0 descriptor??
[ 3279.845219][ T5878] pwc: Askey VC010 type 2 USB webcam detected.
[ 3280.014175][T29942] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[ 3280.166553][T29942] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3280.177009][T29942] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3280.192929][T29942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3280.220470][T29942] usb 2-1: config 0 descriptor??
[ 3280.246952][ T5878] pwc: recv_control_msg error -32 req 02 val 2b00
[ 3280.271491][T29942] pwc: Askey VC010 type 2 USB webcam detected.
[ 3280.289875][ T5878] pwc: recv_control_msg error -32 req 02 val 2700
[ 3280.313331][ T5878] pwc: recv_control_msg error -32 req 02 val 2c00
[ 3280.336933][ T5878] pwc: recv_control_msg error -32 req 04 val 1000
[ 3280.537105][ T5878] pwc: recv_control_msg error -32 req 04 val 1300
[ 3280.585275][ T5878] pwc: recv_control_msg error -32 req 04 val 1400
[ 3280.607908][ T5878] pwc: recv_control_msg error -32 req 02 val 2000
[ 3280.623690][ T5878] pwc: recv_control_msg error -32 req 02 val 2100
[ 3280.631639][ T5878] pwc: recv_control_msg error -32 req 04 val 1500
[ 3280.672584][T29942] pwc: recv_control_msg error -32 req 02 val 2b00
[ 3280.686320][T29942] pwc: recv_control_msg error -32 req 02 val 2700
[ 3280.698326][ T5878] pwc: recv_control_msg error -32 req 02 val 2500
[ 3280.705079][T29942] pwc: recv_control_msg error -32 req 02 val 2c00
[ 3280.712237][ T5878] pwc: recv_control_msg error -32 req 02 val 2400
[ 3280.718950][T29942] pwc: recv_control_msg error -32 req 04 val 1000
[ 3280.744306][T29942] pwc: recv_control_msg error -32 req 04 val 1300
[ 3280.751335][ T5878] pwc: recv_control_msg error -32 req 02 val 2600
[ 3280.759733][T29942] pwc: recv_control_msg error -32 req 04 val 1400
[ 3280.776179][ T5878] pwc: recv_control_msg error -32 req 02 val 2900
[ 3280.789384][T29942] pwc: recv_control_msg error -32 req 02 val 2000
[ 3280.797706][ T5878] pwc: recv_control_msg error -32 req 02 val 2800
[ 3280.830339][T29942] pwc: recv_control_msg error -32 req 02 val 2100
[ 3280.858867][T29942] pwc: recv_control_msg error -32 req 04 val 1500
[ 3280.881416][T29942] pwc: recv_control_msg error -32 req 02 val 2500
[ 3280.908512][T29942] pwc: recv_control_msg error -32 req 02 val 2400
[ 3281.011298][ T5878] pwc: recv_control_msg error -71 req 04 val 1200
[ 3281.029691][T12834] FAULT_INJECTION: forcing a failure.
[ 3281.029691][T12834] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 3281.043375][T12834] CPU: 0 UID: 0 PID: 12834 Comm: syz.2.10617 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3281.043401][T12834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3281.043419][T12834] Call Trace:
[ 3281.043427][T12834]  <TASK>
[ 3281.043435][T12834]  dump_stack_lvl+0x241/0x360
[ 3281.043508][T12834]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3281.043538][T12834]  ? __pfx__printk+0x10/0x10
[ 3281.043573][T12834]  should_fail_ex+0x424/0x570
[ 3281.043604][T12834]  _copy_from_user+0x2d/0xb0
[ 3281.043630][T12834]  __sys_bpf+0x1be/0x850
[ 3281.043649][T12834]  ? __pfx___sys_bpf+0x10/0x10
[ 3281.043676][T12834]  ? ksys_write+0x275/0x2d0
[ 3281.043710][T12834]  __x64_sys_bpf+0x7c/0x90
[ 3281.043738][T12834]  do_syscall_64+0xf3/0x230
[ 3281.043767][T12834]  ? clear_bhb_loop+0x45/0xa0
[ 3281.043790][T12834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3281.043814][T12834] RIP: 0033:0x7f98df18d169
[ 3281.043835][T12834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3281.043852][T12834] RSP: 002b:00007f98dff8a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 3281.043878][T12834] RAX: ffffffffffffffda RBX: 00007f98df3a5fa0 RCX: 00007f98df18d169
[ 3281.043893][T12834] RDX: 0000000000000094 RSI: 0000200000000200 RDI: 0000000000000005
[ 3281.043907][T12834] RBP: 00007f98dff8a090 R08: 0000000000000000 R09: 0000000000000000
[ 3281.043920][T12834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3281.043933][T12834] R13: 0000000000000001 R14: 00007f98df3a5fa0 R15: 00007f98df4cfa28
[ 3281.043963][T12834]  </TASK>
[ 3281.204033][    C0] vkms_vblank_simulate: vblank timer overrun
[ 3281.224156][T29942] pwc: recv_control_msg error -32 req 02 val 2900
[ 3281.244084][ T5878] pwc: Registered as video103.
[ 3281.275714][T29942] pwc: recv_control_msg error -32 req 02 val 2800
[ 3281.284101][ T5878] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input103
[ 3281.415006][ T5878] usb 1-1: USB disconnect, device number 46
[ 3281.524004][T29942] pwc: recv_control_msg error -71 req 04 val 1200
[ 3281.613556][T29942] videodev: could not get a free minor
[ 3281.626357][T29942] pwc: Failed to register as video device (-23).
[ 3281.734757][T29942] Philips webcam 2-1:0.0: probe with driver Philips webcam failed with error -23
[ 3281.756337][T29942] usb 2-1: USB disconnect, device number 2
[ 3281.775220][T12842] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3281.950779][T12842] bond40: entered promiscuous mode
[ 3281.959339][T12842] bond40: entered allmulticast mode
[ 3281.966706][T12842] 8021q: adding VLAN 0 to HW filter on device bond40
[ 3282.291487][T12849] FAULT_INJECTION: forcing a failure.
[ 3282.291487][T12849] name failslab, interval 1, probability 0, space 0, times 1
[ 3282.494054][T12849] CPU: 1 UID: 0 PID: 12849 Comm: syz.1.10620 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3282.494079][T12849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3282.494089][T12849] Call Trace:
[ 3282.494095][T12849]  <TASK>
[ 3282.494102][T12849]  dump_stack_lvl+0x241/0x360
[ 3282.494129][T12849]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3282.494150][T12849]  ? __pfx__printk+0x10/0x10
[ 3282.494172][T12849]  ? __pfx___might_resched+0x10/0x10
[ 3282.494192][T12849]  should_fail_ex+0x424/0x570
[ 3282.494215][T12849]  should_failslab+0xac/0x100
[ 3282.494239][T12849]  __kmalloc_noprof+0xdf/0x4d0
[ 3282.494252][T12849]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[ 3282.494271][T12849]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 3282.494292][T12849]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 3282.494319][T12849]  tomoyo_path_number_perm+0x245/0x790
[ 3282.494337][T12849]  ? tomoyo_path_number_perm+0x215/0x790
[ 3282.494353][T12849]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 3282.494372][T12849]  ? ksys_write+0x24e/0x2d0
[ 3282.494393][T12849]  ? __lock_acquire+0xad5/0xd80
[ 3282.494416][T12849]  ? __fget_files+0x2a/0x420
[ 3282.494431][T12849]  ? __fget_files+0x2a/0x420
[ 3282.494446][T12849]  ? __fget_files+0x2a/0x420
[ 3282.494463][T12849]  security_file_ioctl+0xc6/0x2a0
[ 3282.494478][T12849]  __se_sys_ioctl+0x46/0x160
[ 3282.494498][T12849]  do_syscall_64+0xf3/0x230
[ 3282.494519][T12849]  ? clear_bhb_loop+0x45/0xa0
[ 3282.494536][T12849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3282.494551][T12849] RIP: 0033:0x7f7c1a78d169
[ 3282.494564][T12849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3282.494584][T12849] RSP: 002b:00007f7c1b66d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3282.494601][T12849] RAX: ffffffffffffffda RBX: 00007f7c1a9a5fa0 RCX: 00007f7c1a78d169
[ 3282.494612][T12849] RDX: 0000200000000000 RSI: 0000000040085618 RDI: 0000000000000003
[ 3282.494623][T12849] RBP: 00007f7c1b66d090 R08: 0000000000000000 R09: 0000000000000000
[ 3282.494632][T12849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3282.494641][T12849] R13: 0000000000000000 R14: 00007f7c1a9a5fa0 R15: 00007f7c1aacfa28
[ 3282.494660][T12849]  </TASK>
[ 3282.494667][T12849] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 3283.247031][T12861] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3283.363074][T12861] bond27: entered promiscuous mode
[ 3283.383086][T12861] bond27: entered allmulticast mode
[ 3283.389882][T12861] 8021q: adding VLAN 0 to HW filter on device bond27
[ 3283.418480][T12864] FAULT_INJECTION: forcing a failure.
[ 3283.418480][T12864] name failslab, interval 1, probability 0, space 0, times 0
[ 3283.431196][T12864] CPU: 0 UID: 0 PID: 12864 Comm: syz.4.10623 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3283.431221][T12864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3283.431234][T12864] Call Trace:
[ 3283.431242][T12864]  <TASK>
[ 3283.431249][T12864]  dump_stack_lvl+0x241/0x360
[ 3283.431282][T12864]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3283.431309][T12864]  ? __pfx__printk+0x10/0x10
[ 3283.431337][T12864]  ? __pfx___might_resched+0x10/0x10
[ 3283.431363][T12864]  should_fail_ex+0x424/0x570
[ 3283.431392][T12864]  should_failslab+0xac/0x100
[ 3283.431424][T12864]  __kmalloc_noprof+0xdf/0x4d0
[ 3283.431442][T12864]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[ 3283.431466][T12864]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 3283.431494][T12864]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 3283.431546][T12864]  tomoyo_path_number_perm+0x245/0x790
[ 3283.431568][T12864]  ? tomoyo_path_number_perm+0x215/0x790
[ 3283.431589][T12864]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 3283.431612][T12864]  ? ksys_write+0x24e/0x2d0
[ 3283.431639][T12864]  ? __lock_acquire+0xad5/0xd80
[ 3283.431668][T12864]  ? __fget_files+0x2a/0x420
[ 3283.431686][T12864]  ? __fget_files+0x2a/0x420
[ 3283.431705][T12864]  ? __fget_files+0x2a/0x420
[ 3283.431725][T12864]  security_file_ioctl+0xc6/0x2a0
[ 3283.431744][T12864]  __se_sys_ioctl+0x46/0x160
[ 3283.431787][T12864]  do_syscall_64+0xf3/0x230
[ 3283.431826][T12864]  ? clear_bhb_loop+0x45/0xa0
[ 3283.431846][T12864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3283.431864][T12864] RIP: 0033:0x7f0d3e98d169
[ 3283.431880][T12864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3283.431896][T12864] RSP: 002b:00007f0d3f8c1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3283.431916][T12864] RAX: ffffffffffffffda RBX: 00007f0d3eba5fa0 RCX: 00007f0d3e98d169
[ 3283.431930][T12864] RDX: 0000200000000100 RSI: 00000000c008640a RDI: 0000000000000003
[ 3283.431942][T12864] RBP: 00007f0d3f8c1090 R08: 0000000000000000 R09: 0000000000000000
[ 3283.431953][T12864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3283.431965][T12864] R13: 0000000000000000 R14: 00007f0d3eba5fa0 R15: 00007f0d3eccfa28
[ 3283.431987][T12864]  </TASK>
[ 3283.664777][T12864] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 3284.677529][T12889] FAULT_INJECTION: forcing a failure.
[ 3284.677529][T12889] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3284.677557][T12889] CPU: 1 UID: 0 PID: 12889 Comm: syz.2.10632 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3284.677576][T12889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3284.677586][T12889] Call Trace:
[ 3284.677591][T12889]  <TASK>
[ 3284.677600][T12889]  dump_stack_lvl+0x241/0x360
[ 3284.677627][T12889]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3284.677648][T12889]  ? __pfx__printk+0x10/0x10
[ 3284.677674][T12889]  should_fail_ex+0x424/0x570
[ 3284.677697][T12889]  _copy_from_user+0x2d/0xb0
[ 3284.677715][T12889]  copy_msghdr_from_user+0xb3/0x580
[ 3284.677743][T12889]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 3284.677765][T12889]  ? __fget_files+0x2a/0x420
[ 3284.677781][T12889]  ? __fget_files+0x2a/0x420
[ 3284.677800][T12889]  __sys_sendmsg+0x20a/0x360
[ 3284.677821][T12889]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3284.677864][T12889]  ? do_syscall_64+0xb6/0x230
[ 3284.677887][T12889]  do_syscall_64+0xf3/0x230
[ 3284.677906][T12889]  ? clear_bhb_loop+0x45/0xa0
[ 3284.677924][T12889]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3284.677938][T12889] RIP: 0033:0x7f98df18d169
[ 3284.677951][T12889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3284.677964][T12889] RSP: 002b:00007f98dff8a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3284.677980][T12889] RAX: ffffffffffffffda RBX: 00007f98df3a5fa0 RCX: 00007f98df18d169
[ 3284.677991][T12889] RDX: 3500000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[ 3284.678002][T12889] RBP: 00007f98dff8a090 R08: 0000000000000000 R09: 0000000000000000
[ 3284.678011][T12889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3284.678021][T12889] R13: 0000000000000000 R14: 00007f98df3a5fa0 R15: 00007f98df4cfa28
[ 3284.678039][T12889]  </TASK>
[ 3285.141993][T12895] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 3285.804169][T29942] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[ 3285.956472][T29942] usb 2-1: Using ep0 maxpacket: 16
[ 3285.971977][T29942] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 3285.972000][T29942] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 3285.976594][T29942] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3285.976619][T29942] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3285.976634][T29942] usb 2-1: Product: syz
[ 3285.976646][T29942] usb 2-1: Manufacturer: syz
[ 3285.976658][T29942] usb 2-1: SerialNumber: syz
[ 3286.145235][T12903] netlink: 56 bytes leftover after parsing attributes in process `syz.4.10637'.
[ 3286.264435][T29942] usb 2-1: 0:2 : does not exist
[ 3286.278002][T29942] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[ 3286.462186][T29942] usb 2-1: USB disconnect, device number 3
[ 3286.706224][T12909] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3286.720707][ T5677] udevd[5677]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 3286.787795][T12909] bond28: entered promiscuous mode
[ 3286.865921][T12909] bond28: entered allmulticast mode
[ 3286.871768][T12909] 8021q: adding VLAN 0 to HW filter on device bond28
[ 3287.138754][   T30] kauditd_printk_skb: 32 callbacks suppressed
[ 3287.138775][   T30] audit: type=1800 audit(1743325118.746:3888): pid=12923 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.10643" name="file0" dev="tmpfs" ino=11128 res=0 errno=0
[ 3287.264030][T29146] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[ 3287.544010][T29146] usb 2-1: Using ep0 maxpacket: 32
[ 3287.557250][T29146] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD8, changing to 0x88
[ 3287.583970][T29146] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[ 3287.615975][T29146] usb 2-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[ 3287.635614][T29146] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3287.674157][T29146] usb 2-1: Product: syz
[ 3287.678378][T29146] usb 2-1: Manufacturer: syz
[ 3287.690350][T29146] usb 2-1: SerialNumber: syz
[ 3287.706043][T29146] usb 2-1: config 0 descriptor??
[ 3287.742134][T29146] usb 2-1: no audio or video endpoints found
[ 3287.948177][T12941] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3288.172241][T12921] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3288.172371][T12941] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3288.188637][T12921] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3288.222838][T12921] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 3288.517989][ T5878] usb 2-1: USB disconnect, device number 4
[ 3289.000351][T12952] input: syz1 as /devices/virtual/input/input105
[ 3289.028977][T12954] FAULT_INJECTION: forcing a failure.
[ 3289.028977][T12954] name failslab, interval 1, probability 0, space 0, times 0
[ 3289.037083][T12952] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3289.044320][T12954] CPU: 0 UID: 0 PID: 12954 Comm: syz.0.10651 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3289.044351][T12954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3289.044383][T12954] Call Trace:
[ 3289.044393][T12954]  <TASK>
[ 3289.044404][T12954]  dump_stack_lvl+0x241/0x360
[ 3289.044443][T12954]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3289.044477][T12954]  ? __pfx__printk+0x10/0x10
[ 3289.044512][T12954]  ? __pfx___might_resched+0x10/0x10
[ 3289.044543][T12954]  should_fail_ex+0x424/0x570
[ 3289.044578][T12954]  should_failslab+0xac/0x100
[ 3289.044615][T12954]  __kmalloc_cache_noprof+0x73/0x370
[ 3289.044637][T12954]  ? alloc_pipe_info+0xeb/0x4d0
[ 3289.044672][T12954]  alloc_pipe_info+0xeb/0x4d0
[ 3289.044705][T12954]  splice_direct_to_actor+0xac3/0xc90
[ 3289.044740][T12954]  ? aa_file_perm+0x3f1/0xf60
[ 3289.044777][T12954]  ? __pfx_aa_file_perm+0x10/0x10
[ 3289.044805][T12954]  ? __pfx_direct_splice_actor+0x10/0x10
[ 3289.044839][T12954]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 3289.044881][T12954]  do_splice_direct+0x281/0x3d0
[ 3289.044916][T12954]  ? __pfx_do_splice_direct+0x10/0x10
[ 3289.044951][T12954]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 3289.044975][T12954]  ? bpf_lsm_file_permission+0x9/0x10
[ 3289.045009][T12954]  ? rw_verify_area+0x246/0x630
[ 3289.045039][T12954]  do_sendfile+0x582/0x8c0
[ 3289.045067][T12954]  ? __pfx_do_sendfile+0x10/0x10
[ 3289.045089][T12954]  ? __fget_files+0x2a/0x420
[ 3289.045118][T12954]  __se_sys_sendfile64+0x17e/0x1e0
[ 3289.045155][T12954]  ? __pfx___se_sys_sendfile64+0x10/0x10
[ 3289.045194][T12954]  ? do_syscall_64+0xb6/0x230
[ 3289.045235][T12954]  do_syscall_64+0xf3/0x230
[ 3289.045266][T12954]  ? clear_bhb_loop+0x45/0xa0
[ 3289.045292][T12954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3289.045315][T12954] RIP: 0033:0x7f5d1258d169
[ 3289.045334][T12954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3289.045354][T12954] RSP: 002b:00007f5d134ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3289.045378][T12954] RAX: ffffffffffffffda RBX: 00007f5d127a5fa0 RCX: 00007f5d1258d169
[ 3289.045395][T12954] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 3289.045408][T12954] RBP: 00007f5d134ca090 R08: 0000000000000000 R09: 0000000000000000
[ 3289.045422][T12954] R10: 000000008000fb00 R11: 0000000000000246 R12: 0000000000000001
[ 3289.045437][T12954] R13: 0000000000000000 R14: 00007f5d127a5fa0 R15: 00007f5d128cfa28
[ 3289.045465][T12954]  </TASK>
[ 3289.327618][T12952] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3289.385099][T12958] FAULT_INJECTION: forcing a failure.
[ 3289.385099][T12958] name failslab, interval 1, probability 0, space 0, times 0
[ 3289.385138][T12958] CPU: 1 UID: 0 PID: 12958 Comm: syz.3.10653 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3289.385162][T12958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3289.385176][T12958] Call Trace:
[ 3289.385184][T12958]  <TASK>
[ 3289.385192][T12958]  dump_stack_lvl+0x241/0x360
[ 3289.385228][T12958]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3289.385258][T12958]  ? __pfx__printk+0x10/0x10
[ 3289.385289][T12958]  ? __pfx___might_resched+0x10/0x10
[ 3289.385318][T12958]  should_fail_ex+0x424/0x570
[ 3289.385351][T12958]  should_failslab+0xac/0x100
[ 3289.385385][T12958]  kmem_cache_alloc_noprof+0x78/0x390
[ 3289.385417][T12958]  ? getname_flags+0xb6/0x530
[ 3289.385440][T12958]  getname_flags+0xb6/0x530
[ 3289.385462][T12958]  __x64_sys_symlink+0x5d/0x90
[ 3289.385492][T12958]  do_syscall_64+0xf3/0x230
[ 3289.385534][T12958]  ? clear_bhb_loop+0x45/0xa0
[ 3289.385558][T12958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3289.385589][T12958] RIP: 0033:0x7f129b78d169
[ 3289.385604][T12958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3289.385620][T12958] RSP: 002b:00007f129c51b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[ 3289.385640][T12958] RAX: ffffffffffffffda RBX: 00007f129b9a5fa0 RCX: 00007f129b78d169
[ 3289.385655][T12958] RDX: 0000000000000000 RSI: 0000200000000e40 RDI: 0000200000001640
[ 3289.385668][T12958] RBP: 00007f129c51b090 R08: 0000000000000000 R09: 0000000000000000
[ 3289.385680][T12958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3289.385691][T12958] R13: 0000000000000000 R14: 00007f129b9a5fa0 R15: 00007f129bacfa28
[ 3289.385714][T12958]  </TASK>
[ 3289.484945][T12963] FAULT_INJECTION: forcing a failure.
[ 3289.484945][T12963] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3289.667058][T12963] CPU: 0 UID: 0 PID: 12963 Comm: syz.1.10655 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3289.667085][T12963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3289.667097][T12963] Call Trace:
[ 3289.667105][T12963]  <TASK>
[ 3289.667112][T12963]  dump_stack_lvl+0x241/0x360
[ 3289.667147][T12963]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3289.667174][T12963]  ? __pfx__printk+0x10/0x10
[ 3289.667206][T12963]  should_fail_ex+0x424/0x570
[ 3289.667236][T12963]  _copy_to_user+0x31/0xb0
[ 3289.667260][T12963]  simple_read_from_buffer+0xc4/0x170
[ 3289.667291][T12963]  proc_fail_nth_read+0x1ef/0x260
[ 3289.667314][T12963]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3289.667337][T12963]  ? rw_verify_area+0x246/0x630
[ 3289.667359][T12963]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3289.667381][T12963]  vfs_read+0x21f/0xb90
[ 3289.667406][T12963]  ? __pfx___mutex_lock+0x10/0x10
[ 3289.667432][T12963]  ? __pfx_vfs_read+0x10/0x10
[ 3289.667455][T12963]  ? __fget_files+0x2a/0x420
[ 3289.667475][T12963]  ? __fget_files+0x39d/0x420
[ 3289.667492][T12963]  ? __fget_files+0x2a/0x420
[ 3289.667515][T12963]  ksys_read+0x19d/0x2d0
[ 3289.667539][T12963]  ? __pfx_ksys_read+0x10/0x10
[ 3289.667565][T12963]  ? do_syscall_64+0xb6/0x230
[ 3289.667593][T12963]  do_syscall_64+0xf3/0x230
[ 3289.667619][T12963]  ? clear_bhb_loop+0x45/0xa0
[ 3289.667641][T12963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3289.667659][T12963] RIP: 0033:0x7f7c1a78bb7c
[ 3289.667675][T12963] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 3289.667692][T12963] RSP: 002b:00007f7c1b66d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3289.667713][T12963] RAX: ffffffffffffffda RBX: 00007f7c1a9a5fa0 RCX: 00007f7c1a78bb7c
[ 3289.667727][T12963] RDX: 000000000000000f RSI: 00007f7c1b66d0a0 RDI: 0000000000000004
[ 3289.667739][T12963] RBP: 00007f7c1b66d090 R08: 0000000000000000 R09: 0000000000000000
[ 3289.667750][T12963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3289.667762][T12963] R13: 0000000000000000 R14: 00007f7c1a9a5fa0 R15: 00007f7c1aacfa28
[ 3289.667803][T12963]  </TASK>
[ 3289.910146][T12970] FAULT_INJECTION: forcing a failure.
[ 3289.910146][T12970] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3289.924985][T12970] CPU: 0 UID: 0 PID: 12970 Comm: syz.3.10659 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3289.925014][T12970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3289.925028][T12970] Call Trace:
[ 3289.925035][T12970]  <TASK>
[ 3289.925044][T12970]  dump_stack_lvl+0x241/0x360
[ 3289.925081][T12970]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3289.925112][T12970]  ? __pfx__printk+0x10/0x10
[ 3289.925148][T12970]  should_fail_ex+0x424/0x570
[ 3289.925180][T12970]  _copy_to_user+0x31/0xb0
[ 3289.925205][T12970]  simple_read_from_buffer+0xc4/0x170
[ 3289.925239][T12970]  proc_fail_nth_read+0x1ef/0x260
[ 3289.925263][T12970]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3289.925289][T12970]  ? rw_verify_area+0x246/0x630
[ 3289.925313][T12970]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3289.925337][T12970]  vfs_read+0x21f/0xb90
[ 3289.925364][T12970]  ? __pfx___mutex_lock+0x10/0x10
[ 3289.925394][T12970]  ? __pfx_vfs_read+0x10/0x10
[ 3289.925420][T12970]  ? __fget_files+0x2a/0x420
[ 3289.925442][T12970]  ? __fget_files+0x39d/0x420
[ 3289.925461][T12970]  ? __fget_files+0x2a/0x420
[ 3289.925488][T12970]  ksys_read+0x19d/0x2d0
[ 3289.925514][T12970]  ? __pfx_ksys_read+0x10/0x10
[ 3289.925543][T12970]  ? do_syscall_64+0xb6/0x230
[ 3289.925574][T12970]  do_syscall_64+0xf3/0x230
[ 3289.925623][T12970]  ? clear_bhb_loop+0x45/0xa0
[ 3289.925646][T12970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3289.925666][T12970] RIP: 0033:0x7f129b78bb7c
[ 3289.925684][T12970] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 3289.925701][T12970] RSP: 002b:00007f129c51b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3289.925724][T12970] RAX: ffffffffffffffda RBX: 00007f129b9a5fa0 RCX: 00007f129b78bb7c
[ 3289.925740][T12970] RDX: 000000000000000f RSI: 00007f129c51b0a0 RDI: 0000000000000004
[ 3289.925753][T12970] RBP: 00007f129c51b090 R08: 0000000000000000 R09: 0000000000000000
[ 3289.925766][T12970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3289.925779][T12970] R13: 0000000000000000 R14: 00007f129b9a5fa0 R15: 00007f129bacfa28
[ 3289.925805][T12970]  </TASK>
[ 3289.944153][T29942] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[ 3290.053018][T12972] fuse: Bad value for 'user_id'
[ 3290.120440][T12977] netlink: 'syz.3.10662': attribute type 4 has an invalid length.
[ 3290.123703][T12972] fuse: Bad value for 'user_id'
[ 3290.150785][T12977] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.10662'.
[ 3290.214028][T29942] usb 1-1: Using ep0 maxpacket: 32
[ 3290.230878][T29942] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3290.259037][T29942] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 3290.268964][T29942] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 3290.279226][T29942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3290.287679][T12983] netlink: 48 bytes leftover after parsing attributes in process `syz.1.10663'.
[ 3290.298997][T29942] usb 1-1: config 0 descriptor??
[ 3290.497948][T12992] FAULT_INJECTION: forcing a failure.
[ 3290.497948][T12992] name failslab, interval 1, probability 0, space 0, times 0
[ 3290.653772][T12992] CPU: 1 UID: 0 PID: 12992 Comm: syz.1.10665 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3290.653804][T12992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3290.653824][T12992] Call Trace:
[ 3290.653832][T12992]  <TASK>
[ 3290.653841][T12992]  dump_stack_lvl+0x241/0x360
[ 3290.653880][T12992]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3290.653909][T12992]  ? __pfx__printk+0x10/0x10
[ 3290.653940][T12992]  ? __pfx___might_resched+0x10/0x10
[ 3290.653967][T12992]  should_fail_ex+0x424/0x570
[ 3290.654000][T12992]  should_failslab+0xac/0x100
[ 3290.654033][T12992]  __kmalloc_cache_noprof+0x73/0x370
[ 3290.654053][T12992]  ? alloc_pipe_info+0xeb/0x4d0
[ 3290.654087][T12992]  alloc_pipe_info+0xeb/0x4d0
[ 3290.654128][T12992]  splice_direct_to_actor+0xac3/0xc90
[ 3290.654157][T12992]  ? aa_file_perm+0x3f1/0xf60
[ 3290.654186][T12992]  ? __pfx_aa_file_perm+0x10/0x10
[ 3290.654204][T12992]  ? __pfx_direct_splice_actor+0x10/0x10
[ 3290.654228][T12992]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 3290.654256][T12992]  do_splice_direct+0x281/0x3d0
[ 3290.654282][T12992]  ? __pfx_do_splice_direct+0x10/0x10
[ 3290.654305][T12992]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 3290.654322][T12992]  ? bpf_lsm_file_permission+0x9/0x10
[ 3290.654347][T12992]  ? rw_verify_area+0x246/0x630
[ 3290.654384][T12992]  do_sendfile+0x582/0x8c0
[ 3290.654406][T12992]  ? __pfx_do_sendfile+0x10/0x10
[ 3290.654422][T12992]  ? __fget_files+0x2a/0x420
[ 3290.654444][T12992]  __se_sys_sendfile64+0x17e/0x1e0
[ 3290.654472][T12992]  ? __pfx___se_sys_sendfile64+0x10/0x10
[ 3290.654501][T12992]  ? do_syscall_64+0xb6/0x230
[ 3290.654526][T12992]  do_syscall_64+0xf3/0x230
[ 3290.654549][T12992]  ? clear_bhb_loop+0x45/0xa0
[ 3290.654569][T12992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3290.654585][T12992] RIP: 0033:0x7f7c1a78d169
[ 3290.654600][T12992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3290.654615][T12992] RSP: 002b:00007f7c1b62b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3290.654634][T12992] RAX: ffffffffffffffda RBX: 00007f7c1a9a6160 RCX: 00007f7c1a78d169
[ 3290.654647][T12992] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000008
[ 3290.654657][T12992] RBP: 00007f7c1b62b090 R08: 0000000000000000 R09: 0000000000000000
[ 3290.654668][T12992] R10: 000000008000fb00 R11: 0000000000000246 R12: 0000000000000001
[ 3290.654678][T12992] R13: 0000000000000000 R14: 00007f7c1a9a6160 R15: 00007f7c1aacfa28
[ 3290.654699][T12992]  </TASK>
[ 3290.898865][    C1] vkms_vblank_simulate: vblank timer overrun
[ 3292.032373][T13004] netlink: 16 bytes leftover after parsing attributes in process `syz.4.10668'.
[ 3292.757839][T13013] FAULT_INJECTION: forcing a failure.
[ 3292.757839][T13013] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3292.807592][T13013] CPU: 0 UID: 0 PID: 13013 Comm: syz.1.10670 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3292.807623][T13013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3292.807642][T13013] Call Trace:
[ 3292.807649][T13013]  <TASK>
[ 3292.807658][T13013]  dump_stack_lvl+0x241/0x360
[ 3292.807691][T13013]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3292.807718][T13013]  ? __pfx__printk+0x10/0x10
[ 3292.807750][T13013]  should_fail_ex+0x424/0x570
[ 3292.807779][T13013]  _copy_from_user+0x2d/0xb0
[ 3292.807801][T13013]  copy_msghdr_from_user+0xb3/0x580
[ 3292.807838][T13013]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 3292.807865][T13013]  ? __fget_files+0x2a/0x420
[ 3292.807886][T13013]  ? __fget_files+0x2a/0x420
[ 3292.807910][T13013]  __sys_sendmsg+0x20a/0x360
[ 3292.807937][T13013]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3292.807993][T13013]  ? do_syscall_64+0xb6/0x230
[ 3292.808021][T13013]  do_syscall_64+0xf3/0x230
[ 3292.808046][T13013]  ? clear_bhb_loop+0x45/0xa0
[ 3292.808067][T13013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3292.808086][T13013] RIP: 0033:0x7f7c1a78d169
[ 3292.808103][T13013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3292.808120][T13013] RSP: 002b:00007f7c1b66d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3292.808141][T13013] RAX: ffffffffffffffda RBX: 00007f7c1a9a5fa0 RCX: 00007f7c1a78d169
[ 3292.808155][T13013] RDX: 0000000020000010 RSI: 0000200000001000 RDI: 0000000000000003
[ 3292.808168][T13013] RBP: 00007f7c1b66d090 R08: 0000000000000000 R09: 0000000000000000
[ 3292.808180][T13013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3292.808191][T13013] R13: 0000000000000000 R14: 00007f7c1a9a5fa0 R15: 00007f7c1aacfa28
[ 3292.808214][T13013]  </TASK>
[ 3293.151132][T29146] usb 1-1: USB disconnect, device number 47
[ 3293.237858][T13016] FAULT_INJECTION: forcing a failure.
[ 3293.237858][T13016] name failslab, interval 1, probability 0, space 0, times 0
[ 3293.259693][T13016] CPU: 0 UID: 0 PID: 13016 Comm: syz.3.10672 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3293.259721][T13016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3293.259733][T13016] Call Trace:
[ 3293.259835][T13016]  <TASK>
[ 3293.259845][T13016]  dump_stack_lvl+0x241/0x360
[ 3293.259872][T13016]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3293.259893][T13016]  ? __pfx__printk+0x10/0x10
[ 3293.259915][T13016]  ? __pfx___might_resched+0x10/0x10
[ 3293.259935][T13016]  should_fail_ex+0x424/0x570
[ 3293.259957][T13016]  should_failslab+0xac/0x100
[ 3293.259981][T13016]  __kmalloc_noprof+0xdf/0x4d0
[ 3293.259993][T13016]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[ 3293.260012][T13016]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 3293.260033][T13016]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 3293.260057][T13016]  tomoyo_path_number_perm+0x245/0x790
[ 3293.260073][T13016]  ? tomoyo_path_number_perm+0x215/0x790
[ 3293.260089][T13016]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 3293.260107][T13016]  ? ksys_write+0x24e/0x2d0
[ 3293.260128][T13016]  ? __lock_acquire+0xad5/0xd80
[ 3293.260150][T13016]  ? __fget_files+0x2a/0x420
[ 3293.260164][T13016]  ? __fget_files+0x2a/0x420
[ 3293.260179][T13016]  ? __fget_files+0x2a/0x420
[ 3293.260195][T13016]  security_file_ioctl+0xc6/0x2a0
[ 3293.260209][T13016]  __se_sys_ioctl+0x46/0x160
[ 3293.260234][T13016]  do_syscall_64+0xf3/0x230
[ 3293.260255][T13016]  ? clear_bhb_loop+0x45/0xa0
[ 3293.260272][T13016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3293.260286][T13016] RIP: 0033:0x7f129b78d169
[ 3293.260300][T13016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3293.260312][T13016] RSP: 002b:00007f129c51b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3293.260328][T13016] RAX: ffffffffffffffda RBX: 00007f129b9a5fa0 RCX: 00007f129b78d169
[ 3293.260338][T13016] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[ 3293.260347][T13016] RBP: 00007f129c51b090 R08: 0000000000000000 R09: 0000000000000000
[ 3293.260356][T13016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3293.260365][T13016] R13: 0000000000000000 R14: 00007f129b9a5fa0 R15: 00007f129bacfa28
[ 3293.260382][T13016]  </TASK>
[ 3293.260390][T13016] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 3293.519037][T13021] netlink: 'syz.0.10673': attribute type 32 has an invalid length.
[ 3293.555986][T13027] FAULT_INJECTION: forcing a failure.
[ 3293.555986][T13027] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3293.594439][T13027] CPU: 1 UID: 0 PID: 13027 Comm: syz.1.10675 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3293.594470][T13027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3293.594483][T13027] Call Trace:
[ 3293.594491][T13027]  <TASK>
[ 3293.594500][T13027]  dump_stack_lvl+0x241/0x360
[ 3293.594538][T13027]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3293.594568][T13027]  ? __pfx__printk+0x10/0x10
[ 3293.594637][T13027]  should_fail_ex+0x424/0x570
[ 3293.594669][T13027]  _copy_from_user+0x2d/0xb0
[ 3293.594694][T13027]  move_addr_to_kernel+0x7f/0x170
[ 3293.594727][T13027]  __sys_sendto+0x26a/0x4c0
[ 3293.594754][T13027]  ? __pfx___sys_sendto+0x10/0x10
[ 3293.594786][T13027]  ? __fget_files+0x2a/0x420
[ 3293.594813][T13027]  ? ksys_write+0x275/0x2d0
[ 3293.594845][T13027]  __x64_sys_sendto+0xde/0x100
[ 3293.594871][T13027]  do_syscall_64+0xf3/0x230
[ 3293.594900][T13027]  ? clear_bhb_loop+0x45/0xa0
[ 3293.594925][T13027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3293.594944][T13027] RIP: 0033:0x7f7c1a78d169
[ 3293.594962][T13027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3293.594979][T13027] RSP: 002b:00007f7c1b66d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 3293.594999][T13027] RAX: ffffffffffffffda RBX: 00007f7c1a9a5fa0 RCX: 00007f7c1a78d169
[ 3293.595014][T13027] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 3293.595025][T13027] RBP: 00007f7c1b66d090 R08: 0000200000000240 R09: 000000000000001c
[ 3293.595038][T13027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3293.595050][T13027] R13: 0000000000000000 R14: 00007f7c1a9a5fa0 R15: 00007f7c1aacfa28
[ 3293.595076][T13027]  </TASK>
[ 3293.774335][    C1] vkms_vblank_simulate: vblank timer overrun
[ 3294.421690][T13041] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10680'.
[ 3294.438023][T13042] FAULT_INJECTION: forcing a failure.
[ 3294.438023][T13042] name failslab, interval 1, probability 0, space 0, times 0
[ 3294.463572][T13042] CPU: 0 UID: 0 PID: 13042 Comm: syz.1.10681 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3294.463602][T13042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3294.463615][T13042] Call Trace:
[ 3294.463623][T13042]  <TASK>
[ 3294.463631][T13042]  dump_stack_lvl+0x241/0x360
[ 3294.463665][T13042]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3294.463693][T13042]  ? __pfx__printk+0x10/0x10
[ 3294.463721][T13042]  ? __pfx___might_resched+0x10/0x10
[ 3294.463755][T13042]  should_fail_ex+0x424/0x570
[ 3294.463784][T13042]  should_failslab+0xac/0x100
[ 3294.463814][T13042]  kmem_cache_alloc_noprof+0x78/0x390
[ 3294.463843][T13042]  ? prepare_creds+0x31/0x640
[ 3294.463871][T13042]  ? percpu_ref_get_many+0x19/0x140
[ 3294.463903][T13042]  prepare_creds+0x31/0x640
[ 3294.463930][T13042]  copy_creds+0x109/0x9c0
[ 3294.463960][T13042]  copy_process+0x9ec/0x3d10
[ 3294.463998][T13042]  ? __pfx_copy_process+0x10/0x10
[ 3294.464026][T13042]  kernel_clone+0x242/0x930
[ 3294.464047][T13042]  ? vfs_write+0xb29/0xd10
[ 3294.464072][T13042]  ? __pfx_kernel_clone+0x10/0x10
[ 3294.464099][T13042]  ? __mutex_unlock_slowpath+0x229/0x800
[ 3294.464132][T13042]  __x64_sys_clone+0x268/0x2e0
[ 3294.464154][T13042]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 3294.464183][T13042]  ? __pfx___x64_sys_clone+0x10/0x10
[ 3294.464204][T13042]  ? __fget_files+0x2a/0x420
[ 3294.464238][T13042]  ? do_syscall_64+0xb6/0x230
[ 3294.464267][T13042]  do_syscall_64+0xf3/0x230
[ 3294.464292][T13042]  ? clear_bhb_loop+0x45/0xa0
[ 3294.464313][T13042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3294.464336][T13042] RIP: 0033:0x7f7c1a78d169
[ 3294.464354][T13042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3294.464388][T13042] RSP: 002b:00007f7c1b66cfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 3294.464411][T13042] RAX: ffffffffffffffda RBX: 00007f7c1a9a5fa0 RCX: 00007f7c1a78d169
[ 3294.464427][T13042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 3294.464440][T13042] RBP: 00007f7c1b66d090 R08: 0000000000000000 R09: 0000000000000000
[ 3294.464454][T13042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3294.464467][T13042] R13: 0000000000000000 R14: 00007f7c1a9a5fa0 R15: 00007f7c1aacfa28
[ 3294.464494][T13042]  </TASK>
[ 3294.745699][T13044] netlink: 40 bytes leftover after parsing attributes in process `syz.3.10679'.
[ 3294.968162][T13055] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3295.043704][T13055] bond29: entered promiscuous mode
[ 3295.049173][T13055] bond29: entered allmulticast mode
[ 3295.055277][T13055] 8021q: adding VLAN 0 to HW filter on device bond29
[ 3295.333276][T13062] netlink: 48 bytes leftover after parsing attributes in process `syz.1.10687'.
[ 3295.484957][T13066] FAULT_INJECTION: forcing a failure.
[ 3295.484957][T13066] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3295.584033][T13066] CPU: 0 UID: 0 PID: 13066 Comm: syz.1.10688 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3295.584061][T13066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3295.584073][T13066] Call Trace:
[ 3295.584080][T13066]  <TASK>
[ 3295.584087][T13066]  dump_stack_lvl+0x241/0x360
[ 3295.584119][T13066]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3295.584145][T13066]  ? __pfx__printk+0x10/0x10
[ 3295.584174][T13066]  should_fail_ex+0x424/0x570
[ 3295.584202][T13066]  _copy_to_user+0x31/0xb0
[ 3295.584223][T13066]  simple_read_from_buffer+0xc4/0x170
[ 3295.584252][T13066]  proc_fail_nth_read+0x1ef/0x260
[ 3295.584275][T13066]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3295.584296][T13066]  ? rw_verify_area+0x246/0x630
[ 3295.584317][T13066]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3295.584338][T13066]  vfs_read+0x21f/0xb90
[ 3295.584378][T13066]  ? __pfx___mutex_lock+0x10/0x10
[ 3295.584406][T13066]  ? __pfx_vfs_read+0x10/0x10
[ 3295.584425][T13066]  ? __fget_files+0x2a/0x420
[ 3295.584440][T13066]  ? __fget_files+0x39d/0x420
[ 3295.584454][T13066]  ? __fget_files+0x2a/0x420
[ 3295.584472][T13066]  ksys_read+0x19d/0x2d0
[ 3295.584491][T13066]  ? __pfx_ksys_read+0x10/0x10
[ 3295.584512][T13066]  ? do_syscall_64+0xb6/0x230
[ 3295.584534][T13066]  do_syscall_64+0xf3/0x230
[ 3295.584554][T13066]  ? clear_bhb_loop+0x45/0xa0
[ 3295.584571][T13066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3295.584586][T13066] RIP: 0033:0x7f7c1a78bb7c
[ 3295.584604][T13066] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 3295.584617][T13066] RSP: 002b:00007f7c1b66d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3295.584634][T13066] RAX: ffffffffffffffda RBX: 00007f7c1a9a5fa0 RCX: 00007f7c1a78bb7c
[ 3295.584652][T13066] RDX: 000000000000000f RSI: 00007f7c1b66d0a0 RDI: 0000000000000004
[ 3295.584661][T13066] RBP: 00007f7c1b66d090 R08: 0000000000000000 R09: 0000000000000000
[ 3295.584671][T13066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3295.584680][T13066] R13: 0000000000000000 R14: 00007f7c1a9a5fa0 R15: 00007f7c1aacfa28
[ 3295.584699][T13066]  </TASK>
[ 3296.314261][T29942] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[ 3296.334003][ T5878] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 3296.485485][ T5878] usb 4-1: Using ep0 maxpacket: 16
[ 3296.497574][T29942] usb 2-1: not running at top speed; connect to a high speed hub
[ 3296.521204][ T5878] usb 4-1: config 0 has an invalid interface number: 215 but max is 0
[ 3296.531798][T29942] usb 2-1: config 1 interface 0 altsetting 5 endpoint 0x1 has invalid maxpacket 1023, setting to 64
[ 3296.542937][ T5878] usb 4-1: config 0 has an invalid descriptor of length 34, skipping remainder of the config
[ 3296.554119][T29942] usb 2-1: config 1 interface 0 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 3296.567496][ T5878] usb 4-1: config 0 has no interface number 0
[ 3296.585783][ T5878] usb 4-1: config 0 interface 215 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 3296.605650][T29942] usb 2-1: config 1 interface 0 has no altsetting 0
[ 3296.626932][T29942] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 3296.637717][ T5878] usb 4-1: New USB device found, idVendor=10cf, idProduct=5503, bcdDevice=ea.9f
[ 3296.655008][T29942] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3296.677149][ T5878] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3296.686192][T29942] usb 2-1: Product: syz
[ 3296.690525][T29942] usb 2-1: Manufacturer: ᐉ
[ 3296.695666][ T5878] usb 4-1: Product: syz
[ 3296.700010][ T5878] usb 4-1: Manufacturer: syz
[ 3296.705376][T29942] usb 2-1: SerialNumber: syz
[ 3296.710156][ T5878] usb 4-1: SerialNumber: syz
[ 3296.718137][T13077] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 3296.728978][ T5878] usb 4-1: config 0 descriptor??
[ 3296.740582][ T5878] vmk80xx 4-1:0.215: driver 'vmk80xx' failed to auto-configure device.
[ 3296.954516][ T5878] usb 4-1: USB disconnect, device number 7
[ 3297.072751][T29942] usb 2-1: USB disconnect, device number 5
[ 3297.097599][T13099] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3297.155383][T13099] bond41: entered promiscuous mode
[ 3297.162255][T13099] bond41: entered allmulticast mode
[ 3297.172829][T13099] 8021q: adding VLAN 0 to HW filter on device bond41
[ 3297.343684][T13110] FAULT_INJECTION: forcing a failure.
[ 3297.343684][T13110] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3297.414332][T13110] CPU: 0 UID: 0 PID: 13110 Comm: syz.0.10699 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3297.414364][T13110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3297.414379][T13110] Call Trace:
[ 3297.414388][T13110]  <TASK>
[ 3297.414397][T13110]  dump_stack_lvl+0x241/0x360
[ 3297.414452][T13110]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3297.414483][T13110]  ? __pfx__printk+0x10/0x10
[ 3297.414520][T13110]  should_fail_ex+0x424/0x570
[ 3297.414553][T13110]  _copy_to_iter+0x1f6/0x1c90
[ 3297.414576][T13110]  ? _raw_spin_unlock_irqrestore+0x90/0x140
[ 3297.414602][T13110]  ? lockdep_hardirqs_on+0x9d/0x150
[ 3297.414631][T13110]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[ 3297.414661][T13110]  ? __pfx__copy_to_iter+0x10/0x10
[ 3297.414680][T13110]  ? remove_wait_queue+0x33/0x130
[ 3297.414715][T13110]  ? tipc_wait_for_rcvmsg+0x54a/0x6a0
[ 3297.414751][T13110]  __skb_datagram_iter+0x101/0x940
[ 3297.414783][T13110]  ? __local_bh_enable_ip+0x168/0x200
[ 3297.414804][T13110]  ? __pfx_simple_copy_to_iter+0x10/0x10
[ 3297.414839][T13110]  skb_copy_datagram_iter+0xd1/0x250
[ 3297.414872][T13110]  tipc_recvmsg+0x7f1/0x13d0
[ 3297.414912][T13110]  ? __pfx_tipc_recvmsg+0x10/0x10
[ 3297.414948][T13110]  ? aa_sock_msg_perm+0x91/0x160
[ 3297.414974][T13110]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[ 3297.415002][T13110]  ? __pfx_tipc_recvmsg+0x10/0x10
[ 3297.415032][T13110]  sock_recvmsg+0x22f/0x280
[ 3297.415054][T13110]  ____sys_recvmsg+0x1c8/0x480
[ 3297.415087][T13110]  ? __pfx_____sys_recvmsg+0x10/0x10
[ 3297.415147][T13110]  do_recvmmsg+0x428/0xab0
[ 3297.415183][T13110]  ? __pfx_do_recvmmsg+0x10/0x10
[ 3297.415223][T13110]  ? rcu_read_lock_any_held+0xbb/0x160
[ 3297.415258][T13110]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 3297.415288][T13110]  ? vfs_write+0xb29/0xd10
[ 3297.415322][T13110]  ? ksys_write+0x24e/0x2d0
[ 3297.415349][T13110]  ? __mutex_unlock_slowpath+0x229/0x800
[ 3297.415386][T13110]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 3297.415414][T13110]  ? __fget_files+0x2a/0x420
[ 3297.415445][T13110]  __x64_sys_recvmmsg+0x1ab/0x260
[ 3297.415475][T13110]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 3297.415508][T13110]  ? do_syscall_64+0xb6/0x230
[ 3297.415539][T13110]  do_syscall_64+0xf3/0x230
[ 3297.415568][T13110]  ? clear_bhb_loop+0x45/0xa0
[ 3297.415591][T13110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3297.415612][T13110] RIP: 0033:0x7f5d1258d169
[ 3297.415629][T13110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3297.415648][T13110] RSP: 002b:00007f5d134ca038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 3297.415671][T13110] RAX: ffffffffffffffda RBX: 00007f5d127a5fa0 RCX: 00007f5d1258d169
[ 3297.415686][T13110] RDX: 0000000000000001 RSI: 00002000000003c0 RDI: 0000000000000003
[ 3297.415700][T13110] RBP: 00007f5d134ca090 R08: 0000000000000000 R09: 0000000000000000
[ 3297.415713][T13110] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 3297.415726][T13110] R13: 0000000000000000 R14: 00007f5d127a5fa0 R15: 00007f5d128cfa28
[ 3297.415751][T13110]  </TASK>
[ 3298.359810][T13137] FAULT_INJECTION: forcing a failure.
[ 3298.359810][T13137] name failslab, interval 1, probability 0, space 0, times 0
[ 3298.372707][T13137] CPU: 0 UID: 0 PID: 13137 Comm: syz.3.10707 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3298.372734][T13137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3298.372747][T13137] Call Trace:
[ 3298.372754][T13137]  <TASK>
[ 3298.372762][T13137]  dump_stack_lvl+0x241/0x360
[ 3298.372797][T13137]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3298.372824][T13137]  ? __pfx__printk+0x10/0x10
[ 3298.372853][T13137]  ? __pfx___might_resched+0x10/0x10
[ 3298.372880][T13137]  should_fail_ex+0x424/0x570
[ 3298.372910][T13137]  should_failslab+0xac/0x100
[ 3298.372940][T13137]  __kmalloc_noprof+0xdf/0x4d0
[ 3298.372957][T13137]  ? __kmalloc_cache_noprof+0x236/0x370
[ 3298.372974][T13137]  ? alloc_pipe_info+0x1ff/0x4d0
[ 3298.373003][T13137]  alloc_pipe_info+0x1ff/0x4d0
[ 3298.373027][T13137]  splice_direct_to_actor+0xac3/0xc90
[ 3298.373051][T13137]  ? aa_file_perm+0x3f1/0xf60
[ 3298.373075][T13137]  ? __pfx_aa_file_perm+0x10/0x10
[ 3298.373094][T13137]  ? __pfx_direct_splice_actor+0x10/0x10
[ 3298.373117][T13137]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 3298.373145][T13137]  do_splice_direct+0x281/0x3d0
[ 3298.373179][T13137]  ? __pfx_do_splice_direct+0x10/0x10
[ 3298.373202][T13137]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 3298.373218][T13137]  ? bpf_lsm_file_permission+0x9/0x10
[ 3298.373242][T13137]  ? rw_verify_area+0x246/0x630
[ 3298.373262][T13137]  do_sendfile+0x582/0x8c0
[ 3298.373281][T13137]  ? __pfx_do_sendfile+0x10/0x10
[ 3298.373296][T13137]  ? __fget_files+0x2a/0x420
[ 3298.373315][T13137]  __se_sys_sendfile64+0x17e/0x1e0
[ 3298.373340][T13137]  ? __pfx___se_sys_sendfile64+0x10/0x10
[ 3298.373366][T13137]  ? do_syscall_64+0xb6/0x230
[ 3298.373390][T13137]  do_syscall_64+0xf3/0x230
[ 3298.373412][T13137]  ? clear_bhb_loop+0x45/0xa0
[ 3298.373429][T13137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3298.373444][T13137] RIP: 0033:0x7f129b78d169
[ 3298.373458][T13137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3298.373471][T13137] RSP: 002b:00007f12995d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3298.373489][T13137] RAX: ffffffffffffffda RBX: 00007f129b9a6160 RCX: 00007f129b78d169
[ 3298.373501][T13137] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000008
[ 3298.373510][T13137] RBP: 00007f12995d5090 R08: 0000000000000000 R09: 0000000000000000
[ 3298.373520][T13137] R10: 000000008000fb00 R11: 0000000000000246 R12: 0000000000000001
[ 3298.373530][T13137] R13: 0000000000000000 R14: 00007f129b9a6160 R15: 00007f129bacfa28
[ 3298.373566][T13137]  </TASK>
[ 3298.694055][ T6836] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[ 3298.845837][ T6836] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3298.856166][ T6836] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3298.868113][ T6836] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3298.878611][ T6836] usb 2-1: config 0 descriptor??
[ 3298.886125][ T6836] pwc: Askey VC010 type 2 USB webcam detected.
[ 3299.165487][T13131] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3299.187672][T13131] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3299.510037][T13142] FAULT_INJECTION: forcing a failure.
[ 3299.510037][T13142] name failslab, interval 1, probability 0, space 0, times 0
[ 3299.523071][T13142] CPU: 0 UID: 0 PID: 13142 Comm: syz.2.10709 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3299.523100][T13142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3299.523113][T13142] Call Trace:
[ 3299.523121][T13142]  <TASK>
[ 3299.523130][T13142]  dump_stack_lvl+0x241/0x360
[ 3299.523161][T13142]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3299.523189][T13142]  ? __pfx__printk+0x10/0x10
[ 3299.523213][T13142]  ? __pfx___might_resched+0x10/0x10
[ 3299.523236][T13142]  should_fail_ex+0x424/0x570
[ 3299.523262][T13142]  should_failslab+0xac/0x100
[ 3299.523288][T13142]  __kmalloc_noprof+0xdf/0x4d0
[ 3299.523302][T13142]  ? __kmalloc_cache_noprof+0x236/0x370
[ 3299.523317][T13142]  ? alloc_pipe_info+0x1ff/0x4d0
[ 3299.523353][T13142]  alloc_pipe_info+0x1ff/0x4d0
[ 3299.523400][T13142]  splice_direct_to_actor+0xac3/0xc90
[ 3299.523426][T13142]  ? aa_file_perm+0x3f1/0xf60
[ 3299.523452][T13142]  ? __pfx_aa_file_perm+0x10/0x10
[ 3299.523472][T13142]  ? __pfx_direct_splice_actor+0x10/0x10
[ 3299.523498][T13142]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 3299.523528][T13142]  do_splice_direct+0x281/0x3d0
[ 3299.523555][T13142]  ? __pfx_do_splice_direct+0x10/0x10
[ 3299.523580][T13142]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 3299.523597][T13142]  ? bpf_lsm_file_permission+0x9/0x10
[ 3299.523624][T13142]  ? rw_verify_area+0x246/0x630
[ 3299.523645][T13142]  do_sendfile+0x582/0x8c0
[ 3299.523665][T13142]  ? __pfx_do_sendfile+0x10/0x10
[ 3299.523681][T13142]  ? __fget_files+0x2a/0x420
[ 3299.523702][T13142]  __se_sys_sendfile64+0x17e/0x1e0
[ 3299.523729][T13142]  ? __pfx___se_sys_sendfile64+0x10/0x10
[ 3299.523757][T13142]  ? do_syscall_64+0xb6/0x230
[ 3299.523782][T13142]  do_syscall_64+0xf3/0x230
[ 3299.523804][T13142]  ? clear_bhb_loop+0x45/0xa0
[ 3299.523823][T13142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3299.523840][T13142] RIP: 0033:0x7f98df18d169
[ 3299.523855][T13142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3299.523869][T13142] RSP: 002b:00007f98dff48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3299.523890][T13142] RAX: ffffffffffffffda RBX: 00007f98df3a6160 RCX: 00007f98df18d169
[ 3299.523906][T13142] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006
[ 3299.523918][T13142] RBP: 00007f98dff48090 R08: 0000000000000000 R09: 0000000000000000
[ 3299.523931][T13142] R10: 000000008000fb00 R11: 0000000000000246 R12: 0000000000000001
[ 3299.523943][T13142] R13: 0000000000000000 R14: 00007f98df3a6160 R15: 00007f98df4cfa28
[ 3299.523967][T13142]  </TASK>
[ 3299.875038][ T6836] pwc: recv_control_msg error -71 req 02 val 2700
[ 3299.885197][ T6836] pwc: recv_control_msg error -71 req 02 val 2c00
[ 3300.202709][ T6836] pwc: recv_control_msg error -71 req 04 val 1000
[ 3300.264298][ T6836] pwc: recv_control_msg error -71 req 04 val 1300
[ 3300.284398][ T6836] pwc: recv_control_msg error -71 req 04 val 1400
[ 3300.324008][ T6836] pwc: recv_control_msg error -71 req 02 val 2000
[ 3300.348938][ T6836] pwc: recv_control_msg error -71 req 02 val 2100
[ 3300.394039][ T6836] pwc: recv_control_msg error -71 req 04 val 1500
[ 3300.414396][ T6836] pwc: recv_control_msg error -71 req 02 val 2500
[ 3300.451871][T13144] netlink: 'syz.3.10710': attribute type 4 has an invalid length.
[ 3300.456591][ T6836] pwc: recv_control_msg error -71 req 02 val 2400
[ 3300.505106][ T6836] pwc: recv_control_msg error -71 req 02 val 2600
[ 3300.514954][ T6836] pwc: recv_control_msg error -71 req 02 val 2900
[ 3300.540209][ T6836] pwc: recv_control_msg error -71 req 02 val 2800
[ 3300.596522][ T6836] pwc: recv_control_msg error -71 req 04 val 1100
[ 3300.635309][ T6836] pwc: recv_control_msg error -71 req 04 val 1200
[ 3300.667342][ T6836] pwc: Registered as video103.
[ 3300.668362][T13150] FAULT_INJECTION: forcing a failure.
[ 3300.668362][T13150] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 3300.673309][ T6836] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input106
[ 3300.742061][T13150] CPU: 1 UID: 0 PID: 13150 Comm: syz.3.10713 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3300.742093][T13150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3300.742107][T13150] Call Trace:
[ 3300.742115][T13150]  <TASK>
[ 3300.742124][T13150]  dump_stack_lvl+0x241/0x360
[ 3300.742162][T13150]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3300.742191][T13150]  ? __pfx__printk+0x10/0x10
[ 3300.742235][T13150]  should_fail_ex+0x424/0x570
[ 3300.742266][T13150]  prepare_alloc_pages+0x1dd/0x5c0
[ 3300.742299][T13150]  __alloc_frozen_pages_noprof+0x181/0x7b0
[ 3300.742329][T13150]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3300.742356][T13150]  ? is_bpf_text_address+0x26/0x2a0
[ 3300.742382][T13150]  ? is_bpf_text_address+0x26/0x2a0
[ 3300.742407][T13150]  ? kernel_text_address+0xa7/0xe0
[ 3300.742442][T13150]  alloc_pages_mpol+0x339/0x690
[ 3300.742478][T13150]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3300.742512][T13150]  ? stack_trace_save+0x11a/0x1d0
[ 3300.742543][T13150]  alloc_pages_noprof+0x121/0x190
[ 3300.742564][T13150]  get_free_pages_noprof+0xc/0x30
[ 3300.742589][T13150]  kasan_populate_vmalloc_pte+0x38/0xe0
[ 3300.742617][T13150]  __apply_to_page_range+0x808/0xde0
[ 3300.742644][T13150]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 3300.742675][T13150]  ? __pfx___apply_to_page_range+0x10/0x10
[ 3300.742697][T13150]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 3300.742733][T13150]  alloc_vmap_area+0x1d48/0x2410
[ 3300.742770][T13150]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 3300.742792][T13150]  ? __kasan_kmalloc+0x9d/0xb0
[ 3300.742821][T13150]  ? __kmalloc_cache_node_noprof+0x26a/0x3c0
[ 3300.742845][T13150]  ? copy_process+0x5dc/0x3d10
[ 3300.742865][T13150]  __get_vm_area_node+0x1c8/0x2d0
[ 3300.742891][T13150]  __vmalloc_node_range_noprof+0x349/0x1390
[ 3300.742916][T13150]  ? copy_process+0x5dc/0x3d10
[ 3300.742935][T13150]  ? mod_objcg_state+0x127/0x930
[ 3300.742968][T13150]  ? percpu_ref_get_many+0x19/0x140
[ 3300.743000][T13150]  ? percpu_ref_get_many+0x19/0x140
[ 3300.743033][T13150]  ? __memcg_slab_post_alloc_hook+0x20f/0x7e0
[ 3300.743063][T13150]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 3300.743089][T13150]  ? rcu_is_watching+0x15/0xb0
[ 3300.743114][T13150]  ? arch_dup_task_struct+0x5a/0xe0
[ 3300.743138][T13150]  ? __asan_memcpy+0x40/0x70
[ 3300.743164][T13150]  dup_task_struct+0x444/0x8c0
[ 3300.743185][T13150]  ? copy_process+0x5dc/0x3d10
[ 3300.743211][T13150]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3300.743239][T13150]  copy_process+0x5dc/0x3d10
[ 3300.743277][T13150]  ? __pfx_copy_process+0x10/0x10
[ 3300.743308][T13150]  kernel_clone+0x242/0x930
[ 3300.743330][T13150]  ? vfs_write+0xb29/0xd10
[ 3300.743355][T13150]  ? __pfx_kernel_clone+0x10/0x10
[ 3300.743383][T13150]  ? __mutex_unlock_slowpath+0x229/0x800
[ 3300.743415][T13150]  __x64_sys_clone+0x268/0x2e0
[ 3300.743438][T13150]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 3300.743468][T13150]  ? __pfx___x64_sys_clone+0x10/0x10
[ 3300.743489][T13150]  ? __fget_files+0x2a/0x420
[ 3300.743523][T13150]  ? do_syscall_64+0xb6/0x230
[ 3300.743552][T13150]  do_syscall_64+0xf3/0x230
[ 3300.743578][T13150]  ? clear_bhb_loop+0x45/0xa0
[ 3300.743601][T13150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3300.743620][T13150] RIP: 0033:0x7f129b78d169
[ 3300.743639][T13150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3300.743658][T13150] RSP: 002b:00007f129c51afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 3300.743691][T13150] RAX: ffffffffffffffda RBX: 00007f129b9a5fa0 RCX: 00007f129b78d169
[ 3300.743707][T13150] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 3300.743718][T13150] RBP: 00007f129c51b090 R08: 0000000000000000 R09: 0000000000000000
[ 3300.743730][T13150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3300.743742][T13150] R13: 0000000000000000 R14: 00007f129b9a5fa0 R15: 00007f129bacfa28
[ 3300.743766][T13150]  </TASK>
[ 3301.201579][ T6836] usb 2-1: USB disconnect, device number 6
[ 3301.211735][T13150] syz.3.10713: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 3301.231785][T13150] CPU: 1 UID: 0 PID: 13150 Comm: syz.3.10713 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3301.231806][T13150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3301.231816][T13150] Call Trace:
[ 3301.231822][T13150]  <TASK>
[ 3301.231828][T13150]  dump_stack_lvl+0x241/0x360
[ 3301.231855][T13150]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3301.231875][T13150]  ? __pfx__printk+0x10/0x10
[ 3301.231894][T13150]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[ 3301.231916][T13150]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[ 3301.231942][T13150]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[ 3301.231964][T13150]  warn_alloc+0x27c/0x410
[ 3301.231981][T13150]  ? kasan_quarantine_put+0xdc/0x230
[ 3301.231999][T13150]  ? lockdep_hardirqs_on+0x9d/0x150
[ 3301.232019][T13150]  ? __pfx_warn_alloc+0x10/0x10
[ 3301.232036][T13150]  ? kfree+0x198/0x430
[ 3301.232056][T13150]  ? __get_vm_area_node+0x1e1/0x2d0
[ 3301.232072][T13150]  ? copy_process+0x5dc/0x3d10
[ 3301.232087][T13150]  ? __get_vm_area_node+0x1e1/0x2d0
[ 3301.232105][T13150]  __vmalloc_node_range_noprof+0x36e/0x1390
[ 3301.232122][T13150]  ? mod_objcg_state+0x127/0x930
[ 3301.232143][T13150]  ? percpu_ref_get_many+0x19/0x140
[ 3301.232166][T13150]  ? percpu_ref_get_many+0x19/0x140
[ 3301.232188][T13150]  ? __memcg_slab_post_alloc_hook+0x20f/0x7e0
[ 3301.232209][T13150]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 3301.232227][T13150]  ? rcu_is_watching+0x15/0xb0
[ 3301.232244][T13150]  ? arch_dup_task_struct+0x5a/0xe0
[ 3301.232260][T13150]  ? __asan_memcpy+0x40/0x70
[ 3301.232278][T13150]  dup_task_struct+0x444/0x8c0
[ 3301.232292][T13150]  ? copy_process+0x5dc/0x3d10
[ 3301.232306][T13150]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3301.232325][T13150]  copy_process+0x5dc/0x3d10
[ 3301.232352][T13150]  ? __pfx_copy_process+0x10/0x10
[ 3301.232374][T13150]  kernel_clone+0x242/0x930
[ 3301.232390][T13150]  ? vfs_write+0xb29/0xd10
[ 3301.232408][T13150]  ? __pfx_kernel_clone+0x10/0x10
[ 3301.232429][T13150]  ? __mutex_unlock_slowpath+0x229/0x800
[ 3301.232452][T13150]  __x64_sys_clone+0x268/0x2e0
[ 3301.232469][T13150]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 3301.232490][T13150]  ? __pfx___x64_sys_clone+0x10/0x10
[ 3301.232506][T13150]  ? __fget_files+0x2a/0x420
[ 3301.232532][T13150]  ? do_syscall_64+0xb6/0x230
[ 3301.232552][T13150]  do_syscall_64+0xf3/0x230
[ 3301.232572][T13150]  ? clear_bhb_loop+0x45/0xa0
[ 3301.232588][T13150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3301.232602][T13150] RIP: 0033:0x7f129b78d169
[ 3301.232615][T13150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3301.232628][T13150] RSP: 002b:00007f129c51afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 3301.232644][T13150] RAX: ffffffffffffffda RBX: 00007f129b9a5fa0 RCX: 00007f129b78d169
[ 3301.232654][T13150] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 3301.232663][T13150] RBP: 00007f129c51b090 R08: 0000000000000000 R09: 0000000000000000
[ 3301.232672][T13150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3301.232681][T13150] R13: 0000000000000000 R14: 00007f129b9a5fa0 R15: 00007f129bacfa28
[ 3301.232699][T13150]  </TASK>
[ 3301.232705][T13150] Mem-Info:
[ 3301.562637][T13150] active_anon:35076 inactive_anon:1 isolated_anon:0
[ 3301.562637][T13150]  active_file:21596 inactive_file:39760 isolated_file:0
[ 3301.562637][T13150]  unevictable:820 dirty:764 writeback:0
[ 3301.562637][T13150]  slab_reclaimable:6532 slab_unreclaimable:166356
[ 3301.562637][T13150]  mapped:31502 shmem:27114 pagetables:1979
[ 3301.562637][T13150]  sec_pagetables:0 bounce:0
[ 3301.562637][T13150]  kernel_misc_reclaimable:0
[ 3301.562637][T13150]  free:1197729 free_pcp:310 free_cma:0
[ 3301.623479][T13152] netlink: 20 bytes leftover after parsing attributes in process `syz.4.10714'.
[ 3301.625626][T13150] Node 0 active_anon:140404kB inactive_anon:4kB active_file:86148kB inactive_file:158968kB unevictable:1744kB isolated(anon):0kB isolated(file):0kB mapped:126108kB dirty:3056kB writeback:0kB shmem:106920kB shmem_thp:2048kB shmem_pmdmapped:2048kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:17212kB pagetables:7916kB sec_pagetables:0kB all_unreclaimable? no
[ 3301.682658][T13150] Node 1 active_anon:0kB inactive_anon:0kB active_file:236kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 3301.718360][T13150] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3301.747925][T13150] lowmem_reserve[]: 0 2489 2490 2490 2490
[ 3301.758106][T13150] Node 0 DMA32 free:862448kB boost:0kB min:34168kB low:42708kB high:51248kB reserved_highatomic:0KB active_anon:140364kB inactive_anon:4kB active_file:86148kB inactive_file:158644kB unevictable:1744kB writepending:3056kB present:3129332kB managed:2549548kB mlocked:0kB bounce:0kB free_pcp:4720kB local_pcp:692kB free_cma:0kB
[ 3301.815053][T13150] lowmem_reserve[]: 0 0 0 0 0
[ 3301.819863][T13150] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:324kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3301.864809][T13150] lowmem_reserve[]: 0 0 0 0 0
[ 3301.874403][T13150] Node 1 Normal free:3907036kB boost:0kB min:55728kB low:69660kB high:83592kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:236kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3301.944121][T13150] lowmem_reserve[]: 0 0 0 0 0
[ 3301.959145][T13150] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 3301.983981][ T5878] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[ 3302.004256][T13150] Node 0 DMA32: 0*4kB 57*8kB (ME) 276*16kB (UME) 367*32kB (UME) 211*64kB (UME) 127*128kB (UME) 67*256kB (UME) 33*512kB (UME) 17*1024kB (UME) 6*2048kB (UME) 182*4096kB (UM) = 855592kB
[ 3302.051049][T13150] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 3302.068418][T13150] Node 1 Normal: 263*4kB (UM) 88*8kB (UME) 58*16kB (UME) 215*32kB (UME) 100*64kB (UME) 39*128kB (UME) 20*256kB (UM) 14*512kB (UM) 3*1024kB (UM) 2*2048kB (M) 944*4096kB (M) = 3907036kB
[ 3302.094032][T13150] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 3302.104248][T13162] FAULT_INJECTION: forcing a failure.
[ 3302.104248][T13162] name failslab, interval 1, probability 0, space 0, times 0
[ 3302.118254][T13162] CPU: 0 UID: 0 PID: 13162 Comm: syz.2.10717 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3302.118297][T13162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3302.118311][T13162] Call Trace:
[ 3302.118319][T13162]  <TASK>
[ 3302.118327][T13162]  dump_stack_lvl+0x241/0x360
[ 3302.118362][T13162]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3302.118391][T13162]  ? __pfx__printk+0x10/0x10
[ 3302.118421][T13162]  ? __pfx___might_resched+0x10/0x10
[ 3302.118448][T13162]  should_fail_ex+0x424/0x570
[ 3302.118479][T13162]  should_failslab+0xac/0x100
[ 3302.118511][T13162]  __kmalloc_cache_noprof+0x73/0x370
[ 3302.118530][T13162]  ? resv_map_alloc+0x88/0x2c0
[ 3302.118558][T13162]  resv_map_alloc+0x88/0x2c0
[ 3302.118586][T13162]  hugetlbfs_get_inode+0x60/0x690
[ 3302.118609][T13162]  ? security_capable+0xbc/0x2d0
[ 3302.118632][T13162]  ? in_group_p+0x84/0x1f0
[ 3302.118660][T13162]  hugetlb_file_setup+0x269/0x5c0
[ 3302.118685][T13162]  newseg+0x444/0xc20
[ 3302.118713][T13162]  ? __pfx_newseg+0x10/0x10
[ 3302.118736][T13162]  ? ksys_write+0x24e/0x2d0
[ 3302.118762][T13162]  ipcget+0x1f9/0xe60
[ 3302.118791][T13162]  ? __fget_files+0x2a/0x420
[ 3302.118813][T13162]  ? __pfx_ipcget+0x10/0x10
[ 3302.118832][T13162]  ? __fget_files+0x2a/0x420
[ 3302.118858][T13162]  __x64_sys_shmget+0x18d/0x210
[ 3302.118884][T13162]  ? __pfx___x64_sys_shmget+0x10/0x10
[ 3302.118911][T13162]  ? do_syscall_64+0xb6/0x230
[ 3302.118941][T13162]  do_syscall_64+0xf3/0x230
[ 3302.118968][T13162]  ? clear_bhb_loop+0x45/0xa0
[ 3302.118990][T13162]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3302.119010][T13162] RIP: 0033:0x7f98df18d169
[ 3302.119027][T13162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3302.119044][T13162] RSP: 002b:00007f98dff8a038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d
[ 3302.119066][T13162] RAX: ffffffffffffffda RBX: 00007f98df3a5fa0 RCX: 00007f98df18d169
[ 3302.119082][T13162] RDX: 0000000000000b80 RSI: 0000000000001000 RDI: 0000000000000000
[ 3302.119095][T13162] RBP: 00007f98dff8a090 R08: 0000000000000000 R09: 0000000000000000
[ 3302.119108][T13162] R10: 0000200000ff2000 R11: 0000000000000246 R12: 0000000000000001
[ 3302.119128][T13162] R13: 0000000000000000 R14: 00007f98df3a5fa0 R15: 00007f98df4cfa28
[ 3302.119153][T13162]  </TASK>
[ 3302.119312][T13150] Node 0 hugepages_total=7 hugepages_free=1 hugepages_surp=3 hugepages_size=2048kB
[ 3302.120979][ T5878] usb 1-1: device descriptor read/64, error -71
[ 3302.131345][ T6836] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[ 3302.208452][T13150] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 3302.394249][T13150] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3302.404587][T13150] 90558 total pagecache pages
[ 3302.409294][T13150] 1 pages in swap cache
[ 3302.434009][T13150] Free swap  = 124760kB
[ 3302.442778][T13150] Total swap = 124996kB
[ 3302.470315][T13150] 2097051 pages RAM
[ 3302.484032][T13150] 0 pages HighMem/MovableOnly
[ 3302.495807][T13150] 427942 pages reserved
[ 3302.500012][T13150] 0 pages cma reserved
[ 3302.584019][ T5878] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[ 3302.604696][T13170] netlink: 'syz.4.10716': attribute type 32 has an invalid length.
[ 3302.763258][ T6836] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3302.777080][ T6836] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3302.793937][ T6836] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3302.814120][ T5878] usb 1-1: device descriptor read/64, error -71
[ 3302.817072][ T6836] usb 2-1: config 0 descriptor??
[ 3302.870463][ T6836] pwc: Askey VC010 type 2 USB webcam detected.
[ 3302.924308][ T5878] usb usb1-port1: attempt power cycle
[ 3302.954913][T29146] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[ 3302.969855][T29146] hid-generic 0000:0000:0000.002C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 3303.125431][ T6836] pwc: send_video_command error -71
[ 3303.160096][ T6836] pwc: Failed to set video mode CIF@30 fps; return code = -71
[ 3303.229563][ T6836] Philips webcam 2-1:0.0: probe with driver Philips webcam failed with error -71
[ 3303.263596][ T6836] usb 2-1: USB disconnect, device number 7
[ 3303.264212][ T5878] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[ 3303.343728][ T5878] usb 1-1: device descriptor read/8, error -71
[ 3303.594211][ T5878] usb 1-1: new high-speed USB device number 51 using dummy_hcd
[ 3303.628316][ T5878] usb 1-1: device descriptor read/8, error -71
[ 3303.644372][T29146] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[ 3303.664061][ T6836] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[ 3303.746332][ T5878] usb usb1-port1: unable to enumerate USB device
[ 3303.799178][T29146] usb 4-1: config 8 has an invalid interface number: 177 but max is 0
[ 3303.824070][T29146] usb 4-1: config 8 has no interface number 0
[ 3303.859238][T29146] usb 4-1: config 8 interface 177 altsetting 9 endpoint 0x8 has invalid maxpacket 1023, setting to 64
[ 3303.876506][T29146] usb 4-1: config 8 interface 177 has no altsetting 0
[ 3303.887956][ T6836] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3303.920206][T29146] usb 4-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[ 3303.929455][ T6836] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 3303.952170][T29146] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3303.961867][ T6836] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3303.976041][ T6836] usb 2-1: config 0 descriptor??
[ 3303.983792][T13177] raw-gadget.4 gadget.3: fail, usb_ep_enable returned -22
[ 3304.010766][ T6836] pwc: Askey VC010 type 2 USB webcam detected.
[ 3304.201681][T29146] usb 4-1: string descriptor 0 read error: -71
[ 3304.226228][    C0] ir_toy 4-1:8.177: out urb status: -71
[ 3304.476212][ T6836] pwc: recv_control_msg error -32 req 02 val 2b00
[ 3304.676572][ T6836] pwc: recv_control_msg error -32 req 02 val 2700
[ 3304.754096][T29146] ir_toy 4-1:8.177: could not write reset command: -110
[ 3304.764517][T29146] ir_toy 4-1:8.177: probe with driver ir_toy failed with error -110
[ 3304.773219][ T6836] pwc: recv_control_msg error -32 req 02 val 2c00
[ 3304.793964][ T6836] pwc: recv_control_msg error -32 req 04 val 1000
[ 3304.809347][T29146] usb 4-1: USB disconnect, device number 8
[ 3304.824189][ T6836] pwc: recv_control_msg error -32 req 04 val 1300
[ 3304.857159][ T6836] pwc: recv_control_msg error -32 req 04 val 1400
[ 3304.874919][ T6836] pwc: recv_control_msg error -32 req 02 val 2000
[ 3304.893225][ T6836] pwc: recv_control_msg error -32 req 02 val 2100
[ 3304.911973][ T6836] pwc: recv_control_msg error -32 req 04 val 1500
[ 3304.929231][ T6836] pwc: recv_control_msg error -32 req 02 val 2500
[ 3304.946133][ T6836] pwc: recv_control_msg error -32 req 02 val 2400
[ 3305.174164][ T6836] pwc: recv_control_msg error -32 req 02 val 2900
[ 3305.194144][ T6836] pwc: recv_control_msg error -32 req 02 val 2800
[ 3305.401825][ T6836] pwc: recv_control_msg error -71 req 04 val 1200
[ 3305.409977][ T6836] pwc: Registered as video103.
[ 3305.419042][ T6836] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input108
[ 3305.432993][ T6836] usb 2-1: USB disconnect, device number 8
[ 3305.523076][T13206] netlink: 20 bytes leftover after parsing attributes in process `syz.2.10730'.
[ 3305.624052][T13209] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10731'.
[ 3305.796819][T13220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3305.834087][T13220] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3306.121349][T13230] FAULT_INJECTION: forcing a failure.
[ 3306.121349][T13230] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3306.136592][T13230] CPU: 1 UID: 0 PID: 13230 Comm: syz.1.10737 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3306.136622][T13230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3306.136636][T13230] Call Trace:
[ 3306.136644][T13230]  <TASK>
[ 3306.136652][T13230]  dump_stack_lvl+0x241/0x360
[ 3306.136690][T13230]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3306.136719][T13230]  ? __pfx__printk+0x10/0x10
[ 3306.136753][T13230]  should_fail_ex+0x424/0x570
[ 3306.136785][T13230]  strncpy_from_user+0x36/0x280
[ 3306.136814][T13230]  getname_flags+0xf0/0x530
[ 3306.136838][T13230]  __x64_sys_renameat2+0xba/0xe0
[ 3306.136871][T13230]  do_syscall_64+0xf3/0x230
[ 3306.136900][T13230]  ? clear_bhb_loop+0x45/0xa0
[ 3306.136924][T13230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3306.136945][T13230] RIP: 0033:0x7f7c1a78d169
[ 3306.136962][T13230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3306.136992][T13230] RSP: 002b:00007f7c1b66d038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[ 3306.137013][T13230] RAX: ffffffffffffffda RBX: 00007f7c1a9a5fa0 RCX: 00007f7c1a78d169
[ 3306.137028][T13230] RDX: ffffffffffffff9c RSI: 0000200000000600 RDI: ffffffffffffff9c
[ 3306.137042][T13230] RBP: 00007f7c1b66d090 R08: 0000000000000002 R09: 0000000000000000
[ 3306.137055][T13230] R10: 0000200000000640 R11: 0000000000000246 R12: 0000000000000001
[ 3306.137067][T13230] R13: 0000000000000000 R14: 00007f7c1a9a5fa0 R15: 00007f7c1aacfa28
[ 3306.137092][T13230]  </TASK>
[ 3306.647882][T13227] netlink: 'syz.3.10736': attribute type 32 has an invalid length.
[ 3306.802265][T13245] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3306.881459][T13245] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3306.919877][ T6836] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 3307.036093][T13250] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10744'.
[ 3307.045383][T13250] netlink: 'syz.0.10744': attribute type 7 has an invalid length.
[ 3307.059723][T13250] netlink: 'syz.0.10744': attribute type 8 has an invalid length.
[ 3307.074123][ T6836] usb 4-1: device descriptor read/64, error -71
[ 3307.084689][T13250] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10744'.
[ 3307.216073][T13247] lo: left promiscuous mode
[ 3307.334072][ T6836] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 3307.494052][ T6836] usb 4-1: device descriptor read/64, error -71
[ 3307.624322][ T6836] usb usb4-port1: attempt power cycle
[ 3307.820492][T29942] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[ 3307.964071][ T6836] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 3307.983927][T29942] usb 2-1: Using ep0 maxpacket: 16
[ 3307.990257][ T6836] usb 4-1: device descriptor read/8, error -71
[ 3308.004456][T29942] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 3308.066717][T29942] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 3308.092507][T29942] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3308.104194][T29942] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3308.166552][T29942] usb 2-1: Product: syz
[ 3308.174338][T29942] usb 2-1: Manufacturer: syz
[ 3308.190787][T29942] usb 2-1: SerialNumber: syz
[ 3308.254003][ T6836] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 3308.301060][ T6836] usb 4-1: device descriptor read/8, error -71
[ 3308.374726][ T5834] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[ 3308.414553][ T6836] usb usb4-port1: unable to enumerate USB device
[ 3308.429363][T29942] usb 2-1: 0:2 : does not exist
[ 3308.444247][T29942] usb 2-1: unit 6 not found!
[ 3308.472124][T29942] usb 2-1: USB disconnect, device number 9
[ 3308.546557][ T5834] usb 1-1: Using ep0 maxpacket: 32
[ 3308.555386][ T5834] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3308.570754][ T5834] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3308.580825][ T5834] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 3308.590905][ T5834] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3308.601422][ T5834] usb 1-1: config 0 descriptor??
[ 3308.665320][ T5677] udevd[5677]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 3308.980102][   T30] audit: type=1326 audit(1743325140.586:3889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13271 comm="syz.1.10750" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c1a78d169 code=0x0
[ 3309.033993][ T5834] savu 0003:1E7D:2D5A.002D: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[ 3309.299026][T13267] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3309.310245][T13267] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3309.326970][ T5834] usb 1-1: USB disconnect, device number 52
[ 3309.750159][T13287] netlink: 20 bytes leftover after parsing attributes in process `syz.2.10754'.
[ 3309.927822][T13290] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[ 3310.091190][T13290] bond42: entered promiscuous mode
[ 3310.096747][T13290] bond42: entered allmulticast mode
[ 3310.102997][T13290] 8021q: adding VLAN 0 to HW filter on device bond42
[ 3310.203640][T13298] netlink: 'syz.0.10757': attribute type 32 has an invalid length.
[ 3311.162633][T13323] FAULT_INJECTION: forcing a failure.
[ 3311.162633][T13323] name failslab, interval 1, probability 0, space 0, times 0
[ 3311.178866][T13323] CPU: 0 UID: 0 PID: 13323 Comm: syz.0.10763 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3311.178895][T13323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3311.178908][T13323] Call Trace:
[ 3311.178915][T13323]  <TASK>
[ 3311.178924][T13323]  dump_stack_lvl+0x241/0x360
[ 3311.178958][T13323]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3311.179004][T13323]  ? __pfx__printk+0x10/0x10
[ 3311.179035][T13323]  ? __pfx___might_resched+0x10/0x10
[ 3311.179071][T13323]  should_fail_ex+0x424/0x570
[ 3311.179115][T13323]  should_failslab+0xac/0x100
[ 3311.179145][T13323]  __kmalloc_noprof+0xdf/0x4d0
[ 3311.179162][T13323]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[ 3311.179186][T13323]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 3311.179214][T13323]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 3311.179267][T13323]  tomoyo_path_number_perm+0x245/0x790
[ 3311.179291][T13323]  ? tomoyo_path_number_perm+0x215/0x790
[ 3311.179314][T13323]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 3311.179342][T13323]  ? ksys_write+0x24e/0x2d0
[ 3311.179373][T13323]  ? __lock_acquire+0xad5/0xd80
[ 3311.179416][T13323]  ? __fget_files+0x2a/0x420
[ 3311.179435][T13323]  ? __fget_files+0x2a/0x420
[ 3311.179456][T13323]  ? __fget_files+0x2a/0x420
[ 3311.179478][T13323]  security_file_ioctl+0xc6/0x2a0
[ 3311.179497][T13323]  __se_sys_ioctl+0x46/0x160
[ 3311.179523][T13323]  do_syscall_64+0xf3/0x230
[ 3311.179550][T13323]  ? clear_bhb_loop+0x45/0xa0
[ 3311.179573][T13323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3311.179592][T13323] RIP: 0033:0x7f5d1258d169
[ 3311.179608][T13323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3311.179626][T13323] RSP: 002b:00007f5d134ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3311.179648][T13323] RAX: ffffffffffffffda RBX: 00007f5d127a5fa0 RCX: 00007f5d1258d169
[ 3311.179663][T13323] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[ 3311.179675][T13323] RBP: 00007f5d134ca090 R08: 0000000000000000 R09: 0000000000000000
[ 3311.179687][T13323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3311.179699][T13323] R13: 0000000000000000 R14: 00007f5d127a5fa0 R15: 00007f5d128cfa28
[ 3311.179722][T13323]  </TASK>
[ 3311.179767][T13323] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 3311.751631][T13326] netlink: 'syz.4.10764': attribute type 3 has an invalid length.
[ 3311.799824][T13326] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.10764'.
[ 3311.869386][T13328] FAULT_INJECTION: forcing a failure.
[ 3311.869386][T13328] name failslab, interval 1, probability 0, space 0, times 0
[ 3311.885315][T13328] CPU: 0 UID: 0 PID: 13328 Comm: syz.0.10765 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3311.885345][T13328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3311.885358][T13328] Call Trace:
[ 3311.885366][T13328]  <TASK>
[ 3311.885376][T13328]  dump_stack_lvl+0x241/0x360
[ 3311.885411][T13328]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3311.885441][T13328]  ? __pfx__printk+0x10/0x10
[ 3311.885472][T13328]  ? __pfx___might_resched+0x10/0x10
[ 3311.885500][T13328]  should_fail_ex+0x424/0x570
[ 3311.885543][T13328]  should_failslab+0xac/0x100
[ 3311.885577][T13328]  __kmalloc_noprof+0xdf/0x4d0
[ 3311.885594][T13328]  ? tomoyo_realpath_from_path+0xc2/0x5e0
[ 3311.885620][T13328]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 3311.885649][T13328]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 3311.885684][T13328]  tomoyo_path2_perm+0x329/0x8e0
[ 3311.885710][T13328]  ? tomoyo_path2_perm+0x2f9/0x8e0
[ 3311.885731][T13328]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[ 3311.885755][T13328]  ? current_check_refer_path+0x873/0xf00
[ 3311.885806][T13328]  tomoyo_path_rename+0x16d/0x1f0
[ 3311.885837][T13328]  ? __pfx_tomoyo_path_rename+0x10/0x10
[ 3311.885876][T13328]  security_path_rename+0x266/0x4e0
[ 3311.885907][T13328]  do_renameat2+0x847/0x1290
[ 3311.885955][T13328]  ? __pfx_do_renameat2+0x10/0x10
[ 3311.886004][T13328]  ? getname_flags+0x1e2/0x530
[ 3311.886025][T13328]  __x64_sys_renameat2+0xce/0xe0
[ 3311.886064][T13328]  do_syscall_64+0xf3/0x230
[ 3311.886093][T13328]  ? clear_bhb_loop+0x45/0xa0
[ 3311.886116][T13328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3311.886135][T13328] RIP: 0033:0x7f5d1258d169
[ 3311.886153][T13328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3311.886170][T13328] RSP: 002b:00007f5d134ca038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[ 3311.886192][T13328] RAX: ffffffffffffffda RBX: 00007f5d127a5fa0 RCX: 00007f5d1258d169
[ 3311.886207][T13328] RDX: ffffffffffffff9c RSI: 0000200000000600 RDI: ffffffffffffff9c
[ 3311.886222][T13328] RBP: 00007f5d134ca090 R08: 0000000000000002 R09: 0000000000000000
[ 3311.886235][T13328] R10: 0000200000000640 R11: 0000000000000246 R12: 0000000000000001
[ 3311.886249][T13328] R13: 0000000000000000 R14: 00007f5d127a5fa0 R15: 00007f5d128cfa28
[ 3311.886274][T13328]  </TASK>
[ 3311.886283][T13328] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 3312.424559][T13341] FAULT_INJECTION: forcing a failure.
[ 3312.424559][T13341] name failslab, interval 1, probability 0, space 0, times 0
[ 3312.474476][T13341] CPU: 1 UID: 0 PID: 13341 Comm: syz.2.10769 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3312.474504][T13341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3312.474513][T13341] Call Trace:
[ 3312.474519][T13341]  <TASK>
[ 3312.474526][T13341]  dump_stack_lvl+0x241/0x360
[ 3312.474553][T13341]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3312.474575][T13341]  ? __pfx__printk+0x10/0x10
[ 3312.474597][T13341]  ? __pfx___might_resched+0x10/0x10
[ 3312.474618][T13341]  should_fail_ex+0x424/0x570
[ 3312.474641][T13341]  should_failslab+0xac/0x100
[ 3312.474666][T13341]  __kmalloc_noprof+0xdf/0x4d0
[ 3312.474679][T13341]  ? create_rule+0x70/0x370
[ 3312.474702][T13341]  create_rule+0x70/0x370
[ 3312.474724][T13341]  insert_rule+0x333/0x6a0
[ 3312.474746][T13341]  merge_tree+0x327/0x540
[ 3312.474769][T13341]  ? __pfx_merge_tree+0x10/0x10
[ 3312.474789][T13341]  ? __kasan_kmalloc+0x9d/0xb0
[ 3312.474810][T13341]  ? __kmalloc_cache_noprof+0x236/0x370
[ 3312.474824][T13341]  ? landlock_merge_ruleset+0x1c9/0x900
[ 3312.474846][T13341]  landlock_merge_ruleset+0x5e1/0x900
[ 3312.474867][T13341]  ? prepare_creds+0x47b/0x640
[ 3312.474891][T13341]  __se_sys_landlock_restrict_self+0x2ce/0x7d0
[ 3312.474916][T13341]  do_syscall_64+0xf3/0x230
[ 3312.474938][T13341]  ? clear_bhb_loop+0x45/0xa0
[ 3312.474962][T13341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3312.474977][T13341] RIP: 0033:0x7f98df18d169
[ 3312.474990][T13341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3312.475003][T13341] RSP: 002b:00007f98dff8a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[ 3312.475020][T13341] RAX: ffffffffffffffda RBX: 00007f98df3a5fa0 RCX: 00007f98df18d169
[ 3312.475031][T13341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 3312.475040][T13341] RBP: 00007f98dff8a090 R08: 0000000000000000 R09: 0000000000000000
[ 3312.475049][T13341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3312.475059][T13341] R13: 0000000000000000 R14: 00007f98df3a5fa0 R15: 00007f98df4cfa28
[ 3312.475077][T13341]  </TASK>
[ 3312.477796][T13341] ------------[ cut here ]------------
[ 3312.694695][T13341] WARNING: CPU: 1 PID: 13341 at security/landlock/domain.h:133 free_ruleset+0x1f3/0x250
[ 3312.704482][T13341] Modules linked in:
[ 3312.708399][T13341] CPU: 1 UID: 0 PID: 13341 Comm: syz.2.10769 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3312.720270][T13341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3312.730402][T13341] RIP: 0010:free_ruleset+0x1f3/0x250
[ 3312.735769][T13341] Code: 89 ff e8 a0 6b 6d fd 49 8b 1f 4c 89 ff e8 25 c4 61 fd 48 85 db 74 36 e8 2b 31 05 fd 49 89 df e9 34 ff ff ff e8 1e 31 05 fd 90 <0f> 0b 90 eb c2 e8 13 31 05 fd eb 1c bf 01 00 00 00 89 ee e8 45 35
[ 3312.755731][T13341] RSP: 0018:ffffc9001b497dd8 EFLAGS: 00010293
[ 3312.761816][T13341] RAX: ffffffff84be39d2 RBX: 0000000000000000 RCX: ffff888058298000
[ 3312.769851][T13341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 3312.777878][T13341] RBP: 1ffff11005b0d854 R08: ffffffff84bf456f R09: 1ffff11005b0d851
[ 3312.785949][T13341] R10: dffffc0000000000 R11: ffffed1005b0d852 R12: ffff88802d86c2a0
[ 3312.794009][T13341] R13: dffffc0000000000 R14: ffff88805d36e200 R15: ffff88802d86c280
[ 3312.802008][T13341] FS:  00007f98dff8a6c0(0000) GS:ffff8881250b7000(0000) knlGS:0000000000000000
[ 3312.811032][T13341] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3312.817660][T13341] CR2: 00007f98dff69d58 CR3: 0000000033ef4000 CR4: 00000000003526f0
[ 3312.825780][T13341] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3312.833768][T13341] DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 3312.842038][T13341] Call Trace:
[ 3312.845414][T13341]  <TASK>
[ 3312.848348][T13341]  ? __warn+0x165/0x4d0
[ 3312.852513][T13341]  ? free_ruleset+0x1f3/0x250
[ 3312.857334][T13341]  ? report_bug+0x2b3/0x500
[ 3312.861877][T13341]  ? free_ruleset+0x1f3/0x250
[ 3312.866605][T13341]  ? free_ruleset+0x1f3/0x250
[ 3312.871281][T13341]  ? free_ruleset+0x1f5/0x250
[ 3312.876012][T13341]  ? handle_bug+0x89/0x170
[ 3312.880435][T13341]  ? exc_invalid_op+0x1a/0x50
[ 3312.885156][T13341]  ? asm_exc_invalid_op+0x1a/0x20
[ 3312.890199][T13341]  ? landlock_log_drop_domain+0x4f/0x1b0
[ 3312.895892][T13341]  ? free_ruleset+0x1f2/0x250
[ 3312.900585][T13341]  ? free_ruleset+0x1f3/0x250
[ 3312.905468][T13341]  ? free_ruleset+0x1f2/0x250
[ 3312.910195][T13341]  landlock_merge_ruleset+0x6d8/0x900
[ 3312.915646][T13341]  ? prepare_creds+0x47b/0x640
[ 3312.920423][T13341]  __se_sys_landlock_restrict_self+0x2ce/0x7d0
[ 3312.926610][T13341]  do_syscall_64+0xf3/0x230
[ 3312.931118][T13341]  ? clear_bhb_loop+0x45/0xa0
[ 3312.935857][T13341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3312.941775][T13341] RIP: 0033:0x7f98df18d169
[ 3312.946244][T13341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3312.966052][T13341] RSP: 002b:00007f98dff8a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[ 3312.974506][T13341] RAX: ffffffffffffffda RBX: 00007f98df3a5fa0 RCX: 00007f98df18d169
[ 3312.982497][T13341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 3312.990531][T13341] RBP: 00007f98dff8a090 R08: 0000000000000000 R09: 0000000000000000
[ 3312.998549][T13341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3313.006563][T13341] R13: 0000000000000000 R14: 00007f98df3a5fa0 R15: 00007f98df4cfa28
[ 3313.014596][T13341]  </TASK>
[ 3313.017625][T13341] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 3313.024912][T13341] CPU: 1 UID: 0 PID: 13341 Comm: syz.2.10769 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[ 3313.036711][T13341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 3313.046760][T13341] Call Trace:
[ 3313.050041][T13341]  <TASK>
[ 3313.053018][T13341]  dump_stack_lvl+0x241/0x360
[ 3313.057704][T13341]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3313.062932][T13341]  ? __pfx__printk+0x10/0x10
[ 3313.067539][T13341]  ? _printk+0xd5/0x120
[ 3313.071693][T13341]  ? vscnprintf+0x5d/0x90
[ 3313.076105][T13341]  panic+0x349/0x880
[ 3313.080000][T13341]  ? __warn+0x174/0x4d0
[ 3313.084164][T13341]  ? __pfx_panic+0x10/0x10
[ 3313.088609][T13341]  __warn+0x344/0x4d0
[ 3313.092596][T13341]  ? free_ruleset+0x1f3/0x250
[ 3313.097281][T13341]  report_bug+0x2b3/0x500
[ 3313.101615][T13341]  ? free_ruleset+0x1f3/0x250
[ 3313.106298][T13341]  ? free_ruleset+0x1f3/0x250
[ 3313.111003][T13341]  ? free_ruleset+0x1f5/0x250
[ 3313.115694][T13341]  handle_bug+0x89/0x170
[ 3313.119963][T13341]  exc_invalid_op+0x1a/0x50
[ 3313.124477][T13341]  asm_exc_invalid_op+0x1a/0x20
[ 3313.129327][T13341] RIP: 0010:free_ruleset+0x1f3/0x250
[ 3313.134613][T13341] Code: 89 ff e8 a0 6b 6d fd 49 8b 1f 4c 89 ff e8 25 c4 61 fd 48 85 db 74 36 e8 2b 31 05 fd 49 89 df e9 34 ff ff ff e8 1e 31 05 fd 90 <0f> 0b 90 eb c2 e8 13 31 05 fd eb 1c bf 01 00 00 00 89 ee e8 45 35
[ 3313.154218][T13341] RSP: 0018:ffffc9001b497dd8 EFLAGS: 00010293
[ 3313.160286][T13341] RAX: ffffffff84be39d2 RBX: 0000000000000000 RCX: ffff888058298000
[ 3313.168264][T13341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 3313.176254][T13341] RBP: 1ffff11005b0d854 R08: ffffffff84bf456f R09: 1ffff11005b0d851
[ 3313.184238][T13341] R10: dffffc0000000000 R11: ffffed1005b0d852 R12: ffff88802d86c2a0
[ 3313.192217][T13341] R13: dffffc0000000000 R14: ffff88805d36e200 R15: ffff88802d86c280
[ 3313.200206][T13341]  ? landlock_log_drop_domain+0x4f/0x1b0
[ 3313.205853][T13341]  ? free_ruleset+0x1f2/0x250
[ 3313.210567][T13341]  ? free_ruleset+0x1f2/0x250
[ 3313.215246][T13341]  landlock_merge_ruleset+0x6d8/0x900
[ 3313.220626][T13341]  ? prepare_creds+0x47b/0x640
[ 3313.225401][T13341]  __se_sys_landlock_restrict_self+0x2ce/0x7d0
[ 3313.231563][T13341]  do_syscall_64+0xf3/0x230
[ 3313.236070][T13341]  ? clear_bhb_loop+0x45/0xa0
[ 3313.240742][T13341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3313.246628][T13341] RIP: 0033:0x7f98df18d169
[ 3313.251050][T13341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3313.270675][T13341] RSP: 002b:00007f98dff8a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[ 3313.279091][T13341] RAX: ffffffffffffffda RBX: 00007f98df3a5fa0 RCX: 00007f98df18d169
[ 3313.287060][T13341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 3313.295027][T13341] RBP: 00007f98dff8a090 R08: 0000000000000000 R09: 0000000000000000
[ 3313.303009][T13341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3313.310975][T13341] R13: 0000000000000000 R14: 00007f98df3a5fa0 R15: 00007f98df4cfa28
[ 3313.318963][T13341]  </TASK>
[ 3313.322336][T13341] Kernel Offset: disabled
[ 3313.326661][T13341] Rebooting in 86400 seconds..