last executing test programs:

2m55.417172479s ago: executing program 0 (id=31):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x4040000)
r3 = memfd_create(&(0x7f00000005c0)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xb5\x01\x83y\xf3\xb2\xe6b$\a\x00\x00\x00\x00\x00\x01\x00\x00\xb7\xffg\xf5\x12oP\b\x00\x00\x00LR\xa1\x00\x00\x17\x1f$^\xe1\x00\x04\x00\x00\x00\x00\a\xff;\xeb\xf1H\xce\xe5\x19\x12\b\x01\xd9\xae>/\x05\x00\xce\xd5O\xcc\b\x9e\x19\x19#\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xdcc\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0D\x93.\xf25\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x05\x00\x00\x91\x98\x15\xec\xdb\xaa\t9\x11\xb4h$h\x0ew\x00&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{a?\xd0\xe1{\x84\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83q\xb6Pr\x83\x0e\x00\x00\x00\x00\x00\x00G\x00\x04\x00\x01\xbc\xac\x18\xba\xce\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9\r\t\xff\x06\xe7j\x9fTJ;T\xf3\xfa\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T\x826`M\x11\x1c\xb0*8\v\x1e\xcf\x03\xd3\xe8,?P\xac\x86\x13b\xa8D\x0f\x93\xab\x1c\x11\x00\xc5\x8d\x82\x00\x00\x00\x00\x00\x00\x00\x0f\x81\xf3\x05\xa3{\x96\xf9\xba\x9em\xe9\"\x03\x933P\xbb\xd6\x9b\f\xa7\x8f9\x988\tgC\xbc\xe0\xc5\xf4\xe0E%\xd9\xd8w\x00k\x042Y\xd9\xc5\xe59\xa95\xd1m\xd8hCuZYi\x10\x00\xb9\xe6\xff\x04K%yH\xe5\xf4\x8b\x03Ca8\x1e\xe9\\#\xf8O\fw\xd9\xf5cF\xcc\x1a2ex\xb4\x0f\a\x00\x97\x81.\x02\x04m\xfbT2\xd4\"\x1e\xf0\x16\x0f\x97\xe6j}J\xca\xb8)f\xd5\xfd>\x9bU\xb0\x03Zt0\xc0b\xad\xef@o\xc1\xd6\x17T\xf6\xc20\xe2\x89\xf6L\x131\x9c\t\xa7\x80\x1b:\xbb\x04\xd7\xd1\x06\xa0\xe9\xbah\xb6\xb2\xea/{Q\xca\x14\x13\x9ajWt\xc9\xecd\r\xd5)\x1d\xaf\n\xc0\xc1\x1d}DY\x95&\xe7\xf4U\xff\xcd&\a\x9f\x1bg\xe5|~\xc1\xc5n\x12%ur\xa1\x9e`\xc2\x01\b,\x18\xaf\xccD\xdeag\xc6\xf3\xd6\x94\x9d\xae\x8bl\xee\x7fu\xe5bu\x84\x04\xb3@\xa1\xf7\xc6\x13\xf9I\xfa\x12\xfc\x96\",aT\xfd\"\x01\x92\xb1\xbf\x8a\x15\x88\xfd\x8f\x88\x87\x82\x9c:L\xd2\xb8\xfa5\x066\x82\xf3_LUr\xfa\xd2\x99d \x97c9G\x99\xe3\xcc$\x96cu\x97\xe7\xc7a\tm\xe8F\xc7j\xf8\x98\x81\xe7\xf7\xab3F\xf4u\xdaav\xd21A\xa3\xd8\v\x99HG\xdfx\x1cPl\t#\xc1\x8e\xddW\x00\x00\x00\x8fw\xa9A\xf7m\xeec\xb6\\\xa4T\xeej\xe2\xba\xb2V\xacc\xc6|\xae]\xdb\x10\xb3\x80z\xd5\n\xa3u\xfb\b\x03\xe5\xca;\xe5uH<\x9a\x12\x84(\x9f\xd2\xe1k\x955;J\xa4\x81Lm\x90\x1a\xfdI}\xb0\xa1\xfa9\x17\xd1\xa2\xc7\xca\x98\xaeS\x92Ew`\xd2\x02\xda\xc9\xd4\xea\x02\x1d\xd3\xd5\x81\xdb\xd9~\xd6-:\xee\xe8\t\xf7\xe6\xf1\x88\x86\xb0\x04\x9ep\xb1\x93\x16\xf9\xdb\x15\x8a\xa3h<\xaf\xa0\xb5\xb0\x05ir\xff\xff\xff\xff\x00\x00\x00\x00\x83\x91\xad\x11\xf4\xbcz\x9b\x8bp]o\au\x175I\x1d\xe2\x97\xb6\x06\xdc\x14\x9b>\xd7F\xdb?\xc7%0n/\xf5S\xb5\xe8\xa5\xd1\xddN\xf9ir\xd1r\xf4L\t3\xadDz\\\xf4`\x13\xf7)\x91w\a\xcc+E\xdd\xe9\xdbb\x9c\xff\x98\x03\xb7\x0e=\xba\xa3um\xde\xff$|\xb7\x86j+\x00\x00\x00\x00\x00\x00\x00Z\xef\xd6\xf4Zs\xfc\ro\x03\xabB\x18\xdc\a\xe3\r\x00\x00\x00\x00\x00\x00\x8a\x96\xe8\xc4\xc3g\xcf\xf3\xac\x90\x1a\x9b\xe4\xb1pf\x9f\xb1\x01\xb3\x95\xcf\xce\xc4\xe5\xcc\xb0\x83\xf8\xca#\x9f\xdd\xfe\a\x8e\'R\x1dC\xd1\x005\x85\x0eX\xa8>\xb6\x04*\xd7\x01\xaf\xbc\xd5q2B\f\xf9\x10m\x15[^\xee\xafS\xf4}\xf5\x9c7_F\xf6\xcfQ\x8dWHZM:\x7f\xb3&\x06\xaaE\xfd\x1e.\xbf\xad\xeb\xa2S\xec\n\xcf\x80\xebH\x81\x133:(\x8ew\xa9$\x90\xa2K$-\xb6\bj2Cg\x9e\x88\xfa\xcb\xfa\xa5y\xa1\x85_\xbc:\xff\xbd\xba\x87\xaf\xfai\v\v\t<Q\xce|\xe7x\x87x\x02\xeci\xa3\x06\xf4\xefD%\x95T\x9b|\n\x01}\x15\x81](\xef\x18A\xa0\xe4<3\xa0\xed\xf26\xbe\xb1\xb4\f*\x17<\xe3\x04', 0xb)
fallocate(r3, 0x0, 0x0, 0x400001)
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x380})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
r5 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000001, 0x30, 0xffffffffffffffff, 0x0)
r6 = userfaultfd(0x1)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000280))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000000)="1c681411f76a3c24465b018264941cb24cb8000016001a0000a80f1507000020150000000000000000000000000000000000000000000000000000000000000c00", 0x0, 0x48)
readv(r6, &(0x7f00000001c0)=[{&(0x7f0000000400)=""/4096, 0x1000}], 0x1)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000300)="e40382e88c19aa1cef9ef9a6a8a811114a73c4ae4c1aa24d2d7420a031516af10645443ba1ea91a31e618c729fb36241fc852c10fafba42f8d4d04868000", 0x0, 0x48)
ioctl$UFFDIO_POISON(r6, 0xc020aa08, &(0x7f0000000180)={{&(0x7f00007c0000/0x3000)=nil, 0x3000}})
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0xff}, 0x7}, 0x1c)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000180)={0x0, 0x7fff}, 0x8)

2m47.763294525s ago: executing program 0 (id=46):
socket$nl_route(0x10, 0x3, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x2, 0x300)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xd, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}}, @call={0x85, 0x0, 0x0, 0xf}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000fffdffff0000000000000000850000004100000085000000d000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$xdp(0x2c, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r3], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0), 0x0, 0x1})

2m46.078394285s ago: executing program 0 (id=52):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff11, 0x0, 0xffffffffffffffff, 0xfffffffffffffea5}, 0x48) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000000)={0xfffffffb, 0x0, {<r1=>0x0}, {0xffffffffffffffff}, 0x1, 0x1})
getpgrp(r1)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_open_procfs(r2, &(0x7f0000000180)='net/ip_tables_targets\x00')
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) (async)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$netlink(r4, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000000c40)=ANY=[@ANYBLOB="1401000027000100000000000000000001"], 0x114}], 0x1}, 0x0) (async)
r5 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r5, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r5, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x3, 0x0, @vifc_lcl_addr=@local, @local}, 0x10) (async)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r7, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x0, @empty}, {0x2, 0x4e20, @loopback}, {0x2, 0x0, @broadcast}, 0xc0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x1, 0x2}) (async)
r8 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r8, 0x0, 0xca, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x0, @vifc_lcl_addr=@local, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10) (async)
setsockopt$inet_mreq(r6, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) (async)
syz_emit_ethernet(0x2a, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0xfb, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @echo_reply={0x0, 0x0, 0x0, 0x64, 0xd2}}}}}, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r8, 0x0, 0xd2, &(0x7f0000000200)={@empty, @multicast2=0xe0000300, 0x0, "028a3f6c58b274e6d8451697efe42811ee1df06e9264f7d866b1970548fc3c7b", 0xb2, 0xfffffff7, 0x4, 0x40000006}, 0x3c) (async)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) (async)
writev(r3, &(0x7f00000019c0)=[{&(0x7f0000000740)='?', 0x1}], 0x1) (async)
quotactl_fd$Q_GETINFO(r0, 0xffffffff80000500, 0x0, 0x0)

2m45.623395465s ago: executing program 0 (id=56):
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$sndpcmc(&(0x7f00000003c0), 0x0, 0x0)
mmap(&(0x7f000000a000/0x1000)=nil, 0x1000, 0x2000009, 0x13, r0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x20081, 0x0)
io_setup(0x8, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup(r1)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0x36b78000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000180)={0x9, 0x7df, 0x6e3, 0x5, 0x4})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x4c, 0x0, &(0x7f0000000480)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
move_pages(r4, 0x5, &(0x7f00000001c0)=[&(0x7f0000a45000/0x1000)=nil, &(0x7f00001e4000/0x1000)=nil, &(0x7f000010e000/0x3000)=nil, &(0x7f0000814000/0x1000)=nil, &(0x7f00000bd000/0x1000)=nil], &(0x7f00000002c0)=[0x0], &(0x7f0000000300)=[0x0], 0x0)
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r7)
execve(&(0x7f0000000400)='./file0/file0\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x10, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="18fbffff090000000000ff721da5f3ff95003099b1000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80}, 0x94)

2m44.165333819s ago: executing program 0 (id=59):
r0 = syz_usb_connect(0x2, 0xcbd, &(0x7f0000001180)={{0x12, 0x1, 0x0, 0x6b, 0x54, 0x4c, 0x8, 0x19d2, 0x1264, 0xa36c, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xcab, 0x4, 0x0, 0x0, 0xa8, 0x0, [{{0x9, 0x4, 0x1a, 0x7, 0x9, 0xff, 0xff, 0xff, 0x3, [], [{{0x9, 0x5, 0x2, 0x1e, 0x10, 0x6, 0x0, 0x4, [@generic={0x6, 0x23, "6ea822e1"}]}}, {{0x9, 0x5, 0x0, 0x10, 0x40, 0xfc, 0x2, 0x40}}, {{0x9, 0x5, 0xc, 0x1, 0x40, 0x5, 0xd2, 0xd7}}, {{0x9, 0x5, 0x80, 0x0, 0x20, 0x0, 0x3, 0x4, [@generic={0x34, 0x22, "2752e39fb41a3897fcfa92e9eb079a7a4bda0ed6201a40fccb5ede64aa4be778c628ed2fb92ff04e58d91617c5ed008f7cf6"}, @generic={0x61, 0x4, "1eaa4d5c5c24571cb3f974b280ff0f79a5c462e53f4727f912afcd2e863ad1f9f446a959431f1ceb648e170cc3c1582a442425e011972c71a471ef911ad10453205612f7b9b16a4b7f013acfc12058439792a695267918883853193194a3be"}]}}, {{0x9, 0x5, 0xe, 0x0, 0x8, 0x8, 0x1, 0x2, [@generic={0xe0, 0xb, "8069f4728ae3ed2b6dd010a09b7cd5d2aa9603d8e97a46afd6d250ce548d3bf42db0dfd317f50ba383d2e77f5498287a9dd642a0b3b608521ec4767e4c6f53658bafb6bd53d021280a339c67faba3a5c3376986d64893c24738b129e3e632c2e477f6e5b51694fcb9d158e63d81700d4ed46824f2a41ebb99bc96b719dceffbd86c7d6a45d8d2090e5a5d0cb9d48bb4956bc90eaf21799d078b808fb35ea3364d05f70349b17bb5b5bd1d4407d6ad13fb28afcd95efeb99d6188ce1aca518c8e7fc926171234782c9509ae3c00e5fe26c0d0bc7226409521514677fb83c7"}, @generic={0xcf, 0x22, "e96e1d4dba1079604ea9a06f39536281c7de4f0e334fc90e3192bb95a625551daa137842151deaebaf74872911f4834901d0cba6d7bfedca4dc7500c1d6d061e7bef0ad14ddfe65a2b7bc7575dd1648cd4fb27c21822a04507d19d7eddc465e6e8ee2ce883f3fd93a0d1b70f79cab44fc2ba26460f76b50e62c79afc785302b1ad5eeeb54c74fd4c69fcc0f4f7116598fe09344d298ba26ac406335aa465de8578d706a55479c15f26027e148f11e3d018bdf3c2f413bba60d250bbee4e3cd91ccb4080fb4038e1ed63bff4baa"}]}}, {{0x9, 0x5, 0x7, 0x0, 0x10, 0x9, 0x4, 0xe}}, {{0x9, 0x5, 0xa, 0x0, 0x240, 0x0, 0x26, 0x23}}, {{0x9, 0x5, 0x3, 0x10, 0x20, 0x8, 0x6, 0x44, [@generic={0x7f, 0x7, "e45af6a244e61fa7b4432402e283a46343e4d3e405ca98710f9a2fb6bd773fabb5c299226f507ef6992377f5c65f7ee5203bab8204aea17a308b37e6abf28be00c5d9dd562cd496183313e83a001394197ac9fc70f07713b82db1bcc7d24cae562dd76fb581ce7d7969c7c23a0e815c4b2b135d1e3e204f922f18f29ee"}]}}, {{0x9, 0x5, 0x2, 0x13, 0x8, 0x8, 0x5, 0x3}}]}}, {{0x9, 0x4, 0xd7, 0x9, 0xc, 0xe, 0x1, 0x0, 0x5, [@uac_as={[@format_type_i_continuous={0xb, 0x24, 0x2, 0x1, 0x40, 0x2, 0xe7, 0x9f, "f22b", "89"}]}], [{{0x9, 0x5, 0xd, 0x0, 0x10, 0xcb, 0xf8, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x9, 0x8cd}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x0, 0x6}]}}, {{0x9, 0x5, 0x6, 0x10, 0x8, 0x8, 0x3, 0xd}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x40, 0x0, 0x5, [@generic={0xda, 0xb, "6dc32b9c82e0bb3a603f05d6037f206f203488e67cc12b008532a4bf1f690006dffc30bd9d3e15f72ffa1a68a4f58c8fac3fd0b70d11b27e0b94b39b722214b75ee00e26ea5c080f5900df8a4df80773e3dd9d321eb2d0769673c2736dc1a82534e0d7e6e1ebbe45c6b0fde457e5b626504cb86af75ca0cb1d58dc6078d26b244adcc039b0361e12ebb53416ab7e95e3b1c75f173fc684fa8e720745eed2f3b4a960eb0ae60ecda0a2c6698429abc040fd8da066a1f792374b7b86ccacb07e4080c69c153f4e7c9b9ac6f4bfe22738c490a1041e8949c121"}, @generic={0x53, 0xa, "84cff0dfbd076b1845f3e130454d4dfbd51a8424ae27bcc0f1fc28fd7d905860a10e5d7099dcd30f3cc50dea0792fbb1b6ad6ee05f1c022b8bde359ef97b75e6cf9f1aa92128442fae27add54a5750acf8"}]}}, {{0x9, 0x5, 0xd, 0x2, 0x400, 0x8, 0x8, 0x7, [@generic={0x6d, 0x31, "57612b40d87626c91ca85bf8a250e45483b4599a6ce464fdeb96f32ae31883851706b2d0663d247394a98d0b9ad52664029c80af95b14ba38ee16e6992c29d5ab19a789efc87c9a4a0145be166fd58a47927a443ec06f9ff4c2d7d693617e34807ecd1d2153f864c6dee23"}, @generic={0xd3, 0x31, "d558009a9edb78ec9d50a8e32c72a416c6e3c2741da81e0c2d51bc5c67424a0eb2a740a14c7a847d71e4f0804514b3258002c7f88e50475ba5acd56d57a5b729c18aedff7cc5d4a2735c6123b7031a96ce3bce08d5127a7d5e7fd62bc8db7ab78770a47a32105597de9287f36ec84a7d5e9af4acad4d242238bd0e579645f0f90eb2c7f31800e327be9a89566d1d055d61e9337a6ccd5c5507c54751c09cb8a03116dbf546393ddce4df1e120f5408e6fe5a8c4e6503ca9324e88056987d4600cc390a32b00241e95dc3a7e6d9e30e3133"}]}}, {{0x9, 0x5, 0xf, 0x3, 0x20, 0x1, 0xc, 0x27}}, {{0x9, 0x5, 0xf, 0x0, 0x400, 0x1, 0x6f, 0x5, [@generic={0x9d, 0x23, "55acd701df013e5e594bdd8e410a0159e56b449083e161d1bd15f89512950023e5687bcbff4de6b7798e052c72b8cf4dd5fb0c4dcd008ff033b08d379e7ebc469b3e899bafa0529de08a8e1df6419aa21c827d091fecea5873d3d1887a2a9a942488bd508f5f870d3e5f8edf41faa9223fa65d6c36135736ec210b30574c78a1f1852f3366297c59cb6b4bf1c5751e8309c3e8246454eb2797d6d0"}, @generic={0xd9, 0x0, "f78e0146563f033094d3a5e39e11fc35706203bb6a1043bf5b6ad3ecabdd942769c52754c09b698b0169c396c2f2361688ed94de7707954b73cd4f139c78737d9348f8d832dd74aa074b1b57b33918abf16dd39d1aa83f9f020cdbe0b9e600c9d6b1bde210996d9e666b817461e7328fe86f755b909cb6fd55d2a633e21e5c3a4b689d35fd080514aa1cf1955ec37e8d1b805e13063ab78a8ece8b79dfa7f27a5bac686fa0786dc58bb127d579f7a8e4ece76cc822446964c34d023b9e5fa6cf6e3fd9706237f80b1b1372d4f5af170509783d95a312ac"}]}}, {{0x9, 0x5, 0xd, 0x0, 0x3ff, 0x4, 0x4, 0xd8}}, {{0x9, 0x5, 0x1, 0x3, 0x8, 0x0, 0xe, 0x8, [@generic={0x96, 0x5, "235eeced8f0553c1f31b9572c6f8ca7534e32f641e473ddbd03e557a2fa8c6624ec3964cd955585db25a072d3bc47204949a815b7ecc3d9372c46b1b60a80cd90c3f8ce3facf5e8d7d9796c51fcaa0ea6e3fe1cf4daaaf20658e1bc59b370e269f52774b670f554ed017c6500da26ccb04e494badfd1d3dd338300a0d5d68741fbf3c9ec9de3ce12d8ba655d8f4927fb5c842d99"}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x9, 0x100}]}}, {{0x9, 0x5, 0x80, 0x10, 0x40, 0x2, 0x2, 0x2, [@uac_iso={0x7, 0x25, 0x1, 0x5daf3a995ad2cd56, 0x2, 0xff80}]}}, {{0x9, 0x5, 0xc, 0x0, 0x3ff, 0x3, 0x3, 0x2, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x0, 0x4}, @generic={0xb, 0x8, "ca7afc5402da925fb5"}]}}, {{0x9, 0x5, 0x9, 0x10, 0x400, 0x57, 0x2, 0x7, [@generic={0xef, 0x23, "9772a62dc354b64de75ef9b147306b5846a978389257b33d9f972e2e7c5e1f0476adf9eb6977213923b4d258312fabcc09ad0502d30563329db54305235be6aadc76b2eff0bfe5a39e46a94aa4c5b7aab8e75c98cdd38bc340b1d19da9e075d9931cdcacafed66b97fd0bbcbfeca2eaf927cd0e515cc2f34c53149570abd7ff387e784722b9931907bb234bfc3d7489f2af54684cb53a6b000dfe77fc534e41a091fe579e7305a73ac3da9ea44c1918ae1ad8427801147a9420bb2ba37a66ce6ebb95fcef407497b5d39021b38cfa35d8af365ea25f502eec5e155b1f3a4ab1f4276185cbd001cef565e239097"}]}}, {{0x9, 0x5, 0x0, 0x4, 0x10, 0x98, 0x5, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xc, 0x4985}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x4, 0x5}]}}]}}, {{0x9, 0x4, 0xae, 0x0, 0x6, 0x79, 0x13, 0xb7, 0xfb, [], [{{0x9, 0x5, 0xf, 0x4, 0x3ff, 0x6, 0x10, 0x9}}, {{0x9, 0x5, 0x6, 0x0, 0x3ff, 0x0, 0xde, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x3, 0x9}]}}, {{0x9, 0x5, 0x80, 0x10, 0x3ff, 0x2, 0x1, 0xc0, [@generic={0xe7, 0xc, "03970879b93bd65aad387ac69cc5391a5e7a1ff4d44f2ddda70eb0fb3b03ba7583c33d6dd10c7fdf3f8cdbb6563cd400f228a129775c96a2b56be8f1b7fb88dc42b909c81dcbabc2abbbcd008e4c570729435e3ac40ca459d25fee58930bd3d4dee5da4bc525311f82e0ab41f8fdfea1200671252268d0b10d33a27eff75fbfa4cd987835b10af8e1087fc462a504926693f366f4a61fc4ab9bb9fcdcf537f92ffa14faa9507f1c17e66b78afb0fcbd7b0b66433994c1d5663fbe0bf1237c9b86fa8096f98b0969575c623d531a496f11905dd5a706ad8eca81c45c94f8fbfde8dc709dd1d"}, @generic={0x64, 0x30, "d5f05f6734b6208968c9764e42f2a998c07d857e3c0732a1d0a93c7b09b64bf0e9f7002c34e05f8476bbc9e195bdecf136f7c99510aedfb7ab98cc079c5535c68ea96b7563abbc3305f099e85f72549d879648ac2fd28b6d38ee208462ef1071c842"}]}}, {{0x9, 0x5, 0x4, 0x3, 0x200, 0x6, 0x63, 0xd, [@generic={0x90, 0xb, "b79762a38cf64ce8d6f3f50f9c8f3c8c20e64729439294a701348615e0628683414f4e64b7bff1e60f956c52a31edb55185c22ebb150170c71bc96a3881d6a3cc2594d67557eb065479a8081f051c642615cbbf48dc62c25772a288934ac1defac6f1726579a63b52d50f9443311d0c016afe548456b6886039413d2d805fa207b06ea3d0dd73d3045c826c725ff"}]}}, {{0x9, 0x5, 0x4, 0x2, 0x0, 0x0, 0x40, 0x2, [@generic={0x6b, 0x22, "6c8a39b4347d2eb81c084d865c5e8563bc78042e09fb8dd009e320b6943c357c4e856d314e5e3d51bb3f93a9cedd3f7252162a6459fd8c8645db8515f8961227a7a28431abe8544701a806d960c68ac996c5f99febf03c31b8133ce1fde819d07c19c6053c39b300b1"}, @generic={0x3b, 0x0, "a17e4c78daf25a2ab2ea7ea285431d850ab33e3406a77e312eeba86fbf7d2d8ac21d62061ace9cdb460f58a18ee106e8ed05409c4673a9af36"}]}}, {{0x9, 0x5, 0xb, 0x10, 0x20, 0x2, 0xed, 0x7}}]}}, {{0x9, 0x4, 0xe, 0x8, 0x9, 0xed, 0xef, 0x68, 0x8, [@uac_as={[@as_header={0x7, 0x24, 0x1, 0x0, 0x9, 0x4}]}], [{{0x9, 0x5, 0xe, 0x10, 0x400, 0xc, 0x4, 0x0, [@generic={0x1e, 0x22, "5dddafb90ec12b0ff9c77aa4eef7bd1532becca1721639c1ba341118"}]}}, {{0x9, 0x5, 0x6, 0x10, 0x10, 0x4, 0x6, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0xa, 0x1}]}}, {{0x9, 0x5, 0xf, 0x0, 0x10, 0x7, 0x75, 0x1}}, {{0x9, 0x5, 0xc, 0x4, 0x400, 0x79, 0x0, 0x9}}, {{0x9, 0x5, 0x5, 0x0, 0x40, 0xeb, 0xff, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x3, 0x9}]}}, {{0x9, 0x5, 0x6, 0x3, 0x8, 0x0, 0x45, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0x5}]}}, {{0x9, 0x5, 0x0, 0x3, 0x10, 0x24, 0xe6, 0x3}}, {{0x9, 0x5, 0x2, 0x10, 0x210, 0x7, 0x1, 0x6}}, {{0x9, 0x5, 0xa, 0x8, 0x8, 0xd9, 0x6, 0x6}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, &(0x7f0000000000)={0x40, 0x15, 0x93, "24a80dc5e3d83d58cafa29ff192959d3be7bc448d44504a2ae8b3cecde478cd60a1ad81c0bfbfe7c1eba4af7d07be3c440786c3325474184faf73f1dbd941590b25a17717af516c56870857c2e5b41ee247ebd5f0ca416dbf90670e12ba26a21ff7dc026b9d528737917d408737c43e202858c6213576e62689bdaffffffff40a8e956166941358d9e7bfb277e367e5c3db3be"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_io_uring_setup(0x10c, &(0x7f00000000c0)={0x0, 0x8006d89, 0x400, 0x2, 0x66}, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000980)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000180)='io_uring_poll_arm\x00', r4}, 0x18)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_io_uring_submit(r2, r3, &(0x7f00000004c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x100})
io_uring_enter(r1, 0x8aa, 0x0, 0x0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)

2m41.835659515s ago: executing program 0 (id=69):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r1 = dup2(r0, r0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x40, 0xfffffffd, 0x1, 0x80000001, 0x10})

2m40.454731907s ago: executing program 4 (id=75):
ioprio_set$pid(0x1, 0x0, 0x2000)
r0 = fsopen(&(0x7f0000000340)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x86)
fchdir(r1)
syz_extract_tcp_res$synack(&(0x7f0000000080), 0x1, 0x0)
syz_emit_ethernet(0x75, &(0x7f0000000380)={@local, @random="923ce9790008", @void, {@generic={0xf9, "cdf5c1a331dd5847c7e6c46a05963d5ce5bac19413f025ac49eafb6b833b9c07625e888a31370cafa36abf251185a13238d8167105959bf136e559d33da313bb1451b5cb667aa4d993bf36b06d64eab852e596c9a88a61e31e42ee2ce4828e1c682de7ece27d48"}}}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0xa8)
sendfile(r2, r1, 0x0, 0x5)
openat(r1, &(0x7f0000000000)='./file1\x00', 0x404000, 0x8)

2m40.029814931s ago: executing program 4 (id=78):
ioprio_set$pid(0x3, 0x0, 0x0) (async)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x8140, 0x0) (async, rerun: 64)
setsockopt$IP_VS_SO_SET_ZERO(0xffffffffffffffff, 0x0, 0x48f, 0x0, 0x0) (rerun: 64)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x1) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6) (async)
pselect6(0x40, &(0x7f0000000080)={0x9, 0x101, 0xcb2, 0x6, 0x101, 0xfffffffffffffffb, 0x10, 0x1f}, 0x0, 0x0, 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (rerun: 64)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x1) (async, rerun: 64)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, 0x0) (async, rerun: 64)
futex(0x0, 0x80000000000b, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32)
r2 = socket(0x28, 0x5, 0x0) (async, rerun: 32)
timer_create(0x6, &(0x7f0000000100)={0x0, 0x41, 0x2, @thr={&(0x7f0000000300)="f1ba46bb8ab50d6bf23731d71efdabe0b36d8a24db26d60b1e2ff9c02834815bc2a36f678454a4ada394fcd1529148feb8b1f3e3580131814987995e62564a5380814d2dde2efdf8e9fb9b1bf8ee028ff2b07db3ba931532bf65baa51d665afc64bc841029c30cd32a4892cbad358b3c0c983d4585d983ae4473db77e779048e417a4723dc0de049d9c790d7b3674dad906cd4b7b6ff30a7c805b1130e5a45e8acb6cd0be114f98c21ca5946aebedbae9dee8a67ff9676f0b8df1916502b83362f018b8f7de33fe7cf2cd1c038fcb02b34", &(0x7f00000000c0)="0109fbadb7637808cf4e6ef881bf1dbe67b8f5f6a043"}}, &(0x7f0000000140))
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10) (async)
listen(r3, 0x4) (async, rerun: 64)
r4 = add_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000080)="f8", 0x1, 0xfffffffffffffffe) (rerun: 64)
keyctl$KEYCTL_WATCH_KEY(0x20, r4, 0xffffffffffffffff, 0x0)
request_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x0}, &(0x7f0000000180)='id_resolver\x00', 0x0) (async)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10) (async)
preadv2(r0, &(0x7f0000002500)=[{&(0x7f0000001580)=""/193, 0x11f}], 0x1000000000000273, 0x0, 0x0, 0x1c)

2m39.856977263s ago: executing program 4 (id=80):
unshare(0x2a020600)
socket$kcm(0x10, 0x2, 0x0)
r0 = syz_usb_connect$hid(0x3, 0x36, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = memfd_secret(0x80000)
setns(r1, 0x2000000) (fail_nth: 1)

2m39.4552419s ago: executing program 4 (id=81):
r0 = socket$key(0xf, 0x3, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x4009, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff0000/0xd000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fe9000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x4000000)
close_range(r3, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r4 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x17, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000d8fe10245b91b64a9009aa558fb6142ba3d69873d12b64b1fb047d9a15b29ec3265fe36ad3c4c0e1207efd0916aacacd84ee4d32218966e09bacc30f48285f968a50cc47d8587b09c02153c0e231c54ff6c3b7a4343cffdbf247709dc9f6a7c7e73241d561ac74134005722c86d0f99cbfed85b260b025ca2f9f4eb17fa7325c7bba2a8a738668e2203550ad4c12362f6f77c022c94fdbccb7a707929d23c2d4bea552d3c4c292fed0e2f83a5df10084b96697b3bb6b50f13aa7d94e571c8907e2c2c165116119"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r4, 0x2219, 0x7721, 0x16, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e0000000300000000000004050006"], 0x70}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001700)=ANY=[@ANYBLOB="160000000000000061b1000002"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r6, <r7=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001200)={r7, 0x0, &(0x7f0000001780)=""/4096}, 0x20)
sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a005124"], 0x40}}, 0x0)

2m37.948263322s ago: executing program 4 (id=87):
r0 = memfd_create(&(0x7f0000000000)='\x01\xfd\xae.+\xa6\x8c\x02\xea\xb6?2\x199\x94S,|x?Ue[\xbd\xe1!\x033\xbc\'#\xff\x17\x9b%\xf3[d  \x97\xf5G\x97A\xc2\xd8\xf0Uq\xe6+\xa5l\x94\xfb\x04!\xe4\xc4\xb1\xa2\x1c\xffC;\x94Q\r\xb6}\x9c\xecC\v\xcf\xeb\xe4\x9aR\xe5,\x82\x03\x00\x19\x8d\xe8\xc6\xb9\xe4\xb4\x99\x8a\x19P\xb8\x8cx\b\x99\x04R\x05\xaf\xa2\xea5\r\xcc\x1a\x9b\x00Uf\xa5\xf7\x80Tgiz\nX\b\x91\xfd0\x8e\xb6\xa3\v#\xa1\xdf\xb4\xc0\xe6\xc4\xef\xa8i\xd8\xa2\xd2(\x98\x9bA\x8f\x13\xeb\xf4b/\xef!\x8f\xf6]-\xe9k\xb62\x89gEv\x13\xf4\xc7\xb2\xf5\\\x17\x90\xb5\xa6\xa8\xb8o\x0f\xe2 \xe7\x9c$\xd7\xf2@\xf7cdv[\t\x00\x8d\xf3\xcc1\r$\x1e\xff\xf0P\xb2\x97\xb8\xbc\xeb<3\xaf\xcb\x8cP\xef\x84\x91\x87\x8b\xb5Z\xd4\'\xff\x1f\f\x016\x9dQ\xeeT\xe8\bY\x00\xb2\x06\xa6\xbel\x9b.o\xbe\x80\x9dx\xd5O\xd6h\\I\xc9\x8d\a\x1d\xc9\x0f\x82\xdbs\xc7\x83L\x9e\xa2\xd1\xb3\xac\x8d\xd8\xb4\xb4\xea\x90Q\xd8\xc7\xeb%\x8bOp\x1ab\x96\xcf\xbb\x15\xcf\xfcN\xed\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00s\xaf\xa2\x14]p+\x96\x1ei|n\xda\xee\\\xae\x96*\x82*\x14\x1f\x1d\xf8\xf8\xae\xfcH\xc4\xb3j\xe8\xcfO\xef\x0e\xafe\xb5*\x89\x18w\x96\b\x1by\xeaT\xdd\xb3g6\xbc\x85\xb2Y\xccv\x06\x00\x00\xebR\xc0\xc6\x00\xc5e\x90\xc51\x9f\v_# \b\xa5\xbcP,|\xe9\xd6s\x1f\x1f?\x00\x00\x00\xa8 \xce|df\x903\v\x02\xea.\x03X\xb5\xe4,8\xb7\xadEI\xdcA\xa7\xcc\xd7\xf9n\x1b\x95\xf8\x11Z\xe6:\x03\xce\xfe\x02\x8ctdy~_oC\x9e\xef\xf0\xa2K\xe9;\x8e:\x01\x03C\x92\xeb\x16\x1c\xbf\xbe\xef\xccUxhg\xffY\xe6\x83\xa6z\xff\x01\x9d o_{!O\xaajU\x84 \xe9\xb59r\x9cw\x18Z\xd3\xcd\x0e\xba\\\xdb\xf0\xe1\x86\t\xaf\vi\xdc\xbf?\xf5\n\xbd^\x05\xc0\xd5\x01\x1b\xd1\xa8\xc7\xad\x86\xd7\x15&\xb9]1\x05J\x96\xf0\x84\xc1\f\xa6p\x96\xb8\x1b\x13pA\x19\tf\x12\x88\xc8\x9c\xc9Cn\xd4\xa4\x85G\'+\xcc\xbf\r\xa9\x10Klb\xe5:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00G\xdf\xbb\xc0_\x99F\xf4n]\x14\xbc\xcd\xd3\x9f\x9fE\xc5\xe6\xe8Mb\xc6\x82\x82\xcc\xcaXe\xe1\xa2\xaa\x02\x86\xb8\x18\x01&\'w\xa1t0\x80\xf0\x93\x80\x9f\x9b\xe0\x9f\xea\xb9\x9eD]#V\xda\x92\xca\xc6\xfa.\xd6\xe31\xfe\xe8\x02\xebX\xbd\nz\x01O\xd3r\xa2\xa9u\x93y\x9d\xc4K mC\x97\x1c\x91\xd7\xf3\x13)`\xfb\xbf\xd3\xcc\x8d\x0e\x1f\x80\x0f\xcag\xd5J\xd7\x99\x02B\xd9\xdb;\xbd\x05\xc8\x9a\xe9(\xb7\xd1\xce\xba\xf8\xc0\x1fPc\x8d\xfceY\xf8j9\xc4\v\xb5\x82\xbaI,\xf5\xbd\a\a\xa2\x83\x99]/@\xbc(*v%\xa1\xd9\xfb\v\xdc\xed\xa3\x93\x16\x0e\xa8\x96\x10\xfc\xae\xc6X@f\x17\xf4\xb78\xa6\n\xaa\xe5m5\x9d\x14\xd7\x91Q\xb5\x11\x88\x89i\x94,]\x91\x13\xa6~O\xcdV\xf36,\x8a\xc9P\xbd\xf6\x16\x99_\x01\x0f0/\xe1Yi\x00=nz\x1d\xbd\xb0\x85W\xeaU\xea\x03)!\xf2\xfa\x04\xecf\xad\xb5\x94\x97\xbb\xae7\xbf\vQpi\xf3x\x80\xf0\xd3B\x17\xbc\xf2H\xeej\xc4\xdd\xb31\xdc\xb3\x19\x12<\xf7\xca\x12\x86\x15kZ\xb4t\x87;\xfb\x97\xc6\xb4\xf5\xa6\x9b-|EW$\x0e\xb2\xef\xebW/\xff`)M\xe3\x99\xe5\xe2M\x8dxD\xbf!\b\xf4o-\xab\xe0\x1eN\xdb\x94x\xe9:\x92#\x80\x91\xc0\x04\xfd}\xd6\xd6\x0f4/\x13\xf2q\xbc&\xd0p\xe6\xe6\x01V\xf3Lc\xfd\"\xa5V\xce\x9b\xd9\xd3\xc2(Q+\xd0\x00\x00\x00\x00\xf9\x17\n\x9bHw\xfb1\x8e\xa0^\xe0\xbd\xfa\xb8\x9f\xb3~\xab\x1c\x85\x85\x91\xa6\xba\xc9\x81\xaa\xfc<\x18\xf0\xb7\xe0\x95,F\x94\x89\x13\xc1\xad\xaeU\x8bb\xbbc\xa1\xb7a5\xf2\"\xb0\xfb\x1c7ZH\x96\xc66\xd5\xe6r\x19\xb4\xd0\x80\'`\x8a\xe9.\a\xa6g\x13\xe5\t\x11', 0x6)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xe, 0x12, r0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
unshare(0x2c040600)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x27}, 0x74)

2m36.132523571s ago: executing program 4 (id=93):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x143082)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000240)={'\x00', 0x6, 0xd7, 0x4})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r4, r3, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000100)=ANY=[], 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r8 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r8, 0x0, 0x23, 0x0, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000380)={0x8, 0x0, &(0x7f0000001040)=[@enter_looper, @register_looper], 0x0, 0x0, 0x0})
sendmsg$NFT_BATCH(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_DELSET={0x2c, 0xb, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x20004000)
r10 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r10, &(0x7f00000003c0)=@name={0x1e, 0x2, 0x0, {{0x42, 0xfffffffc}}}, 0x10)
sendmsg$nl_xfrm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYRESOCT=r10, @ANYRES16=r6, @ANYRES8=r0, @ANYRES8=r0, @ANYBLOB="ddb392a2f2eabc146de9a7d80808e76ede17f4600eda72a52ee2df6c16736398d3112533f14a9f08400f9bce9ccfe30d0804b02fab90ec8c9aa75b7c70e38e5ae77baefa4ad4a765eaa6320fd9fa12e45bc6f211caffc6ee9b4714377840d72ef8b806e67a8802b9a4a15384d6d5142ff2c52f85761294317d39556798a436fb7b54cc2a8a3436ea036b5f6186d69f93f68e74a482221aa7ed67d3f39a20c2a6c8d513fa58d1c285634fa5da571e6e3a9e0091164494a12fb9c3e04e2808e50a694798c5431d236d", @ANYRES8=0x0, @ANYRESHEX=r7, @ANYRES64=r10], 0xfc}}, 0x20000000)
sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f00000002c0)=@l2tp6={0xa, 0x0, 0x3, @mcast2, 0x3, 0x200}, 0x80, 0x0}, 0x20000810)

2m26.656503268s ago: executing program 32 (id=69):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r1 = dup2(r0, r0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x40, 0xfffffffd, 0x1, 0x80000001, 0x10})

2m20.746230799s ago: executing program 33 (id=93):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x143082)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000240)={'\x00', 0x6, 0xd7, 0x4})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r4, r3, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000100)=ANY=[], 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r8 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r8, 0x0, 0x23, 0x0, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000380)={0x8, 0x0, &(0x7f0000001040)=[@enter_looper, @register_looper], 0x0, 0x0, 0x0})
sendmsg$NFT_BATCH(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_DELSET={0x2c, 0xb, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x20004000)
r10 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r10, &(0x7f00000003c0)=@name={0x1e, 0x2, 0x0, {{0x42, 0xfffffffc}}}, 0x10)
sendmsg$nl_xfrm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYRESOCT=r10, @ANYRES16=r6, @ANYRES8=r0, @ANYRES8=r0, @ANYBLOB="ddb392a2f2eabc146de9a7d80808e76ede17f4600eda72a52ee2df6c16736398d3112533f14a9f08400f9bce9ccfe30d0804b02fab90ec8c9aa75b7c70e38e5ae77baefa4ad4a765eaa6320fd9fa12e45bc6f211caffc6ee9b4714377840d72ef8b806e67a8802b9a4a15384d6d5142ff2c52f85761294317d39556798a436fb7b54cc2a8a3436ea036b5f6186d69f93f68e74a482221aa7ed67d3f39a20c2a6c8d513fa58d1c285634fa5da571e6e3a9e0091164494a12fb9c3e04e2808e50a694798c5431d236d", @ANYRES8=0x0, @ANYRESHEX=r7, @ANYRES64=r10], 0xfc}}, 0x20000000)
sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f00000002c0)=@l2tp6={0xa, 0x0, 0x3, @mcast2, 0x3, 0x200}, 0x80, 0x0}, 0x20000810)

12.181397335s ago: executing program 1 (id=540):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x9, 0x15031, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
write$dsp(r2, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000d0000000000000000000000850000000500000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x0, 0xe, 0x0, &(0x7f00000001c0)="581f9239658ea95ed371ea3dd361", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
writev(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000100)="d0039e16e5d0207ad4d192c128c552dc5cab6d682c37cec2cbea7b9fa8fd1c6d1bff8f367332dd23080c9b4ff0cf018a62fd", 0x32}], 0x1)
r6 = dup(r3)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)=@arm64={0x6, 0x4, 0x9, '\x00', 0x1})
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f00000000c0)=0xffff)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'lo\x00', <r9=>0x0})
r10 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r10, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r11 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCSFEATURE(r11, 0xc0404806, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@ipv4_newaddr={0x20, 0x14, 0x503, 0x800000, 0x25dfdbff, {0x2, 0x1f, 0x80, 0xff, r9}, [@IFA_LOCAL={0x8, 0x2, @loopback}]}, 0x20}, 0x1, 0x0, 0x0, 0xc091}, 0xc050)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

11.076633323s ago: executing program 2 (id=543):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='oom_score_adj\x00')
readv(r0, &(0x7f00000012c0)=[{&(0x7f0000000100)=""/4096, 0x1000}, {0x0}], 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0xe0881)
write$sndseq(r1, 0x0, 0x0)
poll(&(0x7f0000000000)=[{r1}], 0x1, 0x100)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000001140)={0x80, 0x1})
r2 = syz_open_procfs$pagemap(0x0, &(0x7f0000000240))
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f00000004c0)={0x60, 0x0, &(0x7f000023d000/0x4000)=nil, &(0x7f00004fa000/0x4000)=nil, 0x0, &(0x7f00000021c0), 0x4f, 0x3})
msgrcv(0x0, &(0x7f00000016c0)={0x0, ""/55}, 0x3f, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
mmap$snddsp(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001300)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r5}, 0x10)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
madvise(&(0x7f0000499000/0x1000)=nil, 0x1000, 0x13)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x15f)
write$binfmt_elf64(r6, &(0x7f0000000980)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d00000000000000ed08000000000000f0ffffffffffffff0000000000000000080000000000000003"], 0x5b0)
close(r6)
read$usbmon(r6, &(0x7f0000000000)=""/19, 0x13)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r3, 0x890b, &(0x7f0000000040)={0xffffc0fe, 'team_slave_0\x00', {}, 0x5})

10.469987185s ago: executing program 3 (id=547):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x3f, &(0x7f00000001c0)=0xffff8001, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
syz_emit_ethernet(0x42, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x3, 0x34, 0x64, 0x0, 0x7, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x4, 0x6071, 0x0, 0xe7, {[@timestamp={0x8, 0xa, 0x5, 0x5}]}}}}}}}, 0x0)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="000088f7ffffffffffffaaaaaaaaaaaa0800450000"], 0x32)
shmget$private(0x0, 0x3000, 0x2, &(0x7f0000ffd000/0x3000)=nil)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000480), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="4c0000000900043cce24544aa5ec020a41e45909b72e4f17f71724b2f1e45c09af1c22", @ANYRES16=r4, @ANYBLOB="07020000000000000000010000000400088024000480050003000100000005000300000000000500030001000000050003000200000008000100030000000800020001000000"], 0x4c}}, 0x800)
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
clock_nanosleep(0x1, 0x1, &(0x7f0000000040), 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
r6 = openat$smackfs_ipv6host(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$smackfs_ipv6host(r6, &(0x7f00000000c0)=@l1={{0x10000000006, 0x3a, 0x80f, 0x3a, 0xa0e, 0x3a, 0x5, 0x3a, 0x4, 0x3a, 0x7, 0x3a, 0x4000000000000000, 0x3a, 0x93}, 0x20, 'mountinfo\x00'}, 0xa3)
write$smackfs_ipv6host(r6, &(0x7f0000000400)=@l1={{0x4, 0x3a, 0x101, 0x3a, 0x0, 0x3a, 0x5, 0x3a, 0x1000, 0x3a, 0x6, 0x3a, 0x4, 0x3a, 0x6}, 0x20, 'vfat\x00'}, 0x9e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200))
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r5, r5)
setpgid(0x0, r5)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x2, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, 0xffffffffffffffff, &(0x7f0000000140)='./file1\x00')
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
open(&(0x7f0000000240)='./file0\x00', 0x606701, 0x0)

10.125486939s ago: executing program 5 (id=549):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="64000000000601"], 0x64}}, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000000c80), &(0x7f0000000cc0)=ANY=[@ANYBLOB='enc=pkcs1 '], 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000180)={0x1})
ioctl$KVM_SET_PIT2(r2, 0x4070aea0, &(0x7f0000002400)={[{0x7, 0xce, 0xfa, 0x5, 0x3, 0x96, 0x9, 0x6, 0x75, 0x0, 0x2, 0x6, 0xffffffff}, {0x15, 0x1, 0x6, 0x2, 0x1, 0x6, 0x2, 0x6, 0xb, 0x5, 0x4, 0x9, 0x1}, {0x2, 0x1000, 0x8, 0x52, 0x1, 0x2a, 0x7f, 0x8, 0xb, 0x40, 0xf4, 0x4, 0x200}], 0x9})
r3 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1d)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000)
ppoll(&(0x7f00000000c0)=[{r5, 0x200}], 0x1, 0x0, 0x0, 0x0)
syz_open_dev$vcsu(0x0, 0x3, 0x600b00)
ioctl$KVM_CAP_MAX_VCPU_ID(r4, 0x4068aea3, &(0x7f0000000000)={0x80, 0x0, 0xfff})
r6 = dup(r3)
write$UHID_INPUT(r6, &(0x7f0000001980)={0x9, {"a2e3ad084fc752f91b2909094bf70e0dd038e7ff7fc6e5539b324c078b089b333b316d1a0890e0878f0e1ac6e7049b076d959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31300d376d0936cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df0784c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b4bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d618e462071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4000000000000007fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af44863c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000510b00", 0x1000}}, 0x1006)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000100)="0fc72b66b8005000000f23d80f21f86635400000200f23f83efe8d00a00f32670f01c3673e0f017a000f001066b91b0b000066b80000000066ba000000800f300f00db66b9800000c00f326635008000000f30", 0x53}], 0x1, 0x0, &(0x7f00000001c0), 0x0)

9.589944072s ago: executing program 2 (id=551):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="260f01c32e36260f212366b9090b000066b87a0a000066ba000000000f30b823018ee8ba610066ed0f01c2660f38810f2e0f656c7ff2e3090fa5800500", 0xffffffffffffff96}], 0x1, 0xf, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 2)

8.733817994s ago: executing program 3 (id=552):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x9801}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0xbf}]}}}]}, 0x40}}, 0x0)
sendto$packet(r0, &(0x7f0000000240)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df75e3ffe46630d4a1741b1554dd5a55e66eaecea76d5d174c21eea8e02493ac4beba5ab57d22b47f9e9d", 0x5d, 0x0, &(0x7f0000000540)={0xc9, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14) (fail_nth: 2)

8.659505247s ago: executing program 5 (id=554):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000a40), 0x1, 0x1)
writev(r0, &(0x7f00000002c0)=[{0x0}], 0x1)

8.535565641s ago: executing program 6 (id=555):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000280)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

8.46699706s ago: executing program 5 (id=556):
r0 = socket$kcm(0x2, 0x1, 0x84)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x891a, &(0x7f0000000180)) (fail_nth: 2)

8.395378428s ago: executing program 2 (id=557):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=@newtclass={0x24, 0x28, 0x4, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x9, 0x4}, {0x7, 0xb}, {0xb, 0xf}}}, 0x24}}, 0x80000) (async)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x54, 0x10, 0x2, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, 0x78c9d}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IFLAGS={0x6, 0x2, 0xa5}]}}}, @IFLA_IFNAME={0x14, 0x3, 'nicvf0\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x851}, 0x0) (async)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)
r1 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)=@o_path={&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x10, r0}, 0x18)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000080)=r1, 0x4)

8.296324143s ago: executing program 6 (id=558):
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000980)={[0x1ffffffffd]}, 0x8, 0x0)
r1 = syz_io_uring_setup(0x754f, &(0x7f0000000080)={0x0, 0x3412, 0x13100, 0x6, 0x4, 0x0, r0}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
io_uring_enter(r1, 0x2def, 0x9566, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20008091}, 0x4000000)
signalfd4(r0, &(0x7f0000000140), 0x8, 0x0)

8.086249462s ago: executing program 6 (id=559):
socket$nl_route(0x10, 0x3, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x2, 0x300)
socket$kcm(0x10, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xd, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}}, @call={0x85, 0x0, 0x0, 0xf}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000fffdffff0000000000000000850000004100000085000000d000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$xdp(0x2c, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r1 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r2], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0), 0x0, 0x1})

7.783429804s ago: executing program 2 (id=560):
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = signalfd(0xffffffffffffffff, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
syz_usb_connect$hid(0x2, 0x36, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r3, &(0x7f00000007c0)={0x1f, 0x0, @any, 0x4}, 0xe)
ioctl$SNDCTL_SEQ_TESTMIDI(r1, 0x40045108, &(0x7f0000000440)=0x6)
listen(r3, 0x44)
r4 = syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0xd806, 0x80, 0xffdffffe, 0x40001}, &(0x7f00000001c0)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_open_dev$video(&(0x7f0000000000), 0x6, 0x200000)
r7 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'sit0\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@ipv6_newnexthop={0x38, 0x68, 0x1, 0xfffffffc, 0xfffffffe, {}, [@NHA_ENCAP_TYPE={0x6, 0x7, 0x8}, @NHA_ENCAP={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_ID={0xc, 0x1, 0x9}}, @NHA_OIF={0x8, 0x5, r8}]}, 0x38}}, 0x0)
r9 = open$dir(&(0x7f0000000280)='./file0\x00', 0x20000, 0x35)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000140)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, r9, &(0x7f0000000300)={0x40, 0x8, 0x5}, &(0x7f00000003c0)='./file0\x00', 0x18, 0x0, 0x23456, {0x0, r10}})
io_uring_enter(r4, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000400)=<r11=>0x0)
ptrace$ARCH_MAP_VDSO_64(0x1e, r11, 0x4ee, 0x2003)

7.782505479s ago: executing program 3 (id=561):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000480)={@fallback=r0, r0, 0x2f, 0x8, 0x4}, 0x20) (fail_nth: 2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

7.52599221s ago: executing program 5 (id=562):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@ipv6_newrule={0x44, 0x20, 0x1, 0x0, 0x0, {0xa, 0x10, 0x40, 0x4, 0x0, 0x0, 0x0, 0x6}, [@FRA_SRC={0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x21}}, @FRA_DST={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x44}, 0x1, 0x0, 0x0, 0xc011}, 0x20480d0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c0000001000390400"/20, @ANYRES32=0x0, @ANYBLOB="e4ffffff000000003c0012800b000100697036746e6c00002c000280140003002001000000000000000000000000000114000200fc02"], 0x5c}}, 0x0) (fail_nth: 2)

7.435853704s ago: executing program 3 (id=563):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x3f, &(0x7f00000001c0)=0xffff8001, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
syz_emit_ethernet(0x42, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x3, 0x34, 0x64, 0x0, 0x7, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x4, 0x6071, 0x0, 0xe7, {[@timestamp={0x8, 0xa, 0x5, 0x5}]}}}}}}}, 0x0)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="000088f7ffffffffffffaaaaaaaaaaaa0800450000"], 0x32)
shmget$private(0x0, 0x3000, 0x2, &(0x7f0000ffd000/0x3000)=nil)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000480), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="4c0000000900043cce24544aa5ec020a41e45909b72e4f17f71724b2f1e45c09af1c22", @ANYRES16=r4, @ANYBLOB="07020000000000000000010000000400088024000480050003000100000005000300000000000500030001000000050003000200000008000100030000000800020001000000"], 0x4c}}, 0x800)
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
clock_nanosleep(0x1, 0x1, &(0x7f0000000040), 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
r6 = openat$smackfs_ipv6host(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$smackfs_ipv6host(r6, &(0x7f00000000c0)=@l1={{0x10000000006, 0x3a, 0x80f, 0x3a, 0xa0e, 0x3a, 0x5, 0x3a, 0x4, 0x3a, 0x7, 0x3a, 0x4000000000000000, 0x3a, 0x93}, 0x20, 'mountinfo\x00'}, 0xa3)
write$smackfs_ipv6host(r6, &(0x7f0000000400)=@l1={{0x4, 0x3a, 0x101, 0x3a, 0x0, 0x3a, 0x5, 0x3a, 0x1000, 0x3a, 0x6, 0x3a, 0x4, 0x3a, 0x6}, 0x20, 'vfat\x00'}, 0x9e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200))
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r5, r5)
setpgid(0x0, r5)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x2, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, 0xffffffffffffffff, &(0x7f0000000140)='./file1\x00')
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
open(&(0x7f0000000240)='./file0\x00', 0x606701, 0x0)

6.723463362s ago: executing program 5 (id=564):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f00000005c0)=[{0x6}]})
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x2}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r4, &(0x7f0000048040)=""/102392, 0x18ff8)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x20)
preadv(r5, &(0x7f0000001b00)=[{&(0x7f00000009c0)=""/239, 0xef}], 0x1, 0x2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x4884)
tkill(r3, 0xb)
futex(0x0, 0xc, 0x1, 0x0, &(0x7f0000048000)=0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r6 = syz_io_uring_setup(0x507d, &(0x7f0000000480)={0x0, 0x0, 0x10100, 0x0, 0xffffffff}, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000080)=ANY=[], 0x118)
r10 = socket$can_j1939(0x1d, 0x2, 0x7)
connect$can_j1939(r10, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r9, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}})
io_uring_enter(r6, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0502103, 0x0)
ioctl$TIOCL_SELLOADLUT(r9, 0x541c, &(0x7f0000000080)={0x5, 0x3, 0x0, 0x1ff, 0x5c3e5fd9})

5.875717028s ago: executing program 1 (id=565):
r0 = socket(0x2, 0x400000000002, 0x0)
setsockopt(r0, 0x0, 0x20, &(0x7f0000000080), 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="88010000170a01"], 0x188}}, 0x0)

3.713486378s ago: executing program 6 (id=566):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000a40), 0x1, 0x1)
writev(r0, &(0x7f00000002c0)=[{0x0}, {0x0}], 0x2)

2.079449426s ago: executing program 2 (id=567):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x4b)
close(r0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000340)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ftruncate(0xffffffffffffffff, 0xffff)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
lseek(0xffffffffffffffff, 0x7, 0x2)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, 0x47, 0x107, 0x7ffffff6, 0x25dfdbfc, {0x2, 0x7c}}, 0x14}}, 0x4008080) (fail_nth: 1)
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r2})
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3ff, 0x34325241, 0x0, [], [0x2b8]})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0})

2.078988229s ago: executing program 1 (id=568):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000280)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.804043692s ago: executing program 6 (id=569):
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000980)={[0x1ffffffffd]}, 0x8, 0x0)
r1 = syz_io_uring_setup(0x754f, &(0x7f0000000080)={0x0, 0x3412, 0x13100, 0x6, 0x4, 0x0, r0}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
io_uring_enter(r1, 0x2def, 0x9566, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20008091}, 0x4000000)
signalfd4(r0, &(0x7f0000000140), 0x8, 0x0)

1.034869763s ago: executing program 2 (id=570):
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='fdinfo\x00')
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x78, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xa}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x3, 0x0, 0xa, 0x0, 0x3}, 0x1, 0x1, 0x80000001, 0x6, 0x2, 0x1c, 0x14, 0xa, 0x5, 0x7f, {0xc609, 0x5, 0x80, 0x5, 0x6, 0xf}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x2}, 0x0)
fchdir(r1) (async)
fchdir(r1)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50) (async)
r4 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
getdents(r4, &(0x7f0000001fc0)=""/184, 0xb8)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a68000000060a010400000000000000000a0000010900010073797a31000000003c00048018000180080001006c6f67000c0002800c000540ffffff0820000180070001007274000014000280080002400000000108000140000000100900020073797a32"], 0x90}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$kcm(0x10, 0x2, 0x0) (async)
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r7, 0x4008af00, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r7, 0x4008af03, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(r7, 0x4008af03, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r7, 0x4004af61, &(0x7f00000000c0)=0x1)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
unshare(0x22020600) (async)
unshare(0x22020600)
r9 = socket$inet(0x2, 0x2, 0x1)
bind$inet(r9, 0x0, 0x0)
setsockopt$inet6_buf(r8, 0x29, 0x20, &(0x7f00000005c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d410000000000000002900000043000000", 0x30)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000f80)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe50a10a000700014002020c600e41b0000900ac000a0501000000160012000a00ff150048035c3b61c1d67f6f94007134cf6efb8007a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffffffff1f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001008af26c8b7b55f4d2a6823a45", 0xd8}], 0x1}, 0x40080)
r10 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0xa5a1, 0x400, 0x7, 0x285, 0x0, r1}, &(0x7f00000004c0)=<r11=>0x0, &(0x7f0000000280)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
syz_io_uring_submit(r11, r12, &(0x7f00000002c0)=@IORING_OP_SYMLINKAT={0x26, 0x14, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x1, {0x0, r13}}) (async)
syz_io_uring_submit(r11, r12, &(0x7f00000002c0)=@IORING_OP_SYMLINKAT={0x26, 0x14, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x1, {0x0, r13}})
io_uring_enter(r10, 0x40f9, 0x217, 0xa5, 0x0, 0xf5)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x56, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000001000000000000100000a64000000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000380004803400018009000100686173680000000024000280080007400000000108000440000000ac08000240000000080800064000000008140000001100010000000000000000000000000a"], 0x8c}}, 0x600c0)

926.427372ms ago: executing program 5 (id=571):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x4b)
close(r0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[0x0], 0x0, 0x0, 0x0, 0x1})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r4, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x1})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r3, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r4, 0x0, 0xffffffffffffffff, 0x1})
r5 = syz_open_dev$sndmidi(&(0x7f0000000180), 0x9, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r5, 0x660c)
prlimit64(0x0, 0xa, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x0, &(0x7f0000000340)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ftruncate(0xffffffffffffffff, 0xffff)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
lseek(0xffffffffffffffff, 0x7, 0x2)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400000047000701f6ffff7ffcdbdf25027c00a8"], 0x14}}, 0x4008080)
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000440)={0x0})
ioctl$DRM_IOCTL_MODE_ADDFB2(r1, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xfff, 0x3ff, 0x34325241, 0x0, [], [0x2b8]})

925.637519ms ago: executing program 3 (id=572):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000280)="d8000000190081044e81f782db4cb90402200800fd007c05e8fe55a108001e000140cde8dfe90e4190000900ac00060211000000160012000a0002000d48035c3b61c1d67f01282e8d614230a68000a007a290457f01a705000000000000009100005ee4e11b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e603a6a8a9826835d3a71d95667e006dcdf63951f2155e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e971ad9d3ac052f6dfe4f36bcf903ece981e8df37df7f8af2f28f", 0xfcc0}], 0x1}, 0x40000)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000009b80)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a34000000140ad1fa000000000000000005000001ee00020073797a321a00000008000340000000020900010073797a31000000f10dc9b3001100010000000000000000000100000a"], 0x5c}, 0x1, 0x0, 0x0, 0x3952752c3d63d481}, 0x40)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
syz_open_procfs(0x0, &(0x7f0000000400)='timers\x00')
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000020000000000000001220093"], &(0x7f0000001f80)=""/212, 0x32, 0xd4, 0xa, 0x2}, 0x28)

916.846297ms ago: executing program 1 (id=573):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000280)="d8000000190081044e81f782db4cb90402200800fd007c05e8fe55a108001e000140cde8dfe90e4190000900ac00060211000000160012000a0002000d48035c3b61c1d67f01282e8d614230a68000a007a290457f01a705000000000000009100005ee4e11b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e603a6a8a9826835d3a71d95667e006dcdf63951f2155e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e971ad9d3ac052f6dfe4f36bcf903ece981e8df37df7f8af2f28f", 0xfcc0}], 0x1}, 0x40000)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000009b80)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a34000000140ad1fa000000000000000005000001ee00020073797a321a00000008000340000000020900010073797a31000000f10dc9b3001100010000000000000000000100000a"], 0x5c}, 0x1, 0x0, 0x0, 0x3952752c3d63d481}, 0x40)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='timers\x00')
lseek(r3, 0x38, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000020000000000000001220093"], &(0x7f0000001f80)=""/212, 0x32, 0xd4, 0xa, 0x2}, 0x28)

391.455216ms ago: executing program 6 (id=574):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000059d360205f0501d09288000000010902120001000000000904"], 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto={0x0, 0x0, 0x0, 0xd, 0xa}]}}, &(0x7f0000000f40)=""/4089, 0x26, 0xff9, 0x8}, 0x28)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

375.291576ms ago: executing program 3 (id=575):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x66, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001980)={0x1, 0x3, &(0x7f00000013c0)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001400)='syzkaller\x00'}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000040)={r1, 0x108, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x6f0e5e58480ad153, 0xffffffffffffff2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0x63, 0x0, &(0x7f0000000000)="ff", 0x0, 0x149d, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x50)

362.918446ms ago: executing program 1 (id=576):
socket$nl_route(0x10, 0x3, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xd, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}}, @call={0x85, 0x0, 0x0, 0xf}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000fffdffff0000000000000000850000004100000085000000d000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$xdp(0x2c, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r1 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r2], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0), 0x0, 0x1})

0s ago: executing program 1 (id=577):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWSET={0x28, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}]}], {0x14}}, 0x50}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x4a, &(0x7f00000043c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x14, 0x2c, 0x0, @remote, @local, {[], {{0x2b00, 0x5, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x11, 0x0, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000140)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x9801}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0xbf}]}}}]}, 0x40}}, 0x0)
sendto$packet(r0, &(0x7f0000000240)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df75e3ffe46630d4a1741b1554dd5a55e66eaecea76d5d174c21eea8e02493ac4beba5ab57d22b47f9e9d", 0x5d, 0x0, &(0x7f0000000540)={0xc9, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
lseek(r5, 0x100000000, 0x2)
read$FUSE(0xffffffffffffffff, &(0x7f0000000580)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_LSEEK(r5, &(0x7f0000000040)={0x18, 0x0, r6, {0x3b00eb320}}, 0x18)

kernel console output (not intermixed with test programs):

195.526354][ T6862] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  195.526391][ T6862] CPU: 1 UID: 0 PID: 6862 Comm: syz.2.264 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  195.526413][ T6862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  195.526426][ T6862] Call Trace:
[  195.526434][ T6862]  <TASK>
[  195.526443][ T6862]  dump_stack_lvl+0x189/0x250
[  195.526477][ T6862]  ? __pfx____ratelimit+0x10/0x10
[  195.526503][ T6862]  ? __pfx_dump_stack_lvl+0x10/0x10
[  195.526531][ T6862]  ? __pfx__printk+0x10/0x10
[  195.526556][ T6862]  ? fs_reclaim_acquire+0x7d/0x100
[  195.526591][ T6862]  should_fail_ex+0x46c/0x600
[  195.526625][ T6862]  prepare_alloc_pages+0x213/0x670
[  195.526660][ T6862]  __alloc_frozen_pages_noprof+0x123/0x370
[  195.526694][ T6862]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  195.526726][ T6862]  ? filemap_get_entry+0xad/0x2f0
[  195.526756][ T6862]  ? filemap_get_entry+0xad/0x2f0
[  195.526785][ T6862]  ? policy_nodemask+0x27c/0x720
[  195.526807][ T6862]  ? __pfx_filemap_get_entry+0x10/0x10
[  195.526836][ T6862]  alloc_pages_mpol+0xd1/0x380
[  195.526867][ T6862]  folio_alloc_mpol_noprof+0x39/0xe0
[  195.526897][ T6862]  shmem_get_folio_gfp+0x633/0x1a70
[  195.526936][ T6862]  ? __lock_acquire+0xab9/0xd20
[  195.526972][ T6862]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  195.526994][ T6862]  ? ___pte_offset_map+0x29/0x200
[  195.527029][ T6862]  shmem_fault+0x170/0x380
[  195.527063][ T6862]  __do_fault+0x138/0x390
[  195.527083][ T6862]  handle_mm_fault+0x117f/0x3400
[  195.527107][ T6862]  ? mt_find+0x15c/0x5e0
[  195.527139][ T6862]  ? handle_mm_fault+0xdb/0x3400
[  195.527172][ T6862]  ? __pfx_handle_mm_fault+0x10/0x10
[  195.527211][ T6862]  ? __might_fault+0xb0/0x130
[  195.527243][ T6862]  ? lock_mm_and_find_vma+0x9c/0x300
[  195.527273][ T6862]  do_user_addr_fault+0x764/0x1380
[  195.527314][ T6862]  exc_page_fault+0x82/0x100
[  195.527343][ T6862]  asm_exc_page_fault+0x26/0x30
[  195.527362][ T6862] RIP: 0010:put_cmsg+0x387/0x5f0
[  195.527387][ T6862] Code: 8f c7 1c f9 48 83 fd 01 76 4f 4c 89 fb 49 83 c7 02 48 83 c5 fe 48 89 d8 48 c1 e8 03 42 0f b6 04 20 84 c0 75 1f 41 0f b7 47 fe <66> 41 89 45 00 48 83 fd 01 76 2b 49 83 c5 02 e8 f5 c1 1c f9 48 83
[  195.527404][ T6862] RSP: 0018:ffffc90003e7f400 EFLAGS: 00050246
[  195.527422][ T6862] RAX: 0000000000000001 RBX: ffffc90003e7f568 RCX: ffff88802bbbda00
[  195.527435][ T6862] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000001
[  195.527447][ T6862] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  195.527458][ T6862] R10: 0000000000000100 R11: 00000000ffff0000 R12: dffffc0000000000
[  195.527471][ T6862] R13: 0000200000002000 R14: 0000000000000002 R15: ffffc90003e7f56a
[  195.527516][ T6862]  ipv6_recv_error+0xeb1/0x1490
[  195.527556][ T6862]  ? __pfx_ipv6_recv_error+0x10/0x10
[  195.527576][ T6862]  ? rtlock_slowlock_locked+0xd8/0x4010
[  195.527617][ T6862]  ? do_raw_spin_lock+0x121/0x290
[  195.527642][ T6862]  udpv6_recvmsg+0x1f2/0x1590
[  195.527671][ T6862]  ? __lock_acquire+0xab9/0xd20
[  195.527702][ T6862]  ? __pfx_udpv6_recvmsg+0x10/0x10
[  195.527734][ T6862]  ? __pfx_udpv6_recvmsg+0x10/0x10
[  195.527755][ T6862]  inet6_recvmsg+0x1ee/0x6b0
[  195.527784][ T6862]  ? __lock_acquire+0xab9/0xd20
[  195.527807][ T6862]  ? __pfx_inet6_recvmsg+0x10/0x10
[  195.527835][ T6862]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  195.527858][ T6862]  ? security_socket_recvmsg+0x7e/0x2e0
[  195.527887][ T6862]  sock_recvmsg+0x105/0x270
[  195.527918][ T6862]  ____sys_recvmsg+0x1ce/0x470
[  195.527951][ T6862]  ? __pfx_____sys_recvmsg+0x10/0x10
[  195.527993][ T6862]  ? import_iovec+0x74/0xa0
[  195.528017][ T6862]  ___sys_recvmsg+0x1b5/0x510
[  195.528047][ T6862]  ? __pfx____sys_recvmsg+0x10/0x10
[  195.528098][ T6862]  ? __fget_files+0x3a6/0x420
[  195.528134][ T6862]  do_recvmmsg+0x30d/0x770
[  195.528166][ T6862]  ? __pfx_do_recvmmsg+0x10/0x10
[  195.528186][ T6862]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  195.528213][ T6862]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  195.528251][ T6862]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  195.528291][ T6862]  __x64_sys_recvmmsg+0x190/0x240
[  195.528318][ T6862]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  195.528347][ T6862]  ? do_syscall_64+0xbe/0xfa0
[  195.528377][ T6862]  do_syscall_64+0xfa/0xfa0
[  195.528401][ T6862]  ? lockdep_hardirqs_on+0x9c/0x150
[  195.528426][ T6862]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.528444][ T6862]  ? clear_bhb_loop+0x60/0xb0
[  195.528468][ T6862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.528486][ T6862] RIP: 0033:0x7fdfb9def6c9
[  195.528503][ T6862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.528519][ T6862] RSP: 002b:00007fdfb804e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  195.528538][ T6862] RAX: ffffffffffffffda RBX: 00007fdfba045fa0 RCX: 00007fdfb9def6c9
[  195.528553][ T6862] RDX: 0000000000000001 RSI: 0000200000000940 RDI: 0000000000000003
[  195.528565][ T6862] RBP: 00007fdfb804e090 R08: 0000000000000000 R09: 0000000000000000
[  195.528576][ T6862] R10: 0000000040002042 R11: 0000000000000246 R12: 0000000000000001
[  195.528589][ T6862] R13: 00007fdfba046038 R14: 00007fdfba045fa0 R15: 00007ffdefa5d5f8
[  195.528621][ T6862]  </TASK>
[  195.702947][ T5875] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  195.854784][ T5875] usb 2-1: Using ep0 maxpacket: 32
[  195.857040][ T5875] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  195.857067][ T5875] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  195.857086][ T5875] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  195.857108][ T5875] usb 2-1: config 1 has no interface number 0
[  195.857156][ T5875] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  195.857181][ T5875] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  195.857222][ T5875] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  195.857244][ T5875] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.272244][ T5875] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  196.548331][ T5875] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now attached
[  196.577189][ T6889] FAULT_INJECTION: forcing a failure.
[  196.577189][ T6889] name failslab, interval 1, probability 0, space 0, times 0
[  196.577225][ T6889] CPU: 0 UID: 0 PID: 6889 Comm: syz.6.273 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  196.577247][ T6889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  196.577258][ T6889] Call Trace:
[  196.577266][ T6889]  <TASK>
[  196.577275][ T6889]  dump_stack_lvl+0x189/0x250
[  196.577307][ T6889]  ? __pfx____ratelimit+0x10/0x10
[  196.577333][ T6889]  ? __pfx_dump_stack_lvl+0x10/0x10
[  196.577359][ T6889]  ? __pfx__printk+0x10/0x10
[  196.577388][ T6889]  ? __pfx___might_resched+0x10/0x10
[  196.577408][ T6889]  ? fs_reclaim_acquire+0x7d/0x100
[  196.577438][ T6889]  should_fail_ex+0x46c/0x600
[  196.577468][ T6889]  ? ptlock_alloc+0x20/0x70
[  196.577492][ T6889]  should_failslab+0xa8/0x100
[  196.577529][ T6889]  ? ptlock_alloc+0x20/0x70
[  196.577551][ T6889]  kmem_cache_alloc_noprof+0x6f/0x6b0
[  196.577584][ T6889]  ptlock_alloc+0x20/0x70
[  196.577608][ T6889]  pte_alloc_one+0x7e/0x330
[  196.577641][ T6889]  __do_fault+0xd1/0x390
[  196.577662][ T6889]  handle_mm_fault+0x117f/0x3400
[  196.577687][ T6889]  ? mt_find+0x15c/0x5e0
[  196.577719][ T6889]  ? handle_mm_fault+0xdb/0x3400
[  196.577752][ T6889]  ? __pfx_handle_mm_fault+0x10/0x10
[  196.577792][ T6889]  ? rcu_is_watching+0x15/0xb0
[  196.577817][ T6889]  ? lock_mm_and_find_vma+0x9c/0x300
[  196.577848][ T6889]  do_user_addr_fault+0x764/0x1380
[  196.577886][ T6889]  exc_page_fault+0x82/0x100
[  196.577912][ T6889]  asm_exc_page_fault+0x26/0x30
[  196.577928][ T6889] RIP: 0010:filldir+0x29c/0x6c0
[  196.577956][ T6889] Code: 8c ff 4c 89 ff 4c 89 e6 e8 d1 7b 8c ff 4d 39 e7 0f 82 7c 02 00 00 49 39 ef 0f 87 73 02 00 00 0f 01 cb 0f ae e8 48 8b 44 24 50 <49> 89 44 24 08 48 8b 4c 24 08 48 8b 44 24 58 48 89 01 48 8b 04 24
[  196.577972][ T6889] RSP: 0018:ffffc900040bfbc8 EFLAGS: 00050287
[  196.577990][ T6889] RAX: 0000000000000000 RBX: ffffc900040bfe38 RCX: ffff88802aff9e00
[  196.578003][ T6889] RDX: 0000000000000000 RSI: 00002000000008c0 RDI: 00002000000008d8
[  196.578016][ T6889] RBP: 00007ffffffff000 R08: 0000000000000000 R09: 0000000000000000
[  196.578027][ T6889] R10: 0000000000000100 R11: ffffffff82324470 R12: 00002000000008c0
[  196.578039][ T6889] R13: ffffffff8afb9420 R14: 0000000000000001 R15: 00002000000008d8
[  196.578057][ T6889]  ? __pfx_filldir+0x10/0x10
[  196.578088][ T6889]  ? filldir+0x27f/0x6c0
[  196.578120][ T6889]  ? __pfx_filldir+0x10/0x10
[  196.578139][ T6889]  proc_readfd_common+0x21c/0x5a0
[  196.578170][ T6889]  ? __pfx_proc_fdinfo_instantiate+0x10/0x10
[  196.578197][ T6889]  ? __pfx_proc_readfd_common+0x10/0x10
[  196.578222][ T6889]  ? iterate_dir+0x29e/0x580
[  196.578251][ T6889]  ? down_read_killable+0x152/0x220
[  196.578278][ T6889]  ? __pfx_down_read_killable+0x10/0x10
[  196.578318][ T6889]  iterate_dir+0x3a5/0x580
[  196.578346][ T6889]  __se_sys_getdents+0xe4/0x250
[  196.578371][ T6889]  ? __pfx___se_sys_getdents+0x10/0x10
[  196.578390][ T6889]  ? ksys_write+0x230/0x260
[  196.578409][ T6889]  ? __pfx_filldir+0x10/0x10
[  196.578432][ T6889]  ? __pfx_ksys_write+0x10/0x10
[  196.578459][ T6889]  ? do_syscall_64+0xbe/0xfa0
[  196.578488][ T6889]  do_syscall_64+0xfa/0xfa0
[  196.578514][ T6889]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.578531][ T6889]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  196.578550][ T6889]  ? clear_bhb_loop+0x60/0xb0
[  196.578573][ T6889]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.578591][ T6889] RIP: 0033:0x7f8557d1f6c9
[  196.578608][ T6889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.578623][ T6889] RSP: 002b:00007f8555f7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  196.578641][ T6889] RAX: ffffffffffffffda RBX: 00007f8557f75fa0 RCX: 00007f8557d1f6c9
[  196.578655][ T6889] RDX: 0000000000000034 RSI: 00002000000008c0 RDI: 0000000000000003
[  196.578666][ T6889] RBP: 00007f8555f7e090 R08: 0000000000000000 R09: 0000000000000000
[  196.578678][ T6889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.578688][ T6889] R13: 00007f8557f76038 R14: 00007f8557f75fa0 R15: 00007ffc476d25e8
[  196.578721][ T6889]  </TASK>
[  197.037840][ T5875] usb 2-1: USB disconnect, device number 8
[  197.040507][ T5875] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  197.132943][ T5981] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  197.297224][ T5981] usb 6-1: config 1 interface 0 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  197.297258][ T5981] usb 6-1: config 1 interface 0 has no altsetting 0
[  197.301487][ T5981] usb 6-1: New USB device found, idVendor=0b0e, idProduct=ffff, bcdDevice= 0.40
[  197.301518][ T5981] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  197.301537][ T5981] usb 6-1: Product: syz
[  197.301550][ T5981] usb 6-1: Manufacturer: syz
[  197.301563][ T5981] usb 6-1: SerialNumber: syz
[  198.542107][ T6900] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.583313][ T6900] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.706582][ T6905] FAULT_INJECTION: forcing a failure.
[  198.706582][ T6905] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.706752][ T6905] CPU: 0 UID: 0 PID: 6905 Comm: syz.6.277 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  198.706782][ T6905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  198.706794][ T6905] Call Trace:
[  198.706802][ T6905]  <TASK>
[  198.706812][ T6905]  dump_stack_lvl+0x189/0x250
[  198.706843][ T6905]  ? __pfx____ratelimit+0x10/0x10
[  198.706867][ T6905]  ? __pfx_dump_stack_lvl+0x10/0x10
[  198.706893][ T6905]  ? __pfx__printk+0x10/0x10
[  198.706928][ T6905]  should_fail_ex+0x46c/0x600
[  198.706960][ T6905]  strncpy_from_user+0x36/0x290
[  198.706988][ T6905]  getname_flags+0xf3/0x540
[  198.707020][ T6905]  path_listxattrat+0xd4/0x3a0
[  198.707043][ T6905]  ? __pfx_path_listxattrat+0x10/0x10
[  198.707067][ T6905]  ? do_syscall_64+0xbe/0xfa0
[  198.707096][ T6905]  do_syscall_64+0xfa/0xfa0
[  198.707118][ T6905]  ? lockdep_hardirqs_on+0x9c/0x150
[  198.707141][ T6905]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.707160][ T6905]  ? clear_bhb_loop+0x60/0xb0
[  198.707183][ T6905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.707201][ T6905] RIP: 0033:0x7f8557d1f6c9
[  198.707218][ T6905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.707234][ T6905] RSP: 002b:00007f8555f5d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c3
[  198.707252][ T6905] RAX: ffffffffffffffda RBX: 00007f8557f76090 RCX: 00007f8557d1f6c9
[  198.707265][ T6905] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  198.707276][ T6905] RBP: 00007f8555f5d090 R08: 0000000000000000 R09: 0000000000000000
[  198.707287][ T6905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.707299][ T6905] R13: 00007f8557f76128 R14: 00007f8557f76090 R15: 00007ffc476d25e8
[  198.707332][ T6905]  </TASK>
[  198.762992][ T5981] usbhid 6-1:1.0: can't add hid device: -71
[  198.763127][ T5981] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  198.774858][ T5981] usb 6-1: USB disconnect, device number 7
[  199.522461][ T6914] wireguard0: entered promiscuous mode
[  199.522487][ T6914] wireguard0: entered allmulticast mode
[  199.924754][ T6921] FAULT_INJECTION: forcing a failure.
[  199.924754][ T6921] name failslab, interval 1, probability 0, space 0, times 0
[  199.924789][ T6921] CPU: 0 UID: 0 PID: 6921 Comm: syz.2.281 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  199.924811][ T6921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  199.924823][ T6921] Call Trace:
[  199.924831][ T6921]  <TASK>
[  199.924840][ T6921]  dump_stack_lvl+0x189/0x250
[  199.924871][ T6921]  ? __pfx____ratelimit+0x10/0x10
[  199.924896][ T6921]  ? __pfx_dump_stack_lvl+0x10/0x10
[  199.924921][ T6921]  ? __pfx__printk+0x10/0x10
[  199.924949][ T6921]  ? __pfx___might_resched+0x10/0x10
[  199.924967][ T6921]  ? fs_reclaim_acquire+0x7d/0x100
[  199.924994][ T6921]  should_fail_ex+0x46c/0x600
[  199.925023][ T6921]  should_failslab+0xa8/0x100
[  199.925048][ T6921]  __kmalloc_noprof+0xcc/0x7d0
[  199.925071][ T6921]  ? tomoyo_encode+0x28b/0x550
[  199.925099][ T6921]  tomoyo_encode+0x28b/0x550
[  199.925126][ T6921]  tomoyo_realpath_from_path+0x58d/0x5d0
[  199.925150][ T6921]  ? tomoyo_domain+0xda/0x130
[  199.925178][ T6921]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  199.925205][ T6921]  tomoyo_path_number_perm+0x1e8/0x5a0
[  199.925239][ T6921]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  199.925271][ T6921]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  199.925296][ T6921]  ? lockdep_hardirqs_on+0x9c/0x150
[  199.925352][ T6921]  ? __fget_files+0x2a/0x420
[  199.925380][ T6921]  ? __fget_files+0x3a6/0x420
[  199.925403][ T6921]  ? __fget_files+0x2a/0x420
[  199.925431][ T6921]  security_file_ioctl+0xcb/0x2d0
[  199.925453][ T6921]  __se_sys_ioctl+0x47/0x170
[  199.925477][ T6921]  do_syscall_64+0xfa/0xfa0
[  199.925501][ T6921]  ? lockdep_hardirqs_on+0x9c/0x150
[  199.925524][ T6921]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.925543][ T6921]  ? clear_bhb_loop+0x60/0xb0
[  199.925566][ T6921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.925584][ T6921] RIP: 0033:0x7fdfb9def6c9
[  199.925601][ T6921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.925618][ T6921] RSP: 002b:00007fdfb804e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  199.925645][ T6921] RAX: ffffffffffffffda RBX: 00007fdfba045fa0 RCX: 00007fdfb9def6c9
[  199.925660][ T6921] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  199.925671][ T6921] RBP: 00007fdfb804e090 R08: 0000000000000000 R09: 0000000000000000
[  199.925683][ T6921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  199.925693][ T6921] R13: 00007fdfba046038 R14: 00007fdfba045fa0 R15: 00007ffdefa5d5f8
[  199.925727][ T6921]  </TASK>
[  199.926340][ T6921] ERROR: Out of memory at tomoyo_realpath_from_path.
[  200.213235][ T1812] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  204.787979][ T1812] usb 7-1: device descriptor read/all, error -71
[  204.810214][ T6942] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  204.810263][ T6942] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  204.810285][ T6942] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  204.813738][   T37] kauditd_printk_skb: 90 callbacks suppressed
[  204.813757][   T37] audit: type=1800 audit(1762553469.270:102): pid=6942 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.285" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[  204.940293][    C1] vkms_vblank_simulate: vblank timer overrun
[  205.033877][ T1584] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  205.100286][ T6955] FAULT_INJECTION: forcing a failure.
[  205.100286][ T6955] name failslab, interval 1, probability 0, space 0, times 0
[  205.100321][ T6955] CPU: 0 UID: 0 PID: 6955 Comm: syz.6.290 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  205.100343][ T6955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  205.100355][ T6955] Call Trace:
[  205.100362][ T6955]  <TASK>
[  205.100371][ T6955]  dump_stack_lvl+0x189/0x250
[  205.100402][ T6955]  ? __pfx____ratelimit+0x10/0x10
[  205.100427][ T6955]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.100452][ T6955]  ? __pfx__printk+0x10/0x10
[  205.100477][ T6955]  ? __pfx___might_resched+0x10/0x10
[  205.100495][ T6955]  ? fs_reclaim_acquire+0x7d/0x100
[  205.100522][ T6955]  should_fail_ex+0x46c/0x600
[  205.100549][ T6955]  should_failslab+0xa8/0x100
[  205.100572][ T6955]  __kmalloc_noprof+0xcc/0x7d0
[  205.100594][ T6955]  ? alloc_pipe_info+0x1fd/0x4e0
[  205.100614][ T6955]  ? alloc_pipe_info+0xe9/0x4e0
[  205.100638][ T6955]  alloc_pipe_info+0x1fd/0x4e0
[  205.100662][ T6955]  splice_direct_to_actor+0xa6e/0xcd0
[  205.100690][ T6955]  ? __lock_acquire+0xab9/0xd20
[  205.100726][ T6955]  ? __lock_acquire+0xab9/0xd20
[  205.100749][ T6955]  ? __pfx_direct_splice_actor+0x10/0x10
[  205.100773][ T6955]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  205.100809][ T6955]  do_splice_direct+0x187/0x270
[  205.100836][ T6955]  ? __pfx_do_splice_direct+0x10/0x10
[  205.100862][ T6955]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  205.100894][ T6955]  ? rw_verify_area+0x25b/0x4e0
[  205.100920][ T6955]  do_sendfile+0x4ec/0x7f0
[  205.100946][ T6955]  ? __pfx_vfs_write+0x10/0x10
[  205.100975][ T6955]  ? __pfx_do_sendfile+0x10/0x10
[  205.101015][ T6955]  __se_sys_sendfile64+0x13e/0x190
[  205.101052][ T6955]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  205.101083][ T6955]  ? do_syscall_64+0xbe/0xfa0
[  205.101111][ T6955]  do_syscall_64+0xfa/0xfa0
[  205.101133][ T6955]  ? lockdep_hardirqs_on+0x9c/0x150
[  205.101156][ T6955]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.101173][ T6955]  ? clear_bhb_loop+0x60/0xb0
[  205.101195][ T6955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.101213][ T6955] RIP: 0033:0x7f8557d1f6c9
[  205.101228][ T6955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.101244][ T6955] RSP: 002b:00007f8555f7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  205.101262][ T6955] RAX: ffffffffffffffda RBX: 00007f8557f75fa0 RCX: 00007f8557d1f6c9
[  205.101274][ T6955] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[  205.101284][ T6955] RBP: 00007f8555f7e090 R08: 0000000000000000 R09: 0000000000000000
[  205.101295][ T6955] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  205.101306][ T6955] R13: 00007f8557f76038 R14: 00007f8557f75fa0 R15: 00007ffc476d25e8
[  205.101336][ T6955]  </TASK>
[  205.272885][ T1584] usb 2-1: Using ep0 maxpacket: 32
[  205.342000][ T1584] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  205.342032][ T1584] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  205.342054][ T1584] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  205.342076][ T1584] usb 2-1: config 1 has no interface number 0
[  205.342126][ T1584] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  205.342154][ T1584] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  205.342198][ T1584] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  205.342222][ T1584] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.516343][ T1584] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  205.751671][ T1584] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now attached
[  206.302117][ T6961] wireguard0: entered promiscuous mode
[  206.302146][ T6961] wireguard0: entered allmulticast mode
[  206.534326][    C1] vkms_vblank_simulate: vblank timer overrun
[  207.288286][ T1812] snd_usb_pod 2-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[  207.755059][    C1] vkms_vblank_simulate: vblank timer overrun
[  207.785096][ T5981] usb 2-1: USB disconnect, device number 9
[  207.923735][ T5981] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  208.291599][    C1] vkms_vblank_simulate: vblank timer overrun
[  208.831857][    C1] vkms_vblank_simulate: vblank timer overrun
[  208.883824][    C1] vkms_vblank_simulate: vblank timer overrun
[  208.954042][    C1] vkms_vblank_simulate: vblank timer overrun
[  208.984776][    C1] vkms_vblank_simulate: vblank timer overrun
[  209.206421][    C1] vkms_vblank_simulate: vblank timer overrun
[  209.232300][    C1] vkms_vblank_simulate: vblank timer overrun
[  210.074351][ T6993] FAULT_INJECTION: forcing a failure.
[  210.074351][ T6993] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  210.074387][ T6993] CPU: 0 UID: 0 PID: 6993 Comm: syz.6.300 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  210.074409][ T6993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  210.074421][ T6993] Call Trace:
[  210.074429][ T6993]  <TASK>
[  210.074438][ T6993]  dump_stack_lvl+0x189/0x250
[  210.074470][ T6993]  ? __pfx____ratelimit+0x10/0x10
[  210.074495][ T6993]  ? __pfx_dump_stack_lvl+0x10/0x10
[  210.074521][ T6993]  ? __pfx__printk+0x10/0x10
[  210.074544][ T6993]  ? __might_fault+0xb0/0x130
[  210.074579][ T6993]  should_fail_ex+0x46c/0x600
[  210.074609][ T6993]  _copy_from_user+0x2d/0xb0
[  210.074631][ T6993]  get_nodes+0x29c/0x390
[  210.074653][ T6993]  ? __pfx_get_nodes+0x10/0x10
[  210.074683][ T6993]  __se_sys_migrate_pages+0xc8/0x650
[  210.074710][ T6993]  ? __pfx___se_sys_migrate_pages+0x10/0x10
[  210.074740][ T6993]  ? do_syscall_64+0xbe/0xfa0
[  210.074768][ T6993]  do_syscall_64+0xfa/0xfa0
[  210.074790][ T6993]  ? lockdep_hardirqs_on+0x9c/0x150
[  210.074813][ T6993]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.074831][ T6993]  ? clear_bhb_loop+0x60/0xb0
[  210.074859][ T6993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.074877][ T6993] RIP: 0033:0x7f8557d1f6c9
[  210.074894][ T6993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.074911][ T6993] RSP: 002b:00007f8555f7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100
[  210.074932][ T6993] RAX: ffffffffffffffda RBX: 00007f8557f75fa0 RCX: 00007f8557d1f6c9
[  210.074945][ T6993] RDX: 0000200000000000 RSI: 0000000000000004 RDI: 0000000000000000
[  210.074958][ T6993] RBP: 00007f8555f7e090 R08: 0000000000000000 R09: 0000000000000000
[  210.074970][ T6993] R10: 0000200000000300 R11: 0000000000000246 R12: 0000000000000001
[  210.074982][ T6993] R13: 00007f8557f76038 R14: 00007f8557f75fa0 R15: 00007ffc476d25e8
[  210.075015][ T6993]  </TASK>
[  210.722956][ T5915] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  211.048244][    C1] vkms_vblank_simulate: vblank timer overrun
[  211.073585][ T5915] usb 4-1: Using ep0 maxpacket: 8
[  211.080312][ T5915] usb 4-1: New USB device found, idVendor=13d8, idProduct=0001, bcdDevice=30.62
[  211.080342][ T5915] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.080363][ T5915] usb 4-1: Product: syz
[  211.080379][ T5915] usb 4-1: Manufacturer: syz
[  211.080393][ T5915] usb 4-1: SerialNumber: syz
[  211.233479][    C1] vkms_vblank_simulate: vblank timer overrun
[  211.364405][ T5915] usb 4-1: config 0 descriptor??
[  211.694631][    C1] vkms_vblank_simulate: vblank timer overrun
[  211.854266][ T7010] netlink: 180 bytes leftover after parsing attributes in process `syz.2.304'.
[  211.870508][ T7010] netlink: 32 bytes leftover after parsing attributes in process `syz.2.304'.
[  211.947697][    C1] vkms_vblank_simulate: vblank timer overrun
[  211.951915][ T6987] Bluetooth: hci1: command 0x0406 tx timeout
[  211.951959][ T6987] Bluetooth: hci3: command 0x0406 tx timeout
[  211.951980][ T6987] Bluetooth: hci4: command 0x0406 tx timeout
[  211.952001][ T6987] Bluetooth: hci0: command 0x0c1a tx timeout
[  211.952022][ T6987] Bluetooth: hci2: command 0x0406 tx timeout
[  212.079320][ T5915] usb 4-1: selecting invalid altsetting 3
[  212.079360][ T5915] comedi comedi5: could not set alternate setting 3 in high speed
[  212.079378][ T5915] usbdux 4-1:0.0: driver 'usbdux' failed to auto-configure device.
[  212.143505][ T5915] usbdux 4-1:0.0: probe with driver usbdux failed with error -22
[  212.344075][   T44] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  212.345340][ T5981] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  212.349468][ T7017] veth0_vlan: entered allmulticast mode
[  212.495851][ T5981] usb 3-1: device descriptor read/64, error -71
[  212.523333][   T44] usb 2-1: Using ep0 maxpacket: 16
[  213.147451][    C1] vkms_vblank_simulate: vblank timer overrun
[  213.172048][   T44] usb 2-1: config 254 has an invalid interface number: 235 but max is 0
[  213.172078][   T44] usb 2-1: config 254 has no interface number 0
[  213.172127][   T44] usb 2-1: config 254 interface 235 altsetting 2 bulk endpoint 0x6 has invalid maxpacket 32
[  213.172152][   T44] usb 2-1: config 254 interface 235 altsetting 2 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  213.172178][   T44] usb 2-1: config 254 interface 235 altsetting 2 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  213.172205][   T44] usb 2-1: config 254 interface 235 altsetting 2 endpoint 0x8F has invalid wMaxPacketSize 0
[  213.172228][   T44] usb 2-1: config 254 interface 235 has no altsetting 0
[  213.244539][   T44] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1
[  213.244570][   T44] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.244591][   T44] usb 2-1: Product: syz
[  213.244606][   T44] usb 2-1: Manufacturer: syz
[  213.244621][   T44] usb 2-1: SerialNumber: syz
[  213.315849][ T7013] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  213.362070][ T1584] usb 4-1: USB disconnect, device number 13
[  213.489902][    C1] vkms_vblank_simulate: vblank timer overrun
[  213.491132][ T5981] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  213.520658][ T7013] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  213.564810][   T44] usbtest 2-1:254.235: Linux gadget zero
[  213.564833][   T44] usbtest 2-1:254.235: high-speed {control in/out bulk-out int-in} tests (+alt)
[  213.692927][ T5981] usb 3-1: device descriptor read/64, error -71
[  213.735638][ T7013] netlink: 224 bytes leftover after parsing attributes in process `syz.1.307'.
[  213.735681][ T7013] netlink: 48 bytes leftover after parsing attributes in process `syz.1.307'.
[  213.756978][ T7026] FAULT_INJECTION: forcing a failure.
[  213.756978][ T7026] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  213.757011][ T7026] CPU: 1 UID: 0 PID: 7026 Comm: syz.6.310 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  213.757033][ T7026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  213.757044][ T7026] Call Trace:
[  213.757051][ T7026]  <TASK>
[  213.757059][ T7026]  dump_stack_lvl+0x189/0x250
[  213.757090][ T7026]  ? __pfx____ratelimit+0x10/0x10
[  213.757114][ T7026]  ? __pfx_dump_stack_lvl+0x10/0x10
[  213.757140][ T7026]  ? __pfx__printk+0x10/0x10
[  213.757176][ T7026]  should_fail_ex+0x46c/0x600
[  213.757206][ T7026]  _copy_to_user+0x31/0xb0
[  213.757228][ T7026]  simple_read_from_buffer+0xe1/0x170
[  213.757258][ T7026]  proc_fail_nth_read+0x1b6/0x220
[  213.757280][ T7026]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  213.757310][ T7026]  ? rw_verify_area+0x2ac/0x4e0
[  213.757332][ T7026]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  213.757353][ T7026]  vfs_read+0x206/0xa30
[  213.757382][ T7026]  ? __pfx_vfs_read+0x10/0x10
[  213.757400][ T7026]  ? try_to_take_rt_mutex+0x7fd/0xac0
[  213.757431][ T7026]  ? mutex_lock_nested+0x154/0x1d0
[  213.757449][ T7026]  ? fdget_pos+0x253/0x320
[  213.757482][ T7026]  ksys_read+0x14b/0x260
[  213.757501][ T7026]  ? __fget_files+0x2a/0x420
[  213.757526][ T7026]  ? __pfx_ksys_read+0x10/0x10
[  213.757546][ T7026]  ? __secure_computing+0xe2/0x2a0
[  213.757573][ T7026]  do_syscall_64+0xfa/0xfa0
[  213.757596][ T7026]  ? lockdep_hardirqs_on+0x9c/0x150
[  213.757619][ T7026]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.757637][ T7026]  ? clear_bhb_loop+0x60/0xb0
[  213.757659][ T7026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.757676][ T7026] RIP: 0033:0x7f8557d1e0dc
[  213.757693][ T7026] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  213.757709][ T7026] RSP: 002b:00007f8555f7e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  213.757728][ T7026] RAX: ffffffffffffffda RBX: 00007f8557f75fa0 RCX: 00007f8557d1e0dc
[  213.757742][ T7026] RDX: 000000000000000f RSI: 00007f8555f7e0a0 RDI: 0000000000000003
[  213.757754][ T7026] RBP: 00007f8555f7e090 R08: 0000000000000000 R09: 0000000000000000
[  213.757765][ T7026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.757776][ T7026] R13: 00007f8557f76038 R14: 00007f8557f75fa0 R15: 00007ffc476d25e8
[  213.757808][ T7026]  </TASK>
[  213.803370][ T5981] usb usb3-port1: attempt power cycle
[  214.122493][   T44] usb 2-1: USB disconnect, device number 10
[  214.193215][ T5981] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  214.224530][ T5981] usb 3-1: device descriptor read/8, error -71
[  214.492954][ T5981] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  214.514285][ T5981] usb 3-1: device descriptor read/8, error -71
[  214.651507][ T5981] usb usb3-port1: unable to enumerate USB device
[  214.717380][    C1] vkms_vblank_simulate: vblank timer overrun
[  214.825859][ T7036] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.826504][ T7036] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  215.052955][ T1584] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  215.193005][ T1584] usb 4-1: device descriptor read/64, error -71
[  215.440703][ T1584] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  215.833165][ T7041] wireguard0: entered promiscuous mode
[  215.833193][ T7041] wireguard0: entered allmulticast mode
[  217.545864][    C0] vkms_vblank_simulate: vblank timer overrun
[  217.870479][    C0] vkms_vblank_simulate: vblank timer overrun
[  217.984653][ T7061] Zero length message leads to an empty skb
[  218.200075][    C0] vkms_vblank_simulate: vblank timer overrun
[  218.497723][    C0] vkms_vblank_simulate: vblank timer overrun
[  218.833112][ T7060] evm: overlay not supported
[  219.233514][    C0] vkms_vblank_simulate: vblank timer overrun
[  219.332648][    C0] vkms_vblank_simulate: vblank timer overrun
[  219.660222][    C0] vkms_vblank_simulate: vblank timer overrun
[  220.808912][    C0] vkms_vblank_simulate: vblank timer overrun
[  221.009333][ T7090] overlayfs: failed to resolve './file1': -2
[  223.117156][    C0] vkms_vblank_simulate: vblank timer overrun
[  225.298743][    C0] vkms_vblank_simulate: vblank timer overrun
[  225.471351][    C0] vkms_vblank_simulate: vblank timer overrun
[  226.378142][    C0] vkms_vblank_simulate: vblank timer overrun
[  226.706988][    C0] vkms_vblank_simulate: vblank timer overrun
[  227.162963][ T1584] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  227.281634][ T7170] FAULT_INJECTION: forcing a failure.
[  227.281634][ T7170] name failslab, interval 1, probability 0, space 0, times 0
[  227.281670][ T7170] CPU: 0 UID: 0 PID: 7170 Comm: syz.6.359 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  227.281692][ T7170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  227.281703][ T7170] Call Trace:
[  227.281711][ T7170]  <TASK>
[  227.281719][ T7170]  dump_stack_lvl+0x189/0x250
[  227.281749][ T7170]  ? __pfx____ratelimit+0x10/0x10
[  227.281771][ T7170]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.281795][ T7170]  ? __pfx__printk+0x10/0x10
[  227.281820][ T7170]  ? __pfx___might_resched+0x10/0x10
[  227.281838][ T7170]  ? fs_reclaim_acquire+0x7d/0x100
[  227.281866][ T7170]  should_fail_ex+0x46c/0x600
[  227.281893][ T7170]  ? __alloc_skb+0x112/0x2d0
[  227.281908][ T7170]  should_failslab+0xa8/0x100
[  227.281929][ T7170]  ? __alloc_skb+0x112/0x2d0
[  227.281941][ T7170]  kmem_cache_alloc_node_noprof+0x78/0x6e0
[  227.281962][ T7170]  ? netlink_autobind+0xdb/0x300
[  227.281983][ T7170]  __alloc_skb+0x112/0x2d0
[  227.282001][ T7170]  netlink_sendmsg+0x5c6/0xb30
[  227.282014][ T7170]  ? is_bpf_text_address+0x26/0x2b0
[  227.282043][ T7170]  ? __pfx_netlink_sendmsg+0x10/0x10
[  227.282065][ T7170]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  227.282085][ T7170]  ? __pfx_netlink_sendmsg+0x10/0x10
[  227.282102][ T7170]  __sock_sendmsg+0x21c/0x270
[  227.282132][ T7170]  ____sys_sendmsg+0x508/0x820
[  227.282154][ T7170]  ? __pfx_____sys_sendmsg+0x10/0x10
[  227.282179][ T7170]  ? import_iovec+0x74/0xa0
[  227.282197][ T7170]  ___sys_sendmsg+0x21f/0x2a0
[  227.282216][ T7170]  ? __pfx____sys_sendmsg+0x10/0x10
[  227.282267][ T7170]  ? __fget_files+0x2a/0x420
[  227.282287][ T7170]  ? __fget_files+0x3a6/0x420
[  227.282314][ T7170]  __x64_sys_sendmsg+0x1a1/0x260
[  227.282333][ T7170]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  227.282357][ T7170]  ? __pfx_ksys_write+0x10/0x10
[  227.282379][ T7170]  ? do_syscall_64+0xbe/0xfa0
[  227.282401][ T7170]  do_syscall_64+0xfa/0xfa0
[  227.282419][ T7170]  ? lockdep_hardirqs_on+0x9c/0x150
[  227.282439][ T7170]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.282454][ T7170]  ? clear_bhb_loop+0x60/0xb0
[  227.282472][ T7170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.282486][ T7170] RIP: 0033:0x7f8557d1f6c9
[  227.282501][ T7170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.282515][ T7170] RSP: 002b:00007f8555f7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  227.282531][ T7170] RAX: ffffffffffffffda RBX: 00007f8557f75fa0 RCX: 00007f8557d1f6c9
[  227.282542][ T7170] RDX: 0000000000000004 RSI: 0000200000000000 RDI: 0000000000000003
[  227.282552][ T7170] RBP: 00007f8555f7e090 R08: 0000000000000000 R09: 0000000000000000
[  227.282561][ T7170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.282571][ T7170] R13: 00007f8557f76038 R14: 00007f8557f75fa0 R15: 00007ffc476d25e8
[  227.282596][ T7170]  </TASK>
[  227.292949][ T1584] usb 2-1: device descriptor read/64, error -71
[  227.393967][ T5914] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  227.607732][ T5914] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  227.607760][ T5914] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  227.609017][ T5914] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  227.609131][ T5914] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  227.609153][ T5914] usb 6-1: SerialNumber: syz
[  227.654138][ T1584] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  227.770745][ T7176] netlink: 'syz.6.361': attribute type 2 has an invalid length.
[  227.782929][ T1584] usb 2-1: device descriptor read/64, error -71
[  227.783420][   T37] audit: type=1326 audit(1762553492.250:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4664876567 code=0x7ffc0000
[  227.783576][   T37] audit: type=1326 audit(1762553492.250:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f466481b779 code=0x7ffc0000
[  227.783904][   T37] audit: type=1326 audit(1762553492.250:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4664876567 code=0x7ffc0000
[  227.783998][   T37] audit: type=1326 audit(1762553492.250:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f466481b779 code=0x7ffc0000
[  227.784290][   T37] audit: type=1326 audit(1762553492.250:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4664876567 code=0x7ffc0000
[  227.784444][   T37] audit: type=1326 audit(1762553492.250:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f466481b779 code=0x7ffc0000
[  227.786153][   T37] audit: type=1326 audit(1762553492.250:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4664876567 code=0x7ffc0000
[  227.787668][   T37] audit: type=1326 audit(1762553492.250:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f466481b779 code=0x7ffc0000
[  227.789877][   T37] audit: type=1326 audit(1762553492.250:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f466487f6c9 code=0x7ffc0000
[  227.798139][   T37] audit: type=1326 audit(1762553492.260:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7173 comm="syz.3.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4664876567 code=0x7ffc0000
[  227.893580][ T1584] usb usb2-port1: attempt power cycle
[  228.218385][ T5914] usb 6-1: 0:2 : does not exist
[  228.292945][ T1584] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  228.315742][ T1584] usb 2-1: device descriptor read/8, error -71
[  228.444604][ T5914] usb 6-1: USB disconnect, device number 8
[  228.562939][ T1584] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  228.583707][ T1584] usb 2-1: device descriptor read/8, error -71
[  228.703325][ T1584] usb usb2-port1: unable to enumerate USB device
[  229.040695][ T5852] udevd[5852]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  229.625487][ T7189] wireguard0: entered promiscuous mode
[  229.625517][ T7189] wireguard0: entered allmulticast mode
[  230.734301][ T7215] FAULT_INJECTION: forcing a failure.
[  230.734301][ T7215] name failslab, interval 1, probability 0, space 0, times 0
[  230.734338][ T7215] CPU: 1 UID: 0 PID: 7215 Comm: syz.3.374 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  230.734360][ T7215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  230.734372][ T7215] Call Trace:
[  230.734380][ T7215]  <TASK>
[  230.734388][ T7215]  dump_stack_lvl+0x189/0x250
[  230.734419][ T7215]  ? __pfx____ratelimit+0x10/0x10
[  230.734444][ T7215]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.734470][ T7215]  ? __pfx__printk+0x10/0x10
[  230.734498][ T7215]  ? __pfx___might_resched+0x10/0x10
[  230.734519][ T7215]  ? fs_reclaim_acquire+0x7d/0x100
[  230.734544][ T7215]  should_fail_ex+0x46c/0x600
[  230.734567][ T7215]  ? __alloc_skb+0x112/0x2d0
[  230.734582][ T7215]  should_failslab+0xa8/0x100
[  230.734603][ T7215]  ? __alloc_skb+0x112/0x2d0
[  230.734615][ T7215]  kmem_cache_alloc_node_noprof+0x78/0x6e0
[  230.734635][ T7215]  ? rt_spin_unlock+0x150/0x200
[  230.734656][ T7215]  __alloc_skb+0x112/0x2d0
[  230.734674][ T7215]  alloc_skb_with_frags+0xca/0x890
[  230.734697][ T7215]  ? do_raw_spin_lock+0x121/0x290
[  230.734717][ T7215]  sock_alloc_send_pskb+0x859/0x990
[  230.734736][ T7215]  ? __lock_acquire+0xab9/0xd20
[  230.734769][ T7215]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  230.734788][ T7215]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  230.734810][ T7215]  ? smack_socket_getpeersec_dgram+0x320/0x430
[  230.734835][ T7215]  unix_dgram_sendmsg+0x461/0x1850
[  230.734855][ T7215]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  230.734870][ T7215]  ? put_swap_device+0x1e/0x230
[  230.734895][ T7215]  ? put_swap_device+0x1e/0x230
[  230.734912][ T7215]  ? put_swap_device+0x1e/0x230
[  230.734933][ T7215]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  230.734946][ T7215]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  230.734973][ T7215]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  230.734993][ T7215]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  230.735007][ T7215]  __sock_sendmsg+0x21c/0x270
[  230.735031][ T7215]  sock_write_iter+0x27f/0x370
[  230.735058][ T7215]  ? __pfx_sock_write_iter+0x10/0x10
[  230.735096][ T7215]  vfs_write+0x5d5/0xb40
[  230.735118][ T7215]  ? __pfx_sock_write_iter+0x10/0x10
[  230.735137][ T7215]  ? __pfx_vfs_write+0x10/0x10
[  230.735164][ T7215]  ? __fget_files+0x2a/0x420
[  230.735191][ T7215]  ksys_write+0x14b/0x260
[  230.735210][ T7215]  ? __pfx_ksys_write+0x10/0x10
[  230.735231][ T7215]  ? do_syscall_64+0xbe/0xfa0
[  230.735254][ T7215]  do_syscall_64+0xfa/0xfa0
[  230.735272][ T7215]  ? lockdep_hardirqs_on+0x9c/0x150
[  230.735291][ T7215]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.735306][ T7215]  ? clear_bhb_loop+0x60/0xb0
[  230.735324][ T7215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.735338][ T7215] RIP: 0033:0x7f466487f6c9
[  230.735352][ T7215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.735365][ T7215] RSP: 002b:00007f4662ade038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  230.735382][ T7215] RAX: ffffffffffffffda RBX: 00007f4664ad5fa0 RCX: 00007f466487f6c9
[  230.735393][ T7215] RDX: 00000000006f4000 RSI: 0000000000000000 RDI: 0000000000000003
[  230.735402][ T7215] RBP: 00007f4662ade090 R08: 0000000000000000 R09: 0000000000000000
[  230.735412][ T7215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  230.735421][ T7215] R13: 00007f4664ad6038 R14: 00007f4664ad5fa0 R15: 00007ffdd1e95a78
[  230.735447][ T7215]  </TASK>
[  231.254851][ T7222] snd_dummy snd_dummy.0: control 0:0:8:syz0:0 is already present
[  232.392975][    T9] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  232.423135][ T1812] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  232.549352][    T9] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  232.549380][    T9] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  232.550896][    T9] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  232.550923][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  232.550943][    T9] usb 3-1: SerialNumber: syz
[  232.596447][ T7244] FAULT_INJECTION: forcing a failure.
[  232.596447][ T7244] name failslab, interval 1, probability 0, space 0, times 0
[  232.596480][ T7244] CPU: 1 UID: 0 PID: 7244 Comm: syz.5.382 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  232.596503][ T7244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  232.596515][ T7244] Call Trace:
[  232.596523][ T7244]  <TASK>
[  232.596531][ T7244]  dump_stack_lvl+0x189/0x250
[  232.596562][ T7244]  ? __pfx____ratelimit+0x10/0x10
[  232.596587][ T7244]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.596613][ T7244]  ? __pfx__printk+0x10/0x10
[  232.596643][ T7244]  ? __pfx___might_resched+0x10/0x10
[  232.596662][ T7244]  ? fs_reclaim_acquire+0x7d/0x100
[  232.596692][ T7244]  should_fail_ex+0x46c/0x600
[  232.596727][ T7244]  should_failslab+0xa8/0x100
[  232.596754][ T7244]  __kmalloc_noprof+0xcc/0x7d0
[  232.596777][ T7244]  ? tomoyo_encode+0x28b/0x550
[  232.596802][ T7244]  tomoyo_encode+0x28b/0x550
[  232.596826][ T7244]  tomoyo_realpath_from_path+0x58d/0x5d0
[  232.596850][ T7244]  ? tomoyo_domain+0xda/0x130
[  232.596878][ T7244]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  232.596905][ T7244]  tomoyo_path_number_perm+0x1e8/0x5a0
[  232.596934][ T7244]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  232.596962][ T7244]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  232.596983][ T7244]  ? lockdep_hardirqs_on+0x9c/0x150
[  232.597027][ T7244]  ? __fget_files+0x2a/0x420
[  232.597050][ T7244]  ? __fget_files+0x3a6/0x420
[  232.597068][ T7244]  ? __fget_files+0x2a/0x420
[  232.597096][ T7244]  security_file_ioctl+0xcb/0x2d0
[  232.597114][ T7244]  __se_sys_ioctl+0x47/0x170
[  232.597133][ T7244]  do_syscall_64+0xfa/0xfa0
[  232.597152][ T7244]  ? lockdep_hardirqs_on+0x9c/0x150
[  232.597173][ T7244]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.597189][ T7244]  ? clear_bhb_loop+0x60/0xb0
[  232.597206][ T7244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.597220][ T7244] RIP: 0033:0x7f3d76e4f6c9
[  232.597234][ T7244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.597248][ T7244] RSP: 002b:00007f3d750b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  232.597265][ T7244] RAX: ffffffffffffffda RBX: 00007f3d770a5fa0 RCX: 00007f3d76e4f6c9
[  232.597276][ T7244] RDX: 0000200000001440 RSI: 00000000000089f0 RDI: 0000000000000003
[  232.597286][ T7244] RBP: 00007f3d750b6090 R08: 0000000000000000 R09: 0000000000000000
[  232.597295][ T7244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.597305][ T7244] R13: 00007f3d770a6038 R14: 00007f3d770a5fa0 R15: 00007ffe2551f1d8
[  232.597331][ T7244]  </TASK>
[  232.605476][ T7244] ERROR: Out of memory at tomoyo_realpath_from_path.
[  232.619360][ T1812] usb 7-1: unable to read config index 0 descriptor/start: -61
[  232.619398][ T1812] usb 7-1: can't read configurations, error -61
[  232.872978][ T1812] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  233.054219][    T9] usb 3-1: 0:2 : does not exist
[  233.074870][ T1812] usb 7-1: unable to read config index 0 descriptor/start: -61
[  233.074918][ T1812] usb 7-1: can't read configurations, error -61
[  233.080258][ T1812] usb usb7-port1: attempt power cycle
[  233.143381][    T9] usb 3-1: USB disconnect, device number 16
[  233.145998][ T7248] wireguard0: entered promiscuous mode
[  233.146023][ T7248] wireguard0: entered allmulticast mode
[  233.228421][ T5852] udevd[5852]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  233.463000][ T1812] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  233.491437][ T1812] usb 7-1: unable to read config index 0 descriptor/start: -61
[  233.491478][ T1812] usb 7-1: can't read configurations, error -61
[  233.615239][ T1812] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  233.644002][ T1812] usb 7-1: unable to read config index 0 descriptor/start: -61
[  233.644043][ T1812] usb 7-1: can't read configurations, error -61
[  233.644459][ T1812] usb usb7-port1: unable to enumerate USB device
[  233.965100][    C1] vkms_vblank_simulate: vblank timer overrun
[  234.073575][ T7258] FAULT_INJECTION: forcing a failure.
[  234.073575][ T7258] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.073609][ T7258] CPU: 0 UID: 0 PID: 7258 Comm: syz.1.385 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  234.073631][ T7258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  234.073642][ T7258] Call Trace:
[  234.073650][ T7258]  <TASK>
[  234.073658][ T7258]  dump_stack_lvl+0x189/0x250
[  234.073689][ T7258]  ? __pfx____ratelimit+0x10/0x10
[  234.073714][ T7258]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.073740][ T7258]  ? __pfx__printk+0x10/0x10
[  234.073776][ T7258]  should_fail_ex+0x46c/0x600
[  234.073805][ T7258]  strncpy_from_user+0x36/0x290
[  234.073834][ T7258]  path_setxattrat+0x150/0x3a0
[  234.073863][ T7258]  ? __pfx_path_setxattrat+0x10/0x10
[  234.073910][ T7258]  ? ksys_write+0x230/0x260
[  234.073935][ T7258]  ? __pfx_ksys_write+0x10/0x10
[  234.073961][ T7258]  __x64_sys_fsetxattr+0xbc/0xe0
[  234.073990][ T7258]  do_syscall_64+0xfa/0xfa0
[  234.074021][ T7258]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.074044][ T7258]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.074059][ T7258]  ? clear_bhb_loop+0x60/0xb0
[  234.074075][ T7258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.074088][ T7258] RIP: 0033:0x7fc2e9b8f6c9
[  234.074102][ T7258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.074114][ T7258] RSP: 002b:00007fc2e7df6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[  234.074130][ T7258] RAX: ffffffffffffffda RBX: 00007fc2e9de5fa0 RCX: 00007fc2e9b8f6c9
[  234.074141][ T7258] RDX: 0000200000000100 RSI: 0000200000000000 RDI: 0000000000000003
[  234.074150][ T7258] RBP: 00007fc2e7df6090 R08: 0000000000000002 R09: 0000000000000000
[  234.074159][ T7258] R10: 000000000000000e R11: 0000000000000246 R12: 0000000000000001
[  234.074167][ T7258] R13: 00007fc2e9de6038 R14: 00007fc2e9de5fa0 R15: 00007ffc3d3b5bb8
[  234.074192][ T7258]  </TASK>
[  234.203033][ T1812] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  234.255868][    C1] vkms_vblank_simulate: vblank timer overrun
[  234.384882][ T1812] usb 4-1: Using ep0 maxpacket: 8
[  234.389814][ T1812] usb 4-1: config 8 has an invalid interface number: 160 but max is 0
[  234.389841][ T1812] usb 4-1: config 8 has no interface number 0
[  234.389877][ T1812] usb 4-1: config 8 interface 160 has no altsetting 0
[  234.393601][ T1812] usb 4-1: New USB device found, idVendor=0dba, idProduct=3000, bcdDevice=82.ee
[  234.393626][ T1812] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.393646][ T1812] usb 4-1: Product: syz
[  234.393660][ T1812] usb 4-1: Manufacturer: syz
[  234.393674][ T1812] usb 4-1: SerialNumber: syz
[  234.451871][    C1] vkms_vblank_simulate: vblank timer overrun
[  234.603781][    C1] vkms_vblank_simulate: vblank timer overrun
[  234.809719][ T1812] usb 4-1: Invalid firmware size=18.
[  234.832919][ T1812] usb 4-1: USB disconnect, device number 16
[  235.439385][    C1] vkms_vblank_simulate: vblank timer overrun
[  236.032893][    T9] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  236.085706][ T7283] fuse: Unknown parameter ''
[  236.162938][    T9] usb 7-1: device descriptor read/64, error -71
[  236.376312][ T5120] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  236.376467][ T5120] Bluetooth: hci5: Injecting HCI hardware error event
[  236.378538][ T5120] Bluetooth: hci5: hardware error 0x00
[  236.405281][    T9] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  236.543021][    T9] usb 7-1: device descriptor read/64, error -71
[  236.667965][    T9] usb usb7-port1: attempt power cycle
[  236.963240][ T7293] wireguard0: entered promiscuous mode
[  236.963269][ T7293] wireguard0: entered allmulticast mode
[  237.042895][    T9] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  237.073875][    T9] usb 7-1: device descriptor read/8, error -71
[  237.312954][    T9] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  237.337095][    T9] usb 7-1: device descriptor read/8, error -71
[  237.443563][    T9] usb usb7-port1: unable to enumerate USB device
[  237.533196][ T1812] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  237.684725][ T1812] usb 4-1: device descriptor read/64, error -71
[  237.852129][ T7302] FAULT_INJECTION: forcing a failure.
[  237.852129][ T7302] name failslab, interval 1, probability 0, space 0, times 0
[  237.852164][ T7302] CPU: 0 UID: 0 PID: 7302 Comm: syz.2.399 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  237.852186][ T7302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  237.852198][ T7302] Call Trace:
[  237.852206][ T7302]  <TASK>
[  237.852214][ T7302]  dump_stack_lvl+0x189/0x250
[  237.852245][ T7302]  ? __pfx____ratelimit+0x10/0x10
[  237.852271][ T7302]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.852296][ T7302]  ? __pfx__printk+0x10/0x10
[  237.852323][ T7302]  ? __pfx___might_resched+0x10/0x10
[  237.852342][ T7302]  ? fs_reclaim_acquire+0x7d/0x100
[  237.852371][ T7302]  should_fail_ex+0x46c/0x600
[  237.852399][ T7302]  ? __alloc_skb+0x112/0x2d0
[  237.852418][ T7302]  should_failslab+0xa8/0x100
[  237.852442][ T7302]  ? __alloc_skb+0x112/0x2d0
[  237.852466][ T7302]  kmem_cache_alloc_node_noprof+0x78/0x6e0
[  237.852500][ T7302]  __alloc_skb+0x112/0x2d0
[  237.852524][ T7302]  _sctp_make_chunk+0x5e/0x430
[  237.852554][ T7302]  sctp_make_datafrag_empty+0x122/0x230
[  237.852581][ T7302]  ? __pfx_sctp_make_datafrag_empty+0x10/0x10
[  237.852605][ T7302]  ? __kmalloc_cache_noprof+0x1ef/0x6c0
[  237.852627][ T7302]  ? __lock_acquire+0xab9/0xd20
[  237.852649][ T7302]  ? sctp_auth_send_cid+0x69/0x250
[  237.852676][ T7302]  sctp_datamsg_from_user+0x729/0xef0
[  237.852713][ T7302]  ? __genradix_ptr+0x1e1/0x220
[  237.852736][ T7302]  sctp_sendmsg_to_asoc+0xffe/0x1810
[  237.852789][ T7302]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  237.852824][ T7302]  ? rt_spin_unlock+0x161/0x200
[  237.852844][ T7302]  ? sctp_sendmsg_check_sflags+0x18d/0x2e0
[  237.852873][ T7302]  sctp_sendmsg+0x174f/0x2590
[  237.852909][ T7302]  ? __pfx_sctp_sendmsg+0x10/0x10
[  237.852938][ T7302]  ? __might_fault+0xb0/0x130
[  237.852975][ T7302]  ? sock_rps_record_flow+0x19/0x410
[  237.853002][ T7302]  ? inet_sendmsg+0x2f4/0x370
[  237.853025][ T7302]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  237.853052][ T7302]  __sock_sendmsg+0x19c/0x270
[  237.853082][ T7302]  sock_write_iter+0x27f/0x370
[  237.853110][ T7302]  ? __pfx_sock_write_iter+0x10/0x10
[  237.853159][ T7302]  vfs_write+0x5d5/0xb40
[  237.853188][ T7302]  ? __pfx_sock_write_iter+0x10/0x10
[  237.853213][ T7302]  ? __pfx_vfs_write+0x10/0x10
[  237.853248][ T7302]  ? __fget_files+0x2a/0x420
[  237.853283][ T7302]  ksys_write+0x14b/0x260
[  237.853307][ T7302]  ? __pfx_ksys_write+0x10/0x10
[  237.853335][ T7302]  ? do_syscall_64+0xbe/0xfa0
[  237.853363][ T7302]  do_syscall_64+0xfa/0xfa0
[  237.853385][ T7302]  ? lockdep_hardirqs_on+0x9c/0x150
[  237.853409][ T7302]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.853428][ T7302]  ? clear_bhb_loop+0x60/0xb0
[  237.853450][ T7302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.853475][ T7302] RIP: 0033:0x7fdfb9def6c9
[  237.853491][ T7302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.853508][ T7302] RSP: 002b:00007fdfb804e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  237.853528][ T7302] RAX: ffffffffffffffda RBX: 00007fdfba045fa0 RCX: 00007fdfb9def6c9
[  237.853541][ T7302] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000004
[  237.853553][ T7302] RBP: 00007fdfb804e090 R08: 0000000000000000 R09: 0000000000000000
[  237.853564][ T7302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  237.853576][ T7302] R13: 00007fdfba046038 R14: 00007fdfba045fa0 R15: 00007ffdefa5d5f8
[  237.853609][ T7302]  </TASK>
[  237.923054][ T1812] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  238.092896][ T1812] usb 4-1: device descriptor read/64, error -71
[  238.192927][ T5866] usb 6-1: new low-speed USB device number 9 using dummy_hcd
[  238.203247][ T1812] usb usb4-port1: attempt power cycle
[  238.333026][ T5866] usb 6-1: device descriptor read/64, error -71
[  238.584434][ T1812] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  238.615314][ T5866] usb 6-1: new low-speed USB device number 10 using dummy_hcd
[  238.742943][ T5866] usb 6-1: device descriptor read/64, error -71
[  238.762935][    T9] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  238.772884][ T5120] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  238.853517][ T5866] usb usb6-port1: attempt power cycle
[  238.919241][    T9] usb 3-1: unable to read config index 0 descriptor/start: -61
[  238.919282][    T9] usb 3-1: can't read configurations, error -61
[  239.083312][    T9] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  239.249930][    T9] usb 3-1: unable to read config index 0 descriptor/start: -61
[  239.249970][    T9] usb 3-1: can't read configurations, error -61
[  239.251690][    T9] usb usb3-port1: attempt power cycle
[  239.577455][ T7317] overlayfs: failed to resolve './file1': -2
[  239.945433][ T5866] usb 6-1: new low-speed USB device number 11 using dummy_hcd
[  239.994466][ T5866] usb 6-1: device descriptor read/8, error -71
[  240.115431][ T5120] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[  240.118341][ T5120] Bluetooth: hci6: Injecting HCI hardware error event
[  240.147572][ T5818] Bluetooth: hci6: hardware error 0x00
[  240.182933][    T9] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  240.230268][    T9] usb 3-1: unable to read config index 0 descriptor/start: -61
[  240.230307][    T9] usb 3-1: can't read configurations, error -61
[  240.329765][ T5866] usb 6-1: new low-speed USB device number 12 using dummy_hcd
[  240.398765][ T1812] usb 4-1: device descriptor read/8, error -71
[  240.443647][ T5866] usb 6-1: device descriptor read/8, error -71
[  240.518328][    T9] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  240.563470][ T5866] usb usb6-port1: unable to enumerate USB device
[  240.572272][    T9] usb 3-1: unable to read config index 0 descriptor/start: -61
[  240.572311][    T9] usb 3-1: can't read configurations, error -61
[  240.572668][    T9] usb usb3-port1: unable to enumerate USB device
[  241.343155][ T7332] wireguard0: entered promiscuous mode
[  241.343193][ T7332] wireguard0: entered allmulticast mode
[  242.045015][ T7346] process 'syz.5.413' launched './file0' with NULL argv: empty string added
[  242.542958][ T1584] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  242.694406][ T7353] FAULT_INJECTION: forcing a failure.
[  242.694406][ T7353] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  242.694439][ T7353] CPU: 1 UID: 0 PID: 7353 Comm: syz.2.415 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  242.694459][ T7353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  242.694471][ T7353] Call Trace:
[  242.694477][ T7353]  <TASK>
[  242.694483][ T7353]  dump_stack_lvl+0x189/0x250
[  242.694513][ T7353]  ? __pfx____ratelimit+0x10/0x10
[  242.694536][ T7353]  ? __pfx_dump_stack_lvl+0x10/0x10
[  242.694561][ T7353]  ? __pfx__printk+0x10/0x10
[  242.694584][ T7353]  ? __might_fault+0xb0/0x130
[  242.694620][ T7353]  should_fail_ex+0x46c/0x600
[  242.694650][ T7353]  _copy_from_iter+0x1de/0x1790
[  242.694681][ T7353]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  242.694720][ T7353]  ? __pfx__copy_from_iter+0x10/0x10
[  242.694753][ T7353]  ? set_page_refcounted+0xa0/0x1e0
[  242.694780][ T7353]  ? page_copy_sane+0x4e/0x280
[  242.694800][ T7353]  copy_page_from_iter+0xdd/0x170
[  242.694823][ T7353]  tun_get_user+0x1d7b/0x3ec0
[  242.694855][ T7353]  ? tun_get_user+0x6f6/0x3ec0
[  242.694887][ T7353]  ? __might_fault+0xb0/0x130
[  242.694910][ T7353]  ? __pfx_tun_get_user+0x10/0x10
[  242.694932][ T7353]  ? _parse_integer_limit+0x1ae/0x1f0
[  242.694966][ T7353]  ? __lock_acquire+0xab9/0xd20
[  242.694996][ T7353]  ? ref_tracker_alloc+0x2fe/0x450
[  242.695019][ T7353]  ? __lock_acquire+0xab9/0xd20
[  242.695043][ T7353]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  242.695081][ T7353]  ? tun_get+0x1c/0x2f0
[  242.695107][ T7353]  ? tun_get+0x1c/0x2f0
[  242.695128][ T7353]  ? tun_get+0x1c/0x2f0
[  242.695153][ T7353]  tun_chr_write_iter+0x119/0x200
[  242.695177][ T7353]  vfs_write+0x5d5/0xb40
[  242.695203][ T7353]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  242.695226][ T7353]  ? __pfx_vfs_write+0x10/0x10
[  242.695258][ T7353]  ? __fget_files+0x2a/0x420
[  242.695293][ T7353]  ksys_write+0x14b/0x260
[  242.695317][ T7353]  ? __pfx_ksys_write+0x10/0x10
[  242.695342][ T7353]  ? do_syscall_64+0xbe/0xfa0
[  242.695371][ T7353]  do_syscall_64+0xfa/0xfa0
[  242.695393][ T7353]  ? lockdep_hardirqs_on+0x9c/0x150
[  242.695417][ T7353]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.695435][ T7353]  ? clear_bhb_loop+0x60/0xb0
[  242.695458][ T7353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.695477][ T7353] RIP: 0033:0x7fdfb9dee17f
[  242.695494][ T7353] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  242.695510][ T7353] RSP: 002b:00007fdfb802d000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  242.695529][ T7353] RAX: ffffffffffffffda RBX: 00007fdfba046090 RCX: 00007fdfb9dee17f
[  242.695543][ T7353] RDX: 0000000000000bc5 RSI: 0000200000006380 RDI: 00000000000000c8
[  242.695556][ T7353] RBP: 00007fdfb802d090 R08: 0000000000000000 R09: 0000000000000000
[  242.695568][ T7353] R10: 0000000000000bc5 R11: 0000000000000293 R12: 0000000000000001
[  242.695580][ T7353] R13: 00007fdfba046128 R14: 00007fdfba046090 R15: 00007ffdefa5d5f8
[  242.695613][ T7353]  </TASK>
[  242.698959][ T1584] usb 6-1: Using ep0 maxpacket: 32
[  242.852980][ T5818] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  242.862910][ T1584] usb 6-1: config index 0 descriptor too short (expected 35577, got 27)
[  242.862938][ T1584] usb 6-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  242.862959][ T1584] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 92
[  242.862979][ T1584] usb 6-1: config 1 has no interface number 0
[  242.863033][ T1584] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  242.863059][ T1584] usb 6-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  242.863112][ T1584] usb 6-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  242.863135][ T1584] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.017103][    C1] vkms_vblank_simulate: vblank timer overrun
[  243.129032][ T1584] snd_usb_pod 6-1:1.1: Line 6 Pocket POD found
[  243.174790][ T7360] netlink: 8 bytes leftover after parsing attributes in process `syz.6.418'.
[  243.363917][ T1584] snd_usb_pod 6-1:1.1: Line 6 Pocket POD now attached
[  243.813103][ T5914] usb 6-1: USB disconnect, device number 13
[  243.815869][ T5914] snd_usb_pod 6-1:1.1: Line 6 Pocket POD now disconnected
[  244.509165][ T5171] udevd[5171]: worker [5852] terminated by signal 33 (Unknown signal 33)
[  244.509218][ T5171] udevd[5171]: worker [5852] failed while handling '/devices/virtual/block/loop2'
[  244.620171][    C1] vkms_vblank_simulate: vblank timer overrun
[  244.877319][    C1] vkms_vblank_simulate: vblank timer overrun
[  245.647650][ T7399] wireguard0: entered promiscuous mode
[  245.647679][ T7399] wireguard0: entered allmulticast mode
[  245.659737][ T7401] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  246.123201][ T7401] netlink: 16 bytes leftover after parsing attributes in process `syz.5.428'.
[  246.824839][ T1812] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  246.981777][ T7422] program syz.6.434 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  246.992921][ T1812] usb 4-1: Using ep0 maxpacket: 32
[  246.996168][ T1812] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  246.996193][ T1812] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  246.996214][ T1812] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  246.996236][ T1812] usb 4-1: config 1 has no interface number 0
[  246.996289][ T1812] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  246.996317][ T1812] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  246.996359][ T1812] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  246.996383][ T1812] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.037644][ T1812] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  247.277681][ T1812] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  247.532908][ T5914] usb 3-1: new full-speed USB device number 21 using dummy_hcd
[  247.691365][ T5914] usb 3-1: config 253 has an invalid descriptor of length 0, skipping remainder of the config
[  247.691411][ T5914] usb 3-1: too many endpoints for config 253 interface 0 altsetting 0: 255, using maximum allowed: 30
[  247.691454][ T5914] usb 3-1: config 253 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  247.693634][ T5914] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  247.693662][ T5914] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  247.693682][ T5914] usb 3-1: SerialNumber: syz
[  247.774369][ T5866] usb 4-1: USB disconnect, device number 21
[  247.776943][ T5866] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  247.813742][ T7434] FAULT_INJECTION: forcing a failure.
[  247.813742][ T7434] name failslab, interval 1, probability 0, space 0, times 0
[  247.813772][ T7434] CPU: 0 UID: 0 PID: 7434 Comm: syz.6.440 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  247.813794][ T7434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  247.813805][ T7434] Call Trace:
[  247.813813][ T7434]  <TASK>
[  247.813820][ T7434]  dump_stack_lvl+0x189/0x250
[  247.813850][ T7434]  ? __pfx____ratelimit+0x10/0x10
[  247.813874][ T7434]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.813898][ T7434]  ? __pfx__printk+0x10/0x10
[  247.813934][ T7434]  ? __pfx___might_resched+0x10/0x10
[  247.813953][ T7434]  ? fs_reclaim_acquire+0x7d/0x100
[  247.813981][ T7434]  should_fail_ex+0x46c/0x600
[  247.814011][ T7434]  should_failslab+0xa8/0x100
[  247.814039][ T7434]  __kmalloc_noprof+0xcc/0x7d0
[  247.814063][ T7434]  ? tomoyo_encode+0x28b/0x550
[  247.814089][ T7434]  tomoyo_encode+0x28b/0x550
[  247.814117][ T7434]  tomoyo_realpath_from_path+0x58d/0x5d0
[  247.814151][ T7434]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  247.814179][ T7434]  tomoyo_path_number_perm+0x1e8/0x5a0
[  247.814210][ T7434]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  247.814239][ T7434]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  247.814264][ T7434]  ? lockdep_hardirqs_on+0x9c/0x150
[  247.814321][ T7434]  ? __fget_files+0x2a/0x420
[  247.814351][ T7434]  ? __fget_files+0x3a6/0x420
[  247.814374][ T7434]  ? __fget_files+0x2a/0x420
[  247.814400][ T7434]  security_file_ioctl+0xcb/0x2d0
[  247.814421][ T7434]  __se_sys_ioctl+0x47/0x170
[  247.814444][ T7434]  do_syscall_64+0xfa/0xfa0
[  247.814466][ T7434]  ? lockdep_hardirqs_on+0x9c/0x150
[  247.814490][ T7434]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.814511][ T7434]  ? clear_bhb_loop+0x60/0xb0
[  247.814533][ T7434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.814549][ T7434] RIP: 0033:0x7f8557d1f6c9
[  247.814566][ T7434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.814582][ T7434] RSP: 002b:00007f8555f5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  247.814603][ T7434] RAX: ffffffffffffffda RBX: 00007f8557f76090 RCX: 00007f8557d1f6c9
[  247.814617][ T7434] RDX: 0000000000000003 RSI: 000000000000540a RDI: 0000000000000004
[  247.814628][ T7434] RBP: 00007f8555f5d090 R08: 0000000000000000 R09: 0000000000000000
[  247.814638][ T7434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.814649][ T7434] R13: 00007f8557f76128 R14: 00007f8557f76090 R15: 00007ffc476d25e8
[  247.814681][ T7434]  </TASK>
[  247.824892][ T7434] ERROR: Out of memory at tomoyo_realpath_from_path.
[  248.022862][ T1812] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  248.109134][ T5914] usb 3-1: bad CDC descriptors
[  248.130933][ T7424] trusted_key: encrypted_key: keylen parameter is missing
[  248.153852][ T5914] usb 3-1: USB disconnect, device number 21
[  248.197655][ T1812] usb 2-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice= 3.90
[  248.197695][ T1812] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.264720][ T1812] usb 2-1: config 0 descriptor??
[  248.339162][ T1812] bfusb 2-1:0.0: probe with driver bfusb failed with error -5
[  248.522995][ T5914] usb 2-1: USB disconnect, device number 15
[  248.704033][ T7440] netlink: 'syz.3.442': attribute type 10 has an invalid length.
[  248.766391][ T7439] netlink: 4 bytes leftover after parsing attributes in process `syz.5.441'.
[  248.803852][ T7441] netlink: 'syz.3.442': attribute type 10 has an invalid length.
[  248.842129][ T7440] team0: Port device dummy0 added
[  249.147236][ T7441] team0: Port device dummy0 removed
[  249.177736][ T7441] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  249.894619][ T7460] wireguard0: entered promiscuous mode
[  249.894649][ T7460] wireguard0: entered allmulticast mode
[  250.550312][ T7486] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  250.550485][ T7486] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  250.550584][ T7486] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  250.550709][ T7486] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  250.550763][ T7486] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  250.550815][ T7486] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  251.097252][ T7494] netlink: 4 bytes leftover after parsing attributes in process `syz.3.458'.
[  251.182647][ T7494] hsr_slave_0: left promiscuous mode
[  251.232907][ T7494] hsr_slave_1: left promiscuous mode
[  251.342936][ T1812] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  251.503093][    T9] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  251.542967][ T1812] usb 4-1: Using ep0 maxpacket: 8
[  251.552480][ T1812] usb 4-1: config 1 interface 0 altsetting 64 bulk endpoint 0x82 has invalid maxpacket 32
[  251.552512][ T1812] usb 4-1: config 1 interface 0 altsetting 64 bulk endpoint 0x3 has invalid maxpacket 1024
[  251.552536][ T1812] usb 4-1: config 1 interface 0 altsetting 64 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  251.552563][ T1812] usb 4-1: config 1 interface 0 has no altsetting 0
[  251.595911][ T1812] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  251.595944][ T1812] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.595964][ T1812] usb 4-1: Product: syz
[  251.595978][ T1812] usb 4-1: Manufacturer: syz
[  251.595992][ T1812] usb 4-1: SerialNumber: syz
[  251.616075][ T7496] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  251.616327][ T7496] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  251.673014][    T9] usb 2-1: config 0 has an invalid interface number: 69 but max is 0
[  251.673093][    T9] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  251.673114][    T9] usb 2-1: config 0 has no interface number 0
[  251.673164][    T9] usb 2-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 255
[  251.673190][    T9] usb 2-1: config 0 interface 69 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  251.733841][    T9] usb 2-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  251.733923][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.733945][    T9] usb 2-1: Product: syz
[  251.733960][    T9] usb 2-1: Manufacturer: syz
[  251.733975][    T9] usb 2-1: SerialNumber: syz
[  251.832520][    T9] usb 2-1: config 0 descriptor??
[  251.837527][ T7498] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  251.921477][    T9] cyberjack 2-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[  251.996299][    T9] cyberjack ttyUSB0: usb_submit_urb(read int) failed
[  252.020276][ T1812] usb 4-1: bad CDC descriptors
[  252.036956][    T9] usb 2-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  252.168751][ T1812] usb 4-1: USB disconnect, device number 22
[  254.405765][ T7532] FAULT_INJECTION: forcing a failure.
[  254.405765][ T7532] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  254.405799][ T7532] CPU: 1 UID: 0 PID: 7532 Comm: syz.3.469 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  254.405822][ T7532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  254.405833][ T7532] Call Trace:
[  254.405841][ T7532]  <TASK>
[  254.405850][ T7532]  dump_stack_lvl+0x189/0x250
[  254.405880][ T7532]  ? __pfx____ratelimit+0x10/0x10
[  254.405905][ T7532]  ? __pfx_dump_stack_lvl+0x10/0x10
[  254.405930][ T7532]  ? __pfx__printk+0x10/0x10
[  254.405954][ T7532]  ? __might_fault+0xb0/0x130
[  254.405990][ T7532]  should_fail_ex+0x46c/0x600
[  254.406021][ T7532]  _copy_from_iter+0x1de/0x1790
[  254.406050][ T7532]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  254.406087][ T7532]  ? __pfx__copy_from_iter+0x10/0x10
[  254.406120][ T7532]  ? set_page_refcounted+0xa0/0x1e0
[  254.406164][ T7532]  ? page_copy_sane+0x4e/0x280
[  254.406184][ T7532]  copy_page_from_iter+0xdd/0x170
[  254.406217][ T7532]  tun_get_user+0x1d7b/0x3ec0
[  254.406249][ T7532]  ? tun_get_user+0x6f6/0x3ec0
[  254.406280][ T7532]  ? __might_fault+0xb0/0x130
[  254.406304][ T7532]  ? __pfx_tun_get_user+0x10/0x10
[  254.406326][ T7532]  ? _parse_integer_limit+0x1ae/0x1f0
[  254.406360][ T7532]  ? __lock_acquire+0xab9/0xd20
[  254.406390][ T7532]  ? ref_tracker_alloc+0x2fe/0x450
[  254.406413][ T7532]  ? __lock_acquire+0xab9/0xd20
[  254.406438][ T7532]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  254.406468][ T7532]  ? tun_get+0x1c/0x2f0
[  254.406497][ T7532]  ? tun_get+0x1c/0x2f0
[  254.406517][ T7532]  ? tun_get+0x1c/0x2f0
[  254.406542][ T7532]  tun_chr_write_iter+0x119/0x200
[  254.406568][ T7532]  vfs_write+0x5d5/0xb40
[  254.406595][ T7532]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  254.406618][ T7532]  ? __pfx_vfs_write+0x10/0x10
[  254.406652][ T7532]  ? __fget_files+0x2a/0x420
[  254.406686][ T7532]  ksys_write+0x14b/0x260
[  254.406711][ T7532]  ? __pfx_ksys_write+0x10/0x10
[  254.406737][ T7532]  ? do_syscall_64+0xbe/0xfa0
[  254.406765][ T7532]  do_syscall_64+0xfa/0xfa0
[  254.406786][ T7532]  ? lockdep_hardirqs_on+0x9c/0x150
[  254.406810][ T7532]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.406829][ T7532]  ? clear_bhb_loop+0x60/0xb0
[  254.406851][ T7532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.406869][ T7532] RIP: 0033:0x7f466487e17f
[  254.406886][ T7532] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  254.406903][ T7532] RSP: 002b:00007f4662abd000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  254.406923][ T7532] RAX: ffffffffffffffda RBX: 00007f4664ad6090 RCX: 00007f466487e17f
[  254.406937][ T7532] RDX: 0000000000000086 RSI: 0000200000000080 RDI: 00000000000000c8
[  254.406949][ T7532] RBP: 00007f4662abd090 R08: 0000000000000000 R09: 0000000000000000
[  254.406961][ T7532] R10: 0000000000000086 R11: 0000000000000293 R12: 0000000000000001
[  254.406973][ T7532] R13: 00007f4664ad6128 R14: 00007f4664ad6090 R15: 00007ffdd1e95a78
[  254.407006][ T7532]  </TASK>
[  254.453799][    T9] usb 2-1: USB disconnect, device number 16
[  254.510303][    T9] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  254.515060][    T9] cyberjack 2-1:0.69: device disconnected
[  255.092591][ T7545] ceph: No source
[  255.901428][ T1320] ieee802154 phy0 wpan0: encryption failed: -22
[  255.901503][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[  255.961010][ T5915] hid-generic 0007:006B:0005.0003: item fetching failed at offset 0/13
[  255.975166][ T5915] hid-generic 0007:006B:0005.0003: probe with driver hid-generic failed with error -22
[  256.319291][ T7565] wireguard0: entered promiscuous mode
[  256.319321][ T7565] wireguard0: entered allmulticast mode
[  258.173046][    T9] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  258.350459][    T9] usb 4-1: config 1 interface 0 altsetting 8 endpoint 0x82 has invalid wMaxPacketSize 0
[  258.350490][    T9] usb 4-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 0
[  258.350523][    T9] usb 4-1: config 1 interface 0 has no altsetting 0
[  258.394553][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  258.394586][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.394607][    T9] usb 4-1: Product: syz
[  258.394621][    T9] usb 4-1: Manufacturer: syz
[  258.394635][    T9] usb 4-1: SerialNumber: syz
[  258.815927][ T7596] FAULT_INJECTION: forcing a failure.
[  258.815927][ T7596] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.815964][ T7596] CPU: 0 UID: 0 PID: 7596 Comm: syz.6.485 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  258.815987][ T7596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  258.815999][ T7596] Call Trace:
[  258.816006][ T7596]  <TASK>
[  258.816015][ T7596]  dump_stack_lvl+0x189/0x250
[  258.816046][ T7596]  ? __pfx____ratelimit+0x10/0x10
[  258.816078][ T7596]  ? __pfx_dump_stack_lvl+0x10/0x10
[  258.816105][ T7596]  ? __pfx__printk+0x10/0x10
[  258.816144][ T7596]  should_fail_ex+0x46c/0x600
[  258.816175][ T7596]  _copy_to_user+0x31/0xb0
[  258.816199][ T7596]  simple_read_from_buffer+0xe1/0x170
[  258.816228][ T7596]  proc_fail_nth_read+0x1b6/0x220
[  258.816252][ T7596]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  258.816276][ T7596]  ? rw_verify_area+0x2ac/0x4e0
[  258.816297][ T7596]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  258.816318][ T7596]  vfs_read+0x206/0xa30
[  258.816348][ T7596]  ? __pfx_vfs_read+0x10/0x10
[  258.816366][ T7596]  ? try_to_take_rt_mutex+0x7fd/0xac0
[  258.816412][ T7596]  ? mutex_lock_nested+0x154/0x1d0
[  258.816432][ T7596]  ? fdget_pos+0x253/0x320
[  258.816473][ T7596]  ksys_read+0x14b/0x260
[  258.816504][ T7596]  ? __pfx_ksys_read+0x10/0x10
[  258.816538][ T7596]  ? do_syscall_64+0xbe/0xfa0
[  258.816563][ T7596]  do_syscall_64+0xfa/0xfa0
[  258.816583][ T7596]  ? lockdep_hardirqs_on+0x9c/0x150
[  258.816607][ T7596]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.816623][ T7596]  ? clear_bhb_loop+0x60/0xb0
[  258.816646][ T7596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.816662][ T7596] RIP: 0033:0x7f8557d1e0dc
[  258.816678][ T7596] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  258.816693][ T7596] RSP: 002b:00007f8555f7e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  258.816713][ T7596] RAX: ffffffffffffffda RBX: 00007f8557f75fa0 RCX: 00007f8557d1e0dc
[  258.816728][ T7596] RDX: 000000000000000f RSI: 00007f8555f7e0a0 RDI: 0000000000000003
[  258.816740][ T7596] RBP: 00007f8555f7e090 R08: 0000000000000000 R09: 0000000000000000
[  258.816751][ T7596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.816762][ T7596] R13: 00007f8557f76038 R14: 00007f8557f75fa0 R15: 00007ffc476d25e8
[  258.816795][ T7596]  </TASK>
[  262.235379][    T9] usb 4-1: bad CDC descriptors
[  262.333742][    T9] usb 4-1: USB disconnect, device number 23
[  263.983926][ T7619] FAULT_INJECTION: forcing a failure.
[  263.983926][ T7619] name failslab, interval 1, probability 0, space 0, times 0
[  263.983959][ T7619] CPU: 0 UID: 0 PID: 7619 Comm: syz.3.494 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  263.983981][ T7619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  263.983993][ T7619] Call Trace:
[  263.984001][ T7619]  <TASK>
[  263.984010][ T7619]  dump_stack_lvl+0x189/0x250
[  263.984042][ T7619]  ? __pfx____ratelimit+0x10/0x10
[  263.984066][ T7619]  ? __pfx_dump_stack_lvl+0x10/0x10
[  263.984092][ T7619]  ? __pfx__printk+0x10/0x10
[  263.984121][ T7619]  ? __pfx___might_resched+0x10/0x10
[  263.984141][ T7619]  ? fs_reclaim_acquire+0x7d/0x100
[  263.984169][ T7619]  should_fail_ex+0x46c/0x600
[  263.984197][ T7619]  should_failslab+0xa8/0x100
[  263.984222][ T7619]  __kmalloc_noprof+0xcc/0x7d0
[  263.984245][ T7619]  ? tomoyo_encode+0x28b/0x550
[  263.984271][ T7619]  tomoyo_encode+0x28b/0x550
[  263.984298][ T7619]  tomoyo_realpath_from_path+0x58d/0x5d0
[  263.984322][ T7619]  ? tomoyo_domain+0xda/0x130
[  263.984349][ T7619]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  263.984375][ T7619]  tomoyo_path_number_perm+0x1e8/0x5a0
[  263.984405][ T7619]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  263.984436][ T7619]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  263.984462][ T7619]  ? lockdep_hardirqs_on+0x9c/0x150
[  263.984517][ T7619]  ? __fget_files+0x2a/0x420
[  263.984547][ T7619]  ? __fget_files+0x3a6/0x420
[  263.984570][ T7619]  ? __fget_files+0x2a/0x420
[  263.984598][ T7619]  security_file_ioctl+0xcb/0x2d0
[  263.984620][ T7619]  __se_sys_ioctl+0x47/0x170
[  263.984644][ T7619]  do_syscall_64+0xfa/0xfa0
[  263.984673][ T7619]  ? lockdep_hardirqs_on+0x9c/0x150
[  263.984696][ T7619]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.984715][ T7619]  ? clear_bhb_loop+0x60/0xb0
[  263.984737][ T7619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.984755][ T7619] RIP: 0033:0x7f466487f6c9
[  263.984773][ T7619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.984790][ T7619] RSP: 002b:00007f4662ade038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  263.984810][ T7619] RAX: ffffffffffffffda RBX: 00007f4664ad5fa0 RCX: 00007f466487f6c9
[  263.984824][ T7619] RDX: 0000200000000140 RSI: 000000004400ae8f RDI: 0000000000000006
[  263.984837][ T7619] RBP: 00007f4662ade090 R08: 0000000000000000 R09: 0000000000000000
[  263.984849][ T7619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  263.984861][ T7619] R13: 00007f4664ad6038 R14: 00007f4664ad5fa0 R15: 00007ffdd1e95a78
[  263.984895][ T7619]  </TASK>
[  263.984916][ T7619] ERROR: Out of memory at tomoyo_realpath_from_path.
[  264.143620][   T10] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  264.173077][    T9] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  264.294070][   T10] usb 7-1: no configurations
[  264.294090][   T10] usb 7-1: can't read configurations, error -22
[  264.331703][    T9] usb 3-1: Using ep0 maxpacket: 32
[  264.340200][    T9] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[  264.340226][    T9] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  264.340246][    T9] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[  264.340267][    T9] usb 3-1: config 1 has no interface number 0
[  264.340318][    T9] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  264.340345][    T9] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  264.340386][    T9] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  264.340408][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  264.377751][    T9] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[  264.442946][   T10] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  264.607141][    T9] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[  264.612244][   T10] usb 7-1: no configurations
[  264.612263][   T10] usb 7-1: can't read configurations, error -22
[  264.613170][   T10] usb usb7-port1: attempt power cycle
[  264.814414][ T5915] usb 3-1: USB disconnect, device number 22
[  264.845811][ T5915] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[  264.952947][   T10] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  264.979695][   T10] usb 7-1: no configurations
[  264.979714][   T10] usb 7-1: can't read configurations, error -22
[  265.084799][ T7641] netlink: 830 bytes leftover after parsing attributes in process `syz.1.500'.
[  265.099830][ T7641] netlink: 'syz.1.500': attribute type 39 has an invalid length.
[  265.104284][   T10] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  265.126656][   T10] usb 7-1: no configurations
[  265.126676][   T10] usb 7-1: can't read configurations, error -22
[  265.129887][   T10] usb usb7-port1: unable to enumerate USB device
[  265.224771][ T7644] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  265.248956][ T7640] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  265.248986][ T7640] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 1th superblock
[  265.249370][ T7640] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  265.249392][ T7640] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 2th superblock
[  265.272915][   T37] kauditd_printk_skb: 384 callbacks suppressed
[  265.272934][   T37] audit: type=1326 audit(1762553529.730:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.272980][   T37] audit: type=1326 audit(1762553529.730:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.273026][   T37] audit: type=1326 audit(1762553529.740:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.273147][   T37] audit: type=1326 audit(1762553529.740:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.274643][   T37] audit: type=1326 audit(1762553529.740:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.274689][   T37] audit: type=1326 audit(1762553529.740:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.274728][   T37] audit: type=1326 audit(1762553529.740:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.274770][   T37] audit: type=1326 audit(1762553529.740:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.274812][   T37] audit: type=1326 audit(1762553529.740:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.274852][   T37] audit: type=1326 audit(1762553529.740:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7633 comm="syz.5.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x7fc00000
[  265.844107][ T1812] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  265.995196][ T1812] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  265.995227][ T1812] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  265.998957][ T1812] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  265.998990][ T1812] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  265.999012][ T1812] usb 3-1: SerialNumber: syz
[  266.808734][ T1812] usb 3-1: 0:2 : does not exist
[  267.045628][ T1812] usb 3-1: USB disconnect, device number 23
[  267.389067][ T5940] udevd[5940]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  267.832554][ T7663] vimc link validate: Sensor B:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 1:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  267.837727][ T7665] netlink: 4 bytes leftover after parsing attributes in process `syz.3.509'.
[  267.913161][ T1812] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  268.289174][ T1812] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  268.289203][ T1812] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  268.400006][ T1812] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  268.400039][ T1812] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  268.400062][ T1812] usb 2-1: SerialNumber: syz
[  269.405536][ T1812] usb 2-1: 0:2 : does not exist
[  269.457948][ T1812] usb 2-1: USB disconnect, device number 17
[  269.544350][ T5940] udevd[5940]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  270.105892][    C1] vkms_vblank_simulate: vblank timer overrun
[  270.139729][    C1] vkms_vblank_simulate: vblank timer overrun
[  270.175882][    C1] vkms_vblank_simulate: vblank timer overrun
[  270.775234][    C1] vkms_vblank_simulate: vblank timer overrun
[  270.924341][    C1] vkms_vblank_simulate: vblank timer overrun
[  271.358801][ T7697] FAULT_INJECTION: forcing a failure.
[  271.358801][ T7697] name failslab, interval 1, probability 0, space 0, times 0
[  271.358835][ T7697] CPU: 1 UID: 0 PID: 7697 Comm: syz.5.519 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  271.358857][ T7697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  271.358869][ T7697] Call Trace:
[  271.358877][ T7697]  <TASK>
[  271.358897][ T7697]  dump_stack_lvl+0x189/0x250
[  271.358928][ T7697]  ? __pfx____ratelimit+0x10/0x10
[  271.358953][ T7697]  ? __pfx_dump_stack_lvl+0x10/0x10
[  271.358983][ T7697]  ? __pfx__printk+0x10/0x10
[  271.359012][ T7697]  ? __pfx___might_resched+0x10/0x10
[  271.359031][ T7697]  ? fs_reclaim_acquire+0x7d/0x100
[  271.359061][ T7697]  should_fail_ex+0x46c/0x600
[  271.359093][ T7697]  should_failslab+0xa8/0x100
[  271.359120][ T7697]  __kmalloc_noprof+0xcc/0x7d0
[  271.359144][ T7697]  ? tomoyo_encode+0x28b/0x550
[  271.359172][ T7697]  tomoyo_encode+0x28b/0x550
[  271.359200][ T7697]  tomoyo_realpath_from_path+0x58d/0x5d0
[  271.359224][ T7697]  ? tomoyo_domain+0xda/0x130
[  271.359252][ T7697]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  271.359280][ T7697]  tomoyo_path_number_perm+0x1e8/0x5a0
[  271.359309][ T7697]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  271.359341][ T7697]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  271.359366][ T7697]  ? lockdep_hardirqs_on+0x9c/0x150
[  271.359424][ T7697]  ? __fget_files+0x2a/0x420
[  271.359453][ T7697]  ? __fget_files+0x3a6/0x420
[  271.359476][ T7697]  ? __fget_files+0x2a/0x420
[  271.359504][ T7697]  security_file_ioctl+0xcb/0x2d0
[  271.359527][ T7697]  __se_sys_ioctl+0x47/0x170
[  271.359551][ T7697]  do_syscall_64+0xfa/0xfa0
[  271.359574][ T7697]  ? lockdep_hardirqs_on+0x9c/0x150
[  271.359597][ T7697]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.359615][ T7697]  ? clear_bhb_loop+0x60/0xb0
[  271.359638][ T7697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.359656][ T7697] RIP: 0033:0x7f3d76e4f6c9
[  271.359673][ T7697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  271.359690][ T7697] RSP: 002b:00007f3d750b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  271.359711][ T7697] RAX: ffffffffffffffda RBX: 00007f3d770a5fa0 RCX: 00007f3d76e4f6c9
[  271.359725][ T7697] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  271.359737][ T7697] RBP: 00007f3d750b6090 R08: 0000000000000000 R09: 0000000000000000
[  271.359749][ T7697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  271.359761][ T7697] R13: 00007f3d770a6038 R14: 00007f3d770a5fa0 R15: 00007ffe2551f1d8
[  271.359795][ T7697]  </TASK>
[  271.359815][ T7697] ERROR: Out of memory at tomoyo_realpath_from_path.
[  271.532417][ T7702] input: syz1 as /devices/virtual/input/input9
[  271.587363][ T5915] usb 3-1: new full-speed USB device number 24 using dummy_hcd
[  271.712961][ T1812] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  271.794218][ T5915] usb 3-1: config 0 has an invalid interface number: 117 but max is 0
[  271.794250][ T5915] usb 3-1: config 0 has no interface number 0
[  271.794302][ T5915] usb 3-1: config 0 interface 117 has no altsetting 0
[  271.804143][ T5915] usb 3-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice=e7.12
[  271.804174][ T5915] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  271.804195][ T5915] usb 3-1: Product: syz
[  271.804210][ T5915] usb 3-1: Manufacturer: syz
[  271.804223][ T5915] usb 3-1: SerialNumber: syz
[  271.869382][ T5915] usb 3-1: config 0 descriptor??
[  271.875870][ T1812] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  271.875900][ T1812] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 27, changing to 7
[  271.875929][ T1812] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  271.885907][ T1812] usb 7-1: string descriptor 0 read error: -22
[  271.886054][ T1812] usb 7-1: New USB device found, idVendor=2013, idProduct=0251, bcdDevice=e8.6e
[  271.886078][ T1812] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  271.915396][ T1812] usb 7-1: config 0 descriptor??
[  271.951355][ T5915] xbox_remote_probe: Unexpected desc.bNumEndpoints: 2
[  271.961350][ T1812] em28xx 7-1:0.0: New device   @ 480 Mbps (2013:0251, interface 0, class 0)
[  271.961383][ T1812] em28xx 7-1:0.0: Audio interface 0 found (Vendor Class)
[  272.060215][ T7712] FAULT_INJECTION: forcing a failure.
[  272.060215][ T7712] name failslab, interval 1, probability 0, space 0, times 0
[  272.060247][ T7712] CPU: 1 UID: 0 PID: 7712 Comm: syz.1.525 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  272.060268][ T7712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  272.060280][ T7712] Call Trace:
[  272.060287][ T7712]  <TASK>
[  272.060296][ T7712]  dump_stack_lvl+0x189/0x250
[  272.060326][ T7712]  ? __pfx____ratelimit+0x10/0x10
[  272.060351][ T7712]  ? __pfx_dump_stack_lvl+0x10/0x10
[  272.060376][ T7712]  ? __pfx__printk+0x10/0x10
[  272.060405][ T7712]  ? __pfx___might_resched+0x10/0x10
[  272.060426][ T7712]  ? fs_reclaim_acquire+0x7d/0x100
[  272.060455][ T7712]  should_fail_ex+0x46c/0x600
[  272.060485][ T7712]  should_failslab+0xa8/0x100
[  272.060512][ T7712]  __kmalloc_noprof+0xcc/0x7d0
[  272.060536][ T7712]  ? bpf_test_init+0x9f/0x150
[  272.060559][ T7712]  bpf_test_init+0x9f/0x150
[  272.060581][ T7712]  bpf_prog_test_run_xdp+0x503/0x10e0
[  272.060617][ T7712]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  272.060642][ T7712]  ? __fget_files+0x2a/0x420
[  272.060672][ T7712]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  272.060693][ T7712]  bpf_prog_test_run+0x2cd/0x340
[  272.060722][ T7712]  __sys_bpf+0x562/0x860
[  272.060748][ T7712]  ? __pfx___sys_bpf+0x10/0x10
[  272.060769][ T7712]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  272.060815][ T7712]  ? ksys_write+0x230/0x260
[  272.060841][ T7712]  ? __pfx_ksys_write+0x10/0x10
[  272.060868][ T7712]  __x64_sys_bpf+0x7c/0x90
[  272.060890][ T7712]  do_syscall_64+0xfa/0xfa0
[  272.060912][ T7712]  ? lockdep_hardirqs_on+0x9c/0x150
[  272.060935][ T7712]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.060953][ T7712]  ? clear_bhb_loop+0x60/0xb0
[  272.060975][ T7712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.060993][ T7712] RIP: 0033:0x7fc2e9b8f6c9
[  272.061010][ T7712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.061026][ T7712] RSP: 002b:00007fc2e7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  272.061046][ T7712] RAX: ffffffffffffffda RBX: 00007fc2e9de5fa0 RCX: 00007fc2e9b8f6c9
[  272.061060][ T7712] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[  272.061072][ T7712] RBP: 00007fc2e7df6090 R08: 0000000000000000 R09: 0000000000000000
[  272.061084][ T7712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  272.061095][ T7712] R13: 00007fc2e9de6038 R14: 00007fc2e9de5fa0 R15: 00007ffc3d3b5bb8
[  272.061126][ T7712]  </TASK>
[  272.513080][ T7690] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  272.513662][ T7690] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  272.541080][ T5981] usb 3-1: USB disconnect, device number 24
[  272.713353][ T1812] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  272.713812][ T1812] em28xx 7-1:0.0: Config register raw data: 0xfffffffb
[  272.714203][ T1812] em28xx 7-1:0.0: AC97 chip type couldn't be determined
[  272.714221][ T1812] em28xx 7-1:0.0: No AC97 audio processor
[  272.721908][    C1] vkms_vblank_simulate: vblank timer overrun
[  272.856762][ T1812] usb 7-1: USB disconnect, device number 16
[  272.880226][ T1812] em28xx 7-1:0.0: Disconnecting em28xx
[  273.241465][    C1] vkms_vblank_simulate: vblank timer overrun
[  273.245195][ T1812] em28xx 7-1:0.0: Freeing device
[  273.336810][    C1] vkms_vblank_simulate: vblank timer overrun
[  274.254749][ T7710] 9pnet: Found fid 0 not clunked
[  274.853976][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.285173][ T7747] FAULT_INJECTION: forcing a failure.
[  275.285173][ T7747] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  275.285208][ T7747] CPU: 1 UID: 0 PID: 7747 Comm: syz.6.533 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  275.285229][ T7747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  275.285241][ T7747] Call Trace:
[  275.285249][ T7747]  <TASK>
[  275.285257][ T7747]  dump_stack_lvl+0x189/0x250
[  275.285288][ T7747]  ? __pfx____ratelimit+0x10/0x10
[  275.285313][ T7747]  ? __pfx_dump_stack_lvl+0x10/0x10
[  275.285338][ T7747]  ? __pfx__printk+0x10/0x10
[  275.285361][ T7747]  ? __might_fault+0xb0/0x130
[  275.285397][ T7747]  should_fail_ex+0x46c/0x600
[  275.285427][ T7747]  _copy_from_user+0x2d/0xb0
[  275.285450][ T7747]  ____sys_sendmsg+0x2fa/0x820
[  275.285478][ T7747]  ? __pfx_____sys_sendmsg+0x10/0x10
[  275.285510][ T7747]  ? import_iovec+0x74/0xa0
[  275.285532][ T7747]  ___sys_sendmsg+0x21f/0x2a0
[  275.285554][ T7747]  ? __pfx____sys_sendmsg+0x10/0x10
[  275.285605][ T7747]  ? __fget_files+0x2a/0x420
[  275.285628][ T7747]  ? __fget_files+0x3a6/0x420
[  275.285660][ T7747]  __sys_sendmmsg+0x22d/0x430
[  275.285685][ T7747]  ? __pfx___sys_sendmmsg+0x10/0x10
[  275.285714][ T7747]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  275.285750][ T7747]  ? ksys_write+0x230/0x260
[  275.285775][ T7747]  ? __pfx_ksys_write+0x10/0x10
[  275.285803][ T7747]  __x64_sys_sendmmsg+0xa0/0xc0
[  275.285827][ T7747]  do_syscall_64+0xfa/0xfa0
[  275.285856][ T7747]  ? lockdep_hardirqs_on+0x9c/0x150
[  275.285880][ T7747]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.285899][ T7747]  ? clear_bhb_loop+0x60/0xb0
[  275.285921][ T7747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.285939][ T7747] RIP: 0033:0x7f8557d1f6c9
[  275.285957][ T7747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.285973][ T7747] RSP: 002b:00007f8555f7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  275.285994][ T7747] RAX: ffffffffffffffda RBX: 00007f8557f75fa0 RCX: 00007f8557d1f6c9
[  275.286009][ T7747] RDX: 0000000000000001 RSI: 0000200000001e40 RDI: 0000000000000003
[  275.286022][ T7747] RBP: 00007f8555f7e090 R08: 0000000000000000 R09: 0000000000000000
[  275.286034][ T7747] R10: 0000000000001801 R11: 0000000000000246 R12: 0000000000000001
[  275.286046][ T7747] R13: 00007f8557f76038 R14: 00007f8557f75fa0 R15: 00007ffc476d25e8
[  275.286080][ T7747]  </TASK>
[  275.693737][ T7753] FAULT_INJECTION: forcing a failure.
[  275.693737][ T7753] name failslab, interval 1, probability 0, space 0, times 0
[  275.693770][ T7753] CPU: 1 UID: 0 PID: 7753 Comm: syz.6.534 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  275.693792][ T7753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  275.693804][ T7753] Call Trace:
[  275.693820][ T7753]  <TASK>
[  275.693828][ T7753]  dump_stack_lvl+0x189/0x250
[  275.693859][ T7753]  ? __pfx____ratelimit+0x10/0x10
[  275.693884][ T7753]  ? __pfx_dump_stack_lvl+0x10/0x10
[  275.693910][ T7753]  ? __pfx__printk+0x10/0x10
[  275.693938][ T7753]  ? __pfx___might_resched+0x10/0x10
[  275.693957][ T7753]  ? fs_reclaim_acquire+0x7d/0x100
[  275.693986][ T7753]  should_fail_ex+0x46c/0x600
[  275.694017][ T7753]  should_failslab+0xa8/0x100
[  275.694044][ T7753]  __kmalloc_noprof+0xcc/0x7d0
[  275.694067][ T7753]  ? tomoyo_encode+0x28b/0x550
[  275.694094][ T7753]  tomoyo_encode+0x28b/0x550
[  275.694121][ T7753]  tomoyo_realpath_from_path+0x58d/0x5d0
[  275.694144][ T7753]  ? tomoyo_domain+0xda/0x130
[  275.694171][ T7753]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  275.694198][ T7753]  tomoyo_path_number_perm+0x1e8/0x5a0
[  275.694227][ T7753]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  275.694258][ T7753]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  275.694283][ T7753]  ? lockdep_hardirqs_on+0x9c/0x150
[  275.694337][ T7753]  ? __fget_files+0x2a/0x420
[  275.694366][ T7753]  ? __fget_files+0x3a6/0x420
[  275.694388][ T7753]  ? __fget_files+0x2a/0x420
[  275.694415][ T7753]  security_file_ioctl+0xcb/0x2d0
[  275.694437][ T7753]  __se_sys_ioctl+0x47/0x170
[  275.694459][ T7753]  do_syscall_64+0xfa/0xfa0
[  275.694482][ T7753]  ? lockdep_hardirqs_on+0x9c/0x150
[  275.694504][ T7753]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.694523][ T7753]  ? clear_bhb_loop+0x60/0xb0
[  275.694545][ T7753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.694562][ T7753] RIP: 0033:0x7f8557d1f6c9
[  275.694579][ T7753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.694595][ T7753] RSP: 002b:00007f8555f7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  275.694615][ T7753] RAX: ffffffffffffffda RBX: 00007f8557f75fa0 RCX: 00007f8557d1f6c9
[  275.694629][ T7753] RDX: 0000200000000000 RSI: 000000004008ae89 RDI: 0000000000000005
[  275.694641][ T7753] RBP: 00007f8555f7e090 R08: 0000000000000000 R09: 0000000000000000
[  275.694653][ T7753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.694664][ T7753] R13: 00007f8557f76038 R14: 00007f8557f75fa0 R15: 00007ffc476d25e8
[  275.694696][ T7753]  </TASK>
[  275.694715][ T7753] ERROR: Out of memory at tomoyo_realpath_from_path.
[  275.882304][ T7757] syz.3.536(7757): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  276.215165][ T7762] Bluetooth: MGMT ver 1.23
[  276.512383][ T7761] FAULT_INJECTION: forcing a failure.
[  276.512383][ T7761] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  276.512419][ T7761] CPU: 1 UID: 0 PID: 7761 Comm: syz.3.538 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  276.512440][ T7761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  276.512451][ T7761] Call Trace:
[  276.512460][ T7761]  <TASK>
[  276.512469][ T7761]  dump_stack_lvl+0x189/0x250
[  276.512500][ T7761]  ? __pfx____ratelimit+0x10/0x10
[  276.512525][ T7761]  ? __pfx_dump_stack_lvl+0x10/0x10
[  276.512550][ T7761]  ? __pfx__printk+0x10/0x10
[  276.512585][ T7761]  should_fail_ex+0x46c/0x600
[  276.512614][ T7761]  _copy_to_user+0x31/0xb0
[  276.512636][ T7761]  csum_and_copy_to_iter+0x670/0x1c40
[  276.512669][ T7761]  ? rt_spin_lock+0x1c1/0x3e0
[  276.512705][ T7761]  ? __pfx_csum_and_copy_to_iter+0x10/0x10
[  276.512726][ T7761]  ? rt_spin_unlock+0x150/0x200
[  276.512754][ T7761]  ? rt_spin_unlock+0x161/0x200
[  276.512773][ T7761]  ? __skb_recv_udp+0x667/0x730
[  276.512792][ T7761]  __skb_datagram_iter+0x89f/0x990
[  276.512815][ T7761]  ? __pfx_csum_and_copy_to_iter+0x10/0x10
[  276.512839][ T7761]  ? csum_partial+0x239/0x2c0
[  276.512860][ T7761]  skb_copy_and_csum_datagram_msg+0x1b8/0x440
[  276.512888][ T7761]  ? __pfx_skb_copy_and_csum_datagram_msg+0x10/0x10
[  276.512923][ T7761]  udp_recvmsg+0x3b5/0x1050
[  276.512952][ T7761]  ? __pfx_udp_recvmsg+0x10/0x10
[  276.512977][ T7761]  ? sock_rps_record_flow+0x19/0x410
[  276.513003][ T7761]  ? __pfx_udp_recvmsg+0x10/0x10
[  276.513019][ T7761]  inet_recvmsg+0x202/0x250
[  276.513046][ T7761]  ? __pfx_inet_recvmsg+0x10/0x10
[  276.513068][ T7761]  ? __lock_acquire+0xab9/0xd20
[  276.513092][ T7761]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  276.513116][ T7761]  ? security_socket_recvmsg+0x7e/0x2e0
[  276.513145][ T7761]  sock_recvmsg+0x1a8/0x270
[  276.513175][ T7761]  ____sys_recvmsg+0x1ce/0x470
[  276.513207][ T7761]  ? __pfx_____sys_recvmsg+0x10/0x10
[  276.513246][ T7761]  ? import_iovec+0x74/0xa0
[  276.513270][ T7761]  ___sys_recvmsg+0x1b5/0x510
[  276.513296][ T7761]  ? __pfx____sys_recvmsg+0x10/0x10
[  276.513344][ T7761]  ? __fget_files+0x3a6/0x420
[  276.513380][ T7761]  __x64_sys_recvmsg+0x19e/0x260
[  276.513405][ T7761]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  276.513437][ T7761]  ? __pfx_ksys_write+0x10/0x10
[  276.513463][ T7761]  ? do_syscall_64+0xbe/0xfa0
[  276.513491][ T7761]  do_syscall_64+0xfa/0xfa0
[  276.513514][ T7761]  ? lockdep_hardirqs_on+0x9c/0x150
[  276.513537][ T7761]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.513555][ T7761]  ? clear_bhb_loop+0x60/0xb0
[  276.513579][ T7761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.513597][ T7761] RIP: 0033:0x7f466487f6c9
[  276.513614][ T7761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.513630][ T7761] RSP: 002b:00007f4662ade038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  276.513651][ T7761] RAX: ffffffffffffffda RBX: 00007f4664ad5fa0 RCX: 00007f466487f6c9
[  276.513665][ T7761] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000003
[  276.513683][ T7761] RBP: 00007f4662ade090 R08: 0000000000000000 R09: 0000000000000000
[  276.513695][ T7761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  276.513707][ T7761] R13: 00007f4664ad6038 R14: 00007f4664ad5fa0 R15: 00007ffdd1e95a78
[  276.513739][ T7761]  </TASK>
[  276.773232][    C0] vkms_vblank_simulate: vblank timer overrun
[  277.301032][ T7766] netlink: 'syz.6.541': attribute type 12 has an invalid length.
[  277.681770][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  277.798011][ T5981] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  278.384771][ T7798] netlink: 80 bytes leftover after parsing attributes in process `syz.5.549'.
[  278.713429][ T7787] fido_id[7787]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  278.993745][ T7805] FAULT_INJECTION: forcing a failure.
[  278.993745][ T7805] name failslab, interval 1, probability 0, space 0, times 0
[  278.993778][ T7805] CPU: 1 UID: 0 PID: 7805 Comm: syz.2.551 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  278.993800][ T7805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  278.993812][ T7805] Call Trace:
[  278.993819][ T7805]  <TASK>
[  278.993828][ T7805]  dump_stack_lvl+0x189/0x250
[  278.993860][ T7805]  ? __pfx____ratelimit+0x10/0x10
[  278.993885][ T7805]  ? __pfx_dump_stack_lvl+0x10/0x10
[  278.993911][ T7805]  ? __pfx__printk+0x10/0x10
[  278.993940][ T7805]  ? __pfx___might_resched+0x10/0x10
[  278.993959][ T7805]  ? fs_reclaim_acquire+0x7d/0x100
[  278.993990][ T7805]  should_fail_ex+0x46c/0x600
[  278.994020][ T7805]  should_failslab+0xa8/0x100
[  278.994048][ T7805]  __kmalloc_noprof+0xcc/0x7d0
[  278.994072][ T7805]  ? tomoyo_encode+0x28b/0x550
[  278.994099][ T7805]  tomoyo_encode+0x28b/0x550
[  278.994127][ T7805]  tomoyo_realpath_from_path+0x58d/0x5d0
[  278.994152][ T7805]  ? tomoyo_domain+0xda/0x130
[  278.994180][ T7805]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  278.994208][ T7805]  tomoyo_path_number_perm+0x1e8/0x5a0
[  278.994238][ T7805]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  278.994269][ T7805]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  278.994295][ T7805]  ? lockdep_hardirqs_on+0x9c/0x150
[  278.994351][ T7805]  ? __fget_files+0x2a/0x420
[  278.994381][ T7805]  ? __fget_files+0x3a6/0x420
[  278.994403][ T7805]  ? __fget_files+0x2a/0x420
[  278.994432][ T7805]  security_file_ioctl+0xcb/0x2d0
[  278.994454][ T7805]  __se_sys_ioctl+0x47/0x170
[  278.994478][ T7805]  do_syscall_64+0xfa/0xfa0
[  278.994507][ T7805]  ? lockdep_hardirqs_on+0x9c/0x150
[  278.994531][ T7805]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.994549][ T7805]  ? clear_bhb_loop+0x60/0xb0
[  278.994569][ T7805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.994585][ T7805] RIP: 0033:0x7fdfb9def6c9
[  278.994602][ T7805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.994617][ T7805] RSP: 002b:00007fdfb802d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  278.994637][ T7805] RAX: ffffffffffffffda RBX: 00007fdfba046090 RCX: 00007fdfb9def6c9
[  278.994649][ T7805] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  278.994660][ T7805] RBP: 00007fdfb802d090 R08: 0000000000000000 R09: 0000000000000000
[  278.994671][ T7805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  278.994681][ T7805] R13: 00007fdfba046128 R14: 00007fdfba046090 R15: 00007ffdefa5d5f8
[  278.994712][ T7805]  </TASK>
[  278.994731][ T7805] ERROR: Out of memory at tomoyo_realpath_from_path.
[  279.929853][ T7815] FAULT_INJECTION: forcing a failure.
[  279.929853][ T7815] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.929886][ T7815] CPU: 0 UID: 0 PID: 7815 Comm: syz.3.552 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  279.929909][ T7815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  279.929920][ T7815] Call Trace:
[  279.929928][ T7815]  <TASK>
[  279.929937][ T7815]  dump_stack_lvl+0x189/0x250
[  279.929967][ T7815]  ? __pfx____ratelimit+0x10/0x10
[  279.929992][ T7815]  ? __pfx_dump_stack_lvl+0x10/0x10
[  279.930018][ T7815]  ? __pfx__printk+0x10/0x10
[  279.930040][ T7815]  ? __might_fault+0xb0/0x130
[  279.930074][ T7815]  should_fail_ex+0x46c/0x600
[  279.930104][ T7815]  _copy_from_iter+0x1de/0x1790
[  279.930131][ T7815]  ? __lock_acquire+0xab9/0xd20
[  279.930154][ T7815]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  279.930189][ T7815]  ? __pfx__copy_from_iter+0x10/0x10
[  279.930219][ T7815]  ? dev_get_by_index+0x22/0x2e0
[  279.930244][ T7815]  ? dev_get_by_index+0x22/0x2e0
[  279.930273][ T7815]  packet_sendmsg+0x3072/0x5080
[  279.930296][ T7815]  ? __lock_acquire+0xab9/0xd20
[  279.930329][ T7815]  ? __might_fault+0xb0/0x130
[  279.930356][ T7815]  ? _parse_integer_limit+0x1ae/0x1f0
[  279.930392][ T7815]  ? smack_socket_sendmsg+0x1fa/0x520
[  279.930415][ T7815]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  279.930440][ T7815]  ? __lock_acquire+0xab9/0xd20
[  279.930490][ T7815]  ? __pfx_packet_sendmsg+0x10/0x10
[  279.930517][ T7815]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  279.930551][ T7815]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  279.930576][ T7815]  ? __pfx_packet_sendmsg+0x10/0x10
[  279.930595][ T7815]  __sock_sendmsg+0x21c/0x270
[  279.930629][ T7815]  __sys_sendto+0x3c7/0x520
[  279.930652][ T7815]  ? __pfx___sys_sendto+0x10/0x10
[  279.930705][ T7815]  ? ksys_write+0x230/0x260
[  279.930730][ T7815]  ? __pfx_ksys_write+0x10/0x10
[  279.930756][ T7815]  __x64_sys_sendto+0xde/0x100
[  279.930780][ T7815]  do_syscall_64+0xfa/0xfa0
[  279.930803][ T7815]  ? lockdep_hardirqs_on+0x9c/0x150
[  279.930833][ T7815]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.930851][ T7815]  ? clear_bhb_loop+0x60/0xb0
[  279.930873][ T7815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.930891][ T7815] RIP: 0033:0x7f466487f6c9
[  279.930906][ T7815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.930923][ T7815] RSP: 002b:00007f4662abd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  279.930949][ T7815] RAX: ffffffffffffffda RBX: 00007f4664ad6090 RCX: 00007f466487f6c9
[  279.930964][ T7815] RDX: 000000000000005d RSI: 0000200000000240 RDI: 0000000000000003
[  279.930976][ T7815] RBP: 00007f4662abd090 R08: 0000200000000540 R09: 0000000000000014
[  279.930986][ T7815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.931002][ T7815] R13: 00007f4664ad6128 R14: 00007f4664ad6090 R15: 00007ffdd1e95a78
[  279.931030][ T7815]  </TASK>
[  280.285963][ T7821] FAULT_INJECTION: forcing a failure.
[  280.285963][ T7821] name failslab, interval 1, probability 0, space 0, times 0
[  280.285996][ T7821] CPU: 0 UID: 0 PID: 7821 Comm: syz.5.556 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  280.286017][ T7821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  280.286029][ T7821] Call Trace:
[  280.286036][ T7821]  <TASK>
[  280.286045][ T7821]  dump_stack_lvl+0x189/0x250
[  280.286075][ T7821]  ? __pfx____ratelimit+0x10/0x10
[  280.286099][ T7821]  ? __pfx_dump_stack_lvl+0x10/0x10
[  280.286125][ T7821]  ? __pfx__printk+0x10/0x10
[  280.286153][ T7821]  ? __pfx___might_resched+0x10/0x10
[  280.286171][ T7821]  ? fs_reclaim_acquire+0x7d/0x100
[  280.286201][ T7821]  should_fail_ex+0x46c/0x600
[  280.286230][ T7821]  should_failslab+0xa8/0x100
[  280.286256][ T7821]  __kmalloc_noprof+0xcc/0x7d0
[  280.286279][ T7821]  ? tomoyo_encode+0x28b/0x550
[  280.286305][ T7821]  tomoyo_encode+0x28b/0x550
[  280.286330][ T7821]  tomoyo_realpath_from_path+0x58d/0x5d0
[  280.286353][ T7821]  ? tomoyo_domain+0xda/0x130
[  280.286380][ T7821]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  280.286407][ T7821]  tomoyo_path_number_perm+0x1e8/0x5a0
[  280.286436][ T7821]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  280.286473][ T7821]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  280.286497][ T7821]  ? lockdep_hardirqs_on+0x9c/0x150
[  280.286553][ T7821]  ? __fget_files+0x2a/0x420
[  280.286580][ T7821]  ? __fget_files+0x3a6/0x420
[  280.286601][ T7821]  ? __fget_files+0x2a/0x420
[  280.286628][ T7821]  security_file_ioctl+0xcb/0x2d0
[  280.286649][ T7821]  __se_sys_ioctl+0x47/0x170
[  280.286673][ T7821]  do_syscall_64+0xfa/0xfa0
[  280.286695][ T7821]  ? lockdep_hardirqs_on+0x9c/0x150
[  280.286722][ T7821]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.286744][ T7821]  ? clear_bhb_loop+0x60/0xb0
[  280.286766][ T7821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.286782][ T7821] RIP: 0033:0x7f3d76e4f6c9
[  280.286799][ T7821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.286815][ T7821] RSP: 002b:00007f3d750b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  280.286834][ T7821] RAX: ffffffffffffffda RBX: 00007f3d770a5fa0 RCX: 00007f3d76e4f6c9
[  280.286848][ T7821] RDX: 0000200000000180 RSI: 000000000000891a RDI: 0000000000000003
[  280.286859][ T7821] RBP: 00007f3d750b6090 R08: 0000000000000000 R09: 0000000000000000
[  280.286871][ T7821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.286881][ T7821] R13: 00007f3d770a6038 R14: 00007f3d770a5fa0 R15: 00007ffe2551f1d8
[  280.286912][ T7821]  </TASK>
[  280.287037][ T7821] ERROR: Out of memory at tomoyo_realpath_from_path.
[  280.662583][ T7830] FAULT_INJECTION: forcing a failure.
[  280.662583][ T7830] name failslab, interval 1, probability 0, space 0, times 0
[  280.662617][ T7830] CPU: 0 UID: 0 PID: 7830 Comm: syz.3.561 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  280.662639][ T7830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  280.662651][ T7830] Call Trace:
[  280.662658][ T7830]  <TASK>
[  280.662667][ T7830]  dump_stack_lvl+0x189/0x250
[  280.662698][ T7830]  ? __pfx____ratelimit+0x10/0x10
[  280.662722][ T7830]  ? __pfx_dump_stack_lvl+0x10/0x10
[  280.662752][ T7830]  ? __pfx__printk+0x10/0x10
[  280.662779][ T7830]  ? __pfx___might_resched+0x10/0x10
[  280.662803][ T7830]  should_fail_ex+0x46c/0x600
[  280.662834][ T7830]  should_failslab+0xa8/0x100
[  280.662861][ T7830]  __kmalloc_cache_noprof+0x6f/0x6c0
[  280.662888][ T7830]  ? tcx_prog_attach+0x242/0x710
[  280.662913][ T7830]  tcx_prog_attach+0x242/0x710
[  280.662933][ T7830]  ? __fget_files+0x2a/0x420
[  280.662962][ T7830]  ? __pfx_tcx_prog_attach+0x10/0x10
[  280.662980][ T7830]  ? __fget_files+0x3a6/0x420
[  280.663002][ T7830]  ? __fget_files+0x2a/0x420
[  280.663030][ T7830]  ? bpf_prog_attach_check_attach_type+0x1e5/0x540
[  280.663054][ T7830]  bpf_prog_attach+0x538/0x6f0
[  280.663079][ T7830]  ? bpf_lsm_bpf+0x9/0x20
[  280.663102][ T7830]  __sys_bpf+0x358/0x860
[  280.663129][ T7830]  ? __pfx___sys_bpf+0x10/0x10
[  280.663151][ T7830]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  280.663190][ T7830]  ? ksys_write+0x230/0x260
[  280.663215][ T7830]  ? __pfx_ksys_write+0x10/0x10
[  280.663244][ T7830]  __x64_sys_bpf+0x7c/0x90
[  280.663268][ T7830]  do_syscall_64+0xfa/0xfa0
[  280.663291][ T7830]  ? lockdep_hardirqs_on+0x9c/0x150
[  280.663315][ T7830]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.663334][ T7830]  ? clear_bhb_loop+0x60/0xb0
[  280.663358][ T7830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.663376][ T7830] RIP: 0033:0x7f466487f6c9
[  280.663393][ T7830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.663409][ T7830] RSP: 002b:00007f4662ade038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  280.663428][ T7830] RAX: ffffffffffffffda RBX: 00007f4664ad5fa0 RCX: 00007f466487f6c9
[  280.663449][ T7830] RDX: 0000000000000020 RSI: 0000200000000480 RDI: 0000000000000008
[  280.663461][ T7830] RBP: 00007f4662ade090 R08: 0000000000000000 R09: 0000000000000000
[  280.663473][ T7830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.663485][ T7830] R13: 00007f4664ad6038 R14: 00007f4664ad5fa0 R15: 00007ffdd1e95a78
[  280.663518][ T7830]  </TASK>
[  281.033820][ T7836] FAULT_INJECTION: forcing a failure.
[  281.033820][ T7836] name failslab, interval 1, probability 0, space 0, times 0
[  281.033853][ T7836] CPU: 0 UID: 0 PID: 7836 Comm: syz.5.562 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  281.033875][ T7836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  281.033886][ T7836] Call Trace:
[  281.033894][ T7836]  <TASK>
[  281.033902][ T7836]  dump_stack_lvl+0x189/0x250
[  281.033934][ T7836]  ? __pfx____ratelimit+0x10/0x10
[  281.033959][ T7836]  ? __pfx_dump_stack_lvl+0x10/0x10
[  281.033986][ T7836]  ? __pfx__printk+0x10/0x10
[  281.034014][ T7836]  ? __pfx___might_resched+0x10/0x10
[  281.034035][ T7836]  ? fs_reclaim_acquire+0x7d/0x100
[  281.034064][ T7836]  should_fail_ex+0x46c/0x600
[  281.034092][ T7836]  ? __alloc_skb+0x112/0x2d0
[  281.034110][ T7836]  should_failslab+0xa8/0x100
[  281.034137][ T7836]  ? __alloc_skb+0x112/0x2d0
[  281.034153][ T7836]  kmem_cache_alloc_node_noprof+0x78/0x6e0
[  281.034177][ T7836]  ? smack_socket_sendmsg+0x1a7/0x520
[  281.034205][ T7836]  __alloc_skb+0x112/0x2d0
[  281.034228][ T7836]  netlink_sendmsg+0x5c6/0xb30
[  281.034248][ T7836]  ? is_bpf_text_address+0x26/0x2b0
[  281.034284][ T7836]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.034312][ T7836]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  281.034344][ T7836]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.034366][ T7836]  __sock_sendmsg+0x21c/0x270
[  281.034395][ T7836]  ____sys_sendmsg+0x508/0x820
[  281.034423][ T7836]  ? __pfx_____sys_sendmsg+0x10/0x10
[  281.034454][ T7836]  ? import_iovec+0x74/0xa0
[  281.034478][ T7836]  ___sys_sendmsg+0x21f/0x2a0
[  281.034503][ T7836]  ? __pfx____sys_sendmsg+0x10/0x10
[  281.034562][ T7836]  ? __fget_files+0x2a/0x420
[  281.034586][ T7836]  ? __fget_files+0x3a6/0x420
[  281.034621][ T7836]  __x64_sys_sendmsg+0x1a1/0x260
[  281.034645][ T7836]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  281.034678][ T7836]  ? __pfx_ksys_write+0x10/0x10
[  281.034704][ T7836]  ? do_syscall_64+0xbe/0xfa0
[  281.034732][ T7836]  do_syscall_64+0xfa/0xfa0
[  281.034754][ T7836]  ? lockdep_hardirqs_on+0x9c/0x150
[  281.034778][ T7836]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.034796][ T7836]  ? clear_bhb_loop+0x60/0xb0
[  281.034818][ T7836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.034836][ T7836] RIP: 0033:0x7f3d76e4f6c9
[  281.034853][ T7836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.034869][ T7836] RSP: 002b:00007f3d750b6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  281.034889][ T7836] RAX: ffffffffffffffda RBX: 00007f3d770a5fa0 RCX: 00007f3d76e4f6c9
[  281.034903][ T7836] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  281.034915][ T7836] RBP: 00007f3d750b6090 R08: 0000000000000000 R09: 0000000000000000
[  281.034927][ T7836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.034939][ T7836] R13: 00007f3d770a6038 R14: 00007f3d770a5fa0 R15: 00007ffe2551f1d8
[  281.034971][ T7836]  </TASK>
[  284.953570][   T37] kauditd_printk_skb: 14 callbacks suppressed
[  284.953603][   T37] audit: type=1326 audit(1762553549.240:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7850 comm="syz.5.564" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3d76e4f6c9 code=0x0
[  286.676256][ T7870] FAULT_INJECTION: forcing a failure.
[  286.676256][ T7870] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  286.676326][ T7870] CPU: 1 UID: 0 PID: 7870 Comm: syz.2.567 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  286.676349][ T7870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  286.676361][ T7870] Call Trace:
[  286.676369][ T7870]  <TASK>
[  286.676377][ T7870]  dump_stack_lvl+0x189/0x250
[  286.676408][ T7870]  ? __pfx____ratelimit+0x10/0x10
[  286.676433][ T7870]  ? __pfx_dump_stack_lvl+0x10/0x10
[  286.676459][ T7870]  ? __pfx__printk+0x10/0x10
[  286.676481][ T7870]  ? __might_fault+0xb0/0x130
[  286.676518][ T7870]  should_fail_ex+0x46c/0x600
[  286.676548][ T7870]  _copy_from_user+0x2d/0xb0
[  286.676570][ T7870]  ___sys_sendmsg+0x158/0x2a0
[  286.676596][ T7870]  ? __pfx____sys_sendmsg+0x10/0x10
[  286.676655][ T7870]  ? __fget_files+0x2a/0x420
[  286.676687][ T7870]  ? __fget_files+0x3a6/0x420
[  286.676722][ T7870]  __x64_sys_sendmsg+0x1a1/0x260
[  286.676747][ T7870]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  286.676786][ T7870]  ? do_syscall_64+0xbe/0xfa0
[  286.676815][ T7870]  do_syscall_64+0xfa/0xfa0
[  286.676840][ T7870]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.676859][ T7870]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  286.676877][ T7870]  ? clear_bhb_loop+0x60/0xb0
[  286.676899][ T7870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.676917][ T7870] RIP: 0033:0x7fdfb9def6c9
[  286.676933][ T7870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  286.676949][ T7870] RSP: 002b:00007fdfb800c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  286.676970][ T7870] RAX: ffffffffffffffda RBX: 00007fdfba046180 RCX: 00007fdfb9def6c9
[  286.676984][ T7870] RDX: 0000000004008080 RSI: 0000200000000000 RDI: 0000000000000006
[  286.676996][ T7870] RBP: 00007fdfb800c090 R08: 0000000000000000 R09: 0000000000000000
[  286.677008][ T7870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  286.677019][ T7870] R13: 00007fdfba046218 R14: 00007fdfba046180 R15: 00007ffdefa5d5f8
[  286.677052][ T7870]  </TASK>
[  287.705395][ T7879] netlink: 180 bytes leftover after parsing attributes in process `syz.1.573'.
[  287.725433][ T7879] netlink: 32 bytes leftover after parsing attributes in process `syz.1.573'.
[  287.729580][ T7874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.570'.
[  287.753648][ T7880] netlink: 180 bytes leftover after parsing attributes in process `syz.3.572'.
[  287.765069][ T7880] netlink: 32 bytes leftover after parsing attributes in process `syz.3.572'.
[  287.826942][ T7875] netlink: 'syz.2.570': attribute type 7 has an invalid length.
[  288.312920][    T9] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  288.473106][    T9] usb 7-1: Using ep0 maxpacket: 32
[  288.475641][    T9] usb 7-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  288.475670][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.503426][    T9] usb 7-1: config 0 descriptor??
[  288.534508][    T9] gspca_main: nw80x-2.14.0 probing 055f:d001
[  288.944999][    T9] gspca_nw80x: reg_r err -71
[  288.945116][    T9] nw80x 7-1:0.0: probe with driver nw80x failed with error -71
[  288.992957][    T9] usb 7-1: USB disconnect, device number 17
[  289.173178][   T38] INFO: task syz.4.93:6226 blocked for more than 144 seconds.
[  289.173202][   T38]       Not tainted syzkaller #0
[  289.173213][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  289.173223][   T38] task:syz.4.93        state:D stack:26248 pid:6226  tgid:6225  ppid:5811   task_flags:0x400140 flags:0x00080002
[  289.173455][   T38] Call Trace:
[  289.173462][   T38]  <TASK>
[  289.173476][   T38]  __schedule+0x16f3/0x4c20
[  289.173514][   T38]  ? sched_clock+0x3f/0x60
[  289.173537][   T38]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  289.173571][   T38]  ? __pfx___schedule+0x10/0x10
[  289.173621][   T38]  rt_mutex_schedule+0x77/0xf0
[  289.173641][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  289.173677][   T38]  ? rt_mutex_slowlock_block+0x351/0x6d0
[  289.173702][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  289.173726][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  289.173749][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  289.173798][   T38]  ? relay_open+0x3b8/0x920
[  289.173817][   T38]  mutex_lock_nested+0x16a/0x1d0
[  289.173844][   T38]  relay_open+0x3b8/0x920
[  289.173873][   T38]  do_blk_trace_setup+0x561/0x980
[  289.173909][   T38]  blk_trace_setup+0x116/0x1f0
[  289.173942][   T38]  ? __pfx_blk_trace_setup+0x10/0x10
[  289.173986][   T38]  blk_trace_ioctl+0x181/0x430
[  289.174011][   T38]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  289.174117][   T38]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  289.174145][   T38]  ? __pfx_smack_log+0x10/0x10
[  289.174169][   T38]  ? smk_access+0x14c/0x4e0
[  289.174200][   T38]  ? smk_tskacc+0x2fc/0x370
[  289.174229][   T38]  ? smack_file_ioctl+0x2ac/0x340
[  289.174259][   T38]  ? __pfx_smack_file_ioctl+0x10/0x10
[  289.174289][   T38]  blkdev_ioctl+0x420/0x6d0
[  289.174313][   T38]  ? __pfx_blkdev_ioctl+0x10/0x10
[  289.174330][   T38]  ? __fget_files+0x3a6/0x420
[  289.174354][   T38]  ? __fget_files+0x2a/0x420
[  289.174381][   T38]  ? bpf_lsm_file_ioctl+0x9/0x20
[  289.174400][   T38]  ? __pfx_blkdev_ioctl+0x10/0x10
[  289.174419][   T38]  __se_sys_ioctl+0xff/0x170
[  289.174449][   T38]  do_syscall_64+0xfa/0xfa0
[  289.174473][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  289.174497][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.174516][   T38]  ? clear_bhb_loop+0x60/0xb0
[  289.174540][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.174558][   T38] RIP: 0033:0x7fe6542cf6c9
[  289.174575][   T38] RSP: 002b:00007fe652536038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  289.174595][   T38] RAX: ffffffffffffffda RBX: 00007fe654525fa0 RCX: 00007fe6542cf6c9
[  289.174610][   T38] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000007
[  289.174623][   T38] RBP: 00007fe654351f91 R08: 0000000000000000 R09: 0000000000000000
[  289.174635][   T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  289.174647][   T38] R13: 00007fe654526038 R14: 00007fe654525fa0 R15: 00007ffdb8a2c188
[  289.174682][   T38]  </TASK>
[  289.174722][   T38] 
[  289.174722][   T38] Showing all locks held in the system:
[  289.174736][   T38] 3 locks held by kworker/0:0/9:
[  289.174747][   T38]  #0: ffff888019ee3938 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  289.174798][   T38]  #1: ffffc900000e7ba0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  289.174845][   T38]  #2: ffff888027678188 (&dev->mutex){....}-{4:4}, at: hub_event+0x184/0x4a20
[  289.174895][   T38] 1 lock held by khungtaskd/38:
[  289.174905][   T38]  #0: ffffffff8d5aa840 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  289.174953][   T38] 2 locks held by kworker/u8:3/58:
[  289.174964][   T38]  #0: ffff88801fb88138 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  289.175011][   T38]  #1: ffffc9000124fba0 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  289.175084][   T38] 2 locks held by getty/5563:
[  289.175094][   T38]  #0: ffff88823bf3c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  289.175141][   T38]  #1: ffffc90003e832e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1400
[  289.175423][   T38] 2 locks held by syz.0.69/6153:
[  289.175434][   T38] 2 locks held by syz.4.93/6226:
[  289.175452][   T38]  #0: ffff888142f86998 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_trace_setup+0xfb/0x1f0
[  289.175501][   T38]  #1: ffffffff8d600378 (relay_channels_mutex){+.+.}-{4:4}, at: relay_open+0x3b8/0x920
[  289.175550][   T38] 3 locks held by syz.2.570/7875:
[  289.175560][   T38]  #0: ffff88805d9922f8 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[  289.175614][   T38]  #1: ffffffff8e8c7e40 ((netlink_chain).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain+0x54/0x90
[  289.175664][   T38]  #2: ffff888036461cc8 (&nft_net->commit_mutex){+.+.}-{4:4}, at: nft_rcv_nl_event+0x116/0x640
[  289.175712][   T38] 1 lock held by syz.5.571/7883:
[  289.175723][   T38] 4 locks held by syz.3.575/7890:
[  289.175734][   T38] 1 lock held by syz.1.577/7893:
[  289.175745][   T38]  #0: ffff8880285e7cc8 (&nft_net->commit_mutex){+.+.}-{4:4}, at: nf_tables_valid_genid+0x3b/0x100
[  289.175793][   T38] 3 locks held by syz.1.577/7896:
[  289.175803][   T38]  #0: ffffffff8ed7ae48 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[  289.175853][   T38]  #1: ffffffff8e8632f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8e9/0x1c80
[  289.175895][   T38]  #2: ffff8880285e7cc8 (&nft_net->commit_mutex){+.+.}-{4:4}, at: nf_tables_netdev_event+0xad/0x160
[  289.175945][   T38] 
[  289.175950][   T38] =============================================
[  289.175950][   T38] 
[  289.175959][   T38] NMI backtrace for cpu 0
[  289.175972][   T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  289.175993][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  289.176004][   T38] Call Trace:
[  289.176011][   T38]  <TASK>
[  289.176018][   T38]  dump_stack_lvl+0x189/0x250
[  289.176049][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[  289.176075][   T38]  ? __pfx__printk+0x10/0x10
[  289.176110][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[  289.176134][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  289.176158][   T38]  ? __pfx__printk+0x10/0x10
[  289.176184][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  289.176207][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  289.176231][   T38]  watchdog+0xf60/0xfa0
[  289.176261][   T38]  ? watchdog+0x1e2/0xfa0
[  289.176294][   T38]  kthread+0x711/0x8a0
[  289.176323][   T38]  ? __pfx_watchdog+0x10/0x10
[  289.176346][   T38]  ? __pfx_kthread+0x10/0x10
[  289.176367][   T38]  ? rt_spin_unlock+0x150/0x200
[  289.176392][   T38]  ? rt_spin_unlock+0x161/0x200
[  289.176411][   T38]  ? __pfx_kthread+0x10/0x10
[  289.176436][   T38]  ret_from_fork+0x4bc/0x870
[  289.176467][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  289.176496][   T38]  ? __switch_to_asm+0x39/0x70
[  289.176514][   T38]  ? __switch_to_asm+0x33/0x70
[  289.176531][   T38]  ? __pfx_kthread+0x10/0x10
[  289.176557][   T38]  ret_from_fork_asm+0x1a/0x30
[  289.176593][   T38]  </TASK>
[  289.176614][   T38] Sending NMI from CPU 0 to CPUs 1:
[  289.176645][    C1] NMI backtrace for cpu 1
[  289.176659][    C1] CPU: 1 UID: 0 PID: 6153 Comm: syz.0.69 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  289.176677][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  289.176686][    C1] RIP: 0010:__page_table_check_zero+0x22c/0x530
[  289.176722][    C1] Code: 3d f9 ed 46 0b 4d 01 e7 4c 89 ff be 04 00 00 00 e8 89 51 f9 ff 4c 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 <84> c0 0f 85 f5 00 00 00 41 8b 1f 31 ff 89 de e8 f0 9b 97 ff 85 db
[  289.176738][    C1] RSP: 0018:ffffc90005b8f2a8 EFLAGS: 00000a06
[  289.176752][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000
[  289.176764][    C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff888146c63f58
[  289.176774][    C1] RBP: 0000000000000001 R08: ffff888146c63f5b R09: 1ffff11028d8c7eb
[  289.176786][    C1] R10: dffffc0000000000 R11: ffffed1028d8c7ec R12: ffff888146c63f10
[  289.176798][    C1] R13: 0000000000000000 R14: 00000000002113fe R15: ffff888146c63f58
[  289.176809][    C1] FS:  00007f40a05ae6c0(0000) GS:ffff888126ef9000(0000) knlGS:0000000000000000
[  289.176824][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  289.176835][    C1] CR2: 0000001b32b14ff8 CR3: 00000000337f4000 CR4: 00000000003526f0
[  289.176850][    C1] Call Trace:
[  289.176855][    C1]  <TASK>
[  289.176862][    C1]  ? __page_table_check_zero+0xba/0x530
[  289.176884][    C1]  post_alloc_hook+0x253/0x2a0
[  289.176905][    C1]  get_page_from_freelist+0x28c0/0x2960
[  289.176934][    C1]  ? fs_reclaim_acquire+0x7d/0x100
[  289.176968][    C1]  __alloc_frozen_pages_noprof+0x181/0x370
[  289.176992][    C1]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  289.177012][    C1]  ? __apply_to_page_range+0x124b/0x13d0
[  289.177040][    C1]  alloc_pages_bulk_noprof+0x5fa/0x7d0
[  289.177068][    C1]  kasan_populate_vmalloc+0xd1/0x270
[  289.177090][    C1]  alloc_vmap_area+0xd7a/0x14c0
[  289.177118][    C1]  ? __pfx_alloc_vmap_area+0x10/0x10
[  289.177135][    C1]  ? __kasan_kmalloc+0x93/0xb0
[  289.177155][    C1]  ? __kmalloc_cache_node_noprof+0x2a9/0x700
[  289.177175][    C1]  ? __get_vm_area_node+0x172/0x350
[  289.177193][    C1]  ? relay_open_buf+0x3d8/0xe50
[  289.177210][    C1]  __get_vm_area_node+0x227/0x350
[  289.177231][    C1]  ? relay_open_buf+0x3d8/0xe50
[  289.177248][    C1]  vmap+0x162/0x310
[  289.177265][    C1]  ? relay_open_buf+0x3d8/0xe50
[  289.177284][    C1]  relay_open_buf+0x3d8/0xe50
[  289.177305][    C1]  ? mutex_lock_nested+0x154/0x1d0
[  289.177323][    C1]  relay_open+0x427/0x920
[  289.177343][    C1]  do_blk_trace_setup+0x561/0x980
[  289.177369][    C1]  blk_trace_setup+0x116/0x1f0
[  289.177392][    C1]  ? __pfx_blk_trace_setup+0x10/0x10
[  289.177417][    C1]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  289.177442][    C1]  blk_trace_ioctl+0x181/0x430
[  289.177463][    C1]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  289.177479][    C1]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  289.177499][    C1]  ? __pfx_smack_log+0x10/0x10
[  289.177518][    C1]  ? smk_access+0x14c/0x4e0
[  289.177540][    C1]  ? smk_tskacc+0x2fc/0x370
[  289.177560][    C1]  ? smack_file_ioctl+0x2ac/0x340
[  289.177582][    C1]  ? __pfx_smack_file_ioctl+0x10/0x10
[  289.177605][    C1]  blkdev_ioctl+0x420/0x6d0
[  289.177621][    C1]  ? __pfx_blkdev_ioctl+0x10/0x10
[  289.177639][    C1]  ? bpf_lsm_file_ioctl+0x9/0x20
[  289.177654][    C1]  ? __pfx_blkdev_ioctl+0x10/0x10
[  289.177669][    C1]  __se_sys_ioctl+0xff/0x170
[  289.177687][    C1]  do_syscall_64+0xfa/0xfa0
[  289.177711][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  289.177731][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.177746][    C1]  ? clear_bhb_loop+0x60/0xb0
[  289.177764][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.177779][    C1] RIP: 0033:0x7f40a234f6c9
[  289.177798][    C1] Code: Unable to access opcode bytes at 0x7f40a234f69f.
[  289.177807][    C1] RSP: 002b:00007f40a05ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  289.177822][    C1] RAX: ffffffffffffffda RBX: 00007f40a25a5fa0 RCX: 00007f40a234f6c9
[  289.177834][    C1] RDX: 0000200000000000 RSI: 00000000c0481273 RDI: 0000000000000003
[  289.177845][    C1] RBP: 00007f40a23d1f91 R08: 0000000000000000 R09: 0000000000000000
[  289.177856][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  289.177865][    C1] R13: 00007f40a25a6038 R14: 00007f40a25a5fa0 R15: 00007ffc332adb28
[  289.177887][    C1]  </TASK>
[  291.728731][ T6153] syz.0.69: vmalloc error: size 8388608, failed to allocated page array size 16384, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  291.729123][ T6153] CPU: 1 UID: 0 PID: 6153 Comm: syz.0.69 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  291.729149][ T6153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  291.729163][ T6153] Call Trace:
[  291.729172][ T6153]  <TASK>
[  291.729181][ T6153]  dump_stack_lvl+0x189/0x250
[  291.729222][ T6153]  ? __pfx_dump_stack_lvl+0x10/0x10
[  291.729255][ T6153]  ? __pfx__printk+0x10/0x10
[  291.729282][ T6153]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  291.729308][ T6153]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  291.729345][ T6153]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  291.729374][ T6153]  warn_alloc+0x22e/0x3b0
[  291.729414][ T6153]  ? __pfx_warn_alloc+0x10/0x10
[  291.729455][ T6153]  ? __get_vm_area_node+0x2bc/0x350
[  291.729484][ T6153]  ? relay_open_buf+0x215/0xe50
[  291.729514][ T6153]  __vmalloc_node_range_noprof+0x690/0x12d0
[  291.729545][ T6153]  ? __alloc_frozen_pages_noprof+0x9f/0x370
[  291.729605][ T6153]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  291.729641][ T6153]  ? rcu_is_watching+0x15/0xb0
[  291.729666][ T6153]  __kvmalloc_node_noprof+0x4a3/0x920
[  291.729696][ T6153]  ? relay_open_buf+0x215/0xe50
[  291.729719][ T6153]  ? __kmalloc_noprof+0x254/0x7d0
[  291.729744][ T6153]  ? relay_open_buf+0x215/0xe50
[  291.729767][ T6153]  ? relay_open_buf+0x17f/0xe50
[  291.729796][ T6153]  relay_open_buf+0x215/0xe50
[  291.729839][ T6153]  relay_open+0x427/0x920
[  291.729871][ T6153]  do_blk_trace_setup+0x561/0x980
[  291.729913][ T6153]  blk_trace_setup+0x116/0x1f0
[  291.729950][ T6153]  ? __pfx_blk_trace_setup+0x10/0x10
[  291.729991][ T6153]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  291.730034][ T6153]  blk_trace_ioctl+0x181/0x430
[  291.730064][ T6153]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  291.730088][ T6153]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  291.730119][ T6153]  ? __pfx_smack_log+0x10/0x10
[  291.730146][ T6153]  ? smk_access+0x14c/0x4e0
[  291.730181][ T6153]  ? smk_tskacc+0x2fc/0x370
[  291.730214][ T6153]  ? smack_file_ioctl+0x2ac/0x340
[  291.730248][ T6153]  ? __pfx_smack_file_ioctl+0x10/0x10
[  291.730284][ T6153]  blkdev_ioctl+0x420/0x6d0
[  291.730308][ T6153]  ? __pfx_blkdev_ioctl+0x10/0x10
[  291.730341][ T6153]  ? bpf_lsm_file_ioctl+0x9/0x20
[  291.730362][ T6153]  ? __pfx_blkdev_ioctl+0x10/0x10
[  291.730383][ T6153]  __se_sys_ioctl+0xff/0x170
[  291.730410][ T6153]  do_syscall_64+0xfa/0xfa0
[  291.730438][ T6153]  ? lockdep_hardirqs_on+0x9c/0x150
[  291.730466][ T6153]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.730488][ T6153]  ? clear_bhb_loop+0x60/0xb0
[  291.730514][ T6153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.730535][ T6153] RIP: 0033:0x7f40a234f6c9
[  291.730561][ T6153] Code: Unable to access opcode bytes at 0x7f40a234f69f.
[  291.730572][ T6153] RSP: 002b:00007f40a05ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  291.730594][ T6153] RAX: ffffffffffffffda RBX: 00007f40a25a5fa0 RCX: 00007f40a234f6c9
[  291.730610][ T6153] RDX: 0000200000000000 RSI: 00000000c0481273 RDI: 0000000000000003
[  291.730625][ T6153] RBP: 00007f40a23d1f91 R08: 0000000000000000 R09: 0000000000000000
[  291.730639][ T6153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  291.730653][ T6153] R13: 00007f40a25a6038 R14: 00007f40a25a5fa0 R15: 00007ffc332adb28
[  291.730690][ T6153]  </TASK>
[  291.730705][ T6153] Mem-Info:
[  291.730714][ T6153] active_anon:382 inactive_anon:1208 isolated_anon:0
[  291.730714][ T6153]  active_file:3172 inactive_file:4786 isolated_file:0
[  291.730714][ T6153]  unevictable:768 dirty:460 writeback:0
[  291.730714][ T6153]  slab_reclaimable:7900 slab_unreclaimable:109484
[  291.730714][ T6153]  mapped:39343 shmem:773 pagetables:3509
[  291.730714][ T6153]  sec_pagetables:0 bounce:0
[  291.730714][ T6153]  kernel_misc_reclaimable:0
[  291.730714][ T6153]  free:155989 free_pcp:7066 free_cma:0
[  291.730777][ T6153] Node 0 active_anon:56kB inactive_anon:80kB active_file:200kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:147564kB dirty:68kB writeback:0kB shmem:1544kB kernel_stack:13360kB pagetables:4676kB sec_pagetables:0kB all_unreclaimable? yes Balloon:0kB
[  291.730829][ T6153] Node 1 active_anon:1472kB inactive_anon:4752kB active_file:12488kB inactive_file:19068kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:9808kB dirty:1772kB writeback:0kB shmem:1548kB kernel_stack:336kB pagetables:9360kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  291.730880][ T6153] Node 0 DMA free:10084kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB
[  291.730945][ T6153] lowmem_reserve[]: 0 2515 2517 2517 2517
[  291.730983][ T6153] Node 0 DMA32 free:5560kB boost:0kB min:3944kB low:6492kB high:9040kB reserved_highatomic:0KB free_highatomic:0KB active_anon:56kB inactive_anon:80kB active_file:200kB inactive_file:76kB unevictable:1536kB writepending:68kB zspages:0kB present:3129332kB managed:2576080kB mlocked:0kB bounce:0kB free_pcp:5568kB local_pcp:2628kB free_cma:0kB
[  291.731051][ T6153] lowmem_reserve[]: 0 0 1 1 1
[  291.731085][ T6153] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  291.731149][ T6153] lowmem_reserve[]: 0 0 0 0 0
[  291.731183][ T6153] Node 1 Normal free:608312kB boost:0kB min:6360kB low:10468kB high:14576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1472kB inactive_anon:4752kB active_file:12488kB inactive_file:19068kB unevictable:1536kB writepending:1772kB zspages:5192kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:22680kB local_pcp:3912kB free_cma:0kB
[  291.731253][ T6153] lowmem_reserve[]: 0 0 0 0 0
[  291.731288][ T6153] Node 0 DMA: 1*4kB (U) 0*8kB 2*16kB (UM) 2*32kB (UM) 2*64kB (UM) 1*128kB (M) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10084kB
[  291.731459][ T6153] Node 0 DMA32: 16*4kB (UME) 5*8kB (E) 35*16kB (UME) 19*32kB (ME) 25*64kB (ME) 9*128kB (UME) 6*256kB (UME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 5560kB
[  291.731603][ T6153] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  291.731711][ T6153] Node 1 Normal: 346*4kB (ME) 290*8kB (UME) 107*16kB (UME) 44*32kB (UM) 96*64kB (UME) 44*128kB (UME) 13*256kB (ME) 3*512kB (ME) 3*1024kB (UM) 2*2048kB (UM) 141*4096kB (M) = 608168kB
[  291.731880][ T6153] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  291.731899][ T6153] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  291.731917][ T6153] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  291.731935][ T6153] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  291.731952][ T6153] 10000 total pagecache pages
[  291.731965][ T6153] 1270 pages in swap cache
[  291.731974][ T6153] Free swap  = 98388kB
[  291.731982][ T6153] Total swap = 124996kB
[  291.731990][ T6153] 2097051 pages RAM
[  291.731998][ T6153] 0 pages HighMem/MovableOnly
[  291.732006][ T6153] 421005 pages reserved
[  291.732013][ T6153] 0 pages cma reserved