last executing test programs:

2m6.74078381s ago: executing program 3 (id=992):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x18)
ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, &(0x7f0000000040)={0x56b, 0x6, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
r1 = epoll_create(0x55)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000008280)={0x10})
mknodat$null(r0, &(0x7f00000082c0)='./file0\x00', 0x400, 0x103)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3d)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000008300)={0x977f, 0x4, 0x7fffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000008340)='./file0\x00', &(0x7f0000008380), 0x0, &(0x7f00000083c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid={'access', 0x3d, 0xee00}}, {@version_9p2000}, {@version_L}], [{@obj_type={'obj_type', 0x3d, '\x00'}}, {@smackfsdef={'smackfsdef', 0x3d, '\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '-!$$'}}, {@smackfsdef}, {@context={'context', 0x3d, 'sysadm_u'}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}]}})
r3 = geteuid()
quotactl_fd$Q_GETINFO(r1, 0x0, r3, &(0x7f00000084c0))
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f0000008540)={'sit0\x00', &(0x7f0000008500)={@dev={0xfe, 0x80, '\x00', 0xd}, @local, 0x13, 0xb}})
getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000008580)={'mangle\x00', 0x1000, "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"}, &(0x7f00000095c0)=0x1024)
write$cgroup_subtree(r0, &(0x7f0000009600), 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000009640)={'veth1_virt_wifi\x00', @multicast})
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
syz_clone3(&(0x7f0000009840)={0x1000080, &(0x7f0000009680), &(0x7f00000096c0)=<r4=>0x0, &(0x7f0000009700), {0x13}, &(0x7f0000009740)=""/21, 0x15, &(0x7f0000009780)=""/78, &(0x7f0000009800)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff], 0x7, {r0}}, 0x58)
fcntl$getownex(r2, 0x10, &(0x7f00000098c0)={0x0, <r5=>0x0})
r6 = syz_open_dev$ttys(0xc, 0x2, 0x0)
kcmp$KCMP_EPOLL_TFD(r4, r5, 0x7, r6, &(0x7f0000009900)={r1, r2, 0x9})
prctl$PR_SET_IO_FLUSHER(0x39, 0x0)
ioctl$TIOCL_SCROLLCONSOLE(r0, 0x541c, &(0x7f0000009940)={0xd, 0x5})
sendmsg$NL80211_CMD_SET_PMKSA(r0, &(0x7f0000009a40)={&(0x7f0000009980)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000009a00)={&(0x7f00000099c0)={0x24, 0x0, 0x1, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0xe, 0x34, @random="7b50604c70b50d229387"}]}, 0x24}, 0x1, 0x0, 0x0, 0x4040000}, 0x1)
write$binfmt_script(r0, &(0x7f0000009a80)={'#! ', './file0', [{0x20, '@#{\x95,--%'}, {0x20, 'smackfsfloor'}, {0x20, 'mangle\x00'}, {0x20, 'smackfsdef'}, {0x20, '}\'\''}, {0x20, 'obj_type'}, {}, {0x20, 'context'}, {0x20, 'version=9p2000.L'}], 0xa, "4a2bbfceb326c8ed5999f802a4450fae6b62dce2c723d460cb22d7d1de3608bff0ced5e548370af71f5eb92782ee2469f966709c4efcb8c20066e5c9ab81e0e8614b439298ec2e41a39594f4c0928945d0307a35616e1cb537e92f504be45ab85819cb47e6f0ec2c7e784096861be517b6462ad7f9891485b563e237eacba65623708bce563c8c508134138442ff1381034bc82d87e6bf1807b6069ab51ce1b104224e6f7a74ed29759d295d9a64cebd9ec8"}, 0x10d)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000009bc0)={0x2d, 0x38, 0x3, 0xf, 0x0, 0xfff, 0x3, 0x9a, 0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000009c00)={'ipvlan1\x00', @remote})
setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000009c40)=@hopopts={0x1d, 0x19, '\x00', [@generic={0x3, 0x82, "e456012c516c1d8111739cfea09799589ba0d142d3941b444b7000ad712d1ac11f4d0430af12eb77349222765fc88cb75549fd9d3979ef2999e579bf5bfb258606d0ec98ba9b51a1eac13404c7165a5027631c4af206754f2d7c12e6b6fc95b60ac6e89766a1340bfbb1c1f0b55b6bf6be6ab6d0351583b1c571def25c18b65c4fd6"}, @padn={0x1, 0x2, [0x0, 0x0]}, @generic={0x3, 0x32, "71c322fa1bb6d1f19a7fe5327677db858e27ef9fb66a7263471b111ac5e00aa12d907f0dfcd22211283e8c716d318bbb8047"}, @pad1, @jumbo={0xc2, 0x4, 0x228}, @ra={0x5, 0x2, 0x334d}]}, 0xd8)
sendmsg$NL80211_CMD_GET_COALESCE(r0, &(0x7f0000009e00)={&(0x7f0000009d40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000009dc0)={&(0x7f0000009d80)={0x28, 0x0, 0x4, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x4a}, @void, @val={0xc, 0x99, {0x2, 0xd}}}}, ["", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x2008041)
write$char_usb(r0, &(0x7f0000009e40)="751477a95241b4eb6ce5eb7c78cba9b6637a7fb648c980c7ed789e949ef03258f0ffea7efc3f150645fee626e0faa79301e5ac9aba755b503e7c180ab58c51b1ea04b880369ce9a8e0aabd2c008c613af20a268a8211c986b7a6e071026d5a2262a30350fbe6a4147407baf854f0a4c3374e6be197a5dccf91f3eb5e4bd06379ae715cca6eda8ac52c19b2360422a031bc411847868920a8a6102537d4ef1af068b966b69d2352501323f18893800bbc3c4ed7e9bab4c10d0c111f49805d6ab2a9d9098159de1fdba66d32da79e80da6b21c8c1edc2347131430ad54daaad574024735d16b90", 0xe6)
ioctl$TCSETS(r6, 0x5402, &(0x7f0000009f40)={0x3, 0x3ff, 0xb, 0xc, 0x4, "b448ec25d5cf30b856eb29eaf9c47882c884e6"})
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r2, 0x4068aea3, &(0x7f0000009f80)={0xbc, 0x0, 0x4})

2m6.668020046s ago: executing program 3 (id=993):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r1 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@wr_crn={0x46, 0x20, {0x8, 0xd}}, @wrmsr={0x1e, 0x20, {0x8c5}}, @cpuid={0x14, 0x18, {0x4, 0x2}}, @wr_crn={0x46, 0x20, {0x2, 0x7}}, @rdmsr={0x32, 0x18, {0x48c}}, @uexit={0x0, 0x18}, @cpuid={0x14, 0x18, {0x8000, 0x8}}, @wrmsr={0x1e, 0x20, {0x403, 0x8}}, @uexit={0x0, 0x18, 0x3}, @rdmsr={0x32, 0x18, {0x403}}], 0x110})
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000040)=0x1000)

2m6.667753256s ago: executing program 3 (id=994):
setresgid(0xee00, 0xee01, 0x0)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f0000000180)='tmpfs\x00', 0x2800408, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000002780)={0x2020}, 0x2020) (async)
read$FUSE(r0, &(0x7f0000002780)={0x2020}, 0x2020)

2m6.667009876s ago: executing program 3 (id=995):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1802, 0x0)
r0 = socket(0x80000000000000a, 0x2, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000140)={'syztnl2\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x2f, 0xe, 0x8, 0x1, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @private2, 0x20, 0x7800, 0x53, 0xe}})
r2 = getuid()
setreuid(0x0, r2)
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wake_lock', 0xe0002, 0x66)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x53, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
copy_file_range(r3, 0x0, r3, &(0x7f0000000040)=0x400, 0x100, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={<r7=>0x0}, 0x0)
connect$can_bcm(0xffffffffffffffff, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r8, 0x40086602, &(0x7f00000002c0)=0x20)
openat(0xffffffffffffff9c, 0x0, 0x20842, 0x22)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='./file1\x00')
preadv2(0xffffffffffffffff, &(0x7f0000000380), 0x0, 0x5, 0x101, 0x1)
ptrace(0x11, r7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x12, 0xffffffffffffffff, 0x44da2000)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2a, &(0x7f0000000200)={0x8, {{0xa, 0x4e21, 0x6de, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @local}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x4, @mcast1={0xff, 0x7}}}, {{0xa, 0x4e21, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7fffd}}}, 0x108)

2m6.649175907s ago: executing program 3 (id=996):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r1, &(0x7f0000000cc0)=[{{&(0x7f0000000240)={0xa, 0x4e23, 0x4, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000003bc0)=ANY=[@ANYBLOB="140000000000000029000000430000000d000000000000001400000000000000290000003e0000000100000000000000a800000000000000290000003700000084110000000000000740000000020e7ff579010000000000000001000000000000000100000000000000070000000000000001000000000000000100008000000000cd0b00000000000004011a0720c087ec9006020400080000000000000004000000000000000900000000000000c20400000005000100050200050718000000010408050001800000000000000004000000000000000038"], 0x110}}], 0x1, 0x931766f6319eed40)
mkdir(&(0x7f0000000000)='./file0\x00', 0x10)
r2 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', <r3=>0x0})
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080))
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x89f0, &(0x7f0000000080)={'bridge0\x00', &(0x7f0000000000)=@ethtool_regs})
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000000c0)={@mcast1, 0xa, r3})
dup(0xffffffffffffffff)
prctl$PR_MCE_KILL(0x23, 0x9, 0x7fffffffeffe)
read$FUSE(r0, &(0x7f0000005d00)={0x2020}, 0x2020)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
sendfile(r1, r0, 0x0, 0x80000000)

2m6.585368473s ago: executing program 3 (id=997):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000480)={0x73622a85, 0x0, 0x2})
r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f00000000c0)=':+\x00', &(0x7f00000002c0)="8a77071d0a0d7240ad52b137f4aaab3166f72ee06d6826ff6f486cfb7975251593637f187d4dccd5bf980ce637f9cc5ce5daff3cebce2fc4eb3bfc2f5b71ea7ae523c00b181b939490962610520ffe505bece143d38014157c34fe4050dc9fc403da03b1bcab3007736075ac31c28bba60a463b11e68f58302aaf4996976ddb9804fb9e24029587d8d3669a74b1e", 0x8e)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001b0009f326e19d00ffdbdf2501"], 0x14}}, 0x44800)
fcntl$dupfd(0xffffffffffffffff, 0x0, r2)
read$FUSE(r1, &(0x7f0000000640)={0x2020}, 0x2020)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000040)={0x10, 0x0, &(0x7f0000000440)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x4, 0x0, &(0x7f0000000100)=[@register_looper], 0x50, 0x0, &(0x7f0000000140)="b2e42e84a298b70dc371a2508c5d7046a67690ceea2fedb81a54a93848589c5421b0c5685ead66b31cd17726fb3b1a0eb732662bda7c1c601d561dbf9b5d5a96ece21ad4a238877ac077f502b80cabee"})

2m6.554756915s ago: executing program 32 (id=997):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000480)={0x73622a85, 0x0, 0x2})
r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f00000000c0)=':+\x00', &(0x7f00000002c0)="8a77071d0a0d7240ad52b137f4aaab3166f72ee06d6826ff6f486cfb7975251593637f187d4dccd5bf980ce637f9cc5ce5daff3cebce2fc4eb3bfc2f5b71ea7ae523c00b181b939490962610520ffe505bece143d38014157c34fe4050dc9fc403da03b1bcab3007736075ac31c28bba60a463b11e68f58302aaf4996976ddb9804fb9e24029587d8d3669a74b1e", 0x8e)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001b0009f326e19d00ffdbdf2501"], 0x14}}, 0x44800)
fcntl$dupfd(0xffffffffffffffff, 0x0, r2)
read$FUSE(r1, &(0x7f0000000640)={0x2020}, 0x2020)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000040)={0x10, 0x0, &(0x7f0000000440)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x4, 0x0, &(0x7f0000000100)=[@register_looper], 0x50, 0x0, &(0x7f0000000140)="b2e42e84a298b70dc371a2508c5d7046a67690ceea2fedb81a54a93848589c5421b0c5685ead66b31cd17726fb3b1a0eb732662bda7c1c601d561dbf9b5d5a96ece21ad4a238877ac077f502b80cabee"})

11.773569458s ago: executing program 2 (id=2912):
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000280)={{{@in=@local, @in=@rand_addr=0x64010101, 0x4e22, 0xfffe, 0x0, 0x0, 0x2, 0x20}, {0x0, 0x0, 0x2, 0x0, 0xffffffffffff235b, 0x0, 0x9, 0x1000000}, {}, 0x0, 0x0, 0x1, 0x0, 0x2}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x4d5, 0x6c}, 0x2, @in6=@loopback, 0x0, 0x2, 0x0, 0x0, 0xffdffffc, 0x7}}, 0xe8) (async)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1002, 0x0) (async)
syz_usb_connect(0x5, 0x2d, &(0x7f00000002c0)=ANY=[@ANYBLOB="1201500285d5c2086004040031960154030109021b000100031003090458080119662194090586d7"], &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_open_dev$evdev(&(0x7f0000000340), 0x3f, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

10.487855512s ago: executing program 2 (id=2937):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0) (async)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0) (async)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='smaps\x00')
read$FUSE(r2, &(0x7f00000005c0)={0x2020}, 0x2020) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff})
getpid() (async)
sendmsg$unix(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="100000000000000001000800010000005dd27b879804e13700dc4d97"], 0x10}, 0x8841) (async)
syz_usb_control_io(r1, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r1, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000000000)={0x1}) (async)
r4 = open(&(0x7f0000000300)='./file2\x00', 0x101042, 0xa3)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2000002, 0x4052, r4, 0xfffff000) (async)
r5 = socket$netlink(0x10, 0x3, 0xf)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, 0x0, 0x0) (async)
getsockopt$netlink(r5, 0x10e, 0x9, &(0x7f0000001840)=""/42, &(0x7f0000000100)=0x2a) (async)
ioctl$PIO_CMAP(r2, 0x4b71, &(0x7f0000000280)={0x0, 0x3, 0x8, 0x7, 0x7, 0x8})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text16={0x10, &(0x7f0000000300)="0f4453000f0566b8010000000f01d90fc79c3f0026dbd3baf80c66b88cb2918466efbafc0c66b80000000066efbaf80c66b882fabc8066efbafc0cb000ee66b9800000c00f326635010000000f30d9fc83bd000015", 0x55}], 0x1, 0x74, 0x0, 0x0) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x12, r0, 0x45809000) (async)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (async)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002600)=ANY=[@ANYBLOB="180000001100000126bd700002000000070000001422319822159a0fd5215ce32bc3c9afce340e1525a1471c82c2deb5aa57aa08212ebd60e6a6528efc4db68bd960c9661708fa91d619920ec7bf679479cbe19efd5c1bf565aa49e43c9bb0c5bd5530b5a2cc3a5c27394211416fa9f1aea5e9609e7c7113ef4e0bfb9e9ca33003561cdc5689dce6ff096fab82a0be453ca3c738eebaa7beccef229278488e5022bfbc6f2f7d1eeedbd984866e8d6c60e69a04a2337bbd5d7452ed9d1ba47c12df68d12402fc8f1bd9f6b8acf2167dcd5aae70dfcdd6cd00919df275a8e75a28dc359b4b05d242b99c2196f9a4a7d998253f"], 0x18}}, 0x0) (async)
madvise(&(0x7f0000578000/0x2000)=nil, 0x2000, 0x16) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xba086}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYRES32=0x0], 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0x811) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

9.89376265s ago: executing program 2 (id=2946):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_VM_DISABLE_NX_HUGE_PAGES(r1, 0x4068aea3, &(0x7f0000000240))
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000280)={{{@in=@local, @in=@rand_addr=0x64010101, 0x4e22, 0xfffe, 0x0, 0x0, 0x2, 0x20}, {0x0, 0x0, 0x2, 0x0, 0xffffffffffff235b, 0x0, 0x9, 0x1000000}, {}, 0x0, 0x0, 0x1, 0x0, 0x2}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x4d5, 0x6c}, 0x2, @in6=@loopback, 0x0, 0x2, 0x0, 0x0, 0xffdffffc, 0x1000000}}, 0xe8)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1002, 0x0)
syz_usb_connect(0x5, 0x2d, &(0x7f00000002c0)=ANY=[@ANYBLOB="1201500285d5c2086004040031960154030109021b000100031003090458080119662194090586d7"], &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_open_dev$evdev(&(0x7f0000000340), 0x3f, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

8.482383134s ago: executing program 2 (id=2985):
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a3f4300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0xfffff000, 0x0, 0x9e5e111c47e3504f)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f00000000c0)={0x0, 0x3}, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=r3, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
newfstatat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x1000)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x5, @dev={0xfe, 0x80, '\x00', 0x22}, 0x3}, 0x1c)
r4 = epoll_create1(0x0)
pread64(r4, &(0x7f0000000180)=""/181, 0xfc, 0xfff)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000080)={0x8})
link(&(0x7f0000000080)='.\x00', &(0x7f00000000c0)='./file0\x00')
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
ioctl$ASHMEM_GET_NAME(r6, 0x40087708, 0x0)

8.455629706s ago: executing program 2 (id=2986):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000180)=0x140, 0x4)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0)
write$uinput_user_dev(r1, 0x0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000140)={0x73622a85, 0x1381, 0x3})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

8.382516003s ago: executing program 2 (id=2987):
r0 = socket$netlink(0x10, 0x3, 0x7)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0xc0802, 0x0)
ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000000))
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f0000000080)=0x4)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000001, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
close(r2)
sendmmsg$inet(r3, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3aced", 0x16}, {0x0}], 0x2}}], 0x1, 0xc0)
ioctl$PPPIOCSFLAGS1(r2, 0x40047459, &(0x7f0000000040)=0x80000)
close_range(r1, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x7) (async)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) (async)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0xc0802, 0x0) (async)
ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000000)) (async)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000000c0)) (async)
ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f0000000080)=0x4) (async)
socket$inet(0x2, 0x4000000000000001, 0x0) (async)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000001, &(0x7f00000004c0)=0x79, 0x4) (async)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) (async)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) (async)
close(r2) (async)
sendmmsg$inet(r3, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3aced", 0x16}, {0x0}], 0x2}}], 0x1, 0xc0) (async)
ioctl$PPPIOCSFLAGS1(r2, 0x40047459, &(0x7f0000000040)=0x80000) (async)
close_range(r1, 0xffffffffffffffff, 0x0) (async)

8.351658425s ago: executing program 33 (id=2987):
r0 = socket$netlink(0x10, 0x3, 0x7)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0xc0802, 0x0)
ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000000))
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f0000000080)=0x4)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000001, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
close(r2)
sendmmsg$inet(r3, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3aced", 0x16}, {0x0}], 0x2}}], 0x1, 0xc0)
ioctl$PPPIOCSFLAGS1(r2, 0x40047459, &(0x7f0000000040)=0x80000)
close_range(r1, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x7) (async)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) (async)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0xc0802, 0x0) (async)
ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000000)) (async)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000000c0)) (async)
ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f0000000080)=0x4) (async)
socket$inet(0x2, 0x4000000000000001, 0x0) (async)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000001, &(0x7f00000004c0)=0x79, 0x4) (async)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) (async)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) (async)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) (async)
close(r2) (async)
sendmmsg$inet(r3, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3aced", 0x16}, {0x0}], 0x2}}], 0x1, 0xc0) (async)
ioctl$PPPIOCSFLAGS1(r2, 0x40047459, &(0x7f0000000040)=0x80000) (async)
close_range(r1, 0xffffffffffffffff, 0x0) (async)

4.387033746s ago: executing program 5 (id=3084):
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80982, 0x0)
write$vga_arbiter(r0, 0x0, 0xff35)
socket$inet6(0xa, 0x2, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) (async)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c) (async, rerun: 64)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff}) (rerun: 64)
r3 = socket$packet(0x11, 0x2, 0x300) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'vlan0\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000000040)='h', 0x1, 0x0, &(0x7f00000000c0)={0x11, 0x8100, r4, 0x1, 0xe0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x14) (async, rerun: 32)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x2, 0x0) (rerun: 32)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg$can_raw(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@can={{0x2, 0x0, 0x1, 0x1}, 0x2, 0x2, 0x0, 0x0, "92b54fc21a047d34"}, 0x10}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r5}})

3.543108834s ago: executing program 5 (id=3089):
r0 = socket$inet6(0xa, 0x802, 0x88) (async)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000280)={0x28, 0x0, 0x2711, @local}, 0x10) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600) (async, rerun: 32)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x50, r2, 0x0) (rerun: 32)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) (async, rerun: 64)
r3 = getpid() (rerun: 64)
sched_setscheduler(r3, 0x2, &(0x7f0000000480)=0x7) (async, rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (rerun: 64)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10) (async)
sendmsg$nl_generic(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=ANY=[@ANYBLOB="640100004a00010200000000000000000a"], 0x164}}, 0x0) (async, rerun: 64)
setreuid(0xffffffffffffffff, 0xee00) (async, rerun: 64)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000280)={'fscrypt:', @desc2}, &(0x7f0000000500)={0x0, "f1a1173fb9462d3509e67197f90be6e423ceb0ab4912f9f6a31854ec7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
getsockopt(r1, 0x1, 0x4, 0x0, &(0x7f00000000c0)) (async)
setsockopt$inet6_udp_int(r2, 0x11, 0x67, &(0x7f00000003c0)=0x40000006, 0x4) (async)
sendto$inet6(r0, 0x0, 0x0, 0x4008840, &(0x7f0000000180)={0xa, 0x4e23, 0x9, @empty}, 0x1c) (async)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000300)='./cgroup\x00', &(0x7f00000002c0)='gadgetfs\x00', 0x1254c10, 0x0)
lsetxattr(&(0x7f0000000000)='./cgroup\x00', &(0x7f0000000180)=@random={'os2.', '!}&\x00'}, &(0x7f0000000140)='/de\x83/rnullb0\x00', 0xd, 0x0)

3.281183115s ago: executing program 5 (id=3091):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)
r0 = getuid()
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@redirect_dir_follow}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@userxattr}], [{@fowner_lt={'fowner<', r0}}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x33, 0x39, 0x52, 0x37, 0x65, 0x36, 0x66], 0x2d, [0x31, 0x35, 0x33, 0x30], 0x2d, [0x63, 0x64, 0x36, 0xaeb1f1c5b748a8db], 0x2d, [0x32, 0x65, 0x36, 0x66], 0x2d, [0x37, 0x64, 0x65, 0x30, 0x62, 0x31, 0x32, 0x37]}}}, {@fowner_eq={'fowner', 0x3d, r0}}]})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
read$FUSE(r1, &(0x7f0000002580)={0x2020}, 0x2020)
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000000000)=0x2)

3.272561946s ago: executing program 5 (id=3095):
connect$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0x0})
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001000)=ANY=[@ANYRESHEX, @ANYRES32=0x0, @ANYRES32=0x0], 0x170}, 0x1, 0x0, 0x0, 0x8080}, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)='+', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x20000850)
getsockopt$IP_VS_SO_GET_SERVICES(r1, 0x0, 0x482, &(0x7f0000000040)=""/38, &(0x7f00000004c0)=0x26)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="780300", @ANYBLOB="37040000000000000000010000005c03088030000080060005000000000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b39223400008004000980060005000080000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b3922f4020080cc02098034000080060001000200000008000200ac1414aa0500030003000000060001000200000008000200640101010500030000000000a0000080060001"], 0x378}}, 0x0)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f0000000580)={0x24, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x22, 0x21, {[@global=@item_012={0x2, 0x1, 0x7, "7f5f"}, @main=@item_4={0x3, 0x0, 0xb, "77194c9e"}, @global=@item_4={0x3, 0x1, 0x2, "c44f1a4f"}, @global=@item_012={0x1, 0x1, 0x9, "99"}, @local=@item_012={0x2, 0x2, 0x0, "f554"}, @global=@item_4={0x3, 0x1, 0x0, "2214a856"}, @main=@item_4={0x3, 0x0, 0x9, "f3e11f4f"}, @global=@item_4={0x3, 0x1, 0x8, "3a40d02d"}]}}, 0x0}, 0x0)
syz_usb_ep_write(r2, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
r3 = socket$inet_icmp(0x2, 0x2, 0x1)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000001a80)={'IDLETIMER\x00'}, &(0x7f0000001ac0)=0x1e)
r4 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r4, 0x40087703, 0xfffffffa)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r4, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
ioctl$ASHMEM_SET_NAME(r4, 0x40087708, &(0x7f00000007c0)='\x00\x00\x03\x06\x00\x00\x00\x1f\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\x87\xa3\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b^:4\xeb\xd37\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Hd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x1b\xdaR-\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~\x00\x00\x00\x00\x00\x00\x00')
quotactl_fd$Q_GETINFO(0xffffffffffffffff, 0xffffffff80000502, 0x0, &(0x7f00000019c0))
ioctl$ASHMEM_SET_NAME(r4, 0x40087707, &(0x7f0000000080)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83\x1b\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x1d\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbzE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\x02\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x02\x16\xf5\xe6\x7f\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\x18g8j\x0eT\xbe\xa1\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35\xef\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84x\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00\xfel\xf1\xc8\x0f8\xdb%W\x87\xd0\xbc\xbf\x97\xa9\x97\v\xbe%\x81\xbf[\x05\x9d\xed\'\"( \x15\x8bA\x19\xa8\xbcF%\x17#[\xbb\x99U\x92\'\xb6\xbe6\x8f\xc9%\xd9\xce\x91r\xfch\xf5\xf5*h\x1e\x0e\xbcD\xc4\xb9\x93e\x84\xb11\xae\xb8\x06\x81\x96g\x17h\a\x02\xfe\xa0\x1a\xfd\xb3e8\xa5\xd0\xb1\xa1\x8c\xd2\x9f\xd3\xc3?\xb6\x0e\xfe\x1f\x1bG31\xf9J\xf4\x85\xa9L\x1b\x18\x01A\x18\xae\xc9B\x00\x00\x00\x00\x00\x00\x00\x00\x00\xfe\xb9\xc2\xdd\x9d\x8d5B\xaf\xe2\xf3\t\x97_uaJ|z\xec\x11\xb6\xd2\"U?cH[\xe5\xcf\xe0b&^\xbd\x15\xaecx@`\xe8\x1c\xfe\x9e\x17L\xa0\xe2l\xfa\xf1 \t\x0fG\xcd\xc3\xbc\x96z\x0e\xe9w\xc9y\x11\xf31\x8cc\xe2\xcd+\n\xcb\x05\x7f*2\x1c\xde\xb5\xd53x\xbd\xe5\x157l\xf1\x15y^\xbf4\x05\x94\xda\xd9\x04\x1b\x1dP\x1d\xbb1\xc8<*\xfb\v\b\xaf \xae\xea\xa4\x8b\x18\xefc\x90[\xe4\x8a\x03\xe3\x9e\xb9]\x8a~z\x9e\xc7qLY\xa0\xce\xdd0\a\x19\xe3\xd6\xeeV\x93\b~{\\\xa4\xe1\xc7d\x9c\f\xed\a&m\a\x9f7\x03]C\xed\xb4\x80>?/3\xc2\x14r}\xe0\xdd\xab\xc8\xb1\xb3\xdbu\x86\xa6Xo\xc7\xf4\xcc\xdf\xb9\x92W\x02JL=F\xd6a\xef')

2.816800162s ago: executing program 1 (id=3127):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0x60a00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000004, 0x12, r0, 0xa0e4f000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, r0, 0x0)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00008fb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000eb4000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
r1 = syz_io_uring_setup(0x65da, &(0x7f0000000000)={0x0, 0x21b8, 0x2000, 0x3, 0x3dd}, &(0x7f0000000180), &(0x7f00000001c0))
syz_io_uring_setup(0x80, &(0x7f0000000100)={0x0, 0x800381e, 0x1000, 0x1, 0x1ba, 0x0, r1}, 0x0, 0x0)
madvise(&(0x7f0000785000/0x2000)=nil, 0x2000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

2.621348549s ago: executing program 1 (id=3139):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x13, r0, 0x8ee49000)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
sendmsg$IEEE802154_SET_MACPARAMS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYRESDEC, @ANYRES8=r1, @ANYRES16=r1], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x804c090)
ioctl$FS_IOC_GETFSLABEL(r2, 0x800452d2, &(0x7f0000000100))
madvise(&(0x7f000036e000/0x4000)=nil, 0x4000, 0x64)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
openat$rnullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

2.615249499s ago: executing program 1 (id=3140):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x40d00, 0x0)
r1 = dup(r0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0xc8)
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000080), 0x20002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x11, r2, 0x45809000) (async)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
mount$cgroup(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000500)={[{@noprefix}]}) (async)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000001040)={'lo\x00', {0x2, 0x4e23, @local}}) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x8031, 0xffffffffffffffff, 0xf6d0d000)
r4 = socket$packet(0x11, 0x2, 0x300) (async)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
r5 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r5, 0x0, 0x4, &(0x7f0000000140)="441f08d600270bee724ef54e91eeffbe1e68d5040d73161feeb0f24cb1", 0x1d)
getsockopt$packet_int(r4, 0x107, 0xb, 0x0, &(0x7f0000000180)) (async)
r6 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
dup(r6) (async)
accept4$unix(r1, 0x0, 0x0, 0x0) (async)
syz_open_procfs(0x0, &(0x7f0000002e00)='setgroups\x00')
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x1cbd81, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{}], 0x1, 0x0, 0x0, 0x11000000}, 0x0) (async)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x4000085, 0x0, 0x0)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x23ca, @ipv4={'\x00', '\xff\xff', @local}, 0x8c}, 0x1c) (async)
r8 = memfd_create(&(0x7f0000000180)='\b\x9dF\xd8\b\xb3~u\xa5\"\xdc\xfdq\xf6c\r;\xfcO\x8c=\x81\xb1\x8aWpA\xd4\x98\x85K\x89>N\x8ar\x17O\x0fKR\xe2{mn\xcc\xbf2\xc0\xa7\x14\xd0\xd4\xfe/m\xdf\xb6]\xc2\xaa\x86\xec(\xf7\xcd\xa6\xd9n^.\x13*\xd4\xb8\xe8\xc4\xefb\x14Vx\xc6\xfe\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97$\xee\x84\x14n,B\xd5?\xe5E:+Pm\x1d\xb4\xb8\xeb\xe8Op2\x82\xc7\x0e\x97\x03\xef\x1a\xa5\x00.\x89\b!m\f\xd9\x8b$}\x9f\fX\x81\xa8\xf6\x94\xbc\xed\x80|l]\xe9\xca\xd3\xc9\xa3\x9e\x9cJI\xf1\xa2\xa0\xc4:\x00\x00\x00\x00\x00\x00\b\x00\x00', 0x0) (async)
pipe2(&(0x7f0000000040)={<r9=>0xffffffffffffffff}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async)
splice(r9, 0x0, r8, &(0x7f0000000140)=0x8008, 0x4, 0x0)
ptrace(0x10, r7) (async)
ptrace$setregs(0xd, r7, 0x0, &(0x7f0000000540))

2.569108503s ago: executing program 1 (id=3141):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x2, 0x0)
syz_open_procfs(0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
setsockopt$bt_BT_SECURITY(r3, 0x112, 0x4, 0x0, 0x0)
ioctl$TIOCOUTQ(r2, 0x5411, &(0x7f0000000080))
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])

2.503914648s ago: executing program 1 (id=3142):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x28880, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000004, 0x12, r0, 0xa0e4f000)
madvise(&(0x7f0000785000/0x2000)=nil, 0x2000, 0xe) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000840)={0x1c, r6, 0x1, 0x0, 0x25dfdbfd, {0x54}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8010}, 0x8000) (async)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r7, 0xffffffffffffffff, 0x0) (async)
r8 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_GET_MSRS_cpu(r8, 0xc008ae88, &(0x7f0000000500)={0x1, 0x0, [{0x411, 0x0, 0x6}]}) (async)
fstat(r7, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
quotactl_fd$Q_SETINFO(r7, 0xffffffff80000602, r9, &(0x7f00000001c0)={0x401, 0x0, 0x0, 0x5}) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r2, 0x4068aea3, &(0x7f0000000080)={0x79, 0x0, 0xcc9}) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

2.497824729s ago: executing program 1 (id=3143):
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000280)={{{@in=@local, @in=@rand_addr=0x64010101, 0x4e22, 0xfffe, 0x0, 0x0, 0x2, 0x20}, {0x0, 0x0, 0x2, 0x0, 0xffffffffffff235b, 0x0, 0x9, 0x1000000}, {}, 0x0, 0x0, 0x1, 0x0, 0x2}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x4d5, 0x6c}, 0x2, @in6=@loopback, 0x0, 0x2, 0x0, 0x0, 0xffdffffc, 0x1000000}}, 0xe8)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1002, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = socket(0x11, 0x2, 0x0)
setsockopt(r2, 0x107, 0x1, &(0x7f00000001c0)="110000000200060000071a80010061cc", 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x1a, &(0x7f0000000100)=0x401, 0x4)
bind$inet6(r4, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
sendto$inet(r3, 0x0, 0x0, 0x20000800, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
close_range(r1, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x5, 0x2d, &(0x7f00000002c0)=ANY=[@ANYBLOB="1201500285d5c2086004040031960154030109021b000100031003090458080119662194090586d7"], &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_open_dev$evdev(&(0x7f0000000340), 0x3f, 0x80100)
close_range(r0, 0xffffffffffffffff, 0x0)

1.414218956s ago: executing program 5 (id=3152):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000000000010d80402f0000000000001090224000100000000090400000103000000092100000001220b0009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="00220b000000660cbb92"], 0x0}, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1802, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c00000002030500000000000000000000000000db39e86182abef152ef5398c0000"], 0x1c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)={0x14, 0x3, 0x3, 0x101}, 0x14}}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
writev(r4, &(0x7f00000006c0)=[{&(0x7f0000000080)="2e9b3d0007e03dd65193df163e75963f86ddf06712e9001c2f8db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f00000002c0)="8d09327c", 0x4}, {&(0x7f0000000300)="b03ef9880b815229ff28eac1d4f49bcad59f85c5248ea7", 0x17}], 0x3)
close_range(r1, 0xffffffffffffffff, 0x0)
close_range(r2, r3, 0x2)

1.11277759s ago: executing program 0 (id=3159):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder1\x00', 0x1002, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r2 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005938d74010973077339600000001090212000100001e000904"], 0x0)
syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0)
syz_usb_control_io(r2, &(0x7f00000005c0)={0x2c, &(0x7f0000000300)={0x20, 0x31, 0x2, {0x2, 0x10}}, &(0x7f0000000440)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x44e}}, &(0x7f0000000600)={0x0, 0xf, 0x13c, {0x5, 0xf, 0x13c, 0x5, [@ptm_cap={0x3}, @ssp_cap={0x18, 0x10, 0xa, 0x0, 0x3, 0x9, 0xff00, 0x100, [0xff0000, 0xc0c0, 0xf]}, @generic={0xf1, 0x10, 0xb, "5b2682b5c806cb5b6f5aa67d6bcd6b746bb9a681bab28efd3bb69d204d276d061473459f2d1e4350ca66abffab5d03ae9ea4d56438ee5a1e526cff259b32cbbb4cf8691aa9662a54ad7f8807ca43c7d14a2de8852dafc86ecfa425d9f28f034d90f02d98659567dc56e1b1385936886346365d5fbc75fb6e164cf5d1e05398a21eb42da071e6836aa1e3d40f0ddfd4ce564de90084c8e8773fa6aea56f3a04f8959bace0ef76fdd1a8371d87d70f9d88ba5f14e13902d5d5f65b66041c1346fefde76c113743d804f13e202f7303c689ae3c762b14b88602cd4339f46d305a7f548b898986cc4d1946435bed25ef"}, @wireless={0xb, 0x10, 0x1, 0x2, 0x86, 0x9, 0xfe, 0x101, 0x9}, @ssp_cap={0x20, 0x10, 0xa, 0x5, 0x5, 0x0, 0xf00f, 0xae4, [0xff0000, 0xffc030, 0xff00, 0x3f00, 0xffff00]}]}}, 0x0, 0x0}, &(0x7f0000000bc0)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)={0x20, 0x0, 0x4, {0x40, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r2, &(0x7f0000000300)={0x14, &(0x7f00000001c0)={0x20, 0x24, 0x12, {0x12, 0x30, "b59f1675d17cec04702d104471469368"}}, &(0x7f0000000200)={0x0, 0x3, 0xc6, @string={0xc6, 0x3, "a86acc366967604bf80b99aa9f548fbbb160fcd8f153f47af2ae0054848c0f6df48f57e86686d89f4c630e82ef726d72bd9747d87a315a11792c00e9d23ae97d967e850ad2e26bb76105829f5c9e9cea424bddd1bcdee6abbd8465221fb928773dc7d60d24f47a6643f41a97447bd491cf9fc2149582c6ec85f1dbe5ee3b86c8aceca9117a255aa4ea0573daf0b76a666730b274b3214a3b54036b20883a603a9950abe10c0f60936474a4aced91b1d0b6629f50b8423ec057a32e3361d9d79cb01d11e3"}}}, &(0x7f00000004c0)={0x34, &(0x7f0000000340)={0x20, 0x10, 0x2c, "0d47aec42af6264c0a1169eeb66fe2e233d33f6db96ec2e77e902633d0aacc6c40c0fac93a24222376868ec7"}, &(0x7f0000000380)={0x0, 0xa, 0x1, 0x8}, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000000400)={0xc0, 0xa1, 0x4, 0xa}, &(0x7f0000000440)={0x40, 0xa0, 0x4, 0x3}, &(0x7f0000000480)={0xc0, 0xa2, 0x2f, "c6df080369b7bf0dab783e0d26e42d54414f2bc53d48148583af17842ab4812d4c38419c00b87325309d40a75bc1c8"}})
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = socket(0x10, 0x3, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x24800, 0x0)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000100)={0x1, &(0x7f00000041c0)=[{0x6}]}, 0x10)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x7c, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
accept(0xffffffffffffffff, &(0x7f0000000000)=@vsock={0x28, 0x0, 0x0, @hyper}, &(0x7f00000000c0)=0x80)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="280000001e00210000000000000000000700000000000000000000000a00020077"], 0x28}}, 0x0)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_open_procfs(0x0, 0x0)
r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_X86_SET_MSR_FILTER(r9, 0x4188aec6, &(0x7f0000000a40)={0x1, [{0x6, 0x0, 0x129, 0x0}, {0x1, 0x0, 0x2, 0x0}, {0x2, 0x0, 0x800, 0x0}, {0x1, 0x0, 0x180000, 0x0}, {0x1, 0x0, 0x3cb0, 0x0}, {0x3, 0x0, 0x3fe, 0x0}, {0x1, 0x0, 0x4e00000, 0x0}, {0x2, 0x0, 0x8, 0x0}, {0x2, 0x0, 0x7ffffffe, 0x0}, {0x1, 0x0, 0x3, 0x0}, {0x2, 0x0, 0x9, 0x0}, {0x3, 0x0, 0x3, 0x0}, {0x1, 0x0, 0x200000, 0x0}, {0x1, 0x0, 0x80000002, 0x0}, {0x0, 0x0, 0x2, 0x0}, {0x1, 0x0, 0x8001, 0x0}]})
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
timerfd_create(0x2, 0x180800)
getsockopt(r7, 0x28, 0x8, &(0x7f0000000080)=""/54, &(0x7f0000000000)=0x36)

598.213152ms ago: executing program 0 (id=3161):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x165342, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0) (async)
remap_file_pages(&(0x7f00006ca000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x4000000) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19) (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async)
write(r0, &(0x7f00000025c0)="547bbee68789313efe846d6698abfeac0d12b144933fa6f684f1ba13b34680bf4b9ea70f71faa2a82a45ab47458c1f827355ad34033fbb8b9699eb0b279252dfcf29e377e14dcfbde42857cbf2aa88d3dad8ec2deea7afe4e747fa392fe01d425970fb2dd7a000ea3889f0d9021f347818106963e18c256e3df26b41c61d30284a8ad61c6269756119d62e3a7a24c1dcd09d3eb35dfee6ec945ac190c4797988e0d7f6f38bf9b124431dd8208a9208195a70c8e558c216e78d5f5b3f6df6f155e16bf7dd8f4e9eaf61d5142a82da7a87aeca19c25b631cd8a14ce9f2fc8dbcd05f51dc9260abc82d780c9358bd6411ebf48520694d413024432d0bfc3759a620289c9c8705009fd829da6eb5b72b454436b0af8e9dc4941ca2cff92561cad984e15849dcd73f04c7f70a30304da2fbc17f421767ad5ce47ed79d6798428eada9a31faa02f978699bc8c482224a2d5f85cc1135ea92ac1c610e32f1e7c82da6d91e0c8634da679760c32c3e891db352b76b61a65bbdd023e093a8e0d37fd8cd00679cb1bceaac84b05861740c221b2cb4afa1ce8b091c815fc4bd83995b5bf5dcdf2912572cf6180ec27445404917ff9e8e6604e2afc19a1bb3745914f0a101e03e44ea5f64d404000000004f09cb296fb01d04e82799c40f29348eb283ad58a40d608a47f7f9a25dbb308aa03b2425ffa896e1a70a37cf49e6dbdeda39ee88aadb26811eba78a0dfe5400a51428c31582edcc5f75b5dd963707a54b9b1e35f9966995d6474acbf7094124cecf38369a3f6a5e3ad071f5e3df902843a3947623fe01571d97625c3e27721b08a6f85fd7b879acd401be5beabdd2603d566fdb4018bf8bd74c3ea1ae67c988992c7dab4ebcf501a73815e1b527d3ff1cf9e729d55127118565f794d253fef25609e5a415615d1b5fca5381b49446d9b9e75fbfcdd9218b0d8d8d965871b897544e32fd0b4cb5600ffdcdb0056bcad75216759590f8a94db82b0acd2a5a34e5c34241a19f1a7a7cceb894341f55c6b474f3cc000f9863a67519dfadee6576f08d7448929424c13e845e2e636b87dc14e1ab4ad05d69f896ca1bc5c1267befb68ec4207e21aa30bdae1d1602d3e4080784834e213c426ba5446f90d3b3885a5d6942c6b0e637f5bb9c7908460bd7d04497ab054c8fc7f89068f7535976ad051bfe94c243ce7604a63b2199b69f1ed73590a318fad9a170fa0cddfe60e981a92de2e1aab3465b11a968108e08deadfa1fa546c4cbc0c34ac28597848562583ae8d93cb60f2e06c7a1f743add51eb8cd732b40d48fde00117cb2d654100dfcc66b7c9fefac80e137caa5cf43ae897780251a3ebbc4ddd3b003168963c9e2c9446cb29731fc4bbb5e551aca6913f7b8594ce34012581b5a363917970399ca369688e637cf06ff3c8114383d2fcbf9c69f1ca63cd21695254a440df5ef0a8abfdbd0a651a533b6cdb82382e3bd70f87c1d3eb0a6e22452605026fafe6d35158c0728c1050a39330c80ee2ee0b09bfc952ca136e1c4c1cdf1c4d31e6366fc6382883ecd0796feec657b330e7735bf1c7e0e26aee4091471e406e9faffd5ede27943e5fbf1bec8683b993de7249ab8bad71f60063697f04db52e980a9fb3eb5e53b89be8a5f0e6afea7435789ecd444c28eb411cdc2158e434178749f36cc957dbd17efb2b218592f78d6864f2708e8c6db2da0d3f6de53959afec0c90d3d62a13a0bc3857bce58d81223eddd05cf3c1ec6b3fc5307d0f16d470f2065300295197e9fa81d2e5574b2c7b18f1c6c85156a9b1174d62dcd3cb026f4b67e6babd66c8f427b9687585f37b18c82e0100507035e78ce010b78ea1b5d3884db25df36ae929dd535a854a31cba5e47655873df72be7463c600b704e9da0e7cb2d61d0710248814ecced2eef8f227c8aec308c2c9d0a39d1a6b306080e8eaef8edece0f6d0d1612c582d70c3999a1a6bd529538f51ba4869ce74b6ec6f29d4021baed5411a36f4361d53c8027c12a7486e9c84e4de445b454630be27bdc2ec268702d9c1890297bdd1fc7a235f1a47f4645d286146f3cb9a7ce650f4157a1e7f134eb1815001d59905d3103efad3c66479330e8a5da941c9c38bf21bc0770e3fd56cafa19ad6e9d51f94ed4f900062b560635db940cb402653aacdcc956aeecfb1dd613caf918e1ca8ef2e1504c42768e77df43569d5fe4b48c237cad5285c578b26b4e47c8ce06fd2686e17eb6d5df5645d0fdde7782216be07a1135dabc3a59598bdbab249c5391832f18ac5163aa7a1a890128a4520835a53eb750604c5e328ecb3216516b3eba3f97652caeb4327da8865880a932dc8e7668666ac3b76a2a424ca37b5dfb52495710611e20790427a9f9e7ac59bb86f0fb7a17a5def347a98dd8e733b784d78d5c7f16f327a2606d4252411457465540a60b0757802f470d08337c0fe4eee5f5cfe4f296d0f7068e80828a022c95632beb7b7f802135e246b1adebebf24c821dee7205e9fe1a437b16aaa8dcb4a58b0bdbc8dbc2fce09271c27430cc9ca8141955ec5ff4228627c3816cfe1bb2c0f40f6a61e8bfa4e2dd744e41ed80b83e9aef77119f4b062b98e86690711e83e795bafa7a8db16f241cee76aa01ff749100c113fda966aa8c83ebe975f760c18e3864065a5de6e8028a9e3199f4acff11e14bb13bc50faf97fdeab46edc371e55cab78841a2de17ca116b0183ac38b658c57a64ab11bb0de071c971a7a5175ad0bac6ac1d1118230a5412a35bd005b369df0e04e749ea93d7e56f713b9ceff580547a2a76ea4753a78b4a5cd0311024c5536b536c8ede63bac8e8b4c5851248d9098a7c6bcc3d5f209178b45aef3c1afa4ab73d8feac3e1f771626d73d85f72dc15d16bd3b7b93e622626f6f3d96b4425d328236cf1579f1ca834a7b318b012e27b9a2dc528189cf1eb3705d90de50ce7ac0c256b7e41500113e164fb7d53c74c6f829552a5bce73eeab9a46d01551bdab18fd3a7e82b036872f1e876b12c5676f63a6ef0c6ff159788a0c2fc40f179a259c656e8aba9295e90027e74ef910ce3c56d6e2de917947410b05603b6a5052453f13e6ac058b3f621573bfe6224bad8c3a5f575e1eb774839cb554c53c9b3ad623df6c5c9627cce856f9ba5847557bc9f854cbb37a936f20a733ba352ee5b343b941290a399fb862434d1b551da420053cad3bad65195cde40b345740e30e9a22619add8aedb763473b729c0649f7a1ea45325534c9b629a1fe3a54a78fe44969715182c6df5c9ecf6878380831b2996579332ac37286e72ab16824c3fc9ef8d74a7f1f5cf80fa37f6bb990db3a7a70139887a4eba0763247c58f4fe770a0496a5ef49a3ba4d62bb900644d49b5fba7e58d58af6ae50c96da346618434ed46b8f4c27cde5e8863d5b090dc117f3b16db2c4273fa84f8b06d3df436bf4a8cfa6d33d7f0e78ef422d5d7640c821398c9adf4d6ccb1b2f7cd0e497023cfdd6b5bb9ad6a29edb8b78fb3322414cad1458eb12699853acb165076db7088f518386380850c111cbe74034ddbfe217db714325ebc4d6b46eba640cf125b87eed0832077ab775e475e431079756b3ca6f9bb3c861ce7eabf6adf70b76eb9642a1bab3d7afef2d7b40c8a19b98123ad744941039c494e73bc91a86e8e92c39a9482cf60605b9e5c209262c4fcfde76ee370bd6a78253b64c5cbb19a11b34c5a9ccf634c52751277268cd97e795b43867af5a4db51bd631ac547906fd52aff43eb98edacecf08f94a060902b5cb82e87ec856305005bd1150e581d9717460e31ba724da5e7ad72fa580f8509fe838dbc1bfbbf53e29688f25ca602d3de702e4411d3d133e2ab2f454f71f98efb468544cacf608c6689ef122009cf61e813e26b7b2b1695143fcd510f509ec2bf7205e674ba6767eaa29605c51e434c298bde0969617292e960d22b085632d241aa2a8e0f6ac6f2d56d0ed2c6bd3eca3064b954915065894480e737c7d7a11901bb7f977525cfcab652476baab0fd3b68dc59fd14ccdd6248bd5c5a0ab1dbae28a848b2d4ad0d973bb149ff4115b0436b7d145a6f8081d314039131f60dc8ed0ccf2c4971f0a59a65b3b1ef638e6d009dff793a4b7266c58f88bb117d665cae8fc6f6c2840470333bdbc8df12c6633a6ac7b664e089a85dc6d49f52459dd2df1be552194eef6027c1b45f62b97647788c3325f05609c1e02cbc9a18be72e4b502df77b2dd7675eca22a2751bd1685362ec5c19e4f9cb82615e3a03b5732328e552023dbfdcf91ed5ab51242e7d09a9b73674f0946976d8a8fa9288dce4d54d5820a0f0053b892685f79a6c8dbac724fce4d24a7b75e383f54ac58af3951d666a22f158637acc4f0e09e248e85f8e1439501afc0d5b7e9eab40fa737ae93482a1e29f3e327fa31d0d764c65ab976af1eb91fe08c5bc10a48b93453ad192d1d538cf93b792a70246bde99f46a78b670edea552840e08c787c928ee311f954b73d07287a59b470e38d4f624ddba8e4b21a74d7c07cc684b0ea82212129901029e74312866722dfa2dc53de3e8ddc00adc21deb7510ed15c50d139296297408da3d6beb589e7bb3f1d74e4e8dddec14b9cdf371d7f142136cdca5644d09edd97228a0abcd2e7b402c5cc68683cb980f50ca7aea8be338dc5990a6ebb2d2b95a3deecc45f5a4f4e0e40a57e29f3e227c41db00e17dc962e2ea3184b5057c89974bcab650622e588a527d7d8ec695e7ab5622c1ad3763d045a8393b7acfa04488556ac957777d1aebfc5d0e2a8150a6984d5607ac2400789d8f622c837d6a9b78fcc2d8aa872949edde53e3a99b5f5bf35bff5f0db7874ad3f172f9d8dd6cbb17a770b1482c79b9a15605cd0d89c8e886cfff8f843b99df95dde88c96202ae6ced4d539a3f70997ee7b282fe05e158ae510debdd06860732bdb7bbe529f9bc55b143066de8d9dcd7fa38c54094f2235e4a17ef8e910b4d48c373ce5e6fc9824ca8f115e579b002df16c591557cd6cac1363b8d8fc656075ca703a87f1efa76e4122eb7358389f659681fb49cb82215f73b284a7678b8b1528472d0cfab1980ee3d4410bdc1c31f1f798c3ca5744077e2f6cb4ca6e415f1e3afc8c00dd95d3307de5428883513f01ed19dde487e1c103619fd78583f09d02982512e0ee20a670b3b24986dcb7431f1ef3fd12e801bb2454213ff7b1962a464647eb4c8125cf2ed098160da880024a98add9b2917e133dcee7a8e25387fd5bf2b3f8fb05b2f7ed5f719b30b9cca4b1754e31d48bd2ec79e7e9c155130ea5f0876f3bb4d94ac74b209633ecb03deb8b9448e8cf4b4bcb04ffdb38ac457881f84636246a4e5e7773166129fb8b7803c6dde0ee69fd1f76f1d93b729eacc9d8dbd6e61e6389bf8de972a824936b1d869a15daaa21db04760e9110c5b7c736671d31a72fcd57a6f7424c898791cafa21a48921215a78d60a367aa7c6284a1aaa1fee0c5291bdc91bf8c032c9917fd28e68fc046ea4b17952f1abbe01af5f19e4fa99fc6a985f6264f9efbb208e6146d3465cc603ef36d3d59b5197bca1696bf5658b60cf0e0455cb1e174e52c4acb712a3ed9202a1ae334427b93305939c7f15e9e5eed09b5fc8d1e3836720d46d133841d4482ec2427d3002d85bce996b4b2d5b59b2a43970afe35517674bfdd8807931697422045f60641138fefa27865b9d477ef04847dd02d305e8f15e228522e54d1ffda6d5b26ad831146c66e6f9153ebeb0785ea75283df66816d771c7e4297c1686d06494a59046313169f2e2b4988a2758198fcb166d9d112d187a4456503e6c0bdfb390c89dcebf3cb8260a27fdebddbc607185701065a8b84a2f2502af8e68d0fe7635ac502f1b9ef82e61102b303d5f6483c0169ac112d9010a022c58e3f80f0cfb16f906a3df335d42df851aeee62f85bb93c87e7b8b171054c2b7d77a8e4f04c0ed12076233729e6f82e46e8065bb8d870c27bdd427ebf21cd8cb83fd53667a48a42c0ffe91d1fc078b616cb9b763c448aa7c7156df9485535ae508cc87b66a340af762db602326d02af73557e3fba164c12cc92ee61ae4dea1a65c32d3acab702227e9484a927777f07bcd7b5e3616012d9ec79802e2830e7732590a83bfe1bd710ff70bfb53b0b6c711c108fa6902f645bcebaf64e0805731061f5478d801601c1deeb2d14c26aa130d1d31a235f97d93902ba1ea08be2700b3df2fe630aa064ba7fec33a39a375b93210c74de366e1b50106b1d4a5204840bc5091197283c38be341156a7f57b72c8807be2885be5bd4f9d6a227544f640241c408e16f8523de3204b6db8452df029f1545637891707a6a6bf5141b8317a8386f8dc2315f890b8e015f47111b608e008708d5fff1b1e45889ee65dbbfe0c92017293f32015ab4ebedcfca97098384dcea04516587c05bb87c94f84f76d3946bb4911bef840508d0640b99136570832184c20e8b66cf71aa1f1ad84ff71fa221d6f492ad692f73656561e2c103021df2d6d03c23a9cc1951b417705bf09194224a0f8ea8e065b4da126db6290b39ec98808e7f979b595f242980dd76cf094899721e0979d8673cbd418b67d3fe5aab07bf334bafbba8e309be384de2a182e5f6c4ea86cf3a9e149b350c8c1a06ebcef912ce1dd8fd30cf755eb2b36217ad3e3dc21b9279d17e21c6715649e596cbcc1a18f69be06c5e5de0dac86c91e7463940a17e8403e3a47ed89f708ea6f469", 0x12a2)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="600000002dd0eb72498d470a4d439666c18be3d208511e4d2970c6a5c0c9c202e3085bba1513ad49be8cfded5f203bff3c22200c49f4f11b00dc66277ba0fb2c", @ANYRES16=r2, @ANYBLOB="01000000000000000000030000004c000180380004001400010002004e210a0101010000000000000000200002000a00000000000000fe8000000000000000000000000000bb000000000d0001007564703a73797a3100000000"], 0x60}}, 0x0) (async)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000000, 0x30, r0, 0x1ffdc000)

583.066533ms ago: executing program 0 (id=3162):
r0 = syz_open_dev$loop(&(0x7f0000003940), 0xfffffffffffffff9, 0x1c3503)
ioctl$BLKPG(r0, 0x1269, &(0x7f0000003a40)={0x1, 0x0, 0x0, 0x0})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1802, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = socket(0x1e, 0x1, 0x0)
sendmmsg$sock(r4, &(0x7f0000000600)=[{{&(0x7f0000000000)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x1}}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1000000}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
clock_adjtime(0x6, &(0x7f00000001c0)={0x9, 0xffff, 0x100000001, 0x418, 0x200, 0x6, 0xff, 0xe6, 0x7, 0xe8, 0x2, 0x400000000000, 0x6, 0x0, 0x80, 0x1, 0x63a8e812, 0x80000000, 0x1, 0x6, 0xc, 0x1, 0x13, 0x400000001, 0xaf, 0x1})

518.050768ms ago: executing program 0 (id=3163):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1802, 0x0)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
r1 = ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000100)={0xffffffffffffffff, 0x0, 0x100000000, 0xfffffffffffff000})
ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000140)=0x6ee55cf5af394c4e)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0a41, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x4002})
write$tun(r2, &(0x7f0000000340)={@val={0x0, 0x18}, @val={0x3, 0x1, 0x3, 0x4, 0xc4, 0x10}, @ipv4=@gre={{0x5, 0x4, 0x0, 0x26, 0xd8, 0x68, 0x0, 0x4d, 0x2f, 0x0, @multicast1, @broadcast}, {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x19, 0x0, [], "1c794c5fcd565649050022835ac3ac97cb9fb274d4d9998212"}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800, [], "7fb5875c8cb1e5103810f3514c5859085f8bcd044121d872d527be9db6ccba47166b45027b4ebb9222f071ff96f3443ec4461c325c516f1698e1f011fa3bfab0dedf7bd62f68af"}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x9, 0xfff9]}, {0x8, 0x88be, 0x3, {{0xa, 0x1, 0x3, 0x3, 0x1, 0x2, 0x0, 0x4}, 0x1, {0x5}}}, {0x8, 0x22eb, 0x3, {{0x9, 0x2, 0xe, 0x3, 0x1, 0x3, 0x7, 0x3}, 0x2, {0x8, 0x8, 0x0, 0xd, 0x0, 0x0, 0x1, 0x0, 0x1}}}, {0x8, 0x6558, 0x1, "a33ce789860dc984c201b1e28a9fe3cd0d2bcc93a01e37ac14a0f11b"}}}}, 0xe6)
ioctl$SNDRV_TIMER_IOCTL_STATUS64(0xffffffffffffffff, 0x80605414, &(0x7f0000000180))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r3, &(0x7f0000000180)=ANY=[], 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000dc0))
r4 = syz_open_pts(r3, 0x101000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)
r6 = dup3(r4, r3, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000)=0x11)
r7 = getpgrp(0xffffffffffffffff)
ioctl$BINDER_GET_FROZEN_INFO(r6, 0xc00c620f, &(0x7f0000000200)={r7})
syz_open_dev$usbmon(&(0x7f0000000000), 0x80000001, 0x82002)
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x14)
close_range(r0, r0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000000740)={0x0, 0x0, "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", "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"})
preadv2(r0, &(0x7f0000000080)=[{&(0x7f0000000040)=""/18, 0x12}], 0x1, 0xec7, 0x7, 0x0)

517.290639ms ago: executing program 0 (id=3164):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_VM_COPY_ENC_CONTEXT_FROM(r1, 0x4068aea3, &(0x7f0000000240)) (async)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f00000002c0)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in=@empty, @in6=@remote, 0x1, 0xfff7, 0x2000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in=@loopback, 0x0, 0x6c}, @in=@remote, {0x0, 0x0, 0x0, 0x400, 0x3, 0x0, 0x9e, 0x1}, {0x800000000000, 0x4, 0xc0000000}, {}, 0x70bd25, 0x0, 0x2, 0x4, 0x1}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x70bd25, 0x70bd25, 0x70bd2a, 0x70bd2c, 0x2}}]}, 0x154}}, 0x4810) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async)
setns(r2, 0x80)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r4, 0x8915, &(0x7f00000000c0)={'batadv_slave_0\x00', {0x2, 0x0, @local}}) (async)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r5, 0x8915, &(0x7f00000000c0)={'batadv_slave_0\x00', {0x2, 0x0, @local}}) (async)
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x46) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r6 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x167342, 0x0)
readv(r6, &(0x7f0000000080)=[{&(0x7f00000010c0)=""/4106, 0x100a}], 0x1)
syz_usb_connect(0x0, 0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000055bed40020000000000000003010902380002000000060904c700010e0101000300d009050a000000000000090400000101be2600090500000000000000080b"], 0x0) (async)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='fdinfo/3\x00')
r7 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) (async)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100)) (async)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) (async)
sendfile(r8, r7, 0x0, 0x7ffff000) (async)
fcntl$getownex(r6, 0x10, &(0x7f0000000040))

514.880519ms ago: executing program 0 (id=3165):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) (async)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x2, 0x5, 0xfffffffd, &(0x7f000000b000), &(0x7f0000048000), 0x0) (async)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 64)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 64)
ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0xd)

367.10363ms ago: executing program 4 (id=3169):
mount$binderfs(0x0, &(0x7f0000000040)='./binderfs\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB='max=00000000000000000000001,stats=globCl,stats=global,max=00000000000000000000003,max=0000000000000000000001:,silent,rootcontext='])
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x1, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f0000006e80)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000002000)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x11812410, 0x0, 0x800, 0x81, 0x8}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000000000)="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", 0x2000, &(0x7f0000006dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006640)={0x90, 0x0, 0x6, {0x3, 0x0, 0x20, 0xfffffffffffffff9, 0x400, 0xc, {0x1, 0x9, 0x8, 0x1, 0x1, 0x4, 0x8, 0x123, 0xdab5, 0xa000, 0x0, r2, r3, 0x6, 0xffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = getuid()
cachestat(r0, &(0x7f00000021c0)={0x1, 0x9}, &(0x7f0000002200), 0x0)
mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', &(0x7f0000000100), 0x2000400, &(0x7f0000000140)={'trans=rdma,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@common=@msize={'msize', 0x3d, 0x5}}, {@sq={'sq', 0x3d, 0xf}}, {@rq={'rq', 0x3d, 0x6}}, {@rq={'rq', 0x3d, 0xffffffff}}, {@common=@dfltgid={'dfltgid', 0x3d, r3}}], [{@fowner_eq={'fowner', 0x3d, r4}}]}})

362.033901ms ago: executing program 4 (id=3170):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0) (async)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) (async)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x4008040}, 0x448d5)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r1, 0xc018620c, &(0x7f0000000180)) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x8000}}) (async)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000300)={{{@in6=@private0, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@local}, 0x0, @in6=@private2}}, &(0x7f0000000240)=0xe8)
quotactl_fd$Q_SETINFO(r0, 0xffffffff80000601, r4, &(0x7f0000000400)={0x862, 0x3, 0x1, 0x1}) (async)
write$FUSE_NOTIFY_RESEND(r3, &(0x7f0000000000)={0x14, 0x7, 0x300}, 0x14) (async)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1) (async)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0) (async)
futex(&(0x7f0000000140)=0x8, 0x0, 0x2, 0x0, &(0x7f0000000200)=0xffffffff, 0x0)
r9 = dup2(r8, r7)
ioctl$KVM_CHECK_EXTENSION_VM(r9, 0xae03, 0xffffffffffffff00)
ioctl$KVM_PRE_FAULT_MEMORY(r8, 0xc040aed5, &(0x7f0000000000)={0x2, 0x118000}) (async)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e1f, @remote}, 0x10) (async)
setsockopt$sock_linger(r0, 0x1, 0x3d, &(0x7f0000000080)={0x1}, 0x8) (async)
sendmmsg$sock(r0, &(0x7f0000000280)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[@txtime={{0x18, 0x1, 0x3d, 0x10001}}], 0x18}}], 0x1, 0x20000844) (async)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_GET_EXTENDED_ERROR(r10, 0xc0046209, &(0x7f0000001340))

296.290677ms ago: executing program 4 (id=3171):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000140)={0x73622a85, 0x1381, 0x3})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000000)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x40004)
r3 = mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_buf(r4, 0x0, 0x29, 0x0, &(0x7f0000695ffc))
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x58, 0x0, &(0x7f0000000000)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000001700)={@flat=@weak_binder={0x77622a85, 0x0, 0x3}, @ptr={0x70742a85, 0x1, &(0x7f0000001640)=""/156, 0x9c, 0x1, 0x16}, @fd={0x66642a85, 0x0, r0}}, &(0x7f00000001c0)={0x0, 0x18, 0x40}}, 0x1000}, @free_buffer={0x40086303, r3}], 0x0, 0x0, 0x0})
preadv(r0, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/97, 0x61}, {&(0x7f0000000200)=""/96, 0x60}, {&(0x7f0000000280)=""/170, 0xaa}, {&(0x7f0000000340)=""/167, 0xa7}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/217, 0xd9}], 0x6, 0x0, 0x79)

267.234269ms ago: executing program 4 (id=3172):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, &(0x7f0000000000), 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
getsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000080)=0xabf3, &(0x7f00000000c0)=0x4)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f0000000000)=0x40b, 0x4)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/wakeup_count', 0x0, 0x0)
read$FUSE(r2, &(0x7f00000009c0)={0x2020}, 0x2020)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000b, 0x204031, 0xffffffffffffffff, 0xffffd000)
mremap(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffd000/0x3000)=nil)
r3 = userfaultfd(0x801)
unshare(0x20000000)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x10})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, &(0x7f0000001440)={'bridge0\x00', 0x0})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000ff2000/0xe000)=nil, 0xe000}, 0x3})
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_on}]})
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x1010, r1, 0x72872000)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0x3)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x400448de, &(0x7f00000023c0))
read$FUSE(r5, &(0x7f0000002140)={0x2020}, 0x2020)

175.825316ms ago: executing program 5 (id=3173):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder1\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
r2 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0xfffffffc, @local, 0x9}, 0x1c)
setsockopt$sock_int(r3, 0x1, 0x14, &(0x7f0000000040), 0x50)
clock_gettime(0x0, &(0x7f00000001c0)={<r4=>0x0, <r5=>0x0})
ppoll(&(0x7f0000000140)=[{r1}, {r1, 0x20}, {r2, 0x85}, {r3, 0x82}, {r1, 0x2003}, {r1, 0x210}], 0x6, &(0x7f0000000240)={r4, r5+10000000}, &(0x7f00000002c0)={[0xa0de]}, 0x8)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000040)=@gcm_256={{0x304, 0x36}, "1a88ef816c4b42ed", "a5fdeb69a751e94df50ad7e9fb434d1665e9298b01e49419567b44380100", '\x00\t\x00', "066580001e00"}, 0x38)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r6, 0x2000009)
sendfile(r1, r6, 0x0, 0x1ff)
mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x8, 0x0, &(0x7f0000000040)=[@request_death], 0x4d, 0x0, 0x0})

174.322107ms ago: executing program 4 (id=3174):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_clone(0x25000000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x20000000)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r0, &(0x7f0000000000))
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x0, 0x0)
r4 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040), 0x501101, 0x0)
ioctl$ASHMEM_SET_SIZE(r4, 0x40087703, 0x40000100000200)
ioctl$ASHMEM_SET_PROT_MASK(r0, 0x40087705, 0x0)
r5 = syz_kvm_add_vcpu$x86(0x0, &(0x7f00000003c0)={0x0, &(0x7f00000000c0)=[@code={0xa, 0x57, {"b805000000b9d50000000f01c1c4c25d9aa20a0000006443a7430f01d166baa100b800000000ef3e0fc799fd33c9fc36f31d000001000f009671ea0000430f01cb660f38803b"}}, @code={0xa, 0x5e, {"b9a8090000b856000000ba000000000f30460f01ca66baf80cb86642068def66bafc0c66edb8010000000f01c1c4637963e01d4320956e000000c4027d13d9b9780800000f320f015db2460f08"}}, @wrmsr={0x1e, 0x20, {0x82b, 0x8}}, @code={0xa, 0x56, {"c744240081000000c744240225679420ff2c24c4238d6dcbc5f30f1eeef3a58333e6660fe319460fc72c2e640c0966baf80cb8a6738982ef66bafc0c66b8000066ef430f06"}}, @wrmsr={0x1e, 0x20, {0x8c4, 0x8}}, @code={0xa, 0x65, {"0f01f4c744240095000000c7442402cddd0000c7442406000000000f011c248fc978d22fb9ea090000b800600000ba000000000f303e0f01dfc4027d195435b9c401995c01400f09c4027d0ff866b815010f00d8"}}, @wr_crn={0x46, 0x20, {0x3, 0xffffffffffffffff}}, @wr_crn={0x46, 0x20, {0x2, 0x7}}, @wr_crn={0x46, 0x20, {0x3, 0xffff}}, @wr_crn={0x46, 0x20, {0x0, 0xd77}}, @rdmsr={0x32, 0x18, {0x349}}, @code={0xa, 0x52, {"440f20c0350c000000440f22c0440f20c03502000000440f22c03666430f6d5e02430f01ca450f09670f01c92ef3410f09c4e37d7ba100b0000000f2460f09d9f4"}}, @code={0xa, 0x41, {"0f01c836420f78860800000045a50f784b34470f01f866b821018ed00fc7772b430f217cf2420f79c966b88f000f00d0"}}, @uexit={0x0, 0x18, 0x54}], 0x2f3})
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000400)={0x5, 0x0, [{0xa87}, {0x845, 0x0, 0x100000001}, {0xa8a, 0x0, 0x1}, {0x9c9, 0x0, 0x8}, {0xa39, 0x0, 0x4d0}]})
unshare(0x30000)
mmap(&(0x7f0000018000/0x4000)=nil, 0x4000, 0x3, 0x4010, r0, 0x81a6b000)

0s ago: executing program 4 (id=3175):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000000c0)={0x8, 0x0, &(0x7f0000000200)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={@flat=@weak_binder={0x77622a85, 0x110b}, @flat=@weak_handle, @fd}}}], 0xffffffffffffff34, 0x0, 0x0})
r1 = socket$inet6_icmp(0xa, 0x2, 0x3a)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f00000000c0)=0x4, 0x4)
setsockopt$inet6_int(r1, 0x29, 0x4b, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e20, 0x5, @private1, 0xe}, 0x1c)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000500)={'syztnl1\x00', &(0x7f0000000480)={'syztnl0\x00', 0x0, 0x29, 0x3b, 0x40, 0x2, 0x1, @loopback, @local, 0x0, 0x10, 0x8, 0x3}})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000540)={'ip_vti0\x00', &(0x7f0000000600)={'gretap0\x00', 0x0, 0x700, 0x8000, 0x1, 0x9, {{0x5, 0x4, 0x1, 0x2, 0x14, 0x65, 0x0, 0x7, 0x4, 0x0, @broadcast, @dev={0xac, 0x14, 0x14, 0x4}}}}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
socket$netlink(0x10, 0x3, 0xd)
syz_open_procfs$pagemap(0x0, 0x0)
madvise(&(0x7f0000cf6000/0x4000)=nil, 0x4000, 0x16)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCDELDLCI(0xffffffffffffffff, 0x8981, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x4d, 0x0, 0x1}, {}, {0x16}]})
ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, 0x0)

kernel console output (not intermixed with test programs):

local addresses
[  374.166550][   T36] audit: type=1400 audit(2000000045.441:788): avc:  denied  { mount } for  pid=5811 comm="syz.0.1821" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  374.196553][   T36] audit: type=1400 audit(2000000045.461:789): avc:  denied  { accept } for  pid=5814 comm="syz.4.1822" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  374.293651][ T5839] overlayfs: failed to clone upperpath
[  375.220352][   T36] audit: type=1400 audit(2000000046.521:790): avc:  denied  { execstack } for  pid=5871 comm="syz.1.1842" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  375.304493][ T5887] fuse: Unknown parameter 'pcr'
[  375.353338][   T36] audit: type=1400 audit(2000000046.661:791): avc:  denied  { create } for  pid=5889 comm="syz.4.1847" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_nflog_socket permissive=1
[  375.413359][   T36] audit: type=1400 audit(2000000046.721:792): avc:  denied  { create } for  pid=5905 comm="syz.4.1852" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  375.444944][ T5912] x_tables: unsorted entry at hook 2
[  376.200353][ T5952] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1868'.
[  376.328776][ T5969] netlink: 'syz.4.1874': attribute type 11 has an invalid length.
[  376.397289][   T36] audit: type=1326 audit(2000000047.701:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5980 comm="syz.4.1879" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x0
[  376.460563][ T5983] overlayfs: failed to clone upperpath
[  376.504945][   T36] audit: type=1326 audit(2000000047.811:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5990 comm="syz.4.1883" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x0
[  376.750439][ T5994] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1884'.
[  376.771712][ T5996] netlink: 'syz.2.1885': attribute type 13 has an invalid length.
[  376.784691][ T5996] overlayfs: failed to clone upperpath
[  376.935256][ T6001] 9pnet_fd: Insufficient options for proto=fd
[  377.324528][   T36] audit: type=1326 audit(2000000048.631:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6007 comm="syz.2.1888" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f375b78ebe9 code=0x0
[  378.510976][ T6059] 9pnet_fd: Insufficient options for proto=fd
[  378.593902][   T36] audit: type=1400 audit(2000000049.901:796): avc:  denied  { write } for  pid=82 comm="kworker/1:2" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=29706 scontext=system_u:system_r:kernel_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  378.651340][ T6073] 8021q: VLANs not supported on sit0
[  378.729519][ T6086] overlayfs: failed to clone lowerpath
[  378.738555][ T6086] fuse: Bad value for 'fd'
[  379.431608][   T36] kauditd_printk_skb: 2 callbacks suppressed
[  379.431629][   T36] audit: type=1400 audit(2000000050.731:799): avc:  denied  { setopt } for  pid=6114 comm="syz.2.1923" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  379.473767][ T6125] overlay: Unknown parameter 'dont_measure'
[  379.626884][ T6155] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1936'.
[  379.719231][ T6167] 9pnet_fd: Insufficient options for proto=fd
[  380.653262][ T6175] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1943'.
[  380.753214][ T6181] tipc: Can't bind to reserved service type 0
[  380.771203][ T6185] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1946'.
[  380.989545][ T6190] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1948'.
[  381.059923][ T6205] /dev/rnullb0: Can't lookup blockdev
[  381.658019][ T6217] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6217 comm=syz.2.1956
[  381.725515][ T6219] x_tables: duplicate entry at hook 1
[  382.316184][ T6234] overlayfs: failed to clone upperpath
[  382.323202][ T6234] bpf: Bad value for 'gid'
[  382.492721][ T6254] /dev/loop0: Can't lookup blockdev
[  382.634510][ T6273] overlayfs: failed to clone upperpath
[  382.697853][ T6282] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1982'.
[  382.706356][ T6287] overlayfs: failed to clone upperpath
[  382.736428][ T6292] SELinux:  Context }.\:&] is not valid (left unmapped).
[  382.744524][   T36] audit: type=1400 audit(2000000054.051:800): avc:  denied  { relabelto } for  pid=6291 comm="syz.2.1986" name="file0" dev="tmpfs" ino=2577 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="}.\:&]"
[  382.769088][   T36] audit: type=1400 audit(2000000054.051:801): avc:  denied  { associate } for  pid=6291 comm="syz.2.1986" name="file0" dev="tmpfs" ino=2577 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="}.\:&]"
[  382.795782][   T36] audit: type=1400 audit(2000000054.051:802): avc:  denied  { unlink } for  pid=293 comm="syz-executor" name="file0" dev="tmpfs" ino=2577 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="}.\:&]"
[  383.118053][ T6317] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.125704][ T6317] bridge0: port 1(bridge_slave_0) entered disabled state
[  383.133155][ T6317] bridge_slave_0: entered allmulticast mode
[  383.139738][ T6317] bridge_slave_0: entered promiscuous mode
[  383.148754][ T6317] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.156111][ T6317] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.163450][ T6317] bridge_slave_1: entered allmulticast mode
[  383.169980][ T6317] bridge_slave_1: entered promiscuous mode
[  383.270596][ T6317] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.277714][ T6317] bridge0: port 2(bridge_slave_1) entered forwarding state
[  383.285061][ T6317] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.292147][ T6317] bridge0: port 1(bridge_slave_0) entered forwarding state
[  383.324766][  T330] bridge0: port 1(bridge_slave_0) entered disabled state
[  383.332268][  T330] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.344547][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.351641][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[  383.374559][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.381750][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[  383.404802][ T6317] veth0_vlan: entered promiscuous mode
[  383.418184][ T6317] veth1_macvtap: entered promiscuous mode
[  383.574707][ T6343] rust_binder: Write failure EFAULT in pid:6
[  383.632225][ T6360] overlayfs: failed to clone upperpath
[  383.802958][   T36] audit: type=1400 audit(2000000055.111:803): avc:  denied  { mounton } for  pid=6367 comm="syz.1.2010" path=2F70726F632F31322F7461736B2F3133202864656C6574656429 dev="proc" ino=30107 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  384.167699][ T6384] sit0: entered promiscuous mode
[  384.172947][ T6384] netlink: 'syz.0.2015': attribute type 1 has an invalid length.
[  384.180726][ T6384] netlink: 1 bytes leftover after parsing attributes in process `syz.0.2015'.
[  384.190952][ T6384] netlink: 'syz.0.2015': attribute type 4 has an invalid length.
[  384.199930][ T6384] netlink: 'syz.0.2015': attribute type 4 has an invalid length.
[  384.209496][ T6384] 9pnet: Unknown protocol version 9p2000.u

[  384.273807][ T6397] veth1: entered allmulticast mode
[  384.279114][ T6397] veth1: left allmulticast mode
[  384.284615][ T6397] 9pnet_fd: Insufficient options for proto=fd
[  384.424971][ T6414] overlayfs: failed to clone upperpath
[  384.872590][    T9] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  385.022622][    T9] usb 2-1: Using ep0 maxpacket: 16
[  385.030782][    T9] usb 2-1: config 2 has an invalid interface number: 98 but max is 1
[  385.039160][    T9] usb 2-1: config 2 has an invalid interface number: 141 but max is 1
[  385.047727][    T9] usb 2-1: config 2 has no interface number 0
[  385.054002][    T9] usb 2-1: config 2 has no interface number 1
[  385.060326][    T9] usb 2-1: config 2 interface 98 altsetting 5 bulk endpoint 0x2 has invalid maxpacket 1023
[  385.070574][    T9] usb 2-1: config 2 interface 98 altsetting 5 has a duplicate endpoint with address 0x2, skipping
[  385.081382][    T9] usb 2-1: config 2 interface 98 altsetting 5 has a duplicate endpoint with address 0x6, skipping
[  385.098789][    T9] usb 2-1: config 2 interface 98 altsetting 5 endpoint 0xA has invalid maxpacket 512, setting to 64
[  385.114281][    T9] usb 2-1: config 2 interface 98 altsetting 5 has a duplicate endpoint with address 0xA, skipping
[  385.126456][    T9] usb 2-1: config 2 interface 98 altsetting 5 endpoint 0xC has invalid maxpacket 1023, setting to 64
[  385.139882][    T9] usb 2-1: config 2 interface 98 altsetting 5 has a duplicate endpoint with address 0x1, skipping
[  385.150895][    T9] usb 2-1: config 2 interface 141 altsetting 11 bulk endpoint 0x9 has invalid maxpacket 8
[  385.151870][ T6510] /dev/rnullb0: Can't lookup blockdev
[  385.161012][    T9] usb 2-1: config 2 interface 141 altsetting 11 has a duplicate endpoint with address 0x8, skipping
[  385.177304][    T9] usb 2-1: config 2 interface 141 altsetting 11 has a duplicate endpoint with address 0xA, skipping
[  385.188453][    T9] usb 2-1: config 2 interface 141 altsetting 11 has a duplicate endpoint with address 0xB, skipping
[  385.201137][    T9] usb 2-1: config 2 interface 141 altsetting 11 has a duplicate endpoint with address 0xC, skipping
[  385.212176][    T9] usb 2-1: config 2 interface 141 altsetting 11 has a duplicate endpoint with address 0xB, skipping
[  385.223240][    T9] usb 2-1: config 2 interface 141 altsetting 11 has a duplicate endpoint with address 0x2, skipping
[  385.234768][    T9] usb 2-1: config 2 interface 141 altsetting 11 has a duplicate endpoint with address 0xA, skipping
[  385.245750][    T9] usb 2-1: config 2 interface 141 altsetting 11 has a duplicate endpoint with address 0x6, skipping
[  385.256648][    T9] usb 2-1: config 2 interface 141 altsetting 11 has a duplicate endpoint with address 0x6, skipping
[  385.267590][    T9] usb 2-1: config 2 interface 98 has no altsetting 0
[  385.274321][    T9] usb 2-1: config 2 interface 141 has no altsetting 0
[  385.282489][    T9] usb 2-1: New USB device found, idVendor=0ea0, idProduct=6858, bcdDevice=98.3a
[  385.291567][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.299592][    T9] usb 2-1: Product: syz
[  385.303775][    T9] usb 2-1: Manufacturer: syz
[  385.308378][    T9] usb 2-1: SerialNumber: syz
[  385.314052][ T6448] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  385.321349][ T6448] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  385.529790][ T6448] rust_binder: Error while translating object.
[  385.529790][   T36] audit: type=1400 audit(2000000056.831:804): avc:  denied  { transfer } for  pid=6447 comm="syz.1.2041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  385.555272][ T6448] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  385.555308][ T6448] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:20
[  385.636872][    T9] usb 2-1: USB disconnect, device number 9
[  385.896833][ T6528] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2068'.
[  386.175470][ T6570] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2083'.
[  386.272271][   T36] audit: type=1400 audit(2000000057.571:805): avc:  denied  { connect } for  pid=6584 comm="syz.1.2088" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  386.327919][ T6588] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2088'.
[  386.337820][   T36] audit: type=1400 audit(2000000057.641:806): avc:  denied  { write } for  pid=6584 comm="syz.1.2088" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  386.338282][ T6588] rust_binder: BC_CLEAR_DEATH_NOTIFICATION invalid ref 0
[  386.365336][ T6588] rust_binder: BC_REQUEST_DEATH_NOTIFICATION invalid ref 0
[  386.381268][ T6588] rust_binder: 24: no such ref 2
[  386.386719][ T6588] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:24
[  386.413635][   T36] audit: type=1400 audit(2000000057.721:807): avc:  denied  { write } for  pid=6595 comm="syz.1.2092" name="/" dev="incremental-fs" ino=65 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  386.445222][   T36] audit: type=1400 audit(2000000057.731:808): avc:  denied  { add_name } for  pid=6595 comm="syz.1.2092" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  386.466237][   T36] audit: type=1400 audit(2000000057.731:809): avc:  denied  { create } for  pid=6595 comm="syz.1.2092" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  386.487776][   T36] audit: type=1400 audit(2000000057.731:810): avc:  denied  { associate } for  pid=6595 comm="syz.1.2092" name="file0" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  386.509546][   T36] audit: type=1400 audit(2000000057.731:811): avc:  denied  { write } for  pid=6595 comm="syz.1.2092" name="file0" dev="incremental-fs" ino=66 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  386.533083][   T36] audit: type=1400 audit(2000000057.821:812): avc:  denied  { write } for  pid=6605 comm="syz.1.2096" name="ptp0" dev="devtmpfs" ino=196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  386.577496][   T36] audit: type=1400 audit(2000000057.881:813): avc:  denied  { listen } for  pid=6608 comm="syz.4.2097" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  386.610157][ T6606] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOMEM }
[  386.610194][ T6606] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOMEM } my_pid:31
[  387.313957][ T6653] /dev/rnullb0: Can't lookup blockdev
[  387.360210][ T6663] fuse: Bad value for 'user_id'
[  387.366390][ T6663] fuse: Bad value for 'user_id'
[  387.376146][ T6666] netlink: 'syz.4.2116': attribute type 4 has an invalid length.
[  387.386422][ T6666] netlink: 'syz.4.2116': attribute type 4 has an invalid length.
[  387.444920][ T6676] +$<�: renamed from bridge0 (while UP)
[  387.549045][ T6689] fuse: Bad value for 'fd'
[  387.999644][ T6713] fuse: Unknown parameter ''
[  388.272660][ T6764] fuse: Bad value for 'user_id'
[  388.277655][ T6764] fuse: Bad value for 'user_id'
[  388.443786][ T6776] rust_binder: Write failure EFAULT in pid:49
[  388.443898][ T6778] rust_binder: Write failure EFAULT in pid:49
[  388.521273][ T6793] /dev/rnullb0: Can't lookup blockdev
[  388.556545][ T6798] rust_binder: 57: no such ref 2
[  388.562604][ T6798] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  388.562625][ T6798] rust_binder: Read failure Err(EFAULT) in pid:57
[  388.607803][ T6803] rust_binder: BC_CLEAR_DEATH_NOTIFICATION invalid ref 0
[  388.694265][ T6804] rust_binder: 6803 RLIMIT_NICE not set
[  388.701082][   T64] rust_binder: 6802: removing orphan mapping 0:4256
[  389.109466][ T6836] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  389.109492][ T6836] rust_binder: Read failure Err(EFAULT) in pid:75
[  389.117917][ T6837] rust_binder: Failure when writing BR_NOOP at beginning of buffer.
[  389.124445][ T6837] rust_binder: Read failure Err(EFAULT) in pid:75
[  389.256914][ T6859] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:87
[  389.273983][ T6863] random: crng reseeded on system resumption
[  389.294050][ T6862] rust_binder: Error in use_page_slow: ESRCH
[  389.294074][ T6862] rust_binder: use_range failure ESRCH
[  389.300092][ T6862] rust_binder: Failed to allocate buffer. len:24, is_oneway:false
[  389.305796][ T6862] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  389.313654][ T6862] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:92
[  389.336451][ T6866] overlayfs: failed to resolve './file1/file0': -2
[  389.363143][ T6871] 9pnet_fd: Insufficient options for proto=fd
[  389.457030][ T6888] /dev/loop0: Can't lookup blockdev
[  389.483883][ T6892] ip6gretap0: mtu less than device minimum
[  389.547440][ T6908] overlayfs: failed to clone upperpath
[  389.938303][ T6940] netlink: 'syz.1.2210': attribute type 4 has an invalid length.
[  389.948248][ T6940] netlink: 'syz.1.2210': attribute type 4 has an invalid length.
[  390.128006][    T9] rust_binder: 6943: removing orphan mapping 0:8
[  390.137090][ T6948] overlayfs: failed to resolve '/���d

������': -2
[  390.160358][ T6951] erofs: (device loop1): erofs_read_superblock: cannot find valid erofs superblock
[  390.512588][    T9] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  390.571204][ T6961] veth1_macvtap: left promiscuous mode
[  390.577201][ T6961] macsec0: entered allmulticast mode
[  390.584743][ T6963] veth1_macvtap: entered promiscuous mode
[  390.590572][ T6963] veth1_macvtap: entered allmulticast mode
[  390.596486][ T6963] macsec0: left allmulticast mode
[  390.601562][ T6963] veth1_macvtap: left allmulticast mode
[  390.607979][   T36] kauditd_printk_skb: 8 callbacks suppressed
[  390.607994][   T36] audit: type=1400 audit(2000000061.911:822): avc:  denied  { map } for  pid=6960 comm="syz.4.2218" path="socket:[32178]" dev="sockfs" ino=32178 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  390.648827][ T6957] bridge0: port 1(bridge_slave_0) entered blocking state
[  390.656068][ T6957] bridge0: port 1(bridge_slave_0) entered disabled state
[  390.663413][ T6957] bridge_slave_0: entered allmulticast mode
[  390.669922][ T6957] bridge_slave_0: entered promiscuous mode
[  390.672607][    T9] usb 2-1: Using ep0 maxpacket: 32
[  390.677104][ T6957] bridge0: port 2(bridge_slave_1) entered blocking state
[  390.685221][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  390.688465][ T6957] bridge0: port 2(bridge_slave_1) entered disabled state
[  390.706198][ T6957] bridge_slave_1: entered allmulticast mode
[  390.708050][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  390.713451][ T6957] bridge_slave_1: entered promiscuous mode
[  390.731451][    T9] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  390.740650][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  390.749525][    T9] usb 2-1: config 0 descriptor??
[  390.812116][ T6957] bridge0: port 2(bridge_slave_1) entered blocking state
[  390.819215][ T6957] bridge0: port 2(bridge_slave_1) entered forwarding state
[  390.826653][ T6957] bridge0: port 1(bridge_slave_0) entered blocking state
[  390.833713][ T6957] bridge0: port 1(bridge_slave_0) entered forwarding state
[  390.859841][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  390.867505][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  390.877754][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[  390.884831][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[  390.894137][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  390.901183][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  390.930955][ T6957] veth0_vlan: entered promiscuous mode
[  390.943433][ T6957] veth1_macvtap: entered promiscuous mode
[  391.161194][    T9] savu 0003:1E7D:2D5A.0009: hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[  391.410684][ T6953] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:111
[  391.410900][ T6954] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  391.430590][   T82] rust_binder: 6952: removing orphan mapping 0:24
[  391.443765][  T342] usb 2-1: USB disconnect, device number 10
[  391.450333][   T82] rust_binder: 6952: removing orphan mapping 24:1112
[  391.493617][ T7007] binder: Bad value for 'defcontext'
[  391.684251][ T7010] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  391.685598][ T7010] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION freeze notification not active
[  391.700794][ T7010] rust_binder: Write failure EINVAL in pid:123
[  391.869516][   T36] audit: type=1400 audit(2000000063.171:823): avc:  denied  { create } for  pid=7021 comm="syz.0.2236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  391.916955][   T61] Bluetooth: hci0: Frame reassembly failed (-84)
[  391.926882][   T61] Bluetooth: hci0: Frame reassembly failed (-84)
[  392.300466][ T7076] fuseblk: Unknown parameter 'ro|`�Ud00000000000000000Mp000'
[  392.852613][  T361] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  393.002611][  T361] usb 2-1: Using ep0 maxpacket: 8
[  393.009170][  T361] usb 2-1: unable to get BOS descriptor or descriptor too short
[  393.023467][  T361] usb 2-1: config 0 has an invalid interface number: 88 but max is 0
[  393.031680][  T361] usb 2-1: config 0 has no interface number 0
[  393.037824][  T361] usb 2-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  393.048860][  T361] usb 2-1: config 0 interface 88 has no altsetting 0
[  393.058168][ T7092] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2260'.
[  393.063898][  T361] usb 2-1: string descriptor 0 read error: -22
[  393.073656][  T361] usb 2-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[  393.082890][  T361] usb 2-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[  393.091778][  T361] usb 2-1: config 0 descriptor??
[  393.099300][  T361] input: USB Acecad Flair Tablet 0460:0004 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.88/input/input14
[  393.299856][  T361] usb 2-1: USB disconnect, device number 11
[  393.435200][   T36] audit: type=1400 audit(2000000064.741:824): avc:  denied  { setattr } for  pid=7107 comm="syz.4.2266" name="TIPC" dev="sockfs" ino=33319 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  393.469447][ T7113] raw_sendmsg: syz.4.2268 forgot to set AF_INET. Fix it!
[  393.504805][ T7119] netlink: 'syz.4.2270': attribute type 4 has an invalid length.
[  393.524176][ T7124] netlink: 'syz.4.2271': attribute type 12 has an invalid length.
[  393.982604][   T53] Bluetooth: hci0: command 0x1003 tx timeout
[  393.982626][  T515] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  394.435068][ T7173] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2291'.
[  394.510765][ T7176] rust_binder: Write failure EFAULT in pid:13
[  394.537043][ T7182] __vm_enough_memory: pid: 7182, comm: syz.0.2294, bytes: 18014402804453376 not enough memory for the allocation
[  394.698091][ T7199] netlink: 'syz.4.2302': attribute type 1 has an invalid length.
[  394.706381][ T7199] netlink: 160 bytes leftover after parsing attributes in process `syz.4.2302'.
[  394.763971][ T7203] rust_binder: Error while translating object.
[  394.764012][ T7203] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ENOENT }
[  394.770228][ T7203] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ENOENT } my_pid:26
[  394.797726][ T7208] rust_binder: BC_CLEAR_DEATH_NOTIFICATION invalid ref 0
[  394.835937][ T7216] overlayfs: failed to clone upperpath
[  394.852254][ T7217] rust_binder: 7208 RLIMIT_NICE not set
[  394.858153][  T361] rust_binder: 7207: removing orphan mapping 0:4256
[  394.873854][ T7220] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION freeze notification not active
[  394.882621][ T7220] rust_binder: Write failure EINVAL in pid:31
[  395.614472][ T7249] cgroup2: Unknown parameter 'da�ordynmods'
[  395.631762][   T36] audit: type=1400 audit(2000000066.931:825): avc:  denied  { ioctl } for  pid=7248 comm="syz.1.2319" path="socket:[32646]" dev="sockfs" ino=32646 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  395.760544][ T7261] netlink: 'syz.1.2324': attribute type 4 has an invalid length.
[  395.768412][ T7261] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.2324'.
[  395.778102][ T7261] rust_binder: validate_parent_fixup: new_min_offset=58, sg_entry.length=0
[  395.778121][ T7261] rust_binder: Error while translating object.
[  395.786926][ T7261] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  395.793312][ T7261] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:135
[  395.892232][ T7270] /dev/nullb0: Can't lookup blockdev
[  396.007169][ T7283] kernel profiling enabled (shift: 9)
[  396.562602][   T82] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  396.713671][   T82] usb 1-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 0
[  396.726089][   T82] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  396.736291][   T82] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 4
[  396.750664][   T82] usb 1-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[  396.759762][   T82] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  396.767786][   T82] usb 1-1: Product: syz
[  396.771946][   T82] usb 1-1: Manufacturer: syz
[  396.776553][   T82] usb 1-1: SerialNumber: syz
[  396.782943][   T82] usb 1-1: config 0 descriptor??
[  396.793452][   T82] usb-storage 1-1:0.0: USB Mass Storage device detected
[  396.808741][   T82] usb-storage 1-1:0.0: Quirks match for vid 1908 pid 1315: 20000
[  396.993754][   T82] usb 1-1: USB disconnect, device number 8
[  397.695279][   T36] audit: type=1326 audit(2000000069.001:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7340 comm="syz.1.2345" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff30dd8ebe9 code=0x0
[  397.796015][ T7348] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  397.796636][   T36] audit: type=1326 audit(2000000069.101:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7340 comm="syz.1.2345" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff30dd8ebe9 code=0x0
[  397.825914][   T82] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  397.963390][ T7318] cgroup: fork rejected by pids controller in /syz4
[  397.983838][   T82] usb 1-1: config 1 has an invalid descriptor of length 213, skipping remainder of the config
[  397.994410][   T82] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  398.011385][   T82] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  398.024948][   T82] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  398.042793][   T82] usb 1-1: SerialNumber: syz
[  398.251672][   T36] audit: type=1400 audit(2000000069.551:828): avc:  denied  { map } for  pid=7330 comm="syz.0.2344" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  398.279891][   T82] usb 1-1: 0:2 : does not exist
[  398.285122][   T82] usb 1-1: unit 5 not found!
[  398.294675][   T82] usb 1-1: USB disconnect, device number 9
[  398.309974][ T6955] udevd[6955]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  398.338597][ T7365] rust_binder: inc_ref_done called when no active inc_refs
[  398.363850][   T36] audit: type=1400 audit(2000000069.671:829): avc:  denied  { remount } for  pid=7369 comm="syz.0.2348" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  398.428584][ T7374] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2350'.
[  398.438723][ T7374] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2350'.
[  398.619283][   T36] audit: type=1400 audit(2000000069.921:830): avc:  denied  { setattr } for  pid=7387 comm="syz.1.2355" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=35105 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  398.772579][   T82] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  398.781799][ T7407] /dev/nullb0: Can't lookup blockdev
[  398.922572][   T82] usb 1-1: Using ep0 maxpacket: 8
[  398.929125][   T82] usb 1-1: unable to get BOS descriptor or descriptor too short
[  398.937633][   T82] usb 1-1: config 0 has an invalid interface number: 88 but max is 0
[  398.945894][   T82] usb 1-1: config 0 has no interface number 0
[  398.952055][   T82] usb 1-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  398.963084][   T82] usb 1-1: config 0 interface 88 has no altsetting 0
[  398.972586][   T82] usb 1-1: string descriptor 0 read error: -22
[  398.978810][   T82] usb 1-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[  398.987882][   T82] usb 1-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[  398.996994][   T82] usb 1-1: config 0 descriptor??
[  399.003604][   T82] input: USB Acecad Flair Tablet 0460:0004 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.88/input/input15
[  399.207323][    T9] usb 1-1: USB disconnect, device number 10
[  399.636851][ T7418] SELinux: security_context_str_to_sid () failed with errno=-22
[  399.645251][ T7418] SELinux: security_context_str_to_sid () failed with errno=-22
[  399.664005][   T36] audit: type=1400 audit(2000000070.971:831): avc:  denied  { listen } for  pid=7421 comm="syz.1.2365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  399.782953][ T7432] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2370'.
[  399.793120][ T7432] binder: Bad value for 'max'
[  399.798497][ T7432] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2370'.
[  399.917584][ T7441] overlayfs: failed to clone upperpath
[  399.924144][   T36] audit: type=1326 audit(2000000071.231:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7440 comm="syz.2.2373" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f375b78ebe9 code=0x0
[  400.002587][   T82] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  400.153704][   T82] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  400.164894][   T82] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  400.174671][   T82] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  400.187629][   T82] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  400.196704][   T82] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  400.205590][   T82] usb 2-1: config 0 descriptor??
[  400.332573][   T31] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  400.482564][   T31] usb 1-1: Using ep0 maxpacket: 8
[  400.489009][   T31] usb 1-1: unable to get BOS descriptor or descriptor too short
[  400.497451][   T31] usb 1-1: config 0 has an invalid interface number: 88 but max is 0
[  400.505616][   T31] usb 1-1: config 0 has no interface number 0
[  400.511714][   T31] usb 1-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  400.522720][   T31] usb 1-1: config 0 interface 88 has no altsetting 0
[  400.531362][   T31] usb 1-1: string descriptor 0 read error: -22
[  400.537613][   T31] usb 1-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[  400.547039][   T31] usb 1-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[  400.555918][   T31] usb 1-1: config 0 descriptor??
[  400.562710][   T31] input: USB Acecad Flair Tablet 0460:0004 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.88/input/input16
[  400.614126][   T82] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  400.623246][   T82] plantronics 0003:047F:FFFF.000A: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  400.763302][    T9] usb 1-1: USB disconnect, device number 11
[  401.127446][    T9] usb 2-1: USB disconnect, device number 12
[  401.277187][   T36] audit: type=1400 audit(2000000072.581:833): avc:  denied  { remove_name } for  pid=7463 comm="syz.0.2379" name="binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  401.300442][   T36] audit: type=1400 audit(2000000072.581:834): avc:  denied  { unlink } for  pid=7463 comm="syz.0.2379" name="binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  401.656222][ T7486] netlink: 'syz.4.2386': attribute type 15 has an invalid length.
[  401.664233][ T7486] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2386'.
[  401.745406][ T7501] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2390'.
[  401.832592][   T82] usb 1-1: new low-speed USB device number 12 using dummy_hcd
[  401.993842][   T82] usb 1-1: unable to get BOS descriptor or descriptor too short
[  402.002383][   T82] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  402.012556][   T82] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  402.021444][  T342] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  402.029112][   T82] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  402.044080][   T82] usb 1-1: string descriptor 0 read error: -22
[  402.050303][   T82] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  402.059382][   T82] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  402.071947][   T82] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[  402.078831][   T82] cdc_ncm 1-1:1.0: bind() failure
[  402.183625][  T342] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  402.194692][  T342] usb 2-1: config 27 interface 0 altsetting 0 has an endpoint descriptor with address 0x4C, changing to 0xC
[  402.206203][  T342] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xC has invalid maxpacket 108
[  402.216168][  T342] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  402.225229][  T342] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  402.234359][ T7504] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  402.278575][   T10] usb 1-1: USB disconnect, device number 12
[  402.359111][ T7516] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2394'.
[  402.368130][ T7516] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2394'.
[  402.377649][   T36] audit: type=1400 audit(2000000073.681:835): avc:  denied  { lock } for  pid=7515 comm="syz.4.2394" path="socket:[35658]" dev="sockfs" ino=35658 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  402.408294][ T7518] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2395'.
[  402.444838][    T9] usb 2-1: USB disconnect, device number 13
[  402.471642][ T7526] 9pnet_virtio: no channels available for device 
[  402.489724][ T7528] netlink: 'syz.4.2400': attribute type 4 has an invalid length.
[  402.847291][ T7557] rust_binder: BC_CLEAR_FREEZE_NOTIFICATION invalid ref 1
[  402.854528][ T7557] rust_binder: Write failure EINVAL in pid:113
[  402.998733][   T36] audit: type=1400 audit(2000000074.301:836): avc:  denied  { mounton } for  pid=7570 comm="syz.1.2414" path="/71/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[  403.000041][ T7572] netlink: 'syz.1.2414': attribute type 4 has an invalid length.
[  403.035775][ T7573] netlink: 'syz.1.2414': attribute type 4 has an invalid length.
[  403.051737][   T36] audit: type=1400 audit(2000000074.351:837): avc:  denied  { unmount } for  pid=6317 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  403.255347][ T4462] bridge0: port 3(syz_tun) entered disabled state
[  403.262575][ T4462] syz_tun (unregistering): left allmulticast mode
[  403.269094][ T4462] syz_tun (unregistering): left promiscuous mode
[  403.275512][ T4462] bridge0: port 3(syz_tun) entered disabled state
[  403.322237][ T7602] bridge0: port 1(bridge_slave_0) entered blocking state
[  403.329863][ T7602] bridge0: port 1(bridge_slave_0) entered disabled state
[  403.337280][ T7602] bridge_slave_0: entered allmulticast mode
[  403.343842][ T7602] bridge_slave_0: entered promiscuous mode
[  403.350496][ T7602] bridge0: port 2(bridge_slave_1) entered blocking state
[  403.357812][ T7602] bridge0: port 2(bridge_slave_1) entered disabled state
[  403.365114][ T7602] bridge_slave_1: entered allmulticast mode
[  403.371527][ T7602] bridge_slave_1: entered promiscuous mode
[  403.477188][ T7602] bridge0: port 2(bridge_slave_1) entered blocking state
[  403.484368][ T7602] bridge0: port 2(bridge_slave_1) entered forwarding state
[  403.487267][ T7634] overlayfs: failed to clone upperpath
[  403.491769][ T7602] bridge0: port 1(bridge_slave_0) entered blocking state
[  403.504240][ T7602] bridge0: port 1(bridge_slave_0) entered forwarding state
[  403.536447][  T330] bridge0: port 1(bridge_slave_0) entered disabled state
[  403.544518][  T330] bridge0: port 2(bridge_slave_1) entered disabled state
[  403.561070][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  403.568169][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  403.578021][  T330] bridge0: port 2(bridge_slave_1) entered blocking state
[  403.585109][  T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[  403.593111][   T10] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  403.602820][ T7646] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2435'.
[  403.621317][ T7602] veth0_vlan: entered promiscuous mode
[  403.633298][ T7602] veth1_macvtap: entered promiscuous mode
[  403.693741][   T36] audit: type=1400 audit(2000000075.001:838): avc:  denied  { bind } for  pid=7651 comm="syz.2.2437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  403.774245][   T10] usb 2-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 129, changing to 11
[  403.785601][   T10] usb 2-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  403.795371][   T10] usb 2-1: config 0 interface 0 has no altsetting 0
[  403.802124][   T10] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  403.811449][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  403.820250][   T10] usb 2-1: config 0 descriptor??
[  403.932584][    T9] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[  403.962638][   T82] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  404.082219][   T36] audit: type=1400 audit(2000000075.381:839): avc:  denied  { map } for  pid=7657 comm="syz.4.2440" path="socket:[36024]" dev="sockfs" ino=36024 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  404.106540][   T36] audit: type=1400 audit(2000000075.381:840): avc:  denied  { accept } for  pid=7657 comm="syz.4.2440" path="socket:[36024]" dev="sockfs" ino=36024 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  404.132457][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  404.133983][   T82] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  404.143921][    T9] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  404.168399][    T9] usb 1-1: New USB device found, idVendor=046d, idProduct=ca04, bcdDevice= 0.00
[  404.168825][   T82] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  404.177786][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  404.188469][   T82] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  404.199596][    T9] usb 1-1: config 0 descriptor??
[  404.210095][   T82] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  404.211811][ T7654] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  404.224370][   T82] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  404.235701][   T10] kovaplus 0003:1E7D:2D50.000B: unknown main item tag 0x0
[  404.247224][   T82] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  404.247748][   T10] kovaplus 0003:1E7D:2D50.000B: unknown main item tag 0x0
[  404.260884][   T82] usb 3-1: config 0 descriptor??
[  404.263198][   T10] kovaplus 0003:1E7D:2D50.000B: unknown main item tag 0x0
[  404.276875][   T10] kovaplus 0003:1E7D:2D50.000B: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.1-1/input0
[  404.438953][   T31] usb 2-1: USB disconnect, device number 14
[  404.522378][ T7677] rust_binder: 224: no such ref 3
[  404.556232][ T7683] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  404.564016][ T7683] SELinux: failed to load policy
[  404.637483][    T9] logitech 0003:046D:CA04.000C: hidraw0: USB HID vff.fa Device [HID 046d:ca04] on usb-dummy_hcd.0-1/input0
[  404.649065][    T9] logitech 0003:046D:CA04.000C: no inputs found
[  404.670635][   T82] plantronics 0003:047F:FFFF.000D: ignoring exceeding usage max
[  404.683331][ T7691] incfs: Options parsing error. -22
[  404.688826][   T36] audit: type=1400 audit(2000000075.991:841): avc:  denied  { mounton } for  pid=7690 comm="syz.1.2450" path="/82/file0/file0" dev="incremental-fs" ino=459 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  404.690410][   T82] plantronics 0003:047F:FFFF.000D: No inputs registered, leaving
[  404.714840][ T7691] incfs: mount failed -22
[  404.736247][   T82] plantronics 0003:047F:FFFF.000D: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  404.840880][   T10] usb 1-1: USB disconnect, device number 13
[  404.850770][   T36] audit: type=1400 audit(2000000076.151:842): avc:  denied  { read } for  pid=7715 comm="syz.1.2459" name="file0" dev="tmpfs" ino=483 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  404.996164][ T7732] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  405.004947][ T7732] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  406.132602][   T31] usb 3-1: reset high-speed USB device number 15 using dummy_hcd
[  406.256280][ T7786] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2482'.
[  406.262610][   T31] usb 3-1: device descriptor read/64, error -32
[  406.396796][ T7791] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7791 comm=syz.0.2484
[  406.512585][   T31] usb 3-1: device descriptor read/64, error -32
[  406.762587][   T31] usb 3-1: reset high-speed USB device number 15 using dummy_hcd
[  406.902582][   T31] usb 3-1: device descriptor read/64, error -32
[  406.969506][ T7843] devpts: called with bogus options
[  407.093062][ T7857] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2501'.
[  407.172186][ T7867] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  407.172218][ T7867] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  407.179204][ T7867] rust_binder: BINDER_SET_CONTEXT_MGR already set
[  407.239642][ T7876] overlayfs: overlapping lowerdir path
[  407.782973][   T82] usb 3-1: USB disconnect, device number 15
[  407.827052][ T7897] support for cryptoloop has been removed.  Use dm-crypt instead.
[  408.212601][   T82] usb 3-1: new full-speed USB device number 16 using dummy_hcd
[  408.362604][   T82] usb 3-1: device descriptor read/64, error -71
[  408.567193][ T7918] fuse: Bad value for 'fd'
[  408.632703][   T82] usb 3-1: device descriptor read/64, error -71
[  408.892578][   T82] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[  409.032567][   T82] usb 3-1: device descriptor read/64, error -71
[  409.203530][ T7810] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  409.232979][ T7810] CPU: 1 UID: 0 PID: 7810 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  409.233021][ T7810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  409.233039][ T7810] Call Trace:
[  409.233047][ T7810]  <TASK>
[  409.233056][ T7810]  __dump_stack+0x21/0x30
[  409.233098][ T7810]  dump_stack_lvl+0x10c/0x190
[  409.233125][ T7810]  ? __cfi_dump_stack_lvl+0x10/0x10
[  409.233153][ T7810]  ? ___ratelimit+0x3f7/0x5a0
[  409.233186][ T7810]  dump_stack+0x19/0x20
[  409.233218][ T7810]  dump_header+0xd7/0x490
[  409.233240][ T7810]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  409.233268][ T7810]  oom_kill_process+0x4c0/0x7e0
[  409.233293][ T7810]  ? sched_clock_cpu+0x75/0x400
[  409.233321][ T7810]  out_of_memory+0x7ee/0xbd0
[  409.233345][ T7810]  ? __cfi_out_of_memory+0x10/0x10
[  409.233369][ T7810]  ? mutex_lock_killable+0x92/0x1c0
[  409.233392][ T7810]  ? __cfi_mutex_lock_killable+0x10/0x10
[  409.233416][ T7810]  mem_cgroup_out_of_memory+0x279/0x350
[  409.233438][ T7810]  ? drain_obj_stock+0xed0/0xed0
[  409.233460][ T7810]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  409.233480][ T7810]  try_charge_memcg+0x8f7/0xde0
[  409.233508][ T7810]  ? _raw_spin_lock+0x8c/0x120
[  409.233536][ T7810]  ? __cfi_try_charge_memcg+0x10/0x10
[  409.233565][ T7810]  ? __alloc_pages_noprof+0x31f/0x7b0
[  409.233593][ T7810]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  409.233620][ T7810]  ? __folio_batch_add_and_move+0x2ab/0x370
[  409.233643][ T7810]  __mem_cgroup_charge+0xf6/0x410
[  409.233669][ T7810]  ? _raw_spin_lock+0x8c/0x120
[  409.233692][ T7810]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  409.233720][ T7810]  shmem_alloc_and_add_folio+0x86d/0x1050
[  409.233742][ T7810]  ? put_swap_device+0x130/0x130
[  409.233762][ T7810]  ? shmem_huge_global_enabled+0x2da/0x360
[  409.233781][ T7810]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  409.233799][ T7810]  ? __kasan_check_write+0x18/0x20
[  409.233824][ T7810]  ? _raw_spin_lock+0x8c/0x120
[  409.233848][ T7810]  shmem_get_folio_gfp+0x5f0/0x1380
[  409.233868][ T7810]  ? shmem_get_folio+0xc0/0xc0
[  409.233884][ T7810]  ? follow_page_pte+0xa5c/0xb90
[  409.233907][ T7810]  ? inode_to_bdi+0x6d/0x100
[  409.233933][ T7810]  shmem_write_begin+0xf4/0x270
[  409.233954][ T7810]  generic_perform_write+0x330/0x960
[  409.233984][ T7810]  ? __cfi_generic_perform_write+0x10/0x10
[  409.234013][ T7810]  ? down_write+0xe9/0x2a0
[  409.234038][ T7810]  ? file_update_time+0xa3/0x220
[  409.234066][ T7810]  shmem_file_write_iter+0x105/0x130
[  409.234094][ T7810]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  409.234121][ T7810]  __kernel_write_iter+0x395/0x830
[  409.234140][ T7810]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  409.234168][ T7810]  ? __cfi___kernel_write_iter+0x10/0x10
[  409.234188][ T7810]  ? get_dump_page+0x160/0x220
[  409.234219][ T7810]  ? __asan_memset+0x39/0x50
[  409.234248][ T7810]  ? iov_iter_bvec+0xc0/0x180
[  409.234273][ T7810]  dump_user_range+0xb06/0xdf0
[  409.234295][ T7810]  ? __cfi_dump_emit+0x10/0x10
[  409.234327][ T7810]  ? __cfi_dump_user_range+0x10/0x10
[  409.234347][ T7810]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  409.234379][ T7810]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  409.234411][ T7810]  elf_core_dump+0x2cd9/0x3810
[  409.234439][ T7810]  ? __cfi_elf_core_dump+0x10/0x10
[  409.234471][ T7810]  ? dump_interrupted+0xf0/0xf0
[  409.234512][ T7810]  ? filp_open+0x182/0x1d0
[  409.234537][ T7810]  ? 0xffffffffff600000
[  409.234559][ T7810]  do_coredump+0x1bf7/0x2bd0
[  409.234591][ T7810]  ? __cfi_do_coredump+0x10/0x10
[  409.234619][ T7810]  ? asm_exc_page_fault+0x2b/0x30
[  409.234648][ T7810]  ? __kasan_slab_free+0x6a/0x80
[  409.234668][ T7810]  ? kmem_cache_free+0x1c1/0x510
[  409.234698][ T7810]  ? get_signal+0xa75/0x14f0
[  409.234724][ T7810]  get_signal+0x11fd/0x14f0
[  409.234752][ T7810]  arch_do_signal_or_restart+0x96/0x720
[  409.234782][ T7810]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  409.234815][ T7810]  irqentry_exit_to_user_mode+0x4e/0xb0
[  409.234839][ T7810]  irqentry_exit+0x16/0x60
[  409.234860][ T7810]  exc_page_fault+0x66/0xc0
[  409.234881][ T7810]  asm_exc_page_fault+0x2b/0x30
[  409.234901][ T7810] RIP: 0033:0x7fb14698ebf1
[  409.234918][ T7810] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  409.234936][ T7810] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  409.234955][ T7810] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  409.234970][ T7810] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  409.234984][ T7810] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  409.234997][ T7810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  409.235010][ T7810] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  409.235028][ T7810]  </TASK>
[  409.235094][ T7810] memory: usage 307200kB, limit 307200kB, failcnt 20855
[  409.556269][   T36] kauditd_printk_skb: 2 callbacks suppressed
[  409.556291][   T36] audit: type=1326 audit(2000000080.861:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7802 comm="syz.4.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x7fc00000
[  409.560343][   T82] usb 3-1: device descriptor read/64, error -71
[  409.572662][ T7810] memory+swap: usage 432096kB, limit 9007199254740988kB, failcnt 0
[  409.682699][   T82] usb usb3-port1: attempt power cycle
[  409.697211][ T7810] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  409.733820][ T7960] tipc: Started in network mode
[  409.734916][ T7810] Memory cgroup stats for 
[  409.751316][ T7960] tipc: Node identity , cluster identity 4711
[  409.754702][ T7810] /syz0
[  409.766433][ T7960] tipc: Failed to set node id, please configure manually
[  409.772937][ T7810] :
[  409.776913][ T7960] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  409.779725][ T7810] cache 314253312
[  409.800500][ T7810] rss 217088
[  409.803745][ T7810] rss_huge 0
[  409.806960][ T7810] shmem 314253312
[  409.810603][ T7810] mapped_file 0
[  409.814092][ T7810] dirty 0
[  409.816147][   T36] audit: type=1400 audit(2000000081.121:846): avc:  denied  { watch watch_reads } for  pid=7962 comm="syz.4.2535" path="/" dev="rootfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  409.817028][ T7810] writeback 0
[  409.817038][ T7810] workingset_refault_anon 0
[  409.840849][ T7964] overlay: Unknown parameter 'smackfsroot'
[  409.842646][ T7810] workingset_refault_file 0
[  409.857536][ T7810] swap 127893504
[  409.861110][ T7810] swapcached 102400
[  409.864997][ T7810] pgpgin 481718
[  409.868470][ T7810] pgpgout 405429
[  409.872025][ T7810] pgfault 200402
[  409.875707][ T7810] pgmajfault 1470
[  409.879357][ T7810] inactive_anon 145944576
[  409.883733][ T7810] active_anon 168628224
[  409.887916][ T7810] inactive_file 0
[  409.891558][ T7810] active_file 0
[  409.895129][ T7810] unevictable 0
[  409.898627][ T7810] hierarchical_memory_limit 314572800
[  409.904138][ T7810] hierarchical_memsw_limit 9223372036854771712
[  409.910458][ T7810] total_cache 314253312
[  409.914680][ T7810] total_rss 217088
[  409.918410][ T7810] total_rss_huge 0
[  409.919059][ T7970] /dev/loop0: Can't lookup blockdev
[  409.922167][ T7810] total_shmem 314253312
[  409.922177][ T7810] total_mapped_file 0
[  409.935562][ T7810] total_dirty 0
[  409.939041][ T7810] total_writeback 0
[  409.943016][ T7810] total_workingset_refault_anon 0
[  409.948059][ T7810] total_workingset_refault_file 0
[  409.953129][ T7810] total_swap 127893504
[  409.957205][ T7810] total_swapcached 102400
[  409.961572][ T7810] total_pgpgin 481718
[  409.965617][ T7810] total_pgpgout 405429
[  409.969695][ T7810] total_pgfault 200402
[  409.973816][ T7810] total_pgmajfault 1470
[  409.978031][ T7810] total_inactive_anon 145944576
[  409.982919][ T7810] total_active_anon 168628224
[  409.987599][ T7810] total_inactive_file 0
[  409.991742][ T7810] total_active_file 0
[  409.995744][ T7810] total_unevictable 0
[  409.999748][ T7810] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7798,uid=0
[  410.014613][ T7810] Memory cgroup out of memory: Killed process 7798 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53120kB, shmem-rss:0kB, UID:0 pgtables:172kB oom_score_adj:1000
[  410.042572][   T82] usb 3-1: new full-speed USB device number 18 using dummy_hcd
[  410.083595][   T82] usb 3-1: device descriptor read/8, error -71
[  410.101165][ T7907] syz.0.2518 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  410.162629][ T7907] CPU: 0 UID: 0 PID: 7907 Comm: syz.0.2518 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  410.162665][ T7907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  410.162677][ T7907] Call Trace:
[  410.162684][ T7907]  <TASK>
[  410.162692][ T7907]  __dump_stack+0x21/0x30
[  410.162724][ T7907]  dump_stack_lvl+0x10c/0x190
[  410.162750][ T7907]  ? __cfi_dump_stack_lvl+0x10/0x10
[  410.162776][ T7907]  ? ___ratelimit+0x3f7/0x5a0
[  410.162808][ T7907]  dump_stack+0x19/0x20
[  410.162832][ T7907]  dump_header+0xd7/0x490
[  410.162852][ T7907]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  410.162877][ T7907]  oom_kill_process+0x4c0/0x7e0
[  410.162910][ T7907]  ? sched_clock_cpu+0x75/0x400
[  410.162948][ T7907]  out_of_memory+0x7ee/0xbd0
[  410.162969][ T7907]  ? __cfi_out_of_memory+0x10/0x10
[  410.162989][ T7907]  ? mutex_lock_killable+0x104/0x1c0
[  410.163009][ T7907]  ? __cfi_mutex_lock_killable+0x10/0x10
[  410.163029][ T7907]  mem_cgroup_out_of_memory+0x279/0x350
[  410.163065][ T7907]  ? drain_obj_stock+0xed0/0xed0
[  410.163085][ T7907]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  410.163106][ T7907]  try_charge_memcg+0x8f7/0xde0
[  410.163133][ T7907]  ? __cfi_try_charge_memcg+0x10/0x10
[  410.163159][ T7907]  ? __alloc_pages_noprof+0x31f/0x7b0
[  410.163186][ T7907]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  410.163211][ T7907]  ? _raw_spin_lock+0x8c/0x120
[  410.163239][ T7907]  __mem_cgroup_charge+0xf6/0x410
[  410.163269][ T7907]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  410.163298][ T7907]  ? __pte_alloc+0x1b1/0x420
[  410.163327][ T7907]  folio_prealloc+0x67/0x240
[  410.163349][ T7907]  do_pte_missing+0x164c/0x4240
[  410.163374][ T7907]  ? do_huge_pmd_anonymous_page+0x53b/0x17a0
[  410.163403][ T7907]  ? pte_marker_clear+0x1b0/0x1b0
[  410.163425][ T7907]  ? __cfi_do_huge_pmd_anonymous_page+0x10/0x10
[  410.163454][ T7907]  ? mtree_range_walk+0x510/0x730
[  410.163477][ T7907]  handle_mm_fault+0x1166/0x1b90
[  410.163502][ T7907]  ? __cfi_handle_mm_fault+0x10/0x10
[  410.163523][ T7907]  ? lock_vma_under_rcu+0x49d/0x530
[  410.163548][ T7907]  ? __se_sys_futex+0x28f/0x300
[  410.163571][ T7907]  do_user_addr_fault+0x96c/0x1200
[  410.163604][ T7907]  ? arch_exit_to_user_mode_prepare+0x22/0x70
[  410.163631][ T7907]  exc_page_fault+0x59/0xc0
[  410.163653][ T7907]  asm_exc_page_fault+0x2b/0x30
[  410.163674][ T7907] RIP: 0033:0x7fb146855003
[  410.163691][ T7907] Code: 48 85 c0 74 1b 48 83 f8 01 0f 85 3b 03 00 00 0f b7 44 24 18 66 c1 c0 08 0f b7 c0 48 89 44 24 18 48 8b 44 24 10 0f b7 54 24 18 <66> 89 10 e9 82 fe ff ff 48 83 3c 24 08 0f 85 a1 02 00 00 48 8b 44
[  410.163709][ T7907] RSP: 002b:00007fffd1e46f70 EFLAGS: 00010246
[  410.163729][ T7907] RAX: 0000200000000040 RBX: 0000000000000002 RCX: 0000000000000000
[  410.163745][ T7907] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00005555748933c8
[  410.163760][ T7907] RBP: 00007fffd1e47078 R08: 0000000000000000 R09: 0000000000000000
[  410.163774][ T7907] R10: 0000000000000000 R11: 0000000000000000 R12: 00007fb146bc5fac
[  410.163788][ T7907] R13: 00007fb146bc5fa0 R14: fffffffffffffffe R15: 00007fffd1e470c0
[  410.163807][ T7907]  </TASK>
[  410.163815][ T7907] memory: usage 290608kB, limit 307200kB, failcnt 21698
[  410.223631][   T82] usb 3-1: device descriptor read/8, error -71
[  410.336680][ T7907] memory+swap: usage 399472kB, limit 9007199254740988kB, failcnt 0
[  410.481955][ T7907] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  410.488909][ T7907] Memory cgroup stats for /syz0:
[  410.489050][ T7907] cache 283893760
[  410.497756][ T7907] rss 217088
[  410.500974][ T7907] rss_huge 0
[  410.504206][ T7907] shmem 283893760
[  410.507917][ T7907] mapped_file 0
[  410.511387][ T7907] dirty 0
[  410.514374][ T7907] writeback 0
[  410.517675][ T7907] workingset_refault_anon 0
[  410.522245][ T7907] workingset_refault_file 0
[  410.562564][ T7907] swap 127971328
[  410.569677][ T7994] 9pnet_fd: p9_fd_create_unix (7994): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  410.592636][ T7907] swapcached 8192
[  410.612632][   T82] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[  410.624195][ T7992] fuse: Unknown parameter '00000000000000000037}FP�A`�$�aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[  410.643551][   T82] usb 3-1: device descriptor read/8, error -71
[  410.672575][ T7907] pgpgin 482460
[  410.676088][ T7907] pgpgout 413606
[  410.679653][ T7907] pgfault 200448
[  410.715129][ T7907] pgmajfault 1470
[  410.721054][ T7907] inactive_anon 831488
[  410.729613][ T7907] active_anon 282009600
[  410.734091][ T7907] inactive_file 0
[  410.737849][ T7907] active_file 0
[  410.741362][ T7907] unevictable 0
[  410.745021][ T7907] hierarchical_memory_limit 314572800
[  410.750641][ T7907] hierarchical_memsw_limit 9223372036854771712
[  410.756885][ T7907] total_cache 283893760
[  410.761068][ T7907] total_rss 217088
[  410.764866][ T7907] total_rss_huge 0
[  410.768597][ T7907] total_shmem 283893760
[  410.772866][ T7907] total_mapped_file 0
[  410.776923][ T7907] total_dirty 0
[  410.780459][ T7907] total_writeback 0
[  410.781180][   T82] usb 3-1: device descriptor read/8, error -71
[  410.784833][ T7907] total_workingset_refault_anon 0
[  410.795570][ T7907] total_workingset_refault_file 0
[  410.800602][ T7907] total_swap 127971328
[  410.804691][ T7907] total_swapcached 8192
[  410.808884][ T7907] total_pgpgin 482460
[  410.812892][ T7907] total_pgpgout 413606
[  410.816966][ T7907] total_pgfault 200448
[  410.821026][ T7907] total_pgmajfault 1470
[  410.825206][ T7907] total_inactive_anon 831488
[  410.829849][ T7907] total_active_anon 282009600
[  410.834540][ T7907] total_inactive_file 0
[  410.838699][ T7907] total_active_file 0
[  410.842710][ T7907] total_unevictable 0
[  410.846693][ T7907] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7797,uid=0
[  410.861562][ T7907] Memory cgroup out of memory: Killed process 7797 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:48128kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[  410.902889][   T82] usb usb3-port1: unable to enumerate USB device
[  410.916475][ T7806] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  410.962578][ T7806] CPU: 0 UID: 0 PID: 7806 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  410.962615][ T7806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  410.962629][ T7806] Call Trace:
[  410.962636][ T7806]  <TASK>
[  410.962645][ T7806]  __dump_stack+0x21/0x30
[  410.962680][ T7806]  dump_stack_lvl+0x10c/0x190
[  410.962711][ T7806]  ? __cfi_dump_stack_lvl+0x10/0x10
[  410.962740][ T7806]  ? ___ratelimit+0x3f7/0x5a0
[  410.962773][ T7806]  dump_stack+0x19/0x20
[  410.962811][ T7806]  dump_header+0xd7/0x490
[  410.962833][ T7806]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  410.962863][ T7806]  oom_kill_process+0x4c0/0x7e0
[  410.962890][ T7806]  ? sched_clock_cpu+0x75/0x400
[  410.962921][ T7806]  out_of_memory+0x7ee/0xbd0
[  410.962945][ T7806]  ? __cfi_out_of_memory+0x10/0x10
[  410.962968][ T7806]  ? mutex_lock_killable+0x104/0x1c0
[  410.962991][ T7806]  ? __cfi_mutex_lock_killable+0x10/0x10
[  410.963016][ T7806]  mem_cgroup_out_of_memory+0x279/0x350
[  410.963038][ T7806]  ? drain_obj_stock+0xed0/0xed0
[  410.963061][ T7806]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  410.963083][ T7806]  try_charge_memcg+0x8f7/0xde0
[  410.963114][ T7806]  ? __cfi_try_charge_memcg+0x10/0x10
[  410.963144][ T7806]  ? __alloc_pages_noprof+0x31f/0x7b0
[  410.963173][ T7806]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  410.963201][ T7806]  ? __folio_batch_add_and_move+0x2ab/0x370
[  410.963228][ T7806]  __mem_cgroup_charge+0xf6/0x410
[  410.963259][ T7806]  ? _raw_spin_lock+0x8c/0x120
[  410.963287][ T7806]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  410.963339][ T7806]  shmem_alloc_and_add_folio+0x86d/0x1050
[  410.963370][ T7806]  ? put_swap_device+0x130/0x130
[  410.963396][ T7806]  ? shmem_huge_global_enabled+0x2da/0x360
[  410.963421][ T7806]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  410.963445][ T7806]  ? __kasan_check_write+0x18/0x20
[  410.963478][ T7806]  ? _raw_spin_lock+0x8c/0x120
[  410.963507][ T7806]  shmem_get_folio_gfp+0x5f0/0x1380
[  410.963533][ T7806]  ? shmem_get_folio+0xc0/0xc0
[  410.963554][ T7806]  ? follow_page_pte+0xa5c/0xb90
[  410.963583][ T7806]  ? inode_to_bdi+0x6d/0x100
[  410.963614][ T7806]  shmem_write_begin+0xf4/0x270
[  410.963641][ T7806]  generic_perform_write+0x330/0x960
[  410.963676][ T7806]  ? __cfi_generic_perform_write+0x10/0x10
[  410.963708][ T7806]  ? down_write+0xe9/0x2a0
[  410.963734][ T7806]  ? file_update_time+0xa3/0x220
[  410.963763][ T7806]  shmem_file_write_iter+0x105/0x130
[  410.963799][ T7806]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  410.963829][ T7806]  __kernel_write_iter+0x395/0x830
[  410.963850][ T7806]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  410.963880][ T7806]  ? __cfi___kernel_write_iter+0x10/0x10
[  410.963902][ T7806]  ? get_dump_page+0x160/0x220
[  410.963930][ T7806]  ? __asan_memset+0x39/0x50
[  410.963962][ T7806]  ? iov_iter_bvec+0xc0/0x180
[  410.963988][ T7806]  dump_user_range+0xb06/0xdf0
[  410.964012][ T7806]  ? __cfi_dump_emit+0x10/0x10
[  410.964046][ T7806]  ? __cfi_dump_user_range+0x10/0x10
[  410.964067][ T7806]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  410.964102][ T7806]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  410.964137][ T7806]  elf_core_dump+0x2cd9/0x3810
[  410.964168][ T7806]  ? __cfi_elf_core_dump+0x10/0x10
[  410.964215][ T7806]  ? dump_interrupted+0xf0/0xf0
[  410.964247][ T7806]  ? filp_open+0x182/0x1d0
[  410.964276][ T7806]  ? 0xffffffffff600000
[  410.964295][ T7806]  do_coredump+0x1bf7/0x2bd0
[  410.964331][ T7806]  ? __cfi_do_coredump+0x10/0x10
[  410.964363][ T7806]  ? asm_exc_page_fault+0x2b/0x30
[  410.964394][ T7806]  ? __kasan_slab_free+0x6a/0x80
[  410.964417][ T7806]  ? kmem_cache_free+0x1c1/0x510
[  410.964449][ T7806]  ? get_signal+0xa75/0x14f0
[  410.964478][ T7806]  get_signal+0x11fd/0x14f0
[  410.964508][ T7806]  arch_do_signal_or_restart+0x96/0x720
[  410.964542][ T7806]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  410.964579][ T7806]  irqentry_exit_to_user_mode+0x4e/0xb0
[  410.964606][ T7806]  irqentry_exit+0x16/0x60
[  410.964631][ T7806]  exc_page_fault+0x66/0xc0
[  410.964655][ T7806]  asm_exc_page_fault+0x2b/0x30
[  410.964677][ T7806] RIP: 0033:0x7fb14698ebf1
[  410.964696][ T7806] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  410.964716][ T7806] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  410.964738][ T7806] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  410.964754][ T7806] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  410.964769][ T7806] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  410.964793][ T7806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  410.964808][ T7806] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  410.964827][ T7806]  </TASK>
[  410.964836][ T7806] memory: usage 305380kB, limit 307200kB, failcnt 22455
[  411.485088][ T7806] memory+swap: usage 432180kB, limit 9007199254740988kB, failcnt 0
[  411.502631][ T7806] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  411.509656][ T7806] Memory cgroup stats for /syz0:
[  411.509815][ T7806] cache 314339328
[  411.528015][ T7806] rss 217088
[  411.531501][ T7806] rss_huge 0
[  411.535329][ T7806] shmem 314339328
[  411.539186][ T7806] mapped_file 0
[  411.542918][ T7806] dirty 0
[  411.546049][ T7806] writeback 0
[  411.549361][ T7806] workingset_refault_anon 0
[  411.554185][ T7806] workingset_refault_file 0
[  411.558855][ T7806] swap 127979520
[  411.562510][ T7806] swapcached 16384
[  411.566545][ T7806] pgpgin 496814
[  411.570144][ T7806] pgpgout 420525
[  411.574137][ T7806] pgfault 201347
[  411.577774][ T7806] pgmajfault 1470
[  411.581516][ T7806] inactive_anon 83640320
[  411.586012][ T7806] active_anon 230932480
[  411.590237][ T7806] inactive_file 0
[  411.594416][ T7806] active_file 0
[  411.597893][ T7806] unevictable 0
[  411.601370][ T7806] hierarchical_memory_limit 314572800
[  411.607049][ T7806] hierarchical_memsw_limit 9223372036854771712
[  411.613339][ T7806] total_cache 314339328
[  411.617547][ T7806] total_rss 217088
[  411.621274][ T7806] total_rss_huge 0
[  411.625443][ T7806] total_shmem 314339328
[  411.640674][ T7806] total_mapped_file 0
[  411.645056][ T7806] total_dirty 0
[  411.648648][ T7806] total_writeback 0
[  411.652475][ T7806] total_workingset_refault_anon 0
[  411.660107][ T7806] total_workingset_refault_file 0
[  411.665845][ T7806] total_swap 127979520
[  411.670135][ T7806] total_swapcached 16384
[  411.674667][ T7806] total_pgpgin 496814
[  411.678799][ T7806] total_pgpgout 420525
[  411.683097][ T7806] total_pgfault 201347
[  411.692697][ T7806] total_pgmajfault 1470
[  411.696920][ T7806] total_inactive_anon 83640320
[  411.701708][ T7806] total_active_anon 230932480
[  411.707425][ T7806] total_inactive_file 0
[  411.711848][ T7806] total_active_file 0
[  411.717603][ T7806] total_unevictable 0
[  411.721604][ T7806] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7799,uid=0
[  411.737082][ T7806] Memory cgroup out of memory: Killed process 7799 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:46336kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[  411.862924][ T7795] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  411.913500][ T7795] CPU: 1 UID: 0 PID: 7795 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  411.913540][ T7795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  411.913555][ T7795] Call Trace:
[  411.913563][ T7795]  <TASK>
[  411.913573][ T7795]  __dump_stack+0x21/0x30
[  411.913609][ T7795]  dump_stack_lvl+0x10c/0x190
[  411.913641][ T7795]  ? __cfi_dump_stack_lvl+0x10/0x10
[  411.913671][ T7795]  ? ___ratelimit+0x3f7/0x5a0
[  411.913707][ T7795]  dump_stack+0x19/0x20
[  411.913744][ T7795]  dump_header+0xd7/0x490
[  411.913767][ T7795]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  411.913797][ T7795]  oom_kill_process+0x4c0/0x7e0
[  411.913824][ T7795]  ? sched_clock_cpu+0x75/0x400
[  411.913856][ T7795]  out_of_memory+0x7ee/0xbd0
[  411.913882][ T7795]  ? __cfi_out_of_memory+0x10/0x10
[  411.913907][ T7795]  ? mutex_lock_killable+0x104/0x1c0
[  411.913932][ T7795]  ? __cfi_mutex_lock_killable+0x10/0x10
[  411.913957][ T7795]  mem_cgroup_out_of_memory+0x279/0x350
[  411.913980][ T7795]  ? drain_obj_stock+0xed0/0xed0
[  411.914004][ T7795]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  411.914026][ T7795]  try_charge_memcg+0x8f7/0xde0
[  411.914058][ T7795]  ? __cfi_try_charge_memcg+0x10/0x10
[  411.914088][ T7795]  ? __alloc_pages_noprof+0x31f/0x7b0
[  411.914119][ T7795]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  411.914148][ T7795]  ? __folio_batch_add_and_move+0x2ab/0x370
[  411.914177][ T7795]  __mem_cgroup_charge+0xf6/0x410
[  411.914210][ T7795]  ? _raw_spin_lock+0x8c/0x120
[  411.914240][ T7795]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  411.914275][ T7795]  shmem_alloc_and_add_folio+0x86d/0x1050
[  411.914305][ T7795]  ? put_swap_device+0x130/0x130
[  411.914330][ T7795]  ? shmem_huge_global_enabled+0x2da/0x360
[  411.914355][ T7795]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  411.914379][ T7795]  ? __kasan_check_write+0x18/0x20
[  411.914411][ T7795]  ? _raw_spin_lock+0x8c/0x120
[  411.914442][ T7795]  shmem_get_folio_gfp+0x5f0/0x1380
[  411.914468][ T7795]  ? shmem_get_folio+0xc0/0xc0
[  411.914489][ T7795]  ? inode_maybe_inc_iversion+0x17d/0x1e0
[  411.914521][ T7795]  ? __cfi_inode_maybe_inc_iversion+0x10/0x10
[  411.914553][ T7795]  ? inode_to_bdi+0x6d/0x100
[  411.914584][ T7795]  shmem_write_begin+0xf4/0x270
[  411.914610][ T7795]  generic_perform_write+0x330/0x960
[  411.914645][ T7795]  ? __cfi_generic_perform_write+0x10/0x10
[  411.914676][ T7795]  ? down_write+0xe9/0x2a0
[  411.914701][ T7795]  ? mnt_get_write_access_file+0x1af/0x3b0
[  411.914737][ T7795]  ? mnt_put_write_access_file+0xc2/0x100
[  411.914767][ T7795]  ? file_update_time+0x1ef/0x220
[  411.914798][ T7795]  shmem_file_write_iter+0x105/0x130
[  411.914827][ T7795]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  411.914856][ T7795]  __kernel_write_iter+0x395/0x830
[  411.914878][ T7795]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  411.914907][ T7795]  ? __cfi___kernel_write_iter+0x10/0x10
[  411.914928][ T7795]  ? get_dump_page+0x160/0x220
[  411.914956][ T7795]  ? __asan_memset+0x39/0x50
[  411.914987][ T7795]  ? iov_iter_bvec+0xc0/0x180
[  411.915012][ T7795]  dump_user_range+0xb06/0xdf0
[  411.915036][ T7795]  ? __cfi_dump_emit+0x10/0x10
[  411.915070][ T7795]  ? __cfi_dump_user_range+0x10/0x10
[  411.915110][ T7795]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  411.915144][ T7795]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  411.915181][ T7795]  elf_core_dump+0x2cd9/0x3810
[  411.915211][ T7795]  ? __cfi_elf_core_dump+0x10/0x10
[  411.915247][ T7795]  ? dump_interrupted+0xf0/0xf0
[  411.915281][ T7795]  ? filp_open+0x182/0x1d0
[  411.915311][ T7795]  ? 0xffffffffff600000
[  411.915330][ T7795]  do_coredump+0x1bf7/0x2bd0
[  411.915369][ T7795]  ? __cfi_do_coredump+0x10/0x10
[  411.915403][ T7795]  ? asm_exc_page_fault+0x2b/0x30
[  411.915433][ T7795]  ? __kasan_slab_free+0x6a/0x80
[  411.915453][ T7795]  ? kmem_cache_free+0x1c1/0x510
[  411.915482][ T7795]  ? get_signal+0xa75/0x14f0
[  411.915512][ T7795]  get_signal+0x11fd/0x14f0
[  411.915545][ T7795]  arch_do_signal_or_restart+0x96/0x720
[  411.915581][ T7795]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  411.915621][ T7795]  irqentry_exit_to_user_mode+0x4e/0xb0
[  411.915649][ T7795]  irqentry_exit+0x16/0x60
[  411.915675][ T7795]  exc_page_fault+0x66/0xc0
[  411.915700][ T7795]  asm_exc_page_fault+0x2b/0x30
[  411.915731][ T7795] RIP: 0033:0x7fb14698ebf1
[  411.915750][ T7795] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  411.915771][ T7795] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  411.915793][ T7795] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  411.915811][ T7795] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  411.915828][ T7795] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  411.915843][ T7795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  411.915858][ T7795] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  411.915879][ T7795]  </TASK>
[  411.915889][ T7795] memory: usage 307088kB, limit 307200kB, failcnt 24835
[  412.403323][ T7795] memory+swap: usage 432192kB, limit 9007199254740988kB, failcnt 0
[  412.422554][ T7795] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  412.429448][ T7795] Memory cgroup stats for /syz0:
[  412.429577][ T7795] cache 314355712
[  412.522947][ T7795] rss 217088
[  412.529335][ T7795] rss_huge 0
[  412.532479][   T36] audit: type=1326 audit(2000000083.831:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.4.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x7ffc0000
[  412.534968][ T7795] shmem 314355712
[  412.562163][   T36] audit: type=1326 audit(2000000083.831:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.4.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x7ffc0000
[  412.582564][ T7795] mapped_file 0
[  412.591097][ T7795] dirty 0
[  412.591269][   T36] audit: type=1326 audit(2000000083.831:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.4.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x7ffc0000
[  412.594132][ T7795] writeback 0
[  412.621257][ T7795] workingset_refault_anon 0
[  412.626089][ T7795] workingset_refault_file 0
[  412.630468][   T36] audit: type=1326 audit(2000000083.831:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.4.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x7ffc0000
[  412.630635][ T7795] swap 127991808
[  412.657595][ T7795] swapcached 0
[  412.661012][ T7795] pgpgin 503280
[  412.664519][ T7795] pgpgout 426991
[  412.668132][   T36] audit: type=1326 audit(2000000083.831:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.4.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x7ffc0000
[  412.668156][ T7795] pgfault 201751
[  412.668166][ T7795] pgmajfault 1470
[  412.691837][   T36] audit: type=1326 audit(2000000083.831:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.4.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe31db8ebe9 code=0x7ffc0000
[  412.700336][ T7795] inactive_anon 84574208
[  412.724244][   T36] audit: type=1326 audit(2000000083.831:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.4.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x7ffc0000
[  412.727288][ T7795] active_anon 229777408
[  412.750810][   T36] audit: type=1326 audit(2000000083.831:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.4.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x7ffc0000
[  412.754421][ T7795] inactive_file 0
[  412.781263][ T7795] active_file 0
[  412.785587][ T7795] unevictable 0
[  412.789072][ T7795] hierarchical_memory_limit 314572800
[  412.794490][ T7795] hierarchical_memsw_limit 9223372036854771712
[  412.800819][ T7795] total_cache 314355712
[  412.805264][ T7795] total_rss 217088
[  412.809076][ T7795] total_rss_huge 0
[  412.812848][ T7795] total_shmem 314355712
[  412.817026][ T7795] total_mapped_file 0
[  412.818233][ T8054] random: crng reseeded on system resumption
[  412.822573][ T7795] total_dirty 0
[  412.830554][ T7795] total_writeback 0
[  412.834429][ T7795] total_workingset_refault_anon 0
[  412.839470][ T7795] total_workingset_refault_file 0
[  412.844535][ T7795] total_swap 127991808
[  412.848617][ T7795] total_swapcached 0
[  412.852554][ T7795] total_pgpgin 503280
[  412.856598][ T7795] total_pgpgout 426991
[  412.860680][ T7795] total_pgfault 201751
[  412.864862][ T7795] total_pgmajfault 1470
[  412.869034][ T7795] total_inactive_anon 84574208
[  412.873885][ T7795] total_active_anon 229777408
[  412.878576][ T7795] total_inactive_file 0
[  412.882774][ T7795] total_active_file 0
[  412.886791][ T7795] total_unevictable 0
[  412.893381][ T7795] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7800,uid=0
[  412.908575][ T7795] Memory cgroup out of memory: Killed process 7800 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:51200kB, shmem-rss:0kB, UID:0 pgtables:168kB oom_score_adj:1000
[  413.005704][ T8059] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2565'.
[  413.114012][ T7861] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  413.165375][ T8066] __vm_enough_memory: pid: 8066, comm: syz.2.2567, bytes: 18014402804453376 not enough memory for the allocation
[  413.216504][ T7861] CPU: 0 UID: 0 PID: 7861 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  413.216536][ T7861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  413.216550][ T7861] Call Trace:
[  413.216556][ T7861]  <TASK>
[  413.216565][ T7861]  __dump_stack+0x21/0x30
[  413.216600][ T7861]  dump_stack_lvl+0x10c/0x190
[  413.216629][ T7861]  ? __cfi_dump_stack_lvl+0x10/0x10
[  413.216656][ T7861]  ? ___ratelimit+0x3f7/0x5a0
[  413.216691][ T7861]  dump_stack+0x19/0x20
[  413.216718][ T7861]  dump_header+0xd7/0x490
[  413.216740][ T7861]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  413.216769][ T7861]  oom_kill_process+0x4c0/0x7e0
[  413.216796][ T7861]  ? sched_clock_cpu+0x75/0x400
[  413.216826][ T7861]  out_of_memory+0x7ee/0xbd0
[  413.216860][ T7861]  ? __cfi_out_of_memory+0x10/0x10
[  413.216884][ T7861]  ? mutex_lock_killable+0x104/0x1c0
[  413.216908][ T7861]  ? __cfi_mutex_lock_killable+0x10/0x10
[  413.216932][ T7861]  mem_cgroup_out_of_memory+0x279/0x350
[  413.216955][ T7861]  ? drain_obj_stock+0xed0/0xed0
[  413.216977][ T7861]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  413.216999][ T7861]  try_charge_memcg+0x8f7/0xde0
[  413.217030][ T7861]  ? __cfi_try_charge_memcg+0x10/0x10
[  413.217061][ T7861]  ? __alloc_pages_noprof+0x31f/0x7b0
[  413.217090][ T7861]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  413.217119][ T7861]  ? __folio_batch_add_and_move+0x2ab/0x370
[  413.217147][ T7861]  __mem_cgroup_charge+0xf6/0x410
[  413.217179][ T7861]  ? _raw_spin_lock+0x8c/0x120
[  413.217208][ T7861]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  413.217243][ T7861]  shmem_alloc_and_add_folio+0x86d/0x1050
[  413.217271][ T7861]  ? put_swap_device+0x130/0x130
[  413.217297][ T7861]  ? shmem_huge_global_enabled+0x2da/0x360
[  413.217322][ T7861]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  413.217345][ T7861]  ? __kasan_check_write+0x18/0x20
[  413.217378][ T7861]  ? _raw_spin_lock+0x8c/0x120
[  413.217408][ T7861]  shmem_get_folio_gfp+0x5f0/0x1380
[  413.217434][ T7861]  ? shmem_get_folio+0xc0/0xc0
[  413.217455][ T7861]  ? follow_page_pte+0xa5c/0xb90
[  413.217484][ T7861]  ? inode_to_bdi+0x6d/0x100
[  413.217514][ T7861]  shmem_write_begin+0xf4/0x270
[  413.217544][ T7861]  generic_perform_write+0x330/0x960
[  413.217579][ T7861]  ? __cfi_generic_perform_write+0x10/0x10
[  413.217610][ T7861]  ? down_write+0xe9/0x2a0
[  413.217635][ T7861]  ? file_update_time+0xa3/0x220
[  413.217666][ T7861]  shmem_file_write_iter+0x105/0x130
[  413.217695][ T7861]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  413.217724][ T7861]  __kernel_write_iter+0x395/0x830
[  413.217745][ T7861]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  413.217775][ T7861]  ? __cfi___kernel_write_iter+0x10/0x10
[  413.217795][ T7861]  ? get_dump_page+0x160/0x220
[  413.217822][ T7861]  ? __asan_memset+0x39/0x50
[  413.217859][ T7861]  ? iov_iter_bvec+0xc0/0x180
[  413.217886][ T7861]  dump_user_range+0xb06/0xdf0
[  413.217908][ T7861]  ? __cfi_dump_emit+0x10/0x10
[  413.217942][ T7861]  ? __cfi_dump_user_range+0x10/0x10
[  413.217964][ T7861]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  413.217997][ T7861]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  413.218032][ T7861]  elf_core_dump+0x2cd9/0x3810
[  413.218061][ T7861]  ? __cfi_elf_core_dump+0x10/0x10
[  413.218096][ T7861]  ? dump_interrupted+0xf0/0xf0
[  413.218129][ T7861]  ? filp_open+0x182/0x1d0
[  413.218157][ T7861]  ? 0xffffffffff600000
[  413.218175][ T7861]  do_coredump+0x1bf7/0x2bd0
[  413.218209][ T7861]  ? __cfi_do_coredump+0x10/0x10
[  413.218240][ T7861]  ? asm_exc_page_fault+0x2b/0x30
[  413.218273][ T7861]  ? __kasan_slab_free+0x6a/0x80
[  413.218297][ T7861]  ? kmem_cache_free+0x1c1/0x510
[  413.218331][ T7861]  ? get_signal+0xa75/0x14f0
[  413.218360][ T7861]  get_signal+0x11fd/0x14f0
[  413.218391][ T7861]  arch_do_signal_or_restart+0x96/0x720
[  413.218426][ T7861]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  413.218464][ T7861]  irqentry_exit_to_user_mode+0x4e/0xb0
[  413.218491][ T7861]  irqentry_exit+0x16/0x60
[  413.218516][ T7861]  exc_page_fault+0x66/0xc0
[  413.218539][ T7861]  asm_exc_page_fault+0x2b/0x30
[  413.218562][ T7861] RIP: 0033:0x7fb14698ebf1
[  413.218581][ T7861] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  413.218601][ T7861] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  413.218622][ T7861] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  413.218640][ T7861] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  413.218656][ T7861] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  413.218671][ T7861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  413.218685][ T7861] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  413.218706][ T7861]  </TASK>
[  413.382984][ T7861] memory: usage 306032kB, limit 307200kB, failcnt 27548
[  413.687334][ T7861] memory+swap: usage 430612kB, limit 9007199254740988kB, failcnt 0
[  413.695299][ T7861] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  413.702316][ T7861] Memory cgroup stats for /syz0:
[  413.702505][ T7861] cache 313667584
[  413.711284][ T7861] rss 208896
[  413.728640][ T7861] rss_huge 0
[  413.744600][ T7861] shmem 313667584
[  413.748309][ T7861] mapped_file 0
[  413.810124][ T7861] dirty 0
[  413.840510][ T7861] writeback 114688
[  413.875999][ T7861] workingset_refault_anon 0
[  413.920281][ T7861] workingset_refault_file 1
[  413.963889][ T7861] swap 125599744
[  413.974186][ T7861] swapcached 122880
[  413.989422][ T7861] pgpgin 507705
[  414.000667][ T7861] pgpgout 431556
[  414.011101][ T7861] pgfault 202029
[  414.020870][ T7861] pgmajfault 1471
[  414.036082][ T7861] inactive_anon 293957632
[  414.047280][ T7861] active_anon 18145280
[  414.057824][ T7861] inactive_file 0
[  414.066395][ T7861] active_file 0
[  414.075168][ T7861] unevictable 0
[  414.080492][ T7861] hierarchical_memory_limit 314572800
[  414.086282][ T7861] hierarchical_memsw_limit 9223372036854771712
[  414.092682][ T7861] total_cache 313667584
[  414.096961][ T7861] total_rss 208896
[  414.100844][ T7861] total_rss_huge 0
[  414.104661][ T7861] total_shmem 313667584
[  414.108922][ T7861] total_mapped_file 0
[  414.113005][ T7861] total_dirty 0
[  414.116548][ T7861] total_writeback 114688
[  414.120920][ T7861] total_workingset_refault_anon 0
[  414.126217][ T7861] total_workingset_refault_file 1
[  414.131389][ T7861] total_swap 125599744
[  414.135804][ T7861] total_swapcached 122880
[  414.140231][ T7861] total_pgpgin 507705
[  414.144489][ T7861] total_pgpgout 431556
[  414.148634][ T7861] total_pgfault 202029
[  414.153015][ T7861] total_pgmajfault 1471
[  414.157305][ T7861] total_inactive_anon 293957632
[  414.162256][ T7861] total_active_anon 18145280
[  414.167195][ T7861] total_inactive_file 0
[  414.171560][ T7861] total_active_file 0
[  414.175890][ T7861] total_unevictable 0
[  414.179972][ T7861] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7801,uid=0
[  414.195181][ T7861] Memory cgroup out of memory: Killed process 7801 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:44544kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
[  414.361392][ T7873] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  414.492613][ T7873] CPU: 0 UID: 0 PID: 7873 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  414.492657][ T7873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  414.492672][ T7873] Call Trace:
[  414.492679][ T7873]  <TASK>
[  414.492688][ T7873]  __dump_stack+0x21/0x30
[  414.492724][ T7873]  dump_stack_lvl+0x10c/0x190
[  414.492765][ T7873]  ? __cfi_dump_stack_lvl+0x10/0x10
[  414.492796][ T7873]  ? ___ratelimit+0x3f7/0x5a0
[  414.492832][ T7873]  dump_stack+0x19/0x20
[  414.492861][ T7873]  dump_header+0xd7/0x490
[  414.492884][ T7873]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  414.492915][ T7873]  oom_kill_process+0x4c0/0x7e0
[  414.492942][ T7873]  ? sched_clock_cpu+0x75/0x400
[  414.492974][ T7873]  out_of_memory+0x7ee/0xbd0
[  414.492999][ T7873]  ? __cfi_out_of_memory+0x10/0x10
[  414.493025][ T7873]  ? mutex_lock_killable+0x104/0x1c0
[  414.493050][ T7873]  ? __cfi_mutex_lock_killable+0x10/0x10
[  414.493076][ T7873]  mem_cgroup_out_of_memory+0x279/0x350
[  414.493100][ T7873]  ? drain_obj_stock+0xed0/0xed0
[  414.493123][ T7873]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  414.493146][ T7873]  try_charge_memcg+0x8f7/0xde0
[  414.493177][ T7873]  ? __cfi_try_charge_memcg+0x10/0x10
[  414.493208][ T7873]  ? __alloc_pages_noprof+0x31f/0x7b0
[  414.493239][ T7873]  ? __switch_to+0xc7b/0x1310
[  414.493270][ T7873]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  414.493301][ T7873]  __mem_cgroup_charge+0xf6/0x410
[  414.493334][ T7873]  ? pick_next_task_fair+0x900/0x990
[  414.493364][ T7873]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  414.493397][ T7873]  ? _raw_spin_lock+0x8c/0x120
[  414.493429][ T7873]  shmem_alloc_and_add_folio+0x86d/0x1050
[  414.493458][ T7873]  ? put_swap_device+0x130/0x130
[  414.493484][ T7873]  ? shmem_huge_global_enabled+0x2da/0x360
[  414.493521][ T7873]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  414.493544][ T7873]  ? __kasan_check_write+0x18/0x20
[  414.493575][ T7873]  ? _raw_spin_lock+0x8c/0x120
[  414.493605][ T7873]  shmem_get_folio_gfp+0x5f0/0x1380
[  414.493627][ T7873]  ? __cfi_preempt_schedule_irq+0x10/0x10
[  414.493664][ T7873]  ? shmem_get_folio+0xc0/0xc0
[  414.493685][ T7873]  ? inode_maybe_inc_iversion+0x17d/0x1e0
[  414.493717][ T7873]  ? __cfi_inode_maybe_inc_iversion+0x10/0x10
[  414.493759][ T7873]  ? inode_to_bdi+0x6d/0x100
[  414.493789][ T7873]  shmem_write_begin+0xf4/0x270
[  414.493814][ T7873]  generic_perform_write+0x330/0x960
[  414.493849][ T7873]  ? __cfi_generic_perform_write+0x10/0x10
[  414.493879][ T7873]  ? down_write+0xe9/0x2a0
[  414.493902][ T7873]  ? mnt_get_write_access_file+0x1af/0x3b0
[  414.493931][ T7873]  ? mnt_put_write_access_file+0xc2/0x100
[  414.493960][ T7873]  ? file_update_time+0x1ef/0x220
[  414.493990][ T7873]  shmem_file_write_iter+0x105/0x130
[  414.494018][ T7873]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  414.494047][ T7873]  __kernel_write_iter+0x395/0x830
[  414.494068][ T7873]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  414.494097][ T7873]  ? __cfi___kernel_write_iter+0x10/0x10
[  414.494116][ T7873]  ? get_dump_page+0x160/0x220
[  414.494160][ T7873]  ? __asan_memset+0x39/0x50
[  414.494192][ T7873]  ? iov_iter_bvec+0xc0/0x180
[  414.494219][ T7873]  dump_user_range+0xb06/0xdf0
[  414.494242][ T7873]  ? __cfi_dump_emit+0x10/0x10
[  414.494276][ T7873]  ? __cfi_dump_user_range+0x10/0x10
[  414.494298][ T7873]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  414.494344][ T7873]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  414.494379][ T7873]  elf_core_dump+0x2cd9/0x3810
[  414.494408][ T7873]  ? __cfi_elf_core_dump+0x10/0x10
[  414.494441][ T7873]  ? dump_interrupted+0xf0/0xf0
[  414.494474][ T7873]  ? filp_open+0x182/0x1d0
[  414.494501][ T7873]  ? 0xffffffffff600000
[  414.494520][ T7873]  do_coredump+0x1bf7/0x2bd0
[  414.494555][ T7873]  ? __cfi_do_coredump+0x10/0x10
[  414.494586][ T7873]  ? asm_exc_page_fault+0x2b/0x30
[  414.494635][ T7873]  ? __kasan_slab_free+0x6a/0x80
[  414.494659][ T7873]  ? kmem_cache_free+0x1c1/0x510
[  414.494693][ T7873]  ? get_signal+0xa75/0x14f0
[  414.494722][ T7873]  get_signal+0x11fd/0x14f0
[  414.494759][ T7873]  arch_do_signal_or_restart+0x96/0x720
[  414.494795][ T7873]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  414.494834][ T7873]  irqentry_exit_to_user_mode+0x4e/0xb0
[  414.494860][ T7873]  irqentry_exit+0x16/0x60
[  414.494885][ T7873]  exc_page_fault+0x66/0xc0
[  414.494910][ T7873]  asm_exc_page_fault+0x2b/0x30
[  414.494933][ T7873] RIP: 0033:0x7fb14698ebf1
[  414.494952][ T7873] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  414.494973][ T7873] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  414.494994][ T7873] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  414.495012][ T7873] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  414.495028][ T7873] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  414.495043][ T7873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  414.495063][ T7873] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  414.495085][ T7873]  </TASK>
[  414.602574][ T7873] memory: usage 306948kB, limit 307200kB, failcnt 28880
[  414.604477][   T36] kauditd_printk_skb: 349 callbacks suppressed
[  414.604494][   T36] audit: type=1400 audit(2000000085.871:1204): avc:  denied  { map } for  pid=8087 comm="syz.4.2573" path="socket:[37464]" dev="sockfs" ino=37464 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  414.683228][ T7873] memory+swap: usage 432192kB, limit 9007199254740988kB, failcnt 0
[  414.983569][ T8100] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2576'.
[  415.010578][ T7873] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  415.036443][ T8100] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2576'.
[  415.059943][ T8100] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2576'.
[  415.063158][ T7873] Memory cgroup stats for /syz0:
[  415.068821][ T8100] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2576'.
[  415.068962][ T7873] cache 314359808
[  415.096963][ T7873] rss 212992
[  415.100191][ T7873] rss_huge 0
[  415.103437][ T7873] shmem 314359808
[  415.112564][ T7873] mapped_file 0
[  415.116049][ T7873] dirty 0
[  415.119041][ T7873] writeback 0
[  415.122333][ T7873] workingset_refault_anon 0
[  415.129326][ T7873] workingset_refault_file 65
[  415.163074][ T7873] swap 127995904
[  415.166909][ T7873] swapcached 0
[  415.170574][ T7873] pgpgin 517030
[  415.175557][ T7873] pgpgout 440741
[  415.179130][ T7873] pgfault 202621
[  415.188974][ T7873] pgmajfault 1474
[  415.193363][ T8109] 9pnet_fd: Insufficient options for proto=fd
[  415.211004][ T7873] inactive_anon 312475648
[  415.215450][ T7873] active_anon 2097152
[  415.221071][ T7873] inactive_file 0
[  415.224911][ T7873] active_file 0
[  415.228471][ T7873] unevictable 0
[  415.232894][ T7873] hierarchical_memory_limit 314572800
[  415.238292][ T7873] hierarchical_memsw_limit 9223372036854771712
[  415.241579][ T8112] rust_binder: 89: no such ref 0
[  415.257187][ T7873] total_cache 314359808
[  415.265429][ T7873] total_rss 212992
[  415.281042][ T7873] total_rss_huge 0
[  415.285019][ T7873] total_shmem 314359808
[  415.289510][ T7873] total_mapped_file 0
[  415.293552][ T7873] total_dirty 0
[  415.297133][ T7873] total_writeback 0
[  415.301220][ T7873] total_workingset_refault_anon 0
[  415.306440][ T7873] total_workingset_refault_file 65
[  415.311741][ T7873] total_swap 127995904
[  415.316716][ T7873] total_swapcached 0
[  415.320873][ T7873] total_pgpgin 517030
[  415.325267][ T7873] total_pgpgout 440741
[  415.332567][ T7873] total_pgfault 202621
[  415.340179][ T7873] total_pgmajfault 1474
[  415.347793][ T7873] total_inactive_anon 312475648
[  415.352789][ T7873] total_active_anon 2097152
[  415.357353][ T7873] total_inactive_file 0
[  415.361586][ T7873] total_active_file 0
[  415.365669][ T7873] total_unevictable 0
[  415.369680][ T7873] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7858,uid=0
[  415.384977][ T7873] Memory cgroup out of memory: Killed process 7858 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:46848kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[  415.642565][  T368] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  415.682812][ T7812] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  415.782562][ T7812] CPU: 0 UID: 0 PID: 7812 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  415.782601][ T7812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  415.782616][ T7812] Call Trace:
[  415.782624][ T7812]  <TASK>
[  415.782632][ T7812]  __dump_stack+0x21/0x30
[  415.782669][ T7812]  dump_stack_lvl+0x10c/0x190
[  415.782699][ T7812]  ? __cfi_dump_stack_lvl+0x10/0x10
[  415.782729][ T7812]  ? ___ratelimit+0x3f7/0x5a0
[  415.782765][ T7812]  dump_stack+0x19/0x20
[  415.782793][ T7812]  dump_header+0xd7/0x490
[  415.782816][ T7812]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  415.782846][ T7812]  oom_kill_process+0x4c0/0x7e0
[  415.782873][ T7812]  ? sched_clock_cpu+0x75/0x400
[  415.782904][ T7812]  out_of_memory+0x7ee/0xbd0
[  415.782929][ T7812]  ? __cfi_out_of_memory+0x10/0x10
[  415.782954][ T7812]  ? mutex_lock_killable+0x92/0x1c0
[  415.782978][ T7812]  ? __cfi_mutex_lock_killable+0x10/0x10
[  415.783003][ T7812]  mem_cgroup_out_of_memory+0x279/0x350
[  415.783027][ T7812]  ? drain_obj_stock+0xed0/0xed0
[  415.783050][ T7812]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  415.783072][ T7812]  try_charge_memcg+0x8f7/0xde0
[  415.783102][ T7812]  ? __cfi_try_charge_memcg+0x10/0x10
[  415.783132][ T7812]  ? __alloc_pages_noprof+0x31f/0x7b0
[  415.783161][ T7812]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  415.783190][ T7812]  ? __folio_batch_add_and_move+0x2ab/0x370
[  415.783218][ T7812]  __mem_cgroup_charge+0xf6/0x410
[  415.783250][ T7812]  ? _raw_spin_lock+0x8c/0x120
[  415.783279][ T7812]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  415.783318][ T7812]  shmem_alloc_and_add_folio+0x86d/0x1050
[  415.783346][ T7812]  ? put_swap_device+0x130/0x130
[  415.783370][ T7812]  ? shmem_huge_global_enabled+0x2da/0x360
[  415.783400][ T7812]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  415.783424][ T7812]  ? __kasan_check_write+0x18/0x20
[  415.783456][ T7812]  ? _raw_spin_lock+0x8c/0x120
[  415.783486][ T7812]  shmem_get_folio_gfp+0x5f0/0x1380
[  415.783512][ T7812]  ? shmem_get_folio+0xc0/0xc0
[  415.783534][ T7812]  ? follow_page_pte+0xa5c/0xb90
[  415.783584][ T7812]  ? inode_to_bdi+0x6d/0x100
[  415.783612][ T7812]  shmem_write_begin+0xf4/0x270
[  415.783636][ T7812]  generic_perform_write+0x330/0x960
[  415.783668][ T7812]  ? __cfi_generic_perform_write+0x10/0x10
[  415.783697][ T7812]  ? down_write+0xe9/0x2a0
[  415.783720][ T7812]  ? file_update_time+0xa3/0x220
[  415.783748][ T7812]  shmem_file_write_iter+0x105/0x130
[  415.783775][ T7812]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  415.783802][ T7812]  __kernel_write_iter+0x395/0x830
[  415.783821][ T7812]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  415.783848][ T7812]  ? __cfi___kernel_write_iter+0x10/0x10
[  415.783867][ T7812]  ? get_dump_page+0x160/0x220
[  415.783891][ T7812]  ? __asan_memset+0x39/0x50
[  415.783920][ T7812]  ? iov_iter_bvec+0xc0/0x180
[  415.783961][ T7812]  dump_user_range+0xb06/0xdf0
[  415.783984][ T7812]  ? __cfi_dump_emit+0x10/0x10
[  415.784018][ T7812]  ? __cfi_dump_user_range+0x10/0x10
[  415.784038][ T7812]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  415.784072][ T7812]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  415.784107][ T7812]  elf_core_dump+0x2cd9/0x3810
[  415.784138][ T7812]  ? __cfi_elf_core_dump+0x10/0x10
[  415.784172][ T7812]  ? dump_interrupted+0xf0/0xf0
[  415.784204][ T7812]  ? filp_open+0x182/0x1d0
[  415.784233][ T7812]  ? 0xffffffffff600000
[  415.784252][ T7812]  do_coredump+0x1bf7/0x2bd0
[  415.784288][ T7812]  ? __cfi_do_coredump+0x10/0x10
[  415.784320][ T7812]  ? asm_exc_page_fault+0x2b/0x30
[  415.784353][ T7812]  ? __kasan_slab_free+0x6a/0x80
[  415.784377][ T7812]  ? kmem_cache_free+0x1c1/0x510
[  415.784421][ T7812]  ? get_signal+0xa75/0x14f0
[  415.784449][ T7812]  get_signal+0x11fd/0x14f0
[  415.784480][ T7812]  arch_do_signal_or_restart+0x96/0x720
[  415.784514][ T7812]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  415.784550][ T7812]  irqentry_exit_to_user_mode+0x4e/0xb0
[  415.784575][ T7812]  irqentry_exit+0x16/0x60
[  415.784599][ T7812]  exc_page_fault+0x66/0xc0
[  415.784623][ T7812]  asm_exc_page_fault+0x2b/0x30
[  415.784644][ T7812] RIP: 0033:0x7fb14698ebf1
[  415.784663][ T7812] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  415.784682][ T7812] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  415.784704][ T7812] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  415.784722][ T7812] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  415.784738][ T7812] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  415.784753][ T7812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  415.784768][ T7812] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  415.784788][ T7812]  </TASK>
[  415.795109][  T368] usb 3-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice= 1.73
[  415.812373][ T7812] memory: usage 307200kB, limit 307200kB, failcnt 31490
[  415.824097][  T368] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  415.892563][ T7812] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[  415.932662][  T368] usb 3-1: Product: syz
[  416.288172][ T7812] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  416.325908][  T368] usb 3-1: Manufacturer: syz
[  416.330554][  T368] usb 3-1: SerialNumber: syz
[  416.336343][  T368] usb 3-1: config 0 descriptor??
[  416.366779][ T7812] Memory cgroup stats for /syz0:
[  416.366943][ T7812] cache 308088832
[  416.452549][ T7812] rss 212992
[  416.455804][ T7812] rss_huge 0
[  416.502554][ T7812] shmem 308088832
[  416.539676][ T7812] mapped_file 0
[  416.549759][ T7812] dirty 0
[  416.569729][ T7812] writeback 0
[  416.592558][ T7812] workingset_refault_anon 0
[  416.610892][ T7812] workingset_refault_file 65
[  416.629376][ T7812] swap 127995904
[  416.637280][ T7812] swapcached 0
[  416.640693][ T7812] pgpgin 522079
[  416.654255][ T7812] pgpgout 447321
[  416.664297][ T7812] pgfault 202937
[  416.667880][ T7812] pgmajfault 1474
[  416.681653][ T7812] inactive_anon 217325568
[  416.692629][ T7812] active_anon 90333184
[  416.701741][ T7812] inactive_file 0
[  416.706820][ T7812] active_file 0
[  416.710317][ T7812] unevictable 0
[  416.720221][ T7812] hierarchical_memory_limit 314572800
[  416.730752][ T7812] hierarchical_memsw_limit 9223372036854771712
[  416.742542][ T7812] total_cache 308088832
[  416.744254][ T8128] rust_binder: Failed to allocate buffer. len:120, is_oneway:false
[  416.746790][ T7812] total_rss 212992
[  416.746802][ T7812] total_rss_huge 0
[  416.746811][ T7812] total_shmem 308088832
[  416.756423][  T368] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  416.768676][ T7812] total_mapped_file 0
[  416.798121][ T7812] total_dirty 0
[  416.798507][  T368] asix 3-1:0.0: probe with driver asix failed with error -71
[  416.801616][ T7812] total_writeback 0
[  416.801626][ T7812] total_workingset_refault_anon 0
[  416.801634][ T7812] total_workingset_refault_file 65
[  416.801642][ T7812] total_swap 127995904
[  416.833080][  T368] usb 3-1: USB disconnect, device number 20
[  416.852794][ T7812] total_swapcached 0
[  416.856724][ T7812] total_pgpgin 522079
[  416.860706][ T7812] total_pgpgout 447321
[  416.872542][ T7812] total_pgfault 202937
[  416.876642][ T7812] total_pgmajfault 1474
[  416.880800][ T7812] total_inactive_anon 217325568
[  416.892551][ T7812] total_active_anon 90333184
[  416.897167][ T7812] total_inactive_file 0
[  416.901320][ T7812] total_active_file 0
[  416.922564][ T7812] total_unevictable 0
[  416.926577][ T7812] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7809,uid=0
[  416.952586][ T7812] Memory cgroup out of memory: Killed process 7809 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:45824kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[  417.137550][ T7864] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  417.207766][   T36] audit: type=1326 audit(2000000088.511:1205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8138 comm="syz.1.2588" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff30dd8ebe9 code=0x0
[  417.308662][ T7864] CPU: 1 UID: 0 PID: 7864 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  417.308705][ T7864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  417.308720][ T7864] Call Trace:
[  417.308727][ T7864]  <TASK>
[  417.308736][ T7864]  __dump_stack+0x21/0x30
[  417.308773][ T7864]  dump_stack_lvl+0x10c/0x190
[  417.308804][ T7864]  ? __cfi_dump_stack_lvl+0x10/0x10
[  417.308834][ T7864]  ? ___ratelimit+0x3f7/0x5a0
[  417.308871][ T7864]  dump_stack+0x19/0x20
[  417.308900][ T7864]  dump_header+0xd7/0x490
[  417.308923][ T7864]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  417.308954][ T7864]  oom_kill_process+0x4c0/0x7e0
[  417.308981][ T7864]  ? sched_clock_cpu+0x75/0x400
[  417.309013][ T7864]  out_of_memory+0x7ee/0xbd0
[  417.309040][ T7864]  ? __cfi_out_of_memory+0x10/0x10
[  417.309065][ T7864]  ? mutex_lock_killable+0x104/0x1c0
[  417.309090][ T7864]  ? __cfi_mutex_lock_killable+0x10/0x10
[  417.309116][ T7864]  mem_cgroup_out_of_memory+0x279/0x350
[  417.309139][ T7864]  ? drain_obj_stock+0xed0/0xed0
[  417.309163][ T7864]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  417.309185][ T7864]  try_charge_memcg+0x8f7/0xde0
[  417.309217][ T7864]  ? __cfi_try_charge_memcg+0x10/0x10
[  417.309247][ T7864]  ? __alloc_pages_noprof+0x31f/0x7b0
[  417.309285][ T7864]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  417.309315][ T7864]  ? __folio_batch_add_and_move+0x2ab/0x370
[  417.309344][ T7864]  __mem_cgroup_charge+0xf6/0x410
[  417.309377][ T7864]  ? _raw_spin_lock+0x8c/0x120
[  417.309408][ T7864]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  417.309443][ T7864]  shmem_alloc_and_add_folio+0x86d/0x1050
[  417.309474][ T7864]  ? put_swap_device+0x130/0x130
[  417.309500][ T7864]  ? shmem_huge_global_enabled+0x2da/0x360
[  417.309525][ T7864]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  417.309549][ T7864]  ? __kasan_check_write+0x18/0x20
[  417.309583][ T7864]  ? _raw_spin_lock+0x8c/0x120
[  417.309614][ T7864]  shmem_get_folio_gfp+0x5f0/0x1380
[  417.309641][ T7864]  ? shmem_get_folio+0xc0/0xc0
[  417.309662][ T7864]  ? follow_page_pte+0xa5c/0xb90
[  417.309692][ T7864]  ? inode_to_bdi+0x6d/0x100
[  417.309722][ T7864]  shmem_write_begin+0xf4/0x270
[  417.309750][ T7864]  generic_perform_write+0x330/0x960
[  417.309784][ T7864]  ? __cfi_generic_perform_write+0x10/0x10
[  417.309816][ T7864]  ? down_write+0xe9/0x2a0
[  417.309842][ T7864]  ? file_update_time+0xa3/0x220
[  417.309874][ T7864]  shmem_file_write_iter+0x105/0x130
[  417.309903][ T7864]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  417.309933][ T7864]  __kernel_write_iter+0x395/0x830
[  417.309964][ T7864]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  417.309993][ T7864]  ? __cfi___kernel_write_iter+0x10/0x10
[  417.310013][ T7864]  ? get_dump_page+0x160/0x220
[  417.310039][ T7864]  ? __asan_memset+0x39/0x50
[  417.310068][ T7864]  ? iov_iter_bvec+0xc0/0x180
[  417.310103][ T7864]  dump_user_range+0xb06/0xdf0
[  417.310124][ T7864]  ? __cfi_dump_emit+0x10/0x10
[  417.310157][ T7864]  ? __cfi_dump_user_range+0x10/0x10
[  417.310177][ T7864]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  417.310228][ T7864]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  417.310273][ T7864]  elf_core_dump+0x2cd9/0x3810
[  417.310304][ T7864]  ? __cfi_elf_core_dump+0x10/0x10
[  417.310338][ T7864]  ? dump_interrupted+0xf0/0xf0
[  417.310381][ T7864]  ? filp_open+0x182/0x1d0
[  417.310408][ T7864]  ? 0xffffffffff600000
[  417.310426][ T7864]  do_coredump+0x1bf7/0x2bd0
[  417.310462][ T7864]  ? __cfi_do_coredump+0x10/0x10
[  417.310493][ T7864]  ? asm_exc_page_fault+0x2b/0x30
[  417.310524][ T7864]  ? __kasan_slab_free+0x6a/0x80
[  417.310546][ T7864]  ? kmem_cache_free+0x1c1/0x510
[  417.310578][ T7864]  ? get_signal+0xa75/0x14f0
[  417.310604][ T7864]  get_signal+0x11fd/0x14f0
[  417.310635][ T7864]  arch_do_signal_or_restart+0x96/0x720
[  417.310669][ T7864]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  417.310705][ T7864]  irqentry_exit_to_user_mode+0x4e/0xb0
[  417.310731][ T7864]  irqentry_exit+0x16/0x60
[  417.310754][ T7864]  exc_page_fault+0x66/0xc0
[  417.310777][ T7864]  asm_exc_page_fault+0x2b/0x30
[  417.310799][ T7864] RIP: 0033:0x7fb14698ebf1
[  417.310817][ T7864] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  417.310836][ T7864] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  417.310857][ T7864] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  417.310873][ T7864] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  417.310888][ T7864] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  417.310903][ T7864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  417.310916][ T7864] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  417.310935][ T7864]  </TASK>
[  417.310944][ T7864] memory: usage 303108kB, limit 307200kB, failcnt 32712
[  417.893484][ T7864] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[  417.905860][ T7864] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  418.024590][ T7864] Memory cgroup stats for /syz0:
[  418.024965][ T7864] cache 314007552
[  418.112629][ T7864] rss 212992
[  418.115891][ T7864] rss_huge 0
[  418.164645][ T7864] shmem 313016320
[  418.188768][ T7864] mapped_file 864256
[  418.204274][ T7864] dirty 0
[  418.258288][ T7864] writeback 0
[  418.261647][ T7864] workingset_refault_anon 0
[  418.312690][ T7864] workingset_refault_file 703
[  418.336854][ T7864] swap 127995904
[  418.340475][ T7864] swapcached 0
[  418.344107][ T7864] pgpgin 528411
[  418.347665][ T7864] pgpgout 452184
[  418.351403][ T7864] pgfault 203323
[  418.355157][ T7864] pgmajfault 1483
[  418.358832][ T7864] inactive_anon 232353792
[  418.363200][ T7864] active_anon 80707584
[  418.367275][ T7864] inactive_file 987136
[  418.371388][ T7864] active_file 0
[  418.374913][ T7864] unevictable 0
[  418.378495][ T7864] hierarchical_memory_limit 314572800
[  418.384016][ T7864] hierarchical_memsw_limit 9223372036854771712
[  418.390255][ T7864] total_cache 314007552
[  418.394475][ T7864] total_rss 212992
[  418.398205][ T7864] total_rss_huge 0
[  418.401933][ T7864] total_shmem 313016320
[  418.414102][ T7864] total_mapped_file 864256
[  418.418691][ T7864] total_dirty 0
[  418.422268][ T7864] total_writeback 0
[  418.426403][ T7864] total_workingset_refault_anon 0
[  418.431492][ T7864] total_workingset_refault_file 703
[  418.436969][ T7864] total_swap 127995904
[  418.441049][ T7864] total_swapcached 0
[  418.445300][ T7864] total_pgpgin 528411
[  418.450539][ T7864] total_pgpgout 452184
[  418.454899][ T7864] total_pgfault 203323
[  418.459066][ T7864] total_pgmajfault 1483
[  418.463055][   T82] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  418.464048][ T7864] total_inactive_anon 232353792
[  418.475972][ T7864] total_active_anon 80707584
[  418.480579][ T7864] total_inactive_file 987136
[  418.485432][ T7864] total_active_file 0
[  418.486867][ T8219] /dev/loop0: Can't lookup blockdev
[  418.489507][ T7864] total_unevictable 0
[  418.498923][ T7864] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7825,uid=0
[  418.524896][ T7864] Memory cgroup out of memory: Killed process 7825 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53592kB, shmem-rss:0kB, UID:0 pgtables:184kB oom_score_adj:1000
[  418.592580][   T82] usb 3-1: device descriptor read/64, error -71
[  418.832587][   T82] usb 3-1: device descriptor read/64, error -71
[  418.986906][ T7808] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  419.045601][ T7808] CPU: 0 UID: 0 PID: 7808 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  419.045642][ T7808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  419.045664][ T7808] Call Trace:
[  419.045672][ T7808]  <TASK>
[  419.045681][ T7808]  __dump_stack+0x21/0x30
[  419.045718][ T7808]  dump_stack_lvl+0x10c/0x190
[  419.045749][ T7808]  ? __cfi_dump_stack_lvl+0x10/0x10
[  419.045780][ T7808]  ? ___ratelimit+0x3f7/0x5a0
[  419.045816][ T7808]  dump_stack+0x19/0x20
[  419.045844][ T7808]  dump_header+0xd7/0x490
[  419.045867][ T7808]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  419.045897][ T7808]  oom_kill_process+0x4c0/0x7e0
[  419.045923][ T7808]  ? sched_clock_cpu+0x75/0x400
[  419.045955][ T7808]  out_of_memory+0x7ee/0xbd0
[  419.045988][ T7808]  ? __cfi_out_of_memory+0x10/0x10
[  419.046014][ T7808]  ? mutex_lock_killable+0x92/0x1c0
[  419.046039][ T7808]  ? __cfi_mutex_lock_killable+0x10/0x10
[  419.046066][ T7808]  mem_cgroup_out_of_memory+0x279/0x350
[  419.046089][ T7808]  ? drain_obj_stock+0xed0/0xed0
[  419.046113][ T7808]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  419.046144][ T7808]  try_charge_memcg+0x8f7/0xde0
[  419.046175][ T7808]  ? __cfi_try_charge_memcg+0x10/0x10
[  419.046205][ T7808]  ? __alloc_pages_noprof+0x31f/0x7b0
[  419.046248][ T7808]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  419.046287][ T7808]  ? __folio_batch_add_and_move+0x2ab/0x370
[  419.046313][ T7808]  __mem_cgroup_charge+0xf6/0x410
[  419.046354][ T7808]  ? _raw_spin_lock+0x8c/0x120
[  419.046379][ T7808]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  419.046409][ T7808]  shmem_alloc_and_add_folio+0x86d/0x1050
[  419.046433][ T7808]  ? put_swap_device+0x130/0x130
[  419.046453][ T7808]  ? shmem_huge_global_enabled+0x2da/0x360
[  419.046474][ T7808]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  419.046494][ T7808]  ? __kasan_check_write+0x18/0x20
[  419.046522][ T7808]  ? _raw_spin_lock+0x8c/0x120
[  419.046549][ T7808]  shmem_get_folio_gfp+0x5f0/0x1380
[  419.046572][ T7808]  ? shmem_get_folio+0xc0/0xc0
[  419.046590][ T7808]  ? inode_maybe_inc_iversion+0x17d/0x1e0
[  419.046617][ T7808]  ? __cfi_inode_maybe_inc_iversion+0x10/0x10
[  419.046648][ T7808]  ? inode_to_bdi+0x6d/0x100
[  419.046673][ T7808]  shmem_write_begin+0xf4/0x270
[  419.046695][ T7808]  generic_perform_write+0x330/0x960
[  419.046725][ T7808]  ? __cfi_generic_perform_write+0x10/0x10
[  419.046752][ T7808]  ? down_write+0xe9/0x2a0
[  419.046772][ T7808]  ? mnt_get_write_access_file+0x1af/0x3b0
[  419.046798][ T7808]  ? mnt_put_write_access_file+0xc2/0x100
[  419.046823][ T7808]  ? file_update_time+0x1ef/0x220
[  419.046849][ T7808]  shmem_file_write_iter+0x105/0x130
[  419.046873][ T7808]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  419.046914][ T7808]  __kernel_write_iter+0x395/0x830
[  419.046933][ T7808]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  419.046960][ T7808]  ? __cfi___kernel_write_iter+0x10/0x10
[  419.046979][ T7808]  ? get_dump_page+0x160/0x220
[  419.047004][ T7808]  ? __asan_memset+0x39/0x50
[  419.047033][ T7808]  ? iov_iter_bvec+0xc0/0x180
[  419.047057][ T7808]  dump_user_range+0xb06/0xdf0
[  419.047078][ T7808]  ? __cfi_dump_emit+0x10/0x10
[  419.047125][ T7808]  ? __cfi_dump_user_range+0x10/0x10
[  419.047161][ T7808]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  419.047193][ T7808]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  419.047226][ T7808]  elf_core_dump+0x2cd9/0x3810
[  419.047255][ T7808]  ? __cfi_elf_core_dump+0x10/0x10
[  419.047289][ T7808]  ? dump_interrupted+0xf0/0xf0
[  419.047321][ T7808]  ? filp_open+0x182/0x1d0
[  419.047350][ T7808]  ? 0xffffffffff600000
[  419.047369][ T7808]  do_coredump+0x1bf7/0x2bd0
[  419.047405][ T7808]  ? __cfi_do_coredump+0x10/0x10
[  419.047435][ T7808]  ? asm_exc_page_fault+0x2b/0x30
[  419.047465][ T7808]  ? __kasan_slab_free+0x6a/0x80
[  419.047487][ T7808]  ? kmem_cache_free+0x1c1/0x510
[  419.047520][ T7808]  ? get_signal+0xa75/0x14f0
[  419.047549][ T7808]  get_signal+0x11fd/0x14f0
[  419.047580][ T7808]  arch_do_signal_or_restart+0x96/0x720
[  419.047615][ T7808]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  419.047652][ T7808]  irqentry_exit_to_user_mode+0x4e/0xb0
[  419.047677][ T7808]  irqentry_exit+0x16/0x60
[  419.047700][ T7808]  exc_page_fault+0x66/0xc0
[  419.047723][ T7808]  asm_exc_page_fault+0x2b/0x30
[  419.047744][ T7808] RIP: 0033:0x7fb14698ebf1
[  419.047762][ T7808] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  419.047782][ T7808] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  419.047803][ T7808] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  419.047820][ T7808] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  419.047836][ T7808] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  419.047850][ T7808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  419.047865][ T7808] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  419.047885][ T7808]  </TASK>
[  419.052371][ T7808] memory: usage 285920kB, limit 307200kB, failcnt 38644
[  419.072683][   T82] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  419.141619][ T7808] memory+swap: usage 402136kB, limit 9007199254740988kB, failcnt 0
[  419.272841][   T82] usb 3-1: device descriptor read/64, error -71
[  419.558695][ T7808] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  419.565682][ T7808] Memory cgroup stats for /syz0:
[  419.565889][ T7808] cache 313507840
[  419.574602][ T7808] rss 212992
[  419.577873][ T7808] rss_huge 0
[  419.581075][ T7808] shmem 312451072
[  419.591113][ T7808] mapped_file 1048576
[  419.595274][ T7808] dirty 0
[  419.598410][ T7808] writeback 0
[  419.602028][ T7808] workingset_refault_anon 0
[  419.602976][ T8243] netlink: 'syz.4.2624': attribute type 15 has an invalid length.
[  419.606818][ T7808] workingset_refault_file 1824
[  419.620084][ T8243] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2624'.
[  419.621285][ T7808] swap 127995904
[  419.637031][ T7808] swapcached 0
[  419.641739][ T7808] pgpgin 540370
[  419.644205][ T8243] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  419.646934][ T8249] netlink: 'syz.1.2625': attribute type 63 has an invalid length.
[  419.661655][ T8249] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2625'.
[  419.671753][ T8249] gretap0: entered allmulticast mode
[  419.682611][ T7808] pgpgout 464225
[  419.686183][ T7808] pgfault 204028
[  419.689730][ T7808] pgmajfault 1493
[  419.693773][ T8249] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  419.710521][ T7808] inactive_anon 47931392
[  419.715002][ T7808] active_anon 264466432
[  419.719291][ T7808] inactive_file 524288
[  419.723481][ T7808] active_file 0
[  419.727041][ T7808] unevictable 0
[  419.730835][ T7808] hierarchical_memory_limit 314572800
[  419.736393][ T7808] hierarchical_memsw_limit 9223372036854771712
[  419.743049][ T7808] total_cache 313507840
[  419.747326][ T7808] total_rss 212992
[  419.752028][ T7808] total_rss_huge 0
[  419.755934][ T7808] total_shmem 312451072
[  419.760692][ T7808] total_mapped_file 1048576
[  419.765620][ T7808] total_dirty 0
[  419.769119][ T7808] total_writeback 0
[  419.773152][ T7808] total_workingset_refault_anon 0
[  419.778263][ T7808] total_workingset_refault_file 1824
[  419.783783][ T7808] total_swap 127995904
[  419.787862][ T7808] total_swapcached 0
[  419.791811][ T7808] total_pgpgin 540370
[  419.796122][ T7808] total_pgpgout 464225
[  419.800207][ T7808] total_pgfault 204028
[  419.806178][   T36] audit: type=1400 audit(2000000091.111:1206): avc:  denied  { create } for  pid=8265 comm="syz.4.2630" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=irda_socket permissive=1
[  419.808835][ T7808] total_pgmajfault 1493
[  419.834394][ T7808] total_inactive_anon 47931392
[  419.840641][ T7808] total_active_anon 264466432
[  419.846128][ T7808] total_inactive_file 524288
[  419.852075][ T7808] total_active_file 0
[  419.856171][   T82] usb 3-1: device descriptor read/64, error -71
[  419.859027][ T7808] total_unevictable 0
[  419.866684][ T7808] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7865,uid=0
[  419.881741][ T7808] Memory cgroup out of memory: Killed process 7865 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53504kB, shmem-rss:0kB, UID:0 pgtables:180kB oom_score_adj:1000
[  419.972677][   T82] usb usb3-port1: attempt power cycle
[  420.114483][ T7796] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  420.209806][ T7796] CPU: 0 UID: 0 PID: 7796 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  420.209841][ T7796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  420.209853][ T7796] Call Trace:
[  420.209860][ T7796]  <TASK>
[  420.209868][ T7796]  __dump_stack+0x21/0x30
[  420.209902][ T7796]  dump_stack_lvl+0x10c/0x190
[  420.209929][ T7796]  ? __cfi_dump_stack_lvl+0x10/0x10
[  420.209956][ T7796]  ? ___ratelimit+0x3f7/0x5a0
[  420.209988][ T7796]  dump_stack+0x19/0x20
[  420.210022][ T7796]  dump_header+0xd7/0x490
[  420.210042][ T7796]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  420.210069][ T7796]  oom_kill_process+0x4c0/0x7e0
[  420.210093][ T7796]  ? sched_clock_cpu+0x75/0x400
[  420.210121][ T7796]  out_of_memory+0x7ee/0xbd0
[  420.210140][ T7796]  ? __cfi_out_of_memory+0x10/0x10
[  420.210161][ T7796]  ? mutex_lock_killable+0x92/0x1c0
[  420.210182][ T7796]  ? __cfi_mutex_lock_killable+0x10/0x10
[  420.210206][ T7796]  mem_cgroup_out_of_memory+0x279/0x350
[  420.210226][ T7796]  ? drain_obj_stock+0xed0/0xed0
[  420.210247][ T7796]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  420.210266][ T7796]  try_charge_memcg+0x8f7/0xde0
[  420.210294][ T7796]  ? _raw_spin_lock+0x8c/0x120
[  420.210321][ T7796]  ? __cfi_try_charge_memcg+0x10/0x10
[  420.210348][ T7796]  ? __alloc_pages_noprof+0x31f/0x7b0
[  420.210375][ T7796]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  420.210400][ T7796]  ? __folio_batch_add_and_move+0x2ab/0x370
[  420.210426][ T7796]  __mem_cgroup_charge+0xf6/0x410
[  420.210456][ T7796]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  420.210488][ T7796]  shmem_alloc_and_add_folio+0x86d/0x1050
[  420.210513][ T7796]  ? put_swap_device+0x130/0x130
[  420.210535][ T7796]  ? shmem_huge_global_enabled+0x2da/0x360
[  420.210556][ T7796]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  420.210576][ T7796]  ? __kasan_check_write+0x18/0x20
[  420.210605][ T7796]  ? _raw_spin_lock+0x8c/0x120
[  420.210631][ T7796]  shmem_get_folio_gfp+0x5f0/0x1380
[  420.210656][ T7796]  ? shmem_get_folio+0xc0/0xc0
[  420.210675][ T7796]  ? follow_page_pte+0xa5c/0xb90
[  420.210700][ T7796]  ? inode_to_bdi+0x6d/0x100
[  420.210728][ T7796]  shmem_write_begin+0xf4/0x270
[  420.210752][ T7796]  generic_perform_write+0x330/0x960
[  420.210783][ T7796]  ? __cfi_generic_perform_write+0x10/0x10
[  420.210811][ T7796]  ? down_write+0xe9/0x2a0
[  420.210834][ T7796]  ? file_update_time+0xa3/0x220
[  420.210862][ T7796]  shmem_file_write_iter+0x105/0x130
[  420.210889][ T7796]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  420.210915][ T7796]  __kernel_write_iter+0x395/0x830
[  420.210934][ T7796]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  420.210961][ T7796]  ? __cfi___kernel_write_iter+0x10/0x10
[  420.210980][ T7796]  ? get_dump_page+0x160/0x220
[  420.211015][ T7796]  ? __asan_memset+0x39/0x50
[  420.211043][ T7796]  ? iov_iter_bvec+0xc0/0x180
[  420.211068][ T7796]  dump_user_range+0xb06/0xdf0
[  420.211089][ T7796]  ? __cfi_dump_emit+0x10/0x10
[  420.211119][ T7796]  ? __cfi_dump_user_range+0x10/0x10
[  420.211138][ T7796]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  420.211169][ T7796]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  420.211200][ T7796]  elf_core_dump+0x2cd9/0x3810
[  420.211227][ T7796]  ? __cfi_elf_core_dump+0x10/0x10
[  420.211258][ T7796]  ? dump_interrupted+0xf0/0xf0
[  420.211286][ T7796]  ? filp_open+0x182/0x1d0
[  420.211312][ T7796]  ? 0xffffffffff600000
[  420.211331][ T7796]  do_coredump+0x1bf7/0x2bd0
[  420.211366][ T7796]  ? __cfi_do_coredump+0x10/0x10
[  420.211395][ T7796]  ? asm_exc_page_fault+0x2b/0x30
[  420.211426][ T7796]  ? __kasan_slab_free+0x6a/0x80
[  420.211448][ T7796]  ? kmem_cache_free+0x1c1/0x510
[  420.211478][ T7796]  ? get_signal+0xa75/0x14f0
[  420.211504][ T7796]  get_signal+0x11fd/0x14f0
[  420.211531][ T7796]  arch_do_signal_or_restart+0x96/0x720
[  420.211562][ T7796]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  420.211596][ T7796]  irqentry_exit_to_user_mode+0x4e/0xb0
[  420.211622][ T7796]  irqentry_exit+0x16/0x60
[  420.211644][ T7796]  exc_page_fault+0x66/0xc0
[  420.211666][ T7796]  asm_exc_page_fault+0x2b/0x30
[  420.211686][ T7796] RIP: 0033:0x7fb14698ebf1
[  420.211703][ T7796] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  420.211721][ T7796] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  420.211741][ T7796] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  420.211756][ T7796] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  420.211771][ T7796] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  420.211785][ T7796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.211798][ T7796] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  420.211816][ T7796]  </TASK>
[  420.211824][ T7796] memory: usage 296900kB, limit 307200kB, failcnt 41985
[  420.312588][   T82] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  420.317906][ T7796] memory+swap: usage 417076kB, limit 9007199254740988kB, failcnt 0
[  420.333597][   T82] usb 3-1: device descriptor read/8, error -71
[  420.339455][ T7796] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  420.427075][ T8286] rust_binder: Failed to allocate buffer. len:24, is_oneway:false
[  420.431367][ T7796] Memory cgroup stats for 
[  420.473653][   T82] usb 3-1: device descriptor read/8, error -71
[  420.479725][ T7796] /syz0
[  420.702622][   T48] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  420.712655][ T7796] :
[  420.722645][   T82] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  420.723115][ T7796] cache 314146816
[  420.743608][   T82] usb 3-1: device descriptor read/8, error -71
[  420.747029][ T7796] rss 225280
[  420.759329][ T7796] rss_huge 0
[  420.764656][ T7796] shmem 314146816
[  420.768313][ T7796] mapped_file 0
[  420.771786][ T7796] dirty 0
[  420.775047][ T7796] writeback 0
[  420.778366][ T7796] workingset_refault_anon 0
[  420.783500][ T7796] workingset_refault_file 2129
[  420.789954][ T7796] swap 127995904
[  420.794700][ T7796] swapcached 0
[  420.798087][ T7796] pgpgin 549736
[  420.801607][ T7796] pgpgout 473496
[  420.805752][ T7796] pgfault 204808
[  420.809327][ T7796] pgmajfault 1501
[  420.813384][ T7796] inactive_anon 23883776
[  420.817795][ T7796] active_anon 290488320
[  420.822048][ T7796] inactive_file 0
[  420.826157][ T7796] active_file 0
[  420.829683][ T7796] unevictable 0
[  420.833402][ T7796] hierarchical_memory_limit 314572800
[  420.843548][ T7796] hierarchical_memsw_limit 9223372036854771712
[  420.849934][ T7796] total_cache 314146816
[  420.854245][ T7796] total_rss 225280
[  420.857999][ T7796] total_rss_huge 0
[  420.861907][ T7796] total_shmem 314146816
[  420.866390][ T7796] total_mapped_file 0
[  420.870392][ T7796] total_dirty 0
[  420.873873][ T7796] total_writeback 0
[  420.877683][ T7796] total_workingset_refault_anon 0
[  420.882714][ T7796] total_workingset_refault_file 2129
[  420.887996][ T7796] total_swap 127995904
[  420.892051][ T7796] total_swapcached 0
[  420.892616][   T48] usb 1-1: Using ep0 maxpacket: 16
[  420.895967][ T7796] total_pgpgin 549736
[  420.895978][ T7796] total_pgpgout 473496
[  420.902347][   T82] usb 3-1: device descriptor read/8, error -71
[  420.905481][ T7796] total_pgfault 204808
[  420.911218][   T48] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  420.915371][ T7796] total_pgmajfault 1501
[  420.915383][ T7796] total_inactive_anon 23883776
[  420.919471][   T48] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  420.928461][ T7796] total_active_anon 290488320
[  420.928473][ T7796] total_inactive_file 0
[  420.928481][ T7796] total_active_file 0
[  420.932701][   T48] usb 1-1: Product: syz
[  420.938135][ T7796] total_unevictable 0
[  420.945929][   T48] usb 1-1: Manufacturer: syz
[  420.950509][ T7796] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[  420.954320][   T48] usb 1-1: SerialNumber: syz
[  420.958533][ T7796] ,cpuset=
[  420.966894][   T48] r8152-cfgselector 1-1: Unknown version 0x0000
[  420.971043][ T7796] syz0,mems_allowed=0,oom_memcg=
[  420.978159][   T48] r8152-cfgselector 1-1: config 0 descriptor??
[  420.982629][ T7796] /syz0,task_memcg=/syz0,task=syz.0.2485,pid=7806,uid=0
[  421.009907][ T7796] Memory cgroup out of memory: Killed process 7806 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53504kB, shmem-rss:0kB, UID:0 pgtables:184kB oom_score_adj:1000
[  421.033218][   T82] usb usb3-port1: unable to enumerate USB device
[  421.062693][ T7807] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  421.082553][ T7807] CPU: 0 UID: 0 PID: 7807 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  421.082592][ T7807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  421.082606][ T7807] Call Trace:
[  421.082614][ T7807]  <TASK>
[  421.082623][ T7807]  __dump_stack+0x21/0x30
[  421.082660][ T7807]  dump_stack_lvl+0x10c/0x190
[  421.082691][ T7807]  ? __cfi_dump_stack_lvl+0x10/0x10
[  421.082721][ T7807]  ? ___ratelimit+0x3f7/0x5a0
[  421.082757][ T7807]  dump_stack+0x19/0x20
[  421.082786][ T7807]  dump_header+0xd7/0x490
[  421.082810][ T7807]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  421.082840][ T7807]  oom_kill_process+0x4c0/0x7e0
[  421.082867][ T7807]  ? sched_clock_cpu+0x75/0x400
[  421.082897][ T7807]  out_of_memory+0x7ee/0xbd0
[  421.082923][ T7807]  ? __cfi_out_of_memory+0x10/0x10
[  421.082956][ T7807]  ? mutex_lock_killable+0x104/0x1c0
[  421.082981][ T7807]  ? __cfi_mutex_lock_killable+0x10/0x10
[  421.083007][ T7807]  mem_cgroup_out_of_memory+0x279/0x350
[  421.083031][ T7807]  ? drain_obj_stock+0xed0/0xed0
[  421.083055][ T7807]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  421.083078][ T7807]  try_charge_memcg+0x8f7/0xde0
[  421.083110][ T7807]  ? __cfi_try_charge_memcg+0x10/0x10
[  421.083159][ T7807]  ? __alloc_pages_noprof+0x31f/0x7b0
[  421.083191][ T7807]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  421.083222][ T7807]  ? __folio_batch_add_and_move+0x2ab/0x370
[  421.083252][ T7807]  __mem_cgroup_charge+0xf6/0x410
[  421.083287][ T7807]  ? _raw_spin_lock+0x8c/0x120
[  421.083317][ T7807]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  421.083356][ T7807]  shmem_alloc_and_add_folio+0x86d/0x1050
[  421.083386][ T7807]  ? put_swap_device+0x130/0x130
[  421.083424][ T7807]  ? shmem_huge_global_enabled+0x2da/0x360
[  421.083449][ T7807]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  421.083473][ T7807]  ? __kasan_check_write+0x18/0x20
[  421.083506][ T7807]  ? _raw_spin_lock+0x8c/0x120
[  421.083536][ T7807]  shmem_get_folio_gfp+0x5f0/0x1380
[  421.083563][ T7807]  ? shmem_get_folio+0xc0/0xc0
[  421.083583][ T7807]  ? follow_page_pte+0xa5c/0xb90
[  421.083613][ T7807]  ? inode_to_bdi+0x6d/0x100
[  421.083644][ T7807]  shmem_write_begin+0xf4/0x270
[  421.083671][ T7807]  generic_perform_write+0x330/0x960
[  421.083706][ T7807]  ? __cfi_generic_perform_write+0x10/0x10
[  421.083738][ T7807]  ? down_write+0xe9/0x2a0
[  421.083765][ T7807]  ? file_update_time+0xa3/0x220
[  421.083796][ T7807]  shmem_file_write_iter+0x105/0x130
[  421.083826][ T7807]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  421.083856][ T7807]  __kernel_write_iter+0x395/0x830
[  421.083879][ T7807]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  421.083909][ T7807]  ? __cfi___kernel_write_iter+0x10/0x10
[  421.083937][ T7807]  ? get_dump_page+0x160/0x220
[  421.083965][ T7807]  ? __asan_memset+0x39/0x50
[  421.083997][ T7807]  ? iov_iter_bvec+0xc0/0x180
[  421.084024][ T7807]  dump_user_range+0xb06/0xdf0
[  421.084047][ T7807]  ? __cfi_dump_emit+0x10/0x10
[  421.084081][ T7807]  ? __cfi_dump_user_range+0x10/0x10
[  421.084103][ T7807]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  421.084139][ T7807]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  421.084174][ T7807]  elf_core_dump+0x2cd9/0x3810
[  421.084204][ T7807]  ? __cfi_elf_core_dump+0x10/0x10
[  421.084239][ T7807]  ? dump_interrupted+0xf0/0xf0
[  421.084271][ T7807]  ? filp_open+0x182/0x1d0
[  421.084300][ T7807]  ? 0xffffffffff600000
[  421.084318][ T7807]  do_coredump+0x1bf7/0x2bd0
[  421.084353][ T7807]  ? __cfi_do_coredump+0x10/0x10
[  421.084385][ T7807]  ? asm_exc_page_fault+0x2b/0x30
[  421.084418][ T7807]  ? __kasan_slab_free+0x6a/0x80
[  421.084442][ T7807]  ? kmem_cache_free+0x1c1/0x510
[  421.084476][ T7807]  ? get_signal+0xa75/0x14f0
[  421.084505][ T7807]  get_signal+0x11fd/0x14f0
[  421.084536][ T7807]  arch_do_signal_or_restart+0x96/0x720
[  421.084572][ T7807]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  421.084611][ T7807]  irqentry_exit_to_user_mode+0x4e/0xb0
[  421.084638][ T7807]  irqentry_exit+0x16/0x60
[  421.084663][ T7807]  exc_page_fault+0x66/0xc0
[  421.084698][ T7807]  asm_exc_page_fault+0x2b/0x30
[  421.084721][ T7807] RIP: 0033:0x7fb14698ebf1
[  421.084739][ T7807] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  421.084758][ T7807] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  421.084779][ T7807] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  421.084795][ T7807] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  421.084811][ T7807] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  421.084825][ T7807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  421.084839][ T7807] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  421.084859][ T7807]  </TASK>
[  421.084868][ T7807] memory: usage 305104kB, limit 307200kB, failcnt 42501
[  421.712597][ T7807] memory+swap: usage 431712kB, limit 9007199254740988kB, failcnt 0
[  421.720540][ T7807] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  421.791861][ T7807] Memory cgroup stats for /syz0:
[  421.792023][ T7807] cache 314257408
[  421.800851][ T7807] rss 221184
[  421.804207][ T7807] rss_huge 0
[  421.807418][ T7807] shmem 314253312
[  421.811054][ T7807] mapped_file 0
[  421.814537][ T7807] dirty 0
[  421.817475][ T7807] writeback 0
[  421.820748][ T7807] workingset_refault_anon 0
[  421.825270][ T7807] workingset_refault_file 2882
[  421.830035][ T7807] swap 127901696
[  421.833594][ T7807] swapcached 94208
[  421.837321][ T7807] pgpgin 559265
[  421.840765][ T7807] pgpgout 482976
[  421.844338][ T7807] pgfault 205362
[  421.847887][ T7807] pgmajfault 1504
[  421.851517][ T7807] inactive_anon 299556864
[  421.856040][ T7807] active_anon 15011840
[  421.860110][ T7807] inactive_file 4096
[  421.864031][ T7807] active_file 0
[  421.867491][ T7807] unevictable 0
[  421.870935][ T7807] hierarchical_memory_limit 314572800
[  421.876347][ T7807] hierarchical_memsw_limit 9223372036854771712
[  421.882500][ T7807] total_cache 314257408
[  421.886675][ T7807] total_rss 221184
[  421.890383][ T7807] total_rss_huge 0
[  421.894116][ T7807] total_shmem 314253312
[  421.898270][ T7807] total_mapped_file 0
[  421.902238][ T7807] total_dirty 0
[  421.905895][ T7807] total_writeback 0
[  421.909718][ T7807] total_workingset_refault_anon 0
[  421.914760][ T7807] total_workingset_refault_file 2882
[  421.920050][ T7807] total_swap 127901696
[  421.924141][ T7807] total_swapcached 94208
[  421.928380][ T7807] total_pgpgin 559265
[  421.932348][ T7807] total_pgpgout 482976
[  421.936430][ T7807] total_pgfault 205362
[  421.940494][ T7807] total_pgmajfault 1504
[  421.944669][ T7807] total_inactive_anon 299556864
[  421.949518][ T7807] total_active_anon 15011840
[  421.954128][ T7807] total_inactive_file 4096
[  421.958544][ T7807] total_active_file 0
[  421.962545][ T7807] total_unevictable 0
[  421.966524][ T7807] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7808,uid=0
[  421.981380][ T7807] Memory cgroup out of memory: Killed process 7808 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:52736kB, shmem-rss:0kB, UID:0 pgtables:168kB oom_score_adj:1000
[  422.099408][ T7811] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  422.150162][ T7811] CPU: 0 UID: 0 PID: 7811 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  422.150200][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  422.150219][ T7811] Call Trace:
[  422.150227][ T7811]  <TASK>
[  422.150236][ T7811]  __dump_stack+0x21/0x30
[  422.150270][ T7811]  dump_stack_lvl+0x10c/0x190
[  422.150299][ T7811]  ? __cfi_dump_stack_lvl+0x10/0x10
[  422.150327][ T7811]  ? ___ratelimit+0x3f7/0x5a0
[  422.150361][ T7811]  dump_stack+0x19/0x20
[  422.150388][ T7811]  dump_header+0xd7/0x490
[  422.150410][ T7811]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  422.150439][ T7811]  oom_kill_process+0x4c0/0x7e0
[  422.150464][ T7811]  ? sched_clock_cpu+0x75/0x400
[  422.150494][ T7811]  out_of_memory+0x7ee/0xbd0
[  422.150520][ T7811]  ? __cfi_out_of_memory+0x10/0x10
[  422.150544][ T7811]  ? mutex_lock_killable+0x92/0x1c0
[  422.150567][ T7811]  ? __cfi_mutex_lock_killable+0x10/0x10
[  422.150591][ T7811]  mem_cgroup_out_of_memory+0x279/0x350
[  422.150613][ T7811]  ? drain_obj_stock+0xed0/0xed0
[  422.150636][ T7811]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  422.150657][ T7811]  try_charge_memcg+0x8f7/0xde0
[  422.150688][ T7811]  ? __cfi_try_charge_memcg+0x10/0x10
[  422.150717][ T7811]  ? __alloc_pages_noprof+0x31f/0x7b0
[  422.150746][ T7811]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  422.150773][ T7811]  ? __folio_batch_add_and_move+0x2ab/0x370
[  422.150800][ T7811]  __mem_cgroup_charge+0xf6/0x410
[  422.150832][ T7811]  ? _raw_spin_lock+0x8c/0x120
[  422.150860][ T7811]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  422.150894][ T7811]  shmem_alloc_and_add_folio+0x86d/0x1050
[  422.150919][ T7811]  ? asm_common_interrupt+0x2b/0x40
[  422.150955][ T7811]  ? put_swap_device+0x130/0x130
[  422.150978][ T7811]  ? shmem_huge_global_enabled+0x2da/0x360
[  422.151000][ T7811]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  422.151021][ T7811]  ? __kasan_check_write+0x18/0x20
[  422.151050][ T7811]  ? _raw_spin_lock+0x8c/0x120
[  422.151077][ T7811]  shmem_get_folio_gfp+0x5f0/0x1380
[  422.151100][ T7811]  ? shmem_get_folio+0xc0/0xc0
[  422.151126][ T7811]  ? follow_page_pte+0xa5c/0xb90
[  422.151152][ T7811]  ? inode_to_bdi+0x6d/0x100
[  422.151179][ T7811]  shmem_write_begin+0xf4/0x270
[  422.151202][ T7811]  generic_perform_write+0x330/0x960
[  422.151233][ T7811]  ? __cfi_generic_perform_write+0x10/0x10
[  422.151260][ T7811]  ? down_write+0xe9/0x2a0
[  422.151284][ T7811]  ? file_update_time+0xa3/0x220
[  422.151311][ T7811]  shmem_file_write_iter+0x105/0x130
[  422.151338][ T7811]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  422.151364][ T7811]  __kernel_write_iter+0x395/0x830
[  422.151383][ T7811]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  422.151410][ T7811]  ? __cfi___kernel_write_iter+0x10/0x10
[  422.151429][ T7811]  ? get_dump_page+0x160/0x220
[  422.151454][ T7811]  ? __asan_memset+0x39/0x50
[  422.151482][ T7811]  ? iov_iter_bvec+0xc0/0x180
[  422.151505][ T7811]  dump_user_range+0xb06/0xdf0
[  422.151523][ T7811]  ? __cfi_dump_emit+0x10/0x10
[  422.151548][ T7811]  ? __cfi_dump_user_range+0x10/0x10
[  422.151564][ T7811]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  422.151590][ T7811]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  422.151616][ T7811]  elf_core_dump+0x2cd9/0x3810
[  422.151649][ T7811]  ? __cfi_elf_core_dump+0x10/0x10
[  422.151675][ T7811]  ? dump_interrupted+0xf0/0xf0
[  422.151699][ T7811]  ? filp_open+0x182/0x1d0
[  422.151721][ T7811]  ? 0xffffffffff600000
[  422.151735][ T7811]  do_coredump+0x1bf7/0x2bd0
[  422.151762][ T7811]  ? __cfi_do_coredump+0x10/0x10
[  422.151786][ T7811]  ? asm_exc_page_fault+0x2b/0x30
[  422.151810][ T7811]  ? __kasan_slab_free+0x6a/0x80
[  422.151827][ T7811]  ? kmem_cache_free+0x1c1/0x510
[  422.151853][ T7811]  ? get_signal+0xa75/0x14f0
[  422.151875][ T7811]  get_signal+0x11fd/0x14f0
[  422.151899][ T7811]  arch_do_signal_or_restart+0x96/0x720
[  422.151926][ T7811]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  422.151954][ T7811]  irqentry_exit_to_user_mode+0x4e/0xb0
[  422.151974][ T7811]  irqentry_exit+0x16/0x60
[  422.151992][ T7811]  exc_page_fault+0x66/0xc0
[  422.152010][ T7811]  asm_exc_page_fault+0x2b/0x30
[  422.152027][ T7811] RIP: 0033:0x7fb14698ebf1
[  422.152041][ T7811] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  422.152055][ T7811] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  422.152072][ T7811] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  422.152085][ T7811] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  422.152097][ T7811] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  422.152108][ T7811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  422.152125][ T7811] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  422.152140][ T7811]  </TASK>
[  422.262619][ T7811] memory: usage 286884kB, limit 307200kB, failcnt 43681
[  422.623594][ T7811] memory+swap: usage 431984kB, limit 9007199254740988kB, failcnt 0
[  422.632499][ T7811] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  422.639422][ T7811] Memory cgroup stats for /syz0:
[  422.639572][ T7811] cache 314351616
[  422.648178][ T7811] rss 221184
[  422.651381][ T7811] rss_huge 0
[  422.654619][ T7811] shmem 314343424
[  422.658307][ T7811] mapped_file 0
[  422.661780][ T7811] dirty 0
[  422.664788][ T7811] writeback 0
[  422.668089][ T7811] workingset_refault_anon 0
[  422.672623][ T7811] workingset_refault_file 3906
[  422.677388][ T7811] swap 127995904
[  422.680933][ T7811] swapcached 0
[  422.684328][ T7811] pgpgin 568374
[  422.687789][ T7811] pgpgout 492085
[  422.691345][ T7811] pgfault 205881
[  422.694926][ T7811] pgmajfault 1512
[  422.698569][ T7811] inactive_anon 200769536
[  422.702908][ T7811] active_anon 113795072
[  422.707083][ T7811] inactive_file 8192
[  422.710980][ T7811] active_file 0
[  422.714466][ T7811] unevictable 0
[  422.717932][ T7811] hierarchical_memory_limit 314572800
[  422.723317][ T7811] hierarchical_memsw_limit 9223372036854771712
[  422.729477][ T7811] total_cache 314351616
[  422.733648][ T7811] total_rss 221184
[  422.737370][ T7811] total_rss_huge 0
[  422.741078][ T7811] total_shmem 314343424
[  422.745256][ T7811] total_mapped_file 0
[  422.749244][ T7811] total_dirty 0
[  422.752714][ T7811] total_writeback 0
[  422.756527][ T7811] total_workingset_refault_anon 0
[  422.761537][ T7811] total_workingset_refault_file 3906
[  422.766841][ T7811] total_swap 127995904
[  422.770912][ T7811] total_swapcached 0
[  422.774815][ T7811] total_pgpgin 568374
[  422.778804][ T7811] total_pgpgout 492085
[  422.782954][ T7811] total_pgfault 205881
[  422.787033][ T7811] total_pgmajfault 1512
[  422.791179][ T7811] total_inactive_anon 200769536
[  422.796047][ T7811] total_active_anon 113795072
[  422.800729][ T7811] total_inactive_file 8192
[  422.805179][ T7811] total_active_file 0
[  422.809164][ T7811] total_unevictable 0
[  422.813150][ T7811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7796,uid=0
[  422.828054][ T7811] Memory cgroup out of memory: Killed process 7796 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53632kB, shmem-rss:0kB, UID:0 pgtables:184kB oom_score_adj:1000
[  423.006103][ T7805] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  423.080110][ T7805] CPU: 1 UID: 0 PID: 7805 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  423.080149][ T7805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  423.080166][ T7805] Call Trace:
[  423.080174][ T7805]  <TASK>
[  423.080184][ T7805]  __dump_stack+0x21/0x30
[  423.080222][ T7805]  dump_stack_lvl+0x10c/0x190
[  423.080253][ T7805]  ? __cfi_dump_stack_lvl+0x10/0x10
[  423.080285][ T7805]  ? ___ratelimit+0x3f7/0x5a0
[  423.080321][ T7805]  dump_stack+0x19/0x20
[  423.080351][ T7805]  dump_header+0xd7/0x490
[  423.080375][ T7805]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  423.080406][ T7805]  oom_kill_process+0x4c0/0x7e0
[  423.080434][ T7805]  ? sched_clock_cpu+0x75/0x400
[  423.080467][ T7805]  out_of_memory+0x7ee/0xbd0
[  423.080494][ T7805]  ? __cfi_out_of_memory+0x10/0x10
[  423.080520][ T7805]  ? mutex_lock_killable+0x92/0x1c0
[  423.080546][ T7805]  ? __cfi_mutex_lock_killable+0x10/0x10
[  423.080573][ T7805]  mem_cgroup_out_of_memory+0x279/0x350
[  423.080598][ T7805]  ? drain_obj_stock+0xed0/0xed0
[  423.080622][ T7805]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  423.080645][ T7805]  try_charge_memcg+0x8f7/0xde0
[  423.080689][ T7805]  ? __cfi_try_charge_memcg+0x10/0x10
[  423.080725][ T7805]  ? __alloc_pages_noprof+0x31f/0x7b0
[  423.080782][ T7805]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  423.080813][ T7805]  ? __folio_batch_add_and_move+0x2ab/0x370
[  423.080842][ T7805]  __mem_cgroup_charge+0xf6/0x410
[  423.080876][ T7805]  ? _raw_spin_lock+0x8c/0x120
[  423.080907][ T7805]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  423.080944][ T7805]  shmem_alloc_and_add_folio+0x86d/0x1050
[  423.080975][ T7805]  ? put_swap_device+0x130/0x130
[  423.081014][ T7805]  ? shmem_huge_global_enabled+0x2da/0x360
[  423.081039][ T7805]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  423.081083][ T7805]  ? __kasan_check_write+0x18/0x20
[  423.081122][ T7805]  ? _raw_spin_lock+0x8c/0x120
[  423.081154][ T7805]  shmem_get_folio_gfp+0x5f0/0x1380
[  423.081181][ T7805]  ? shmem_get_folio+0xc0/0xc0
[  423.081204][ T7805]  ? follow_page_pte+0xa5c/0xb90
[  423.081234][ T7805]  ? inode_to_bdi+0x6d/0x100
[  423.081265][ T7805]  shmem_write_begin+0xf4/0x270
[  423.081292][ T7805]  generic_perform_write+0x330/0x960
[  423.081328][ T7805]  ? __cfi_generic_perform_write+0x10/0x10
[  423.081360][ T7805]  ? down_write+0xe9/0x2a0
[  423.081387][ T7805]  ? file_update_time+0xa3/0x220
[  423.081419][ T7805]  shmem_file_write_iter+0x105/0x130
[  423.081449][ T7805]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  423.081479][ T7805]  __kernel_write_iter+0x395/0x830
[  423.081500][ T7805]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  423.081532][ T7805]  ? __cfi___kernel_write_iter+0x10/0x10
[  423.081553][ T7805]  ? get_dump_page+0x160/0x220
[  423.081582][ T7805]  ? __asan_memset+0x39/0x50
[  423.081615][ T7805]  ? iov_iter_bvec+0xc0/0x180
[  423.081641][ T7805]  dump_user_range+0xb06/0xdf0
[  423.081666][ T7805]  ? __cfi_dump_emit+0x10/0x10
[  423.081701][ T7805]  ? __cfi_dump_user_range+0x10/0x10
[  423.081724][ T7805]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  423.081758][ T7805]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  423.081803][ T7805]  elf_core_dump+0x2cd9/0x3810
[  423.081836][ T7805]  ? __cfi_elf_core_dump+0x10/0x10
[  423.081872][ T7805]  ? dump_interrupted+0xf0/0xf0
[  423.081907][ T7805]  ? filp_open+0x182/0x1d0
[  423.081938][ T7805]  ? 0xffffffffff600000
[  423.081958][ T7805]  do_coredump+0x1bf7/0x2bd0
[  423.081996][ T7805]  ? __cfi_do_coredump+0x10/0x10
[  423.082029][ T7805]  ? asm_exc_page_fault+0x2b/0x30
[  423.082064][ T7805]  ? __kasan_slab_free+0x6a/0x80
[  423.082088][ T7805]  ? kmem_cache_free+0x1c1/0x510
[  423.082123][ T7805]  ? get_signal+0xa75/0x14f0
[  423.082153][ T7805]  get_signal+0x11fd/0x14f0
[  423.082187][ T7805]  arch_do_signal_or_restart+0x96/0x720
[  423.082224][ T7805]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  423.082265][ T7805]  irqentry_exit_to_user_mode+0x4e/0xb0
[  423.082294][ T7805]  irqentry_exit+0x16/0x60
[  423.082320][ T7805]  exc_page_fault+0x66/0xc0
[  423.082346][ T7805]  asm_exc_page_fault+0x2b/0x30
[  423.082370][ T7805] RIP: 0033:0x7fb14698ebf1
[  423.082389][ T7805] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  423.082410][ T7805] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  423.082432][ T7805] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  423.082450][ T7805] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  423.082467][ T7805] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  423.082483][ T7805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.082499][ T7805] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  423.082519][ T7805]  </TASK>
[  423.562775][ T7805] memory: usage 301448kB, limit 307200kB, failcnt 45360
[  423.698748][ T7805] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[  423.735258][ T7805] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  423.742165][ T7805] Memory cgroup stats for /syz0:
[  423.742318][ T7805] cache 314351616
[  423.751205][ T7805] rss 221184
[  423.754575][ T7805] rss_huge 0
[  423.757787][ T7805] shmem 314257408
[  423.761431][ T7805] mapped_file 0
[  423.765195][ T7805] dirty 0
[  423.768153][ T7805] writeback 0
[  423.771448][ T7805] workingset_refault_anon 0
[  423.776249][ T7805] workingset_refault_file 6387
[  423.781043][ T7805] swap 127995904
[  423.784808][ T7805] swapcached 0
[  423.788206][ T7805] pgpgin 581249
[  423.791669][ T7805] pgpgout 504960
[  423.795284][ T7805] pgfault 206485
[  423.798862][ T7805] pgmajfault 1538
[  423.802559][ T7805] inactive_anon 267440128
[  423.806909][ T7805] active_anon 47038464
[  423.810969][ T7805] inactive_file 0
[  423.814625][ T7805] active_file 0
[  423.818088][ T7805] unevictable 0
[  423.821538][ T7805] hierarchical_memory_limit 314572800
[  423.826934][ T7805] hierarchical_memsw_limit 9223372036854771712
[  423.833149][ T7805] total_cache 314351616
[  423.837365][ T7805] total_rss 221184
[  423.841150][ T7805] total_rss_huge 0
[  423.844906][ T7805] total_shmem 314257408
[  423.849064][ T7805] total_mapped_file 0
[  423.853059][ T7805] total_dirty 0
[  423.856522][ T7805] total_writeback 0
[  423.860317][ T7805] total_workingset_refault_anon 0
[  423.865364][ T7805] total_workingset_refault_file 6387
[  423.870656][ T7805] total_swap 127995904
[  423.874741][ T7805] total_swapcached 0
[  423.878646][ T7805] total_pgpgin 581249
[  423.882653][ T7805] total_pgpgout 504960
[  423.886729][ T7805] total_pgfault 206485
[  423.890786][ T7805] total_pgmajfault 1538
[  423.894955][ T7805] total_inactive_anon 267440128
[  423.899811][ T7805] total_active_anon 47038464
[  423.904419][ T7805] total_inactive_file 0
[  423.908576][ T7805] total_active_file 0
[  423.912586][ T7805] total_unevictable 0
[  423.916605][ T7805] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7844,uid=0
[  423.931473][ T7805] Memory cgroup out of memory: Killed process 7844 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53472kB, shmem-rss:0kB, UID:0 pgtables:204kB oom_score_adj:1000
[  424.123804][ T7805] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  424.214777][ T7805] CPU: 0 UID: 0 PID: 7805 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  424.214818][ T7805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  424.214834][ T7805] Call Trace:
[  424.214842][ T7805]  <TASK>
[  424.214853][ T7805]  __dump_stack+0x21/0x30
[  424.214889][ T7805]  dump_stack_lvl+0x10c/0x190
[  424.214920][ T7805]  ? __cfi_dump_stack_lvl+0x10/0x10
[  424.214951][ T7805]  ? ___ratelimit+0x3f7/0x5a0
[  424.214988][ T7805]  dump_stack+0x19/0x20
[  424.215017][ T7805]  dump_header+0xd7/0x490
[  424.215041][ T7805]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  424.215070][ T7805]  oom_kill_process+0x4c0/0x7e0
[  424.215096][ T7805]  ? sched_clock_cpu+0x75/0x400
[  424.215128][ T7805]  out_of_memory+0x7ee/0xbd0
[  424.215172][ T7805]  ? __cfi_out_of_memory+0x10/0x10
[  424.215199][ T7805]  ? mutex_lock_killable+0x92/0x1c0
[  424.215225][ T7805]  ? __cfi_mutex_lock_killable+0x10/0x10
[  424.215252][ T7805]  mem_cgroup_out_of_memory+0x279/0x350
[  424.215277][ T7805]  ? drain_obj_stock+0xed0/0xed0
[  424.215301][ T7805]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  424.215325][ T7805]  try_charge_memcg+0x8f7/0xde0
[  424.215358][ T7805]  ? __cfi_try_charge_memcg+0x10/0x10
[  424.215389][ T7805]  ? __alloc_pages_noprof+0x31f/0x7b0
[  424.215420][ T7805]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  424.215450][ T7805]  ? __folio_batch_add_and_move+0x2ab/0x370
[  424.215480][ T7805]  __mem_cgroup_charge+0xf6/0x410
[  424.215515][ T7805]  ? _raw_spin_lock+0x8c/0x120
[  424.215546][ T7805]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  424.215583][ T7805]  shmem_alloc_and_add_folio+0x86d/0x1050
[  424.215613][ T7805]  ? put_swap_device+0x130/0x130
[  424.215639][ T7805]  ? shmem_huge_global_enabled+0x2da/0x360
[  424.215671][ T7805]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  424.215697][ T7805]  ? __kasan_check_write+0x18/0x20
[  424.215731][ T7805]  ? _raw_spin_lock+0x8c/0x120
[  424.215763][ T7805]  shmem_get_folio_gfp+0x5f0/0x1380
[  424.215790][ T7805]  ? shmem_get_folio+0xc0/0xc0
[  424.215824][ T7805]  ? follow_page_pte+0xa5c/0xb90
[  424.215854][ T7805]  ? inode_to_bdi+0x6d/0x100
[  424.215885][ T7805]  shmem_write_begin+0xf4/0x270
[  424.215913][ T7805]  generic_perform_write+0x330/0x960
[  424.215950][ T7805]  ? __cfi_generic_perform_write+0x10/0x10
[  424.215983][ T7805]  ? down_write+0xe9/0x2a0
[  424.216011][ T7805]  ? file_update_time+0xa3/0x220
[  424.216044][ T7805]  shmem_file_write_iter+0x105/0x130
[  424.216075][ T7805]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  424.216106][ T7805]  __kernel_write_iter+0x395/0x830
[  424.216129][ T7805]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  424.216159][ T7805]  ? __cfi___kernel_write_iter+0x10/0x10
[  424.216181][ T7805]  ? get_dump_page+0x160/0x220
[  424.216210][ T7805]  ? __asan_memset+0x39/0x50
[  424.216243][ T7805]  ? iov_iter_bvec+0xc0/0x180
[  424.216270][ T7805]  dump_user_range+0xb06/0xdf0
[  424.216294][ T7805]  ? __cfi_dump_emit+0x10/0x10
[  424.216330][ T7805]  ? __cfi_dump_user_range+0x10/0x10
[  424.216353][ T7805]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  424.216400][ T7805]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  424.216436][ T7805]  elf_core_dump+0x2cd9/0x3810
[  424.216467][ T7805]  ? __cfi_elf_core_dump+0x10/0x10
[  424.216502][ T7805]  ? dump_interrupted+0xf0/0xf0
[  424.216535][ T7805]  ? filp_open+0x182/0x1d0
[  424.216564][ T7805]  ? 0xffffffffff600000
[  424.216583][ T7805]  do_coredump+0x1bf7/0x2bd0
[  424.216619][ T7805]  ? __cfi_do_coredump+0x10/0x10
[  424.216651][ T7805]  ? asm_exc_page_fault+0x2b/0x30
[  424.216694][ T7805]  ? __kasan_slab_free+0x6a/0x80
[  424.216719][ T7805]  ? kmem_cache_free+0x1c1/0x510
[  424.216753][ T7805]  ? get_signal+0xa75/0x14f0
[  424.216782][ T7805]  get_signal+0x11fd/0x14f0
[  424.216814][ T7805]  arch_do_signal_or_restart+0x96/0x720
[  424.216850][ T7805]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  424.216889][ T7805]  irqentry_exit_to_user_mode+0x4e/0xb0
[  424.216971][ T7805]  irqentry_exit+0x16/0x60
[  424.217007][ T7805]  exc_page_fault+0x66/0xc0
[  424.217033][ T7805]  asm_exc_page_fault+0x2b/0x30
[  424.217055][ T7805] RIP: 0033:0x7fb14698ebf1
[  424.217075][ T7805] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  424.217095][ T7805] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  424.217117][ T7805] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  424.217135][ T7805] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  424.217151][ T7805] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  424.217166][ T7805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  424.217182][ T7805] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  424.217202][ T7805]  </TASK>
[  424.762552][ T7805] memory: usage 299328kB, limit 307200kB, failcnt 48491
[  424.769543][ T7805] memory+swap: usage 424216kB, limit 9007199254740988kB, failcnt 0
[  424.882649][ T7805] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  424.955411][ T7805] Memory cgroup stats for /syz0:
[  424.955584][ T7805] cache 314290176
[  425.065292][ T7805] rss 221184
[  425.068548][ T7805] rss_huge 0
[  425.071761][ T7805] shmem 312336384
[  425.113929][ T7805] mapped_file 0
[  425.117515][ T7805] dirty 0
[  425.120488][ T7805] writeback 61440
[  425.124155][ T7805] workingset_refault_anon 0
[  425.128669][ T7805] workingset_refault_file 10457
[  425.133570][ T7805] swap 127934464
[  425.137126][ T7805] swapcached 61440
[  425.140853][ T7805] pgpgin 595331
[  425.144360][ T7805] pgpgout 519042
[  425.147925][ T7805] pgfault 207194
[  425.151493][ T7805] pgmajfault 1560
[  425.155204][ T7805] inactive_anon 62173184
[  425.159456][ T7805] active_anon 250183680
[  425.163668][ T7805] inactive_file 258048
[  425.167751][ T7805] active_file 761856
[  425.171666][ T7805] unevictable 0
[  425.175181][ T7805] hierarchical_memory_limit 314572800
[  425.180566][ T7805] hierarchical_memsw_limit 9223372036854771712
[  425.186814][ T7805] total_cache 314290176
[  425.190987][ T7805] total_rss 221184
[  425.212629][ T7805] total_rss_huge 0
[  425.216423][ T7805] total_shmem 312336384
[  425.220591][ T7805] total_mapped_file 0
[  425.257231][ T7805] total_dirty 0
[  425.260745][ T7805] total_writeback 61440
[  425.265446][ T7805] total_workingset_refault_anon 0
[  425.270493][ T7805] total_workingset_refault_file 10457
[  425.275945][ T7805] total_swap 127934464
[  425.280026][ T7805] total_swapcached 61440
[  425.280367][   T48] r8152-cfgselector 1-1: USB disconnect, device number 14
[  425.284334][ T7805] total_pgpgin 595331
[  425.298011][ T7805] total_pgpgout 519042
[  425.302115][ T7805] total_pgfault 207194
[  425.315718][ T7805] total_pgmajfault 1560
[  425.320121][ T7805] total_inactive_anon 62173184
[  425.325231][ T7805] total_active_anon 250183680
[  425.329923][ T7805] total_inactive_file 258048
[  425.334729][ T7805] total_active_file 761856
[  425.339156][ T7805] total_unevictable 0
[  425.343370][ T7805] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7810,uid=0
[  425.358323][ T7805] Memory cgroup out of memory: Killed process 7810 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53648kB, shmem-rss:0kB, UID:0 pgtables:184kB oom_score_adj:1000
[  425.557009][ T7805] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  425.652569][ T7805] CPU: 0 UID: 0 PID: 7805 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  425.652618][ T7805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  425.652633][ T7805] Call Trace:
[  425.652642][ T7805]  <TASK>
[  425.652652][ T7805]  __dump_stack+0x21/0x30
[  425.652689][ T7805]  dump_stack_lvl+0x10c/0x190
[  425.652719][ T7805]  ? __cfi_dump_stack_lvl+0x10/0x10
[  425.652750][ T7805]  ? ___ratelimit+0x3f7/0x5a0
[  425.652787][ T7805]  dump_stack+0x19/0x20
[  425.652816][ T7805]  dump_header+0xd7/0x490
[  425.652839][ T7805]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  425.652871][ T7805]  oom_kill_process+0x4c0/0x7e0
[  425.652897][ T7805]  ? sched_clock_cpu+0x75/0x400
[  425.652929][ T7805]  out_of_memory+0x7ee/0xbd0
[  425.652956][ T7805]  ? __cfi_out_of_memory+0x10/0x10
[  425.652982][ T7805]  ? mutex_lock_killable+0x92/0x1c0
[  425.653007][ T7805]  ? __cfi_mutex_lock_killable+0x10/0x10
[  425.653033][ T7805]  mem_cgroup_out_of_memory+0x279/0x350
[  425.653057][ T7805]  ? drain_obj_stock+0xed0/0xed0
[  425.653081][ T7805]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  425.653103][ T7805]  try_charge_memcg+0x8f7/0xde0
[  425.653135][ T7805]  ? __cfi_try_charge_memcg+0x10/0x10
[  425.653166][ T7805]  ? __alloc_pages_noprof+0x31f/0x7b0
[  425.653196][ T7805]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  425.653226][ T7805]  ? __folio_batch_add_and_move+0x2ab/0x370
[  425.653255][ T7805]  __mem_cgroup_charge+0xf6/0x410
[  425.653288][ T7805]  ? _raw_spin_lock+0x8c/0x120
[  425.653318][ T7805]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  425.653354][ T7805]  shmem_alloc_and_add_folio+0x86d/0x1050
[  425.653384][ T7805]  ? put_swap_device+0x130/0x130
[  425.653410][ T7805]  ? shmem_huge_global_enabled+0x2da/0x360
[  425.653435][ T7805]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  425.653460][ T7805]  ? __kasan_check_write+0x18/0x20
[  425.653493][ T7805]  ? _raw_spin_lock+0x8c/0x120
[  425.653524][ T7805]  shmem_get_folio_gfp+0x5f0/0x1380
[  425.653551][ T7805]  ? shmem_get_folio+0xc0/0xc0
[  425.653573][ T7805]  ? follow_page_pte+0xa5c/0xb90
[  425.653609][ T7805]  ? inode_to_bdi+0x6d/0x100
[  425.653640][ T7805]  shmem_write_begin+0xf4/0x270
[  425.653667][ T7805]  generic_perform_write+0x330/0x960
[  425.653703][ T7805]  ? __cfi_generic_perform_write+0x10/0x10
[  425.653734][ T7805]  ? down_write+0xe9/0x2a0
[  425.653761][ T7805]  ? file_update_time+0xa3/0x220
[  425.653792][ T7805]  shmem_file_write_iter+0x105/0x130
[  425.653822][ T7805]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  425.653851][ T7805]  __kernel_write_iter+0x395/0x830
[  425.653874][ T7805]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  425.653904][ T7805]  ? __cfi___kernel_write_iter+0x10/0x10
[  425.653925][ T7805]  ? get_dump_page+0x160/0x220
[  425.653953][ T7805]  ? __asan_memset+0x39/0x50
[  425.653985][ T7805]  ? iov_iter_bvec+0xc0/0x180
[  425.654012][ T7805]  dump_user_range+0xb06/0xdf0
[  425.654035][ T7805]  ? __cfi_dump_emit+0x10/0x10
[  425.654070][ T7805]  ? __cfi_dump_user_range+0x10/0x10
[  425.654091][ T7805]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  425.654126][ T7805]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  425.654161][ T7805]  elf_core_dump+0x2cd9/0x3810
[  425.654191][ T7805]  ? __cfi_elf_core_dump+0x10/0x10
[  425.654224][ T7805]  ? dump_interrupted+0xf0/0xf0
[  425.654256][ T7805]  ? filp_open+0x182/0x1d0
[  425.654285][ T7805]  ? 0xffffffffff600000
[  425.654305][ T7805]  do_coredump+0x1bf7/0x2bd0
[  425.654342][ T7805]  ? __cfi_do_coredump+0x10/0x10
[  425.654375][ T7805]  ? asm_exc_page_fault+0x2b/0x30
[  425.654409][ T7805]  ? __kasan_slab_free+0x6a/0x80
[  425.654433][ T7805]  ? kmem_cache_free+0x1c1/0x510
[  425.654468][ T7805]  ? get_signal+0xa75/0x14f0
[  425.654497][ T7805]  get_signal+0x11fd/0x14f0
[  425.654529][ T7805]  arch_do_signal_or_restart+0x96/0x720
[  425.654565][ T7805]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  425.654609][ T7805]  irqentry_exit_to_user_mode+0x4e/0xb0
[  425.654637][ T7805]  irqentry_exit+0x16/0x60
[  425.654662][ T7805]  exc_page_fault+0x66/0xc0
[  425.654685][ T7805]  asm_exc_page_fault+0x2b/0x30
[  425.654708][ T7805] RIP: 0033:0x7fb14698ebf1
[  425.654726][ T7805] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  425.654746][ T7805] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  425.654768][ T7805] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  425.654786][ T7805] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  425.654801][ T7805] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  425.654817][ T7805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  425.654833][ T7805] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  425.654854][ T7805]  </TASK>
[  425.654863][ T7805] memory: usage 301444kB, limit 307200kB, failcnt 51257
[  426.120273][ T7805] memory+swap: usage 432120kB, limit 9007199254740988kB, failcnt 0
[  426.128256][ T7805] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  426.135215][ T7805] Memory cgroup stats for /syz0:
[  426.135383][ T7805] cache 314277888
[  426.144858][ T7805] rss 61440
[  426.148000][ T7805] rss_huge 0
[  426.151209][ T7805] shmem 307843072
[  426.162558][ T7805] mapped_file 3506176
[  426.166692][ T7805] dirty 0
[  426.169653][ T7805] writeback 0
[  426.180127][ T7805] workingset_refault_anon 0
[  426.202561][ T7805] workingset_refault_file 15192
[  426.207462][ T7805] swap 127995904
[  426.211020][ T7805] swapcached 0
[  426.240980][ T7805] pgpgin 607820
[  426.262632][ T7805] pgpgout 531545
[  426.266237][ T7805] pgfault 207784
[  426.269818][ T7805] pgmajfault 1604
[  426.296087][ T7805] inactive_anon 250212352
[  426.300472][ T7805] active_anon 57561088
[  426.339350][ T7805] inactive_file 2682880
[  426.364993][ T7805] active_file 3313664
[  426.369029][ T7805] unevictable 0
[  426.372500][ T7805] hierarchical_memory_limit 314572800
[  426.389975][ T7805] hierarchical_memsw_limit 9223372036854771712
[  426.396224][ T7805] total_cache 314277888
[  426.400403][ T7805] total_rss 61440
[  426.404068][ T7805] total_rss_huge 0
[  426.407792][ T7805] total_shmem 307843072
[  426.411938][ T7805] total_mapped_file 3506176
[  426.416463][ T7805] total_dirty 0
[  426.419928][ T7805] total_writeback 0
[  426.423756][ T7805] total_workingset_refault_anon 0
[  426.428789][ T7805] total_workingset_refault_file 15192
[  426.434185][ T7805] total_swap 127995904
[  426.438258][ T7805] total_swapcached 0
[  426.442141][ T7805] total_pgpgin 607820
[  426.446145][ T7805] total_pgpgout 531545
[  426.450215][ T7805] total_pgfault 207784
[  426.454308][ T7805] total_pgmajfault 1604
[  426.458467][ T7805] total_inactive_anon 250212352
[  426.463391][ T7805] total_active_anon 57561088
[  426.467989][ T7805] total_inactive_file 2682880
[  426.472818][ T7805] total_active_file 3313664
[  426.477330][ T7805] total_unevictable 0
[  426.481301][ T7805] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7835,uid=0
[  426.496235][ T7805] Memory cgroup out of memory: Killed process 7835 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53712kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000
[  426.675447][ T7861] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  426.704626][ T7861] CPU: 1 UID: 0 PID: 7861 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  426.704669][ T7861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  426.704685][ T7861] Call Trace:
[  426.704693][ T7861]  <TASK>
[  426.704703][ T7861]  __dump_stack+0x21/0x30
[  426.704739][ T7861]  dump_stack_lvl+0x10c/0x190
[  426.704770][ T7861]  ? __cfi_dump_stack_lvl+0x10/0x10
[  426.704801][ T7861]  ? ___ratelimit+0x3f7/0x5a0
[  426.704838][ T7861]  dump_stack+0x19/0x20
[  426.704868][ T7861]  dump_header+0xd7/0x490
[  426.704891][ T7861]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  426.704922][ T7861]  oom_kill_process+0x4c0/0x7e0
[  426.704950][ T7861]  ? sched_clock_cpu+0x75/0x400
[  426.704979][ T7861]  out_of_memory+0x7ee/0xbd0
[  426.705001][ T7861]  ? __cfi_out_of_memory+0x10/0x10
[  426.705023][ T7861]  ? mutex_lock_killable+0x92/0x1c0
[  426.705045][ T7861]  ? __cfi_mutex_lock_killable+0x10/0x10
[  426.705068][ T7861]  mem_cgroup_out_of_memory+0x279/0x350
[  426.705088][ T7861]  ? drain_obj_stock+0xed0/0xed0
[  426.705138][ T7861]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  426.705158][ T7861]  try_charge_memcg+0x8f7/0xde0
[  426.705186][ T7861]  ? __cfi_try_charge_memcg+0x10/0x10
[  426.705214][ T7861]  ? __alloc_pages_noprof+0x31f/0x7b0
[  426.705240][ T7861]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  426.705265][ T7861]  ? __folio_batch_add_and_move+0x2ab/0x370
[  426.705291][ T7861]  __mem_cgroup_charge+0xf6/0x410
[  426.705320][ T7861]  ? _raw_spin_lock+0x8c/0x120
[  426.705346][ T7861]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  426.705378][ T7861]  shmem_alloc_and_add_folio+0x86d/0x1050
[  426.705403][ T7861]  ? put_swap_device+0x130/0x130
[  426.705426][ T7861]  ? shmem_huge_global_enabled+0x2da/0x360
[  426.705448][ T7861]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  426.705469][ T7861]  ? __kasan_check_write+0x18/0x20
[  426.705505][ T7861]  ? _raw_spin_lock+0x8c/0x120
[  426.705531][ T7861]  shmem_get_folio_gfp+0x5f0/0x1380
[  426.705554][ T7861]  ? shmem_get_folio+0xc0/0xc0
[  426.705573][ T7861]  ? inode_maybe_inc_iversion+0x17d/0x1e0
[  426.705601][ T7861]  ? __cfi_inode_maybe_inc_iversion+0x10/0x10
[  426.705629][ T7861]  ? inode_to_bdi+0x6d/0x100
[  426.705656][ T7861]  shmem_write_begin+0xf4/0x270
[  426.705679][ T7861]  generic_perform_write+0x330/0x960
[  426.705709][ T7861]  ? __cfi_generic_perform_write+0x10/0x10
[  426.705737][ T7861]  ? down_write+0xe9/0x2a0
[  426.705760][ T7861]  ? mnt_get_write_access_file+0x1af/0x3b0
[  426.705787][ T7861]  ? mnt_put_write_access_file+0xc2/0x100
[  426.705813][ T7861]  ? file_update_time+0x1ef/0x220
[  426.705840][ T7861]  shmem_file_write_iter+0x105/0x130
[  426.705867][ T7861]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  426.705893][ T7861]  __kernel_write_iter+0x395/0x830
[  426.705912][ T7861]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  426.705938][ T7861]  ? __cfi___kernel_write_iter+0x10/0x10
[  426.705957][ T7861]  ? get_dump_page+0x160/0x220
[  426.705981][ T7861]  ? __asan_memset+0x39/0x50
[  426.706010][ T7861]  ? iov_iter_bvec+0xc0/0x180
[  426.706032][ T7861]  dump_user_range+0xb06/0xdf0
[  426.706053][ T7861]  ? __cfi_dump_emit+0x10/0x10
[  426.706083][ T7861]  ? __cfi_dump_user_range+0x10/0x10
[  426.706102][ T7861]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  426.706132][ T7861]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  426.706163][ T7861]  elf_core_dump+0x2cd9/0x3810
[  426.706190][ T7861]  ? __cfi_elf_core_dump+0x10/0x10
[  426.706220][ T7861]  ? dump_interrupted+0xf0/0xf0
[  426.706261][ T7861]  ? filp_open+0x182/0x1d0
[  426.706285][ T7861]  ? 0xffffffffff600000
[  426.706302][ T7861]  do_coredump+0x1bf7/0x2bd0
[  426.706333][ T7861]  ? __cfi_do_coredump+0x10/0x10
[  426.706361][ T7861]  ? asm_exc_page_fault+0x2b/0x30
[  426.706389][ T7861]  ? __kasan_slab_free+0x6a/0x80
[  426.706409][ T7861]  ? kmem_cache_free+0x1c1/0x510
[  426.706438][ T7861]  ? get_signal+0xa75/0x14f0
[  426.706475][ T7861]  get_signal+0x11fd/0x14f0
[  426.706507][ T7861]  arch_do_signal_or_restart+0x96/0x720
[  426.706537][ T7861]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  426.706570][ T7861]  irqentry_exit_to_user_mode+0x4e/0xb0
[  426.706593][ T7861]  irqentry_exit+0x16/0x60
[  426.706614][ T7861]  exc_page_fault+0x66/0xc0
[  426.706634][ T7861]  asm_exc_page_fault+0x2b/0x30
[  426.706653][ T7861] RIP: 0033:0x7fb14698ebf1
[  426.706670][ T7861] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  426.706687][ T7861] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  426.706705][ T7861] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  426.706720][ T7861] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  426.706734][ T7861] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  426.706749][ T7861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  426.706762][ T7861] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  426.706780][ T7861]  </TASK>
[  426.706788][ T7861] memory: usage 307200kB, limit 307200kB, failcnt 56386
[  427.189161][ T7861] memory+swap: usage 393052kB, limit 9007199254740988kB, failcnt 0
[  427.197309][ T7861] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  427.204205][ T7861] Memory cgroup stats for /syz0:
[  427.204342][ T7861] cache 282238976
[  427.212925][ T7861] rss 61440
[  427.216032][ T7861] rss_huge 0
[  427.219218][ T7861] shmem 282230784
[  427.222879][ T7861] mapped_file 0
[  427.226349][ T7861] dirty 0
[  427.229286][ T7861] writeback 0
[  427.232627][ T7861] workingset_refault_anon 0
[  427.237138][ T7861] workingset_refault_file 17131
[  427.241979][ T7861] swap 120184832
[  427.245563][ T7861] swapcached 0
[  427.248940][ T7861] pgpgin 611386
[  427.252393][ T7861] pgpgout 542976
[  427.256020][ T7861] pgfault 207905
[  427.259579][ T7861] pgmajfault 1617
[  427.263262][ T7861] inactive_anon 48594944
[  427.267512][ T7861] active_anon 233697280
[  427.271674][ T7861] inactive_file 8192
[  427.275599][ T7861] active_file 0
[  427.279068][ T7861] unevictable 0
[  427.282512][ T7861] hierarchical_memory_limit 314572800
[  427.287904][ T7861] hierarchical_memsw_limit 9223372036854771712
[  427.294080][ T7861] total_cache 282238976
[  427.298234][ T7861] total_rss 61440
[  427.301854][ T7861] total_rss_huge 0
[  427.305596][ T7861] total_shmem 282230784
[  427.309754][ T7861] total_mapped_file 0
[  427.313755][ T7861] total_dirty 0
[  427.317216][ T7861] total_writeback 0
[  427.321008][ T7861] total_workingset_refault_anon 0
[  427.326048][ T7861] total_workingset_refault_file 17131
[  427.331425][ T7861] total_swap 120184832
[  427.335556][ T7861] total_swapcached 0
[  427.339472][ T7861] total_pgpgin 611386
[  427.343494][ T7861] total_pgpgout 542976
[  427.347568][ T7861] total_pgfault 207905
[  427.351626][ T7861] total_pgmajfault 1617
[  427.355818][ T7861] total_inactive_anon 48594944
[  427.360599][ T7861] total_active_anon 233697280
[  427.365330][ T7861] total_inactive_file 8192
[  427.369765][ T7861] total_active_file 0
[  427.373787][ T7861] total_unevictable 0
[  427.377776][ T7861] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7817,uid=0
[  427.392724][ T7861] Memory cgroup out of memory: Killed process 7817 (syz.0.2485) total-vm:90036kB, anon-rss:988kB, file-rss:53676kB, shmem-rss:0kB, UID:0 pgtables:204kB oom_score_adj:1000
[  434.271323][ T7861] syz.0.2485 invoked oom-killer: gfp_mask=0x100cc0(GFP_USER), order=0, oom_score_adj=1000
[  434.310120][ T7861] CPU: 1 UID: 0 PID: 7861 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  434.310158][ T7861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  434.310177][ T7861] Call Trace:
[  434.310185][ T7861]  <TASK>
[  434.310197][ T7861]  __dump_stack+0x21/0x30
[  434.310232][ T7861]  dump_stack_lvl+0x10c/0x190
[  434.310260][ T7861]  ? __cfi_dump_stack_lvl+0x10/0x10
[  434.310289][ T7861]  ? ___ratelimit+0x3f7/0x5a0
[  434.310323][ T7861]  dump_stack+0x19/0x20
[  434.310351][ T7861]  dump_header+0xd7/0x490
[  434.310373][ T7861]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  434.310402][ T7861]  oom_kill_process+0x4c0/0x7e0
[  434.310427][ T7861]  ? sched_clock_cpu+0x75/0x400
[  434.310457][ T7861]  out_of_memory+0x7ee/0xbd0
[  434.310482][ T7861]  ? __cfi_out_of_memory+0x10/0x10
[  434.310507][ T7861]  ? mutex_lock_killable+0x92/0x1c0
[  434.310530][ T7861]  ? __cfi_mutex_lock_killable+0x10/0x10
[  434.310555][ T7861]  mem_cgroup_out_of_memory+0x279/0x350
[  434.310577][ T7861]  ? drain_obj_stock+0xed0/0xed0
[  434.310599][ T7861]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  434.310621][ T7861]  try_charge_memcg+0x8f7/0xde0
[  434.310650][ T7861]  ? gfp_to_alloc_flags_cma+0x90/0x1c0
[  434.310684][ T7861]  ? __cfi_try_charge_memcg+0x10/0x10
[  434.310714][ T7861]  ? __alloc_pages_noprof+0x31f/0x7b0
[  434.310743][ T7861]  __mem_cgroup_charge+0xf6/0x410
[  434.310775][ T7861]  ? filemap_get_entry+0x3fb/0x460
[  434.310802][ T7861]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  434.310836][ T7861]  filemap_add_folio+0x57/0x2d0
[  434.310860][ T7861]  __filemap_get_folio+0x597/0x9d0
[  434.310888][ T7861]  ? __cfi___filemap_get_folio+0x10/0x10
[  434.310915][ T7861]  ? mm_trace_rss_stat+0x20/0x130
[  434.310945][ T7861]  ? filemap_fault_recheck_pte_none+0x78/0x250
[  434.310975][ T7861]  filemap_fault+0xb41/0x16b0
[  434.311023][ T7861]  ? __cfi_filemap_fault+0x10/0x10
[  434.311052][ T7861]  ? __cfi_filemap_map_pages+0x10/0x10
[  434.311084][ T7861]  ? __cfi_lru_add+0x10/0x10
[  434.311119][ T7861]  ? folio_rotate_reclaimable+0x130/0x130
[  434.311148][ T7861]  do_pte_missing+0x298c/0x4240
[  434.311177][ T7861]  ? shmem_alloc_and_add_folio+0xcf6/0x1050
[  434.311204][ T7861]  ? pte_marker_clear+0x1b0/0x1b0
[  434.311232][ T7861]  ? put_swap_device+0x130/0x130
[  434.311258][ T7861]  ? __pte_offset_map+0x1b0/0x230
[  434.311290][ T7861]  ? pte_offset_map_rw_nolock+0xba/0x110
[  434.311323][ T7861]  handle_mm_fault+0x1166/0x1b90
[  434.311347][ T7861]  ? __kasan_check_write+0x18/0x20
[  434.311384][ T7861]  ? __cfi_handle_mm_fault+0x10/0x10
[  434.311408][ T7861]  ? follow_page_pte+0x2bd/0xb90
[  434.311438][ T7861]  ? gup_must_unshare+0x1e0/0x1e0
[  434.311467][ T7861]  ? vma_is_secretmem+0x11/0x50
[  434.311499][ T7861]  __get_user_pages+0x1169/0x22d0
[  434.311528][ T7861]  ? __kasan_check_write+0x18/0x20
[  434.311564][ T7861]  ? populate_vma_page_range+0x230/0x230
[  434.311592][ T7861]  ? __kernel_write_iter+0x65e/0x830
[  434.311615][ T7861]  get_dump_page+0x107/0x220
[  434.311642][ T7861]  ? __cfi_get_dump_page+0x10/0x10
[  434.311668][ T7861]  ? __asan_memset+0x39/0x50
[  434.311702][ T7861]  dump_user_range+0x181/0xdf0
[  434.311725][ T7861]  ? __cfi_dump_emit+0x10/0x10
[  434.311760][ T7861]  ? __cfi_dump_user_range+0x10/0x10
[  434.311782][ T7861]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  434.311817][ T7861]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  434.311851][ T7861]  elf_core_dump+0x2cd9/0x3810
[  434.311881][ T7861]  ? __cfi_elf_core_dump+0x10/0x10
[  434.311916][ T7861]  ? dump_interrupted+0xf0/0xf0
[  434.311950][ T7861]  ? filp_open+0x182/0x1d0
[  434.311979][ T7861]  ? 0xffffffffff600000
[  434.311999][ T7861]  do_coredump+0x1bf7/0x2bd0
[  434.312036][ T7861]  ? __cfi_do_coredump+0x10/0x10
[  434.312069][ T7861]  ? asm_exc_page_fault+0x2b/0x30
[  434.312109][ T7861]  ? __kasan_slab_free+0x6a/0x80
[  434.312134][ T7861]  ? kmem_cache_free+0x1c1/0x510
[  434.312168][ T7861]  ? get_signal+0xa75/0x14f0
[  434.312197][ T7861]  get_signal+0x11fd/0x14f0
[  434.312230][ T7861]  arch_do_signal_or_restart+0x96/0x720
[  434.312265][ T7861]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  434.312303][ T7861]  irqentry_exit_to_user_mode+0x4e/0xb0
[  434.312331][ T7861]  irqentry_exit+0x16/0x60
[  434.312356][ T7861]  exc_page_fault+0x66/0xc0
[  434.312381][ T7861]  asm_exc_page_fault+0x2b/0x30
[  434.312404][ T7861] RIP: 0033:0x7fb14698ebf1
[  434.312423][ T7861] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  434.312443][ T7861] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  434.312466][ T7861] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  434.312484][ T7861] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  434.312501][ T7861] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  434.312520][ T7861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  434.312532][ T7861] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  434.312551][ T7861]  </TASK>
[  434.794724][ T7861] memory: usage 307200kB, limit 307200kB, failcnt 73631
[  434.801707][ T7861] memory+swap: usage 432132kB, limit 9007199254740988kB, failcnt 0
[  434.809635][ T7861] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  434.816525][ T7861] Memory cgroup stats for /syz0:
[  434.816655][ T7861] cache 314507264
[  434.825256][ T7861] rss 0
[  434.828032][ T7861] rss_huge 0
[  434.831223][ T7861] shmem 314482688
[  434.834878][ T7861] mapped_file 0
[  434.838338][ T7861] dirty 0
[  434.841269][ T7861] writeback 0
[  434.844574][ T7861] workingset_refault_anon 0
[  434.849101][ T7861] workingset_refault_file 34291
[  434.853999][ T7861] swap 127930368
[  434.857601][ T7861] swapcached 65536
[  434.861326][ T7861] pgpgin 649945
[  434.864887][ T7861] pgpgout 573656
[  434.868531][ T7861] pgfault 209669
[  434.872066][ T7861] pgmajfault 1909
[  434.875729][ T7861] inactive_anon 49147904
[  434.879976][ T7861] active_anon 265400320
[  434.884155][ T7861] inactive_file 24576
[  434.888138][ T7861] active_file 0
[  434.891586][ T7861] unevictable 0
[  434.895081][ T7861] hierarchical_memory_limit 314572800
[  434.900497][ T7861] hierarchical_memsw_limit 9223372036854771712
[  434.906715][ T7861] total_cache 314507264
[  434.910877][ T7861] total_rss 0
[  434.914211][ T7861] total_rss_huge 0
[  434.917938][ T7861] total_shmem 314482688
[  434.922079][ T7861] total_mapped_file 0
[  434.926094][ T7861] total_dirty 0
[  434.929555][ T7861] total_writeback 0
[  434.933387][ T7861] total_workingset_refault_anon 0
[  434.938417][ T7861] total_workingset_refault_file 34291
[  434.943944][ T7861] total_swap 127930368
[  434.948084][ T7861] total_swapcached 65536
[  434.952322][ T7861] total_pgpgin 649945
[  434.956337][ T7861] total_pgpgout 573656
[  434.960407][ T7861] total_pgfault 209669
[  434.964506][ T7861] total_pgmajfault 1909
[  434.968664][ T7861] total_inactive_anon 49147904
[  434.973449][ T7861] total_active_anon 265400320
[  434.978127][ T7861] total_inactive_file 24576
[  434.982661][ T7861] total_active_file 0
[  434.986646][ T7861] total_unevictable 0
[  434.990620][ T7861] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7807,uid=0
[  435.005481][ T7861] Memory cgroup out of memory: Killed process 7807 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53660kB, shmem-rss:0kB, UID:0 pgtables:208kB oom_score_adj:1000
[  435.351744][ T7873] syz.0.2485 invoked oom-killer: gfp_mask=0x100cc0(GFP_USER), order=0, oom_score_adj=1000
[  435.361733][ T7873] CPU: 1 UID: 0 PID: 7873 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  435.361770][ T7873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  435.361786][ T7873] Call Trace:
[  435.361795][ T7873]  <TASK>
[  435.361804][ T7873]  __dump_stack+0x21/0x30
[  435.361841][ T7873]  dump_stack_lvl+0x10c/0x190
[  435.361871][ T7873]  ? __cfi_dump_stack_lvl+0x10/0x10
[  435.361902][ T7873]  ? ___ratelimit+0x3f7/0x5a0
[  435.361938][ T7873]  dump_stack+0x19/0x20
[  435.361967][ T7873]  dump_header+0xd7/0x490
[  435.361990][ T7873]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  435.362020][ T7873]  oom_kill_process+0x4c0/0x7e0
[  435.362053][ T7873]  ? sched_clock_cpu+0x75/0x400
[  435.362085][ T7873]  out_of_memory+0x7ee/0xbd0
[  435.362111][ T7873]  ? __cfi_out_of_memory+0x10/0x10
[  435.362135][ T7873]  ? mutex_lock_killable+0x92/0x1c0
[  435.362157][ T7873]  ? __cfi_mutex_lock_killable+0x10/0x10
[  435.362181][ T7873]  mem_cgroup_out_of_memory+0x279/0x350
[  435.362204][ T7873]  ? drain_obj_stock+0xed0/0xed0
[  435.362228][ T7873]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  435.362250][ T7873]  try_charge_memcg+0x8f7/0xde0
[  435.362281][ T7873]  ? gfp_to_alloc_flags_cma+0x90/0x1c0
[  435.362316][ T7873]  ? __cfi_try_charge_memcg+0x10/0x10
[  435.362348][ T7873]  ? __alloc_pages_noprof+0x31f/0x7b0
[  435.362379][ T7873]  __mem_cgroup_charge+0xf6/0x410
[  435.362412][ T7873]  ? filemap_get_entry+0x3fb/0x460
[  435.362440][ T7873]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  435.362475][ T7873]  filemap_add_folio+0x57/0x2d0
[  435.362501][ T7873]  __filemap_get_folio+0x597/0x9d0
[  435.362535][ T7873]  ? __cfi___filemap_get_folio+0x10/0x10
[  435.362562][ T7873]  ? mm_trace_rss_stat+0x20/0x130
[  435.362593][ T7873]  ? filemap_fault_recheck_pte_none+0x78/0x250
[  435.362625][ T7873]  filemap_fault+0xb41/0x16b0
[  435.362656][ T7873]  ? __cfi_filemap_fault+0x10/0x10
[  435.362685][ T7873]  ? __cfi_filemap_map_pages+0x10/0x10
[  435.362717][ T7873]  ? __cfi_lru_add+0x10/0x10
[  435.362743][ T7873]  ? folio_rotate_reclaimable+0x130/0x130
[  435.362771][ T7873]  do_pte_missing+0x298c/0x4240
[  435.362800][ T7873]  ? shmem_alloc_and_add_folio+0xcf6/0x1050
[  435.362827][ T7873]  ? pte_marker_clear+0x1b0/0x1b0
[  435.362855][ T7873]  ? put_swap_device+0x130/0x130
[  435.362880][ T7873]  ? __pte_offset_map+0x1b0/0x230
[  435.362912][ T7873]  ? pte_offset_map_rw_nolock+0xba/0x110
[  435.362945][ T7873]  handle_mm_fault+0x1166/0x1b90
[  435.362968][ T7873]  ? __kasan_check_write+0x18/0x20
[  435.363004][ T7873]  ? __cfi_handle_mm_fault+0x10/0x10
[  435.363028][ T7873]  ? follow_page_pte+0x2bd/0xb90
[  435.363064][ T7873]  ? gup_must_unshare+0x1e0/0x1e0
[  435.363092][ T7873]  ? vma_is_secretmem+0x11/0x50
[  435.363124][ T7873]  __get_user_pages+0x1169/0x22d0
[  435.363151][ T7873]  ? __kasan_check_write+0x18/0x20
[  435.363187][ T7873]  ? populate_vma_page_range+0x230/0x230
[  435.363214][ T7873]  ? __kernel_write_iter+0x65e/0x830
[  435.363238][ T7873]  get_dump_page+0x107/0x220
[  435.363265][ T7873]  ? __cfi_get_dump_page+0x10/0x10
[  435.363293][ T7873]  ? __asan_memset+0x39/0x50
[  435.363325][ T7873]  dump_user_range+0x181/0xdf0
[  435.363349][ T7873]  ? __cfi_dump_emit+0x10/0x10
[  435.363383][ T7873]  ? __cfi_dump_user_range+0x10/0x10
[  435.363405][ T7873]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  435.363440][ T7873]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  435.363475][ T7873]  elf_core_dump+0x2cd9/0x3810
[  435.363506][ T7873]  ? __cfi_elf_core_dump+0x10/0x10
[  435.363541][ T7873]  ? dump_interrupted+0xf0/0xf0
[  435.363574][ T7873]  ? filp_open+0x182/0x1d0
[  435.363603][ T7873]  ? 0xffffffffff600000
[  435.363622][ T7873]  do_coredump+0x1bf7/0x2bd0
[  435.363660][ T7873]  ? __cfi_do_coredump+0x10/0x10
[  435.363705][ T7873]  ? asm_exc_page_fault+0x2b/0x30
[  435.363735][ T7873]  ? __kasan_slab_free+0x6a/0x80
[  435.363758][ T7873]  ? kmem_cache_free+0x1c1/0x510
[  435.363789][ T7873]  ? get_signal+0xa75/0x14f0
[  435.363817][ T7873]  get_signal+0x11fd/0x14f0
[  435.363847][ T7873]  arch_do_signal_or_restart+0x96/0x720
[  435.363880][ T7873]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  435.363916][ T7873]  irqentry_exit_to_user_mode+0x4e/0xb0
[  435.363942][ T7873]  irqentry_exit+0x16/0x60
[  435.363966][ T7873]  exc_page_fault+0x66/0xc0
[  435.363989][ T7873]  asm_exc_page_fault+0x2b/0x30
[  435.364010][ T7873] RIP: 0033:0x7fb14698ebf1
[  435.364028][ T7873] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  435.364054][ T7873] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  435.364076][ T7873] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  435.364092][ T7873] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  435.364107][ T7873] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  435.364122][ T7873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  435.364136][ T7873] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  435.364156][ T7873]  </TASK>
[  435.852396][ T7873] memory: usage 297908kB, limit 307200kB, failcnt 76078
[  435.859411][ T7873] memory+swap: usage 420368kB, limit 9007199254740988kB, failcnt 0
[  435.867993][ T7873] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  435.876503][ T7873] Memory cgroup stats for /syz0:
[  435.876655][ T7873] cache 304013312
[  435.885495][ T7873] rss 0
[  435.888276][ T7873] rss_huge 0
[  435.891478][ T7873] shmem 294744064
[  435.895514][ T7873] mapped_file 6086656
[  435.899519][ T7873] dirty 0
[  435.902468][ T7873] writeback 163840
[  435.906538][ T7873] workingset_refault_anon 0
[  435.911070][ T7873] workingset_refault_file 38205
[  435.916188][ T7873] swap 125566976
[  435.919768][ T7873] swapcached 294912
[  435.923814][ T7873] pgpgin 657068
[  435.927478][ T7873] pgpgout 583286
[  435.931147][ T7873] pgfault 210076
[  435.935529][ T7873] pgmajfault 2133
[  435.939185][ T7873] inactive_anon 200904704
[  435.943752][ T7873] active_anon 93560832
[  435.947837][ T7873] inactive_file 8654848
[  435.952004][ T7873] active_file 610304
[  435.956214][ T7873] unevictable 0
[  435.959865][ T7873] hierarchical_memory_limit 314572800
[  435.965526][ T7873] hierarchical_memsw_limit 9223372036854771712
[  435.971966][ T7873] total_cache 304013312
[  435.976419][ T7873] total_rss 0
[  435.979728][ T7873] total_rss_huge 0
[  435.983716][ T7873] total_shmem 294744064
[  435.988118][ T7873] total_mapped_file 6086656
[  435.992885][ T7873] total_dirty 0
[  435.996482][ T7873] total_writeback 163840
[  436.000736][ T7873] total_workingset_refault_anon 0
[  436.006091][ T7873] total_workingset_refault_file 38205
[  436.011484][ T7873] total_swap 125566976
[  436.015814][ T7873] total_swapcached 294912
[  436.020286][ T7873] total_pgpgin 657068
[  436.024486][ T7873] total_pgpgout 583286
[  436.028897][ T7873] total_pgfault 210076
[  436.033359][ T7873] total_pgmajfault 2133
[  436.037577][ T7873] total_inactive_anon 200904704
[  436.042446][ T7873] total_active_anon 93560832
[  436.047382][ T7873] total_inactive_file 8654848
[  436.052083][ T7873] total_active_file 610304
[  436.056777][ T7873] total_unevictable 0
[  436.060776][ T7873] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7864,uid=0
[  436.075933][ T7873] Memory cgroup out of memory: Killed process 7864 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:61084kB, shmem-rss:0kB, UID:0 pgtables:208kB oom_score_adj:1000
[  436.818432][ T7861] syz.0.2485 invoked oom-killer: gfp_mask=0x100cc0(GFP_USER), order=0, oom_score_adj=1000
[  436.834357][ T7861] CPU: 0 UID: 0 PID: 7861 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  436.834398][ T7861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  436.834415][ T7861] Call Trace:
[  436.834423][ T7861]  <TASK>
[  436.834433][ T7861]  __dump_stack+0x21/0x30
[  436.834471][ T7861]  dump_stack_lvl+0x10c/0x190
[  436.834503][ T7861]  ? __cfi_dump_stack_lvl+0x10/0x10
[  436.834534][ T7861]  ? ___ratelimit+0x3f7/0x5a0
[  436.834583][ T7861]  dump_stack+0x19/0x20
[  436.834612][ T7861]  dump_header+0xd7/0x490
[  436.834635][ T7861]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  436.834685][ T7861]  oom_kill_process+0x4c0/0x7e0
[  436.834713][ T7861]  ? sched_clock_cpu+0x75/0x400
[  436.834758][ T7861]  out_of_memory+0x7ee/0xbd0
[  436.834784][ T7861]  ? __cfi_out_of_memory+0x10/0x10
[  436.834810][ T7861]  ? mutex_lock_killable+0x92/0x1c0
[  436.834831][ T7861]  ? __cfi_mutex_lock_killable+0x10/0x10
[  436.834853][ T7861]  mem_cgroup_out_of_memory+0x279/0x350
[  436.834873][ T7861]  ? drain_obj_stock+0xed0/0xed0
[  436.834899][ T7861]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  436.834918][ T7861]  try_charge_memcg+0x8f7/0xde0
[  436.834944][ T7861]  ? gfp_to_alloc_flags_cma+0x90/0x1c0
[  436.834973][ T7861]  ? __cfi_try_charge_memcg+0x10/0x10
[  436.835000][ T7861]  ? __alloc_pages_noprof+0x31f/0x7b0
[  436.835025][ T7861]  __mem_cgroup_charge+0xf6/0x410
[  436.835053][ T7861]  ? filemap_get_entry+0x3fb/0x460
[  436.835081][ T7861]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  436.835129][ T7861]  filemap_add_folio+0x57/0x2d0
[  436.835152][ T7861]  __filemap_get_folio+0x597/0x9d0
[  436.835178][ T7861]  ? __cfi___filemap_get_folio+0x10/0x10
[  436.835203][ T7861]  ? mm_trace_rss_stat+0x20/0x130
[  436.835232][ T7861]  ? filemap_fault_recheck_pte_none+0x78/0x250
[  436.835260][ T7861]  filemap_fault+0xb41/0x16b0
[  436.835287][ T7861]  ? __cfi_filemap_fault+0x10/0x10
[  436.835313][ T7861]  ? __cfi_filemap_map_pages+0x10/0x10
[  436.835340][ T7861]  ? __cfi_lru_add+0x10/0x10
[  436.835363][ T7861]  ? folio_rotate_reclaimable+0x130/0x130
[  436.835388][ T7861]  do_pte_missing+0x298c/0x4240
[  436.835412][ T7861]  ? shmem_alloc_and_add_folio+0xcf6/0x1050
[  436.835437][ T7861]  ? pte_marker_clear+0x1b0/0x1b0
[  436.835461][ T7861]  ? put_swap_device+0x130/0x130
[  436.835482][ T7861]  ? __pte_offset_map+0x1b0/0x230
[  436.835510][ T7861]  ? pte_offset_map_rw_nolock+0xba/0x110
[  436.835539][ T7861]  handle_mm_fault+0x1166/0x1b90
[  436.835559][ T7861]  ? __kasan_check_write+0x18/0x20
[  436.835591][ T7861]  ? __cfi_handle_mm_fault+0x10/0x10
[  436.835612][ T7861]  ? follow_page_pte+0x2bd/0xb90
[  436.835639][ T7861]  ? gup_must_unshare+0x1e0/0x1e0
[  436.835665][ T7861]  ? vma_is_secretmem+0x11/0x50
[  436.835692][ T7861]  __get_user_pages+0x1169/0x22d0
[  436.835717][ T7861]  ? __kasan_check_write+0x18/0x20
[  436.835749][ T7861]  ? populate_vma_page_range+0x230/0x230
[  436.835773][ T7861]  ? __kernel_write_iter+0x65e/0x830
[  436.835793][ T7861]  get_dump_page+0x107/0x220
[  436.835817][ T7861]  ? __cfi_get_dump_page+0x10/0x10
[  436.835840][ T7861]  ? __asan_memset+0x39/0x50
[  436.835869][ T7861]  dump_user_range+0x181/0xdf0
[  436.835895][ T7861]  ? __cfi_dump_emit+0x10/0x10
[  436.835923][ T7861]  ? __cfi_dump_user_range+0x10/0x10
[  436.835942][ T7861]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  436.835971][ T7861]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  436.836001][ T7861]  elf_core_dump+0x2cd9/0x3810
[  436.836027][ T7861]  ? __cfi_elf_core_dump+0x10/0x10
[  436.836058][ T7861]  ? dump_interrupted+0xf0/0xf0
[  436.836086][ T7861]  ? filp_open+0x182/0x1d0
[  436.836111][ T7861]  ? 0xffffffffff600000
[  436.836127][ T7861]  do_coredump+0x1bf7/0x2bd0
[  436.836159][ T7861]  ? __cfi_do_coredump+0x10/0x10
[  436.836187][ T7861]  ? asm_exc_page_fault+0x2b/0x30
[  436.836215][ T7861]  ? __kasan_slab_free+0x6a/0x80
[  436.836236][ T7861]  ? kmem_cache_free+0x1c1/0x510
[  436.836276][ T7861]  ? get_signal+0xa75/0x14f0
[  436.836311][ T7861]  get_signal+0x11fd/0x14f0
[  436.836336][ T7861]  arch_do_signal_or_restart+0x96/0x720
[  436.836385][ T7861]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  436.836417][ T7861]  irqentry_exit_to_user_mode+0x4e/0xb0
[  436.836441][ T7861]  irqentry_exit+0x16/0x60
[  436.836461][ T7861]  exc_page_fault+0x66/0xc0
[  436.836482][ T7861]  asm_exc_page_fault+0x2b/0x30
[  436.836501][ T7861] RIP: 0033:0x7fb14698ebf1
[  436.836517][ T7861] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  436.836534][ T7861] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  436.836552][ T7861] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  436.836567][ T7861] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  436.836581][ T7861] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  436.836594][ T7861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  436.836607][ T7861] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  436.836624][ T7861]  </TASK>
[  436.836632][ T7861] memory: usage 307200kB, limit 307200kB, failcnt 81969
[  437.325140][ T7861] memory+swap: usage 432180kB, limit 9007199254740988kB, failcnt 0
[  437.333279][ T7861] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  437.340146][ T7861] Memory cgroup stats for /syz0:
[  437.340260][ T7861] cache 314544128
[  437.348876][ T7861] rss 24576
[  437.351973][ T7861] rss_huge 0
[  437.355213][ T7861] shmem 314540032
[  437.358857][ T7861] mapped_file 0
[  437.362312][ T7861] dirty 0
[  437.365270][ T7861] writeback 0
[  437.368557][ T7861] workingset_refault_anon 18
[  437.373162][ T7861] workingset_refault_file 44949
[  437.378010][ T7861] swap 127979520
[  437.381561][ T7861] swapcached 16384
[  437.385333][ T7861] pgpgin 683758
[  437.388795][ T7861] pgpgout 607469
[  437.392342][ T7861] pgfault 212422
[  437.395924][ T7861] pgmajfault 3729
[  437.399561][ T7861] inactive_anon 208175104
[  437.403921][ T7861] active_anon 106393600
[  437.408080][ T7861] inactive_file 0
[  437.411700][ T7861] active_file 4096
[  437.415446][ T7861] unevictable 0
[  437.418913][ T7861] hierarchical_memory_limit 314572800
[  437.424351][ T7861] hierarchical_memsw_limit 9223372036854771712
[  437.430509][ T7861] total_cache 314544128
[  437.434697][ T7861] total_rss 24576
[  437.438330][ T7861] total_rss_huge 0
[  437.442033][ T7861] total_shmem 314540032
[  437.446200][ T7861] total_mapped_file 0
[  437.450202][ T7861] total_dirty 0
[  437.453679][ T7861] total_writeback 0
[  437.457485][ T7861] total_workingset_refault_anon 18
[  437.462623][ T7861] total_workingset_refault_file 44949
[  437.467996][ T7861] total_swap 127979520
[  437.472149][ T7861] total_swapcached 16384
[  437.476402][ T7861] total_pgpgin 683758
[  437.480399][ T7861] total_pgpgout 607469
[  437.484478][ T7861] total_pgfault 212422
[  437.488543][ T7861] total_pgmajfault 3729
[  437.492711][ T7861] total_inactive_anon 208175104
[  437.497562][ T7861] total_active_anon 106393600
[  437.502224][ T7861] total_inactive_file 0
[  437.506401][ T7861] total_active_file 4096
[  437.510640][ T7861] total_unevictable 0
[  437.514641][ T7861] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7820,uid=0
[  437.529582][ T7861] Memory cgroup out of memory: Killed process 7820 (syz.0.2485) total-vm:90036kB, anon-rss:1008kB, file-rss:53716kB, shmem-rss:0kB, UID:0 pgtables:208kB oom_score_adj:1000
[  437.615920][ T7877] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  437.652619][ T7877] CPU: 1 UID: 0 PID: 7877 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  437.652657][ T7877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  437.652672][ T7877] Call Trace:
[  437.652679][ T7877]  <TASK>
[  437.652688][ T7877]  __dump_stack+0x21/0x30
[  437.652721][ T7877]  dump_stack_lvl+0x10c/0x190
[  437.652748][ T7877]  ? __cfi_dump_stack_lvl+0x10/0x10
[  437.652775][ T7877]  ? ___ratelimit+0x3f7/0x5a0
[  437.652809][ T7877]  dump_stack+0x19/0x20
[  437.652844][ T7877]  dump_header+0xd7/0x490
[  437.652866][ T7877]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  437.652896][ T7877]  oom_kill_process+0x4c0/0x7e0
[  437.652920][ T7877]  ? sched_clock_cpu+0x75/0x400
[  437.652949][ T7877]  out_of_memory+0x7ee/0xbd0
[  437.652974][ T7877]  ? __cfi_out_of_memory+0x10/0x10
[  437.652998][ T7877]  ? mutex_lock_killable+0x92/0x1c0
[  437.653021][ T7877]  ? __cfi_mutex_lock_killable+0x10/0x10
[  437.653046][ T7877]  mem_cgroup_out_of_memory+0x279/0x350
[  437.653067][ T7877]  ? drain_obj_stock+0xed0/0xed0
[  437.653088][ T7877]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  437.653109][ T7877]  try_charge_memcg+0x8f7/0xde0
[  437.653138][ T7877]  ? __cfi_try_charge_memcg+0x10/0x10
[  437.653166][ T7877]  ? __alloc_pages_noprof+0x31f/0x7b0
[  437.653194][ T7877]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  437.653222][ T7877]  ? __folio_batch_add_and_move+0x2ab/0x370
[  437.653249][ T7877]  __mem_cgroup_charge+0xf6/0x410
[  437.653280][ T7877]  ? _raw_spin_lock+0x8c/0x120
[  437.653307][ T7877]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  437.653339][ T7877]  shmem_alloc_and_add_folio+0x86d/0x1050
[  437.653366][ T7877]  ? put_swap_device+0x130/0x130
[  437.653390][ T7877]  ? shmem_huge_global_enabled+0x2da/0x360
[  437.653414][ T7877]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  437.653437][ T7877]  ? __kasan_check_write+0x18/0x20
[  437.653468][ T7877]  ? _raw_spin_lock+0x8c/0x120
[  437.653495][ T7877]  shmem_get_folio_gfp+0x5f0/0x1380
[  437.653520][ T7877]  ? shmem_get_folio+0xc0/0xc0
[  437.653541][ T7877]  ? follow_page_pte+0xa5c/0xb90
[  437.653569][ T7877]  ? inode_to_bdi+0x6d/0x100
[  437.653598][ T7877]  shmem_write_begin+0xf4/0x270
[  437.653623][ T7877]  generic_perform_write+0x330/0x960
[  437.653654][ T7877]  ? __cfi_generic_perform_write+0x10/0x10
[  437.653682][ T7877]  ? down_write+0xe9/0x2a0
[  437.653706][ T7877]  ? file_update_time+0xa3/0x220
[  437.653734][ T7877]  shmem_file_write_iter+0x105/0x130
[  437.653762][ T7877]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  437.653789][ T7877]  __kernel_write_iter+0x395/0x830
[  437.653810][ T7877]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  437.653846][ T7877]  ? __cfi___kernel_write_iter+0x10/0x10
[  437.653866][ T7877]  ? get_dump_page+0x160/0x220
[  437.653891][ T7877]  ? __asan_memset+0x39/0x50
[  437.653939][ T7877]  ? iov_iter_bvec+0xc0/0x180
[  437.653964][ T7877]  dump_user_range+0xb06/0xdf0
[  437.653988][ T7877]  ? __cfi_dump_emit+0x10/0x10
[  437.654022][ T7877]  ? __cfi_dump_user_range+0x10/0x10
[  437.654045][ T7877]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  437.654080][ T7877]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  437.654127][ T7877]  elf_core_dump+0x2cd9/0x3810
[  437.654155][ T7877]  ? __cfi_elf_core_dump+0x10/0x10
[  437.654187][ T7877]  ? dump_interrupted+0xf0/0xf0
[  437.654216][ T7877]  ? filp_open+0x182/0x1d0
[  437.654243][ T7877]  ? 0xffffffffff600000
[  437.654261][ T7877]  do_coredump+0x1bf7/0x2bd0
[  437.654297][ T7877]  ? __cfi_do_coredump+0x10/0x10
[  437.654327][ T7877]  ? asm_exc_page_fault+0x2b/0x30
[  437.654358][ T7877]  ? __kasan_slab_free+0x6a/0x80
[  437.654380][ T7877]  ? kmem_cache_free+0x1c1/0x510
[  437.654410][ T7877]  ? get_signal+0xa75/0x14f0
[  437.654436][ T7877]  get_signal+0x11fd/0x14f0
[  437.654465][ T7877]  arch_do_signal_or_restart+0x96/0x720
[  437.654498][ T7877]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  437.654534][ T7877]  irqentry_exit_to_user_mode+0x4e/0xb0
[  437.654576][ T7877]  irqentry_exit+0x16/0x60
[  437.654601][ T7877]  exc_page_fault+0x66/0xc0
[  437.654626][ T7877]  asm_exc_page_fault+0x2b/0x30
[  437.654649][ T7877] RIP: 0033:0x7fb14698ebf1
[  437.654668][ T7877] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  437.654689][ T7877] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  437.654711][ T7877] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  437.654728][ T7877] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  437.654745][ T7877] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  437.654761][ T7877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  437.654777][ T7877] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  437.654798][ T7877]  </TASK>
[  437.654970][ T7877] memory: usage 297432kB, limit 307200kB, failcnt 82363
[  438.123590][ T7877] memory+swap: usage 431852kB, limit 9007199254740988kB, failcnt 0
[  438.131611][ T7877] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  438.138623][ T7877] Memory cgroup stats for /syz0:
[  438.138784][ T7877] cache 314028032
[  438.147417][ T7877] rss 73728
[  438.150554][ T7877] rss_huge 0
[  438.153802][ T7877] shmem 313978880
[  438.157439][ T7877] mapped_file 49152
[  438.161269][ T7877] dirty 0
[  438.164234][ T7877] writeback 0
[  438.167520][ T7877] workingset_refault_anon 32
[  438.172097][ T7877] workingset_refault_file 46407
[  438.176972][ T7877] swap 127651840
[  438.180543][ T7877] swapcached 335872
[  438.184380][ T7877] pgpgin 696351
[  438.187862][ T7877] pgpgout 620107
[  438.191400][ T7877] pgfault 212759
[  438.194976][ T7877] pgmajfault 3891
[  438.198610][ T7877] inactive_anon 114839552
[  438.202964][ T7877] active_anon 199450624
[  438.207118][ T7877] inactive_file 0
[  438.210743][ T7877] active_file 0
[  438.214233][ T7877] unevictable 0
[  438.217692][ T7877] hierarchical_memory_limit 314572800
[  438.223091][ T7877] hierarchical_memsw_limit 9223372036854771712
[  438.229243][ T7877] total_cache 314028032
[  438.233448][ T7877] total_rss 73728
[  438.237083][ T7877] total_rss_huge 0
[  438.240788][ T7877] total_shmem 313978880
[  438.244965][ T7877] total_mapped_file 49152
[  438.249311][ T7877] total_dirty 0
[  438.252796][ T7877] total_writeback 0
[  438.256604][ T7877] total_workingset_refault_anon 32
[  438.261700][ T7877] total_workingset_refault_file 46407
[  438.267095][ T7877] total_swap 127651840
[  438.271158][ T7877] total_swapcached 335872
[  438.275513][ T7877] total_pgpgin 696351
[  438.279495][ T7877] total_pgpgout 620107
[  438.283579][ T7877] total_pgfault 212759
[  438.287685][ T7877] total_pgmajfault 3891
[  438.291833][ T7877] total_inactive_anon 114839552
[  438.296705][ T7877] total_active_anon 199450624
[  438.301382][ T7877] total_inactive_file 0
[  438.305574][ T7877] total_active_file 0
[  438.309558][ T7877] total_unevictable 0
[  438.313565][ T7877] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7852,uid=0
[  438.328727][ T7877] Memory cgroup out of memory: Killed process 7852 (syz.0.2485) total-vm:90036kB, anon-rss:988kB, file-rss:53704kB, shmem-rss:0kB, UID:0 pgtables:208kB oom_score_adj:1000
[  438.502969][ T7877] syz.0.2485 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  438.561227][ T7877] CPU: 1 UID: 0 PID: 7877 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  438.561264][ T7877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  438.561279][ T7877] Call Trace:
[  438.561289][ T7877]  <TASK>
[  438.561299][ T7877]  __dump_stack+0x21/0x30
[  438.561336][ T7877]  dump_stack_lvl+0x10c/0x190
[  438.561367][ T7877]  ? __cfi_dump_stack_lvl+0x10/0x10
[  438.561397][ T7877]  ? ___ratelimit+0x3f7/0x5a0
[  438.561430][ T7877]  dump_stack+0x19/0x20
[  438.561459][ T7877]  dump_header+0xd7/0x490
[  438.561482][ T7877]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  438.561512][ T7877]  oom_kill_process+0x4c0/0x7e0
[  438.561539][ T7877]  ? sched_clock_cpu+0x75/0x400
[  438.561571][ T7877]  out_of_memory+0x7ee/0xbd0
[  438.561597][ T7877]  ? __cfi_out_of_memory+0x10/0x10
[  438.561623][ T7877]  ? mutex_lock_killable+0x92/0x1c0
[  438.561647][ T7877]  ? __cfi_mutex_lock_killable+0x10/0x10
[  438.561674][ T7877]  mem_cgroup_out_of_memory+0x279/0x350
[  438.561698][ T7877]  ? drain_obj_stock+0xed0/0xed0
[  438.561722][ T7877]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  438.561753][ T7877]  try_charge_memcg+0x8f7/0xde0
[  438.561784][ T7877]  ? __cfi_try_charge_memcg+0x10/0x10
[  438.561812][ T7877]  ? __alloc_pages_noprof+0x31f/0x7b0
[  438.561839][ T7877]  ? __cfi___alloc_pages_noprof+0x10/0x10
[  438.561866][ T7877]  ? __folio_batch_add_and_move+0x2ab/0x370
[  438.561893][ T7877]  __mem_cgroup_charge+0xf6/0x410
[  438.561927][ T7877]  ? _raw_spin_lock+0x8c/0x120
[  438.561955][ T7877]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  438.561987][ T7877]  shmem_alloc_and_add_folio+0x86d/0x1050
[  438.562015][ T7877]  ? put_swap_device+0x130/0x130
[  438.562039][ T7877]  ? shmem_huge_global_enabled+0x2da/0x360
[  438.562065][ T7877]  ? shmem_allowable_huge_orders+0x1f7/0x430
[  438.562108][ T7877]  ? __kasan_check_write+0x18/0x20
[  438.562140][ T7877]  ? _raw_spin_lock+0x8c/0x120
[  438.562172][ T7877]  shmem_get_folio_gfp+0x5f0/0x1380
[  438.562200][ T7877]  ? shmem_get_folio+0xc0/0xc0
[  438.562223][ T7877]  ? follow_page_pte+0xa5c/0xb90
[  438.562252][ T7877]  ? inode_to_bdi+0x6d/0x100
[  438.562283][ T7877]  shmem_write_begin+0xf4/0x270
[  438.562310][ T7877]  generic_perform_write+0x330/0x960
[  438.562345][ T7877]  ? __cfi_generic_perform_write+0x10/0x10
[  438.562378][ T7877]  ? down_write+0xe9/0x2a0
[  438.562405][ T7877]  ? file_update_time+0xa3/0x220
[  438.562436][ T7877]  shmem_file_write_iter+0x105/0x130
[  438.562467][ T7877]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  438.562497][ T7877]  __kernel_write_iter+0x395/0x830
[  438.562519][ T7877]  ? __cfi_shmem_file_write_iter+0x10/0x10
[  438.562553][ T7877]  ? __cfi___kernel_write_iter+0x10/0x10
[  438.562575][ T7877]  ? get_dump_page+0x160/0x220
[  438.562604][ T7877]  ? __asan_memset+0x39/0x50
[  438.562649][ T7877]  ? iov_iter_bvec+0xc0/0x180
[  438.562675][ T7877]  dump_user_range+0xb06/0xdf0
[  438.562698][ T7877]  ? __cfi_dump_emit+0x10/0x10
[  438.562732][ T7877]  ? __cfi_dump_user_range+0x10/0x10
[  438.562761][ T7877]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  438.562796][ T7877]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  438.562849][ T7877]  elf_core_dump+0x2cd9/0x3810
[  438.562880][ T7877]  ? __cfi_elf_core_dump+0x10/0x10
[  438.562916][ T7877]  ? dump_interrupted+0xf0/0xf0
[  438.562949][ T7877]  ? filp_open+0x182/0x1d0
[  438.562979][ T7877]  ? 0xffffffffff600000
[  438.562998][ T7877]  do_coredump+0x1bf7/0x2bd0
[  438.563036][ T7877]  ? __cfi_do_coredump+0x10/0x10
[  438.563069][ T7877]  ? asm_exc_page_fault+0x2b/0x30
[  438.563102][ T7877]  ? __kasan_slab_free+0x6a/0x80
[  438.563127][ T7877]  ? kmem_cache_free+0x1c1/0x510
[  438.563162][ T7877]  ? get_signal+0xa75/0x14f0
[  438.563191][ T7877]  get_signal+0x11fd/0x14f0
[  438.563223][ T7877]  arch_do_signal_or_restart+0x96/0x720
[  438.563272][ T7877]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  438.563310][ T7877]  irqentry_exit_to_user_mode+0x4e/0xb0
[  438.563337][ T7877]  irqentry_exit+0x16/0x60
[  438.563361][ T7877]  exc_page_fault+0x66/0xc0
[  438.563385][ T7877]  asm_exc_page_fault+0x2b/0x30
[  438.563408][ T7877] RIP: 0033:0x7fb14698ebf1
[  438.563427][ T7877] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  438.563449][ T7877] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  438.563472][ T7877] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  438.563490][ T7877] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  438.563507][ T7877] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  438.563523][ T7877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  438.563539][ T7877] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  438.563559][ T7877]  </TASK>
[  439.034055][ T8328] SELinux: failed to load policy
[  439.039904][ T8335] overlayfs: failed to clone upperpath
[  439.042699][ T7877] memory: usage 286864kB, limit 307200kB, failcnt 85496
[  439.128737][ T7877] memory+swap: usage 413012kB, limit 9007199254740988kB, failcnt 0
[  439.152693][ T7877] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  439.176621][ T7877] Memory cgroup stats for /syz0:
[  439.176788][ T7877] cache 294899712
[  439.203145][ T7877] rss 94208
[  439.214692][ T7877] rss_huge 0
[  439.224756][ T7877] shmem 285118464
[  439.232696][ T7877] mapped_file 7942144
[  439.236732][ T7877] dirty 0
[  439.239696][ T7877] writeback 0
[  439.243239][ T7877] workingset_refault_anon 33
[  439.247852][ T7877] workingset_refault_file 49934
[  439.252899][ T7877] swap 127705088
[  439.256524][ T7877] swapcached 290816
[  439.260352][ T7877] pgpgin 703991
[  439.264050][ T7877] pgpgout 632423
[  439.267670][ T7877] pgfault 213584
[  439.271237][ T7877] pgmajfault 4556
[  439.275087][ T7877] inactive_anon 208642048
[  439.279485][ T7877] active_anon 76812288
[  439.283746][ T7877] inactive_file 9723904
[  439.287931][ T7877] active_file 0
[  439.291473][ T7877] unevictable 0
[  439.295163][ T7877] hierarchical_memory_limit 314572800
[  439.300554][ T7877] hierarchical_memsw_limit 9223372036854771712
[  439.306927][ T7877] total_cache 294899712
[  439.311109][ T7877] total_rss 94208
[  439.315466][ T7877] total_rss_huge 0
[  439.319258][ T7877] total_shmem 285118464
[  439.323585][ T7877] total_mapped_file 7942144
[  439.328111][ T7877] total_dirty 0
[  439.331635][ T7877] total_writeback 0
[  439.335654][ T7877] total_workingset_refault_anon 33
[  439.340787][ T7877] total_workingset_refault_file 49934
[  439.346396][ T7877] total_swap 127705088
[  439.350503][ T7877] total_swapcached 290816
[  439.355017][ T7877] total_pgpgin 703991
[  439.359059][ T7877] total_pgpgout 632423
[  439.362584][  T361] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  439.363362][ T7877] total_pgfault 213584
[  439.374967][ T7877] total_pgmajfault 4556
[  439.379139][ T7877] total_inactive_anon 208642048
[  439.384163][ T7877] total_active_anon 76812288
[  439.388818][ T7877] total_inactive_file 9723904
[  439.393681][ T7877] total_active_file 0
[  439.397682][ T7877] total_unevictable 0
[  439.401723][ T7877] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7805,uid=0
[  439.416814][ T7877] Memory cgroup out of memory: Killed process 7805 (syz.0.2485) total-vm:90036kB, anon-rss:988kB, file-rss:56080kB, shmem-rss:0kB, UID:0 pgtables:216kB oom_score_adj:1000
[  439.522591][  T361] usb 3-1: Using ep0 maxpacket: 16
[  439.528911][  T361] usb 3-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  439.539299][  T361] usb 3-1: config 7 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  439.553895][  T361] usb 3-1: config 7 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  439.572419][  T361] usb 3-1: config 7 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  439.593730][  T361] usb 3-1: config 7 interface 0 has no altsetting 0
[  439.603733][  T361] usb 3-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  439.610866][ T7812] syz.0.2485 invoked oom-killer: gfp_mask=0x100cc0(GFP_USER), order=0, oom_score_adj=1000
[  439.617528][  T361] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.652739][ T7812] CPU: 0 UID: 0 PID: 7812 Comm: syz.0.2485 Not tainted syzkaller #0 487852573998b859d95f7a0f07f96e56ce6678e4
[  439.652773][ T7812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  439.652789][ T7812] Call Trace:
[  439.652798][ T7812]  <TASK>
[  439.652808][ T7812]  __dump_stack+0x21/0x30
[  439.652842][ T7812]  dump_stack_lvl+0x10c/0x190
[  439.652871][ T7812]  ? __cfi_dump_stack_lvl+0x10/0x10
[  439.652899][ T7812]  ? ___ratelimit+0x3f7/0x5a0
[  439.652932][ T7812]  dump_stack+0x19/0x20
[  439.652959][ T7812]  dump_header+0xd7/0x490
[  439.652980][ T7812]  ? __cfi_mem_cgroup_get_max+0x10/0x10
[  439.653007][ T7812]  oom_kill_process+0x4c0/0x7e0
[  439.653031][ T7812]  ? sched_clock_cpu+0x75/0x400
[  439.653058][ T7812]  out_of_memory+0x7ee/0xbd0
[  439.653081][ T7812]  ? __cfi_out_of_memory+0x10/0x10
[  439.653105][ T7812]  ? mutex_lock_killable+0x92/0x1c0
[  439.653127][ T7812]  ? __cfi_mutex_lock_killable+0x10/0x10
[  439.653151][ T7812]  mem_cgroup_out_of_memory+0x279/0x350
[  439.653173][ T7812]  ? drain_obj_stock+0xed0/0xed0
[  439.653196][ T7812]  ? memcg1_oom_prepare+0x2c6/0x3a0
[  439.653217][ T7812]  try_charge_memcg+0x8f7/0xde0
[  439.653246][ T7812]  ? gfp_to_alloc_flags_cma+0x90/0x1c0
[  439.653279][ T7812]  ? __cfi_try_charge_memcg+0x10/0x10
[  439.653309][ T7812]  ? __alloc_pages_noprof+0x31f/0x7b0
[  439.653338][ T7812]  __mem_cgroup_charge+0xf6/0x410
[  439.653369][ T7812]  ? filemap_get_entry+0x3fb/0x460
[  439.653394][ T7812]  ? __cfi___mem_cgroup_charge+0x10/0x10
[  439.653429][ T7812]  filemap_add_folio+0x57/0x2d0
[  439.653454][ T7812]  __filemap_get_folio+0x597/0x9d0
[  439.653482][ T7812]  ? __cfi___filemap_get_folio+0x10/0x10
[  439.653508][ T7812]  ? filemap_fault_recheck_pte_none+0x78/0x250
[  439.653539][ T7812]  filemap_fault+0xb41/0x16b0
[  439.653565][ T7812]  ? rcu_preempt_deferred_qs_irqrestore+0x66a/0x980
[  439.653597][ T7812]  ? __cfi_filemap_fault+0x10/0x10
[  439.653625][ T7812]  ? rcu_read_unlock_special+0xab/0x480
[  439.653659][ T7812]  ? __cfi_filemap_map_pages+0x10/0x10
[  439.653687][ T7812]  ? __rcu_read_unlock+0xc0/0xc0
[  439.653714][ T7812]  ? __cfi_lru_add+0x10/0x10
[  439.653738][ T7812]  ? __cfi_filemap_map_pages+0x10/0x10
[  439.653766][ T7812]  do_pte_missing+0x298c/0x4240
[  439.653792][ T7812]  ? shmem_alloc_and_add_folio+0xcf6/0x1050
[  439.653818][ T7812]  ? pte_marker_clear+0x1b0/0x1b0
[  439.653842][ T7812]  ? put_swap_device+0x130/0x130
[  439.653864][ T7812]  ? __pte_offset_map+0x1b0/0x230
[  439.653892][ T7812]  ? pte_offset_map_rw_nolock+0xba/0x110
[  439.653922][ T7812]  handle_mm_fault+0x1166/0x1b90
[  439.653945][ T7812]  ? __kasan_check_write+0x18/0x20
[  439.653981][ T7812]  ? __cfi_handle_mm_fault+0x10/0x10
[  439.654004][ T7812]  ? follow_page_pte+0x2bd/0xb90
[  439.654033][ T7812]  ? gup_must_unshare+0x1e0/0x1e0
[  439.654062][ T7812]  ? vma_is_secretmem+0x11/0x50
[  439.654093][ T7812]  __get_user_pages+0x1169/0x22d0
[  439.654120][ T7812]  ? __kasan_check_write+0x18/0x20
[  439.654155][ T7812]  ? populate_vma_page_range+0x230/0x230
[  439.654188][ T7812]  ? __kernel_write_iter+0x65e/0x830
[  439.654210][ T7812]  get_dump_page+0x107/0x220
[  439.654237][ T7812]  ? __cfi_get_dump_page+0x10/0x10
[  439.654264][ T7812]  ? __asan_memset+0x39/0x50
[  439.654296][ T7812]  dump_user_range+0x181/0xdf0
[  439.654320][ T7812]  ? __cfi_dump_emit+0x10/0x10
[  439.654354][ T7812]  ? __cfi_dump_user_range+0x10/0x10
[  439.654376][ T7812]  ? elf_coredump_extra_notes_write+0x42f/0x4c0
[  439.654410][ T7812]  ? __cfi_elf_coredump_extra_notes_write+0x10/0x10
[  439.654444][ T7812]  elf_core_dump+0x2cd9/0x3810
[  439.654474][ T7812]  ? __cfi_elf_core_dump+0x10/0x10
[  439.654508][ T7812]  ? dump_interrupted+0xf0/0xf0
[  439.654538][ T7812]  ? filp_open+0x182/0x1d0
[  439.654565][ T7812]  ? 0xffffffffff600000
[  439.654602][ T7812]  do_coredump+0x1bf7/0x2bd0
[  439.654639][ T7812]  ? __cfi_do_coredump+0x10/0x10
[  439.654680][ T7812]  ? asm_exc_page_fault+0x2b/0x30
[  439.654714][ T7812]  ? __kasan_slab_free+0x6a/0x80
[  439.654738][ T7812]  ? kmem_cache_free+0x1c1/0x510
[  439.654772][ T7812]  ? get_signal+0xa75/0x14f0
[  439.654802][ T7812]  get_signal+0x11fd/0x14f0
[  439.654834][ T7812]  arch_do_signal_or_restart+0x96/0x720
[  439.654869][ T7812]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  439.654906][ T7812]  irqentry_exit_to_user_mode+0x4e/0xb0
[  439.654934][ T7812]  irqentry_exit+0x16/0x60
[  439.654959][ T7812]  exc_page_fault+0x66/0xc0
[  439.654984][ T7812]  asm_exc_page_fault+0x2b/0x30
[  439.655007][ T7812] RIP: 0033:0x7fb14698ebf1
[  439.655026][ T7812] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  439.655048][ T7812] RSP: 002b:fffffffffffffea0 EFLAGS: 00010217
[  439.655074][ T7812] RAX: 0000000000000000 RBX: 00007fb146bc6090 RCX: 00007fb14698ebe9
[  439.655092][ T7812] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  439.655108][ T7812] RBP: 00007fb146a11e19 R08: 0000000000000000 R09: 0000000000000000
[  439.655122][ T7812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  439.655138][ T7812] R13: 00007fb146bc6128 R14: 00007fb146bc6090 R15: 00007fffd1e46e48
[  439.655160][ T7812]  </TASK>
[  439.655231][ T7812] memory: usage 307200kB, limit 307200kB, failcnt 88420
[  440.159155][ T7812] memory+swap: usage 379236kB, limit 9007199254740988kB, failcnt 0
[  440.167177][ T7812] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0
[  440.183714][  T361] input: HID 0458:5010 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:7.0/0003:0458:5010.000E/input/input18
[  440.200088][ T7812] Memory cgroup stats for /syz0:
[  440.206487][  T361] kye 0003:0458:5010.000E: input,hiddev96,hidraw0: USB HID v2.00 Device [HID 0458:5010] on usb-dummy_hcd.2-1/input0
[  440.249851][ T7812] cache 288067584
[  440.282581][ T7812] rss 319488
[  440.292593][ T7812] rss_huge 0
[  440.322594][ T7812] shmem 288067584
[  440.352588][ T7812] mapped_file 0
[  440.392559][ T7812] dirty 0
[  440.400981][ T7812] writeback 0
[  440.458562][ T7812] workingset_refault_anon 61
[  440.468689][   T36] audit: type=1400 audit(2000000111.771:1207): avc:  denied  { bpf } for  pid=8373 comm="syz.0.2664" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  440.474294][ T7812] workingset_refault_file 50366
[  440.524145][ T7812] swap 99684352
[  440.527835][ T7812] swapcached 208896
[  440.537789][ T7812] pgpgin 717846
[  440.541317][ T7812] pgpgout 647915
[  440.565812][ T7812] pgfault 214601
[  440.569512][ T7812] pgmajfault 4781
[  440.573394][ T7812] inactive_anon 132104192
[  440.578250][ T7812] active_anon 156426240
[  440.582482][ T7812] inactive_file 0
[  440.586403][ T7812] active_file 0
[  440.590210][ T7812] unevictable 0
[  440.594557][ T7812] hierarchical_memory_limit 314572800
[  440.600604][ T7812] hierarchical_memsw_limit 9223372036854771712
[  440.623607][ T7812] total_cache 288067584
[  440.641425][ T7812] total_rss 319488
[  440.655175][ T7812] total_rss_huge 0
[  440.658951][ T7812] total_shmem 288067584
[  440.682170][   T36] audit: type=1326 audit(2000000111.981:1208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8389 comm="syz.4.2669" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe31db8ebe9 code=0x0
[  440.705358][ T7812] total_mapped_file 0
[  440.709370][ T7812] total_dirty 0
[  440.713040][ T7812] total_writeback 0
[  440.716947][ T7812] total_workingset_refault_anon 61
[  440.722073][ T7812] total_workingset_refault_file 50366
[  440.727810][ T7812] total_swap 99684352
[  440.731991][ T7812] total_swapcached 208896
[  440.736529][ T7812] total_pgpgin 717846
[  440.740607][ T7812] total_pgpgout 647915
[  440.744893][ T7812] total_pgfault 214601
[  440.748980][ T7812] total_pgmajfault 4781
[  440.753408][ T7812] total_inactive_anon 132104192
[  440.758288][ T7812] total_active_anon 156426240
[  440.769516][ T7812] total_inactive_file 0
[  440.774014][ T7812] total_active_file 0
[  440.778020][ T7812] total_unevictable 0
[  440.782103][ T7812] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2485,pid=7861,uid=0
[  440.797901][ T7812] Memory cgroup out of memory: OOM victim 7861 (syz.0.2485) is already exiting. Skip killing the task
[  441.612594][  T361] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  441.762557][  T361] usb 1-1: Using ep0 maxpacket: 8
[  441.768791][  T361] usb 1-1: config 1 has an invalid descriptor of length 130, skipping remainder of the config
[  441.779207][  T361] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  441.788123][  T361] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  441.801021][  T361] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  441.810106][  T361] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  441.823153][  T361] hub 1-1:1.0: bad descriptor, ignoring hub
[  441.829100][  T361] hub 1-1:1.0: probe with driver hub failed with error -5
[  441.836448][  T361] cdc_wdm 1-1:1.0: skipping garbage
[  441.841676][  T361] cdc_wdm 1-1:1.0: skipping garbage
[  441.846924][  T361] cdc_wdm 1-1:1.0: probe with driver cdc_wdm failed with error -22
[  442.107873][  T361] usb 3-1: USB disconnect, device number 25
[  442.122927][  T368] usb 1-1: USB disconnect, device number 15
[  442.129878][ T8415] rust_binder: Error in use_page_slow: ESRCH
[  442.129908][ T8415] rust_binder: use_range failure ESRCH
[  442.141513][ T8415] rust_binder: Failed to allocate buffer. len:24, is_oneway:false
[  442.141545][ T8415] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: ESRCH }
[  442.149767][ T8415] rust_binder: Transaction failed: BR_FAILED_REPLY { source: ESRCH } my_pid:124
[  442.193524][   T36] audit: type=1326 audit(2000000113.501:1209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8419 comm="syz.2.2678" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff57c18ebe9 code=0x0
[  442.334813][ T8421] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8421 comm=syz.2.2678
[  442.537988][   T36] audit: type=1400 audit(2000000113.841:1210): avc:  denied  { ioctl } for  pid=8430 comm="syz.0.2682" path="/dev/usbmon0" dev="devtmpfs" ino=90 ioctlcmd=0x920a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  442.610774][ T8433] 9pnet_fd: Insufficient options for proto=fd
[  442.633150][ T8435] tmpfs: Unknown parameter ':;2�SHDO��k����Q:ۘM�ck?3�\7o+Y�;W`��z��C�U\��v��"�I�]�:sU��Br?�I�S�Y�,8'
[  443.059022][ T8461] IPv6: NLM_F_CREATE should be specified when creating new route
[  443.235904][ T8463] fuseblk: Bad value for 'source'
[  443.248223][   T36] audit: type=1400 audit(2000000114.551:1211): avc:  denied  { create } for  pid=8466 comm="syz.1.2696" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  443.302559][  T361] usb 3-1: new low-speed USB device number 26 using dummy_hcd
[  443.454092][  T361] usb 3-1: No LPM exit latency info found, disabling LPM.
[  443.461922][  T361] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1040, setting to 8
[  443.472947][  T361] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  443.487648][  T361] usb 3-1: string descriptor 0 read error: -22
[  443.493886][  T361] usb 3-1: New USB device found, idVendor=16c0, idProduct=75e1, bcdDevice= 0.40
[  443.503312][  T361] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  443.512646][ T8461] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  443.744937][  T361] usbhid 3-1:1.0: can't add hid device: -71
[  443.750969][  T361] usbhid 3-1:1.0: probe with driver usbhid failed with error -71
[  443.759703][  T361] usb 3-1: USB disconnect, device number 26
[  443.842326][ T8495] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=37892 sclass=netlink_xfrm_socket pid=8495 comm=syz.1.2706
[  443.855845][ T8495] overlayfs: failed to clone upperpath
[  444.295556][ T8546] rust_binder: validate_parent_fixup: new_min_offset=58, sg_entry.length=0
[  444.295578][ T8546] rust_binder: Error while translating object.
[  444.304401][ T8546] rust_binder: Failure in copy_transaction_data: BR_FAILED_REPLY { source: EINVAL }
[  444.310672][ T8546] rust_binder: Transaction failed: BR_FAILED_REPLY { source: EINVAL } my_pid:145
[  445.079657][ T8592] 9pnet_fd: Insufficient options for proto=fd
[  445.370437][ T8610] Invalid ELF header type: 2 != 1
[  445.375966][   T36] audit: type=1400 audit(2000000116.671:1212): avc:  denied  { module_load } for  pid=8609 comm="syz.1.2746" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  445.404155][ T8613] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  445.753319][   T36] audit: type=1326 audit(2000000117.061:1213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8627 comm="syz.2.2752" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff57c18ebe9 code=0x0
[  445.818887][ T8653] overlayfs: failed to clone upperpath
[  445.876817][ T8664] netlink: 'syz.2.2764': attribute type 46 has an invalid length.
[  445.884767][ T8664] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2764'.
[  445.894921][ T8664] rust_binder: 186: no such ref 0
[  445.900362][ T8664] rust_binder: BC_REQUEST_FREEZE_NOTIFICATION invalid ref 4294967295
[  445.908634][ T8664] rust_binder: Write failure EINVAL in pid:186
[  445.935188][ T8673] fuse: Unknown parameter '000000000000000000000040x0000000000000004'
[  446.162576][  T368] usb 3-1: new full-speed USB device number 27 using dummy_hcd
[  446.313597][  T368] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  446.324653][  T368] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  446.334437][  T368] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  446.348005][  T368] usb 3-1: New USB device found, idVendor=056a, idProduct=0020, bcdDevice= 0.00
[  446.357453][  T368] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=4
[  446.365691][ T8676] overlayfs: failed to clone upperpath
[  446.365731][  T368] usb 3-1: SerialNumber: syz
[  446.380033][  T368] usb 3-1: config 0 descriptor??
[  446.558340][ T8695] netlink: 'syz.1.2775': attribute type 4 has an invalid length.
[  446.620643][ T8705] 9pnet_fd: Insufficient options for proto=fd
[  447.063095][   T36] audit: type=1400 audit(2000000118.371:1214): avc:  denied  { setattr } for  pid=8747 comm="syz.0.2793" path="pipe:[39607]" dev="pipefs" ino=39607 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  447.095372][ T8753] veth0: entered promiscuous mode
[  447.101012][   T36] audit: type=1326 audit(2000000118.401:1215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8752 comm="syz.0.2794" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb14698ebe9 code=0x0
[  447.292361][  T368] usbhid 3-1:0.0: can't add hid device: -71
[  447.302551][  T368] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  447.316717][  T368] usb 3-1: USB disconnect, device number 27
[  447.425360][ T8762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2797'.
[  447.551051][ T8763] tipc: Started in network mode
[  447.556106][ T8763] tipc: Node identity 5f000000000000000000000000000001, cluster identity 4711
[  447.565106][ T8763] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  447.928331][ T8752] veth0: left promiscuous mode
[  448.938273][   T36] audit: type=1400 audit(2000000120.241:1216): avc:  denied  { mounton } for  pid=8807 comm="syz.4.2813" path="/file0" dev="ramfs" ino=38728 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  448.960369][   T36] audit: type=1400 audit(2000000120.241:1217): avc:  denied  { remount } for  pid=8807 comm="syz.4.2813" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  449.873923][ T8844] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=35 sclass=netlink_tcpdiag_socket pid=8844 comm=syz.1.2827
[  449.886913][ T8844] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8844 comm=syz.1.2827
[  449.899944][ T8844] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=8844 comm=syz.1.2827
[  449.965778][ T8857] fuse: Unknown parameter 'hkC�0x0000000000000004'
[  450.017710][ T8862] fuse: Unknown parameter 'rootmo
'
[  450.415802][ T8887] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2843'.
[  450.425382][ T8885] rust_binder: BC_FREEZE_NOTIFICATION_DONE 0000000000000001 not found
[  450.433716][ T8885] rust_binder: Write failure EINVAL in pid:201
[  451.242572][   T31] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  451.402559][   T31] usb 3-1: Using ep0 maxpacket: 8
[  451.409224][   T31] usb 3-1: unable to get BOS descriptor or descriptor too short
[  451.417817][   T31] usb 3-1: config 0 has an invalid interface number: 88 but max is 0
[  451.426019][   T31] usb 3-1: config 0 has no interface number 0
[  451.432407][   T31] usb 3-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  451.443406][   T31] usb 3-1: config 0 interface 88 altsetting 8 endpoint 0x86 has invalid wMaxPacketSize 0
[  451.453257][   T31] usb 3-1: config 0 interface 88 has no altsetting 0
[  451.461968][   T31] usb 3-1: string descriptor 0 read error: -22
[  451.468211][   T31] usb 3-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[  451.477290][   T31] usb 3-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[  451.486129][   T31] usb 3-1: config 0 descriptor??
[  451.492800][   T31] input: USB Acecad Flair Tablet 0460:0004 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.88/input/input19
[  451.512441][ T8358] udevd[8358]: Error opening device "/dev/input/event3": Input/output error
[  451.521270][ T8358] udevd[8358]: Unable to EVIOCGABS device "/dev/input/event3"
[  451.528885][ T8358] udevd[8358]: Unable to EVIOCGABS device "/dev/input/event3"
[  451.693837][    T9] usb 3-1: USB disconnect, device number 28
[  451.833121][ T9018] 9pnet_fd: Insufficient options for proto=fd
[  451.914727][   T36] audit: type=1400 audit(2000000123.221:1218): avc:  denied  { rename } for  pid=9031 comm="syz.4.2892" name="file0" dev="tmpfs" ino=2597 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  451.915057][ T9032] /dev/rnullb0: Can't lookup blockdev
[  452.187629][ T9072] netlink: 'syz.0.2906': attribute type 4 has an invalid length.
[  452.197772][ T9072] netlink: 'syz.0.2906': attribute type 4 has an invalid length.
[  452.582559][   T31] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  452.732557][   T31] usb 3-1: Using ep0 maxpacket: 8
[  452.738976][   T31] usb 3-1: unable to get BOS descriptor or descriptor too short
[  452.747445][   T31] usb 3-1: config 0 has an invalid interface number: 88 but max is 0
[  452.755568][   T31] usb 3-1: config 0 has no interface number 0
[  452.761677][   T31] usb 3-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  452.772652][   T31] usb 3-1: config 0 interface 88 has no altsetting 0
[  452.781364][   T31] usb 3-1: string descriptor 0 read error: -22
[  452.787597][   T31] usb 3-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[  452.796663][   T31] usb 3-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[  452.805425][   T31] usb 3-1: config 0 descriptor??
[  452.811847][   T31] input: USB Acecad Flair Tablet 0460:0004 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.88/input/input20
[  453.014891][   T31] usb 3-1: USB disconnect, device number 29
[  453.018078][ T9124] 9pnet_fd: Insufficient options for proto=fd
[  453.061379][   T36] audit: type=1401 audit(2000000124.361:1219): op=setxattr invalid_context=73797374656D5F753A6F626A6563745F723A667361646D5F657865635F743A73300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002E2F66696C65300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
[  453.180736][ T9156] tmpfs: Unknown parameter 'hugg'
[  453.291720][ T9159] overlayfs: failed to clone upperpath
[  453.822568][   T31] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  453.872868][ T9182] batadv_slave_1: entered promiscuous mode
[  453.881262][ T9181] batadv_slave_1: left promiscuous mode
[  453.973675][   T31] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  453.985090][   T31] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  453.994309][   T31] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  454.003063][   T31] usb 3-1: config 0 descriptor??
[  454.218027][   T31] usbhid 3-1:0.0: can't add hid device: -71
[  454.231165][   T31] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  454.239805][   T31] usb 3-1: USB disconnect, device number 30
[  454.483001][ T9205] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2952'.
[  454.510198][   T36] audit: type=1400 audit(2000000125.811:1220): avc:  denied  { accept } for  pid=9206 comm="syz.4.2953" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  454.532581][   T31] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  454.650103][ T9231] netlink: 'syz.0.2962': attribute type 27 has an invalid length.
[  454.698223][   T31] usb 3-1: Using ep0 maxpacket: 8
[  454.707601][   T31] usb 3-1: unable to get BOS descriptor or descriptor too short
[  454.723931][   T31] usb 3-1: config 0 has an invalid interface number: 88 but max is 0
[  454.742540][   T31] usb 3-1: config 0 has no interface number 0
[  454.748666][   T31] usb 3-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  454.762531][   T36] audit: type=1400 audit(2000000126.071:1221): avc:  denied  { map } for  pid=9237 comm="syz.4.2964" path="socket:[41402]" dev="sockfs" ino=41402 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  454.785796][   T31] usb 3-1: config 0 interface 88 has no altsetting 0
[  454.796416][   T31] usb 3-1: string descriptor 0 read error: -22
[  454.802803][   T31] usb 3-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[  454.811899][   T31] usb 3-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[  454.823260][   T31] usb 3-1: config 0 descriptor??
[  454.833715][   T31] input: USB Acecad Flair Tablet 0460:0004 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.88/input/input21
[  455.032254][   T64] usb 3-1: USB disconnect, device number 31
[  455.153019][ T9269] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2975'.
[  455.473277][ T9286] 9pnet_fd: Insufficient options for proto=fd
[  455.567958][ T9293] 9pnet_fd: Insufficient options for proto=fd
[  455.594985][ T9297] netlink: 'syz.2.2985': attribute type 4 has an invalid length.
[  455.602846][ T9297] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.2985'.
[  455.842866][ T9299] bridge0: port 1(bridge_slave_0) entered blocking state
[  455.850017][ T9299] bridge0: port 1(bridge_slave_0) entered disabled state
[  455.857224][ T9299] bridge_slave_0: entered allmulticast mode
[  455.863633][ T9299] bridge_slave_0: entered promiscuous mode
[  455.870738][ T9299] bridge0: port 2(bridge_slave_1) entered blocking state
[  455.877844][ T9299] bridge0: port 2(bridge_slave_1) entered disabled state
[  455.885041][ T9299] bridge_slave_1: entered allmulticast mode
[  455.891711][ T9299] bridge_slave_1: entered promiscuous mode
[  455.901520][  T330] bridge_slave_1: left allmulticast mode
[  455.907487][  T330] bridge_slave_1: left promiscuous mode
[  455.913320][  T330] bridge0: port 2(bridge_slave_1) entered disabled state
[  455.920998][  T330] bridge_slave_0: left allmulticast mode
[  455.930082][  T330] bridge_slave_0: left promiscuous mode
[  455.935881][  T330] bridge0: port 1(bridge_slave_0) entered disabled state
[  456.059628][  T330] veth1_macvtap: left promiscuous mode
[  456.065601][  T330] veth0_vlan: left promiscuous mode
[  456.195021][ T9345] overlayfs: failed to clone upperpath
[  456.215766][ T9299] bridge0: port 2(bridge_slave_1) entered blocking state
[  456.222883][ T9299] bridge0: port 2(bridge_slave_1) entered forwarding state
[  456.230170][ T9299] bridge0: port 1(bridge_slave_0) entered blocking state
[  456.237326][ T9299] bridge0: port 1(bridge_slave_0) entered forwarding state
[  456.299255][ T9299] veth0_vlan: entered promiscuous mode
[  456.321092][ T9299] veth1_macvtap: entered promiscuous mode
[  456.387790][   T36] audit: type=1400 audit(456.031:1222): avc:  denied  { lock } for  pid=9359 comm="syz.0.3005" path="socket:[40644]" dev="sockfs" ino=40644 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  456.469093][ T9331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2998'.
[  456.578812][ T9374] macsec0: entered promiscuous mode
[  456.585341][ T9374] macsec0: left promiscuous mode
[  456.693956][ T9386] /dev/loop4: Can't lookup blockdev
[  456.709101][ T9388] /dev/loop0: Can't lookup blockdev
[  456.940444][ T9394] tmpfs: Unknown parameter '0x0000000000000007'
[  456.957177][ T9397] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3017'.
[  457.041604][   T36] audit: type=1326 audit(456.681:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.064864][   T36] audit: type=1326 audit(456.681:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.088207][   T36] audit: type=1326 audit(456.681:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.090951][ T9411] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3022'.
[  457.120404][   T36] audit: type=1326 audit(456.681:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.143342][   T36] audit: type=1326 audit(456.681:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.166276][   T36] audit: type=1326 audit(456.681:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.190535][   T36] audit: type=1326 audit(456.681:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.213377][   T36] audit: type=1326 audit(456.681:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.236303][   T36] audit: type=1326 audit(456.681:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.259557][   T36] audit: type=1326 audit(456.681:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9402 comm="syz.0.3019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14698ebe9 code=0x7ffc0000
[  457.429334][ T9448] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3035'.
[  457.815086][ T9495] netlink: 'syz.1.3051': attribute type 4 has an invalid length.
[  457.824897][ T9495] netlink: 'syz.1.3051': attribute type 4 has an invalid length.
[  458.208356][ T9517] /dev/rnullb0: Can't lookup blockdev
[  458.742380][ T9535] overlayfs: failed to clone upperpath
[  459.617900][ T9587] overlayfs: failed to clone upperpath
[  460.816525][ T9624] overlay: Unknown parameter 'fowner<00000000000000000000'
[  460.840018][ T9633] /dev/loop0: Can't lookup blockdev
[  461.040735][ T9661] overlayfs: failed to clone upperpath
[  461.046771][ T9661] tmpfs: Unknown parameter 'usrquota_block_hardlimit'
[  461.073800][   T48] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  461.102107][ T9667] batadv_slave_0: entered promiscuous mode
[  461.108883][ T9667] batadv_slave_0: left promiscuous mode
[  461.233552][   T48] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  461.244898][   T48] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  461.255260][   T48] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  461.272671][   T48] usb 6-1: config 0 descriptor??
[  461.342981][ T9726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3130'.
[  461.548914][ T9764] 9pnet_fd: Insufficient options for proto=fd
[  461.576684][ T9769] veth1: entered allmulticast mode
[  461.633004][ T9770] veth1: left allmulticast mode
[  461.681134][   T48] keytouch 0003:0926:3333.000F: fixing up Keytouch IEC report descriptor
[  461.691136][   T48] input: HID 0926:3333 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0926:3333.000F/input/input22
[  461.766630][   T48] keytouch 0003:0926:3333.000F: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.5-1/input0
[  461.985925][ T9778] netlink: 'syz.0.3146': attribute type 25 has an invalid length.
[  462.169440][  T342] usb 6-1: USB disconnect, device number 2
Stopping sshd: stopped /usr/sbin/sshd (pid 203)
OK
Stopping crond: stopped /usr/sbin/crond (pid 195)
OK
Stopping dhcpcd...
stopped /sbin/dhcpcd (pid 149)
Stopping network: [  462.347051][   T36] kauditd_printk_skb: 10 callbacks suppressed
[  462.347071][   T36] audit: type=1400 audit(461.991:1243): avc:  denied  { read write } for  pid=9803 comm="ip" path="/dev/console" dev="rootfs" ino=1125 scontext=system_u:system_r:ifconfig_t tcontext=system_u:object_r:root_t tclass=chr_file permissive=1
[  462.395234][   T36] audit: type=1400 audit(462.041:1244): avc:  denied  { unlink } for  pid=150 comm="dhcpcd" name="sock" dev="tmpfs" ino=423 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=sock_file permissive=1
OK
Stopping iptables: [  462.443268][   T36] audit: type=1400 audit(462.091:1245): avc:  denied  { read write } for  pid=9809 comm="iptables" path="/dev/console" dev="rootfs" ino=1125 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:root_t tclass=chr_file permissive=1
[  462.466494][   T36] audit: type=1400 audit(462.091:1246): avc:  denied  { search } for  pid=9809 comm="iptables" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
OK[  462.487884][   T36] audit: type=1400 audit(462.091:1247): avc:  denied  { write } for  pid=9809 comm="iptables" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1

[  462.512098][   T36] audit: type=1400 audit(462.091:1248): avc:  denied  { add_name } for  pid=9809 comm="iptables" name="xtables.lock" scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
Stopping system [  462.533369][   T36] audit: type=1400 audit(462.091:1249): avc:  denied  { create } for  pid=9809 comm="iptables" name="xtables.lock" scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
message bus: [  462.557718][   T36] audit: type=1400 audit(462.091:1250): avc:  denied  { read open } for  pid=9809 comm="iptables" path="/run/xtables.lock" dev="tmpfs" ino=3260 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  462.582283][   T36] audit: type=1400 audit(462.091:1251): avc:  denied  { lock } for  pid=9809 comm="iptables" path="/run/xtables.lock" dev="tmpfs" ino=3260 scontext=system_u:system_r:iptables_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
done
Stopping klogd: OK
Stopping acpid: [  462.806754][   T36] audit: type=1400 audit(462.451:1252): avc:  denied  { write } for  pid=96 comm="acpid" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  462.952575][  T342] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  463.102552][  T342] usb 6-1: Using ep0 maxpacket: 16
[  463.108748][  T342] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  463.119690][  T342] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  463.129462][  T342] usb 6-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00
[  463.138574][  T342] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  463.147071][  T342] usb 6-1: config 0 descriptor??
[  463.554807][  T342] hid-picolcd 0003:04D8:F002.0010: unknown main item tag 0x0
[  463.562289][  T342] hid-picolcd 0003:04D8:F002.0010: unknown main item tag 0x0
[  463.569887][  T342] hid-picolcd 0003:04D8:F002.0010: unknown main item tag 0x0
[  463.577388][  T342] hid-picolcd 0003:04D8:F002.0010: unknown main item tag 0x0
[  463.584886][  T342] hid-picolcd 0003:04D8:F002.0010: unknown main item tag 0x0
[  463.653870][  T342] hid-picolcd 0003:04D8:F002.0010: No report with id 0xf3 found
[  463.666113][  T342] hid-picolcd 0003:04D8:F002.0010: No report with id 0xf4 found
[  463.764709][ T9827] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3152'.
OK
Stopping syslogd: stopped /sbin/syslogd (pid 93)
OK
[  463.877068][ T1547] usb 6-1: USB disconnect, device number 3
[  463.882938][ T9896] overlayfs: failed to clone upperpath
[  463.955907][ T9907] sock: sock_set_timeout: `syz.5.3173' (pid 9907) tries to set negative timeout
umount: can't remount debugfs read-only
umount: sysfs busy - remounted read-only
umount: devtmpfs busy - remounted read-only
umount: can't remount /dev/root read-only
The system is going down NOW!Sent SIGTERM to all processes
Connection to 10.128.0.54 closed by remote host.
[  463.968865][ T9907] rust_binder: Write failure EFAULT in pid:25
[  464.423603][   T13] bridge_slave_1: left allmulticast mode
[  464.435462][   T13] bridge_slave_1: left promiscuous mode
[  464.441091][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  464.449112][   T13] bridge_slave_0: left allmulticast mode
[  464.454882][   T13] bridge_slave_0: left promiscuous mode
[  464.460522][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  464.635695][   T13] veth1_macvtap: left promiscuous mode
[  464.641234][   T13] veth0_vlan: left promiscuous mode
[  464.884903][   T13] bridge_slave_1: left allmulticast mode
[  464.890565][   T13] bridge_slave_1: left promiscuous mode
[  464.896228][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  464.903844][   T13] bridge_slave_0: left allmulticast mode
[  464.909488][   T13] bridge_slave_0: left promiscuous mode
[  464.915214][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  464.922926][   T13] bridge_slave_1: left allmulticast mode
[  464.928572][   T13] bridge_slave_1: left promiscuous mode
[  464.934249][   T13] +$<�: port 2(bridge_slave_1) entered disabled state
[  464.941649][   T13] bridge_slave_0: left allmulticast mode
[  464.947421][   T13] bridge_slave_0: left promiscuous mode
[  464.953049][   T13] +$<�: port 1(bridge_slave_0) entered disabled state
[  465.018341][   T13] +$<� (unregistering): left allmulticast mode
[  465.105575][   T13] tipc: Left network mode
[  465.111308][   T13] veth0_vlan: left promiscuous mode
[  465.116870][   T13] veth1_macvtap: left promiscuous mode
[  465.122360][   T13] veth0_vlan: left promiscuous mode
Sent SIGKILL to all processes
Requesting system poweroff
[  466.307578][ T9913] sd 0:0:1:0: [sda] Synchronizing SCSI cache
[  466.314390][ T9913] ACPI: PM: Preparing to enter system sleep state S5
[  466.321338][ T9913] kvm: exiting hardware virtualization
[  466.326955][ T9913] reboot: Power down
serialport: VM disconnected.