last executing test programs:

10m49.768408757s ago: executing program 0 (id=423):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttynull\x00', 0x201, 0x0)
write$auto(r0, 0x0, 0x7fffffff)
openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180)='/proc/stat\x00', 0x2, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd"], 0x14}}, 0x4000010)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/rose7/operstate\x00', 0xa0000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0xfffffffffffffffd, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x60000000, 0x2]}, 0x0)

10m48.733455661s ago: executing program 0 (id=426):
fcntl$auto(0x8000000000000001, 0x5, 0x8)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec4\x00', 0x101901, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce25aafc24b9952f997e703f222ce1", '\x00', "0001410c", '\x00', ["f5404de9641f0000000060c1", "70d9a9a3af9f39d000000001", "ef5ac4927ad89c5c00"]})
fcntl$auto(0x8000000000000001, 0x24, 0x8)
fcntl$auto(0x8000000000000001, 0x5, 0x8) (async)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec4\x00', 0x101901, 0x0) (async)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce25aafc24b9952f997e703f222ce1", '\x00', "0001410c", '\x00', ["f5404de9641f0000000060c1", "70d9a9a3af9f39d000000001", "ef5ac4927ad89c5c00"]}) (async)
fcntl$auto(0x8000000000000001, 0x24, 0x8) (async)

10m48.338077432s ago: executing program 0 (id=427):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'veth0_to_hsr\x00'})
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r1 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r1, 0x29, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110)
setsockopt$auto(0x400000000000003, 0x29, 0x39, 0xffffffffffffffff, 0x0)
read$auto(r0, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x401, 0x8000)
gettid()
io_uring_setup$auto(0x6, 0x0)
r3 = socket(0xa, 0x3, 0x87)
syz_genetlink_get_family_id$auto_nl80211(0x0, r3)
sendmsg$auto_NL80211_CMD_DISASSOCIATE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4000080}, 0x4000080)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, 0x0, 0x40)
openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)

10m47.72738634s ago: executing program 0 (id=430):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000200)="34aeede84184", 0x6)
r2 = getsockopt$auto(0x3, 0x200000000001, 0x3b, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_lowpan_control_fops_6lowpan(0xffffffffffffff9c, &(0x7f0000000040), 0x2001, 0x0)
write$auto_lowpan_control_fops_6lowpan(r3, 0x0, 0x14)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x8, 0x0)
chdir$auto(&(0x7f0000000280)='}[,&*}\x00')
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r4 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r5, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r4, 0x0, 0xffffff4b)
syz_clone(0xa1241011, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$auto_SO_BINDTOIFINDEX(r2, 0x3, 0x3e, &(0x7f00000002c0)='\x00\x00', &(0x7f0000000240)=0x1)
r6 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
removexattrat$auto(r0, &(0x7f0000000080)='}[,&*}\x00', 0x65, &(0x7f0000000180)='/!\x00')
getdents64$auto(0x0, 0x0, 0xe6)
getdents64$auto(r6, 0x0, 0x400)
r7 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r7, 0xc1105517, 0x0)

10m47.154594941s ago: executing program 0 (id=432):
r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x100182, 0x0)
open_by_handle_at$auto(0xffffff9c, &(0x7f0000000040)={0x2, 0x2, 'Ll'}, 0x2)
pread64$auto(r0, &(0x7f00000001c0)='\xb9+.\x00', 0x6, 0x0)

10m46.562068974s ago: executing program 0 (id=435):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
madvise$auto(0x4000, 0x2003f0, 0x15)

10m46.289438682s ago: executing program 32 (id=435):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
madvise$auto(0x4000, 0x2003f0, 0x15)

9m56.237058672s ago: executing program 4 (id=608):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttynull\x00', 0x201, 0x0)
write$auto(r0, 0x0, 0x7fffffff)
openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180)='/proc/stat\x00', 0x2, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000010)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/rose7/operstate\x00', 0xa0000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0xfffffffffffffffd, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x60000000, 0x2]}, 0x0)

9m55.518708202s ago: executing program 4 (id=611):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
madvise$auto(0x110c230000, 0x1, 0x9)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/bdi/7:6/read_ahead_kb\x00', 0x80000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)
sendmsg$auto_NL80211_CMD_REGISTER_FRAME(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000280)={0x1c, r2, 0x105, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x68054)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_EEE_GET(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000001300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000fddbdf25170000020000011214ff0100767863616e3100000000000000000000ce75e164dc"], 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0x400c850)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000001240)={&(0x7f0000000040), 0xc, &(0x7f0000001200)={&(0x7f0000000180)={0x105c, r5, 0x800, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_REG_INDOOR={0x4}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0x8}, @NL80211_ATTR_MLO_LINK_DISABLED={0x4}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0x1004, 0xba, "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"}, @NL80211_ATTR_FILS_ERP_RRK={0x15, 0xfc, "7c7b2a1035a165eccfdb359a4228e8eef4"}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xfffffff7}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x5}, @NL80211_ATTR_USE_RRM={0x4}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x8000}]}, 0x105c}, 0x1, 0x0, 0x0, 0x4014}, 0x24044010)
read$auto(r0, 0x0, 0x9)
r6 = getpgrp(0x0)
r7 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/snd/controlC0\x00', 0x80, 0x0)
r8 = semctl$auto_SETALL(0x2, 0x6, 0x11, 0xb1c)
process_vm_readv$auto(r8, &(0x7f0000000200)={&(0x7f0000000180)="ea478b5c622d2d60c27f853db66dc11209fc82e1a047dd6e6e25a2819f2f0263c7c7ab9170c9892f3196a2b390fc56860c4255d7f3e6b9be1b275ebbbb2d28a17a2abfcaeb997ff462c53d69c1900348741437a468ab8706e2af3f97a4522ed192bc0f800b40c8aac218c2097509e8be0e6357b6f2a9d6c19411", 0x38}, 0x0, &(0x7f0000000240)={&(0x7f0000000540)="1fb5502f410a3300a4ba928d7083b0cbdf33f27cc8dd9d54eef70d5459e2baf00cd2ac1351031415fef219644c49a88e855e85bb4332c015b015703d87b4d05b5795fe1977deaf729fc576d25711691326a41cf3b0e93c7c8ace48062f645d2cac857d432c6831709f6dde6332a75ba82fcf3097ebdbde12eaea3b622aec4c12b22fef7c828e44be14271d7e023b09e5bc34842c65bfbacd769aff64f25e3ffaf25bfacf9986a35c9efd3daff9266cedcb8a675dd0eb96cf141124a57ab560b2102729b3e558f5124e82ab3f3aa43bbaed3455be1d0806411d735770efdc8fe849bed5e1d632baf46e31b46dc2", 0x4}, 0x8, 0x3ff)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_UNLOCK(r7, 0x40405515, &(0x7f0000001700)={@inferred=r8, 0xc, 0xb, 0x9, "9d4724b76f4d07faf46cb94d85033d940fdf05ecff75c12163ddeab942ed73d07dadd6f407004d591eca8162"})
rt_sigqueueinfo$auto(r6, 0x7ff, &(0x7f0000001280)={@siginfo_0_0={0x7, 0x8001, 0x7, @_timer={r8, 0x8, @sival_int=0x101, 0x7ff}}})
write$auto(0x3, 0x0, 0x1)
r9 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/hugepages/hugepages-2048kB/nr_overcommit_hugepages\x00', 0x1c9282, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x3, 0x0)
r10 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r10, 0x8, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
write$auto(r9, 0x0, 0x10c)
ioctl$auto_SG_SET_RESERVED_SIZE2(r10, 0x2275, &(0x7f0000000000)="5e68f3007f57cb3e1eb4d66a87b461c3fdee01de600a18483c4da45e7a443b023a3a945a52")

9m54.588188708s ago: executing program 4 (id=620):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttynull\x00', 0x201, 0x0)
write$auto(r0, 0x0, 0x7fffffff)
openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180)='/proc/stat\x00', 0x2, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB='/!*'], 0x14}}, 0x4000010)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/rose7/operstate\x00', 0xa0000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0xfffffffffffffffd, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x60000000, 0x2]}, 0x0)

9m53.463428647s ago: executing program 4 (id=616):
r0 = prctl$auto_PR_SET_MM_START_DATA(0x803, 0x3, 0xffffffffffffffff, 0x3, 0x7)
r1 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NLBL_MGMT_C_REMOVEDEF(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="04002bbd7000fedbdf25050000000802002308000008000c0004001a0006000b0004000000"], 0x2c}, 0x1, 0x0, 0x0, 0x419b9e6a388e1056}, 0x830)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(0xffffffffffffffff, 0xc0385720, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto(r3, 0xc0045520, r2)

9m53.162225239s ago: executing program 4 (id=617):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x27, 0x80000, 0xfffffffd)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mkdir$auto(&(0x7f0000000000)='./file0\x00', 0x41d)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
gettid()
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x3d, 0x4909b6fb, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x0, 0x7, 0x2000, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x0, 0x0, 0xa, 0x70624ce7, 0x0, 0x6, 0xb, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x800, 0x0, 0x7, 0xffffffffffffffff, 0x5, 0x8000000000008, 0xfffffffffffffffc, 0x3, 0xa38, 0x4, 0x0, 0xfffffffffffffffc, 0x2, 0x3fffffffff, 0x0, 0x4, 0xffff]}, 0x202, 0xd)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="24051c27c100dedbdf250307cc0008000200", @ANYRES32=0x0, @ANYBLOB="060007000080000006000700050000000a00050000000000000000000a00010000000000000000000a0001000000000000000000060006000d00000006000600070000000a00"], 0x6c}}, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044040}, 0x24008890)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

9m51.997465667s ago: executing program 4 (id=619):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttynull\x00', 0x201, 0x0)
write$auto(r0, 0x0, 0x7fffffff)
openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180)='/proc/stat\x00', 0x2, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000010)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/rose7/operstate\x00', 0xa0000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0xfffffffffffffffd, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x60000000, 0x2]}, 0x0)

9m51.600034891s ago: executing program 33 (id=619):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttynull\x00', 0x201, 0x0)
write$auto(r0, 0x0, 0x7fffffff)
openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180)='/proc/stat\x00', 0x2, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000010)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/rose7/operstate\x00', 0xa0000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0xfffffffffffffffd, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x60000000, 0x2]}, 0x0)

9m5.589308803s ago: executing program 3 (id=797):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8008000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000011c0)='./cgroup.cpu/hugetlb.1GB.rsvd.failcnt\x00', 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x1, 0x5, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0xe, 0x43, 0x12, 0x3, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
madvise$auto(0x0, 0x3, 0x14)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000040)={&(0x7f0000001200)={0x1424, 0x0, 0x300, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x11b8, 0x1, 0x0, 0x1, [@nested={0x88, 0x10e, 0x0, 0x1, [@generic="5c76420ba5f37e5f30a961ba94ab6b2562b95a5a0ed4e5e509f46bc4ccb4d01bad57cc96d9a6aa112ea585b46c6fe2048779e845f75cbedf4d9c9639b1dba909460478987ed3726c63a9a64beae2c4a65adf9277aaa386a7e043490b74a429d39c9e4fcab4096c2f2c253f7f3ab236104673d49b95ba4a59fc8d895689dac3425fbda694"]}, @nested={0x100c, 0x129, 0x0, 0x1, [@typed={0x1004, 0x84, 0x0, 0x0, @binary="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"}, @nested={0x4, 0x6f}]}, @nested={0x11e, 0x90, 0x0, 0x1, [@typed={0x8, 0xcf, 0x0, 0x0, @uid}, @typed={0x14, 0x40, 0x0, 0x0, @ipv6=@loopback}, @nested={0x4, 0xd1}, @generic="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"]}]}, @TIPC_NLA_PUBL={0x255, 0x3, 0x0, 0x1, [@typed={0x8, 0x9b, 0x0, 0x0, @fd=r0}, @typed={0x14, 0xe1, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x43}}, @typed={0x8, 0xb, 0x0, 0x0, @ipv4=@multicast1}, @generic="3f443b6a15929fb32980f4b96781d718fc85aafccc6c68ddd1a1db12cabead23b842610a870f21e1fef833991e6d69d43602ef8528443cd5921b22fde699297118ca35ad02165c5d4591e89c71bde0f9d894b2037760d87186ee9e788173e0aa4f8a1cf81879649d432353a3296c162a57585b801ea149f2ba8a88192b9859c04028f7e801208f8f6d0f1bf10098c7dfe22f5f97afb5423bc35a671383dfcff410c5a3fad283ddf993fc0d03e22ef689b24b12244cb1b61e52eae219899eb0545cbef262b845d8a0f852708fe9a7946e0aadf60e0af3d96691256ee31c279a9c58f627f5765661c3a5", @nested={0x144, 0xaa, 0x0, 0x1, [@nested={0x4, 0x144}, @typed={0x14, 0x35, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @generic="8cefaf0c6f7d88f6e5c685c172e1bdb7b3c27b0f7c012cf06225717f80b5401a08bfe8b95566065a814f1f7666ff95739367f1555223e82bda56a2c7b355905003dfa66e14cd4ec06cdc372fbbd401ba17fcf1da3b4c4f6ceb7d5609d481abfac6e90cd794439666df4121a41648e275cb065f98abe7cbe8b6079f85144b4d47d910b3f9c5a1681b", @generic="659d9e6f8bc2d15d9584e3d703fd67f12788355c38e879398b803a4d23a974c3673d3d30aa0fb791d79927262806a1220a8bec1677c4ae8b61bca46275993c052807cc10a97cfc4047a0c1a28175fd6bc3cdb093d1a08852b9443249ce8a95e5c12607c67b8c38a32df6824e0057b69676c044ac7e3f5347ae4bb17859cfa06d87d52a9ce02ab97fa559e68e18924a3c54259bed45b9bd49", @typed={0x8, 0x102, 0x0, 0x0, @u32=0x80000001}]}]}]}, 0x1424}, 0x1, 0x0, 0x0, 0x4004808}, 0x40)
read$auto(r1, 0x0, 0x20)

9m4.528561582s ago: executing program 3 (id=803):
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon8\x00', 0x40000, 0x0)
timerfd_create$auto(0x0, 0x0)
socket(0x2, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x25, 0x1, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0xa, 0xa)
io_uring_setup$auto(0x6, 0x0)
open(0x0, 0x2a4c0, 0x20)
r0 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/uid_map\x00', 0x82000, 0x0)
pread64$auto(r0, &(0x7f0000000100)=',@-@#\x00', 0x100000001, 0x3)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto(r2, 0xc10c5541, r1)

9m4.125155102s ago: executing program 3 (id=807):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x4000, 0x0)
recvmsg$auto(r0, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000000c0)=""/4087, 0xff7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, 0x0, 0x22002, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = prctl$auto(0xc8, 0x2, 0x9, 0xffffffffffff8001, 0xbef)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
futex$auto(0x0, 0x8d, 0x0, 0x0, 0x0, 0x100)
ioctl$auto_MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000080)={&(0x7f0000000000)={0xde, 0xb3, 0x0, 0x8, 0x9, 0x101, 0x80, 0x41, 0x200000000000000, 0x0, 0xf7, 0x9, 0x1ff, @iso={0x7fff, 0x4}, 0x2, 0x401, 0x63, 0x4}, &(0x7f0000000040)="130b18bb7aa4b7e11eb2f75a6e46a11c3e33de145b42a9d9fa5d8bbfd75553fd23db688ed56194aa1dd4f4ac4450ca2533fc2fc2810c1e09", 0x2295})
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)

9m3.453844164s ago: executing program 3 (id=811):
socket(0xa, 0x3, 0x3a)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x3, 0x402000a, 0x6, 0xeb1, 0x401, 0x7ffe)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
io_uring_setup$auto(0x3ff, 0x0)
socket(0x2c, 0x3, 0x0)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
flock$auto(r0, 0x6)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aab4)
flock$auto(r1, 0x1)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x4242, 0x40)
flock$auto(r2, 0x2)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000040)={{0x0, 0xf2cf, 0x1ff, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x8})
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)

9m3.23075341s ago: executing program 3 (id=813):
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r0)
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)={0x14, r1, 0x737, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x2000000, 0x0, 0x6000091}, 0x0)

9m3.099759629s ago: executing program 3 (id=815):
r0 = socket(0x23, 0x80805, 0x0)
listen$auto(r0, 0x3b)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x541b, 0x38)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, 0x0, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/veth0/disable_ipv6\x00', 0x40802, 0x0)
pwrite64$auto(r2, 0x0, 0x0, 0xe950eaf)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/mtu\x00', 0x103041, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
mknod$auto(&(0x7f0000000300)='./file0\x00', 0x1001, 0x4)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
write$auto(r3, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0xffffffff)
ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f00000001c0))
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x10000, &(0x7f0000000100)={[0xfee, 0x8a, 0xf60, 0x8000000000000000, 0x7237e13b, 0xfffffffffffffff7, 0xdc76, 0x57, 0x8, 0x3, 0xa21, 0x4, 0xffffffffffffff21, 0x4, 0x5, 0x9]}, &(0x7f0000000180)={[0xffffffff, 0x9, 0x5, 0x80000001, 0x1, 0x3ff, 0x800000001000, 0x4, 0xfb, 0x0, 0x7, 0x1, 0x0, 0x7fffffff, 0x3, 0x7]}, &(0x7f0000000200)={[0x6, 0xce5e, 0x4, 0x803, 0xf, 0x1859700f, 0x2, 0x5e2aacdb, 0x6, 0x9, 0x0, 0x0, 0xb1, 0x2, 0xc, 0xe5]}, &(0x7f0000000040)={0x1afeb730, 0x43b5})
socketpair$auto(0x1, 0x801, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0xffffffff, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x400301, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TCFLSH2(r4, 0x40045431, 0x0)

8m47.967078816s ago: executing program 34 (id=815):
r0 = socket(0x23, 0x80805, 0x0)
listen$auto(r0, 0x3b)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x541b, 0x38)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, 0x0, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/veth0/disable_ipv6\x00', 0x40802, 0x0)
pwrite64$auto(r2, 0x0, 0x0, 0xe950eaf)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/mtu\x00', 0x103041, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
mknod$auto(&(0x7f0000000300)='./file0\x00', 0x1001, 0x4)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
write$auto(r3, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0xffffffff)
ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f00000001c0))
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x10000, &(0x7f0000000100)={[0xfee, 0x8a, 0xf60, 0x8000000000000000, 0x7237e13b, 0xfffffffffffffff7, 0xdc76, 0x57, 0x8, 0x3, 0xa21, 0x4, 0xffffffffffffff21, 0x4, 0x5, 0x9]}, &(0x7f0000000180)={[0xffffffff, 0x9, 0x5, 0x80000001, 0x1, 0x3ff, 0x800000001000, 0x4, 0xfb, 0x0, 0x7, 0x1, 0x0, 0x7fffffff, 0x3, 0x7]}, &(0x7f0000000200)={[0x6, 0xce5e, 0x4, 0x803, 0xf, 0x1859700f, 0x2, 0x5e2aacdb, 0x6, 0x9, 0x0, 0x0, 0xb1, 0x2, 0xc, 0xe5]}, &(0x7f0000000040)={0x1afeb730, 0x43b5})
socketpair$auto(0x1, 0x801, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0xffffffff, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x400301, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TCFLSH2(r4, 0x40045431, 0x0)

13.804919322s ago: executing program 6 (id=2901):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0x2, 0xbb66)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x2, 0x415, 0x8aa6, 0x40000000000ebd, 0xffffffffffffffff, 0x1000000003)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
r0 = socket(0x25, 0x1, 0x0)
connect$auto(r0, &(0x7f0000000040)=@generic={0x25, "835aabaf5dc454e38226799f73aa"}, 0x3d)
read$auto(0x4, 0x0, 0x7)
mlockall$auto(0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103400, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x9, 0x0, 0x103, 0xee01, 0x0, 0x0, 0xffffffffffffff91, 0xfd3, 0x2, 0xec, 0x4, 0x2, 0x1, 0x4, 0xfffffffffffffff8})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00'})
r2 = socket(0x18, 0x5, 0x1)
connect$auto(r2, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
setgroups$auto(0xe32, 0x0)
mremap$auto(0x4000, 0x1fffe00, 0x3fd6, 0x3, 0xfffff000)
socket(0x1e, 0x800, 0x2)
socket(0x2, 0x4, 0xfffffff0)
socket(0x28, 0x5, 0x0)
socket(0x2b, 0x1, 0x1)
pipe2$auto(0x0, 0x80)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
keyctl$auto(0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x8)

12.416824939s ago: executing program 5 (id=2909):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r1 = fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
madvise$auto(0x6, 0x1, 0xb)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001100)={0x14, r2, 0x301, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041)
signalfd4$auto(r0, &(0x7f0000000300)={0x3}, 0x2, 0x6)
r3 = bpf$auto(0xfffff001, &(0x7f0000000000)=@bpf_attr_3={0xa332, 0x2, 0x7, 0x3, 0xfffffbff, 0x2, 0x1, 0x4, 0x7, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x8, 0x81, 0xb03, 0x0, 0x3ff, 0x7, @attach_prog_fd, 0x2, 0x630, 0x57d, 0x9, 0x8}, 0xa3)
r4 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000140), r3)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="b000", @ANYRES16=r4, @ANYBLOB="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"], 0xb0}, 0x1, 0x0, 0x0, 0x80}, 0x60000000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
r5 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read$auto_uinput_fops_uinput(r5, &(0x7f0000001400)=""/4112, 0x1010)
epoll_ctl$auto_EPOLL_CTL_DEL(r1, 0x2, r3, &(0x7f00000002c0)={0x3c87, 0x2})
read$auto(r5, 0x0, 0xfdf3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x9, 0x0, 0x103, 0xee01, 0x0, 0x0, 0xffffffffffffff91, 0x0, 0x2, 0xec, 0x4, 0x2, 0x1, 0x4, 0xfffffffffffffff8})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r6 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r6, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)

11.319198215s ago: executing program 5 (id=2912):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x58, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF1_AGE={0x8, 0x3, 0x3a}]}, 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB='U'], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0x0)

10.941612947s ago: executing program 5 (id=2913):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = memfd_create$auto(0x0, 0xe)
fcntl$auto(0xff80000000000000, 0x409, 0x13)
fallocate$auto(r0, 0x3, 0x2, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r2, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000002580)={0x24, r3, 0x9ec6579d452c1f15, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x28, 0x0, 0x0, @uid}]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0xc000}, 0x20000080)
sendmsg$auto_TIPC_NL_NET_GET(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)={0x17c, r3, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x168, 0x1, 0x0, 0x1, [@nested={0x51, 0x78, 0x0, 0x1, [@nested={0x4, 0xde}, @nested={0x4, 0xeb}, @nested={0x4, 0x43}, @typed={0x4, 0xb6}, @typed={0x8, 0x8b, 0x0, 0x0, @fd=r0}, @generic="47a784d08aedb27ca0eb72011750b472de70f092010a83fc4246b80eb3f6a96ad88fadceaacd87b5deeb628b09", @typed={0x8, 0x13, 0x0, 0x0, @ipv4=@remote}]}, @typed={0xf, 0x5, 0x0, 0x0, @str='-^+)[%)-\\\'\x00'}, @typed={0xfe, 0x5a, 0x0, 0x0, @binary="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"}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x80}, 0x20000031)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/tunl0/threaded\x00', 0x1a1a42, 0x0)
sendfile$auto(r4, r4, 0x0, 0xe00000000)

10.750864121s ago: executing program 6 (id=2914):
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x1, 0x0)
socket(0x2, 0x3, 0xfffffff1)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
socket(0x2, 0x1, 0x84)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000200), 0xffffffffffffffff)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
ioctl$auto_RTC_RD_TIME(r0, 0x80247009, 0x0)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x1a9c01, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x4601, 0x0)
socket(0x29, 0x2, 0x0)
r2 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x42a240, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r2, 0x0, 0x0)
r3 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/stack\x00', 0x181100, 0x0)
read$auto_proc_single_file_operations_base(r3, &(0x7f0000000080)=""/112, 0x70)
socket$nl_generic(0x10, 0x3, 0x10)

10.642996251s ago: executing program 5 (id=2915):
mmap$auto(0x0, 0x40009, 0xdb, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
ioctl$auto(0x3, 0x4b67, 0x38)

10.071567226s ago: executing program 5 (id=2916):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x120, 0x0)
bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0x88, 0x8, 0xae85, 0x66b, 0x4, 0x7ff}, 0x6f4)
r1 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bluetooth/hci4/hci4:201\x00', 0x22000, 0x0)
socket(0x10, 0x2, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x10000000000000a, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000004580)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000ffdbdf2501210000080007000400000008000900", @ANYRES32=r2, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="0a00010001"], 0x38}}, 0x2008014)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x2, 0x8, 0x0)
read$auto_btrfs_dir_file_operations_inode(r1, &(0x7f0000000100)=""/33, 0x21)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffff7effffd01, 0x0)
ioctl$auto_BLKTRACETEARDOWN2(0xffffffffffffffff, 0x1276, 0x0)
r5 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r5, 0x0, 0x1f40)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3)
write$auto(r3, 0x0, 0xfffffdef)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000040)=""/69, 0x45)

9.073325568s ago: executing program 5 (id=2920):
connect$auto(0x3, 0x0, 0x55)
connect$auto(0x3, 0x0, 0x55)
bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x7, 0xffff, 0x6, 0x81, 0x68198}, 0x6ef)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
socket(0x2, 0x80002, 0x73)
r0 = socket(0x10, 0x2, 0x4)
r1 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000140), 0x382, 0x0)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x7, 0x0, 0x5, 0x3, 0x2000000000010006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0x1b16, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x77, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc06f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x107, 0x6, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000]}, 0x1fe, 0x81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='*', @ANYRES16, @ANYBLOB="010029bd"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c890}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
ppoll$auto(&(0x7f0000000040)={<r2=>r1, 0x9, 0x5}, 0x9, 0x0, 0x0, 0x8)
write$auto(r2, &(0x7f00000000c0)='ns/net\x00', 0xe61d)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)

8.570933831s ago: executing program 6 (id=2923):
ioperm$auto(0x7, 0x6, 0x2)
getrlimit$auto(0x2, &(0x7f00000002c0)={0x4, 0x6})

8.158982605s ago: executing program 6 (id=2925):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001300)={'batadv_slave_0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000040)={0x28, r2, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x10000001}]}, 0x28}, 0x1, 0x0, 0x0, 0x9dfefc5e47f5c72f}, 0x0) (fail_nth: 1)

7.542117793s ago: executing program 6 (id=2927):
read$auto(0xffffffffffffffff, &(0x7f00000000c0)='\x00', 0x2)

7.286774783s ago: executing program 6 (id=2928):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x120, 0x0)
bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0x88, 0x8, 0xae85, 0x66b, 0x4, 0x7ff}, 0x6f4)
r1 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bluetooth/hci4/hci4:201\x00', 0x22000, 0x0)
socket(0x10, 0x2, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x10000000000000a, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000004580)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000ffdbdf2501210000080007000400000008000900", @ANYRES32=r2, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="0a00010001"], 0x38}}, 0x2008014)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x2, 0x8, 0x0)
read$auto_btrfs_dir_file_operations_inode(r1, &(0x7f0000000100)=""/33, 0x21)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffff7effffd01, 0x0)
ioctl$auto_BLKTRACETEARDOWN2(0xffffffffffffffff, 0x1276, 0x0)
r5 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r5, 0x0, 0x1f40)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3)
write$auto(r3, 0x0, 0xfffffdef)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000040)=""/69, 0x45)

7.171573284s ago: executing program 1 (id=2930):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x58, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF1_AGE={0x8, 0x3, 0x3a}]}, 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="7201", @ANYBLOB='U'], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0x0)

7.115797684s ago: executing program 1 (id=2931):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r1 = fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
madvise$auto(0x6, 0x1, 0xb)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001100)={0x14, r2, 0x301, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041)
signalfd4$auto(r0, &(0x7f0000000300)={0x3}, 0x2, 0x6)
r3 = bpf$auto(0xfffff001, &(0x7f0000000000)=@bpf_attr_3={0xa332, 0x2, 0x7, 0x3, 0xfffffbff, 0x2, 0x1, 0x4, 0x7, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x8, 0x81, 0xb03, 0x0, 0x3ff, 0x7, @attach_prog_fd, 0x2, 0x630, 0x57d, 0x9, 0x8}, 0xa3)
r4 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000140), r3)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="b000", @ANYRES16=r4, @ANYBLOB="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"], 0xb0}, 0x1, 0x0, 0x0, 0x80}, 0x60000000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
r5 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read$auto_uinput_fops_uinput(r5, &(0x7f0000001400)=""/4112, 0x1010)
epoll_ctl$auto_EPOLL_CTL_DEL(r1, 0x2, r3, &(0x7f00000002c0)={0x3c87, 0x2})
read$auto(r5, 0x0, 0xfdf3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x9, 0x0, 0x103, 0xee01, 0x0, 0x0, 0xffffffffffffff91, 0x0, 0x2, 0xec, 0x4, 0x2, 0x1, 0x4, 0xfffffffffffffff8})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r6 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r6, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)

4.700555792s ago: executing program 1 (id=2939):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0x1d, 0x2, 0x6)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
ioperm$auto(0x2, 0x3, 0x1)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
clock_adjtime$auto(0x0, &(0x7f0000000000)={0x7, 0x8, 0x4, 0x8, 0x7fffffff, 0xffffffc0, 0x6, 0x5, 0x3, 0x0, 0xb9, {}, 0x1000, 0x7, 0xb, 0x5, 0x2000006, 0x101, 0x7fff, 0x3})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027b4839f3015398d3b", @ANYRES32, @ANYRES32, @ANYRES64], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
r1 = socket(0xa, 0x2, 0x0)
r2 = socket(0x18, 0x5, 0x1)
connect$auto(r2, &(0x7f0000000000)=@in={0x2, 0x100}, 0x26)
sendmsg$auto_L2TP_CMD_SESSION_GET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x2004c004)
adjtimex$auto(&(0x7f0000000100)={0x248a134b, 0x0, 0x4, 0x6efd, 0x8, 0x10001, 0x3, 0x0, 0x3, 0x4, 0xff, {0x9, 0x1}, 0x0, 0x81, 0x4, 0x80000000, 0x0, 0xffffffff, 0x9, 0x4, 0x4, 0x8, 0x8})
getsockopt$auto_SO_PASSCRED(r0, 0x80000000, 0x10, &(0x7f0000000200)='}d\x00', &(0x7f0000000240)=0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
rt_sigsuspend$auto(0x0, 0x8)
pkey_free$auto(0xfffffffd)
getpeername$auto(0x3, 0x0, 0x0)
unshare$auto(0x40000080)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_counters/ncache\x00', 0xa001, 0x0)
mmap$auto(0x9, 0x52, 0x8, 0x20080010, r2, 0x9)
socket(0x10, 0x5, 0x103)
mmap$auto(0x0, 0xd, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x0, 0x18, 0x0, 0x9)
sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x64, 0x0, 0x0, 0x70bd28, 0x25dfdbfe, {}, [@NET_SHAPER_A_BW_MAX={0xc, 0x4, 0x6}, @NET_SHAPER_A_PARENT={0x14, 0x9, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x40000401}]}, @NET_SHAPER_A_BURST={0xc, 0x5, 0x8}, @NET_SHAPER_A_PRIORITY={0x8, 0x6, 0x7}, @NET_SHAPER_A_METRIC={0x8, 0x2, 0x3c3d8626}, @NET_SHAPER_A_IFINDEX={0x8}, @NET_SHAPER_A_BW_MAX={0xc, 0x4, 0xb59}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000801}, 0xb7775bd7cd5da3a0)
write$auto(r3, &(0x7f0000000000)='72\xa1\x84\xbd0\x00f\x19\x1c\xc7k\x00\x00\x00\x00', 0x7)
ioctl$auto(0x3, 0x80084d17, 0x38)

3.508864435s ago: executing program 2 (id=2941):
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
bpf$auto(0x1009, &(0x7f00000000c0)=@bpf_attr_7={@btf_id=0x8, 0x0, 0x2}, 0x7c)
ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r0, 0x1, &(0x7f00000000c0))
r1 = syz_clone(0x1034100, &(0x7f0000000180)="6e8cd5b3c410512cdf8f0c1e36334ba149948b43d16caf470ef62bfd0f239c85a9e7267821eceb4c65fe79c3b0959a959139e26a311d51571a3050eebabd60677d6b46984d888e260a78432a1ed5c249170c6bed781a13d35c4a6b08cf391aabc501ef934f239730f7eaef8757c64fa501bc912238594a9efa88c8a5530bfa786e5ac16475cb6ea0dcc46ef1c28fdf22bf8cfc600f72a1d0729482c9d51466", 0x9f, &(0x7f0000000040), &(0x7f0000000240), &(0x7f0000000380)="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")
fcntl$auto_F_ADD_SEALS(0xffffffffffffffff, 0x409, r1)

3.267570372s ago: executing program 2 (id=2942):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000100), r0)
sendmsg$auto_IOAM6_CMD_DUMP_SCHEMAS(r0, &(0x7f00000000c0)={0x0, 0xa6ff, &(0x7f00000001c0)={&(0x7f0000001ec0)={0x14, r1, 0x721, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0xfffffffffffff000, 0x4000001}, 0x8000)

3.138507648s ago: executing program 2 (id=2943):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xa0080, 0x0)
read$auto(r0, &(0x7f00000000c0)='\x00', 0x2)

3.029391677s ago: executing program 2 (id=2944):
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000001c0), r0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f0000000280)={{0x88, 0xee00, 0x0, 0x0, 0x2, 0x1, 0xb}, &(0x7f0000000200)=0x1e, &(0x7f0000000240)=0x7, 0x2, 0x687, 0x0, 0x8, 0x3, 0x7, 0x2, 0x0, @raw=0x23ec, @inferred=0xffffffffffffffff})
syz_clone(0x5000400, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
remap_file_pages$auto(0x10005, 0xffd, 0x0, 0x9, 0x10007)
mmap$auto(0x101, 0xe, 0xe1, 0x59, 0xffffffffffffffff, 0x200)
socket(0x26, 0x2, 0x3)
r1 = io_uring_setup$auto(0x6, 0x0)
shmget$auto(0x0, 0xb15, 0x40e64)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r2 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
read$auto(r1, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0xfffffffc)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto(0x3, 0x40a0ae49, 0x38)
ioctl$auto(r2, 0x8, r3)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
mmap$auto(0x0, 0x20007, 0x80000000004000df, 0x10004000eb1, 0x8, 0x8000)
read$auto(0x4, 0x0, 0x7ffffffff000)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/if_inet6\x00', 0x40100, 0x0)
read$auto_l2cap_debugfs_fops_(0xffffffffffffffff, &(0x7f0000002d00)=""/239, 0xef)
pread64$auto(r5, 0x0, 0x10001, 0x830)
write$auto(r4, 0x0, 0x100)

2.782030375s ago: executing program 1 (id=2945):
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x1, 0x0)
socket(0x2, 0x3, 0xfffffff1)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
socket(0x2, 0x1, 0x84)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000200), 0xffffffffffffffff)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
ioctl$auto_RTC_RD_TIME(r0, 0x80247009, 0x0)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x1a9c01, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x4601, 0x0)
socket(0x29, 0x2, 0x0)
r2 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x42a240, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r2, 0x0, 0x0)
r3 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/stack\x00', 0x181100, 0x0)
read$auto_proc_single_file_operations_base(r3, &(0x7f0000000080)=""/112, 0x70)
socket$nl_generic(0x10, 0x3, 0x10)

1.154293932s ago: executing program 1 (id=2946):
process_madvise$auto(0x3, 0x0, 0xb, 0xc15, 0x8000000000000000)
mknodat$auto(0xffffffffffffffff, 0x0, 0x5, 0x80)
r0 = open$dir(&(0x7f0000002140)='./file0\x00', 0x6000, 0x1)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r2 = bpf$auto(0x7, 0xffffffffffffffff, 0x10001)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
write$auto(0x3, 0x0, 0x100082)
unlinkat$auto(r0, &(0x7f0000000200)='./file0\x00', 0x4)
shmctl$auto_SHM_UNLOCK(0xfeb, 0xc, &(0x7f0000001240)={{0x1, 0x0, 0xffffffffffffffff, 0x7fff, 0xfffff54a, 0x7, 0x40}, 0xcbf, 0x4, 0x2, 0x1, @raw=0xff, @raw=0x6, 0x3, 0x0, &(0x7f0000000140)="fbd5ee1ed69d0cc2c9ad321f06c1bed796151ff04226c1438dac372fbfad0742104c69bd16", &(0x7f0000000240)="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"})
msgctl$auto_MSG_INFO(0x598, 0xc, &(0x7f0000001340)={{0xed, <r3=>0xffffffffffffffff, 0xee01, 0x101, 0x7, 0xfffffffb, 0x200}, &(0x7f00000012c0)=0x2, 0x0, 0x2, 0x71, 0xe5ff, 0x8, 0x7, 0x6, 0x3, 0xd, @inferred, @raw=0x7})
unshare$auto(0x40000080)
r4 = gettid()
process_vm_readv$auto(r4, &(0x7f0000000040)={0x0, 0x2}, 0x4, &(0x7f00000020c0)={0x0, 0x100000000000002}, 0xffffffffffffff3a, 0x1000000)
ioctl$auto_BLKTRACESETUP32(r1, 0xc0401273, &(0x7f0000000180)={"4640847b722ff5318e590f219016cfefa3e11040a392cf2ebb890033ed75bcf1", 0x0, 0x5, 0x6, 0xb, 0x2})
r5 = epoll_create$auto(0x3e)
epoll_ctl$auto(r5, 0x1, 0x8000000000000000, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f00000025c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000002580)={&(0x7f0000002600)=ANY=[@ANYBLOB="b4040000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="08008900", @ANYRES32=r0, @ANYBLOB="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"], 0x4b4}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
mmap$auto(0x0, 0x1, 0xdc, 0x9cd5, 0x2, 0x8004)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyxf\x00', 0x22002, 0x0)
openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x271042, 0x0)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)
r6 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000002100)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
madvise$auto(0x0, 0x6, 0x15)
read$auto_proc_pid_maps_operations_internal(r6, &(0x7f00000010c0)=""/4096, 0x1000)

983.305476ms ago: executing program 2 (id=2947):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x5, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd10\x00', 0x169780, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r1, 0x1260, 0x0)
close_range$auto(0x4000000000000, 0x5, 0x4000000000002)
prctl$auto_PR_GET_SECCOMP(0x15, 0x6, 0x0, 0x11, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
readv$auto(0x3, &(0x7f0000000240)={0x0, 0x40000036}, 0x9)
read$auto(0x3, 0x0, 0x400000)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace\x00', 0x101000, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
futex$auto(&(0x7f0000001180), 0xfffffffc, 0x1, 0x0, 0x0, 0x7a000000)
r2 = socket(0x15, 0x2, 0x1)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002bbd7000fddbdf25040000000a0011002b2d2d242b2c00000f000e00"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000)
r4 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/maps\x00', 0x0, 0x0)
pread64$auto(r4, 0x0, 0xeda5, 0xc86)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[], 0x1ac}}, 0x40000)
r6 = socket(0x10, 0x2, 0x6)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x14, r7, 0x1, 0x70bd28, 0x25dfdbfd, {0x11, 0x0, 0xfc}}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044)
r8 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r8, &(0x7f00000007c0)="ffb9a45277da", 0x6)
recvmmsg$auto(r5, &(0x7f0000000100)={{0x0, 0xffff, 0x0, 0x1, 0x0, 0x2, 0x52}, 0x80000}, 0x10a, 0x8, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)

29.731943ms ago: executing program 1 (id=2948):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
adjtimex$auto(0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
socket(0x15, 0x5, 0x0)
sched_rr_get_interval$auto(0x0, &(0x7f0000000080)={0x0, 0xe7})
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/platform/dummy_hcd.0/usb1/interface_authorized_default\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
write$auto(0x3, 0x0, 0x2)

0s ago: executing program 2 (id=2949):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r1 = fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
madvise$auto(0x6, 0x1, 0xb)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001100)={0x14, r2, 0x301, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x20000041)
signalfd4$auto(r0, &(0x7f0000000300)={0x3}, 0x2, 0x6)
r3 = bpf$auto(0xfffff001, &(0x7f0000000000)=@bpf_attr_3={0xa332, 0x2, 0x7, 0x3, 0xfffffbff, 0x2, 0x1, 0x4, 0x7, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x8, 0x81, 0xb03, 0x0, 0x3ff, 0x7, @attach_prog_fd, 0x2, 0x630, 0x57d, 0x9, 0x8}, 0xa3)
r4 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000140), r3)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="b0000000", @ANYRES16=r4, @ANYBLOB="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"], 0xb0}, 0x1, 0x0, 0x0, 0x80}, 0x60000000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
r5 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_uinput_fops_uinput(r5, &(0x7f0000001400)=""/4112, 0x1010)
epoll_ctl$auto_EPOLL_CTL_DEL(r1, 0x2, r3, &(0x7f00000002c0)={0x3c87, 0x2})
read$auto(r5, 0x0, 0xfdf3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x9, 0x0, 0x103, 0xee01, 0x0, 0x0, 0xffffffffffffff91, 0x0, 0x2, 0xec, 0x4, 0x2, 0x1, 0x4, 0xfffffffffffffff8})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r6 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r6, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)

kernel console output (not intermixed with test programs):

T15571] [U] 
[  705.478753][T15571] [U] 
[  705.487610][T15571] [U] 
[  705.490454][T15571] [U] 
[  705.493214][T15571] [U] 
[  705.495960][T15571] [U] 
[  705.506382][T15571] [U] 
[  705.509144][T15571] [U] 
[  705.509740][T15567] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2392'.
[  705.511859][T15571] [U] 
[  705.511915][T15571] [U] 
[  705.548683][T15571] [U] 
[  705.551442][T15571] [U] 
[  705.554188][T15571] [U] 
[  705.556935][T15571] [U] 
[  705.599182][T15571] [U] 
[  705.601944][T15571] [U] 
[  705.604694][T15571] [U] 
[  705.607448][T15571] [U] 
[  705.628681][T15571] [U] 
[  705.631455][T15571] [U] 
[  705.634213][T15571] [U] 
[  705.636960][T15571] [U] 
[  705.654577][T15571] [U] 
[  705.657366][T15571] [U] 
[  705.660109][T15571] [U] 
[  705.662847][T15571] [U] 
[  705.686218][T15571] [U] 
[  705.688971][T15571] [U] 
[  705.691706][T15571] [U] 
[  705.694444][T15571] [U] 
[  705.712199][T15571] [U] 
[  705.714945][T15571] [U] 
[  705.717680][T15571] [U] 
[  705.720424][T15571] [U] 
[  705.747679][T15571] [U] 
[  705.750448][T15571] [U] 
[  705.753198][T15571] [U] 
[  705.755942][T15571] [U] 
[  705.790997][T15571] [U] 
[  705.793767][T15571] [U] 
[  705.796517][T15571] [U] 
[  705.799255][T15571] [U] 
[  705.862450][T15571] [U] 
[  705.865216][T15571] [U] 
[  705.867960][T15571] [U] 
[  705.870700][T15571] [U] 
[  705.920971][T15571] [U] 
[  705.923748][T15571] [U] 
[  705.926488][T15571] [U] 
[  705.929223][T15571] [U] 
[  705.932899][T15571] [U] 
[  705.935642][T15571] [U] 
[  705.938353][T15571] [U] 
[  705.941063][T15571] [U] 
[  705.986526][T15571] [U] 
[  705.989282][T15571] [U] 
[  705.992023][T15571] [U] 
[  705.994756][T15571] [U] 
[  706.175218][T15571] [U] 
[  706.177988][T15571] [U] 
[  706.180720][T15571] [U] 
[  706.183472][T15571] [U] 
[  706.309545][T15571] [U] 
[  706.312316][T15571] [U] 
[  706.315050][T15571] [U] 
[  706.317780][T15571] [U] 
[  706.436766][T15571] [U] 
[  706.439535][T15571] [U] 
[  706.442277][T15571] [U] 
[  706.445012][T15571] [U] 
[  706.511257][T15571] [U] 
[  707.167020][T15591] [U] 
[  707.169795][T15591] [U] 
[  707.172527][T15591] [U] 
[  707.175258][T15591] [U] 
[  707.213744][T15591] [U] 
[  707.216518][T15591] [U] 
[  707.219248][T15591] [U] 
[  707.221986][T15591] [U] 
[  707.266193][T15591] [U] 
[  707.268976][T15591] [U] 
[  707.271728][T15591] [U] 
[  707.274465][T15591] [U] 
[  707.342087][T15591] [U] 
[  707.344852][T15591] [U] 
[  707.347592][T15591] [U] 
[  707.350328][T15591] [U] 
[  707.429174][T15591] [U] 
[  707.431946][T15591] [U] 
[  707.434681][T15591] [U] 
[  707.437440][T15591] [U] 
[  707.519410][T15591] [U] 
[  707.522175][T15591] [U] 
[  707.524911][T15591] [U] 
[  707.527643][T15591] [U] 
[  707.618807][T15591] [U] 
[  707.621572][T15591] [U] 
[  707.624321][T15591] [U] 
[  707.627053][T15591] [U] 
[  707.741154][T15591] [U] 
[  707.743936][T15591] [U] 
[  707.746696][T15591] [U] 
[  707.749437][T15591] [U] 
[  707.857022][T15591] [U] 
[  707.859801][T15591] [U] 
[  707.862549][T15591] [U] 
[  707.865289][T15591] [U] 
[  707.916557][T15591] [U] 
[  707.919424][T15591] [U] 
[  707.922183][T15591] [U] 
[  707.924912][T15591] [U] 
[  707.999279][T15594] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2403'.
[  708.067099][T15591] [U] 
[  708.227696][T15592] kexec: Could not allocate control_code_buffer
[  708.684324][T15599] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2404'.
[  709.886502][T15611] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2406'.
[  711.388765][T15632] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2412'.
[  711.607102][T15636] [U] 
[  711.609839][T15636] [U] 
[  711.612565][T15636] [U] 
[  711.615305][T15636] [U] 
[  711.656762][T15636] [U] 
[  711.659513][T15636] [U] 
[  711.662250][T15636] [U] 
[  711.664975][T15636] [U] 
[  711.681490][T15636] [U] 
[  711.684268][T15636] [U] 
[  711.687032][T15636] [U] 
[  711.689781][T15636] [U] 
[  711.694874][T15623] netlink: 'syz.2.2409': attribute type 1 has an invalid length.
[  711.731798][T15636] [U] 
[  711.734575][T15636] [U] 
[  711.737403][T15636] [U] 
[  711.740138][T15636] [U] 
[  711.812605][T15636] [U] 
[  711.815368][T15636] [U] 
[  711.818108][T15636] [U] 
[  711.820851][T15636] [U] 
[  711.831265][T15636] [U] 
[  711.834041][T15636] [U] 
[  711.836789][T15636] [U] 
[  711.839525][T15636] [U] 
[  711.884536][T15636] [U] 
[  711.887295][T15636] [U] 
[  711.890045][T15636] [U] 
[  711.892771][T15636] [U] 
[  711.951082][T15636] [U] 
[  711.953871][T15636] [U] 
[  711.956592][T15636] [U] 
[  711.959302][T15636] [U] 
[  712.022953][T15636] [U] 
[  712.025729][T15636] [U] 
[  712.028474][T15636] [U] 
[  712.031226][T15636] [U] 
[  712.079973][T15643] bond0: option packets_per_slave: invalid value (Xµn‘pæ)
[  712.096424][T15643] bond0: option packets_per_slave: allowed values 0 - 65535
[  712.107174][T15627] netlink: 'syz.1.2411': attribute type 1 has an invalid length.
[  712.163039][T15636] [U] 
[  712.165825][T15636] [U] 
[  712.168572][T15636] [U] 
[  712.171308][T15636] [U] 
[  712.226991][T15636] [U] 
[  712.229779][T15636] [U] 
[  712.232544][T15636] [U] 
[  712.235314][T15636] [U] 
[  712.261542][T15636] [U] 
[  712.264320][T15636] [U] 
[  712.267070][T15636] [U] 
[  712.269824][T15636] [U] 
[  712.301218][T15636] [U] 
[  712.303990][T15636] [U] 
[  712.306736][T15636] [U] 
[  712.309475][T15636] [U] 
[  712.331050][T15636] [U] 
[  712.333824][T15636] [U] 
[  712.336568][T15636] [U] 
[  712.339298][T15636] [U] 
[  712.352216][T15636] [U] 
[  712.354970][T15636] [U] 
[  712.357713][T15636] [U] 
[  712.360451][T15636] [U] 
[  712.394725][T15636] [U] 
[  712.397479][T15636] [U] 
[  712.400214][T15636] [U] 
[  712.402948][T15636] [U] 
[  712.431137][T15636] [U] 
[  712.433913][T15636] [U] 
[  712.436655][T15636] [U] 
[  712.439384][T15636] [U] 
[  712.503192][T15636] [U] 
[  713.557667][T15661] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2423'.
[  713.815305][T15667] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2425'.
[  715.582661][T15680] netlink: 'syz.5.2429': attribute type 1 has an invalid length.
[  715.945630][T15689] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2431'.
[  716.291922][T15690] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2439'.
[  716.921429][T15708] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2445'.
[  717.201679][T15709] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2436'.
[  718.937531][T15730] netlink: 'syz.1.2442': attribute type 1 has an invalid length.
[  719.234782][T15745] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2448'.
[  719.470610][T15749] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2449'.
[  720.372461][T15768] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2461'.

syzkaller
syzkaller login: [  721.143108][T15779] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2454'.
[  723.159142][T15794] netlink: 'syz.5.2460': attribute type 1 has an invalid length.
[  723.314947][T15796] netlink: 'syz.1.2462': attribute type 1 has an invalid length.
[  724.982169][T15838] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2473'.
[  725.731828][T15841] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2475'.
[  725.787363][T15848] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2484'.
[  726.418094][T15855] netlink: 'syz.1.2478': attribute type 1 has an invalid length.
[  727.305002][T15872] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2491'.
[  727.577208][T15876] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2483'.
[  727.911805][T15883] FAULT_INJECTION: forcing a failure.
[  727.911805][T15883] name failslab, interval 1, probability 0, space 0, times 0
[  727.990455][T15883] CPU: 0 UID: 0 PID: 15883 Comm: syz.2.2486 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  727.990493][T15883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  727.990511][T15883] Call Trace:
[  727.990520][T15883]  <TASK>
[  727.990531][T15883]  dump_stack_lvl+0x16c/0x1f0
[  727.990571][T15883]  should_fail_ex+0x50a/0x650
[  727.990620][T15883]  ? fs_reclaim_acquire+0xae/0x150
[  727.990666][T15883]  ? btrfs_scan_one_device+0x13a/0xb50
[  727.990700][T15883]  should_failslab+0xc2/0x120
[  727.990727][T15883]  __kmalloc_cache_noprof+0x68/0x410
[  727.990776][T15883]  btrfs_scan_one_device+0x13a/0xb50
[  727.990811][T15883]  ? __pfx_lock_release+0x10/0x10
[  727.990857][T15883]  ? __pfx_btrfs_scan_one_device+0x10/0x10
[  727.990893][T15883]  ? __might_fault+0xe3/0x190
[  727.990938][T15883]  btrfs_control_ioctl+0x1f6/0x3c0
[  727.990986][T15883]  ? __pfx_btrfs_control_ioctl+0x10/0x10
[  727.991032][T15883]  ? __fget_files+0x206/0x3a0
[  727.991077][T15883]  ? __pfx_btrfs_control_ioctl+0x10/0x10
[  727.991128][T15883]  __x64_sys_ioctl+0x190/0x200
[  727.991165][T15883]  do_syscall_64+0xcd/0x250
[  727.991204][T15883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.991244][T15883] RIP: 0033:0x7f45e3f8cde9
[  727.991266][T15883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  727.991295][T15883] RSP: 002b:00007f45e4d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  727.991321][T15883] RAX: ffffffffffffffda RBX: 00007f45e41a5fa0 RCX: 00007f45e3f8cde9
[  727.991341][T15883] RDX: 0000400000000240 RSI: 0000000090009427 RDI: 0000000000000006
[  727.991360][T15883] RBP: 00007f45e400e2a0 R08: 0000000000000000 R09: 0000000000000000
[  727.991379][T15883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  727.991397][T15883] R13: 0000000000000000 R14: 00007f45e41a5fa0 R15: 00007ffea7c121d8
[  727.991433][T15883]  </TASK>
[  728.527365][T15874] netlink: 'syz.1.2482': attribute type 1 has an invalid length.
[  728.823721][T15897] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(8.16.0), cmd(1)
[  728.887570][T15897] FAULT_INJECTION: forcing a failure.
[  728.887570][T15897] name failslab, interval 1, probability 0, space 0, times 0
[  728.942936][T15897] CPU: 0 UID: 0 PID: 15897 Comm: syz.6.2492 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  728.942974][T15897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  728.942991][T15897] Call Trace:
[  728.943001][T15897]  <TASK>
[  728.943013][T15897]  dump_stack_lvl+0x16c/0x1f0
[  728.943055][T15897]  should_fail_ex+0x50a/0x650
[  728.943116][T15897]  ? fs_reclaim_acquire+0xae/0x150
[  728.943148][T15897]  ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  728.943175][T15897]  should_failslab+0xc2/0x120
[  728.943197][T15897]  __kmalloc_cache_noprof+0x68/0x410
[  728.943228][T15897]  ? snd_pcm_hw_param_first+0x301/0x6e0
[  728.943253][T15897]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  728.943284][T15897]  snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  728.943315][T15897]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  728.943343][T15897]  ? calc_src_frames.isra.0+0x187/0x1d0
[  728.943370][T15897]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  728.943404][T15897]  snd_pcm_oss_change_params_locked+0x13cd/0x3a60
[  728.943443][T15897]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  728.943491][T15897]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  728.943519][T15897]  snd_pcm_oss_write+0x4a3/0xa00
[  728.943546][T15897]  ? bpf_lsm_file_permission+0x9/0x10
[  728.943591][T15897]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  728.943616][T15897]  vfs_write+0x24c/0x1150
[  728.943654][T15897]  ? __pfx_vfs_write+0x10/0x10
[  728.943684][T15897]  ? do_futex+0x123/0x350
[  728.943712][T15897]  ? __pfx_do_futex+0x10/0x10
[  728.943748][T15897]  ? __x64_sys_futex+0x1e1/0x4c0
[  728.943776][T15897]  ? __x64_sys_futex+0x1ea/0x4c0
[  728.943808][T15897]  ksys_write+0x12b/0x250
[  728.943848][T15897]  ? __pfx_ksys_write+0x10/0x10
[  728.943888][T15897]  do_syscall_64+0xcd/0x250
[  728.943920][T15897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.943954][T15897] RIP: 0033:0x7f7cc618cde9
[  728.943972][T15897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  728.943995][T15897] RSP: 002b:00007f7cc6f0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  728.944022][T15897] RAX: ffffffffffffffda RBX: 00007f7cc63a5fa0 RCX: 00007f7cc618cde9
[  728.944044][T15897] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000002
[  728.944064][T15897] RBP: 00007f7cc620e2a0 R08: 0000000000000000 R09: 0000000000000000
[  728.944087][T15897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  728.944101][T15897] R13: 0000000000000000 R14: 00007f7cc63a5fa0 R15: 00007ffd39f6bf68
[  728.944130][T15897]  </TASK>
[  730.114318][T15898] netlink: 'syz.1.2490': attribute type 1 has an invalid length.
[  730.516447][ T5845] smc: removing net device syz_tun with user defined pnetid ETHTOOL
[  730.647984][T15916] [U] 
[  730.650765][T15916] [U] 
[  730.653530][T15916] [U] 
[  730.656278][T15916] [U] 
[  730.697803][T15916] [U] 
[  730.700570][T15916] [U] 
[  730.703324][T15916] [U] 
[  730.706072][T15916] [U] 
[  730.752606][T15916] [U] 
[  730.755368][T15916] [U] 
[  730.758112][T15916] [U] 
[  730.760847][T15916] [U] 
[  730.856182][T15916] [U] 
[  730.858948][T15916] [U] 
[  730.861693][T15916] [U] 
[  730.864448][T15916] [U] 
[  730.927998][T15916] [U] 
[  730.930801][T15916] [U] 
[  730.932898][ T5852] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  730.933537][T15916] [U] 
[  730.943345][T15916] [U] 
[  730.960849][ T5852] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  730.971534][ T5852] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  730.971829][T15916] [U] 
[  730.981273][T15916] [U] 
[  730.984027][T15916] [U] 
[  730.986759][T15916] [U] 
[  731.023032][ T5852] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  731.052110][ T5852] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  731.061074][T15916] [U] 
[  731.063936][T15916] [U] 
[  731.066683][T15916] [U] 
[  731.069451][T15916] [U] 
[  731.072505][ T5852] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  731.080018][T15916] [U] 
[  731.082765][T15916] [U] 
[  731.085498][T15916] [U] 
[  731.088229][T15916] [U] 
[  731.091392][T15916] [U] 
[  731.094152][T15916] [U] 
[  731.096901][T15916] [U] 
[  731.099636][T15916] [U] 
[  731.106431][ T2945] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  731.121490][T15916] [U] 
[  731.124255][T15916] [U] 
[  731.127006][T15916] [U] 
[  731.129748][T15916] [U] 
[  731.132989][T15916] [U] 
[  731.135742][T15916] [U] 
[  731.138481][T15916] [U] 
[  731.141216][T15916] [U] 
[  731.144638][T15916] [U] 
[  731.147406][T15916] [U] 
[  731.150170][T15916] [U] 
[  731.152938][T15916] [U] 
[  731.156288][T15916] [U] 
[  731.159051][T15916] [U] 
[  731.161790][T15916] [U] 
[  731.164530][T15916] [U] 
[  731.171085][T15908] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2494'.
[  731.171824][T15916] [U] 
[  731.183095][T15916] [U] 
[  731.185858][T15916] [U] 
[  731.188596][T15916] [U] 
[  731.191689][T15916] [U] 
[  731.194450][T15916] [U] 
[  731.197175][T15916] [U] 
[  731.199891][T15916] [U] 
[  731.203336][T15916] [U] 
[  731.206111][T15916] [U] 
[  731.208853][T15916] [U] 
[  731.211593][T15916] [U] 
[  731.217666][T15916] [U] 
[  731.220433][T15916] [U] 
[  731.223170][T15916] [U] 
[  731.225890][T15916] [U] 
[  731.228906][T15916] [U] 
[  731.231650][T15916] [U] 
[  731.234399][T15916] [U] 
[  731.237146][T15916] [U] 
[  731.240263][T15916] [U] 
[  731.243010][T15916] [U] 
[  731.245765][T15916] [U] 
[  731.248497][T15916] [U] 
[  731.279112][T15916] [U] 
[  731.281870][T15916] [U] 
[  731.284619][T15916] [U] 
[  731.287384][T15916] [U] 
[  731.346410][ T2945] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  731.370968][T15916] [U] 
[  731.373740][T15916] [U] 
[  731.376486][T15916] [U] 
[  731.379223][T15916] [U] 
[  731.389771][T15916] [U] 
[  731.392528][T15916] [U] 
[  731.395268][T15916] [U] 
[  731.398006][T15916] [U] 
[  731.412614][T15916] [U] 
[  731.415371][T15916] [U] 
[  731.418109][T15916] [U] 
[  731.420842][T15916] [U] 
[  731.469089][T15916] [U] 
[  731.471849][T15916] [U] 
[  731.474586][T15916] [U] 
[  731.477331][T15916] [U] 
[  731.526651][T15916] [U] 
[  731.586307][ T2945] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  731.705992][ T2945] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  732.044802][T15918] chnl_net:caif_netlink_parms(): no params data found
[  732.150886][ T2945] bridge_slave_1: left allmulticast mode
[  732.194783][ T2945] bridge_slave_1: left promiscuous mode
[  732.236912][ T2945] bridge0: port 2(bridge_slave_1) entered disabled state
[  732.344225][ T2945] bridge_slave_0: left allmulticast mode
[  732.349951][ T2945] bridge_slave_0: left promiscuous mode
[  732.422107][ T2945] bridge0: port 1(bridge_slave_0) entered disabled state
[  733.023898][T15937] netlink: 'syz.5.2501': attribute type 1 has an invalid length.
[  733.180796][ T5852] Bluetooth: hci2: command tx timeout
[  733.774847][ T2945] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  733.804528][ T2945] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  733.822863][ T2945] bond0 (unregistering): Released all slaves
[  733.855355][T15931] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2503'.
[  733.887972][T15944] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2504'.
[  734.236933][T15948] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2505'.
[  734.309167][T15918] bridge0: port 1(bridge_slave_0) entered blocking state
[  734.330824][T15918] bridge0: port 1(bridge_slave_0) entered disabled state
[  734.364621][T15918] bridge_slave_0: entered allmulticast mode
[  734.391893][T15918] bridge_slave_0: entered promiscuous mode
[  734.412781][T15918] bridge0: port 2(bridge_slave_1) entered blocking state
[  734.419881][T15918] bridge0: port 2(bridge_slave_1) entered disabled state
[  734.471272][T15918] bridge_slave_1: entered allmulticast mode
[  734.481955][T15918] bridge_slave_1: entered promiscuous mode
[  734.709221][T15918] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  734.723941][T15918] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  734.840040][ T2945] hsr_slave_0: left promiscuous mode
[  734.853812][ T2945] hsr_slave_1: left promiscuous mode
[  734.867216][ T2945] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  734.907469][ T2945] batman_adv: batadv0: Removing interface: batadv_slave_0
[  734.936220][ T2945] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  734.960863][ T2945] batman_adv: batadv0: Removing interface: batadv_slave_1
[  735.023911][ T2945] veth1_macvtap: left promiscuous mode
[  735.029529][ T2945] veth0_macvtap: left promiscuous mode
[  735.052064][ T2945] veth1_vlan: left promiscuous mode
[  735.081288][ T2945] veth0_vlan: left promiscuous mode
[  735.261169][ T5852] Bluetooth: hci2: command tx timeout
[  736.166947][ T2945] team0 (unregistering): Port device team_slave_0 removed
[  736.956165][T15987] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[  737.116203][T15959] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2506'.
[  737.142939][T15982] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2513'.
[  737.274406][T15918] team0: Port device team_slave_0 added
[  737.332209][T15918] team0: Port device team_slave_1 added
[  737.340860][ T5852] Bluetooth: hci2: command tx timeout
[  737.551378][T15918] batman_adv: batadv0: Adding interface: batadv_slave_0
[  737.558367][T15918] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  737.592438][T15984] netlink: 'syz.5.2514': attribute type 1 has an invalid length.
[  737.689374][T15918] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  737.712131][T15918] batman_adv: batadv0: Adding interface: batadv_slave_1
[  737.783411][T15918] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  737.843522][T15918] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  738.156062][T15918] hsr_slave_0: entered promiscuous mode
[  738.200393][T15918] hsr_slave_1: entered promiscuous mode
[  738.514330][T16000] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  739.420820][ T5852] Bluetooth: hci2: command tx timeout
[  739.702190][T15998] netlink: 'syz.5.2518': attribute type 1 has an invalid length.
[  739.820301][T15918] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  739.857837][T15918] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  739.923138][T15918] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  739.977045][T15918] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  740.338136][T15918] 8021q: adding VLAN 0 to HW filter on device bond0
[  740.425969][T15918] 8021q: adding VLAN 0 to HW filter on device team0
[  740.499054][ T2945] bridge0: port 1(bridge_slave_0) entered blocking state
[  740.506211][ T2945] bridge0: port 1(bridge_slave_0) entered forwarding state
[  740.543738][T16020] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  740.621060][T13207] bridge0: port 2(bridge_slave_1) entered blocking state
[  740.628146][T13207] bridge0: port 2(bridge_slave_1) entered forwarding state
[  740.849576][T16022] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  740.958816][T16023] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  741.162183][T16027] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  741.245757][T16029] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  741.402753][T15918] 8021q: adding VLAN 0 to HW filter on device batadv0
[  741.627252][T15918] veth0_vlan: entered promiscuous mode
[  741.688689][T15918] veth1_vlan: entered promiscuous mode
[  741.748890][T16033] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[  741.762272][T15918] veth0_macvtap: entered promiscuous mode
[  741.773150][T15918] veth1_macvtap: entered promiscuous mode
[  741.806446][T15918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  741.898612][T15918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  741.951642][T16013] netlink: 'syz.5.2523': attribute type 1 has an invalid length.
[  741.969752][T15918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  742.008128][T15918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  742.066830][T15918] batman_adv: batadv0: Interface activated: batadv_slave_0
[  742.099266][T15918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  742.160779][T15918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  742.190767][T15918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  742.221253][T15918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  742.250128][T15918] batman_adv: batadv0: Interface activated: batadv_slave_1
[  742.288639][T15918] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  742.354339][T15918] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  742.383668][T16031] netlink: 'syz.6.2526': attribute type 1 has an invalid length.
[  742.411491][T15918] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  742.460900][T15918] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  742.525568][T16041] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  742.760874][T13207] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  742.768719][T13207] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  742.873677][T13619] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  743.097135][T13619] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  743.155262][T16040] netlink: 'syz.1.2527': attribute type 1 has an invalid length.
[  743.247427][T16049] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  743.634764][T16052] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2495'.
[  744.773423][T16062] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2532'.
[  745.702493][T16078] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1)
[  745.762768][T16078] FAULT_INJECTION: forcing a failure.
[  745.762768][T16078] name failslab, interval 1, probability 0, space 0, times 0
[  745.808196][T16078] CPU: 1 UID: 0 PID: 16078 Comm: syz.5.2539 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  745.808236][T16078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  745.808256][T16078] Call Trace:
[  745.808266][T16078]  <TASK>
[  745.808278][T16078]  dump_stack_lvl+0x16c/0x1f0
[  745.808322][T16078]  should_fail_ex+0x50a/0x650
[  745.808372][T16078]  ? fs_reclaim_acquire+0xae/0x150
[  745.808415][T16078]  ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  745.808448][T16078]  should_failslab+0xc2/0x120
[  745.808491][T16078]  __kmalloc_cache_noprof+0x68/0x410
[  745.808533][T16078]  ? snd_pcm_hw_param_first+0x301/0x6e0
[  745.808568][T16078]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  745.808609][T16078]  snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  745.808650][T16078]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  745.808687][T16078]  ? calc_src_frames.isra.0+0x187/0x1d0
[  745.808722][T16078]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  745.808768][T16078]  snd_pcm_oss_change_params_locked+0x13cd/0x3a60
[  745.808819][T16078]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  745.808891][T16078]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  745.808927][T16078]  snd_pcm_oss_write+0x4a3/0xa00
[  745.808960][T16078]  ? bpf_lsm_file_permission+0x9/0x10
[  745.809011][T16078]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  745.809042][T16078]  vfs_write+0x24c/0x1150
[  745.809087][T16078]  ? __pfx_vfs_write+0x10/0x10
[  745.809123][T16078]  ? do_futex+0x123/0x350
[  745.809157][T16078]  ? __pfx_do_futex+0x10/0x10
[  745.809201][T16078]  ? __x64_sys_futex+0x1e1/0x4c0
[  745.809233][T16078]  ? __x64_sys_futex+0x1ea/0x4c0
[  745.809272][T16078]  ksys_write+0x12b/0x250
[  745.809310][T16078]  ? __pfx_ksys_write+0x10/0x10
[  745.809357][T16078]  do_syscall_64+0xcd/0x250
[  745.809394][T16078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  745.809433][T16078] RIP: 0033:0x7f444218cde9
[  745.809455][T16078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  745.809488][T16078] RSP: 002b:00007f444309d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  745.809514][T16078] RAX: ffffffffffffffda RBX: 00007f44423a5fa0 RCX: 00007f444218cde9
[  745.809533][T16078] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000002
[  745.809551][T16078] RBP: 00007f444220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  745.809568][T16078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  745.809585][T16078] R13: 0000000000000000 R14: 00007f44423a5fa0 R15: 00007ffdf535cf38
[  745.809620][T16078]  </TASK>
[  746.134589][T16086] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  746.354985][T16088] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2542'.
[  746.489225][T16082] netlink: 'syz.2.2538': attribute type 1 has an invalid length.
[  748.119956][T16103] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2545'.
[  748.288379][T16114] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  748.772474][T16125] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  749.847206][T16137] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  750.074571][T16142] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  750.334215][T16131] netlink: 'syz.6.2553': attribute type 1 has an invalid length.
[  750.573780][T16135] netlink: 'syz.1.2554': attribute type 1 has an invalid length.
[  751.640807][T16159] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  752.113431][T16154] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2558'.
[  752.127465][T16155] netlink: 'syz.6.2557': attribute type 1 has an invalid length.
[  752.465193][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  752.473596][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  752.591545][T16170] FAULT_INJECTION: forcing a failure.
[  752.591545][T16170] name failslab, interval 1, probability 0, space 0, times 0
[  752.619538][T16170] CPU: 1 UID: 0 PID: 16170 Comm: syz.1.2563 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  752.619574][T16170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  752.619591][T16170] Call Trace:
[  752.619599][T16170]  <TASK>
[  752.619610][T16170]  dump_stack_lvl+0x16c/0x1f0
[  752.619649][T16170]  should_fail_ex+0x50a/0x650
[  752.619691][T16170]  ? fs_reclaim_acquire+0xae/0x150
[  752.619729][T16170]  ? kernfs_fop_write_iter+0x223/0x500
[  752.619757][T16170]  should_failslab+0xc2/0x120
[  752.619792][T16170]  __kmalloc_noprof+0xcb/0x510
[  752.619832][T16170]  ? rcu_is_watching+0x12/0xc0
[  752.619869][T16170]  kernfs_fop_write_iter+0x223/0x500
[  752.619903][T16170]  vfs_write+0x5ae/0x1150
[  752.619942][T16170]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  752.619973][T16170]  ? __pfx___mutex_lock+0x10/0x10
[  752.620007][T16170]  ? __pfx_vfs_write+0x10/0x10
[  752.620066][T16170]  ksys_write+0x12b/0x250
[  752.620103][T16170]  ? __pfx_ksys_write+0x10/0x10
[  752.620150][T16170]  do_syscall_64+0xcd/0x250
[  752.620186][T16170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.620224][T16170] RIP: 0033:0x7f516958cde9
[  752.620245][T16170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  752.620273][T16170] RSP: 002b:00007f516a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  752.620299][T16170] RAX: ffffffffffffffda RBX: 00007f51697a5fa0 RCX: 00007f516958cde9
[  752.620318][T16170] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  752.620335][T16170] RBP: 00007f516a3d6090 R08: 0000000000000000 R09: 0000000000000000
[  752.620352][T16170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  752.620369][T16170] R13: 0000000000000000 R14: 00007f51697a5fa0 R15: 00007ffc513b7dd8
[  752.620405][T16170]  </TASK>
[  753.201685][T16165] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2560'.
[  753.609104][T16194] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000000006
[  753.911918][T16200] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  754.081533][T16203] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  754.291761][T16208] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  754.456293][T16213] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  754.639169][T16218] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  754.992210][T16225] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1)
[  755.033593][T16225] FAULT_INJECTION: forcing a failure.
[  755.033593][T16225] name failslab, interval 1, probability 0, space 0, times 0
[  755.101319][T16225] CPU: 0 UID: 0 PID: 16225 Comm: syz.1.2575 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  755.101358][T16225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  755.101376][T16225] Call Trace:
[  755.101385][T16225]  <TASK>
[  755.101397][T16225]  dump_stack_lvl+0x16c/0x1f0
[  755.101439][T16225]  should_fail_ex+0x50a/0x650
[  755.101485][T16225]  ? fs_reclaim_acquire+0xae/0x150
[  755.101533][T16225]  ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  755.101567][T16225]  should_failslab+0xc2/0x120
[  755.101595][T16225]  __kmalloc_cache_noprof+0x68/0x410
[  755.101633][T16225]  ? snd_pcm_hw_param_first+0x301/0x6e0
[  755.101664][T16225]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  755.101703][T16225]  snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  755.101741][T16225]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  755.101777][T16225]  ? calc_src_frames.isra.0+0x187/0x1d0
[  755.101809][T16225]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  755.101851][T16225]  snd_pcm_oss_change_params_locked+0x13cd/0x3a60
[  755.101898][T16225]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  755.101958][T16225]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  755.101993][T16225]  snd_pcm_oss_write+0x4a3/0xa00
[  755.102027][T16225]  ? bpf_lsm_file_permission+0x9/0x10
[  755.102080][T16225]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  755.102112][T16225]  vfs_write+0x24c/0x1150
[  755.102159][T16225]  ? __pfx_vfs_write+0x10/0x10
[  755.102197][T16225]  ? do_futex+0x123/0x350
[  755.102232][T16225]  ? __pfx_do_futex+0x10/0x10
[  755.102277][T16225]  ? __x64_sys_futex+0x1e1/0x4c0
[  755.102310][T16225]  ? __x64_sys_futex+0x1ea/0x4c0
[  755.102350][T16225]  ksys_write+0x12b/0x250
[  755.102389][T16225]  ? __pfx_ksys_write+0x10/0x10
[  755.102438][T16225]  do_syscall_64+0xcd/0x250
[  755.102477][T16225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  755.102525][T16225] RIP: 0033:0x7f516958cde9
[  755.102549][T16225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  755.102579][T16225] RSP: 002b:00007f516a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  755.102606][T16225] RAX: ffffffffffffffda RBX: 00007f51697a5fa0 RCX: 00007f516958cde9
[  755.102625][T16225] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000005
[  755.102643][T16225] RBP: 00007f516960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  755.102662][T16225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  755.102679][T16225] R13: 0000000000000000 R14: 00007f51697a5fa0 R15: 00007ffc513b7dd8
[  755.102715][T16225]  </TASK>
[  755.480928][T16226] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2572'.
[  755.552435][T16223] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2574'.
[  755.865996][T16212] kexec: Could not allocate control_code_buffer
[  755.980736][   T29] audit: type=1400 audit(59582.642:9): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=16229 comm="syz.1.2576"
[  756.107481][T16239] FAULT_INJECTION: forcing a failure.
[  756.107481][T16239] name failslab, interval 1, probability 0, space 0, times 0
[  756.182195][T16239] CPU: 0 UID: 0 PID: 16239 Comm: syz.2.2577 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  756.182245][T16239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  756.182262][T16239] Call Trace:
[  756.182270][T16239]  <TASK>
[  756.182283][T16239]  dump_stack_lvl+0x16c/0x1f0
[  756.182323][T16239]  should_fail_ex+0x50a/0x650
[  756.182368][T16239]  ? fs_reclaim_acquire+0xae/0x150
[  756.182414][T16239]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  756.182460][T16239]  should_failslab+0xc2/0x120
[  756.182488][T16239]  __kmalloc_noprof+0xcb/0x510
[  756.182530][T16239]  ? __pfx___mutex_lock+0x10/0x10
[  756.182572][T16239]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  756.182625][T16239]  genl_start+0x18e/0x960
[  756.182669][T16239]  __netlink_dump_start+0x607/0x970
[  756.182711][T16239]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[  756.182758][T16239]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  756.182812][T16239]  ? __pfx_genl_get_cmd+0x10/0x10
[  756.182848][T16239]  ? __pfx_genl_start+0x10/0x10
[  756.182884][T16239]  ? __pfx_genl_dumpit+0x10/0x10
[  756.182921][T16239]  ? __pfx_genl_done+0x10/0x10
[  756.182964][T16239]  ? __radix_tree_lookup+0x21f/0x2c0
[  756.183001][T16239]  genl_rcv_msg+0x470/0x800
[  756.183050][T16239]  ? __pfx_genl_rcv_msg+0x10/0x10
[  756.183108][T16239]  ? __pfx_ctrl_dumppolicy_start+0x10/0x10
[  756.183175][T16239]  ? __pfx_ctrl_dumppolicy+0x10/0x10
[  756.183221][T16239]  ? __pfx_ctrl_dumppolicy_done+0x10/0x10
[  756.183282][T16239]  netlink_rcv_skb+0x16b/0x440
[  756.183326][T16239]  ? __pfx_genl_rcv_msg+0x10/0x10
[  756.183377][T16239]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  756.183445][T16239]  ? down_read+0xc9/0x330
[  756.183485][T16239]  ? __pfx_down_read+0x10/0x10
[  756.183535][T16239]  ? netlink_deliver_tap+0x1ae/0xd30
[  756.183581][T16239]  genl_rcv+0x28/0x40
[  756.183623][T16239]  netlink_unicast+0x53c/0x7f0
[  756.183670][T16239]  ? __pfx_netlink_unicast+0x10/0x10
[  756.183715][T16239]  ? __phys_addr_symbol+0x30/0x80
[  756.183748][T16239]  ? __check_object_size+0x488/0x710
[  756.183787][T16239]  netlink_sendmsg+0x8b8/0xd70
[  756.183836][T16239]  ? __pfx_netlink_sendmsg+0x10/0x10
[  756.183892][T16239]  ____sys_sendmsg+0xaaf/0xc90
[  756.183933][T16239]  ? copy_msghdr_from_user+0x10b/0x160
[  756.183979][T16239]  ? __pfx_____sys_sendmsg+0x10/0x10
[  756.184033][T16239]  ___sys_sendmsg+0x135/0x1e0
[  756.184082][T16239]  ? __pfx____sys_sendmsg+0x10/0x10
[  756.184145][T16239]  ? __pfx_lock_release+0x10/0x10
[  756.184190][T16239]  ? trace_lock_acquire+0x14e/0x1f0
[  756.184254][T16239]  ? __fget_files+0x206/0x3a0
[  756.184320][T16239]  __sys_sendmsg+0x16e/0x220
[  756.184374][T16239]  ? __pfx___sys_sendmsg+0x10/0x10
[  756.184445][T16239]  do_syscall_64+0xcd/0x250
[  756.184482][T16239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  756.184522][T16239] RIP: 0033:0x7f1aa798cde9
[  756.184544][T16239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  756.184571][T16239] RSP: 002b:00007f1aa876c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  756.184596][T16239] RAX: ffffffffffffffda RBX: 00007f1aa7ba5fa0 RCX: 00007f1aa798cde9
[  756.184615][T16239] RDX: 0000000000044040 RSI: 0000400000000340 RDI: 0000000000000003
[  756.184633][T16239] RBP: 00007f1aa876c090 R08: 0000000000000000 R09: 0000000000000000
[  756.184651][T16239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  756.184668][T16239] R13: 0000000000000000 R14: 00007f1aa7ba5fa0 R15: 00007fff33b049e8
[  756.184704][T16239]  </TASK>
[  757.335842][T16265] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  757.374094][T16267] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  757.452758][T16264] size and base must be multiples of 4 kiB
[  757.460902][T16264] CPU: 0 UID: 0 PID: 16264 Comm: syz.6.2587 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  757.460940][T16264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  757.460958][T16264] Call Trace:
[  757.460968][T16264]  <TASK>
[  757.460979][T16264]  dump_stack_lvl+0x16c/0x1f0
[  757.461018][T16264]  mtrr_add+0xdf/0x110
[  757.461059][T16264]  mtrr_ioctl+0x7f1/0xcf0
[  757.461096][T16264]  ? __pfx_mtrr_ioctl+0x10/0x10
[  757.461137][T16264]  ? __pfx_lock_release+0x10/0x10
[  757.461188][T16264]  ? __fget_files+0x206/0x3a0
[  757.461229][T16264]  ? __pfx_mtrr_ioctl+0x10/0x10
[  757.461265][T16264]  proc_reg_unlocked_ioctl+0x226/0x320
[  757.461308][T16264]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  757.461361][T16264]  __x64_sys_ioctl+0x190/0x200
[  757.461398][T16264]  do_syscall_64+0xcd/0x250
[  757.461435][T16264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  757.461474][T16264] RIP: 0033:0x7f7cc618cde9
[  757.461497][T16264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  757.461525][T16264] RSP: 002b:00007f7cc6f0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  757.461554][T16264] RAX: ffffffffffffffda RBX: 00007f7cc63a5fa0 RCX: 00007f7cc618cde9
[  757.461574][T16264] RDX: 0000000000000006 RSI: 00000000400c4d01 RDI: 0000000000000006
[  757.461592][T16264] RBP: 00007f7cc620e2a0 R08: 0000000000000000 R09: 0000000000000000
[  757.461610][T16264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  757.461627][T16264] R13: 0000000000000000 R14: 00007f7cc63a5fa0 R15: 00007ffd39f6bf68
[  757.461660][T16264]  </TASK>
[  757.769190][T16266] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2586'.
[  757.784333][T16262] FAULT_INJECTION: forcing a failure.
[  757.784333][T16262] name failslab, interval 1, probability 0, space 0, times 0
[  757.820135][T16262] CPU: 1 UID: 0 PID: 16262 Comm: syz.1.2585 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  757.820177][T16262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  757.820198][T16262] Call Trace:
[  757.820209][T16262]  <TASK>
[  757.820222][T16262]  dump_stack_lvl+0x16c/0x1f0
[  757.820268][T16262]  should_fail_ex+0x50a/0x650
[  757.820320][T16262]  ? fs_reclaim_acquire+0xae/0x150
[  757.820366][T16262]  should_failslab+0xc2/0x120
[  757.820398][T16262]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  757.820451][T16262]  ? sk_prot_alloc+0x60/0x2a0
[  757.820488][T16262]  sk_prot_alloc+0x60/0x2a0
[  757.820523][T16262]  sk_alloc+0x36/0xb90
[  757.820574][T16262]  __vsock_create.constprop.0+0x3c/0xba0
[  757.820610][T16262]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  757.820665][T16262]  vsock_create+0x139/0x500
[  757.820702][T16262]  __sock_create+0x335/0x8d0
[  757.820744][T16262]  __sys_socket+0x14f/0x260
[  757.820780][T16262]  ? __pfx___sys_socket+0x10/0x10
[  757.820818][T16262]  ? rcu_is_watching+0x12/0xc0
[  757.820860][T16262]  __x64_sys_socket+0x72/0xb0
[  757.820893][T16262]  ? lockdep_hardirqs_on+0x7c/0x110
[  757.820930][T16262]  do_syscall_64+0xcd/0x250
[  757.820972][T16262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  757.821019][T16262] RIP: 0033:0x7f516958cde9
[  757.821058][T16262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  757.821087][T16262] RSP: 002b:00007f516a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  757.821115][T16262] RAX: ffffffffffffffda RBX: 00007f51697a5fa0 RCX: 00007f516958cde9
[  757.821146][T16262] RDX: 0000000000000000 RSI: 0000000000080805 RDI: 0000000000000028
[  757.821163][T16262] RBP: 00007f516960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  757.821181][T16262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  757.821198][T16262] R13: 0000000000000000 R14: 00007f51697a5fa0 R15: 00007ffc513b7dd8
[  757.821232][T16262]  </TASK>
[  758.972287][T16284] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2589'.
[  759.691621][T16302] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  759.751455][T16305] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  759.860524][T16308] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  760.271468][T16320] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  761.710862][T16331] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2600'.
[  762.334745][T16344] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400008000000006
[  762.821999][T16349] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2602'.
[  764.618596][T16388] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2615'.
[  765.276418][T16394] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  765.298730][T16395] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  766.091479][T16387] netlink: 'syz.1.2616': attribute type 1 has an invalid length.
[  766.425110][T16410] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  766.490515][T16411] FAULT_INJECTION: forcing a failure.
[  766.490515][T16411] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  766.555463][T16411] CPU: 1 UID: 0 PID: 16411 Comm: syz.1.2622 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  766.555500][T16411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  766.555518][T16411] Call Trace:
[  766.555526][T16411]  <TASK>
[  766.555537][T16411]  dump_stack_lvl+0x16c/0x1f0
[  766.555577][T16411]  should_fail_ex+0x50a/0x650
[  766.555631][T16411]  ? __pfx___might_resched+0x10/0x10
[  766.555680][T16411]  should_fail_alloc_page+0xe7/0x130
[  766.555712][T16411]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  766.555750][T16411]  ? arch_stack_walk+0xa7/0x100
[  766.555783][T16411]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  766.555838][T16411]  ? stack_trace_save+0x95/0xd0
[  766.555870][T16411]  ? __pfx_stack_trace_save+0x10/0x10
[  766.555903][T16411]  ? stack_depot_save_flags+0x28/0x9c0
[  766.555951][T16411]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  766.556001][T16411]  ? kasan_save_stack+0x42/0x60
[  766.556046][T16411]  ? kasan_save_stack+0x33/0x60
[  766.556086][T16411]  ? kasan_save_track+0x14/0x30
[  766.556125][T16411]  ? __kasan_kmalloc+0xaa/0xb0
[  766.556163][T16411]  ? mon_bin_open+0x1a8/0x4a0
[  766.556202][T16411]  ? chrdev_open+0x237/0x6a0
[  766.556248][T16411]  ? __x64_sys_openat+0x175/0x210
[  766.556278][T16411]  ? do_syscall_64+0xcd/0x250
[  766.556310][T16411]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  766.556357][T16411]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  766.556403][T16411]  ? policy_nodemask+0xea/0x4e0
[  766.556452][T16411]  alloc_pages_mpol+0x1fc/0x540
[  766.556480][T16411]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  766.556535][T16411]  alloc_pages_noprof+0x131/0x390
[  766.556563][T16411]  get_zeroed_page_noprof+0x14/0x50
[  766.556596][T16411]  mon_alloc_buff+0xc0/0x190
[  766.556657][T16411]  ? kasan_save_track+0x14/0x30
[  766.556700][T16411]  mon_bin_open+0x207/0x4a0
[  766.556742][T16411]  ? __pfx_mon_bin_open+0x10/0x10
[  766.556783][T16411]  chrdev_open+0x237/0x6a0
[  766.556826][T16411]  ? __pfx_apparmor_file_open+0x10/0x10
[  766.556862][T16411]  ? __pfx_chrdev_open+0x10/0x10
[  766.556911][T16411]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  766.556956][T16411]  do_dentry_open+0x735/0x1c40
[  766.556997][T16411]  ? __pfx_chrdev_open+0x10/0x10
[  766.557041][T16411]  ? inode_permission+0xdd/0x5f0
[  766.557075][T16411]  vfs_open+0x82/0x3f0
[  766.557101][T16411]  ? may_open+0x1f2/0x400
[  766.557135][T16411]  path_openat+0x1e88/0x2d80
[  766.557188][T16411]  ? __pfx_path_openat+0x10/0x10
[  766.557229][T16411]  ? __pfx___lock_acquire+0x10/0x10
[  766.557268][T16411]  ? lock_acquire.part.0+0x11b/0x380
[  766.557307][T16411]  ? find_held_lock+0x2d/0x110
[  766.557342][T16411]  do_filp_open+0x20c/0x470
[  766.557385][T16411]  ? __pfx_do_filp_open+0x10/0x10
[  766.557425][T16411]  ? find_held_lock+0x2d/0x110
[  766.557479][T16411]  ? alloc_fd+0x41f/0x760
[  766.557529][T16411]  do_sys_openat2+0x17a/0x1e0
[  766.557560][T16411]  ? __pfx_do_sys_openat2+0x10/0x10
[  766.557590][T16411]  ? putname+0x13c/0x180
[  766.557639][T16411]  __x64_sys_openat+0x175/0x210
[  766.557671][T16411]  ? __pfx___x64_sys_openat+0x10/0x10
[  766.557716][T16411]  do_syscall_64+0xcd/0x250
[  766.557753][T16411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  766.557792][T16411] RIP: 0033:0x7f516958cde9
[  766.557814][T16411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  766.557843][T16411] RSP: 002b:00007f516a3b5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  766.557872][T16411] RAX: ffffffffffffffda RBX: 00007f51697a6080 RCX: 00007f516958cde9
[  766.557891][T16411] RDX: 0000000000000400 RSI: 00004000000000c0 RDI: ffffffffffffff9c
[  766.557910][T16411] RBP: 00007f516960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  766.557927][T16411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  766.557944][T16411] R13: 0000000000000000 R14: 00007f51697a6080 R15: 00007ffc513b7dd8
[  766.557979][T16411]  </TASK>
[  767.220978][T16416] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  767.279934][T16413] lo: entered allmulticast mode
[  767.411486][T16422] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  767.448268][T16412] sctp: [Deprecated]: syz.6.2621 (pid 16412) Use of int in max_burst socket option deprecated.
[  767.448268][T16412] Use struct sctp_assoc_value instead
[  767.496220][T16423] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  767.579527][T16407] lo: left allmulticast mode
[  767.623328][T16428] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  768.438445][T16436] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1)
[  768.526452][T16443] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  768.554706][T16442] hugetlbfs: syz.1.2630 (16442): Using mlock ulimits for SHM_HUGETLB is obsolete
[  768.573724][T16436] FAULT_INJECTION: forcing a failure.
[  768.573724][T16436] name failslab, interval 1, probability 0, space 0, times 0
[  768.660931][T16436] CPU: 0 UID: 0 PID: 16436 Comm: syz.2.2628 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  768.660972][T16436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  768.660992][T16436] Call Trace:
[  768.661002][T16436]  <TASK>
[  768.661013][T16436]  dump_stack_lvl+0x16c/0x1f0
[  768.661056][T16436]  should_fail_ex+0x50a/0x650
[  768.661102][T16436]  ? fs_reclaim_acquire+0xae/0x150
[  768.661143][T16436]  ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  768.661177][T16436]  should_failslab+0xc2/0x120
[  768.661211][T16436]  __kmalloc_cache_noprof+0x68/0x410
[  768.661251][T16436]  ? snd_pcm_hw_param_first+0x301/0x6e0
[  768.661283][T16436]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  768.661323][T16436]  snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  768.661361][T16436]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  768.661397][T16436]  ? calc_src_frames.isra.0+0x187/0x1d0
[  768.661429][T16436]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  768.661472][T16436]  snd_pcm_oss_change_params_locked+0x13cd/0x3a60
[  768.661519][T16436]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  768.661580][T16436]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  768.661615][T16436]  snd_pcm_oss_write+0x4a3/0xa00
[  768.661648][T16436]  ? bpf_lsm_file_permission+0x9/0x10
[  768.661709][T16436]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  768.661760][T16436]  vfs_write+0x24c/0x1150
[  768.661809][T16436]  ? __pfx_vfs_write+0x10/0x10
[  768.661848][T16436]  ? do_futex+0x123/0x350
[  768.661887][T16436]  ? __pfx_do_futex+0x10/0x10
[  768.661934][T16436]  ? __x64_sys_futex+0x1e1/0x4c0
[  768.661970][T16436]  ? __x64_sys_futex+0x1ea/0x4c0
[  768.662021][T16436]  ksys_write+0x12b/0x250
[  768.662061][T16436]  ? __pfx_ksys_write+0x10/0x10
[  768.662110][T16436]  do_syscall_64+0xcd/0x250
[  768.662150][T16436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  768.662190][T16436] RIP: 0033:0x7f1aa798cde9
[  768.662214][T16436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  768.662242][T16436] RSP: 002b:00007f1aa876c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  768.662270][T16436] RAX: ffffffffffffffda RBX: 00007f1aa7ba5fa0 RCX: 00007f1aa798cde9
[  768.662289][T16436] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000005
[  768.662307][T16436] RBP: 00007f1aa7a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  768.662326][T16436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  768.662344][T16436] R13: 0000000000000000 R14: 00007f1aa7ba5fa0 R15: 00007fff33b049e8
[  768.662380][T16436]  </TASK>
[  770.128463][T16463] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  771.057540][T16454] netlink: 'syz.5.2633': attribute type 1 has an invalid length.
[  773.329286][T16506] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  775.321585][T16529] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  775.375969][T16534] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  775.511758][T16536] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  775.544382][T16537] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  776.251020][T16551] openvswitch: HfR: Dropping previously announced user features
[  776.312306][T16551] FAULT_INJECTION: forcing a failure.
[  776.312306][T16551] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  776.383740][T16551] CPU: 1 UID: 0 PID: 16551 Comm: syz.5.2658 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  776.383782][T16551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  776.383802][T16551] Call Trace:
[  776.383812][T16551]  <TASK>
[  776.383824][T16551]  dump_stack_lvl+0x16c/0x1f0
[  776.383872][T16551]  should_fail_ex+0x50a/0x650
[  776.383929][T16551]  _copy_from_iter+0x2a1/0x1560
[  776.383964][T16551]  ? trace_lock_acquire+0x14e/0x1f0
[  776.384005][T16551]  ? __alloc_skb+0x1fe/0x380
[  776.384050][T16551]  ? __pfx__copy_from_iter+0x10/0x10
[  776.384089][T16551]  ? __virt_addr_valid+0x1a4/0x590
[  776.384128][T16551]  ? __virt_addr_valid+0x5e/0x590
[  776.384163][T16551]  ? __phys_addr_symbol+0x30/0x80
[  776.384196][T16551]  ? __check_object_size+0x488/0x710
[  776.384235][T16551]  netlink_sendmsg+0x813/0xd70
[  776.384297][T16551]  ? __pfx_netlink_sendmsg+0x10/0x10
[  776.384360][T16551]  ____sys_sendmsg+0xaaf/0xc90
[  776.384391][T16551]  ? copy_msghdr_from_user+0x10b/0x160
[  776.384431][T16551]  ? __pfx_____sys_sendmsg+0x10/0x10
[  776.384476][T16551]  ___sys_sendmsg+0x135/0x1e0
[  776.384519][T16551]  ? __pfx____sys_sendmsg+0x10/0x10
[  776.384571][T16551]  ? __pfx_lock_release+0x10/0x10
[  776.384611][T16551]  ? trace_lock_acquire+0x14e/0x1f0
[  776.384654][T16551]  ? __fget_files+0x206/0x3a0
[  776.384703][T16551]  __sys_sendmsg+0x16e/0x220
[  776.384744][T16551]  ? __pfx___sys_sendmsg+0x10/0x10
[  776.384806][T16551]  do_syscall_64+0xcd/0x250
[  776.384844][T16551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  776.384882][T16551] RIP: 0033:0x7f444218cde9
[  776.384905][T16551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  776.384931][T16551] RSP: 002b:00007f444309d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  776.384961][T16551] RAX: ffffffffffffffda RBX: 00007f44423a5fa0 RCX: 00007f444218cde9
[  776.384980][T16551] RDX: 0000000020000000 RSI: 0000400000000400 RDI: 0000000000000005
[  776.384998][T16551] RBP: 00007f444309d090 R08: 0000000000000000 R09: 0000000000000000
[  776.385015][T16551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  776.385036][T16551] R13: 0000000000000000 R14: 00007f44423a5fa0 R15: 00007ffdf535cf38
[  776.385076][T16551]  </TASK>
[  777.330283][T16552] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2656'.
[  779.454346][T16586] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2668'.
[  782.316899][T16615] FAULT_INJECTION: forcing a failure.
[  782.316899][T16615] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  782.830747][T16615] CPU: 1 UID: 0 PID: 16615 Comm: syz.5.2675 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  782.830785][T16615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  782.830802][T16615] Call Trace:
[  782.830809][T16615]  <TASK>
[  782.830820][T16615]  dump_stack_lvl+0x16c/0x1f0
[  782.830859][T16615]  should_fail_ex+0x50a/0x650
[  782.830913][T16615]  _copy_from_user+0x2e/0xd0
[  782.830939][T16615]  core_sys_select+0x361/0xb80
[  782.830978][T16615]  ? __pfx_core_sys_select+0x10/0x10
[  782.831015][T16615]  ? find_held_lock+0x2d/0x110
[  782.831062][T16615]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  782.831098][T16615]  kern_select+0x15e/0x1e0
[  782.831130][T16615]  ? __pfx_kern_select+0x10/0x10
[  782.831166][T16615]  ? __pfx_ksys_write+0x10/0x10
[  782.831202][T16615]  __x64_sys_select+0xbd/0x160
[  782.831234][T16615]  ? do_syscall_64+0x91/0x250
[  782.831261][T16615]  ? lockdep_hardirqs_on+0x7c/0x110
[  782.831288][T16615]  do_syscall_64+0xcd/0x250
[  782.831319][T16615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  782.831352][T16615] RIP: 0033:0x7f444218cde9
[  782.831370][T16615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  782.831393][T16615] RSP: 002b:00007f444307c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  782.831415][T16615] RAX: ffffffffffffffda RBX: 00007f44423a6080 RCX: 00007f444218cde9
[  782.831430][T16615] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  782.831443][T16615] RBP: 00007f444307c090 R08: 0000000000000000 R09: 0000000000000000
[  782.831457][T16615] R10: 0000400000000180 R11: 0000000000000246 R12: 0000000000000001
[  782.831471][T16615] R13: 0000000000000000 R14: 00007f44423a6080 R15: 00007ffdf535cf38
[  782.831498][T16615]  </TASK>
[  785.613326][T16649] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  785.679142][T16652] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  785.731312][T16651] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2684'.
[  788.135718][T16681] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  788.684808][T16692] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  788.792847][T16680] netlink: 'syz.2.2688': attribute type 1 has an invalid length.
[  789.225542][T16684] netlink: 'syz.6.2692': attribute type 1 has an invalid length.
[  790.656554][T16709] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  790.726172][T16712] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  791.561530][T16729] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  791.633931][T16730] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  791.683393][T16732] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  791.738444][T16733] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  791.785486][T16737] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  791.807011][T16736] input: isc as /devices/virtual/input/input6
[  791.845530][T16738] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  792.949149][T16752] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  793.392062][T16746] netlink: 'syz.6.2706': attribute type 1 has an invalid length.
[  793.470423][T16757] FAULT_INJECTION: forcing a failure.
[  793.470423][T16757] name failslab, interval 1, probability 0, space 0, times 0
[  793.470463][T16757] CPU: 1 UID: 0 PID: 16757 Comm: syz.1.2709 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  793.470497][T16757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  793.470525][T16757] Call Trace:
[  793.470533][T16757]  <TASK>
[  793.470545][T16757]  dump_stack_lvl+0x16c/0x1f0
[  793.470587][T16757]  should_fail_ex+0x50a/0x650
[  793.470636][T16757]  ? fs_reclaim_acquire+0xae/0x150
[  793.470676][T16757]  should_failslab+0xc2/0x120
[  793.470704][T16757]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  793.470746][T16757]  ? trace_kmalloc+0x2d/0xd0
[  793.470777][T16757]  ? seq_open+0x55/0x170
[  793.470811][T16757]  seq_open+0x55/0x170
[  793.470840][T16757]  __seq_open_private+0x3e/0xd0
[  793.470873][T16757]  proc_timers_open+0x27/0x150
[  793.470901][T16757]  do_dentry_open+0x735/0x1c40
[  793.470943][T16757]  ? __pfx_proc_timers_open+0x10/0x10
[  793.470972][T16757]  ? inode_permission+0xdd/0x5f0
[  793.471006][T16757]  vfs_open+0x82/0x3f0
[  793.471032][T16757]  ? may_open+0x1f2/0x400
[  793.471066][T16757]  path_openat+0x1e88/0x2d80
[  793.471119][T16757]  ? __pfx_path_openat+0x10/0x10
[  793.471160][T16757]  ? __pfx___lock_acquire+0x10/0x10
[  793.471199][T16757]  ? lock_acquire.part.0+0x11b/0x380
[  793.471240][T16757]  ? find_held_lock+0x2d/0x110
[  793.471276][T16757]  do_filp_open+0x20c/0x470
[  793.471318][T16757]  ? __pfx_do_filp_open+0x10/0x10
[  793.471358][T16757]  ? find_held_lock+0x2d/0x110
[  793.471398][T16757]  ? __pfx_kfree_link+0x10/0x10
[  793.471439][T16757]  ? alloc_fd+0x41f/0x760
[  793.471485][T16757]  do_sys_openat2+0x17a/0x1e0
[  793.471525][T16757]  ? __pfx_do_sys_openat2+0x10/0x10
[  793.471567][T16757]  __x64_sys_openat+0x175/0x210
[  793.471598][T16757]  ? __pfx___x64_sys_openat+0x10/0x10
[  793.471641][T16757]  do_syscall_64+0xcd/0x250
[  793.471681][T16757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  793.471724][T16757] RIP: 0033:0x7f516958cde9
[  793.471747][T16757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  793.471781][T16757] RSP: 002b:00007f516a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  793.471827][T16757] RAX: ffffffffffffffda RBX: 00007f51697a5fa0 RCX: 00007f516958cde9
[  793.471849][T16757] RDX: 0000000000000040 RSI: 0000400000000100 RDI: ffffffffffffff9c
[  793.471871][T16757] RBP: 00007f516960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  793.471892][T16757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  793.471912][T16757] R13: 0000000000000000 R14: 00007f51697a5fa0 R15: 00007ffc513b7dd8
[  793.471950][T16757]  </TASK>
[  793.502306][T16757] random: crng reseeded on system resumption
[  794.956946][T16775] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  796.143981][T16790] EXT4-fs error: 3 callbacks suppressed
[  796.144003][T16790] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  796.201584][   T29] audit: type=1800 audit(59622.862:10): pid=16791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2717" name="version" dev="configfs" ino=50549 res=0 errno=0
[  798.492191][T16819] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  798.558359][T16821] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  798.581621][T16822] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  798.613895][T16824] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  798.662400][T16825] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  798.892654][T16828] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2725'.
[  800.577926][T16864] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2740'.
[  800.747477][T16846] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2729'.
[  800.750380][T16864] veth0_macvtap: left promiscuous mode
[  800.798418][T16864] macvtap0: entered allmulticast mode
[  801.401048][T16873] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[  801.651083][T16868] netlink: 'syz.2.2733': attribute type 1 has an invalid length.
[  802.033614][T16882] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2736'.
[  802.801354][T16890] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2738'.
[  803.669266][T16904] FAULT_INJECTION: forcing a failure.
[  803.669266][T16904] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  803.740550][T16904] CPU: 0 UID: 0 PID: 16904 Comm: syz.6.2744 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  803.740600][T16904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  803.740620][T16904] Call Trace:
[  803.740630][T16904]  <TASK>
[  803.740643][T16904]  dump_stack_lvl+0x16c/0x1f0
[  803.740689][T16904]  should_fail_ex+0x50a/0x650
[  803.740751][T16904]  ? __pfx___might_resched+0x10/0x10
[  803.740809][T16904]  should_fail_alloc_page+0xe7/0x130
[  803.740844][T16904]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  803.740897][T16904]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  803.740956][T16904]  ? __pfx_mark_lock+0x10/0x10
[  803.740999][T16904]  ? hlock_class+0x4e/0x130
[  803.741036][T16904]  ? hlock_class+0x4e/0x130
[  803.741070][T16904]  ? mark_lock+0xb5/0xc60
[  803.741115][T16904]  ? hlock_class+0x4e/0x130
[  803.741150][T16904]  ? mark_lock+0xb5/0xc60
[  803.741193][T16904]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  803.741252][T16904]  ? mark_lock+0xb5/0xc60
[  803.741316][T16904]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  803.741370][T16904]  ? policy_nodemask+0xea/0x4e0
[  803.741426][T16904]  alloc_pages_mpol+0x1fc/0x540
[  803.741458][T16904]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  803.741513][T16904]  ? find_held_lock+0x2d/0x110
[  803.741557][T16904]  folio_alloc_mpol_noprof+0x36/0x2f0
[  803.741600][T16904]  shmem_alloc_folio+0x135/0x160
[  803.741658][T16904]  shmem_alloc_and_add_folio+0x48e/0xc10
[  803.741712][T16904]  ? shmem_huge_global_enabled+0x72/0x6b0
[  803.741752][T16904]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  803.741799][T16904]  ? shmem_allowable_huge_orders+0xd0/0x410
[  803.741852][T16904]  shmem_get_folio_gfp+0x689/0x1530
[  803.741905][T16904]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  803.741952][T16904]  ? filemap_map_pages+0xf92/0x16b0
[  803.742002][T16904]  shmem_fault+0x200/0xae0
[  803.742046][T16904]  ? __pfx_shmem_fault+0x10/0x10
[  803.742096][T16904]  ? do_pte_missing+0xde9/0x3e10
[  803.742147][T16904]  ? __pfx_lock_release+0x10/0x10
[  803.742203][T16904]  __do_fault+0x10a/0x490
[  803.742246][T16904]  do_pte_missing+0xecf/0x3e10
[  803.742300][T16904]  ? __pfx_lock_release+0x10/0x10
[  803.742358][T16904]  __handle_mm_fault+0x1166/0x2c60
[  803.742422][T16904]  ? __pfx___handle_mm_fault+0x10/0x10
[  803.742472][T16904]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  803.742546][T16904]  ? find_vma+0xc0/0x140
[  803.742587][T16904]  ? __pfx_find_vma+0x10/0x10
[  803.742635][T16904]  handle_mm_fault+0x3fa/0xaa0
[  803.742695][T16904]  do_user_addr_fault+0x7a3/0x13f0
[  803.742761][T16904]  exc_page_fault+0x5c/0xc0
[  803.742801][T16904]  asm_exc_page_fault+0x26/0x30
[  803.742848][T16904] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  803.742903][T16904] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  803.742936][T16904] RSP: 0018:ffffc9000c607a58 EFLAGS: 00050206
[  803.742964][T16904] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  803.742985][T16904] RDX: 0000000000000000 RSI: 0000000000004000 RDI: ffff888075e45000
[  803.743007][T16904] RBP: 0000000000004000 R08: 0000000000000001 R09: ffffed100ebc8bff
[  803.743029][T16904] R10: ffff888075e45fff R11: 0000000000000000 R12: ffffc9000c607da0
[  803.743052][T16904] R13: 0000000000005000 R14: ffff888075e45000 R15: 00007ffffffff000
[  803.743098][T16904]  _copy_from_iter+0x385/0x1560
[  803.743140][T16904]  ? policy_nodemask+0xea/0x4e0
[  803.743196][T16904]  ? __pfx__copy_from_iter+0x10/0x10
[  803.743233][T16904]  ? alloc_pages_mpol+0x25b/0x540
[  803.743268][T16904]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  803.743326][T16904]  ? preempt_schedule_thunk+0x1a/0x30
[  803.743377][T16904]  copy_page_from_iter+0xa5/0x120
[  803.743417][T16904]  pipe_write+0xd1e/0x1b30
[  803.743486][T16904]  ? __pfx_pipe_write+0x10/0x10
[  803.743558][T16904]  ? apparmor_file_permission+0x251/0x400
[  803.743600][T16904]  ? bpf_lsm_file_permission+0x9/0x10
[  803.743654][T16904]  ? security_file_permission+0x71/0x210
[  803.743701][T16904]  ? rw_verify_area+0xcf/0x680
[  803.743755][T16904]  vfs_write+0x5ae/0x1150
[  803.743804][T16904]  ? __pfx_pipe_write+0x10/0x10
[  803.743860][T16904]  ? __pfx_vfs_write+0x10/0x10
[  803.743905][T16904]  ? do_futex+0x123/0x350
[  803.743949][T16904]  ? __fget_files+0x40/0x3a0
[  803.744019][T16904]  ksys_write+0x207/0x250
[  803.744067][T16904]  ? __pfx_ksys_write+0x10/0x10
[  803.744128][T16904]  do_syscall_64+0xcd/0x250
[  803.744173][T16904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  803.744221][T16904] RIP: 0033:0x7f7cc618cde9
[  803.744247][T16904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  803.744280][T16904] RSP: 002b:00007f7cc6f0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  803.744311][T16904] RAX: ffffffffffffffda RBX: 00007f7cc63a5fa0 RCX: 00007f7cc618cde9
[  803.744334][T16904] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000002
[  803.744356][T16904] RBP: 00007f7cc620e2a0 R08: 0000000000000000 R09: 0000000000000000
[  803.744379][T16904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  803.744400][T16904] R13: 0000000000000000 R14: 00007f7cc63a5fa0 R15: 00007ffd39f6bf68
[  803.744443][T16904]  </TASK>
[  805.054946][T16925] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  805.405714][T16919] netlink: 'syz.5.2746': attribute type 1 has an invalid length.
[  805.740829][T16907] Bluetooth: hci4: command 0x0406 tx timeout
[  805.852609][T16927] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2747'.
[  806.212285][T16932] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2751'.
[  806.644024][T16951] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2757'.
[  806.718364][T16951] veth0_macvtap: left promiscuous mode
[  806.790696][T16951] macvtap0: entered allmulticast mode
[  807.100370][T16959] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2760'.
[  807.688403][T16976] FAULT_INJECTION: forcing a failure.
[  807.688403][T16976] name failslab, interval 1, probability 0, space 0, times 0
[  807.723734][T16976] CPU: 0 UID: 0 PID: 16976 Comm: syz.1.2767 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  807.723777][T16976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  807.723799][T16976] Call Trace:
[  807.723810][T16976]  <TASK>
[  807.723823][T16976]  dump_stack_lvl+0x16c/0x1f0
[  807.723869][T16976]  should_fail_ex+0x50a/0x650
[  807.723922][T16976]  ? fs_reclaim_acquire+0xae/0x150
[  807.723969][T16976]  should_failslab+0xc2/0x120
[  807.724001][T16976]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  807.724055][T16976]  ? ext4_init_io_end+0x24/0x170
[  807.724093][T16976]  ext4_init_io_end+0x24/0x170
[  807.724123][T16976]  ext4_do_writepages+0x93e/0x32d0
[  807.724178][T16976]  ? __pfx___lock_acquire+0x10/0x10
[  807.724245][T16976]  ? __pfx_ext4_do_writepages+0x10/0x10
[  807.724301][T16976]  ? do_writepages+0x1b3/0x820
[  807.724352][T16976]  ? ext4_writepages+0x303/0x730
[  807.724407][T16976]  ext4_writepages+0x303/0x730
[  807.724442][T16976]  ? __lock_acquire+0x15a9/0x3c40
[  807.724482][T16976]  ? __pfx_ext4_writepages+0x10/0x10
[  807.724532][T16976]  ? __pfx___lock_acquire+0x10/0x10
[  807.724577][T16976]  ? __pfx_ext4_writepages+0x10/0x10
[  807.724615][T16976]  do_writepages+0x1b3/0x820
[  807.724650][T16976]  ? __pfx_do_writepages+0x10/0x10
[  807.724678][T16976]  ? wbc_attach_fdatawrite_inode+0x13a/0x190
[  807.724712][T16976]  ? __pfx_lock_release+0x10/0x10
[  807.724752][T16976]  ? do_raw_spin_lock+0x12d/0x2c0
[  807.724781][T16976]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  807.724809][T16976]  ? lock_acquire+0x2f/0xb0
[  807.724846][T16976]  ? wbc_attach_fdatawrite_inode+0x24/0x190
[  807.724881][T16976]  ? do_raw_spin_unlock+0x172/0x230
[  807.724915][T16976]  filemap_fdatawrite_wbc+0x104/0x160
[  807.724947][T16976]  __filemap_fdatawrite_range+0xb3/0xf0
[  807.724985][T16976]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  807.725064][T16976]  ? find_held_lock+0x2d/0x110
[  807.725098][T16976]  ? ext4_fallocate+0x139/0x3950
[  807.725144][T16976]  filemap_write_and_wait_range+0xa3/0x130
[  807.725186][T16976]  ext4_punch_hole+0x194/0x10d0
[  807.725238][T16976]  ext4_fallocate+0x9b7/0x3950
[  807.725281][T16976]  ? rcu_is_watching+0x12/0xc0
[  807.725311][T16976]  ? trace_lock_acquire+0x14e/0x1f0
[  807.725345][T16976]  ? madvise_vma_behavior+0x1ae3/0x1de0
[  807.725389][T16976]  ? __pfx_ext4_fallocate+0x10/0x10
[  807.725433][T16976]  vfs_fallocate+0x60d/0x10d0
[  807.725477][T16976]  ? __pfx_vfs_fallocate+0x10/0x10
[  807.725518][T16976]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  807.725569][T16976]  madvise_vma_behavior+0x1ae3/0x1de0
[  807.725605][T16976]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  807.725639][T16976]  ? find_vma_prev+0xdb/0x160
[  807.725677][T16976]  ? __pfx_find_vma_prev+0x10/0x10
[  807.725723][T16976]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  807.725768][T16976]  ? do_madvise+0x2b3/0x7c0
[  807.725802][T16976]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  807.725831][T16976]  madvise_walk_vmas+0x1cf/0x2c0
[  807.725862][T16976]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  807.725900][T16976]  do_madvise+0x366/0x7c0
[  807.725935][T16976]  ? __pfx_do_madvise+0x10/0x10
[  807.725975][T16976]  ? ksys_write+0x1ba/0x250
[  807.726014][T16976]  ? __pfx_ksys_write+0x10/0x10
[  807.726059][T16976]  __x64_sys_madvise+0xa9/0x110
[  807.726090][T16976]  ? lockdep_hardirqs_on+0x7c/0x110
[  807.726124][T16976]  do_syscall_64+0xcd/0x250
[  807.726162][T16976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  807.726201][T16976] RIP: 0033:0x7f516958cde9
[  807.726224][T16976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  807.726251][T16976] RSP: 002b:00007f516a3d6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  807.726277][T16976] RAX: ffffffffffffffda RBX: 00007f51697a5fa0 RCX: 00007f516958cde9
[  807.726295][T16976] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 000000110c230000
[  807.726313][T16976] RBP: 00007f516a3d6090 R08: 0000000000000000 R09: 0000000000000000
[  807.726330][T16976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  807.726347][T16976] R13: 0000000000000000 R14: 00007f51697a5fa0 R15: 00007ffc513b7dd8
[  807.726390][T16976]  </TASK>
[  808.294689][T16972] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2765'.
[  808.713820][T16983] sp0: Synchronizing with TNC
[  809.142885][T17002] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2773'.
[  809.171416][T16977] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2764'.
[  809.398089][T17006] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2783'.
[  810.118895][T17028] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2784'.
[  810.404852][T17032] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  812.228406][T17065] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  812.578110][T17073] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  812.642564][T17075] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  812.740560][T17078] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  813.042471][T17080] FAULT_INJECTION: forcing a failure.
[  813.042471][T17080] name failslab, interval 1, probability 0, space 0, times 0
[  813.115799][T17080] CPU: 1 UID: 0 PID: 17080 Comm: syz.5.2796 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  813.115836][T17080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  813.115854][T17080] Call Trace:
[  813.115862][T17080]  <TASK>
[  813.115874][T17080]  dump_stack_lvl+0x16c/0x1f0
[  813.115915][T17080]  should_fail_ex+0x50a/0x650
[  813.115959][T17080]  ? fs_reclaim_acquire+0xae/0x150
[  813.116000][T17080]  should_failslab+0xc2/0x120
[  813.116028][T17080]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  813.116074][T17080]  ? __xlate_proc_name+0x173/0x210
[  813.116118][T17080]  ? __proc_create+0x2c0/0x8b0
[  813.116167][T17080]  __proc_create+0x2c0/0x8b0
[  813.116223][T17080]  ? __pfx___proc_create+0x10/0x10
[  813.116273][T17080]  ? _raw_write_unlock+0x28/0x50
[  813.116303][T17080]  ? proc_register+0x314/0x5f0
[  813.116351][T17080]  proc_create_reg+0x7d/0x180
[  813.116378][T17080]  ? __pfx_can_rcvlist_eff_proc_show+0x10/0x10
[  813.116427][T17080]  proc_create_net_single+0x87/0x170
[  813.116455][T17080]  ? __pfx_proc_create_net_single+0x10/0x10
[  813.116488][T17080]  ? lockdep_init_map_type+0x16d/0x7d0
[  813.116538][T17080]  can_init_proc+0x319/0x4d0
[  813.116566][T17080]  can_pernet_init+0x1e4/0x370
[  813.116611][T17080]  ? __pfx_can_pernet_init+0x10/0x10
[  813.116654][T17080]  ops_init+0x1df/0x5f0
[  813.116700][T17080]  setup_net+0x21f/0x860
[  813.116745][T17080]  ? __pfx_setup_net+0x10/0x10
[  813.116785][T17080]  ? down_read_killable+0xcc/0x380
[  813.116821][T17080]  ? __pfx_down_read_killable+0x10/0x10
[  813.116860][T17080]  ? __raw_spin_lock_init+0x3a/0x110
[  813.116906][T17080]  ? debug_mutex_init+0x37/0x70
[  813.116940][T17080]  copy_net_ns+0x2b4/0x6c0
[  813.116969][T17080]  create_new_namespaces+0x3ea/0xad0
[  813.117020][T17080]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  813.117067][T17080]  ksys_unshare+0x45d/0xa40
[  813.117094][T17080]  ? __pfx_ksys_unshare+0x10/0x10
[  813.117122][T17080]  ? xfd_validate_state+0x5d/0x180
[  813.117162][T17080]  ? syscall_user_dispatch+0x7a/0x130
[  813.117224][T17080]  __x64_sys_unshare+0x31/0x40
[  813.117254][T17080]  do_syscall_64+0xcd/0x250
[  813.117295][T17080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  813.117337][T17080] RIP: 0033:0x7f444218cde9
[  813.117360][T17080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  813.117391][T17080] RSP: 002b:00007f444309d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  813.117419][T17080] RAX: ffffffffffffffda RBX: 00007f44423a5fa0 RCX: 00007f444218cde9
[  813.117439][T17080] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  813.117457][T17080] RBP: 00007f444220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  813.117475][T17080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  813.117492][T17080] R13: 0000000000000000 R14: 00007f44423a5fa0 R15: 00007ffdf535cf38
[  813.117526][T17080]  </TASK>
[  813.903867][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  813.910253][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  814.835930][T17098] Invalid ELF header magic: != ELF
[  815.161879][T17101] Invalid ELF header magic: != ELF
[  815.377748][T17100] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2802'.
[  815.451363][T17100] geneve1: entered allmulticast mode
[  816.333964][T17117] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2806'.
[  817.329783][T17135] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[  817.641093][T17125] netlink: 'syz.5.2809': attribute type 1 has an invalid length.
[  817.936288][T17136] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2812'.
[  818.392962][T17141] sp0: Synchronizing with TNC
[  818.832676][T17161] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2817'.
[  819.882973][T17180] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  820.540129][T17181] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2824'.
[  820.639886][T17176] netlink: 'syz.5.2823': attribute type 1 has an invalid length.
[  821.782572][T17207] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  821.824267][T17208] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  821.825997][T17206] could not allocate digest TFM handle 
[  821.882226][T17210] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  821.982149][T17212] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2831'.
[  822.011209][T17212] veth1_macvtap: left promiscuous mode
[  822.016730][T17212] macsec0: entered allmulticast mode
[  822.748174][T17224] FAULT_INJECTION: forcing a failure.
[  822.748174][T17224] name failslab, interval 1, probability 0, space 0, times 0
[  822.803968][T17224] CPU: 0 UID: 0 PID: 17224 Comm: syz.1.2835 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  822.804011][T17224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  822.804032][T17224] Call Trace:
[  822.804043][T17224]  <TASK>
[  822.804058][T17224]  dump_stack_lvl+0x16c/0x1f0
[  822.804107][T17224]  should_fail_ex+0x50a/0x650
[  822.804160][T17224]  ? fs_reclaim_acquire+0xae/0x150
[  822.804219][T17224]  should_failslab+0xc2/0x120
[  822.804264][T17224]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  822.804323][T17224]  ? __xlate_proc_name+0x173/0x210
[  822.804368][T17224]  ? __proc_create+0x2c0/0x8b0
[  822.804418][T17224]  __proc_create+0x2c0/0x8b0
[  822.804464][T17224]  ? __pfx___proc_create+0x10/0x10
[  822.804516][T17224]  ? _raw_write_unlock+0x28/0x50
[  822.804552][T17224]  proc_create_reg+0x7d/0x180
[  822.804583][T17224]  proc_create_net_data+0x8f/0x1b0
[  822.804631][T17224]  ? __pfx_proc_create_net_data+0x10/0x10
[  822.804679][T17224]  ? __pfx___netlink_kernel_create+0x10/0x10
[  822.804718][T17224]  ? fib_default_rule_add+0x342/0x420
[  822.804758][T17224]  fib_proc_init+0xf4/0x1b0
[  822.804789][T17224]  fib_net_init+0x279/0x3d0
[  822.804823][T17224]  ? __pfx_fib_net_init+0x10/0x10
[  822.804858][T17224]  ? __pfx_nl_fib_input+0x10/0x10
[  822.804898][T17224]  ? devinet_init_net+0x5c1/0x900
[  822.804938][T17224]  ? __pfx_fib_net_init+0x10/0x10
[  822.804969][T17224]  ops_init+0x1df/0x5f0
[  822.805020][T17224]  setup_net+0x21f/0x860
[  822.805066][T17224]  ? __pfx_setup_net+0x10/0x10
[  822.805106][T17224]  ? down_read_killable+0xcc/0x380
[  822.805146][T17224]  ? __pfx_down_read_killable+0x10/0x10
[  822.805192][T17224]  ? __raw_spin_lock_init+0x3a/0x110
[  822.805242][T17224]  ? debug_mutex_init+0x37/0x70
[  822.805277][T17224]  copy_net_ns+0x2b4/0x6c0
[  822.805307][T17224]  create_new_namespaces+0x3ea/0xad0
[  822.805363][T17224]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  822.805413][T17224]  ksys_unshare+0x45d/0xa40
[  822.805444][T17224]  ? __pfx_ksys_unshare+0x10/0x10
[  822.805488][T17224]  __x64_sys_unshare+0x31/0x40
[  822.805517][T17224]  do_syscall_64+0xcd/0x250
[  822.805555][T17224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  822.805596][T17224] RIP: 0033:0x7f516958cde9
[  822.805618][T17224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  822.805649][T17224] RSP: 002b:00007f516a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  822.805677][T17224] RAX: ffffffffffffffda RBX: 00007f51697a5fa0 RCX: 00007f516958cde9
[  822.805698][T17224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  822.805717][T17224] RBP: 00007f516960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  822.805736][T17224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  822.805754][T17224] R13: 0000000000000000 R14: 00007f51697a5fa0 R15: 00007ffc513b7dd8
[  822.805792][T17224]  </TASK>
[  824.252835][T17236] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  824.481572][T17239] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  824.570089][T17240] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  824.680685][T17235] netlink: 'syz.6.2838': attribute type 1 has an invalid length.
[  824.696257][T17232] vivid-003: =================  START STATUS  =================
[  824.730496][T17232] vivid-003: Radio HW Seek Mode: Bounded
[  824.745670][T17232] vivid-003: Radio Programmable HW Seek: false
[  824.865830][T17232] vivid-003: RDS Rx I/O Mode: Block I/O
[  824.911240][T17232] vivid-003: Generate RBDS Instead of RDS: false
[  824.952701][T17232] vivid-003: RDS Reception: true
[  824.990805][T17232] vivid-003: RDS Program Type: 0 inactive
[  825.039227][T17232] vivid-003: RDS PS Name:  inactive
[  825.099696][T17232] vivid-003: RDS Radio Text:  inactive
[  825.131631][T17247] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  825.152960][T17232] vivid-003: RDS Traffic Announcement: false inactive
[  825.159824][T17232] vivid-003: RDS Traffic Program: false inactive
[  825.187711][T17249] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[  825.207666][T17250] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  825.222893][T17232] vivid-003: RDS Music: false inactive
[  825.223017][T17232] vivid-003: ==================  END STATUS  ==================
[  826.215672][T17262] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2839'.
[  826.359444][T17274] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  826.503700][T17279] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  826.598456][T17281] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  826.641998][T17284] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2847'.
[  826.768829][T17285] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[  827.451034][T17295] could not allocate digest TFM handle 
[  827.572571][T17306] FAULT_INJECTION: forcing a failure.
[  827.572571][T17306] name failslab, interval 1, probability 0, space 0, times 0
[  827.596078][T17306] CPU: 1 UID: 0 PID: 17306 Comm: syz.5.2852 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  827.596114][T17306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  827.596131][T17306] Call Trace:
[  827.596139][T17306]  <TASK>
[  827.596150][T17306]  dump_stack_lvl+0x16c/0x1f0
[  827.596190][T17306]  should_fail_ex+0x50a/0x650
[  827.596241][T17306]  should_failslab+0xc2/0x120
[  827.596269][T17306]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  827.596315][T17306]  ? skb_clone+0x190/0x3f0
[  827.596361][T17306]  skb_clone+0x190/0x3f0
[  827.596403][T17306]  netlink_deliver_tap+0xabd/0xd30
[  827.596447][T17306]  netlink_unicast+0x5e1/0x7f0
[  827.596489][T17306]  ? __pfx_netlink_unicast+0x10/0x10
[  827.596528][T17306]  ? __phys_addr_symbol+0x30/0x80
[  827.596558][T17306]  ? __check_object_size+0x488/0x710
[  827.596591][T17306]  netlink_sendmsg+0x8b8/0xd70
[  827.596634][T17306]  ? __pfx_netlink_sendmsg+0x10/0x10
[  827.596669][T17306]  ? stack_trace_save+0x95/0xd0
[  827.596703][T17306]  ? stack_depot_save_flags+0x28/0x9c0
[  827.596756][T17306]  sock_sendmsg+0x3d3/0x490
[  827.596786][T17306]  ? __kasan_slab_free+0x51/0x70
[  827.596831][T17306]  ? __pfx_sock_sendmsg+0x10/0x10
[  827.596860][T17306]  ? splice_direct_to_actor+0x2a4/0xa40
[  827.596920][T17306]  splice_to_socket+0xaac/0x1040
[  827.596975][T17306]  ? __pfx_splice_to_socket+0x10/0x10
[  827.597014][T17306]  ? kasan_quarantine_put+0x10a/0x240
[  827.597110][T17306]  ? __pfx_splice_to_socket+0x10/0x10
[  827.597152][T17306]  direct_splice_actor+0x18f/0x6c0
[  827.597195][T17306]  splice_direct_to_actor+0x346/0xa40
[  827.597235][T17306]  ? __pfx_direct_splice_actor+0x10/0x10
[  827.597281][T17306]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  827.597324][T17306]  ? __fget_files+0x1fc/0x3a0
[  827.597368][T17306]  do_splice_direct+0x178/0x250
[  827.597407][T17306]  ? __pfx_do_splice_direct+0x10/0x10
[  827.597446][T17306]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  827.597486][T17306]  ? bpf_lsm_file_permission+0x9/0x10
[  827.597530][T17306]  ? security_file_permission+0x71/0x210
[  827.597570][T17306]  ? rw_verify_area+0xcf/0x680
[  827.597608][T17306]  do_sendfile+0xafb/0xe40
[  827.597652][T17306]  ? __pfx_do_sendfile+0x10/0x10
[  827.597691][T17306]  ? __fget_files+0x206/0x3a0
[  827.597740][T17306]  __x64_sys_sendfile64+0x1da/0x220
[  827.597767][T17306]  ? ksys_write+0x1ba/0x250
[  827.597806][T17306]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  827.597845][T17306]  do_syscall_64+0xcd/0x250
[  827.597884][T17306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  827.597924][T17306] RIP: 0033:0x7f444218cde9
[  827.597946][T17306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  827.597973][T17306] RSP: 002b:00007f444309d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  827.597999][T17306] RAX: ffffffffffffffda RBX: 00007f44423a5fa0 RCX: 00007f444218cde9
[  827.598018][T17306] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  827.598035][T17306] RBP: 00007f444309d090 R08: 0000000000000000 R09: 0000000000000000
[  827.598060][T17306] R10: 0000000000000204 R11: 0000000000000246 R12: 0000000000000001
[  827.598078][T17306] R13: 0000000000000000 R14: 00007f44423a5fa0 R15: 00007ffdf535cf38
[  827.598114][T17306]  </TASK>
[  828.001680][T17295] could not allocate digest TFM handle 
[  828.600468][T17290] netlink: 'syz.1.2849': attribute type 1 has an invalid length.
[  828.974901][T17320] FAULT_INJECTION: forcing a failure.
[  828.974901][T17320] name failslab, interval 1, probability 0, space 0, times 0
[  829.034816][T17320] CPU: 1 UID: 0 PID: 17320 Comm: syz.1.2856 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  829.034854][T17320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  829.034872][T17320] Call Trace:
[  829.034880][T17320]  <TASK>
[  829.034891][T17320]  dump_stack_lvl+0x16c/0x1f0
[  829.034929][T17320]  should_fail_ex+0x50a/0x650
[  829.034974][T17320]  ? fs_reclaim_acquire+0xae/0x150
[  829.035016][T17320]  should_failslab+0xc2/0x120
[  829.035042][T17320]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  829.035088][T17320]  ? __xlate_proc_name+0x173/0x210
[  829.035126][T17320]  ? __proc_create+0x2c0/0x8b0
[  829.035168][T17320]  __proc_create+0x2c0/0x8b0
[  829.035206][T17320]  ? __pfx___proc_create+0x10/0x10
[  829.035243][T17320]  ? _raw_write_unlock+0x28/0x50
[  829.035269][T17320]  ? proc_register+0x314/0x5f0
[  829.035317][T17320]  _proc_mkdir+0xbb/0x200
[  829.035339][T17320]  ? __pfx__proc_mkdir+0x10/0x10
[  829.035361][T17320]  ? kmem_cache_alloc_noprof+0x279/0x3d0
[  829.035404][T17320]  ? __pfx_netfilter_net_init+0x10/0x10
[  829.035430][T17320]  netfilter_net_init+0x37b/0x4b0
[  829.035454][T17320]  ? sysctl_net_init+0x27/0x30
[  829.035479][T17320]  ops_init+0x1df/0x5f0
[  829.035519][T17320]  setup_net+0x21f/0x860
[  829.035559][T17320]  ? __pfx_setup_net+0x10/0x10
[  829.035596][T17320]  ? down_read_killable+0xcc/0x380
[  829.035630][T17320]  ? __pfx_down_read_killable+0x10/0x10
[  829.035668][T17320]  ? __raw_spin_lock_init+0x3a/0x110
[  829.035731][T17320]  ? debug_mutex_init+0x37/0x70
[  829.035767][T17320]  copy_net_ns+0x2b4/0x6c0
[  829.035800][T17320]  create_new_namespaces+0x3ea/0xad0
[  829.035854][T17320]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  829.035904][T17320]  ksys_unshare+0x45d/0xa40
[  829.035935][T17320]  ? __pfx_ksys_unshare+0x10/0x10
[  829.035976][T17320]  __x64_sys_unshare+0x31/0x40
[  829.036004][T17320]  do_syscall_64+0xcd/0x250
[  829.036041][T17320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  829.036081][T17320] RIP: 0033:0x7f516958cde9
[  829.036103][T17320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  829.036129][T17320] RSP: 002b:00007f516a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  829.036155][T17320] RAX: ffffffffffffffda RBX: 00007f51697a5fa0 RCX: 00007f516958cde9
[  829.036174][T17320] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  829.036192][T17320] RBP: 00007f516960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  829.036211][T17320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  829.036230][T17320] R13: 0000000000000000 R14: 00007f51697a5fa0 R15: 00007ffc513b7dd8
[  829.036264][T17320]  </TASK>
[  829.036277][T17320] cannot create netfilter proc entry
[  831.228233][T17349] FAULT_INJECTION: forcing a failure.
[  831.228233][T17349] name failslab, interval 1, probability 0, space 0, times 0
[  831.288541][T17349] CPU: 1 UID: 0 PID: 17349 Comm: syz.6.2864 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  831.288579][T17349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  831.288598][T17349] Call Trace:
[  831.288608][T17349]  <TASK>
[  831.288619][T17349]  dump_stack_lvl+0x16c/0x1f0
[  831.288660][T17349]  should_fail_ex+0x50a/0x650
[  831.288707][T17349]  ? fs_reclaim_acquire+0xae/0x150
[  831.288753][T17349]  ? ima_alloc_init_template+0x195/0x720
[  831.288820][T17349]  should_failslab+0xc2/0x120
[  831.288850][T17349]  __kmalloc_noprof+0xcb/0x510
[  831.288900][T17349]  ? mark_held_locks+0x9f/0xe0
[  831.288945][T17349]  ima_alloc_init_template+0x195/0x720
[  831.288996][T17349]  ? take_dentry_name_snapshot+0x314/0x730
[  831.289047][T17349]  ima_store_measurement+0x1ea/0x5c0
[  831.289117][T17349]  ? __pfx_ima_store_measurement+0x10/0x10
[  831.289170][T17349]  ? vfs_getxattr_alloc+0xf1/0x340
[  831.289223][T17349]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  831.289272][T17349]  process_measurement+0x1bcb/0x2370
[  831.289338][T17349]  ? __pfx_process_measurement+0x10/0x10
[  831.289391][T17349]  ? aa_file_perm+0x4c6/0xfe0
[  831.289432][T17349]  ? trace_lock_acquire+0x14e/0x1f0
[  831.289512][T17349]  ima_file_mmap+0x1b3/0x1e0
[  831.289554][T17349]  ? __pfx_ima_file_mmap+0x10/0x10
[  831.289607][T17349]  security_mmap_file+0x88c/0x990
[  831.289646][T17349]  vm_mmap_pgoff+0xdb/0x3a0
[  831.289690][T17349]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  831.289723][T17349]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  831.289764][T17349]  ? hugetlbfs_get_inode+0x323/0x740
[  831.289806][T17349]  ksys_mmap_pgoff+0x1c8/0x5c0
[  831.289849][T17349]  __x64_sys_mmap+0x125/0x190
[  831.289896][T17349]  do_syscall_64+0xcd/0x250
[  831.289935][T17349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  831.289976][T17349] RIP: 0033:0x7f7cc618cde9
[  831.290001][T17349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  831.290029][T17349] RSP: 002b:00007f7cc6f0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  831.290056][T17349] RAX: ffffffffffffffda RBX: 00007f7cc63a5fa0 RCX: 00007f7cc618cde9
[  831.290076][T17349] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000800000
[  831.290095][T17349] RBP: 00007f7cc620e2a0 R08: 0000000000000401 R09: 0000300000000000
[  831.290114][T17349] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  831.290132][T17349] R13: 0000000000000000 R14: 00007f7cc63a5fa0 R15: 00007ffd39f6bf68
[  831.290169][T17349]  </TASK>
[  831.535613][   T29] audit: type=1804 audit(4294967319.596:11): pid=17349 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.6.2864" name="anon_hugepage" dev="hugetlbfs" ino=53302 res=0 errno=0
[  831.809590][T17346] Invalid ELF header magic: != ELF
[  832.028835][T17363] EXT4-fs error: 8 callbacks suppressed
[  832.028858][T17363] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  832.087109][T17367] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  832.641360][T17374] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  833.222315][T17365] netlink: 'syz.2.2867': attribute type 1 has an invalid length.
[  833.851511][T17394] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2874'.
[  834.357986][T17403] FAULT_INJECTION: forcing a failure.
[  834.357986][T17403] name failslab, interval 1, probability 0, space 0, times 0
[  834.382187][T17403] CPU: 1 UID: 0 PID: 17403 Comm: syz.5.2878 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  834.382229][T17403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  834.382250][T17403] Call Trace:
[  834.382260][T17403]  <TASK>
[  834.382282][T17403]  dump_stack_lvl+0x16c/0x1f0
[  834.382344][T17403]  should_fail_ex+0x50a/0x650
[  834.382404][T17403]  ? fs_reclaim_acquire+0xae/0x150
[  834.382447][T17403]  should_failslab+0xc2/0x120
[  834.382476][T17403]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  834.382521][T17403]  ? __xlate_proc_name+0x173/0x210
[  834.382567][T17403]  ? __proc_create+0x2c0/0x8b0
[  834.382617][T17403]  __proc_create+0x2c0/0x8b0
[  834.382664][T17403]  ? __pfx___proc_create+0x10/0x10
[  834.382715][T17403]  ? _raw_write_unlock+0x28/0x50
[  834.382746][T17403]  ? proc_register+0x314/0x5f0
[  834.382796][T17403]  proc_create_reg+0x7d/0x180
[  834.382827][T17403]  proc_create_seq_private+0x8f/0x180
[  834.382858][T17403]  ? __pfx_proc_create_seq_private+0x10/0x10
[  834.382889][T17403]  ? __pfx_nl_fib_input+0x10/0x10
[  834.382931][T17403]  ? __pfx_ip_rt_do_proc_init+0x10/0x10
[  834.382972][T17403]  ip_rt_do_proc_init+0xac/0x1b0
[  834.383012][T17403]  ops_init+0x1df/0x5f0
[  834.383059][T17403]  setup_net+0x21f/0x860
[  834.383126][T17403]  ? __pfx_setup_net+0x10/0x10
[  834.383174][T17403]  ? down_read_killable+0xcc/0x380
[  834.383238][T17403]  ? __pfx_down_read_killable+0x10/0x10
[  834.383290][T17403]  ? __raw_spin_lock_init+0x3a/0x110
[  834.383348][T17403]  ? debug_mutex_init+0x37/0x70
[  834.383389][T17403]  copy_net_ns+0x2b4/0x6c0
[  834.383426][T17403]  create_new_namespaces+0x3ea/0xad0
[  834.383491][T17403]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  834.383552][T17403]  ksys_unshare+0x45d/0xa40
[  834.383588][T17403]  ? __pfx_ksys_unshare+0x10/0x10
[  834.383621][T17403]  ? xfd_validate_state+0x5d/0x180
[  834.383683][T17403]  __x64_sys_unshare+0x31/0x40
[  834.383718][T17403]  do_syscall_64+0xcd/0x250
[  834.383762][T17403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.383809][T17403] RIP: 0033:0x7f444218cde9
[  834.383836][T17403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  834.383870][T17403] RSP: 002b:00007f444309d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  834.383902][T17403] RAX: ffffffffffffffda RBX: 00007f44423a5fa0 RCX: 00007f444218cde9
[  834.383926][T17403] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  834.383946][T17403] RBP: 00007f444220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  834.383967][T17403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  834.383988][T17403] R13: 0000000000000000 R14: 00007f44423a5fa0 R15: 00007ffdf535cf38
[  834.384031][T17403]  </TASK>
[  835.463022][T17419] FAULT_INJECTION: forcing a failure.
[  835.463022][T17419] name failslab, interval 1, probability 0, space 0, times 0
[  835.495307][T17419] CPU: 1 UID: 0 PID: 17419 Comm: syz.5.2883 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  835.495343][T17419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  835.495360][T17419] Call Trace:
[  835.495369][T17419]  <TASK>
[  835.495381][T17419]  dump_stack_lvl+0x16c/0x1f0
[  835.495421][T17419]  should_fail_ex+0x50a/0x650
[  835.495471][T17419]  ? fs_reclaim_acquire+0xae/0x150
[  835.495512][T17419]  should_failslab+0xc2/0x120
[  835.495541][T17419]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  835.495585][T17419]  ? __xlate_proc_name+0x173/0x210
[  835.495629][T17419]  ? __proc_create+0x2c0/0x8b0
[  835.495677][T17419]  __proc_create+0x2c0/0x8b0
[  835.495722][T17419]  ? __pfx___proc_create+0x10/0x10
[  835.495765][T17419]  ? _raw_write_unlock+0x28/0x50
[  835.495796][T17419]  ? proc_register+0x314/0x5f0
[  835.495852][T17419]  _proc_mkdir+0xbb/0x200
[  835.495880][T17419]  ? __pfx__proc_mkdir+0x10/0x10
[  835.495904][T17419]  ? kmem_cache_alloc_noprof+0x279/0x3d0
[  835.495955][T17419]  ? __pfx_netfilter_net_init+0x10/0x10
[  835.495985][T17419]  netfilter_net_init+0x37b/0x4b0
[  835.496013][T17419]  ? sysctl_net_init+0x27/0x30
[  835.496044][T17419]  ops_init+0x1df/0x5f0
[  835.496090][T17419]  setup_net+0x21f/0x860
[  835.496135][T17419]  ? __pfx_setup_net+0x10/0x10
[  835.496176][T17419]  ? down_read_killable+0xcc/0x380
[  835.496216][T17419]  ? __pfx_down_read_killable+0x10/0x10
[  835.496254][T17419]  ? __raw_spin_lock_init+0x3a/0x110
[  835.496306][T17419]  ? debug_mutex_init+0x37/0x70
[  835.496339][T17419]  copy_net_ns+0x2b4/0x6c0
[  835.496370][T17419]  create_new_namespaces+0x3ea/0xad0
[  835.496424][T17419]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  835.496480][T17419]  ksys_unshare+0x45d/0xa40
[  835.496509][T17419]  ? __pfx_ksys_unshare+0x10/0x10
[  835.496537][T17419]  ? xfd_validate_state+0x5d/0x180
[  835.496591][T17419]  __x64_sys_unshare+0x31/0x40
[  835.496620][T17419]  do_syscall_64+0xcd/0x250
[  835.496658][T17419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.496698][T17419] RIP: 0033:0x7f444218cde9
[  835.496721][T17419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  835.496749][T17419] RSP: 002b:00007f444309d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  835.496777][T17419] RAX: ffffffffffffffda RBX: 00007f44423a5fa0 RCX: 00007f444218cde9
[  835.496796][T17419] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  835.496814][T17419] RBP: 00007f444220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  835.496833][T17419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  835.496851][T17419] R13: 0000000000000000 R14: 00007f44423a5fa0 R15: 00007ffdf535cf38
[  835.496888][T17419]  </TASK>
[  835.500169][T17419] cannot create netfilter proc entry
[  837.119660][T17448] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  837.535158][T17455] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  837.791537][T17458] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  838.522690][T17472] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  838.579260][T17457] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2898'.
[  838.603311][T17474] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  838.877773][T17479] cougar: G6 mapped to space
[  840.553241][T17506] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2903'.
[  841.134794][T17494] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2899'.
[  841.930978][T17515] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2909'.
[  842.363534][T17522] cougar: G6 mapped to space
[  843.488491][T17536] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1)
[  843.500537][T17536] FAULT_INJECTION: forcing a failure.
[  843.500537][T17536] name failslab, interval 1, probability 0, space 0, times 0
[  843.513977][T17536] CPU: 1 UID: 0 PID: 17536 Comm: syz.5.2916 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  843.514016][T17536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  843.514035][T17536] Call Trace:
[  843.514045][T17536]  <TASK>
[  843.514057][T17536]  dump_stack_lvl+0x16c/0x1f0
[  843.514102][T17536]  should_fail_ex+0x50a/0x650
[  843.514154][T17536]  ? fs_reclaim_acquire+0xae/0x150
[  843.514199][T17536]  ? constrain_params_by_rules+0x176/0xca0
[  843.514237][T17536]  should_failslab+0xc2/0x120
[  843.514269][T17536]  __kmalloc_noprof+0xcb/0x510
[  843.514329][T17536]  ? hlock_class+0x4e/0x130
[  843.514370][T17536]  ? mark_lock+0xb5/0xc60
[  843.514413][T17536]  constrain_params_by_rules+0x176/0xca0
[  843.514460][T17536]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  843.514494][T17536]  ? lock_acquire.part.0+0x11b/0x380
[  843.514553][T17536]  ? hlock_class+0x4e/0x130
[  843.514589][T17536]  ? mark_lock+0xb5/0xc60
[  843.514626][T17536]  ? snd_interval_refine+0x2fa/0x580
[  843.514672][T17536]  snd_pcm_hw_refine+0x7e8/0xad0
[  843.514711][T17536]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  843.514750][T17536]  ? __pfx_lock_release+0x10/0x10
[  843.514794][T17536]  ? mark_held_locks+0x9f/0xe0
[  843.514842][T17536]  snd_pcm_hw_params+0x3e6/0x1b20
[  843.514878][T17536]  ? kfree+0x2c4/0x4d0
[  843.514912][T17536]  ? snd_pcm_hw_param_first+0x301/0x6e0
[  843.514941][T17536]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  843.514977][T17536]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  843.515015][T17536]  ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0
[  843.515053][T17536]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  843.515093][T17536]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  843.515132][T17536]  snd_pcm_oss_change_params_locked+0x1406/0x3a60
[  843.515180][T17536]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  843.515241][T17536]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  843.515275][T17536]  snd_pcm_oss_write+0x4a3/0xa00
[  843.515308][T17536]  ? bpf_lsm_file_permission+0x9/0x10
[  843.515360][T17536]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  843.515391][T17536]  vfs_write+0x24c/0x1150
[  843.515438][T17536]  ? __pfx_vfs_write+0x10/0x10
[  843.515474][T17536]  ? do_futex+0x123/0x350
[  843.515509][T17536]  ? __pfx_do_futex+0x10/0x10
[  843.515560][T17536]  ? __x64_sys_futex+0x1e1/0x4c0
[  843.515594][T17536]  ? __x64_sys_futex+0x1ea/0x4c0
[  843.515634][T17536]  ksys_write+0x12b/0x250
[  843.515673][T17536]  ? __pfx_ksys_write+0x10/0x10
[  843.515724][T17536]  do_syscall_64+0xcd/0x250
[  843.515780][T17536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  843.515823][T17536] RIP: 0033:0x7f444218cde9
[  843.515847][T17536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  843.515876][T17536] RSP: 002b:00007f444309d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  843.515904][T17536] RAX: ffffffffffffffda RBX: 00007f44423a5fa0 RCX: 00007f444218cde9
[  843.515925][T17536] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000002
[  843.515944][T17536] RBP: 00007f444220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  843.515963][T17536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  843.515982][T17536] R13: 0000000000000000 R14: 00007f44423a5fa0 R15: 00007ffdf535cf38
[  843.516021][T17536]  </TASK>
[  845.508472][T16907] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  845.518076][T16907] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  845.527484][T16907] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  845.540530][T16907] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  845.549677][T16907] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  845.557184][T16907] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  845.583877][T17562] FAULT_INJECTION: forcing a failure.
[  845.583877][T17562] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  845.598032][T17562] CPU: 1 UID: 0 PID: 17562 Comm: syz.6.2925 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  845.598067][T17562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  845.598084][T17562] Call Trace:
[  845.598093][T17562]  <TASK>
[  845.598104][T17562]  dump_stack_lvl+0x16c/0x1f0
[  845.598142][T17562]  should_fail_ex+0x50a/0x650
[  845.598190][T17562]  _copy_from_user+0x2e/0xd0
[  845.598221][T17562]  copy_msghdr_from_user+0x99/0x160
[  845.598262][T17562]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  845.598318][T17562]  ___sys_sendmsg+0xff/0x1e0
[  845.598359][T17562]  ? __pfx____sys_sendmsg+0x10/0x10
[  845.598411][T17562]  ? __pfx_lock_release+0x10/0x10
[  845.598450][T17562]  ? trace_lock_acquire+0x14e/0x1f0
[  845.598492][T17562]  ? __fget_files+0x206/0x3a0
[  845.598541][T17562]  __sys_sendmsg+0x16e/0x220
[  845.598581][T17562]  ? __pfx___sys_sendmsg+0x10/0x10
[  845.598642][T17562]  do_syscall_64+0xcd/0x250
[  845.598687][T17562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  845.598726][T17562] RIP: 0033:0x7f7cc618cde9
[  845.598747][T17562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  845.598776][T17562] RSP: 002b:00007f7cc6f0e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  845.598801][T17562] RAX: ffffffffffffffda RBX: 00007f7cc63a5fa0 RCX: 00007f7cc618cde9
[  845.598821][T17562] RDX: 0000000000000000 RSI: 0000400000001cc0 RDI: 0000000000000003
[  845.598839][T17562] RBP: 00007f7cc6f0e090 R08: 0000000000000000 R09: 0000000000000000
[  845.598857][T17562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  845.598875][T17562] R13: 0000000000000000 R14: 00007f7cc63a5fa0 R15: 00007ffd39f6bf68
[  845.598909][T17562]  </TASK>
[  846.446845][T17573] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1)
[  846.499439][T17573] FAULT_INJECTION: forcing a failure.
[  846.499439][T17573] name failslab, interval 1, probability 0, space 0, times 0
[  846.590658][T17573] CPU: 0 UID: 0 PID: 17573 Comm: syz.6.2928 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  846.590696][T17573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  846.590714][T17573] Call Trace:
[  846.590723][T17573]  <TASK>
[  846.590735][T17573]  dump_stack_lvl+0x16c/0x1f0
[  846.590777][T17573]  should_fail_ex+0x50a/0x650
[  846.590823][T17573]  ? fs_reclaim_acquire+0xae/0x150
[  846.590862][T17573]  ? constrain_params_by_rules+0x176/0xca0
[  846.590895][T17573]  should_failslab+0xc2/0x120
[  846.590923][T17573]  __kmalloc_noprof+0xcb/0x510
[  846.590964][T17573]  ? unwind_get_return_address+0x59/0xa0
[  846.591010][T17573]  ? arch_stack_walk+0xa7/0x100
[  846.591042][T17573]  constrain_params_by_rules+0x176/0xca0
[  846.591083][T17573]  ? stack_trace_save+0x95/0xd0
[  846.591118][T17573]  ? stack_depot_save_flags+0x28/0x9c0
[  846.591165][T17573]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  846.591206][T17573]  ? __kasan_kmalloc+0xaa/0xb0
[  846.591250][T17573]  ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  846.591283][T17573]  ? snd_pcm_oss_change_params_locked+0x13cd/0x3a60
[  846.591315][T17573]  ? snd_pcm_oss_make_ready_locked+0xb7/0x130
[  846.591359][T17573]  ? snd_interval_refine+0x2fa/0x580
[  846.591406][T17573]  snd_pcm_hw_refine+0x7e8/0xad0
[  846.591446][T17573]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  846.591494][T17573]  ? _snd_pcm_hw_param_min+0x259/0x630
[  846.591530][T17573]  snd_pcm_hw_param_near.constprop.0+0x597/0x8f0
[  846.591568][T17573]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  846.591612][T17573]  ? calc_src_frames.isra.0+0x187/0x1d0
[  846.591645][T17573]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  846.591688][T17573]  snd_pcm_oss_change_params_locked+0x13cd/0x3a60
[  846.591738][T17573]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  846.591801][T17573]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  846.591837][T17573]  snd_pcm_oss_write+0x4a3/0xa00
[  846.591873][T17573]  ? bpf_lsm_file_permission+0x9/0x10
[  846.591927][T17573]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  846.591960][T17573]  vfs_write+0x24c/0x1150
[  846.592007][T17573]  ? __pfx_vfs_write+0x10/0x10
[  846.592044][T17573]  ? do_futex+0x123/0x350
[  846.592079][T17573]  ? __pfx_do_futex+0x10/0x10
[  846.592124][T17573]  ? __x64_sys_futex+0x1e1/0x4c0
[  846.592156][T17573]  ? __x64_sys_futex+0x1ea/0x4c0
[  846.592196][T17573]  ksys_write+0x12b/0x250
[  846.592235][T17573]  ? __pfx_ksys_write+0x10/0x10
[  846.592285][T17573]  do_syscall_64+0xcd/0x250
[  846.592325][T17573]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  846.592366][T17573] RIP: 0033:0x7f7cc618cde9
[  846.592389][T17573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  846.592419][T17573] RSP: 002b:00007f7cc6f0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  846.592445][T17573] RAX: ffffffffffffffda RBX: 00007f7cc63a5fa0 RCX: 00007f7cc618cde9
[  846.592466][T17573] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000002
[  846.592483][T17573] RBP: 00007f7cc620e2a0 R08: 0000000000000000 R09: 0000000000000000
[  846.592502][T17573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  846.592519][T17573] R13: 0000000000000000 R14: 00007f7cc63a5fa0 R15: 00007ffd39f6bf68
[  846.592556][T17573]  </TASK>
[  846.917495][    C0] vkms_vblank_simulate: vblank timer overrun
[  847.402863][T17584] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:12: corrupted in-inode xattr: bad magic number in in-inode xattr
[  847.500040][T10115] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  847.589909][T17559] chnl_net:caif_netlink_parms(): no params data found
[  847.664664][ T5852] Bluetooth: hci3: command tx timeout
[  847.762540][T10115] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  847.876778][T10115] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  848.123840][T10115] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  848.188785][T17559] bridge0: port 1(bridge_slave_0) entered blocking state
[  848.211683][T17559] bridge0: port 1(bridge_slave_0) entered disabled state
[  848.218902][T17559] bridge_slave_0: entered allmulticast mode
[  848.242658][T17559] bridge_slave_0: entered promiscuous mode
[  848.266697][T17559] bridge0: port 2(bridge_slave_1) entered blocking state
[  848.285783][T17559] bridge0: port 2(bridge_slave_1) entered disabled state
[  848.311188][T17559] bridge_slave_1: entered allmulticast mode
[  848.342848][T17559] bridge_slave_1: entered promiscuous mode
[  848.427043][T17581] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2931'.
[  848.494110][T17559] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  848.528387][T17559] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  848.692484][T17559] team0: Port device team_slave_0 added
[  848.723098][T17559] team0: Port device team_slave_1 added
[  848.802195][T17599] Invalid ELF header magic: != ELF
[  848.824127][T10115] bridge_slave_1: left allmulticast mode
[  848.829821][T10115] bridge_slave_1: left promiscuous mode
[  848.861159][T10115] bridge0: port 2(bridge_slave_1) entered disabled state
[  848.922534][T10115] bridge_slave_0: left allmulticast mode
[  848.928218][T10115] bridge_slave_0: left promiscuous mode
[  848.945112][T10115] bridge0: port 1(bridge_slave_0) entered disabled state
[  849.745378][ T5852] Bluetooth: hci3: command tx timeout
[  849.801204][T10115] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  849.822727][T10115] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  849.844028][T10115] bond0 (unregistering): Released all slaves
[  849.856474][T17559] batman_adv: batadv0: Adding interface: batadv_slave_0
[  849.867849][T17559] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  849.899937][T17559] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  849.938970][T17605] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2940'.
[  850.029282][T10115] HfR: left promiscuous mode
[  850.050015][T17559] batman_adv: batadv0: Adding interface: batadv_slave_1
[  850.079169][T17559] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  850.110930][T17559] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  850.158924][T17611] program syz.2.2941 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  850.328195][T17559] hsr_slave_0: entered promiscuous mode
[  850.335913][T17559] hsr_slave_1: entered promiscuous mode
[  850.345737][T17559] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  850.354768][T17559] Cannot create hsr debugfs directory
[  850.660765][T10115] hsr_slave_0: left promiscuous mode
[  850.667565][T10115] hsr_slave_1: left promiscuous mode
[  850.708642][T10115] veth1_vlan: left promiscuous mode
[  850.732801][T10115] veth0_vlan: left promiscuous mode
[  851.392775][T10115] team0 (unregistering): Port device team_slave_1 removed
[  851.434527][T10115] team0 (unregistering): Port device team_slave_0 removed
[  851.821361][ T5852] Bluetooth: hci3: command tx timeout
[  852.428171][T17559] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  852.438316][T17559] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  852.463512][T17559] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  852.482664][T17559] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  852.696707][T17559] 8021q: adding VLAN 0 to HW filter on device bond0
[  852.773578][T17559] 8021q: adding VLAN 0 to HW filter on device team0
[  852.807717][ T1154] bridge0: port 1(bridge_slave_0) entered blocking state
[  852.814861][ T1154] bridge0: port 1(bridge_slave_0) entered forwarding state
[  852.826497][T17633] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2947'.
[  852.863275][ T1154] bridge0: port 2(bridge_slave_1) entered blocking state
[  852.870424][ T1154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  852.966761][T17636] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.026577][T17637] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.076743][T17638] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.108463][T17639] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.199011][T17559] 8021q: adding VLAN 0 to HW filter on device batadv0
[  853.227739][T17641] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.266818][T17642] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.316948][T17643] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.338553][T17644] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.479192][T17645] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.542170][T17646] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[  853.574335][T17648] Console: switching to colour VGA+ 80x25
[  853.653885][T17648] ==================================================================
[  853.653907][T17648] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0xa15/0xc80
[  853.653960][T17648] Read of size 10 at addr ffff88807d908c5a by task syz.1.2948/17648
[  853.653989][T17648] 
[  853.654001][T17648] CPU: 1 UID: 0 PID: 17648 Comm: syz.1.2948 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  853.654048][T17648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  853.654070][T17648] Call Trace:
[  853.654080][T17648]  <TASK>
[  853.654094][T17648]  dump_stack_lvl+0x116/0x1f0
[  853.654138][T17648]  print_report+0xc3/0x670
[  853.654190][T17648]  ? __virt_addr_valid+0x5e/0x590
[  853.654225][T17648]  ? __phys_addr+0xc6/0x150
[  853.654279][T17648]  kasan_report+0xd9/0x110
[  853.654308][T17648]  ? fbcon_prepare_logo+0xa15/0xc80
[  853.654356][T17648]  ? fbcon_prepare_logo+0xa15/0xc80
[  853.654395][T17648]  kasan_check_range+0xef/0x1a0
[  853.654429][T17648]  __asan_memcpy+0x23/0x60
[  853.654466][T17648]  fbcon_prepare_logo+0xa15/0xc80
[  853.654509][T17648]  fbcon_init+0xd41/0x1890
[  853.654545][T17648]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  853.654578][T17648]  visual_init+0x31d/0x620
[  853.654606][T17648]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  853.654645][T17648]  store_bind+0x61d/0x760
[  853.654681][T17648]  ? __pfx_store_bind+0x10/0x10
[  853.654713][T17648]  dev_attr_store+0x55/0x80
[  853.654749][T17648]  ? __pfx_dev_attr_store+0x10/0x10
[  853.654785][T17648]  sysfs_kf_write+0x117/0x170
[  853.654817][T17648]  kernfs_fop_write_iter+0x33d/0x500
[  853.654846][T17648]  ? __pfx_sysfs_kf_write+0x10/0x10
[  853.654880][T17648]  vfs_write+0x5ae/0x1150
[  853.654919][T17648]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  853.654951][T17648]  ? __pfx___mutex_lock+0x10/0x10
[  853.654987][T17648]  ? __pfx_vfs_write+0x10/0x10
[  853.655045][T17648]  ksys_write+0x12b/0x250
[  853.655084][T17648]  ? __pfx_ksys_write+0x10/0x10
[  853.655129][T17648]  do_syscall_64+0xcd/0x250
[  853.655166][T17648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  853.655208][T17648] RIP: 0033:0x7f516958cde9
[  853.655229][T17648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  853.655258][T17648] RSP: 002b:00007f516a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  853.655286][T17648] RAX: ffffffffffffffda RBX: 00007f51697a5fa0 RCX: 00007f516958cde9
[  853.655306][T17648] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000003
[  853.655324][T17648] RBP: 00007f516960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  853.655344][T17648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  853.655362][T17648] R13: 0000000000000000 R14: 00007f51697a5fa0 R15: 00007ffc513b7dd8
[  853.655389][T17648]  </TASK>
[  853.655400][T17648] 
[  853.655407][T17648] Allocated by task 17648:
[  853.655422][T17648]  kasan_save_stack+0x33/0x60
[  853.655461][T17648]  kasan_save_track+0x14/0x30
[  853.655502][T17648]  __kasan_kmalloc+0xaa/0xb0
[  853.655540][T17648]  __kmalloc_noprof+0x21c/0x510
[  853.655582][T17648]  vc_do_resize+0x1e3/0x10f0
[  853.655610][T17648]  fbcon_init+0xd1d/0x1890
[  853.655643][T17648]  visual_init+0x31d/0x620
[  853.655666][T17648]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  853.655699][T17648]  store_bind+0x61d/0x760
[  853.655728][T17648]  dev_attr_store+0x55/0x80
[  853.655761][T17648]  sysfs_kf_write+0x117/0x170
[  853.655789][T17648]  kernfs_fop_write_iter+0x33d/0x500
[  853.655817][T17648]  vfs_write+0x5ae/0x1150
[  853.655852][T17648]  ksys_write+0x12b/0x250
[  853.655888][T17648]  do_syscall_64+0xcd/0x250
[  853.655921][T17648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  853.655958][T17648] 
[  853.655966][T17648] The buggy address belongs to the object at ffff88807d908c00
[  853.655966][T17648]  which belongs to the cache kmalloc-64 of size 64
[  853.655989][T17648] The buggy address is located 30 bytes to the right of
[  853.655989][T17648]  allocated 60-byte region [ffff88807d908c00, ffff88807d908c3c)
[  853.656025][T17648] 
[  853.656032][T17648] The buggy address belongs to the physical page:
[  853.656050][T17648] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7d908
[  853.656076][T17648] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  853.656104][T17648] page_type: f5(slab)
[  853.656128][T17648] raw: 00fff00000000000 ffff88801b0418c0 ffffea000099a200 dead000000000005
[  853.656155][T17648] raw: 0000000000000000 0000000000200020 00000000f5000000 0000000000000000
[  853.656172][T17648] page dumped because: kasan: bad access detected
[  853.656190][T17648] page_owner tracks the page as allocated
[  853.656200][T17648] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5840, tgid 5840 (syz-executor), ts 82653782233, free_ts 82545870131
[  853.656244][T17648]  post_alloc_hook+0x181/0x1b0
[  853.656283][T17648]  get_page_from_freelist+0xfce/0x2f80
[  853.656324][T17648]  __alloc_frozen_pages_noprof+0x221/0x2470
[  853.656367][T17648]  alloc_pages_mpol+0x1fc/0x540
[  853.656390][T17648]  new_slab+0x23d/0x330
[  853.656424][T17648]  ___slab_alloc+0xc5d/0x1720
[  853.656459][T17648]  __slab_alloc.constprop.0+0x56/0xb0
[  853.656496][T17648]  __kmalloc_noprof+0x2ec/0x510
[  853.656536][T17648]  kobject_get_path+0xd9/0x2b0
[  853.656571][T17648]  kobject_uevent_env+0x289/0x1870
[  853.656612][T17648]  __kobject_del+0x168/0x1f0
[  853.656646][T17648]  kobject_put+0x327/0x5a0
[  853.656681][T17648]  net_rx_queue_update_kobjects+0x478/0x5f0
[  853.656722][T17648]  netif_set_real_num_rx_queues+0x169/0x210
[  853.656766][T17648]  veth_init_queues+0x151/0x190
[  853.656796][T17648]  veth_newlink+0x462/0x8f0
[  853.656827][T17648] page last free pid 5845 tgid 5845 stack trace:
[  853.656843][T17648]  free_frozen_pages+0x6db/0xfb0
[  853.656883][T17648]  qlist_free_all+0x4e/0x120
[  853.656920][T17648]  kasan_quarantine_reduce+0x195/0x1e0
[  853.656960][T17648]  __kasan_slab_alloc+0x69/0x90
[  853.657002][T17648]  __kmalloc_cache_noprof+0x243/0x410
[  853.657047][T17648]  ref_tracker_alloc+0x17c/0x5b0
[  853.657092][T17648]  register_netdevice+0x166d/0x1eb0
[  853.657134][T17648]  hsr_dev_finalize+0x6c9/0xbf0
[  853.657172][T17648]  hsr_newlink+0x40b/0x8e0
[  853.657210][T17648]  rtnl_newlink+0xb95/0x1d60
[  853.657246][T17648]  rtnetlink_rcv_msg+0x95b/0xea0
[  853.657283][T17648]  netlink_rcv_skb+0x16b/0x440
[  853.657318][T17648]  netlink_unicast+0x53c/0x7f0
[  853.657352][T17648]  netlink_sendmsg+0x8b8/0xd70
[  853.657387][T17648]  __sys_sendto+0x488/0x4f0
[  853.657421][T17648]  __x64_sys_sendto+0xe0/0x1c0
[  853.657456][T17648] 
[  853.657463][T17648] Memory state around the buggy address:
[  853.657479][T17648]  ffff88807d908b00: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  853.657500][T17648]  ffff88807d908b80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[  853.657521][T17648] >ffff88807d908c00: 00 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc
[  853.657538][T17648]                                                     ^
[  853.657555][T17648]  ffff88807d908c80: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc
[  853.657579][T17648]  ffff88807d908d00: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc
[  853.657596][T17648] ==================================================================
[  853.657612][T17648] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  853.657627][T17648] CPU: 1 UID: 0 PID: 17648 Comm: syz.1.2948 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0
[  853.657661][T17648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  853.657680][T17648] Call Trace:
[  853.657689][T17648]  <TASK>
[  853.657700][T17648]  dump_stack_lvl+0x3d/0x1f0
[  853.657735][T17648]  panic+0x71d/0x800
[  853.657767][T17648]  ? __pfx_panic+0x10/0x10
[  853.657798][T17648]  ? rcu_is_watching+0x12/0xc0
[  853.657830][T17648]  ? __pfx_lock_release+0x10/0x10
[  853.657874][T17648]  check_panic_on_warn+0xab/0xb0
[  853.657908][T17648]  end_report+0x117/0x180
[  853.657953][T17648]  kasan_report+0xe9/0x110
[  853.657979][T17648]  ? fbcon_prepare_logo+0xa15/0xc80
[  853.658021][T17648]  ? fbcon_prepare_logo+0xa15/0xc80
[  853.658061][T17648]  kasan_check_range+0xef/0x1a0
[  853.658094][T17648]  __asan_memcpy+0x23/0x60
[  853.658132][T17648]  fbcon_prepare_logo+0xa15/0xc80
[  853.658174][T17648]  fbcon_init+0xd41/0x1890
[  853.658211][T17648]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  853.658244][T17648]  visual_init+0x31d/0x620
[  853.658273][T17648]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  853.658312][T17648]  store_bind+0x61d/0x760
[  853.658347][T17648]  ? __pfx_store_bind+0x10/0x10
[  853.658380][T17648]  dev_attr_store+0x55/0x80
[  853.658416][T17648]  ? __pfx_dev_attr_store+0x10/0x10
[  853.658452][T17648]  sysfs_kf_write+0x117/0x170
[  853.658485][T17648]  kernfs_fop_write_iter+0x33d/0x500
[  853.658514][T17648]  ? __pfx_sysfs_kf_write+0x10/0x10
[  853.658548][T17648]  vfs_write+0x5ae/0x1150
[  853.658588][T17648]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  853.658619][T17648]  ? __pfx___mutex_lock+0x10/0x10
[  853.658654][T17648]  ? __pfx_vfs_write+0x10/0x10
[  853.658702][T17648]  ksys_write+0x12b/0x250
[  853.658743][T17648]  ? __pfx_ksys_write+0x10/0x10
[  853.658788][T17648]  do_syscall_64+0xcd/0x250
[  853.658825][T17648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  853.658866][T17648] RIP: 0033:0x7f516958cde9
[  853.658887][T17648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  853.658916][T17648] RSP: 002b:00007f516a3d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  853.658944][T17648] RAX: ffffffffffffffda RBX: 00007f51697a5fa0 RCX: 00007f516958cde9
[  853.658965][T17648] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000003
[  853.658983][T17648] RBP: 00007f516960e2a0 R08: 0000000000000000 R09: 0000000000000000
[  853.659002][T17648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  853.659026][T17648] R13: 0000000000000000 R14: 00007f51697a5fa0 R15: 00007ffc513b7dd8
[  853.659054][T17648]  </TASK>
[  853.659357][T17648] Kernel Offset: disabled