last executing test programs: 4.063364794s ago: executing program 0 (id=5441): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r1 = socket(0x10, 0x2, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'xfrm0\x00', 0x0}) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) setsockopt$auto(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000000)='\xa0\x8b\x82\xb4\xa0O\xc9\xed_Q\xd1X2\xd9\xcd\x01W146F\xf7\xf4u\xbf\xce\xad)\xa5/\xa9\xc9\xe6Gn+\x11u\x1e\x8e\x8f\x89\x19C\xdf\xc1*\xcb\x10\b\xf9\xed\xeak\xb0\xea\t\xddx\xf5w\xaeu\xd1WL!\x98W\x1f\xf1\x97$\xdb\x9f\x97\xbc\xa80ro\x16\xc4\x8c\xd1\xf8\xc16h0\xa03\xb4vr~\x824\xed9\xe0$a\xad\xd3\x16+\xc5b\xb5,A\xba\xd6\xee\x9b\xdf2\x03;$R*\xd9iy\x0e\xbe\xe32\xfd\x1d\x94\x8bC\xe9\x8b7\x83;\xa1H\xe1\xbd\x8eW\xb5\xf9\x98\xcf\xef\xf4m\x96S\xcf\xdb\xe8[\xff\xa6?^1B\xda*\xc4\t$`V\xdc\x03&\xd1\xcf\xe9}\x859wKR\xf9\x1e\xbfH\\\x0ev\x891\xd0\xfe\xfb_\xa4\x87\xf7\x1c\x8a0\x1f\xbd\x8fq\x80BJ\xad6{\x93%\xc8\x81l\x17\bk\xf8\xa4\xb1\xdd\xd0\xde\xfdJS\xbf\a{o7\xc0\xe7i|\xab\a\xa8\xf1\xacmU\x98^\x12\x1b\xc7\xa6@\x1d\x8d4S\x06\xa6]\x9d{4\xf5\xf2\t\xb7\xc9\x06\xb6\xd0\x89\x8a\xdf\xb5\x06vb6\n^\xd8DZG \xbbR#\xb5p\xe6]r\x06\x8f\nV\xed\x04\xf8\xce\xca6\xdfwf\xfeJ\bryV', 0x5) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000006880), 0x140, 0x0) ioctl$auto(0x3, 0x5501, 0xfffffffffffff4e0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a0080"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRESDEC=r3], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) timer_settime$auto(0x0, 0xffff8000, 0x0, 0x0) socketpair$auto(0x6, 0x0, 0x8, 0xfffffffffffffffc) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000480), 0xa2200, 0x0) write$auto_ep0_operations_inode(r0, &(0x7f00000000c0)="747740259288dc7844bad522a5967b2f85a770ee08db240fd61c03996e58e4185e126002a06a37997db066136ccb43b38b6e17e8baaaa0eb03dbd13d6ac2df9de2205917092ca3c210f62b8aee96573afa8437c71bcedcc000aad7da702d091585d4345e41eef084e3f7acaaff326a402e9effd687dffd207118cb546471aa93f345b218561880e9cfd89c5b27a00a8453bb32bf227cbefa99390677efd0526e26603f89bd915c56e0adddb888d1475a69ddb98cdd7584af645543d01708236a", 0xc0) 3.870033554s ago: executing program 0 (id=5444): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) open(0x0, 0x22240, 0x154) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) truncate$auto(0x0, 0x5) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x2000c041) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) 3.784559025s ago: executing program 1 (id=5446): r0 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x68200, 0x0) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, r1, 0x210, 0x70bd2a, 0x25dfdbff, {}, [@OVS_PACKET_ATTR_PACKET={0x12, 0x1, "4f26c0b0cbb30e83467046f426c9"}, @OVS_PACKET_ATTR_PROBE={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008010}, 0x4800) read$auto_tracing_pipe_fops_trace(r0, &(0x7f0000000040)=""/200, 0xc8) socket(0x2, 0x80002, 0x73) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, 0x0, 0x3) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001340), 0xffffffffffffffff) syz_clone(0x0, 0x0, 0xffffffffffffff19, 0x0, 0x0, 0x0) 2.874067521s ago: executing program 3 (id=5448): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x20201, 0x0) write$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r0 = socket(0xa, 0x1, 0x84) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)="981bed9d", 0x4) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000001c0), r0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0) sendfile$auto(r2, r2, 0x0, 0x200) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) bpf$auto(0x0, 0x0, 0xa3) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x5) socket(0x2, 0x1, 0x106) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) socket(0x2b, 0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x20008000) r3 = socket(0x3, 0x1, 0x6) io_uring_setup$auto(0x7, &(0x7f0000000000)={0x10000, 0x80, 0xe, 0x8, 0x1fd, 0x4, r3, [0x7fffffff, 0x8, 0x6], {0x5, 0x800000a, 0x200, 0xffffffff, 0x81, 0x1ff, 0x7, 0x8, 0x200}, {0x1136400, 0x72, 0x1800000, 0x4, 0x8, 0x4, 0x3b72, 0x80, 0xffffffffffffffff}}) 2.867110274s ago: executing program 1 (id=5449): mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/security/tomoyo/profile\x00', 0x40802, 0x0) pread64$auto(r0, 0x0, 0xffff, 0xa) (fail_nth: 2) 2.865113405s ago: executing program 2 (id=5450): openat$auto_null_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x2842, 0x0) rt_sigprocmask$auto(0x0, 0x0, 0x0, 0x8) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00\'a', @ANYBLOB="e4ac932c75e718d778"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x10001, &(0x7f0000000080)={&(0x7f0000000040), 0x200}, 0x4, 0x0, 0x8, 0x7}, 0x7}, 0x5, 0x66a6, 0x0) 2.770671242s ago: executing program 2 (id=5451): r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f00000003c0), 0x181001, 0x0) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0x0, 0xf2cf, 0x1ff, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x8}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_debugfs_devm_entry_ops_file(0xffffffffffffff9c, 0x0, 0x400, 0x0) pread64$auto(r1, 0x0, 0x2, 0x2) write$auto(0x3, 0x0, 0x100082) (fail_nth: 6) 1.93572389s ago: executing program 1 (id=5452): mmap$auto(0x0, 0xf4, 0x4000000000df, 0x8b2, 0xffffffffffffffff, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sda\x00', 0x8001, 0x0) fallocate$auto(r1, 0x1, 0x0, 0x80000000) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0x78, r2, 0xaea3b950d7ed9757, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x2}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4e23}, @NL80211_ATTR_SCAN_FREQ_KHZ={0xc, 0x124, 0x0, 0x1, [@typed={0x8, 0x10d, 0x0, 0x0, @fd=r1}]}, @NL80211_ATTR_FILS_ERP_RRK={0x42, 0xfc, "7f291a4e97001913e15cad492ea1b91447afd57ef928f0fad58c450016de31cb153c78178792030ad5d1f9d8dac23dac50fa2a8cc3c11fdcd8d16c6005c5"}, @NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}]}, 0x78}}, 0x40000) sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(r0, &(0x7f0000001740)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001700)={&(0x7f0000000040)={0x169c, r2, 0x8, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_TX_RATES={0x11cc, 0x5a, 0x0, 0x1, [@nested={0x11c5, 0xe5, 0x0, 0x1, [@generic="0a09b8e1c23bf4d80019ad031c3b946bc35dcb9f806e4d347229fa88b93d7ed854ec29791035e4150884aac5a2db9ce1c6be58420b67dbc1f9e8101323cd27c8cca6b19cddc8283b0855c4f29dc2c86ceff9000ad053138392", @generic, @nested={0x4, 0x3}, @generic="9a5742cc5c4da7a4abd3fdb85e58c702f4dbdec5f459669710bca163b233e4d98fcd84b7efc48e320009b0e04523f479fd70235b6024376bbc6009c940ab19e1715d48ee0a7146ba186678cdad596729b3758edd1523142f59f55717864d6be59d97baeb00db2a1f763857c05549dcf1481e5b33cc350085039f1b164ce1673144b1b0126d75771882a93fa38747058db0ee017b0306a3328c0cd723110d44e8f97b5b5dec7a638f47b798fbc0a2feef827acfded2cc48920fc15995a048", @generic="517ca464afacc45dbe9d27a1fff26be3ea5c2890c052216dadabf1667e4f21025a65b5eee029c90ddbb211fe6aef58e8c3dcbfbef6a3a72031e482b99ffbf66e41514d9d6cff2e0f20d86d5897756f9341edf786a92f11b0afaea6c7e3826f5e5b57f3ec98978d57905be799b95f054116303b05169cd2c6ca9a5b7269655f69129114a78910942f791a7a0c5001bc398470fc8bf284", @nested={0x4, 0xc1}, @typed={0x8, 0x7d, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x1004, 0x11a, 0x0, 0x0, @binary="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"}]}]}, @NL80211_ATTR_HE_6GHZ_CAPABILITY={0x5c, 0x125, "4c9cce5a2095407a7e07cc60b0d9228a030da816819a8454dd7378cb70b7edca1df4149f01967356d19669e2afae3b694ebda0bef6572220a2d4b11d79debd764c5816d65f391b251bbc46d97549a314673c5e77656e9c26"}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x81, 0xac, "2994d5d1613ef201be264513ff3134bfa61431038d725dd37b7fe7b3823ec1709c3093c65bc030b1513c8939faad968559ed1d761038e1954f5e851b52bdaf58584f314dba36ab11a6a67c82fc4b2cc699c6dbfcb0bdfeedb66498c7797138389afbd4d76902f47f378f01180cab832ae7f704f906692538781ebcdd52"}, @NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0x9}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0xfffffffb}, @NL80211_ATTR_WPA_VERSIONS={0x8, 0x4b, 0x1}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_MESH_CONFIG={0x3b8, 0x23, 0x0, 0x1, [@nested={0xd8, 0xcb, 0x0, 0x1, [@generic="668511473b937e3c17d6a23515051620e6ab232705e910e3803307147451364ee02095c74c825a5be35d4a6ed6eb21b55e6bb910b499158cfa1f2e85ea87f8eb4d88b7528f085aea85b6f136fae29c42de2613230b68cbed318c4b", @generic="2114cc3dd3901b5ea736c4e5522eded97eb2405453745310e508d6d2624a240ae549e1123473f46c6bd712fd3c8611b6e7c3aa49fe8356841bb675aec931644cbcc277ae6fa4b762d1b0efee62c33dca9eac8400d089491f9580af89fc21d8dee9931e4c410142e37a9c8b7b9dac62130ae546ae7e5d464682"]}, @generic="d942ce929ffc4b814fb9541bc1e1cdfd41360b15f12cef12a73b16df2a4422f10b3ad5d0ad7a663febf20e1d0e0aaee1230039660d845596cc259ca8ed3059407d6163e59592ced6aa8b18d984cca262338e7707b2b343c327228523c6e0327d06e909aa5cc68632829382e7eb727d070344d344992486acaf9e9b6503bdbd96abbbbfcde134bc3a8c0350410effc448d6300fdeea31e830", @generic="8d967bbb118d87b91b8e11f3334968082979a613689ee8a2bf2d", @generic="53a587fd2eb9825f87008ad812865cfabbf2b8dddbc7ac01fdc9e5574d80d1e3aa6390d7340262f4728945c0b5045efca6f21000963c7e60994e85c4b2129dc27295cbd814b5985af998", @typed={0x14, 0xc2, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @nested={0x1c, 0xfc, 0x0, 0x1, [@typed={0x14, 0xd1, 0x0, 0x0, @ipv6=@empty}, @nested={0x4, 0x14d}]}, @nested={0x1b0, 0x81, 0x0, 0x1, [@generic="ba64ca83ebfe0d6761e8eff3840f8817a6f0e1d673889eeeeedcb08e43a5f5a6c5a4c670dbf79a1fafd2e339eeed981d4819e25f48795eab5955e15f192aecb6720838d3c3adcba26af0083aa64b708483492373157e25113074b17d6a8b79d877d70452a63242e624d59ec58d48d5622757fe919b618a362b777ffa53a53e2b3eee64b464fccadeb1ec3591c5c5a9244528572d25231196222add9c30", @generic="752a62e03b7224ca9a142a576ee1afc9e362e1618845e22f98f82607092d4aa7c9149bc64f41bc43", @generic="7b13b1de52803ccabfadb50aa94a8d69a41853de4f4d5d5c81a8b7d78cd1a27a37fc4291447b7699cb9c7dbe622012a6c7c7e3cff6a63bcb882a644a9495afc84ed142d018ddc9a1625c2ecca0075d3471433d63a4d988bddf17aa93b3e01bccc2357fbbd4d00ac7b87b15cc6bcc29382224e0fbb52b53c8c38348b2c5b8ddab782b3fc694a3a26179502410b137fdbedfe53264490850eb85a6a4f52cc3e3b774a58c109c9e570a82588f3bed42eb5bd04720cbbd4e9ad50594df34cecf4ffd2caaf240a42efbacfb6020bb97bfe5a9701ec816eb3344eca0045632f08154130eba24a56ebef1"]}]}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}]}, 0x169c}, 0x1, 0x0, 0x0, 0x40040}, 0x8004000) r3 = socket(0x2b, 0x1, 0x1) getsockopt$auto(r3, 0x1, 0x1a, 0x0, 0x0) 1.932916476s ago: executing program 3 (id=5453): ioctl$auto(0xffffffffffffffff, 0x5425, 0x5) (async) mmap$auto(0x0, 0x200006, 0x2000000000002, 0x40eb1, 0x602, 0x300000000000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) (async) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)=""/226, 0xe2) r1 = socket(0x2, 0x801, 0x6) (async) mmap$auto(0x0, 0x8, 0xe2, 0xeb1, 0x69a5, 0xa800000000000000) (async) fanotify_init$auto(0x5, 0x800) (async) pipe2$auto(0x0, 0x80) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) (async) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x55) (async) r2 = getpgrp(0xffffffffffffffff) prctl$auto_PR_SET_MM_START_STACK(0x80000001, 0x5, r2, 0x829, 0xe0000000000) setsockopt$auto(r1, 0x1, 0x12, 0x0, 0xa4) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) (async) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mknodat$auto(r3, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) renameat2$auto(r3, &(0x7f0000000200)='./file0\x00', r3, &(0x7f0000000240)='./file1\x00', 0x5) openat$auto(r3, &(0x7f0000000080)='./file0\x00', 0x8, 0x8001) (async) fspick$auto(0x1, 0x0, 0x9) 1.885857843s ago: executing program 2 (id=5454): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0xfff, 0x1ffc0000000, 0xe0, 0x16, 0xffffffffffffffff, 0x28000) madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) ioctl$auto(0x3, 0x4018bc13, 0xffffffffffffffff) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) socket(0xa, 0x801, 0x84) connect$auto(0x3, 0x0, 0x55) accept$auto(0x3, 0x0, 0x0) 1.855341706s ago: executing program 0 (id=5455): fanotify_init$auto(0x4000001, 0x1fffffc) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) 1.730964168s ago: executing program 1 (id=5456): r0 = socket(0xa, 0x6, 0x0) listen$auto(r0, 0x26da) close_range$auto(0x2, r0, 0x0) openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x80403, 0x0) r1 = getsockopt$auto(r0, 0xffff, 0x40401, 0x0, 0x0) mq_timedsend$auto(r1, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x7, 0x6, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x206100, 0x0) 1.31816091s ago: executing program 0 (id=5457): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0xd85b, 0x78, 0x4, 0x300000000000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/rxrpc/locals\x00', 0x0, 0x0) pread64$auto(r0, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\x80m\xc4\x16O\xa5\x05\xaa\x8fTi\xd6\x88Q\xda\xca', 0x200000000003, 0x8) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) getsockopt$auto(0x3, 0x0, 0xe, 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/usb/drivers/imon/remove_id\x00', 0x88002, 0x0) write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)='\t', 0x1) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 1.262408962s ago: executing program 1 (id=5458): r0 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x68200, 0x0) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, r1, 0x210, 0x70bd2a, 0x25dfdbff, {}, [@OVS_PACKET_ATTR_PACKET={0x12, 0x1, "4f26c0b0cbb30e83467046f426c9"}, @OVS_PACKET_ATTR_PROBE={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008010}, 0x4800) read$auto_tracing_pipe_fops_trace(r0, &(0x7f0000000040)=""/200, 0xc8) socket(0x2, 0x80002, 0x73) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) syz_clone(0x0, 0x0, 0xffffffffffffff19, 0x0, 0x0, 0x0) 1.249309002s ago: executing program 2 (id=5459): r0 = openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000002180)='/proc/thread-self/setgroups\x00', 0x2, 0x0) socket(0xb, 0x2, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) connect$auto(0x3, &(0x7f0000000140), 0x55) write$auto_proc_setgroups_operations_base(r0, &(0x7f00000021c0)="4c642cbd04c28a17", 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) r2 = openat$auto_generic(0xffffffffffffff9c, &(0x7f00000032c0)='/proc/kmsg\x00', 0x80002, 0x0) r3 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/o2hb/livenodes\x00', 0x0, 0x0) read$auto_o2hb_debug_fops_heartbeat(r3, &(0x7f0000000040)=""/4096, 0x1000) r4 = socket(0xa, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f0000001040)={{&(0x7f0000000040), 0xb8, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x9}, 0x1, 0x8) poll$auto(&(0x7f0000000040)={r2, 0x1000, 0x1c9}, 0x2, 0x7) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r6 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x10a) mkdirat$auto(r6, &(0x7f0000000080)='./cgroup\x00', 0x9) read$auto(r5, 0x0, 0x20) sendmsg$auto_SMC_PNETID_ADD(0xffffffffffffffff, 0x0, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x4000884) bpf$auto(0x10, 0x0, 0x40) r7 = openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000700), 0x8080, 0x0) read$auto(r7, &(0x7f0000000040)='/dev/sequencer\x00', 0x308f28e0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/platform/dummy_hcd.1/power/autosuspend_delay_ms\x00', 0xa0000, 0x0) r8 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r8, &(0x7f0000000200)={0x0, 0x7}, 0x3) r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSWINSZ2(r9, 0x5414, 0x0) mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x401, 0x8000) openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0) 960.68683ms ago: executing program 3 (id=5460): close_range$auto(0x2, 0x8, 0x0) r0 = open(0x0, 0x22240, 0x55) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) statx$auto(r0, 0x0, 0x2001003, 0x4005, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x26, 0x80805, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) pidfd_getfd$auto(0x3, 0x1, 0x100000000) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r2, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) bpf$auto(0x4, 0x0, 0x9) 922.732767ms ago: executing program 3 (id=5461): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/class/net/bonding_masters\x00', 0x100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001c00)=""/4111, 0x100f) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto_SHMEM_HUGE_NEVER(r1, 0x3, &(0x7f0000001640)='+\x00', &(0x7f0000001680)="df", 0x0) msgctl$auto(0x10, 0x6, &(0x7f0000000100)={{0x1, 0xee01, 0xee01, 0xfffffbff, 0x0, 0x0, 0x4}, &(0x7f0000000040)=0x2, &(0x7f00000000c0)=0xc, 0x5, 0x5, 0x73b, 0x5, 0x4, 0x8000, 0x5, 0x0, @raw=0x3, @raw=0x1a8}) ioctl$auto_XFS_IOC_SWAPEXT(r1, 0xc0c0586d, &(0x7f0000000180)={0xfffffffffffffff2, @inferred=r0, @inferred, 0xb, 0x80000000, '\x00', {0x7f, 0x26, 0x8, 0xffffffffffffffff, 0xee01, 0x47, 0x4, 0x5, {0xfffffffffffffffd, 0x7}, {0x1, 0x3}, {0x4, 0x10001}, 0x1ff, 0x3, 0x3, 0x9, 0x1, 0xfffe, 0xe, 0x3, 0x3, 0xd, '\x00', 0x1, 0x5, 0x120, 0x3}}) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f0000000240)={0x3, @raw=0x6, @raw=0x3, 0x9a488e800000, 0x6, '\x00', {0x6, 0x8001, 0xa, 0xee01, 0x0, 0xe00, 0x9, 0x1000, {0xf2, 0xfffffffb}, {0x2789, 0x8001}, {0x724, 0x3a}, 0xff, 0xa, 0xea811da, 0xc32, 0x5, 0x1, 0x8, 0x5, 0x3, 0x6, '\x00', 0x2, 0xc0000000, 0x859e, 0x6}}) keyctl$auto(0x10, r2, r3, r4, 0xfffffffffffffffa) socket(0x10, 0x2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) socket(0x1e, 0x805, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x5, 0x0) fsopen$auto(0x0, 0x1) sysfs$auto(0x2, 0xf, 0x0) fsopen$auto(0x0, 0x1) fsconfig$auto(r5, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0) ioctl$auto_PPPIOCATTACH(r1, 0x4004743d, &(0x7f0000000000)=0x4) mmap$auto(0x8, 0x80000001, 0x9, 0x10, r1, 0x4) 691.949781ms ago: executing program 0 (id=5462): setreuid$auto(0x0, 0x0) acct$auto(&(0x7f0000000140)='/sys/power/pm_async\x00') acct$auto(0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) mlockall$auto(0x7) madvise$auto(0x2000, 0xffffffffffff0001, 0x9) settimeofday$auto(&(0x7f0000000000)={0x2, 0x2}, &(0x7f0000000040)={0xf1c, 0xffff}) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f0000000080)={0xe, @raw=0xed, @inferred, 0x593, 0xde, '\x00', {0x1, 0x1, 0xc2ad, 0xffffffffffffffff, 0xee00, 0xd, 0x10001, 0x3, {0x3}, {0x10000, 0x2}, {0x4, 0x9}, 0x7, 0x4, 0x7ce, 0x15f, 0x7, 0x927, 0x3, 0xfff, 0x1278, 0xfffd, '\x00', 0x401, 0x200, 0x4, 0x7}}) r1 = setfsgid$auto(0xee01) lstat$auto(0x0, &(0x7f0000000080)={0x7, 0xc, 0x100000002, 0xffffffff, 0x0, r1, 0x0, 0x1000000006, 0x6, 0x8000000000000001, 0x400, 0x7ffffffb, 0x5, 0xffffffff80000000, 0x1, 0x7, 0x107}) shmctl$auto(0x2, 0x6, &(0x7f0000000300)={{0x5, r0, r1, 0x5, 0x7f, 0x9, 0x1}, 0x1bd6, 0x7, 0x80000000, 0x1, @inferred=0xffffffffffffffff, @raw=0x7f, 0x81, 0x0, &(0x7f0000000180)="88f5b00a6cd4c39b76c001914f5171c365077634e3345e2d16c076a2e999748bf2e21e9fc796f2a8deeb6f53eb3d18c88175c8dc4a023845ecb7e26dc7de060cb78d7225b6c16b427e4eb4b032aeb5c1abcfc559f539f428b15ffbc8b4e6a50c683dcdfcb81c50617c81aa1782dddc", &(0x7f0000000200)="190dd3b6caefdb0048a820bfe3ea779de5e48f5584f66cd3da5420e3c653e99221991d01db4d5de908840adea0b5e2425a579cc27d3cf0bfcf62ef1676a2d930a07155e26e3f2fcf707d74c866d462a04771c7eb8c1ce3d35da6dec6221cde8a64836f3a9702012ecd6100af7ad4a2de3ed99b46ab587b1f523cac5964939c060ddba542e1d91780fd0d69fb0d6fd98506738209f493fdea2b322b8f8ff02a970c8d8340d3e4501e4618d2be619b523ea1b9bfcd3ef25f9d08ee1a8c7a7b3eaafa3845ff6ccf163aacb092f765"}) 681.758751ms ago: executing program 3 (id=5463): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x28, 0x5, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x40, 0x0) fsopen$auto(0x0, 0x1) fgetxattr$auto(0x1, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) syz_clone(0x40018200, &(0x7f0000000180)="d22fc924553262b142af420984112ffcf4d42e0113e7ed97c8971816e6e0a9ecc2390002314752066081061fe4bbd844b70acadd6400677f6adccd813a4853db2fc83bfdbadd194f3d09ae1f225e62d3ccba199e006d77a1b59efa", 0x5b, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="1abc5708b20e2e4e3797ff26348bc76efb22827ad9c2a80cce28f27e8d3585bff941be18fddbd22365581e247d52c5af8170f4e1c2d69f0515c7361e3fef2353ef4d6110d7065e4ab12d71f8ba43ec975e203a208b2f") socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8) 207.915634ms ago: executing program 0 (id=5464): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) io_setup$auto(0x7ffe, 0x0) (async) clone$auto(0xb2, 0xffff, 0x0, 0x0, 0xffffffffffffffff) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) pipe2$auto(&(0x7f0000000040)=0xffffffffffffffff, 0x0) (async) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) ioctl$auto(r2, 0x540a, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) ioctl$auto(r3, 0x540a, r1) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x80805, 0x0) (async) select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x0, 0x1, 0x5349, 0xfffffffffffdffff, 0xdfffffffffffffe8, 0x2, 0xfffffffffffffffd, 0x10000005e5a296f, 0x7ff, 0x3, 0x3, 0x200, 0x40, 0x9]}, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) close_range$auto(0x2, 0xa, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) listmount$auto(&(0x7f0000000080)={0x21, @inferred=r5, 0x80000002, 0xfffffffffffffff7, 0x6}, 0x0, 0xf4240, 0x1) r6 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) (async) r7 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r7, 0xaf01, 0x5) ioctl$auto(r7, 0x4008af13, r6) (async) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0) (async) mmap$auto(0x0, 0x4b, 0x4, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8000, 0x0) (async) io_uring_setup$auto(0x6, 0x0) (async) io_uring_register$auto(0x2, 0x22, &(0x7f0000000000), 0x1) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000380)={0x14, r4, 0xb01, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x4000080) (async) mmap$auto(0x0, 0x400008, 0x400000000000df, 0x19, 0x2, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) 201.996802ms ago: executing program 2 (id=5465): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000000000), 0x0, 0x2) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r0, &(0x7f0000000200)={0x0, 0x8}, 0xa3d) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x40, 0x0) r2 = getsockopt$auto_SO_MARK(r0, 0x6, 0x24, 0x0, 0x0) mmap$auto(0x0, 0x7, 0xdf, 0xeb1, r2, 0x8000) io_uring_setup$auto(0x1, 0x0) openat$auto_tracing_stats_fops_trace(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=r1, 0x4007, @old_map_fd=r2}, 0xa3) sysfs$auto(0x2, 0x3, 0x0) r3 = fsopen$auto(0x0, 0x1) msgctl$auto(0x7, 0x6, 0x0) fsconfig$auto(r3, 0x0, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/block/loop6/queue/max_segments\x00', 0x80800, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) r4 = fanotify_init$auto(0x5, 0x2000000000002) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r5, 0x2, 0x9) ioctl$auto(0x3, 0x400c4d01, r5) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000180)=""/203, 0xcb) sendmsg$auto_NLBL_CIPSOV4_C_LIST(r4, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000ffdbdf25030000000800010008000000080006009900000008000500000000001c000c80180039801400710000000000000000000000ffff000000000500030001000000080009000b0000000800010004000000"], 0x60}, 0x1, 0x0, 0x0, 0x24000010}, 0x4000) setitimer$auto(0x2, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 143.105337ms ago: executing program 3 (id=5466): openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x8, 0x62a6, 0x9b72, 0x2, 0x8000) socket(0xa, 0x2, 0x73) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) socket(0xa, 0x2, 0x0) getsockopt$auto(0x6, 0x40000000029, 0x21, 0xfffffffffffffffe, 0x0) inotify_init1$auto(0x3000000000000) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socket(0xa, 0x2, 0x3a) r0 = io_uring_setup$auto(0x4, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8340, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x482, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xa4e00, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, 0x0, 0x20400, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, r0, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto(0x3, 0x80106f53, r1) 105.276862ms ago: executing program 1 (id=5467): r0 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyt8\x00', 0x101000, 0x0) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x37, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0) mmap$auto(0x8, 0x400008, 0xdf, 0x19, 0x2, 0x8000) r3 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r4, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) write$auto_proc_clear_refs_operations_internal(r3, 0x0, 0xffffff4b) socket(0x10, 0x2, 0x81) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x94f, 0x2) r5 = pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(r5, 0x0, r0, 0x0, 0x2, 0xfffffff9) write$auto(0x6, 0x0, 0x100000001) setsockopt$auto(0x3, 0x1, 0x2a, 0x0, 0x9) recvfrom$auto(r5, 0x0, 0xff, 0x6, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x2) socket(0x2, 0x6, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0x9b72, r1, 0x8000) socketpair$auto(0x5, 0x2, 0x8000000000000000, 0x0) 0s ago: executing program 2 (id=5468): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_NL802154_CMD_ABORT_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0x10}, 0x10) getpid() mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/ip_vs_conn\x00', 0xf00, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dri/card1\x00', 0x6082, 0x0) r0 = socket(0x25, 0x1, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(r0, &(0x7f0000000040)=@generic={0x25, "835aabaf5dc454e38226799f73aa"}, 0x18) r1 = socket(0xa, 0x2, 0x0) r2 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x80080, 0x0) ioctl$auto_LOOP_CTL_ADD(r2, 0x4c80, &(0x7f00000001c0)) setsockopt$auto(r1, 0x29, 0xb, 0x0, 0xca6) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r3, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) socket$nl_generic(0x10, 0x3, 0x10) landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x3, 0x2e1b}, 0xf4, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/gre0/statistics/multicast\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) creat$auto(&(0x7f0000000040)='./file0\x00', 0x81) syz_genetlink_get_family_id$auto_wireguard(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x14, 0x944, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0x8001, 0x5, 0x5, 0x3, 0x40, 0x7, 0x0, 0x0, 0x6, 0x0, 0x0, 0x6, [0x0, 0x2, 0x0, 0x400000000, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0xfffffffffffffffd, 0x8, 0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0xffffffff, 0x0, 0x10]}, 0x1fe, 0x81) ioctl$auto_TIOCMSET2(0xffffffffffffffff, 0x5418, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) kernel console output (not intermixed with test programs): s_futex+0x1e1/0x4c0 [ 859.589329][T24182] ? __pfx___x64_sys_futex+0x10/0x10 [ 859.589360][T24182] ? rcu_is_watching+0x12/0xc0 [ 859.589383][T24182] ? rcu_is_watching+0x12/0xc0 [ 859.589407][T24182] ? rcu_is_watching+0x12/0xc0 [ 859.589432][T24182] do_syscall_64+0xcd/0x250 [ 859.589460][T24182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 859.589492][T24182] RIP: 0033:0x7f43f598cde9 [ 859.589512][T24182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 859.589535][T24182] RSP: 002b:00007f43f67c30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 859.589559][T24182] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa8 RCX: 00007f43f598cde9 [ 859.589576][T24182] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f43f5ba5fac [ 859.589592][T24182] RBP: 00007f43f5ba5fa0 R08: 00007f43f67c4000 R09: 0000000000000000 [ 859.589609][T24182] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f43f5ba5fac [ 859.589633][T24182] R13: 0000000000000000 R14: 00007ffc4422ecc0 R15: 00007ffc4422eda8 [ 859.589657][T24182] [ 859.815729][T24183] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 860.068922][T24199] netlink: 186 bytes leftover after parsing attributes in process `syz.1.5228'. [ 860.084996][T24200] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:27: corrupted in-inode xattr: bad magic number in in-inode xattr [ 860.088167][T24187] caif:caif_disconnect_client(): nothing to disconnect [ 860.115306][T24201] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:27: corrupted in-inode xattr: bad magic number in in-inode xattr [ 860.270141][T24209] FAULT_INJECTION: forcing a failure. [ 860.270141][T24209] name failslab, interval 1, probability 0, space 0, times 0 [ 860.284529][T24209] CPU: 0 UID: 0 PID: 24209 Comm: syz.1.5231 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 860.284561][T24209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 860.284577][T24209] Call Trace: [ 860.284584][T24209] [ 860.284594][T24209] dump_stack_lvl+0x16c/0x1f0 [ 860.284629][T24209] should_fail_ex+0x50a/0x650 [ 860.284665][T24209] ? fs_reclaim_acquire+0xae/0x150 [ 860.284696][T24209] should_failslab+0xc2/0x120 [ 860.284733][T24209] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 860.284767][T24209] ? down_write+0x14e/0x200 [ 860.284797][T24209] ? vm_area_dup+0x53/0x2f0 [ 860.284832][T24209] vm_area_dup+0x53/0x2f0 [ 860.284866][T24209] copy_process+0x776f/0x8c50 [ 860.284898][T24209] ? __pfx_copy_process+0x10/0x10 [ 860.284921][T24209] ? try_to_wake_up+0x953/0x1490 [ 860.284955][T24209] ? plist_check_head+0xa3/0x150 [ 860.284996][T24209] ? wake_up_q+0x9e/0x140 [ 860.285027][T24209] ? do_raw_spin_unlock+0x172/0x230 [ 860.285053][T24209] kernel_clone+0xfd/0x960 [ 860.285076][T24209] ? __pfx_futex_wake+0x10/0x10 [ 860.285108][T24209] ? __pfx_kernel_clone+0x10/0x10 [ 860.285138][T24209] __do_sys_clone+0xcf/0x120 [ 860.285160][T24209] ? __pfx___do_sys_clone+0x10/0x10 [ 860.285189][T24209] ? rcu_is_watching+0x12/0xc0 [ 860.285214][T24209] ? rcu_is_watching+0x12/0xc0 [ 860.285238][T24209] ? rcu_is_watching+0x12/0xc0 [ 860.285264][T24209] do_syscall_64+0xcd/0x250 [ 860.285292][T24209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.285326][T24209] RIP: 0033:0x7f43f598cde9 [ 860.285353][T24209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 860.285377][T24209] RSP: 002b:00007f43f67c2fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 860.285401][T24209] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 860.285419][T24209] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 860.285435][T24209] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 860.285451][T24209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 860.285466][T24209] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 860.285488][T24209] [ 860.564491][T24211] FAULT_INJECTION: forcing a failure. [ 860.564491][T24211] name failslab, interval 1, probability 0, space 0, times 0 [ 860.577156][T24211] CPU: 0 UID: 0 PID: 24211 Comm: syz.2.5232 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 860.577188][T24211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 860.577203][T24211] Call Trace: [ 860.577211][T24211] [ 860.577221][T24211] dump_stack_lvl+0x16c/0x1f0 [ 860.577255][T24211] should_fail_ex+0x50a/0x650 [ 860.577293][T24211] ? fs_reclaim_acquire+0xae/0x150 [ 860.577331][T24211] should_failslab+0xc2/0x120 [ 860.577371][T24211] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 860.577417][T24211] ? alloc_empty_file+0x73/0x1e0 [ 860.577445][T24211] alloc_empty_file+0x73/0x1e0 [ 860.577471][T24211] alloc_file_pseudo+0x13b/0x230 [ 860.577495][T24211] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 860.577522][T24211] sock_alloc_file+0x50/0x210 [ 860.577556][T24211] do_accept+0x23e/0x530 [ 860.577582][T24211] ? do_raw_spin_lock+0x12d/0x2c0 [ 860.577618][T24211] ? __pfx_do_accept+0x10/0x10 [ 860.577655][T24211] __sys_accept4+0xfe/0x1b0 [ 860.577683][T24211] ? __pfx___sys_accept4+0x10/0x10 [ 860.577710][T24211] ? rcu_is_watching+0x12/0xc0 [ 860.577735][T24211] ? rcu_is_watching+0x12/0xc0 [ 860.577761][T24211] __x64_sys_accept+0x74/0xb0 [ 860.577789][T24211] do_syscall_64+0xcd/0x250 [ 860.577818][T24211] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.577851][T24211] RIP: 0033:0x7f9942d8cde9 [ 860.577870][T24211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 860.577892][T24211] RSP: 002b:00007f9943bbc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b [ 860.577916][T24211] RAX: ffffffffffffffda RBX: 00007f9942fa5fa0 RCX: 00007f9942d8cde9 [ 860.577934][T24211] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 860.577949][T24211] RBP: 00007f9942e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 860.577964][T24211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 860.577980][T24211] R13: 0000000000000000 R14: 00007f9942fa5fa0 R15: 00007ffdfc79f7e8 [ 860.578002][T24211] [ 860.838928][T24213] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 860.889711][T24215] FAULT_INJECTION: forcing a failure. [ 860.889711][T24215] name failslab, interval 1, probability 0, space 0, times 0 [ 860.996946][T24215] CPU: 1 UID: 0 PID: 24215 Comm: syz.1.5233 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 860.996979][T24215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 860.996993][T24215] Call Trace: [ 860.997001][T24215] [ 860.997009][T24215] dump_stack_lvl+0x16c/0x1f0 [ 860.997042][T24215] should_fail_ex+0x50a/0x650 [ 860.997077][T24215] ? sctp_add_bind_addr+0x9a/0x3d0 [ 860.997110][T24215] should_failslab+0xc2/0x120 [ 860.997145][T24215] __kmalloc_cache_noprof+0x68/0x410 [ 860.997177][T24215] ? __sctp_v6_cmp_addr+0x206/0x530 [ 860.997206][T24215] sctp_add_bind_addr+0x9a/0x3d0 [ 860.997241][T24215] sctp_copy_local_addr_list+0x39e/0x5a0 [ 860.997269][T24215] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 860.997304][T24215] ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360 [ 860.997334][T24215] ? sctp_bind_addr_copy+0xe0/0x530 [ 860.997356][T24215] sctp_bind_addr_copy+0xe0/0x530 [ 860.997382][T24215] sctp_connect_new_asoc+0x1d8/0x790 [ 860.997410][T24215] ? lock_release+0x4e2/0x6f0 [ 860.997440][T24215] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 860.997473][T24215] ? rcu_is_watching+0x12/0xc0 [ 860.997497][T24215] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 860.997533][T24215] sctp_sendmsg+0x1610/0x1eb0 [ 860.997566][T24215] ? __pfx_sctp_sendmsg+0x10/0x10 [ 860.997603][T24215] ? __pfx_aa_sk_perm+0x10/0x10 [ 860.997631][T24215] ? __pfx_sctp_sendmsg+0x10/0x10 [ 860.997660][T24215] inet_sendmsg+0x119/0x140 [ 860.997691][T24215] __sys_sendto+0x42a/0x4f0 [ 860.997720][T24215] ? __pfx___sys_sendto+0x10/0x10 [ 860.997757][T24215] ? ksys_write+0x1ba/0x250 [ 860.997787][T24215] ? __pfx_ksys_write+0x10/0x10 [ 860.997818][T24215] __x64_sys_sendto+0xe0/0x1c0 [ 860.997845][T24215] ? trace_irq_enable.constprop.0+0xea/0x140 [ 860.997880][T24215] do_syscall_64+0xcd/0x250 [ 860.997908][T24215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.997940][T24215] RIP: 0033:0x7f43f598cde9 [ 860.997958][T24215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 860.997981][T24215] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 860.998004][T24215] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 860.998021][T24215] RDX: 0000000000000401 RSI: 0000000000000000 RDI: 0000000000000009 [ 860.998035][T24215] RBP: 00007f43f67c3090 R08: 0000400000000000 R09: 000000000000001c [ 860.998049][T24215] R10: 000000000000007f R11: 0000000000000246 R12: 0000000000000002 [ 860.998064][T24215] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 860.998085][T24215] [ 861.547023][T24223] HfR: entered promiscuous mode [ 861.726979][T24230] FAULT_INJECTION: forcing a failure. [ 861.726979][T24230] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 861.752820][T24230] CPU: 1 UID: 0 PID: 24230 Comm: syz.1.5237 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 861.752856][T24230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 861.752872][T24230] Call Trace: [ 861.752881][T24230] [ 861.752890][T24230] dump_stack_lvl+0x16c/0x1f0 [ 861.752924][T24230] should_fail_ex+0x50a/0x650 [ 861.752962][T24230] _copy_to_iter+0x2a1/0x1560 [ 861.752989][T24230] ? chacha_block_generic+0x18a/0x270 [ 861.753025][T24230] ? __pfx__copy_to_iter+0x10/0x10 [ 861.753055][T24230] ? crng_make_state+0x48e/0x6d0 [ 861.753090][T24230] get_random_bytes_user+0x180/0x3c0 [ 861.753126][T24230] ? __pfx_get_random_bytes_user+0x10/0x10 [ 861.753165][T24230] ? do_futex+0x123/0x350 [ 861.753194][T24230] ? sock_ioctl+0x3ae/0x6c0 [ 861.753220][T24230] ? import_ubuf+0x1b6/0x220 [ 861.753243][T24230] __x64_sys_getrandom+0x184/0x290 [ 861.753276][T24230] ? __pfx___x64_sys_getrandom+0x10/0x10 [ 861.753310][T24230] ? xfd_validate_state+0x5d/0x180 [ 861.753342][T24230] ? rcu_is_watching+0x12/0xc0 [ 861.753367][T24230] ? rcu_is_watching+0x12/0xc0 [ 861.753391][T24230] do_syscall_64+0xcd/0x250 [ 861.753420][T24230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 861.753451][T24230] RIP: 0033:0x7f43f598cde9 [ 861.753470][T24230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 861.753492][T24230] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e [ 861.753524][T24230] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 861.753541][T24230] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000 [ 861.753557][T24230] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 861.753572][T24230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 861.753587][T24230] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 861.753610][T24230] [ 862.240802][T24246] program syz.2.5239 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 862.813563][T24258] FAULT_INJECTION: forcing a failure. [ 862.813563][T24258] name failslab, interval 1, probability 0, space 0, times 0 [ 862.893864][T24258] CPU: 0 UID: 0 PID: 24258 Comm: syz.0.5243 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 862.893899][T24258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 862.893914][T24258] Call Trace: [ 862.893923][T24258] [ 862.893933][T24258] dump_stack_lvl+0x16c/0x1f0 [ 862.893966][T24258] should_fail_ex+0x50a/0x650 [ 862.894001][T24258] ? fs_reclaim_acquire+0xae/0x150 [ 862.894034][T24258] should_failslab+0xc2/0x120 [ 862.894071][T24258] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 862.894108][T24258] ? __kernfs_new_node+0xd3/0x890 [ 862.894141][T24258] __kernfs_new_node+0xd3/0x890 [ 862.894172][T24258] ? kernfs_add_one+0x182/0x520 [ 862.894205][T24258] ? __pfx___kernfs_new_node+0x10/0x10 [ 862.894238][T24258] ? __kernfs_create_file+0x2a9/0x350 [ 862.894264][T24258] ? sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 862.894292][T24258] ? rcu_is_watching+0x12/0xc0 [ 862.894316][T24258] ? lock_release+0x4e2/0x6f0 [ 862.894348][T24258] kernfs_new_node+0x186/0x240 [ 862.894384][T24258] kernfs_create_link+0xcc/0x240 [ 862.894410][T24258] sysfs_do_create_link_sd+0x90/0x140 [ 862.894449][T24258] sysfs_create_link+0x61/0xc0 [ 862.894480][T24258] device_add+0x50c/0x1a70 [ 862.894511][T24258] ? alloc_workqueue+0x199/0x200 [ 862.894537][T24258] ? __pfx_device_add+0x10/0x10 [ 862.894569][T24258] ? lockdep_init_map_type+0x16d/0x7d0 [ 862.894606][T24258] nfc_register_device+0x41/0x3c0 [ 862.894634][T24258] nci_register_device+0x7f4/0xb80 [ 862.894669][T24258] ? __pfx_nci_register_device+0x10/0x10 [ 862.894703][T24258] ? lockdep_init_map_type+0x16d/0x7d0 [ 862.894740][T24258] virtual_ncidev_open+0x141/0x220 [ 862.894771][T24258] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 862.894803][T24258] misc_open+0x35a/0x420 [ 862.894825][T24258] ? __pfx_misc_open+0x10/0x10 [ 862.894847][T24258] chrdev_open+0x237/0x6a0 [ 862.894880][T24258] ? __pfx_apparmor_file_open+0x10/0x10 [ 862.894913][T24258] ? __pfx_chrdev_open+0x10/0x10 [ 862.894950][T24258] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 862.894986][T24258] do_dentry_open+0x735/0x1c40 [ 862.895018][T24258] ? __pfx_chrdev_open+0x10/0x10 [ 862.895052][T24258] ? inode_permission+0xdd/0x5f0 [ 862.895079][T24258] vfs_open+0x82/0x3f0 [ 862.895100][T24258] ? may_open+0x1f2/0x400 [ 862.895126][T24258] path_openat+0x1e88/0x2d80 [ 862.895164][T24258] ? __pfx_path_openat+0x10/0x10 [ 862.895200][T24258] do_filp_open+0x20c/0x470 [ 862.895228][T24258] ? __pfx_do_filp_open+0x10/0x10 [ 862.895267][T24258] ? alloc_fd+0x41f/0x760 [ 862.895300][T24258] do_sys_openat2+0x17a/0x1e0 [ 862.895325][T24258] ? __pfx_do_sys_openat2+0x10/0x10 [ 862.895354][T24258] __x64_sys_openat+0x175/0x210 [ 862.895378][T24258] ? __pfx___x64_sys_openat+0x10/0x10 [ 862.895406][T24258] ? rcu_is_watching+0x12/0xc0 [ 862.895438][T24258] ? rcu_is_watching+0x12/0xc0 [ 862.895465][T24258] do_syscall_64+0xcd/0x250 [ 862.895493][T24258] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 862.895526][T24258] RIP: 0033:0x7fb83078cde9 [ 862.895544][T24258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 862.895567][T24258] RSP: 002b:00007fb831647038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 862.895591][T24258] RAX: ffffffffffffffda RBX: 00007fb8309a5fa0 RCX: 00007fb83078cde9 [ 862.895608][T24258] RDX: 0000000000000002 RSI: 0000400000000400 RDI: ffffffffffffff9c [ 862.895625][T24258] RBP: 00007fb83080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 862.895640][T24258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 862.895655][T24258] R13: 0000000000000000 R14: 00007fb8309a5fa0 R15: 00007ffdcae78028 [ 862.895678][T24258] [ 863.272020][T24278] EXT4-fs error: 3 callbacks suppressed [ 863.272038][T24278] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:21: corrupted in-inode xattr: bad magic number in in-inode xattr [ 863.278218][T24269] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 863.511866][T24280] FAULT_INJECTION: forcing a failure. [ 863.511866][T24280] name failslab, interval 1, probability 0, space 0, times 0 [ 863.527011][T24280] CPU: 0 UID: 0 PID: 24280 Comm: syz.0.5250 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 863.527047][T24280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 863.527062][T24280] Call Trace: [ 863.527070][T24280] [ 863.527080][T24280] dump_stack_lvl+0x16c/0x1f0 [ 863.527116][T24280] should_fail_ex+0x50a/0x650 [ 863.527160][T24280] ? fs_reclaim_acquire+0xae/0x150 [ 863.527194][T24280] should_failslab+0xc2/0x120 [ 863.527232][T24280] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 863.527269][T24280] ? percpu_counter_add_batch+0x174/0x1e0 [ 863.527302][T24280] ? ptlock_alloc+0x1f/0x70 [ 863.527337][T24280] ptlock_alloc+0x1f/0x70 [ 863.527369][T24280] pte_alloc_one+0x74/0x390 [ 863.527403][T24280] __pte_alloc+0x6e/0x3d0 [ 863.527432][T24280] ? __pfx___pte_alloc+0x10/0x10 [ 863.527459][T24280] ? __pfx___might_resched+0x10/0x10 [ 863.527498][T24280] copy_page_range+0x3737/0x5690 [ 863.527539][T24280] ? mas_destroy+0x5ba/0x9e0 [ 863.527571][T24280] ? __pfx_copy_page_range+0x10/0x10 [ 863.527603][T24280] ? rcu_is_watching+0x12/0xc0 [ 863.527628][T24280] ? lock_release+0x4e2/0x6f0 [ 863.527660][T24280] ? __pfx_lock_release+0x10/0x10 [ 863.527691][T24280] ? lock_acquire+0x2f/0xb0 [ 863.527721][T24280] ? copy_process+0x7c12/0x8c50 [ 863.527746][T24280] ? down_write+0x14e/0x200 [ 863.527776][T24280] ? up_write+0x1b2/0x520 [ 863.527809][T24280] ? anon_vma_name+0x75/0x100 [ 863.527835][T24280] copy_process+0x7ccb/0x8c50 [ 863.527868][T24280] ? __pfx_copy_process+0x10/0x10 [ 863.527891][T24280] ? try_to_wake_up+0x953/0x1490 [ 863.527922][T24280] ? plist_check_head+0xa3/0x150 [ 863.527957][T24280] ? wake_up_q+0x9e/0x140 [ 863.527987][T24280] ? do_raw_spin_unlock+0x172/0x230 [ 863.528012][T24280] kernel_clone+0xfd/0x960 [ 863.528039][T24280] ? __pfx_futex_wake+0x10/0x10 [ 863.528072][T24280] ? __pfx_kernel_clone+0x10/0x10 [ 863.528103][T24280] __do_sys_clone+0xcf/0x120 [ 863.528126][T24280] ? __pfx___do_sys_clone+0x10/0x10 [ 863.528164][T24280] ? rcu_is_watching+0x12/0xc0 [ 863.528190][T24280] ? rcu_is_watching+0x12/0xc0 [ 863.528215][T24280] ? rcu_is_watching+0x12/0xc0 [ 863.528242][T24280] do_syscall_64+0xcd/0x250 [ 863.528271][T24280] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 863.528305][T24280] RIP: 0033:0x7fb83078cde9 [ 863.528325][T24280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 863.528349][T24280] RSP: 002b:00007fb831646fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 863.528374][T24280] RAX: ffffffffffffffda RBX: 00007fb8309a5fa0 RCX: 00007fb83078cde9 [ 863.528392][T24280] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 863.528407][T24280] RBP: 00007fb83080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 863.528423][T24280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 863.528438][T24280] R13: 0000000000000000 R14: 00007fb8309a5fa0 R15: 00007ffdcae78028 [ 863.528461][T24280] [ 863.931310][T24288] FAULT_INJECTION: forcing a failure. [ 863.931310][T24288] name failslab, interval 1, probability 0, space 0, times 0 [ 863.972705][T24288] CPU: 1 UID: 0 PID: 24288 Comm: syz.3.5252 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 863.972739][T24288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 863.972754][T24288] Call Trace: [ 863.972762][T24288] [ 863.972771][T24288] dump_stack_lvl+0x16c/0x1f0 [ 863.972804][T24288] should_fail_ex+0x50a/0x650 [ 863.972840][T24288] ? fs_reclaim_acquire+0xae/0x150 [ 863.972870][T24288] should_failslab+0xc2/0x120 [ 863.972907][T24288] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 863.972941][T24288] ? down_write+0x14e/0x200 [ 863.972971][T24288] ? vm_area_dup+0x53/0x2f0 [ 863.973008][T24288] vm_area_dup+0x53/0x2f0 [ 863.973041][T24288] copy_process+0x776f/0x8c50 [ 863.973075][T24288] ? __pfx_copy_process+0x10/0x10 [ 863.973097][T24288] ? __pfx___futex_wait+0x10/0x10 [ 863.973130][T24288] ? try_to_wake_up+0x158/0x1490 [ 863.973171][T24288] kernel_clone+0xfd/0x960 [ 863.973194][T24288] ? __pfx_kernel_clone+0x10/0x10 [ 863.973224][T24288] __do_sys_clone+0xcf/0x120 [ 863.973246][T24288] ? __pfx___do_sys_clone+0x10/0x10 [ 863.973269][T24288] ? __sys_sendmsg+0x19a/0x220 [ 863.973305][T24288] ? rcu_is_watching+0x12/0xc0 [ 863.973330][T24288] ? rcu_is_watching+0x12/0xc0 [ 863.973362][T24288] ? rcu_is_watching+0x12/0xc0 [ 863.973389][T24288] do_syscall_64+0xcd/0x250 [ 863.973420][T24288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 863.973453][T24288] RIP: 0033:0x7ff90298cde9 [ 863.973472][T24288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 863.973496][T24288] RSP: 002b:00007ff9037e1fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 863.973522][T24288] RAX: ffffffffffffffda RBX: 00007ff902ba6080 RCX: 00007ff90298cde9 [ 863.973539][T24288] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 863.973556][T24288] RBP: 00007ff902a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 863.973571][T24288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 863.973586][T24288] R13: 0000000000000000 R14: 00007ff902ba6080 R15: 00007ffe02adb938 [ 863.973608][T24288] [ 864.454912][T24296] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 864.455372][T24293] delete_channel: no stack [ 864.566776][T24295] FAULT_INJECTION: forcing a failure. [ 864.566776][T24295] name failslab, interval 1, probability 0, space 0, times 0 [ 864.581484][T24295] CPU: 0 UID: 0 PID: 24295 Comm: syz.0.5256 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 864.581519][T24295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 864.581535][T24295] Call Trace: [ 864.581544][T24295] [ 864.581554][T24295] dump_stack_lvl+0x16c/0x1f0 [ 864.581589][T24295] should_fail_ex+0x50a/0x650 [ 864.581625][T24295] ? fs_reclaim_acquire+0xae/0x150 [ 864.581656][T24295] ? tomoyo_init_log+0x13c7/0x2170 [ 864.581686][T24295] should_failslab+0xc2/0x120 [ 864.581724][T24295] __kmalloc_noprof+0xcb/0x510 [ 864.581757][T24295] ? __pfx_from_kuid+0x10/0x10 [ 864.581793][T24295] tomoyo_init_log+0x13c7/0x2170 [ 864.581825][T24295] ? __kasan_slab_free+0x51/0x70 [ 864.581863][T24295] ? __pfx_tomoyo_init_log+0x10/0x10 [ 864.581892][T24295] ? tomoyo_profile+0x47/0x60 [ 864.581925][T24295] ? tomoyo_domain_quota_is_ok+0x301/0x5a0 [ 864.581952][T24295] tomoyo_supervisor+0x313/0x1380 [ 864.581989][T24295] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 864.582031][T24295] ? kfree+0x2c4/0x4d0 [ 864.582059][T24295] ? tomoyo_realpath_from_path+0x1ad/0x720 [ 864.582091][T24295] ? tomoyo_check_acl+0x1f7/0x410 [ 864.582128][T24295] tomoyo_path_permission+0x270/0x3b0 [ 864.582156][T24295] tomoyo_check_open_permission+0x37d/0x3c0 [ 864.582184][T24295] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 864.582213][T24295] ? shmem_mknod+0x382/0x450 [ 864.582254][T24295] ? lock_acquire+0x2f/0xb0 [ 864.582284][T24295] ? lockref_get+0x15/0x50 [ 864.582312][T24295] ? __pfx_hook_file_open+0x10/0x10 [ 864.582346][T24295] ? lock_acquire+0x2f/0xb0 [ 864.582376][T24295] tomoyo_file_open+0x6b/0x90 [ 864.582410][T24295] security_file_open+0x84/0x1e0 [ 864.582440][T24295] do_dentry_open+0x57c/0x1c40 [ 864.582474][T24295] ? inode_permission+0xdd/0x5f0 [ 864.582500][T24295] vfs_open+0x82/0x3f0 [ 864.582522][T24295] ? may_open+0x1f2/0x400 [ 864.582548][T24295] path_openat+0x1e88/0x2d80 [ 864.582585][T24295] ? __pfx_path_openat+0x10/0x10 [ 864.582621][T24295] do_filp_open+0x20c/0x470 [ 864.582652][T24295] ? __virt_addr_valid+0x2b4/0x590 [ 864.582677][T24295] ? __pfx_do_filp_open+0x10/0x10 [ 864.582708][T24295] ? trace_lock_acquire+0x14e/0x1f0 [ 864.582743][T24295] ? _raw_spin_unlock+0x28/0x50 [ 864.582766][T24295] ? alloc_fd+0x41f/0x760 [ 864.582801][T24295] do_sys_openat2+0x17a/0x1e0 [ 864.582826][T24295] ? __pfx_do_sys_openat2+0x10/0x10 [ 864.582850][T24295] ? lock_acquire+0x2f/0xb0 [ 864.582882][T24295] __x64_sys_open+0x154/0x1e0 [ 864.582907][T24295] ? __pfx___x64_sys_open+0x10/0x10 [ 864.582934][T24295] ? rcu_is_watching+0x12/0xc0 [ 864.582973][T24295] ? rcu_is_watching+0x12/0xc0 [ 864.583000][T24295] do_syscall_64+0xcd/0x250 [ 864.583029][T24295] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 864.583062][T24295] RIP: 0033:0x7fb83078cde9 [ 864.583081][T24295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 864.583106][T24295] RSP: 002b:00007fb831626038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 864.583129][T24295] RAX: ffffffffffffffda RBX: 00007fb8309a6080 RCX: 00007fb83078cde9 [ 864.583146][T24295] RDX: 0000000000000154 RSI: 0000000000022240 RDI: 0000400000000800 [ 864.583162][T24295] RBP: 00007fb83080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 864.583177][T24295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 864.583192][T24295] R13: 0000000000000000 R14: 00007fb8309a6080 R15: 00007ffdcae78028 [ 864.583215][T24295] [ 864.621116][T24303] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:25: corrupted in-inode xattr: bad magic number in in-inode xattr [ 865.063455][T24311] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:25: corrupted in-inode xattr: bad magic number in in-inode xattr [ 865.326818][T24325] FAULT_INJECTION: forcing a failure. [ 865.326818][T24325] name failslab, interval 1, probability 0, space 0, times 0 [ 865.428589][T24325] CPU: 0 UID: 0 PID: 24325 Comm: syz.0.5267 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 865.428625][T24325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 865.428641][T24325] Call Trace: [ 865.428650][T24325] [ 865.428660][T24325] dump_stack_lvl+0x16c/0x1f0 [ 865.428694][T24325] should_fail_ex+0x50a/0x650 [ 865.428730][T24325] ? fs_reclaim_acquire+0xae/0x150 [ 865.428761][T24325] should_failslab+0xc2/0x120 [ 865.428797][T24325] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 865.428832][T24325] ? security_file_alloc+0x34/0x2b0 [ 865.428864][T24325] security_file_alloc+0x34/0x2b0 [ 865.428893][T24325] init_file+0x93/0x4c0 [ 865.428917][T24325] alloc_empty_file+0x91/0x1e0 [ 865.428942][T24325] alloc_file_pseudo+0x13b/0x230 [ 865.428967][T24325] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 865.428993][T24325] ? shmem_get_inode+0x73a/0xf00 [ 865.429038][T24325] __shmem_file_setup+0x210/0x300 [ 865.429064][T24325] shmem_zero_setup+0x93/0x1b0 [ 865.429094][T24325] __mmap_region+0x2021/0x2760 [ 865.429130][T24325] ? __pfx___mmap_region+0x10/0x10 [ 865.429164][T24325] ? finish_task_switch.isra.0+0x217/0xcc0 [ 865.429198][T24325] ? __switch_to+0x749/0x1190 [ 865.429224][T24325] ? kernel_text_address+0x8d/0x100 [ 865.429256][T24325] ? __kernel_text_address+0xd/0x40 [ 865.429290][T24325] ? __pfx___schedule+0x10/0x10 [ 865.429327][T24325] ? cap_capable+0xb3/0x250 [ 865.429352][T24325] mmap_region+0x1ab/0x3f0 [ 865.429378][T24325] do_mmap+0xd8d/0x11b0 [ 865.429410][T24325] ? __pfx_do_mmap+0x10/0x10 [ 865.429439][T24325] ? __pfx_down_write_killable+0x10/0x10 [ 865.429472][T24325] vm_mmap_pgoff+0x203/0x3a0 [ 865.429506][T24325] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 865.429538][T24325] ? __x64_sys_futex+0x1e1/0x4c0 [ 865.429566][T24325] ? __x64_sys_futex+0x1ea/0x4c0 [ 865.429600][T24325] ksys_mmap_pgoff+0x7d/0x5c0 [ 865.429629][T24325] ? rcu_is_watching+0x12/0xc0 [ 865.429656][T24325] __x64_sys_mmap+0x125/0x190 [ 865.429697][T24325] do_syscall_64+0xcd/0x250 [ 865.429727][T24325] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 865.429761][T24325] RIP: 0033:0x7fb83078cde9 [ 865.429784][T24325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 865.429810][T24325] RSP: 002b:00007fb831647038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 865.429833][T24325] RAX: ffffffffffffffda RBX: 00007fb8309a5fa0 RCX: 00007fb83078cde9 [ 865.429850][T24325] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 865.429870][T24325] RBP: 00007fb83080e2a0 R08: 0000000000000401 R09: 0000000000008000 [ 865.429885][T24325] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 865.429900][T24325] R13: 0000000000000000 R14: 00007fb8309a5fa0 R15: 00007ffdcae78028 [ 865.429925][T24325] [ 865.730447][T24331] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 866.143863][T24317] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5263'. [ 866.165456][T24339] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:25: corrupted in-inode xattr: bad magic number in in-inode xattr [ 866.606877][T24363] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:35: corrupted in-inode xattr: bad magic number in in-inode xattr [ 866.691638][T24369] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:35: corrupted in-inode xattr: bad magic number in in-inode xattr [ 866.795127][T24371] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 866.928020][T24377] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 867.034335][T24355] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 867.041013][T24355] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 867.055019][T24355] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 867.076151][T24379] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5279'. [ 867.094524][T24355] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 867.115260][T24355] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 867.123853][ T29] audit: type=1107 audit(4295080968.753:34): pid=24381 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 867.164503][ T29] audit: type=1107 audit(4295080968.753:35): pid=24381 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 867.164961][T24379] FAULT_INJECTION: forcing a failure. [ 867.164961][T24379] name failslab, interval 1, probability 0, space 0, times 0 [ 867.206722][T24379] CPU: 1 UID: 0 PID: 24379 Comm: syz.1.5279 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 867.206756][T24379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 867.206771][T24379] Call Trace: [ 867.206779][T24379] [ 867.206788][T24379] dump_stack_lvl+0x16c/0x1f0 [ 867.206822][T24379] should_fail_ex+0x50a/0x650 [ 867.206858][T24379] ? fs_reclaim_acquire+0xae/0x150 [ 867.206888][T24379] ? lsm_blob_alloc+0x68/0x90 [ 867.206921][T24379] should_failslab+0xc2/0x120 [ 867.206955][T24379] __kmalloc_noprof+0xcb/0x510 [ 867.206990][T24379] lsm_blob_alloc+0x68/0x90 [ 867.207023][T24379] security_sk_alloc+0x30/0x270 [ 867.207047][T24379] sk_prot_alloc+0xfb/0x2a0 [ 867.207085][T24379] sk_alloc+0x36/0xb90 [ 867.207115][T24379] inet_create+0x3a1/0x10a0 [ 867.207148][T24379] ? inet_create+0x90/0x10a0 [ 867.207192][T24379] __sock_create+0x335/0x8d0 [ 867.207220][T24379] smc_create_clcsk+0x38/0x200 [ 867.207254][T24379] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 867.207281][T24379] inet_create+0x94a/0x10a0 [ 867.207313][T24379] ? inet_create+0x90/0x10a0 [ 867.207345][T24379] __sock_create+0x335/0x8d0 [ 867.207371][T24379] __sys_socket+0x14f/0x260 [ 867.207396][T24379] ? __pfx___sys_socket+0x10/0x10 [ 867.207421][T24379] ? rcu_is_watching+0x12/0xc0 [ 867.207447][T24379] ? rcu_is_watching+0x12/0xc0 [ 867.207472][T24379] __x64_sys_socket+0x72/0xb0 [ 867.207497][T24379] do_syscall_64+0xcd/0x250 [ 867.207525][T24379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 867.207558][T24379] RIP: 0033:0x7f43f598cde9 [ 867.207577][T24379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 867.207601][T24379] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 867.207625][T24379] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 867.207642][T24379] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 867.207657][T24379] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 867.207673][T24379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 867.207689][T24379] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 867.207712][T24379] [ 867.824149][T24402] FAULT_INJECTION: forcing a failure. [ 867.824149][T24402] name failslab, interval 1, probability 0, space 0, times 0 [ 867.841815][T24402] CPU: 0 UID: 0 PID: 24402 Comm: syz.1.5288 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 867.841850][T24402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 867.841865][T24402] Call Trace: [ 867.841873][T24402] [ 867.841883][T24402] dump_stack_lvl+0x16c/0x1f0 [ 867.841923][T24402] should_fail_ex+0x50a/0x650 [ 867.841959][T24402] ? fs_reclaim_acquire+0xae/0x150 [ 867.841988][T24402] ? ima_write_template_field_data+0x56/0x1f0 [ 867.842016][T24402] should_failslab+0xc2/0x120 [ 867.842053][T24402] __kmalloc_noprof+0xcb/0x510 [ 867.842084][T24402] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 867.842119][T24402] ima_write_template_field_data+0x56/0x1f0 [ 867.842148][T24402] ima_eventdigest_init_common+0x153/0x430 [ 867.842177][T24402] ? __pfx_ima_eventdigest_init_common+0x10/0x10 [ 867.842214][T24402] ? rcu_is_watching+0x12/0xc0 [ 867.842243][T24402] ? trace_kmalloc+0x2d/0xd0 [ 867.842268][T24402] ? __kmalloc_noprof+0x23b/0x510 [ 867.842303][T24402] ima_alloc_init_template+0x399/0x720 [ 867.842339][T24402] ? __pfx_d_absolute_path+0x10/0x10 [ 867.842365][T24402] ima_store_measurement+0x1ea/0x5c0 [ 867.842402][T24402] ? __pfx_ima_store_measurement+0x10/0x10 [ 867.842438][T24402] ? ima_d_path+0x12c/0x2a0 [ 867.842474][T24402] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 867.842507][T24402] process_measurement+0x1bcb/0x2370 [ 867.842545][T24402] ? __pfx_process_measurement+0x10/0x10 [ 867.842584][T24402] ? trace_irq_enable.constprop.0+0xea/0x140 [ 867.842629][T24402] ? rcu_is_watching+0x12/0xc0 [ 867.842654][T24402] ? lock_release+0x4e2/0x6f0 [ 867.842684][T24402] ? tomoyo_bprm_check_security+0x168/0x1d0 [ 867.842722][T24402] ima_bprm_check+0xe8/0x210 [ 867.842768][T24402] ? __pfx_ima_bprm_check+0x10/0x10 [ 867.842804][T24402] security_bprm_check+0xa5/0x1e0 [ 867.842827][T24402] bprm_execve+0x832/0x16d0 [ 867.842858][T24402] ? __pfx_bprm_execve+0x10/0x10 [ 867.842886][T24402] ? copy_string_kernel+0x210/0x250 [ 867.842926][T24402] do_execveat_common.isra.0+0x4a2/0x610 [ 867.842962][T24402] __x64_sys_execve+0x8c/0xb0 [ 867.842995][T24402] do_syscall_64+0xcd/0x250 [ 867.843024][T24402] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 867.843056][T24402] RIP: 0033:0x7f43f598cde9 [ 867.843076][T24402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 867.843098][T24402] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 867.843121][T24402] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 867.843138][T24402] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000000 [ 867.843153][T24402] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 867.843169][T24402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 867.843185][T24402] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 867.843207][T24402] [ 868.239645][ T29] audit: type=1804 audit(4295080969.763:36): pid=24402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.5288" name="/newroot/178/:," dev="tmpfs" ino=964 res=0 errno=0 [ 868.306375][T24412] EXT4-fs error: 1 callbacks suppressed [ 868.306392][T24412] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:25: corrupted in-inode xattr: bad magic number in in-inode xattr [ 868.493022][T24419] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:25: corrupted in-inode xattr: bad magic number in in-inode xattr [ 868.577391][T24423] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 868.672945][T24423] udevd[24423]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 868.993450][T24433] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr [ 869.123438][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 869.123530][T17841] Bluetooth: hci2: command 0x0c1a tx timeout [ 869.129482][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout [ 869.202291][T17841] Bluetooth: hci4: command 0x040f tx timeout [ 869.286650][T24443] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 869.768998][T24456] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr [ 869.903516][T24442] FAULT_INJECTION: forcing a failure. [ 869.903516][T24442] name failslab, interval 1, probability 0, space 0, times 0 [ 869.960066][T24442] CPU: 0 UID: 0 PID: 24442 Comm: syz.0.5299 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 869.960099][T24442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 869.960114][T24442] Call Trace: [ 869.960122][T24442] [ 869.960131][T24442] dump_stack_lvl+0x16c/0x1f0 [ 869.960164][T24442] should_fail_ex+0x50a/0x650 [ 869.960199][T24442] ? fs_reclaim_acquire+0xae/0x150 [ 869.960230][T24442] ? __register_sysctl_table+0xeaf/0x1910 [ 869.960264][T24442] should_failslab+0xc2/0x120 [ 869.960299][T24442] __kmalloc_noprof+0xcb/0x510 [ 869.960335][T24442] __register_sysctl_table+0xeaf/0x1910 [ 869.960372][T24442] ? __pfx___register_sysctl_table+0x10/0x10 [ 869.960407][T24442] ? is_module_address+0x2a/0x50 [ 869.960440][T24442] ? register_net_sysctl_sz+0x228/0x3e0 [ 869.960467][T24442] ? __asan_memcpy+0x3c/0x60 [ 869.960497][T24442] nf_log_net_init+0x109/0x450 [ 869.960524][T24442] ? __pfx_nf_log_net_init+0x10/0x10 [ 869.960549][T24442] ops_init+0x1df/0x5f0 [ 869.960582][T24442] setup_net+0x21f/0x860 [ 869.960614][T24442] ? __pfx_setup_net+0x10/0x10 [ 869.960644][T24442] ? down_read_killable+0xcc/0x380 [ 869.960674][T24442] ? __pfx_down_read_killable+0x10/0x10 [ 869.960702][T24442] ? __raw_spin_lock_init+0x3a/0x110 [ 869.960739][T24442] ? debug_mutex_init+0x37/0x70 [ 869.960774][T24442] copy_net_ns+0x2b4/0x6c0 [ 869.960810][T24442] create_new_namespaces+0x3ea/0xad0 [ 869.960850][T24442] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 869.960887][T24442] ksys_unshare+0x45d/0xa40 [ 869.960911][T24442] ? __pfx_ksys_unshare+0x10/0x10 [ 869.960934][T24442] ? xfd_validate_state+0x5d/0x180 [ 869.960971][T24442] ? rcu_is_watching+0x12/0xc0 [ 869.960998][T24442] __x64_sys_unshare+0x31/0x40 [ 869.961023][T24442] do_syscall_64+0xcd/0x250 [ 869.961053][T24442] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 869.961086][T24442] RIP: 0033:0x7fb83078cde9 [ 869.961106][T24442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 869.961129][T24442] RSP: 002b:00007fb831647038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 869.961153][T24442] RAX: ffffffffffffffda RBX: 00007fb8309a5fa0 RCX: 00007fb83078cde9 [ 869.961170][T24442] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 869.961183][T24442] RBP: 00007fb83080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 869.961197][T24442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 869.961210][T24442] R13: 0000000000000000 R14: 00007fb8309a5fa0 R15: 00007ffdcae78028 [ 869.961231][T24442] [ 869.961241][T24442] sysctl could not get directory: /net/netfilter/nf_log -12 [ 870.325943][T24465] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 870.538078][T24468] FAULT_INJECTION: forcing a failure. [ 870.538078][T24468] name failslab, interval 1, probability 0, space 0, times 0 [ 870.550842][T24468] CPU: 0 UID: 0 PID: 24468 Comm: syz.1.5304 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 870.550874][T24468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 870.550890][T24468] Call Trace: [ 870.550898][T24468] [ 870.550908][T24468] dump_stack_lvl+0x16c/0x1f0 [ 870.550941][T24468] should_fail_ex+0x50a/0x650 [ 870.550981][T24468] ? fs_reclaim_acquire+0xae/0x150 [ 870.551013][T24468] should_failslab+0xc2/0x120 [ 870.551049][T24468] __kmalloc_cache_node_noprof+0x6e/0x420 [ 870.551085][T24468] ? __alloc_workqueue+0x694/0x1810 [ 870.551114][T24468] __alloc_workqueue+0x694/0x1810 [ 870.551142][T24468] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 870.551169][T24468] alloc_workqueue+0xd3/0x200 [ 870.551194][T24468] ? __pfx_alloc_workqueue+0x10/0x10 [ 870.551223][T24468] ? __pfx___debug_object_init+0x10/0x10 [ 870.551256][T24468] nci_register_device+0x514/0xb80 [ 870.551290][T24468] ? __pfx_nci_register_device+0x10/0x10 [ 870.551324][T24468] ? lockdep_init_map_type+0x16d/0x7d0 [ 870.551362][T24468] virtual_ncidev_open+0x141/0x220 [ 870.551396][T24468] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 870.551429][T24468] misc_open+0x35a/0x420 [ 870.551451][T24468] ? __pfx_misc_open+0x10/0x10 [ 870.551472][T24468] chrdev_open+0x237/0x6a0 [ 870.551506][T24468] ? __pfx_apparmor_file_open+0x10/0x10 [ 870.551536][T24468] ? __pfx_chrdev_open+0x10/0x10 [ 870.551571][T24468] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 870.551605][T24468] do_dentry_open+0x735/0x1c40 [ 870.551638][T24468] ? __pfx_chrdev_open+0x10/0x10 [ 870.551672][T24468] ? inode_permission+0xdd/0x5f0 [ 870.551699][T24468] vfs_open+0x82/0x3f0 [ 870.551730][T24468] ? may_open+0x1f2/0x400 [ 870.551758][T24468] path_openat+0x1e88/0x2d80 [ 870.551797][T24468] ? __pfx_path_openat+0x10/0x10 [ 870.551836][T24468] do_filp_open+0x20c/0x470 [ 870.551868][T24468] ? __pfx_do_filp_open+0x10/0x10 [ 870.551910][T24468] ? alloc_fd+0x41f/0x760 [ 870.551945][T24468] do_sys_openat2+0x17a/0x1e0 [ 870.551969][T24468] ? __pfx_do_sys_openat2+0x10/0x10 [ 870.551993][T24468] ? __pfx_lock_release+0x10/0x10 [ 870.552029][T24468] __x64_sys_openat+0x175/0x210 [ 870.552055][T24468] ? __pfx___x64_sys_openat+0x10/0x10 [ 870.552082][T24468] ? rcu_is_watching+0x12/0xc0 [ 870.552107][T24468] ? rcu_is_watching+0x12/0xc0 [ 870.552133][T24468] do_syscall_64+0xcd/0x250 [ 870.552162][T24468] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 870.552196][T24468] RIP: 0033:0x7f43f598cde9 [ 870.552215][T24468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 870.552243][T24468] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 870.552268][T24468] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 870.552284][T24468] RDX: 0000000000000002 RSI: 0000400000000400 RDI: ffffffffffffff9c [ 870.552300][T24468] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 870.552315][T24468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 870.552329][T24468] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 870.552352][T24468] [ 871.173213][T24482] FAULT_INJECTION: forcing a failure. [ 871.173213][T24482] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 871.194325][T17841] Bluetooth: hci0: command 0x0c1a tx timeout [ 871.262401][T24482] CPU: 0 UID: 0 PID: 24482 Comm: syz.1.5308 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 871.262432][T24482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 871.262446][T24482] Call Trace: [ 871.262454][T24482] [ 871.262463][T24482] dump_stack_lvl+0x16c/0x1f0 [ 871.262495][T24482] should_fail_ex+0x50a/0x650 [ 871.262531][T24482] _copy_to_iter+0x2a1/0x1560 [ 871.262570][T24482] ? trace_lock_acquire+0x14e/0x1f0 [ 871.262597][T24482] ? __pfx_lock_release+0x10/0x10 [ 871.262626][T24482] ? __virt_addr_valid+0x1a4/0x590 [ 871.262650][T24482] ? __pfx__copy_to_iter+0x10/0x10 [ 871.262671][T24482] ? __virt_addr_valid+0x1a4/0x590 [ 871.262695][T24482] ? __virt_addr_valid+0x5e/0x590 [ 871.262717][T24482] ? __phys_addr_symbol+0x30/0x80 [ 871.262740][T24482] ? __check_object_size+0x488/0x710 [ 871.262765][T24482] seq_read_iter+0xd00/0x12b0 [ 871.262797][T24482] kernfs_fop_read_iter+0x414/0x580 [ 871.262821][T24482] ? rw_verify_area+0xcf/0x680 [ 871.262848][T24482] vfs_read+0x886/0xbf0 [ 871.262878][T24482] ? __pfx_vfs_read+0x10/0x10 [ 871.262910][T24482] ksys_read+0x12b/0x250 [ 871.262940][T24482] ? __pfx_ksys_read+0x10/0x10 [ 871.262964][T24482] ? rcu_is_watching+0x12/0xc0 [ 871.262985][T24482] ? rcu_is_watching+0x12/0xc0 [ 871.263005][T24482] do_syscall_64+0xcd/0x250 [ 871.263029][T24482] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 871.263057][T24482] RIP: 0033:0x7f43f598cde9 [ 871.263071][T24482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 871.263089][T24482] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 871.263108][T24482] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 871.263122][T24482] RDX: 0000000000000005 RSI: 0000400000000040 RDI: 0000000000000003 [ 871.263138][T24482] RBP: 00007f43f67c3090 R08: 0000000000000000 R09: 0000000000000000 [ 871.263150][T24482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 871.263162][T24482] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 871.263180][T24482] [ 871.563706][T24492] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 871.748770][T24493] Invalid ELF header magic: != ELF [ 871.788600][T24500] FAULT_INJECTION: forcing a failure. [ 871.788600][T24500] name failslab, interval 1, probability 0, space 0, times 0 [ 871.804813][T24500] CPU: 0 UID: 0 PID: 24500 Comm: syz.0.5312 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 871.804843][T24500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 871.804857][T24500] Call Trace: [ 871.804864][T24500] [ 871.804873][T24500] dump_stack_lvl+0x16c/0x1f0 [ 871.804910][T24500] should_fail_ex+0x50a/0x650 [ 871.804943][T24500] ? fs_reclaim_acquire+0xae/0x150 [ 871.804972][T24500] should_failslab+0xc2/0x120 [ 871.805007][T24500] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 871.805041][T24500] ? __pmd_alloc+0xc3/0x870 [ 871.805071][T24500] __pmd_alloc+0xc3/0x870 [ 871.805100][T24500] __handle_mm_fault+0x9fb/0x2c60 [ 871.805136][T24500] ? __pfx___handle_mm_fault+0x10/0x10 [ 871.805175][T24500] ? find_vma+0xc0/0x140 [ 871.805200][T24500] ? __pfx_find_vma+0x10/0x10 [ 871.805227][T24500] handle_mm_fault+0x3fa/0xaa0 [ 871.805260][T24500] __get_user_pages+0x773/0x36f0 [ 871.805293][T24500] ? __pfx_validate_mm+0x10/0x10 [ 871.805323][T24500] ? lock_acquire+0x2f/0xb0 [ 871.805351][T24500] ? vma_link+0x26d/0x4a0 [ 871.805384][T24500] ? __pfx___get_user_pages+0x10/0x10 [ 871.805417][T24500] ? __pfx_rwsem_read_trylock+0x10/0x10 [ 871.805454][T24500] get_user_pages_remote+0x25e/0xb30 [ 871.805488][T24500] ? __pfx_get_user_pages_remote+0x10/0x10 [ 871.805520][T24500] ? rcu_is_watching+0x12/0xc0 [ 871.805544][T24500] ? lock_release+0x4e2/0x6f0 [ 871.805576][T24500] get_arg_page+0xf3/0x310 [ 871.805603][T24500] ? __pfx_get_arg_page+0x10/0x10 [ 871.805631][T24500] ? up_write+0x1b2/0x520 [ 871.805660][T24500] copy_string_kernel+0x197/0x250 [ 871.805689][T24500] ? count.constprop.0.isra.0+0xf4/0x170 [ 871.805719][T24500] do_execveat_common.isra.0+0x2eb/0x610 [ 871.805752][T24500] __x64_sys_execve+0x8c/0xb0 [ 871.805781][T24500] do_syscall_64+0xcd/0x250 [ 871.805808][T24500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 871.805840][T24500] RIP: 0033:0x7fb83078cde9 [ 871.805862][T24500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 871.805889][T24500] RSP: 002b:00007fb831647038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 871.805913][T24500] RAX: ffffffffffffffda RBX: 00007fb8309a5fa0 RCX: 00007fb83078cde9 [ 871.805930][T24500] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000000 [ 871.805945][T24500] RBP: 00007fb831647090 R08: 0000000000000000 R09: 0000000000000000 [ 871.805960][T24500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 871.805975][T24500] R13: 0000000000000000 R14: 00007fb8309a5fa0 R15: 00007ffdcae78028 [ 871.805998][T24500] [ 871.809632][T24500] cougar: G6 mapped to F18 [ 872.160709][T24507] netlink: zone id is out of range [ 872.166129][T24507] netlink: zone id is out of range [ 872.171256][T24507] netlink: zone id is out of range [ 872.178524][T24507] netlink: zone id is out of range [ 872.187656][T24507] netlink: zone id is out of range [ 872.196000][T24507] netlink: zone id is out of range [ 872.201191][T24507] netlink: zone id is out of range [ 872.208023][T24507] netlink: zone id is out of range [ 872.213998][T24507] netlink: zone id is out of range [ 872.221394][T24507] netlink: zone id is out of range [ 872.228592][T24510] netlink: 346 bytes leftover after parsing attributes in process `syz.1.5316'. [ 872.678489][T24525] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 873.415422][T24538] FAULT_INJECTION: forcing a failure. [ 873.415422][T24538] name failslab, interval 1, probability 0, space 0, times 0 [ 873.416805][T24542] FAULT_INJECTION: forcing a failure. [ 873.416805][T24542] name failslab, interval 1, probability 0, space 0, times 0 [ 873.428434][T24538] CPU: 0 UID: 0 PID: 24538 Comm: syz.3.5325 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 873.428464][T24538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 873.428479][T24538] Call Trace: [ 873.428486][T24538] [ 873.428496][T24538] dump_stack_lvl+0x16c/0x1f0 [ 873.428527][T24538] should_fail_ex+0x50a/0x650 [ 873.428563][T24538] ? fs_reclaim_acquire+0xae/0x150 [ 873.428593][T24538] should_failslab+0xc2/0x120 [ 873.428629][T24538] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 873.428662][T24538] ? lockdep_init_map_type+0x16d/0x7d0 [ 873.428695][T24538] ? security_inode_alloc+0x3b/0x2b0 [ 873.428722][T24538] security_inode_alloc+0x3b/0x2b0 [ 873.428748][T24538] inode_init_always_gfp+0xce4/0x1030 [ 873.428789][T24538] alloc_inode+0x82/0x230 [ 873.428811][T24538] sock_alloc+0x40/0x280 [ 873.428845][T24538] __sock_create+0xc1/0x8d0 [ 873.428870][T24538] __sys_socket+0x14f/0x260 [ 873.428894][T24538] ? __pfx___sys_socket+0x10/0x10 [ 873.428922][T24538] ? ksys_mmap_pgoff+0x85/0x5c0 [ 873.428950][T24538] ? __pfx___do_sys_close_range+0x10/0x10 [ 873.428990][T24538] ? rcu_is_watching+0x12/0xc0 [ 873.429016][T24538] __x64_sys_socket+0x72/0xb0 [ 873.429040][T24538] do_syscall_64+0xcd/0x250 [ 873.429067][T24538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 873.429100][T24538] RIP: 0033:0x7ff90298cde9 [ 873.429119][T24538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 873.429142][T24538] RSP: 002b:00007ff903803038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 873.429166][T24538] RAX: ffffffffffffffda RBX: 00007ff902ba5fa0 RCX: 00007ff90298cde9 [ 873.429182][T24538] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 873.429198][T24538] RBP: 00007ff902a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 873.429214][T24538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 873.429231][T24538] R13: 0000000000000000 R14: 00007ff902ba5fa0 R15: 00007ffe02adb938 [ 873.429253][T24538] [ 873.431132][T24538] netlink: 330 bytes leftover after parsing attributes in process `syz.3.5325'. [ 873.440775][T24542] CPU: 1 UID: 0 PID: 24542 Comm: syz.0.5327 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 873.440807][T24542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 873.440821][T24542] Call Trace: [ 873.440829][T24542] [ 873.440839][T24542] dump_stack_lvl+0x16c/0x1f0 [ 873.440868][T24542] should_fail_ex+0x50a/0x650 [ 873.440904][T24542] ? fs_reclaim_acquire+0xae/0x150 [ 873.440935][T24542] should_failslab+0xc2/0x120 [ 873.440969][T24542] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 873.441003][T24542] ? lock_release+0x4e2/0x6f0 [ 873.441034][T24542] ? __kernfs_new_node+0xd3/0x890 [ 873.441065][T24542] __kernfs_new_node+0xd3/0x890 [ 873.441093][T24542] ? __pfx___kernfs_new_node+0x10/0x10 [ 873.441128][T24542] ? kernfs_add_one+0x182/0x520 [ 873.441165][T24542] kernfs_new_node+0x186/0x240 [ 873.441199][T24542] __kernfs_create_file+0x53/0x350 [ 873.441225][T24542] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 873.441257][T24542] sysfs_create_file_ns+0x13e/0x1d0 [ 873.441284][T24542] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 873.441311][T24542] ? down_read+0xc9/0x330 [ 873.441340][T24542] ? __pfx___up_read+0x10/0x10 [ 873.441373][T24542] ? kobject_put+0xab/0x5a0 [ 873.441402][T24542] device_create_file+0xf2/0x1e0 [ 873.441437][T24542] device_add+0x2c0/0x1a70 [ 873.441465][T24542] ? __pfx___debug_object_init+0x10/0x10 [ 873.441493][T24542] ? alloc_workqueue+0x199/0x200 [ 873.441519][T24542] ? __pfx_device_add+0x10/0x10 [ 873.441560][T24542] ? lockdep_init_map_type+0x16d/0x7d0 [ 873.441598][T24542] nfc_register_device+0x41/0x3c0 [ 873.441626][T24542] nci_register_device+0x7f4/0xb80 [ 873.441660][T24542] ? __pfx_nci_register_device+0x10/0x10 [ 873.441692][T24542] ? lockdep_init_map_type+0x16d/0x7d0 [ 873.441728][T24542] virtual_ncidev_open+0x141/0x220 [ 873.441760][T24542] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 873.441791][T24542] misc_open+0x35a/0x420 [ 873.441812][T24542] ? __pfx_misc_open+0x10/0x10 [ 873.441833][T24542] chrdev_open+0x237/0x6a0 [ 873.441866][T24542] ? __pfx_apparmor_file_open+0x10/0x10 [ 873.441895][T24542] ? __pfx_chrdev_open+0x10/0x10 [ 873.441929][T24542] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 873.441962][T24542] do_dentry_open+0x735/0x1c40 [ 873.441994][T24542] ? __pfx_chrdev_open+0x10/0x10 [ 873.442027][T24542] ? inode_permission+0xdd/0x5f0 [ 873.442052][T24542] vfs_open+0x82/0x3f0 [ 873.442074][T24542] ? may_open+0x1f2/0x400 [ 873.442099][T24542] path_openat+0x1e88/0x2d80 [ 873.442136][T24542] ? __pfx_path_openat+0x10/0x10 [ 873.442170][T24542] do_filp_open+0x20c/0x470 [ 873.442201][T24542] ? __pfx_do_filp_open+0x10/0x10 [ 873.442245][T24542] ? alloc_fd+0x41f/0x760 [ 873.442281][T24542] do_sys_openat2+0x17a/0x1e0 [ 873.442306][T24542] ? __pfx_do_sys_openat2+0x10/0x10 [ 873.442336][T24542] __x64_sys_openat+0x175/0x210 [ 873.442362][T24542] ? __pfx___x64_sys_openat+0x10/0x10 [ 873.442390][T24542] ? rcu_is_watching+0x12/0xc0 [ 873.442426][T24542] ? rcu_is_watching+0x12/0xc0 [ 873.442453][T24542] do_syscall_64+0xcd/0x250 [ 873.442481][T24542] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 873.442512][T24542] RIP: 0033:0x7fb83078cde9 [ 873.442535][T24542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 873.442558][T24542] RSP: 002b:00007fb831647038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 873.442579][T24542] RAX: ffffffffffffffda RBX: 00007fb8309a5fa0 RCX: 00007fb83078cde9 [ 873.442595][T24542] RDX: 0000000000000002 RSI: 0000400000000400 RDI: ffffffffffffff9c [ 873.442611][T24542] RBP: 00007fb83080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 873.442625][T24542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 873.442640][T24542] R13: 0000000000000000 R14: 00007fb8309a5fa0 R15: 00007ffdcae78028 [ 873.442661][T24542] [ 874.040940][T24547] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 874.124339][T24552] input: f0?\hՐJL'$d)KLo1oN0ø.m)$cj@qwR=X as /devices/virtual/input/input48 [ 874.228136][T24555] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5330'. [ 874.254920][T24555] FAULT_INJECTION: forcing a failure. [ 874.254920][T24555] name failslab, interval 1, probability 0, space 0, times 0 [ 874.273369][T24555] CPU: 1 UID: 0 PID: 24555 Comm: syz.1.5330 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 874.273403][T24555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 874.273419][T24555] Call Trace: [ 874.273427][T24555] [ 874.273437][T24555] dump_stack_lvl+0x16c/0x1f0 [ 874.273470][T24555] should_fail_ex+0x50a/0x650 [ 874.273507][T24555] ? fs_reclaim_acquire+0xae/0x150 [ 874.273540][T24555] should_failslab+0xc2/0x120 [ 874.273577][T24555] kmem_cache_alloc_lru_noprof+0x73/0x3d0 [ 874.273616][T24555] ? __d_alloc+0x31/0xaa0 [ 874.273640][T24555] __d_alloc+0x31/0xaa0 [ 874.273664][T24555] d_alloc_pseudo+0x1c/0xc0 [ 874.273691][T24555] alloc_file_pseudo+0xd0/0x230 [ 874.273717][T24555] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 874.273751][T24555] ? alloc_fd+0x41f/0x760 [ 874.273787][T24555] sock_alloc_file+0x50/0x210 [ 874.273822][T24555] __sys_socket+0x1c2/0x260 [ 874.273846][T24555] ? __pfx___sys_socket+0x10/0x10 [ 874.273871][T24555] ? rcu_is_watching+0x12/0xc0 [ 874.273897][T24555] ? rcu_is_watching+0x12/0xc0 [ 874.273923][T24555] __x64_sys_socket+0x72/0xb0 [ 874.273949][T24555] do_syscall_64+0xcd/0x250 [ 874.273977][T24555] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 874.274011][T24555] RIP: 0033:0x7f43f598cde9 [ 874.274030][T24555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 874.274055][T24555] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 874.274079][T24555] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 874.274096][T24555] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 874.274111][T24555] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 874.274127][T24555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 874.274143][T24555] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 874.274166][T24555] [ 874.631036][T24568] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5335'. [ 874.751787][T24572] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 874.949324][T24552] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 874.955803][T24552] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 874.961914][T24552] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 874.972537][T24552] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 874.993742][T24552] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 875.072201][T24579] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 875.285439][T24584] netlink: 'syz.2.5340': attribute type 20 has an invalid length. [ 875.310193][T24584] netlink: 330 bytes leftover after parsing attributes in process `syz.2.5340'. [ 875.337437][T24584] IPv6: NLM_F_CREATE should be specified when creating new route [ 875.513294][T24593] FAULT_INJECTION: forcing a failure. [ 875.513294][T24593] name failslab, interval 1, probability 0, space 0, times 0 [ 875.579959][T24593] CPU: 0 UID: 0 PID: 24593 Comm: syz.3.5342 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 875.579993][T24593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 875.580008][T24593] Call Trace: [ 875.580016][T24593] [ 875.580025][T24593] dump_stack_lvl+0x16c/0x1f0 [ 875.580058][T24593] should_fail_ex+0x50a/0x650 [ 875.580095][T24593] ? fs_reclaim_acquire+0xae/0x150 [ 875.580126][T24593] ? nfc_llcp_build_tlv+0xfd/0x230 [ 875.580151][T24593] should_failslab+0xc2/0x120 [ 875.580187][T24593] __kmalloc_noprof+0xcb/0x510 [ 875.580219][T24593] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 875.580258][T24593] nfc_llcp_build_tlv+0xfd/0x230 [ 875.580284][T24593] nfc_llcp_build_gb.isra.0+0x161/0x400 [ 875.580320][T24593] ? __pfx_nfc_llcp_build_gb.isra.0+0x10/0x10 [ 875.580357][T24593] ? lockdep_init_map_type+0x16d/0x7d0 [ 875.580390][T24593] ? lockdep_init_map_type+0x16d/0x7d0 [ 875.580425][T24593] nfc_llcp_register_device+0x600/0xa60 [ 875.580460][T24593] nfc_register_device+0x6d/0x3c0 [ 875.580486][T24593] nci_register_device+0x7f4/0xb80 [ 875.580520][T24593] ? __pfx_nci_register_device+0x10/0x10 [ 875.580553][T24593] ? lockdep_init_map_type+0x16d/0x7d0 [ 875.580590][T24593] virtual_ncidev_open+0x141/0x220 [ 875.580623][T24593] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 875.580654][T24593] misc_open+0x35a/0x420 [ 875.580676][T24593] ? __pfx_misc_open+0x10/0x10 [ 875.580697][T24593] chrdev_open+0x237/0x6a0 [ 875.580731][T24593] ? __pfx_apparmor_file_open+0x10/0x10 [ 875.580759][T24593] ? __pfx_chrdev_open+0x10/0x10 [ 875.580797][T24593] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 875.580831][T24593] do_dentry_open+0x735/0x1c40 [ 875.580863][T24593] ? __pfx_chrdev_open+0x10/0x10 [ 875.580896][T24593] ? inode_permission+0xdd/0x5f0 [ 875.580923][T24593] vfs_open+0x82/0x3f0 [ 875.580945][T24593] ? may_open+0x1f2/0x400 [ 875.580975][T24593] path_openat+0x1e88/0x2d80 [ 875.581010][T24593] ? __pfx_path_openat+0x10/0x10 [ 875.581042][T24593] do_filp_open+0x20c/0x470 [ 875.581070][T24593] ? __pfx_do_filp_open+0x10/0x10 [ 875.581107][T24593] ? alloc_fd+0x41f/0x760 [ 875.581137][T24593] do_sys_openat2+0x17a/0x1e0 [ 875.581157][T24593] ? __pfx_do_sys_openat2+0x10/0x10 [ 875.581181][T24593] __x64_sys_openat+0x175/0x210 [ 875.581202][T24593] ? __pfx___x64_sys_openat+0x10/0x10 [ 875.581224][T24593] ? rcu_is_watching+0x12/0xc0 [ 875.581245][T24593] ? rcu_is_watching+0x12/0xc0 [ 875.581266][T24593] do_syscall_64+0xcd/0x250 [ 875.581290][T24593] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 875.581318][T24593] RIP: 0033:0x7ff90298cde9 [ 875.581334][T24593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 875.581353][T24593] RSP: 002b:00007ff903803038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 875.581373][T24593] RAX: ffffffffffffffda RBX: 00007ff902ba5fa0 RCX: 00007ff90298cde9 [ 875.581388][T24593] RDX: 0000000000000002 RSI: 0000400000000400 RDI: ffffffffffffff9c [ 875.581403][T24593] RBP: 00007ff902a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 875.581416][T24593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 875.581429][T24593] R13: 0000000000000000 R14: 00007ff902ba5fa0 R15: 00007ffe02adb938 [ 875.581456][T24593] [ 876.234425][T24607] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 876.434861][T24624] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr [ 876.496395][T24626] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr [ 876.632377][T17841] Bluetooth: hci0: command 0x0c1a tx timeout [ 877.036015][T17841] Bluetooth: hci4: command 0x040f tx timeout [ 877.042073][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 877.048281][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 877.092362][T24640] netlink: 330 bytes leftover after parsing attributes in process `syz.3.5354'. [ 877.144109][T24640] IPv6: NLM_F_CREATE should be specified when creating new route [ 877.289391][T24647] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 877.404011][T24643] sd 0:0:1:0: PR command failed: 1026 [ 877.421515][T24643] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 877.508680][T24643] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 877.865523][T24664] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5361'. [ 877.911761][T24664] FAULT_INJECTION: forcing a failure. [ 877.911761][T24664] name failslab, interval 1, probability 0, space 0, times 0 [ 877.972848][T24664] CPU: 0 UID: 0 PID: 24664 Comm: syz.1.5361 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 877.972884][T24664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 877.972900][T24664] Call Trace: [ 877.972909][T24664] [ 877.972918][T24664] dump_stack_lvl+0x16c/0x1f0 [ 877.972953][T24664] should_fail_ex+0x50a/0x650 [ 877.972990][T24664] ? fs_reclaim_acquire+0xae/0x150 [ 877.973022][T24664] should_failslab+0xc2/0x120 [ 877.973058][T24664] kmem_cache_alloc_lru_noprof+0x73/0x3d0 [ 877.973095][T24664] ? __d_alloc+0x31/0xaa0 [ 877.973118][T24664] __d_alloc+0x31/0xaa0 [ 877.973141][T24664] d_alloc_pseudo+0x1c/0xc0 [ 877.973168][T24664] alloc_file_pseudo+0xd0/0x230 [ 877.973193][T24664] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 877.973217][T24664] ? alloc_fd+0x41f/0x760 [ 877.973248][T24664] sock_alloc_file+0x50/0x210 [ 877.973283][T24664] __sys_socket+0x1c2/0x260 [ 877.973309][T24664] ? __pfx___sys_socket+0x10/0x10 [ 877.973334][T24664] ? rcu_is_watching+0x12/0xc0 [ 877.973359][T24664] ? rcu_is_watching+0x12/0xc0 [ 877.973383][T24664] __x64_sys_socket+0x72/0xb0 [ 877.973409][T24664] do_syscall_64+0xcd/0x250 [ 877.973438][T24664] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 877.973470][T24664] RIP: 0033:0x7f43f598cde9 [ 877.973490][T24664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 877.973524][T24664] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 877.973549][T24664] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 877.973567][T24664] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 877.973583][T24664] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 877.973598][T24664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 877.973613][T24664] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 877.973636][T24664] [ 878.355907][T24670] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 878.416640][T24674] FAULT_INJECTION: forcing a failure. [ 878.416640][T24674] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 878.451642][T24674] CPU: 0 UID: 0 PID: 24674 Comm: syz.2.5363 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 878.451677][T24674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 878.451690][T24674] Call Trace: [ 878.451698][T24674] [ 878.451706][T24674] dump_stack_lvl+0x16c/0x1f0 [ 878.451736][T24674] should_fail_ex+0x50a/0x650 [ 878.451769][T24674] ? __pfx___might_resched+0x10/0x10 [ 878.451804][T24674] should_fail_alloc_page+0xe7/0x130 [ 878.451827][T24674] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 878.451857][T24674] ? arch_stack_walk+0xa7/0x100 [ 878.451881][T24674] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 878.451918][T24674] ? stack_trace_save+0x95/0xd0 [ 878.451943][T24674] ? __pfx_stack_trace_save+0x10/0x10 [ 878.451968][T24674] ? stack_depot_save_flags+0x28/0x9c0 [ 878.452002][T24674] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 878.452037][T24674] ? kasan_save_stack+0x42/0x60 [ 878.452067][T24674] ? kasan_save_stack+0x33/0x60 [ 878.452097][T24674] ? kasan_save_track+0x14/0x30 [ 878.452127][T24674] ? __kasan_kmalloc+0xaa/0xb0 [ 878.452156][T24674] ? mon_bin_open+0x1a8/0x4a0 [ 878.452185][T24674] ? chrdev_open+0x237/0x6a0 [ 878.452216][T24674] ? __x64_sys_openat+0x175/0x210 [ 878.452242][T24674] ? do_syscall_64+0xcd/0x250 [ 878.452262][T24674] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 878.452295][T24674] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 878.452329][T24674] ? policy_nodemask+0xea/0x4e0 [ 878.452363][T24674] alloc_pages_mpol+0x1fc/0x540 [ 878.452396][T24674] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 878.452433][T24674] alloc_pages_noprof+0x131/0x390 [ 878.452466][T24674] get_zeroed_page_noprof+0x14/0x50 [ 878.452498][T24674] mon_alloc_buff+0xc0/0x190 [ 878.452527][T24674] ? kasan_save_track+0x14/0x30 [ 878.452558][T24674] mon_bin_open+0x207/0x4a0 [ 878.452588][T24674] ? __pfx_mon_bin_open+0x10/0x10 [ 878.452618][T24674] chrdev_open+0x237/0x6a0 [ 878.452649][T24674] ? __pfx_apparmor_file_open+0x10/0x10 [ 878.452677][T24674] ? __pfx_chrdev_open+0x10/0x10 [ 878.452709][T24674] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 878.452741][T24674] do_dentry_open+0x735/0x1c40 [ 878.452771][T24674] ? __pfx_chrdev_open+0x10/0x10 [ 878.452803][T24674] ? inode_permission+0xdd/0x5f0 [ 878.452828][T24674] vfs_open+0x82/0x3f0 [ 878.452849][T24674] ? may_open+0x1f2/0x400 [ 878.452872][T24674] path_openat+0x1e88/0x2d80 [ 878.452907][T24674] ? __pfx_path_openat+0x10/0x10 [ 878.452938][T24674] do_filp_open+0x20c/0x470 [ 878.452968][T24674] ? __pfx_do_filp_open+0x10/0x10 [ 878.453005][T24674] ? alloc_fd+0x41f/0x760 [ 878.453036][T24674] do_sys_openat2+0x17a/0x1e0 [ 878.453060][T24674] ? __pfx_do_sys_openat2+0x10/0x10 [ 878.453085][T24674] ? __fget_files+0x206/0x3a0 [ 878.453117][T24674] __x64_sys_openat+0x175/0x210 [ 878.453141][T24674] ? __pfx___x64_sys_openat+0x10/0x10 [ 878.453165][T24674] ? ksys_write+0x1ba/0x250 [ 878.453194][T24674] ? rcu_is_watching+0x12/0xc0 [ 878.453216][T24674] ? rcu_is_watching+0x12/0xc0 [ 878.453239][T24674] do_syscall_64+0xcd/0x250 [ 878.453264][T24674] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 878.453294][T24674] RIP: 0033:0x7f9942d8cde9 [ 878.453311][T24674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 878.453333][T24674] RSP: 002b:00007f9943bbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 878.453355][T24674] RAX: ffffffffffffffda RBX: 00007f9942fa5fa0 RCX: 00007f9942d8cde9 [ 878.453370][T24674] RDX: 0000000000000100 RSI: 0000400000000000 RDI: ffffffffffffff9c [ 878.453385][T24674] RBP: 00007f9943bbc090 R08: 0000000000000000 R09: 0000000000000000 [ 878.453400][T24674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 878.453412][T24674] R13: 0000000000000000 R14: 00007f9942fa5fa0 R15: 00007ffdfc79f7e8 [ 878.453432][T24674] [ 878.828430][T24641] Bluetooth: hci0: command 0x0c1a tx timeout [ 879.403057][T24705] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 879.457206][T24709] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:39: corrupted in-inode xattr: bad magic number in in-inode xattr [ 879.977203][T24722] netlink: 284 bytes leftover after parsing attributes in process `syz.2.5378'. [ 880.087447][T24726] FAULT_INJECTION: forcing a failure. [ 880.087447][T24726] name failslab, interval 1, probability 0, space 0, times 0 [ 880.100309][T24726] CPU: 1 UID: 0 PID: 24726 Comm: syz.2.5379 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 880.100343][T24726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 880.100358][T24726] Call Trace: [ 880.100366][T24726] [ 880.100375][T24726] dump_stack_lvl+0x16c/0x1f0 [ 880.100418][T24726] should_fail_ex+0x50a/0x650 [ 880.100456][T24726] ? fs_reclaim_acquire+0xae/0x150 [ 880.100489][T24726] should_failslab+0xc2/0x120 [ 880.100527][T24726] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 880.100562][T24726] ? down_write+0x14e/0x200 [ 880.100592][T24726] ? vm_area_dup+0x21/0x2f0 [ 880.100628][T24726] vm_area_dup+0x21/0x2f0 [ 880.100662][T24726] copy_process+0x776f/0x8c50 [ 880.100695][T24726] ? __pfx_copy_process+0x10/0x10 [ 880.100719][T24726] ? try_to_wake_up+0x953/0x1490 [ 880.100754][T24726] ? plist_check_head+0xa3/0x150 [ 880.100791][T24726] ? wake_up_q+0x9e/0x140 [ 880.100821][T24726] ? do_raw_spin_unlock+0x172/0x230 [ 880.100847][T24726] kernel_clone+0xfd/0x960 [ 880.100869][T24726] ? __pfx_futex_wake+0x10/0x10 [ 880.100903][T24726] ? __pfx_kernel_clone+0x10/0x10 [ 880.100925][T24726] ? trace_lock_acquire+0x14e/0x1f0 [ 880.100960][T24726] __do_sys_clone+0xcf/0x120 [ 880.100982][T24726] ? __pfx___do_sys_clone+0x10/0x10 [ 880.101006][T24726] ? __sys_sendmsg+0x19a/0x220 [ 880.101043][T24726] ? rcu_is_watching+0x12/0xc0 [ 880.101069][T24726] ? rcu_is_watching+0x12/0xc0 [ 880.101094][T24726] ? rcu_is_watching+0x12/0xc0 [ 880.101120][T24726] do_syscall_64+0xcd/0x250 [ 880.101149][T24726] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 880.101182][T24726] RIP: 0033:0x7f9942d8cde9 [ 880.101201][T24726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 880.101224][T24726] RSP: 002b:00007f9943b9afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 880.101249][T24726] RAX: ffffffffffffffda RBX: 00007f9942fa6080 RCX: 00007f9942d8cde9 [ 880.101270][T24726] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 880.101286][T24726] RBP: 00007f9942e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 880.101302][T24726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 880.101317][T24726] R13: 0000000000000000 R14: 00007f9942fa6080 R15: 00007ffdfc79f7e8 [ 880.101341][T24726] [ 880.419710][T24728] FAULT_INJECTION: forcing a failure. [ 880.419710][T24728] name failslab, interval 1, probability 0, space 0, times 0 [ 880.433979][T24728] CPU: 0 UID: 0 PID: 24728 Comm: syz.1.5380 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 880.434013][T24728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 880.434029][T24728] Call Trace: [ 880.434037][T24728] [ 880.434047][T24728] dump_stack_lvl+0x16c/0x1f0 [ 880.434082][T24728] should_fail_ex+0x50a/0x650 [ 880.434126][T24728] ? fs_reclaim_acquire+0xae/0x150 [ 880.434158][T24728] should_failslab+0xc2/0x120 [ 880.434199][T24728] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 880.434237][T24728] ? sk_prot_alloc+0x60/0x2a0 [ 880.434274][T24728] sk_prot_alloc+0x60/0x2a0 [ 880.434312][T24728] sk_alloc+0x36/0xb90 [ 880.434341][T24728] sctp_v6_create_accept_sk+0x12e/0x730 [ 880.434372][T24728] ? trace_irq_enable.constprop.0+0xea/0x140 [ 880.434410][T24728] ? __pfx_sctp_v6_create_accept_sk+0x10/0x10 [ 880.434441][T24728] sctp_accept+0x62d/0x800 [ 880.434469][T24728] ? errseq_sample+0x53/0x70 [ 880.434496][T24728] ? __pfx_sctp_accept+0x10/0x10 [ 880.434521][T24728] ? aa_sk_perm+0x2f5/0xb20 [ 880.434547][T24728] ? __pfx_autoremove_wake_function+0x10/0x10 [ 880.434581][T24728] ? __pfx_aa_sk_perm+0x10/0x10 [ 880.434610][T24728] inet_accept+0xc4/0x180 [ 880.434645][T24728] do_accept+0x337/0x530 [ 880.434672][T24728] ? __pfx_do_accept+0x10/0x10 [ 880.434711][T24728] __sys_accept4+0xfe/0x1b0 [ 880.434738][T24728] ? __pfx___sys_accept4+0x10/0x10 [ 880.434766][T24728] ? rcu_is_watching+0x12/0xc0 [ 880.434791][T24728] ? rcu_is_watching+0x12/0xc0 [ 880.434818][T24728] __x64_sys_accept+0x74/0xb0 [ 880.434846][T24728] do_syscall_64+0xcd/0x250 [ 880.434875][T24728] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 880.434909][T24728] RIP: 0033:0x7f43f598cde9 [ 880.434928][T24728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 880.434953][T24728] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b [ 880.434977][T24728] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 880.434995][T24728] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 880.435010][T24728] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 880.435026][T24728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 880.435041][T24728] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 880.435064][T24728] [ 880.813729][T24729] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 880.897285][T24733] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5383'. [ 880.929713][T24740] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr [ 880.982896][T24746] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:39: corrupted in-inode xattr: bad magic number in in-inode xattr [ 881.142388][T24755] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 881.213031][T24758] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5391'. [ 881.225694][T24758] FAULT_INJECTION: forcing a failure. [ 881.225694][T24758] name failslab, interval 1, probability 0, space 0, times 0 [ 881.239228][T24758] CPU: 0 UID: 0 PID: 24758 Comm: syz.2.5391 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 881.239260][T24758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 881.239276][T24758] Call Trace: [ 881.239284][T24758] [ 881.239293][T24758] dump_stack_lvl+0x16c/0x1f0 [ 881.239324][T24758] should_fail_ex+0x50a/0x650 [ 881.239361][T24758] ? fs_reclaim_acquire+0xae/0x150 [ 881.239392][T24758] should_failslab+0xc2/0x120 [ 881.239429][T24758] kmem_cache_alloc_lru_noprof+0x73/0x3d0 [ 881.239467][T24758] ? __d_alloc+0x31/0xaa0 [ 881.239490][T24758] __d_alloc+0x31/0xaa0 [ 881.239512][T24758] d_alloc_pseudo+0x1c/0xc0 [ 881.239538][T24758] alloc_file_pseudo+0xd0/0x230 [ 881.239562][T24758] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 881.239588][T24758] ? alloc_fd+0x41f/0x760 [ 881.239620][T24758] sock_alloc_file+0x50/0x210 [ 881.239655][T24758] __sys_socket+0x1c2/0x260 [ 881.239680][T24758] ? __pfx___sys_socket+0x10/0x10 [ 881.239705][T24758] ? rcu_is_watching+0x12/0xc0 [ 881.239731][T24758] ? rcu_is_watching+0x12/0xc0 [ 881.239757][T24758] __x64_sys_socket+0x72/0xb0 [ 881.239782][T24758] do_syscall_64+0xcd/0x250 [ 881.239812][T24758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 881.239845][T24758] RIP: 0033:0x7f9942d8cde9 [ 881.239864][T24758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 881.239888][T24758] RSP: 002b:00007f9943bbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 881.239911][T24758] RAX: ffffffffffffffda RBX: 00007f9942fa5fa0 RCX: 00007f9942d8cde9 [ 881.239928][T24758] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 881.239943][T24758] RBP: 00007f9942e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 881.239959][T24758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 881.239974][T24758] R13: 0000000000000000 R14: 00007f9942fa5fa0 R15: 00007ffdfc79f7e8 [ 881.239997][T24758] [ 881.503341][T24762] FAULT_INJECTION: forcing a failure. [ 881.503341][T24762] name failslab, interval 1, probability 0, space 0, times 0 [ 881.516186][T24762] CPU: 0 UID: 0 PID: 24762 Comm: syz.3.5392 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 881.516217][T24762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 881.516232][T24762] Call Trace: [ 881.516241][T24762] [ 881.516250][T24762] dump_stack_lvl+0x16c/0x1f0 [ 881.516283][T24762] should_fail_ex+0x50a/0x650 [ 881.516320][T24762] ? fs_reclaim_acquire+0xae/0x150 [ 881.516353][T24762] should_failslab+0xc2/0x120 [ 881.516391][T24762] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 881.516428][T24762] ? down_write+0x14e/0x200 [ 881.516458][T24762] ? vm_area_dup+0x53/0x2f0 [ 881.516494][T24762] vm_area_dup+0x53/0x2f0 [ 881.516528][T24762] copy_process+0x776f/0x8c50 [ 881.516560][T24762] ? __pfx_copy_process+0x10/0x10 [ 881.516582][T24762] ? __pfx___futex_wait+0x10/0x10 [ 881.516616][T24762] ? try_to_wake_up+0x158/0x1490 [ 881.516658][T24762] kernel_clone+0xfd/0x960 [ 881.516682][T24762] ? __pfx_kernel_clone+0x10/0x10 [ 881.516712][T24762] __do_sys_clone+0xcf/0x120 [ 881.516735][T24762] ? __pfx___do_sys_clone+0x10/0x10 [ 881.516758][T24762] ? __sys_sendmsg+0x19a/0x220 [ 881.516795][T24762] ? rcu_is_watching+0x12/0xc0 [ 881.516822][T24762] ? rcu_is_watching+0x12/0xc0 [ 881.516843][T24762] ? rcu_is_watching+0x12/0xc0 [ 881.516867][T24762] do_syscall_64+0xcd/0x250 [ 881.516896][T24762] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 881.516939][T24762] RIP: 0033:0x7ff90298cde9 [ 881.516960][T24762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 881.516985][T24762] RSP: 002b:00007ff9037e1fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 881.517008][T24762] RAX: ffffffffffffffda RBX: 00007ff902ba6080 RCX: 00007ff90298cde9 [ 881.517024][T24762] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 881.517039][T24762] RBP: 00007ff902a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 881.517063][T24762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 881.517077][T24762] R13: 0000000000000000 R14: 00007ff902ba6080 R15: 00007ffe02adb938 [ 881.517100][T24762] [ 881.521484][T24766] openvswitch: HfR: Dropping previously announced user features [ 881.833878][T24774] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 882.099196][T24785] FAULT_INJECTION: forcing a failure. [ 882.099196][T24785] name failslab, interval 1, probability 0, space 0, times 0 [ 882.114093][T24785] CPU: 1 UID: 0 PID: 24785 Comm: syz.1.5400 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 882.114122][T24785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 882.114136][T24785] Call Trace: [ 882.114143][T24785] [ 882.114151][T24785] dump_stack_lvl+0x16c/0x1f0 [ 882.114182][T24785] should_fail_ex+0x50a/0x650 [ 882.114217][T24785] ? sctp_add_bind_addr+0x9a/0x3d0 [ 882.114250][T24785] should_failslab+0xc2/0x120 [ 882.114283][T24785] __kmalloc_cache_noprof+0x68/0x410 [ 882.114315][T24785] ? __sctp_v6_cmp_addr+0x206/0x530 [ 882.114343][T24785] sctp_add_bind_addr+0x9a/0x3d0 [ 882.114378][T24785] sctp_copy_local_addr_list+0x39e/0x5a0 [ 882.114405][T24785] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 882.114432][T24785] ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360 [ 882.114461][T24785] ? sctp_bind_addr_copy+0xe0/0x530 [ 882.114483][T24785] sctp_bind_addr_copy+0xe0/0x530 [ 882.114507][T24785] sctp_connect_new_asoc+0x1d8/0x790 [ 882.114536][T24785] ? lock_release+0x4e2/0x6f0 [ 882.114566][T24785] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 882.114598][T24785] ? rcu_is_watching+0x12/0xc0 [ 882.114622][T24785] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 882.114656][T24785] sctp_sendmsg+0x1610/0x1eb0 [ 882.114689][T24785] ? __pfx_sctp_sendmsg+0x10/0x10 [ 882.114726][T24785] ? __pfx_aa_sk_perm+0x10/0x10 [ 882.114753][T24785] ? __pfx_sctp_sendmsg+0x10/0x10 [ 882.114782][T24785] inet_sendmsg+0x119/0x140 [ 882.114811][T24785] __sys_sendto+0x42a/0x4f0 [ 882.114839][T24785] ? __pfx___sys_sendto+0x10/0x10 [ 882.114874][T24785] ? ksys_write+0x1ba/0x250 [ 882.114903][T24785] ? __pfx_ksys_write+0x10/0x10 [ 882.114934][T24785] __x64_sys_sendto+0xe0/0x1c0 [ 882.114961][T24785] ? trace_irq_enable.constprop.0+0xea/0x140 [ 882.114996][T24785] do_syscall_64+0xcd/0x250 [ 882.115031][T24785] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 882.115068][T24785] RIP: 0033:0x7f43f598cde9 [ 882.115086][T24785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 882.115107][T24785] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 882.115130][T24785] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 882.115146][T24785] RDX: 0000000000000401 RSI: 0000000000000000 RDI: 0000000000000003 [ 882.115160][T24785] RBP: 00007f43f67c3090 R08: 0000400000000000 R09: 000000000000001c [ 882.115175][T24785] R10: 000000000000007f R11: 0000000000000246 R12: 0000000000000002 [ 882.115189][T24785] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 882.115211][T24785] [ 882.455473][T24787] FAULT_INJECTION: forcing a failure. [ 882.455473][T24787] name failslab, interval 1, probability 0, space 0, times 0 [ 882.468166][T24787] CPU: 1 UID: 0 PID: 24787 Comm: syz.0.5401 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 882.468197][T24787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 882.468212][T24787] Call Trace: [ 882.468220][T24787] [ 882.468230][T24787] dump_stack_lvl+0x16c/0x1f0 [ 882.468262][T24787] should_fail_ex+0x50a/0x650 [ 882.468300][T24787] ? fs_reclaim_acquire+0xae/0x150 [ 882.468332][T24787] should_failslab+0xc2/0x120 [ 882.468370][T24787] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 882.468406][T24787] ? alloc_empty_file+0x73/0x1e0 [ 882.468433][T24787] alloc_empty_file+0x73/0x1e0 [ 882.468458][T24787] alloc_file_pseudo+0x13b/0x230 [ 882.468484][T24787] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 882.468514][T24787] sock_alloc_file+0x50/0x210 [ 882.468548][T24787] do_accept+0x23e/0x530 [ 882.468574][T24787] ? do_raw_spin_lock+0x12d/0x2c0 [ 882.468610][T24787] ? __pfx_do_accept+0x10/0x10 [ 882.468645][T24787] __sys_accept4+0xfe/0x1b0 [ 882.468672][T24787] ? __pfx___sys_accept4+0x10/0x10 [ 882.468700][T24787] ? rcu_is_watching+0x12/0xc0 [ 882.468726][T24787] __x64_sys_accept+0x74/0xb0 [ 882.468754][T24787] do_syscall_64+0xcd/0x250 [ 882.468782][T24787] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 882.468818][T24787] RIP: 0033:0x7fb83078cde9 [ 882.468837][T24787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 882.468862][T24787] RSP: 002b:00007fb831647038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b [ 882.468887][T24787] RAX: ffffffffffffffda RBX: 00007fb8309a5fa0 RCX: 00007fb83078cde9 [ 882.468905][T24787] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 882.468920][T24787] RBP: 00007fb83080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 882.468936][T24787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 882.468953][T24787] R13: 0000000000000000 R14: 00007fb8309a5fa0 R15: 00007ffdcae78028 [ 882.468976][T24787] [ 882.782571][T24795] netlink: 'syz.0.5404': attribute type 1 has an invalid length. [ 882.862496][T24799] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 882.963400][T24802] nbd: couldn't find a device at index 0 [ 883.144188][T24807] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5406'. [ 883.178644][T24808] FAULT_INJECTION: forcing a failure. [ 883.178644][T24808] name failslab, interval 1, probability 0, space 0, times 0 [ 883.191526][T24808] CPU: 1 UID: 0 PID: 24808 Comm: syz.0.5408 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 883.191556][T24808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 883.191572][T24808] Call Trace: [ 883.191581][T24808] [ 883.191591][T24808] dump_stack_lvl+0x16c/0x1f0 [ 883.191624][T24808] should_fail_ex+0x50a/0x650 [ 883.191660][T24808] ? fs_reclaim_acquire+0xae/0x150 [ 883.191693][T24808] should_failslab+0xc2/0x120 [ 883.191730][T24808] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 883.191765][T24808] ? down_write+0x14e/0x200 [ 883.191794][T24808] ? vm_area_dup+0x21/0x2f0 [ 883.191831][T24808] vm_area_dup+0x21/0x2f0 [ 883.191863][T24808] copy_process+0x776f/0x8c50 [ 883.191895][T24808] ? __pfx_copy_process+0x10/0x10 [ 883.191919][T24808] ? try_to_wake_up+0x953/0x1490 [ 883.191951][T24808] ? plist_check_head+0xa3/0x150 [ 883.191988][T24808] ? wake_up_q+0x9e/0x140 [ 883.192016][T24808] ? do_raw_spin_unlock+0x172/0x230 [ 883.192042][T24808] kernel_clone+0xfd/0x960 [ 883.192064][T24808] ? __pfx_futex_wake+0x10/0x10 [ 883.192096][T24808] ? __pfx_kernel_clone+0x10/0x10 [ 883.192118][T24808] ? trace_lock_acquire+0x14e/0x1f0 [ 883.192153][T24808] __do_sys_clone+0xcf/0x120 [ 883.192176][T24808] ? __pfx___do_sys_clone+0x10/0x10 [ 883.192209][T24808] ? __sys_sendmsg+0x19a/0x220 [ 883.192249][T24808] ? rcu_is_watching+0x12/0xc0 [ 883.192276][T24808] ? rcu_is_watching+0x12/0xc0 [ 883.192303][T24808] ? rcu_is_watching+0x12/0xc0 [ 883.192329][T24808] do_syscall_64+0xcd/0x250 [ 883.192358][T24808] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 883.192391][T24808] RIP: 0033:0x7fb83078cde9 [ 883.192410][T24808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 883.192432][T24808] RSP: 002b:00007fb831625fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 883.192454][T24808] RAX: ffffffffffffffda RBX: 00007fb8309a6080 RCX: 00007fb83078cde9 [ 883.192470][T24808] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 883.192484][T24808] RBP: 00007fb83080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 883.192499][T24808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 883.192514][T24808] R13: 0000000000000000 R14: 00007fb8309a6080 R15: 00007ffdcae78028 [ 883.192536][T24808] [ 883.933146][T24815] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5410'. [ 883.945900][T24816] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 884.013161][T24815] ieee80211 phy50: Selected rate control algorithm 'minstrel_ht' [ 884.097196][T24823] FAULT_INJECTION: forcing a failure. [ 884.097196][T24823] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 884.142074][T24823] CPU: 1 UID: 0 PID: 24823 Comm: syz.2.5412 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 884.142105][T24823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 884.142118][T24823] Call Trace: [ 884.142126][T24823] [ 884.142141][T24823] dump_stack_lvl+0x16c/0x1f0 [ 884.142172][T24823] should_fail_ex+0x50a/0x650 [ 884.142207][T24823] _copy_from_user+0x2e/0xd0 [ 884.142231][T24823] memdup_user+0x71/0xd0 [ 884.142258][T24823] dvb_get_property.isra.0+0x15c/0x630 [ 884.142285][T24823] ? __pfx_dvb_get_property.isra.0+0x10/0x10 [ 884.142309][T24823] ? kasan_save_stack+0x42/0x60 [ 884.142340][T24823] ? kasan_save_stack+0x33/0x60 [ 884.142369][T24823] ? kasan_save_track+0x14/0x30 [ 884.142417][T24823] ? rcu_is_watching+0x12/0xc0 [ 884.142441][T24823] ? lock_release+0x4e2/0x6f0 [ 884.142470][T24823] ? tomoyo_path_number_perm+0x298/0x590 [ 884.142496][T24823] ? __pfx_lock_release+0x10/0x10 [ 884.142527][T24823] dvb_frontend_handle_ioctl+0x13fc/0x2fd0 [ 884.142555][T24823] ? rcu_is_watching+0x12/0xc0 [ 884.142578][T24823] ? __pfx_dvb_frontend_handle_ioctl+0x10/0x10 [ 884.142604][T24823] ? down_interruptible+0x66/0xa0 [ 884.142632][T24823] ? __pfx_lock_release+0x10/0x10 [ 884.142661][T24823] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 884.142695][T24823] ? __pfx_lock_release+0x10/0x10 [ 884.142725][T24823] ? rcu_is_watching+0x12/0xc0 [ 884.142748][T24823] ? trace_irq_enable.constprop.0+0xea/0x140 [ 884.142785][T24823] dvb_frontend_do_ioctl+0x1c8/0x2f0 [ 884.142811][T24823] dvb_usercopy+0x165/0x320 [ 884.142836][T24823] ? __pfx_dvb_frontend_do_ioctl+0x10/0x10 [ 884.142862][T24823] ? __pfx_dvb_usercopy+0x10/0x10 [ 884.142885][T24823] ? __pfx_lock_release+0x10/0x10 [ 884.142919][T24823] ? __fget_files+0x206/0x3a0 [ 884.142952][T24823] dvb_frontend_ioctl+0x50/0x80 [ 884.142973][T24823] ? __pfx_dvb_frontend_ioctl+0x10/0x10 [ 884.143007][T24823] __x64_sys_ioctl+0x190/0x200 [ 884.143034][T24823] do_syscall_64+0xcd/0x250 [ 884.143061][T24823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 884.143093][T24823] RIP: 0033:0x7f9942d8cde9 [ 884.143110][T24823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 884.143132][T24823] RSP: 002b:00007f9943bbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 884.143160][T24823] RAX: ffffffffffffffda RBX: 00007f9942fa5fa0 RCX: 00007f9942d8cde9 [ 884.143176][T24823] RDX: 0000000000000004 RSI: 0000000080106f53 RDI: 0000000000000003 [ 884.143191][T24823] RBP: 00007f9943bbc090 R08: 0000000000000000 R09: 0000000000000000 [ 884.143205][T24823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 884.143219][T24823] R13: 0000000000000000 R14: 00007f9942fa5fa0 R15: 00007ffdfc79f7e8 [ 884.143241][T24823] [ 884.445704][T24813] caif:caif_disconnect_client(): nothing to disconnect [ 884.511703][ T29] audit: type=1800 audit(4295082009.133:37): pid=24830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5415" name="members" dev="configfs" ino=98599 res=0 errno=0 [ 884.546037][T24828] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5414'. [ 884.770275][T24839] FAULT_INJECTION: forcing a failure. [ 884.770275][T24839] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 884.800054][T24839] CPU: 0 UID: 0 PID: 24839 Comm: syz.0.5417 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 884.800088][T24839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 884.800114][T24839] Call Trace: [ 884.800122][T24839] [ 884.800130][T24839] dump_stack_lvl+0x16c/0x1f0 [ 884.800164][T24839] should_fail_ex+0x50a/0x650 [ 884.800197][T24839] ? __pfx___might_resched+0x10/0x10 [ 884.800236][T24839] should_fail_alloc_page+0xe7/0x130 [ 884.800260][T24839] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 884.800292][T24839] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 884.800331][T24839] ? futex_wait+0x121/0x380 [ 884.800364][T24839] ? __pfx_futex_wait+0x10/0x10 [ 884.800397][T24839] ? lock_release+0x4e2/0x6f0 [ 884.800428][T24839] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 884.800465][T24839] ? lock_acquire+0x2f/0xb0 [ 884.800495][T24839] ? __fget_files+0x40/0x3a0 [ 884.800528][T24839] ? do_futex+0x123/0x350 [ 884.800555][T24839] ? aa_get_newest_label+0x376/0x680 [ 884.800591][T24839] ? __pfx_do_futex+0x10/0x10 [ 884.800617][T24839] ? __pfx_aa_get_newest_label+0x10/0x10 [ 884.800654][T24839] ? rcu_is_watching+0x12/0xc0 [ 884.800678][T24839] ? trace_cap_capable+0x1a2/0x210 [ 884.800703][T24839] __alloc_pages_noprof+0xb/0x1b0 [ 884.800735][T24839] ___kmalloc_large_node+0x84/0x1b0 [ 884.800765][T24839] __kmalloc_large_noprof+0x1c/0x70 [ 884.800794][T24839] ? bpf_lsm_locked_down+0x9/0x10 [ 884.800820][T24839] ksys_ioperm+0x3c9/0x4f0 [ 884.800850][T24839] do_syscall_64+0xcd/0x250 [ 884.800882][T24839] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 884.800916][T24839] RIP: 0033:0x7fb83078cde9 [ 884.800935][T24839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 884.800960][T24839] RSP: 002b:00007fb831647038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ad [ 884.800985][T24839] RAX: ffffffffffffffda RBX: 00007fb8309a5fa0 RCX: 00007fb83078cde9 [ 884.801002][T24839] RDX: 0000000000000002 RSI: 0000000000000006 RDI: 0000000000000007 [ 884.801017][T24839] RBP: 00007fb83080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 884.801033][T24839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 884.801047][T24839] R13: 0000000000000000 R14: 00007fb8309a5fa0 R15: 00007ffdcae78028 [ 884.801069][T24839] [ 885.052122][T24848] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 885.155187][T24852] random: crng reseeded on system resumption [ 885.196049][T24852] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff] [ 885.237425][T24852] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff] [ 885.267218][T24852] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff] [ 885.333080][T24852] PM: hibernation: Basic memory bitmaps created [ 885.605481][T24872] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5427'. [ 885.618034][T24872] FAULT_INJECTION: forcing a failure. [ 885.618034][T24872] name failslab, interval 1, probability 0, space 0, times 0 [ 885.631344][T24872] CPU: 1 UID: 0 PID: 24872 Comm: syz.1.5427 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 885.631376][T24872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 885.631391][T24872] Call Trace: [ 885.631399][T24872] [ 885.631409][T24872] dump_stack_lvl+0x16c/0x1f0 [ 885.631440][T24872] should_fail_ex+0x50a/0x650 [ 885.631475][T24872] ? fs_reclaim_acquire+0xae/0x150 [ 885.631505][T24872] should_failslab+0xc2/0x120 [ 885.631541][T24872] kmem_cache_alloc_lru_noprof+0x73/0x3d0 [ 885.631574][T24872] ? __d_alloc+0x31/0xaa0 [ 885.631596][T24872] __d_alloc+0x31/0xaa0 [ 885.631618][T24872] d_alloc_pseudo+0x1c/0xc0 [ 885.631645][T24872] alloc_file_pseudo+0xd0/0x230 [ 885.631671][T24872] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 885.631697][T24872] ? alloc_fd+0x41f/0x760 [ 885.631731][T24872] sock_alloc_file+0x50/0x210 [ 885.631766][T24872] __sys_socket+0x1c2/0x260 [ 885.631791][T24872] ? __pfx___sys_socket+0x10/0x10 [ 885.631831][T24872] ? rcu_is_watching+0x12/0xc0 [ 885.631857][T24872] ? rcu_is_watching+0x12/0xc0 [ 885.631884][T24872] __x64_sys_socket+0x72/0xb0 [ 885.631909][T24872] do_syscall_64+0xcd/0x250 [ 885.631938][T24872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 885.631972][T24872] RIP: 0033:0x7f43f598cde9 [ 885.631991][T24872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 885.632014][T24872] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 885.632037][T24872] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 885.632054][T24872] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 885.632069][T24872] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 885.632085][T24872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 885.632100][T24872] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 885.632123][T24872] [ 886.067442][T24880] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:34: corrupted in-inode xattr: bad magic number in in-inode xattr [ 886.151834][T24887] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 886.194553][T24879] PM: hibernation: Basic memory bitmaps freed [ 886.769885][T24908] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5437'. [ 886.792300][T24908] FAULT_INJECTION: forcing a failure. [ 886.792300][T24908] name failslab, interval 1, probability 0, space 0, times 0 [ 886.821622][T24908] CPU: 0 UID: 0 PID: 24908 Comm: syz.0.5437 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 886.821654][T24908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 886.821668][T24908] Call Trace: [ 886.821676][T24908] [ 886.821686][T24908] dump_stack_lvl+0x16c/0x1f0 [ 886.821719][T24908] should_fail_ex+0x50a/0x650 [ 886.821763][T24908] ? fs_reclaim_acquire+0xae/0x150 [ 886.821794][T24908] should_failslab+0xc2/0x120 [ 886.821830][T24908] kmem_cache_alloc_lru_noprof+0x73/0x3d0 [ 886.821866][T24908] ? __d_alloc+0x31/0xaa0 [ 886.821889][T24908] __d_alloc+0x31/0xaa0 [ 886.821912][T24908] d_alloc_pseudo+0x1c/0xc0 [ 886.821939][T24908] alloc_file_pseudo+0xd0/0x230 [ 886.821966][T24908] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 886.821991][T24908] ? alloc_fd+0x41f/0x760 [ 886.822024][T24908] sock_alloc_file+0x50/0x210 [ 886.822057][T24908] __sys_socket+0x1c2/0x260 [ 886.822081][T24908] ? __pfx___sys_socket+0x10/0x10 [ 886.822106][T24908] ? rcu_is_watching+0x12/0xc0 [ 886.822131][T24908] ? rcu_is_watching+0x12/0xc0 [ 886.822156][T24908] __x64_sys_socket+0x72/0xb0 [ 886.822182][T24908] do_syscall_64+0xcd/0x250 [ 886.822210][T24908] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 886.822242][T24908] RIP: 0033:0x7fb83078cde9 [ 886.822260][T24908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 886.822281][T24908] RSP: 002b:00007fb831647038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 886.822305][T24908] RAX: ffffffffffffffda RBX: 00007fb8309a5fa0 RCX: 00007fb83078cde9 [ 886.822322][T24908] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 886.822336][T24908] RBP: 00007fb83080e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 886.822352][T24908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 886.822367][T24908] R13: 0000000000000000 R14: 00007fb8309a5fa0 R15: 00007ffdcae78028 [ 886.822389][T24908] [ 887.228829][T24914] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 887.498439][T24902] base_sock_release(ffff888079083000) sk=ffff88807a567000 [ 887.794371][T24939] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5447'. [ 887.880903][T24939] FAULT_INJECTION: forcing a failure. [ 887.880903][T24939] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 887.894645][T24939] CPU: 0 UID: 0 PID: 24939 Comm: syz.3.5447 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 887.894675][T24939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 887.894690][T24939] Call Trace: [ 887.894698][T24939] [ 887.894707][T24939] dump_stack_lvl+0x16c/0x1f0 [ 887.894740][T24939] should_fail_ex+0x50a/0x650 [ 887.894774][T24939] ? __pfx___might_resched+0x10/0x10 [ 887.894809][T24939] should_fail_alloc_page+0xe7/0x130 [ 887.894833][T24939] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 887.894865][T24939] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 887.894901][T24939] ? __pfx_stack_trace_save+0x10/0x10 [ 887.894949][T24939] ? __memcg_kmem_charge_page+0x1b0/0x2b0 [ 887.894987][T24939] ? stack_depot_save_flags+0x28/0x9c0 [ 887.895021][T24939] ? rcu_is_watching+0x12/0xc0 [ 887.895046][T24939] ? kasan_save_stack+0x42/0x60 [ 887.895077][T24939] ? kasan_save_stack+0x33/0x60 [ 887.895107][T24939] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 887.895141][T24939] ? __pmd_alloc+0xc3/0x870 [ 887.895174][T24939] ? copy_process+0x7ccb/0x8c50 [ 887.895195][T24939] ? __do_sys_clone+0xcf/0x120 [ 887.895215][T24939] ? do_syscall_64+0xcd/0x250 [ 887.895243][T24939] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 887.895282][T24939] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 887.895316][T24939] ? policy_nodemask+0xea/0x4e0 [ 887.895355][T24939] alloc_pages_mpol+0x1fc/0x540 [ 887.895390][T24939] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 887.895428][T24939] ? rcu_is_watching+0x12/0xc0 [ 887.895454][T24939] ? lock_release+0x4e2/0x6f0 [ 887.895488][T24939] alloc_pages_noprof+0x131/0x390 [ 887.895525][T24939] pte_alloc_one+0x20/0x390 [ 887.895560][T24939] __pte_alloc+0x6e/0x3d0 [ 887.895588][T24939] ? __pfx___pte_alloc+0x10/0x10 [ 887.895616][T24939] ? _raw_spin_unlock+0x28/0x50 [ 887.895638][T24939] ? __pmd_alloc+0x3c2/0x870 [ 887.895666][T24939] copy_page_range+0x3737/0x5690 [ 887.895701][T24939] ? lock_release+0x4e2/0x6f0 [ 887.895736][T24939] ? mas_destroy+0x5ba/0x9e0 [ 887.895768][T24939] ? __pfx_copy_page_range+0x10/0x10 [ 887.895799][T24939] ? mas_store+0x941/0x10d0 [ 887.895832][T24939] ? __pfx_mas_store+0x10/0x10 [ 887.895861][T24939] ? lock_acquire+0x2f/0xb0 [ 887.895891][T24939] ? copy_process+0x79c4/0x8c50 [ 887.895925][T24939] ? up_write+0x1b2/0x520 [ 887.895964][T24939] copy_process+0x7ccb/0x8c50 [ 887.895997][T24939] ? __pfx_copy_process+0x10/0x10 [ 887.896019][T24939] ? __pfx___futex_wait+0x10/0x10 [ 887.896064][T24939] kernel_clone+0xfd/0x960 [ 887.896085][T24939] ? lock_release+0x4e2/0x6f0 [ 887.896117][T24939] ? __pfx_kernel_clone+0x10/0x10 [ 887.896148][T24939] __do_sys_clone+0xcf/0x120 [ 887.896171][T24939] ? __pfx___do_sys_clone+0x10/0x10 [ 887.896194][T24939] ? __sys_sendmsg+0x19a/0x220 [ 887.896231][T24939] ? rcu_is_watching+0x12/0xc0 [ 887.896257][T24939] ? rcu_is_watching+0x12/0xc0 [ 887.896282][T24939] ? rcu_is_watching+0x12/0xc0 [ 887.896309][T24939] do_syscall_64+0xcd/0x250 [ 887.896338][T24939] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 887.896371][T24939] RIP: 0033:0x7ff90298cde9 [ 887.896391][T24939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 887.896415][T24939] RSP: 002b:00007ff903802fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 887.896440][T24939] RAX: ffffffffffffffda RBX: 00007ff902ba5fa0 RCX: 00007ff90298cde9 [ 887.896458][T24939] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 887.896474][T24939] RBP: 00007ff902a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 887.896490][T24939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 887.896506][T24939] R13: 0000000000000000 R14: 00007ff902ba5fa0 R15: 00007ffe02adb938 [ 887.896530][T24939] [ 888.389896][T24941] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 888.618745][T24950] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input49 [ 888.655515][T24950] FAULT_INJECTION: forcing a failure. [ 888.655515][T24950] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 888.692381][T24947] FAULT_INJECTION: forcing a failure. [ 888.692381][T24947] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 888.709318][T24950] CPU: 1 UID: 0 PID: 24950 Comm: syz.2.5451 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 888.709348][T24950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 888.709362][T24950] Call Trace: [ 888.709369][T24950] [ 888.709379][T24950] dump_stack_lvl+0x16c/0x1f0 [ 888.709409][T24950] should_fail_ex+0x50a/0x650 [ 888.709444][T24950] _copy_from_user+0x2e/0xd0 [ 888.709468][T24950] input_event_from_user+0x134/0x3b0 [ 888.709495][T24950] ? __pfx_input_event_from_user+0x10/0x10 [ 888.709522][T24950] ? __pfx___might_resched+0x10/0x10 [ 888.709556][T24950] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 888.709580][T24950] ? input_event+0x98/0xb0 [ 888.709603][T24950] uinput_write+0xbb6/0x12b0 [ 888.709639][T24950] ? __pfx_uinput_write+0x10/0x10 [ 888.709666][T24950] ? bpf_lsm_file_permission+0x9/0x10 [ 888.709699][T24950] ? security_file_permission+0x71/0x210 [ 888.709728][T24950] ? rw_verify_area+0xcf/0x680 [ 888.709754][T24950] ? __pfx_uinput_write+0x10/0x10 [ 888.709781][T24950] vfs_write+0x24c/0x1150 [ 888.709810][T24950] ? __fget_files+0x1fc/0x3a0 [ 888.709841][T24950] ? __pfx_lock_release+0x10/0x10 [ 888.709872][T24950] ? __pfx_vfs_write+0x10/0x10 [ 888.709900][T24950] ? __fget_files+0x40/0x3a0 [ 888.709930][T24950] ? lock_acquire+0x2f/0xb0 [ 888.709958][T24950] ? __fget_files+0x40/0x3a0 [ 888.709989][T24950] ? __fget_files+0x206/0x3a0 [ 888.710022][T24950] ksys_write+0x207/0x250 [ 888.710049][T24950] ? __pfx_ksys_write+0x10/0x10 [ 888.710078][T24950] ? rcu_is_watching+0x12/0xc0 [ 888.710101][T24950] ? rcu_is_watching+0x12/0xc0 [ 888.710125][T24950] do_syscall_64+0xcd/0x250 [ 888.710152][T24950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 888.710183][T24950] RIP: 0033:0x7f9942d8cde9 [ 888.710200][T24950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 888.710222][T24950] RSP: 002b:00007f9943bbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 888.710245][T24950] RAX: ffffffffffffffda RBX: 00007f9942fa5fa0 RCX: 00007f9942d8cde9 [ 888.710262][T24950] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 888.710277][T24950] RBP: 00007f9943bbc090 R08: 0000000000000000 R09: 0000000000000000 [ 888.710291][T24950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 888.710306][T24950] R13: 0000000000000000 R14: 00007f9942fa5fa0 R15: 00007ffdfc79f7e8 [ 888.710328][T24950] [ 888.717366][T24947] CPU: 0 UID: 0 PID: 24947 Comm: syz.1.5449 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 888.717396][T24947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 888.717410][T24947] Call Trace: [ 888.717417][T24947] [ 888.717426][T24947] dump_stack_lvl+0x16c/0x1f0 [ 888.717455][T24947] should_fail_ex+0x50a/0x650 [ 888.717490][T24947] _copy_to_user+0x32/0xd0 [ 888.717513][T24947] tomoyo_flush+0x168/0x500 [ 888.717546][T24947] tomoyo_set_string+0xaf/0xe0 [ 888.717576][T24947] tomoyo_io_printf+0x26f/0x2f0 [ 888.717606][T24947] ? __pfx_tomoyo_io_printf+0x10/0x10 [ 888.717636][T24947] ? __mutex_lock+0x1cc/0xb10 [ 888.717662][T24947] ? tomoyo_read_control+0x5f/0x550 [ 888.717693][T24947] ? __pfx_aa_file_perm+0x10/0x10 [ 888.717721][T24947] ? tomoyo_flush+0x3db/0x500 [ 888.717750][T24947] ? tomoyo_read_profile+0x74b/0xd40 [ 888.717783][T24947] tomoyo_read_profile+0x7bf/0xd40 [ 888.717814][T24947] ? tomoyo_flush+0x3db/0x500 [ 888.717843][T24947] ? lock_acquire+0x2f/0xb0 [ 888.717881][T24947] tomoyo_read_control+0x2a0/0x550 [ 888.717914][T24947] ? __pfx_tomoyo_read+0x10/0x10 [ 888.717944][T24947] vfs_read+0x1df/0xbf0 [ 888.717972][T24947] ? __fget_files+0x1fc/0x3a0 [ 888.718002][T24947] ? __pfx_lock_release+0x10/0x10 [ 888.718031][T24947] ? __pfx_vfs_read+0x10/0x10 [ 888.718058][T24947] ? __fget_files+0x40/0x3a0 [ 888.718087][T24947] ? lock_acquire+0x2f/0xb0 [ 888.718114][T24947] ? __fget_files+0x40/0x3a0 [ 888.718145][T24947] ? __fget_files+0x206/0x3a0 [ 888.718177][T24947] __x64_sys_pread64+0x1f6/0x250 [ 888.718207][T24947] ? __pfx___x64_sys_pread64+0x10/0x10 [ 888.718237][T24947] ? rcu_is_watching+0x12/0xc0 [ 888.718260][T24947] ? rcu_is_watching+0x12/0xc0 [ 888.718284][T24947] do_syscall_64+0xcd/0x250 [ 888.718310][T24947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 888.718340][T24947] RIP: 0033:0x7f43f598cde9 [ 888.718358][T24947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 888.718379][T24947] RSP: 002b:00007f43f67c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 888.718401][T24947] RAX: ffffffffffffffda RBX: 00007f43f5ba5fa0 RCX: 00007f43f598cde9 [ 888.718416][T24947] RDX: 000000000000ffff RSI: 0000000000000000 RDI: 0000000000000003 [ 888.718430][T24947] RBP: 00007f43f67c3090 R08: 0000000000000000 R09: 0000000000000000 [ 888.718444][T24947] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000001 [ 888.718458][T24947] R13: 0000000000000000 R14: 00007f43f5ba5fa0 R15: 00007ffc4422eda8 [ 888.718480][T24947] [ 889.367887][T24948] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 889.530191][T24963] FAULT_INJECTION: forcing a failure. [ 889.530191][T24963] name fail_futex, interval 1, probability 0, space 0, times 0 [ 889.544645][T24964] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 889.597743][T24963] CPU: 0 UID: 0 PID: 24963 Comm: syz.2.5454 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 889.597771][T24963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 889.597783][T24963] Call Trace: [ 889.597789][T24963] [ 889.597796][T24963] dump_stack_lvl+0x16c/0x1f0 [ 889.597830][T24963] should_fail_ex+0x50a/0x650 [ 889.597861][T24963] get_futex_key+0x1c3/0x1000 [ 889.597884][T24963] ? __pfx_get_futex_key+0x10/0x10 [ 889.597905][T24963] ? __mutex_trylock_common+0xea/0x250 [ 889.597932][T24963] ? __pfx___mutex_trylock_common+0x10/0x10 [ 889.597961][T24963] futex_wake+0xe8/0x4e0 [ 889.597986][T24963] ? __pfx_futex_wake+0x10/0x10 [ 889.598011][T24963] ? __might_fault+0x13b/0x190 [ 889.598032][T24963] ? rcu_is_watching+0x12/0xc0 [ 889.598051][T24963] ? lock_release+0x4e2/0x6f0 [ 889.598077][T24963] do_futex+0x1e5/0x350 [ 889.598099][T24963] ? __pfx_do_futex+0x10/0x10 [ 889.598121][T24963] ? __might_fault+0xe3/0x190 [ 889.598140][T24963] ? __might_fault+0xe3/0x190 [ 889.598159][T24963] mm_release+0x24e/0x300 [ 889.598184][T24963] do_exit+0x886/0x2d70 [ 889.598204][T24963] ? rcu_is_watching+0x12/0xc0 [ 889.598224][T24963] ? lock_release+0x4e2/0x6f0 [ 889.598248][T24963] ? get_signal+0x8f7/0x26c0 [ 889.598275][T24963] ? __pfx_do_exit+0x10/0x10 [ 889.598294][T24963] ? do_raw_spin_lock+0x12d/0x2c0 [ 889.598323][T24963] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 889.598353][T24963] do_group_exit+0xd3/0x2a0 [ 889.598374][T24963] get_signal+0x24ed/0x26c0 [ 889.598405][T24963] ? __pfx_get_signal+0x10/0x10 [ 889.598433][T24963] ? __pfx_do_futex+0x10/0x10 [ 889.598456][T24963] arch_do_signal_or_restart+0x90/0x7e0 [ 889.598482][T24963] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 889.598507][T24963] ? rcu_is_watching+0x12/0xc0 [ 889.598527][T24963] ? rcu_is_watching+0x12/0xc0 [ 889.598547][T24963] syscall_exit_to_user_mode+0x150/0x2a0 [ 889.598571][T24963] do_syscall_64+0xda/0x250 [ 889.598594][T24963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 889.598621][T24963] RIP: 0033:0x7f9942d8cde9 [ 889.598636][T24963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 889.598655][T24963] RSP: 002b:00007f9943bbc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 889.598674][T24963] RAX: fffffffffffffe00 RBX: 00007f9942fa5fa8 RCX: 00007f9942d8cde9 [ 889.598687][T24963] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9942fa5fa8 [ 889.598700][T24963] RBP: 00007f9942fa5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 889.598712][T24963] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9942fa5fac [ 889.598724][T24963] R13: 0000000000000000 R14: 00007ffdfc79f700 R15: 00007ffdfc79f7e8 [ 889.598742][T24963] [ 889.877835][T24967] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 889.904845][T24967] udevd[24967]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 890.078508][T24971] FAULT_INJECTION: forcing a failure. [ 890.078508][T24971] name fail_futex, interval 1, probability 0, space 0, times 0 [ 890.160107][T24971] CPU: 1 UID: 0 PID: 24971 Comm: syz.0.5457 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 890.160139][T24971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 890.160154][T24971] Call Trace: [ 890.160162][T24971] [ 890.160171][T24971] dump_stack_lvl+0x16c/0x1f0 [ 890.160202][T24971] should_fail_ex+0x50a/0x650 [ 890.160236][T24971] ? __pfx_validate_mm+0x10/0x10 [ 890.160272][T24971] get_futex_key+0x4a3/0x1000 [ 890.160300][T24971] ? __pfx_get_futex_key+0x10/0x10 [ 890.160330][T24971] ? mmap_region+0x1ee/0x3f0 [ 890.160354][T24971] futex_wake+0xe8/0x4e0 [ 890.160384][T24971] ? vm_mmap_pgoff+0x29b/0x3a0 [ 890.160417][T24971] ? __pfx_futex_wake+0x10/0x10 [ 890.160455][T24971] do_futex+0x1e5/0x350 [ 890.160482][T24971] ? __pfx_do_futex+0x10/0x10 [ 890.160510][T24971] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 890.160551][T24971] __x64_sys_futex+0x1e1/0x4c0 [ 890.160580][T24971] ? __pfx___x64_sys_futex+0x10/0x10 [ 890.160609][T24971] ? ksys_mmap_pgoff+0x85/0x5c0 [ 890.160637][T24971] ? rcu_is_watching+0x12/0xc0 [ 890.160661][T24971] ? rcu_is_watching+0x12/0xc0 [ 890.160685][T24971] ? rcu_is_watching+0x12/0xc0 [ 890.160710][T24971] do_syscall_64+0xcd/0x250 [ 890.160739][T24971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 890.160772][T24971] RIP: 0033:0x7fb83078cde9 [ 890.160791][T24971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 890.160816][T24971] RSP: 002b:00007fb8316470e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 890.160840][T24971] RAX: ffffffffffffffda RBX: 00007fb8309a5fa8 RCX: 00007fb83078cde9 [ 890.160858][T24971] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb8309a5fac [ 890.160875][T24971] RBP: 00007fb8309a5fa0 R08: 00007fb831648000 R09: 0000000000000000 [ 890.160891][T24971] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb8309a5fac [ 890.160907][T24971] R13: 0000000000000000 R14: 00007ffdcae77f40 R15: 00007ffdcae78028 [ 890.160931][T24971] [ 890.417772][T24973] FAULT_INJECTION: forcing a failure. [ 890.417772][T24973] name failslab, interval 1, probability 0, space 0, times 0 [ 890.425849][T24984] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:39: corrupted in-inode xattr: bad magic number in in-inode xattr [ 890.430460][T24973] CPU: 1 UID: 0 PID: 24973 Comm: syz.2.5459 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 890.430492][T24973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 890.430515][T24973] Call Trace: [ 890.430523][T24973] [ 890.430532][T24973] dump_stack_lvl+0x16c/0x1f0 [ 890.430565][T24973] should_fail_ex+0x50a/0x650 [ 890.430601][T24973] ? fs_reclaim_acquire+0xae/0x150 [ 890.430630][T24973] ? __kthread_create_on_node+0xcb/0x400 [ 890.430656][T24973] should_failslab+0xc2/0x120 [ 890.430692][T24973] __kmalloc_cache_noprof+0x68/0x410 [ 890.430725][T24973] ? __pfx_rescuer_thread+0x10/0x10 [ 890.430755][T24973] __kthread_create_on_node+0xcb/0x400 [ 890.430780][T24973] ? __pfx___kthread_create_on_node+0x10/0x10 [ 890.430806][T24973] ? smc_ib_get_memory_region+0x280/0x400 [ 890.430833][T24973] ? __pfx_vsnprintf+0x10/0x10 [ 890.430859][T24973] ? __pfx_rescuer_thread+0x10/0x10 [ 890.430889][T24973] kthread_create_on_node+0xc8/0x110 [ 890.430914][T24973] ? __pfx_kthread_create_on_node+0x10/0x10 [ 890.430938][T24973] ? __pfx_scnprintf+0x10/0x10 [ 890.430973][T24973] init_rescuer+0x322/0x640 [ 890.431000][T24973] ? __pfx_init_rescuer+0x10/0x10 [ 890.431032][T24973] ? wq_adjust_max_active+0x39d/0x4a0 [ 890.431063][T24973] __alloc_workqueue+0xc27/0x1810 [ 890.431091][T24973] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 890.431117][T24973] alloc_workqueue+0xd3/0x200 [ 890.431141][T24973] ? __pfx_alloc_workqueue+0x10/0x10 [ 890.431170][T24973] ? __pfx___debug_object_init+0x10/0x10 [ 890.431200][T24973] nci_register_device+0x514/0xb80 [ 890.431234][T24973] ? __pfx_nci_register_device+0x10/0x10 [ 890.431266][T24973] ? lockdep_init_map_type+0x16d/0x7d0 [ 890.431304][T24973] virtual_ncidev_open+0x141/0x220 [ 890.431337][T24973] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 890.431368][T24973] misc_open+0x35a/0x420 [ 890.431389][T24973] ? __pfx_misc_open+0x10/0x10 [ 890.431410][T24973] chrdev_open+0x237/0x6a0 [ 890.431443][T24973] ? __pfx_apparmor_file_open+0x10/0x10 [ 890.431471][T24973] ? __pfx_chrdev_open+0x10/0x10 [ 890.431505][T24973] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 890.431548][T24973] do_dentry_open+0x735/0x1c40 [ 890.431581][T24973] ? __pfx_chrdev_open+0x10/0x10 [ 890.431617][T24973] ? inode_permission+0xdd/0x5f0 [ 890.431644][T24973] vfs_open+0x82/0x3f0 [ 890.431665][T24973] ? may_open+0x1f2/0x400 [ 890.431691][T24973] path_openat+0x1e88/0x2d80 [ 890.431727][T24973] ? __pfx_path_openat+0x10/0x10 [ 890.431760][T24973] do_filp_open+0x20c/0x470 [ 890.431792][T24973] ? __pfx_do_filp_open+0x10/0x10 [ 890.431832][T24973] ? alloc_fd+0x41f/0x760 [ 890.431866][T24973] do_sys_openat2+0x17a/0x1e0 [ 890.431890][T24973] ? __pfx_do_sys_openat2+0x10/0x10 [ 890.431919][T24973] __x64_sys_openat+0x175/0x210 [ 890.431943][T24973] ? __pfx___x64_sys_openat+0x10/0x10 [ 890.431970][T24973] ? rcu_is_watching+0x12/0xc0 [ 890.431995][T24973] ? rcu_is_watching+0x12/0xc0 [ 890.432019][T24973] do_syscall_64+0xcd/0x250 [ 890.432047][T24973] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 890.432079][T24973] RIP: 0033:0x7f9942d8cde9 [ 890.432097][T24973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 890.432119][T24973] RSP: 002b:00007f9943bbc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 890.432141][T24973] RAX: ffffffffffffffda RBX: 00007f9942fa5fa0 RCX: 00007f9942d8cde9 [ 890.432158][T24973] RDX: 0000000000000002 RSI: 0000400000000400 RDI: ffffffffffffff9c [ 890.432175][T24973] RBP: 00007f9942e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 890.432189][T24973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 890.432203][T24973] R13: 0000000000000000 R14: 00007f9942fa5fa0 R15: 00007ffdfc79f7e8 [ 890.432226][T24973] [ 890.432235][T24973] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -ENOMEM [ 890.474978][T24983] FAULT_INJECTION: forcing a failure. [ 890.474978][T24983] name failslab, interval 1, probability 0, space 0, times 0 [ 890.716290][T24987] Process accounting resumed [ 890.719601][T24983] CPU: 0 UID: 0 PID: 24983 Comm: syz.1.5458 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 890.719630][T24983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 890.719645][T24983] Call Trace: [ 890.719652][T24983] [ 890.719661][T24983] dump_stack_lvl+0x16c/0x1f0 [ 890.719692][T24983] should_fail_ex+0x50a/0x650 [ 890.719725][T24983] ? fs_reclaim_acquire+0xae/0x150 [ 890.719763][T24983] should_failslab+0xc2/0x120 [ 890.719798][T24983] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 890.719830][T24983] ? down_write+0x14e/0x200 [ 890.719857][T24983] ? vm_area_dup+0x21/0x2f0 [ 890.719891][T24983] vm_area_dup+0x21/0x2f0 [ 890.719922][T24983] copy_process+0x776f/0x8c50 [ 890.719952][T24983] ? __pfx_copy_process+0x10/0x10 [ 890.719975][T24983] ? try_to_wake_up+0x953/0x1490 [ 890.720008][T24983] ? plist_check_head+0xa3/0x150 [ 890.720042][T24983] ? wake_up_q+0x9e/0x140 [ 890.720070][T24983] ? do_raw_spin_unlock+0x172/0x230 [ 890.720093][T24983] kernel_clone+0xfd/0x960 [ 890.720114][T24983] ? __pfx_futex_wake+0x10/0x10 [ 890.720145][T24983] ? __pfx_kernel_clone+0x10/0x10 [ 890.720173][T24983] __do_sys_clone+0xcf/0x120 [ 890.720194][T24983] ? __pfx___do_sys_clone+0x10/0x10 [ 890.720222][T24983] ? rcu_is_watching+0x12/0xc0 [ 890.720245][T24983] ? rcu_is_watching+0x12/0xc0 [ 890.720269][T24983] ? rcu_is_watching+0x12/0xc0 [ 890.720293][T24983] do_syscall_64+0xcd/0x250 [ 890.720319][T24983] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 890.720350][T24983] RIP: 0033:0x7f43f598cde9 [ 890.720368][T24983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 890.720389][T24983] RSP: 002b:00007f43f67a1fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 890.720410][T24983] RAX: ffffffffffffffda RBX: 00007f43f5ba6080 RCX: 00007f43f598cde9 [ 890.720427][T24983] RDX: 0000000000000000 RSI: ffffffffffffff10 RDI: 0000000000000000 [ 890.720442][T24983] RBP: 00007f43f5a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 890.720456][T24983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 890.720470][T24983] R13: 0000000000000000 R14: 00007f43f5ba6080 R15: 00007ffc4422eda8 [ 890.720491][T24983] [ 890.744420][T24988] sctp: [Deprecated]: syz.3.5463 (pid 24988) Use of struct sctp_assoc_value in delayed_ack socket option. [ 890.744420][T24988] Use struct sctp_sack_info instead [ 891.087995][T24989] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 891.387619][T25002] ================================================================== [ 891.395727][T25002] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 891.403473][T25002] Read of size 8 at addr ffff8881467a4218 by task syz.3.5466/25002 [ 891.411380][T25002] [ 891.413722][T25002] CPU: 0 UID: 0 PID: 25002 Comm: syz.3.5466 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 891.413755][T25002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 891.413770][T25002] Call Trace: [ 891.413779][T25002] [ 891.413789][T25002] dump_stack_lvl+0x116/0x1f0 [ 891.413821][T25002] print_report+0xc3/0x620 [ 891.413859][T25002] ? __virt_addr_valid+0x5e/0x590 [ 891.413883][T25002] ? __phys_addr+0xc6/0x150 [ 891.413907][T25002] kasan_report+0xd9/0x110 [ 891.413941][T25002] ? dvb_device_open+0x36a/0x3b0 [ 891.413968][T25002] ? dvb_device_open+0x36a/0x3b0 [ 891.413998][T25002] ? __pfx_dvb_device_open+0x10/0x10 [ 891.414023][T25002] dvb_device_open+0x36a/0x3b0 [ 891.414049][T25002] ? __pfx_dvb_device_open+0x10/0x10 [ 891.414076][T25002] chrdev_open+0x237/0x6a0 [ 891.414110][T25002] ? __pfx_apparmor_file_open+0x10/0x10 [ 891.414139][T25002] ? __pfx_chrdev_open+0x10/0x10 [ 891.414174][T25002] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 891.414209][T25002] do_dentry_open+0x735/0x1c40 [ 891.414242][T25002] ? __pfx_chrdev_open+0x10/0x10 [ 891.414277][T25002] ? inode_permission+0xdd/0x5f0 [ 891.414305][T25002] vfs_open+0x82/0x3f0 [ 891.414327][T25002] ? may_open+0x1f2/0x400 [ 891.414354][T25002] path_openat+0x1e88/0x2d80 [ 891.414392][T25002] ? __pfx_path_openat+0x10/0x10 [ 891.414428][T25002] do_filp_open+0x20c/0x470 [ 891.414461][T25002] ? __pfx_do_filp_open+0x10/0x10 [ 891.414504][T25002] ? alloc_fd+0x41f/0x760 [ 891.414539][T25002] do_sys_openat2+0x17a/0x1e0 [ 891.414564][T25002] ? __pfx_do_sys_openat2+0x10/0x10 [ 891.414589][T25002] ? __pfx_do_sys_openat2+0x10/0x10 [ 891.414615][T25002] ? __pfx___might_resched+0x10/0x10 [ 891.414654][T25002] __x64_sys_openat+0x175/0x210 [ 891.414680][T25002] ? __pfx___x64_sys_openat+0x10/0x10 [ 891.414716][T25002] ? rcu_is_watching+0x12/0xc0 [ 891.414743][T25002] ? rcu_is_watching+0x12/0xc0 [ 891.414770][T25002] do_syscall_64+0xcd/0x250 [ 891.414801][T25002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 891.414835][T25002] RIP: 0033:0x7ff90298cde9 [ 891.414855][T25002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 891.414880][T25002] RSP: 002b:00007ff903803038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 891.414905][T25002] RAX: ffffffffffffffda RBX: 00007ff902ba5fa0 RCX: 00007ff90298cde9 [ 891.414923][T25002] RDX: 0000000000000001 RSI: 0000400000000000 RDI: ffffffffffffff9c [ 891.414941][T25002] RBP: 00007ff902a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 891.414958][T25002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 891.414975][T25002] R13: 0000000000000000 R14: 00007ff902ba5fa0 R15: 00007ffe02adb938 [ 891.414999][T25002] [ 891.415009][T25002] [ 891.685363][T25002] Allocated by task 1: [ 891.689421][T25002] kasan_save_stack+0x33/0x60 [ 891.694107][T25002] kasan_save_track+0x14/0x30 [ 891.698785][T25002] __kasan_kmalloc+0xaa/0xb0 [ 891.703375][T25002] dvb_register_device+0x1d8/0x2310 [ 891.708573][T25002] dvb_register_frontend+0x5a7/0x880 [ 891.713851][T25002] vidtv_bridge_probe+0x45e/0xa90 [ 891.718871][T25002] platform_probe+0xff/0x1f0 [ 891.723467][T25002] really_probe+0x23e/0xa90 [ 891.727969][T25002] __driver_probe_device+0x1de/0x440 [ 891.733252][T25002] driver_probe_device+0x4c/0x1b0 [ 891.738271][T25002] __driver_attach+0x283/0x580 [ 891.743028][T25002] bus_for_each_dev+0x13c/0x1d0 [ 891.747884][T25002] bus_add_driver+0x2e9/0x690 [ 891.752556][T25002] driver_register+0x15c/0x4b0 [ 891.757318][T25002] vidtv_bridge_init+0x45/0x80 [ 891.762084][T25002] do_one_initcall+0x128/0x700 [ 891.766842][T25002] kernel_init_freeable+0x5c7/0x900 [ 891.772040][T25002] kernel_init+0x1c/0x2b0 [ 891.776373][T25002] ret_from_fork+0x45/0x80 [ 891.780790][T25002] ret_from_fork_asm+0x1a/0x30 [ 891.785549][T25002] [ 891.787865][T25002] Freed by task 24948: [ 891.791921][T25002] kasan_save_stack+0x33/0x60 [ 891.796600][T25002] kasan_save_track+0x14/0x30 [ 891.801279][T25002] kasan_save_free_info+0x3b/0x60 [ 891.806314][T25002] __kasan_slab_free+0x51/0x70 [ 891.811082][T25002] kfree+0x2c4/0x4d0 [ 891.814980][T25002] dvb_device_put.part.0+0x60/0x90 [ 891.820087][T25002] dvb_device_open+0x2a4/0x3b0 [ 891.824850][T25002] chrdev_open+0x237/0x6a0 [ 891.829275][T25002] do_dentry_open+0x735/0x1c40 [ 891.834041][T25002] vfs_open+0x82/0x3f0 [ 891.838103][T25002] path_openat+0x1e88/0x2d80 [ 891.842700][T25002] do_filp_open+0x20c/0x470 [ 891.847206][T25002] do_sys_openat2+0x17a/0x1e0 [ 891.851877][T25002] __x64_sys_openat+0x175/0x210 [ 891.856721][T25002] do_syscall_64+0xcd/0x250 [ 891.861221][T25002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 891.867118][T25002] [ 891.869434][T25002] The buggy address belongs to the object at ffff8881467a4200 [ 891.869434][T25002] which belongs to the cache kmalloc-256 of size 256 [ 891.883485][T25002] The buggy address is located 24 bytes inside of [ 891.883485][T25002] freed 256-byte region [ffff8881467a4200, ffff8881467a4300) [ 891.897193][T25002] [ 891.899508][T25002] The buggy address belongs to the physical page: [ 891.905916][T25002] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1467a4 [ 891.914757][T25002] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 891.923248][T25002] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff) [ 891.930882][T25002] page_type: f5(slab) [ 891.934864][T25002] raw: 057ff00000000040 ffff88801b041b40 dead000000000122 0000000000000000 [ 891.943444][T25002] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 891.952028][T25002] head: 057ff00000000040 ffff88801b041b40 dead000000000122 0000000000000000 [ 891.960696][T25002] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 891.969362][T25002] head: 057ff00000000001 ffffea000519e901 ffffffffffffffff 0000000000000000 [ 891.978025][T25002] head: 0000000000000002 0000000000000000 00000000ffffffff 0000000000000000 [ 891.986686][T25002] page dumped because: kasan: bad access detected [ 891.993094][T25002] page_owner tracks the page as allocated [ 891.998797][T25002] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 16615124628, free_ts 0 [ 892.018507][T25002] post_alloc_hook+0x181/0x1b0 [ 892.023274][T25002] get_page_from_freelist+0xfce/0x2f80 [ 892.028742][T25002] __alloc_frozen_pages_noprof+0x221/0x2470 [ 892.034643][T25002] alloc_pages_mpol+0x1fc/0x540 [ 892.039505][T25002] new_slab+0x23d/0x330 [ 892.043663][T25002] ___slab_alloc+0xc5d/0x1720 [ 892.048343][T25002] __slab_alloc.constprop.0+0x56/0xb0 [ 892.053718][T25002] __kmalloc_cache_noprof+0xfa/0x410 [ 892.059003][T25002] bus_add_driver+0x92/0x690 [ 892.063587][T25002] driver_register+0x15c/0x4b0 [ 892.068349][T25002] vidtv_bridge_init+0x45/0x80 [ 892.073115][T25002] do_one_initcall+0x128/0x700 [ 892.077874][T25002] kernel_init_freeable+0x5c7/0x900 [ 892.083073][T25002] kernel_init+0x1c/0x2b0 [ 892.087404][T25002] ret_from_fork+0x45/0x80 [ 892.091819][T25002] ret_from_fork_asm+0x1a/0x30 [ 892.096579][T25002] page_owner free stack trace missing [ 892.101936][T25002] [ 892.104252][T25002] Memory state around the buggy address: [ 892.109873][T25002] ffff8881467a4100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 892.117926][T25002] ffff8881467a4180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 892.125981][T25002] >ffff8881467a4200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 892.134032][T25002] ^ [ 892.138875][T25002] ffff8881467a4280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 892.146929][T25002] ffff8881467a4300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 892.154978][T25002] ================================================================== [ 892.182535][T25002] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 892.189760][T25002] CPU: 1 UID: 0 PID: 25002 Comm: syz.3.5466 Not tainted 6.14.0-rc2-syzkaller-00228-g04f41cbf03ec #0 [ 892.200534][T25002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 892.210598][T25002] Call Trace: [ 892.213871][T25002] [ 892.216798][T25002] dump_stack_lvl+0x3d/0x1f0 [ 892.221392][T25002] panic+0x71d/0x800 [ 892.225296][T25002] ? __pfx_panic+0x10/0x10 [ 892.229710][T25002] ? trace_irq_enable.constprop.0+0xea/0x140 [ 892.235698][T25002] ? preempt_schedule_thunk+0x1a/0x30 [ 892.241078][T25002] ? preempt_schedule_common+0x44/0xc0 [ 892.246542][T25002] check_panic_on_warn+0xab/0xb0 [ 892.251479][T25002] end_report+0x117/0x180 [ 892.255816][T25002] kasan_report+0xe9/0x110 [ 892.260236][T25002] ? dvb_device_open+0x36a/0x3b0 [ 892.265171][T25002] ? dvb_device_open+0x36a/0x3b0 [ 892.270107][T25002] ? __pfx_dvb_device_open+0x10/0x10 [ 892.275390][T25002] dvb_device_open+0x36a/0x3b0 [ 892.280160][T25002] ? __pfx_dvb_device_open+0x10/0x10 [ 892.285440][T25002] chrdev_open+0x237/0x6a0 [ 892.289861][T25002] ? __pfx_apparmor_file_open+0x10/0x10 [ 892.295412][T25002] ? __pfx_chrdev_open+0x10/0x10 [ 892.300356][T25002] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 892.307124][T25002] do_dentry_open+0x735/0x1c40 [ 892.311892][T25002] ? __pfx_chrdev_open+0x10/0x10 [ 892.316834][T25002] ? inode_permission+0xdd/0x5f0 [ 892.321770][T25002] vfs_open+0x82/0x3f0 [ 892.325836][T25002] ? may_open+0x1f2/0x400 [ 892.330164][T25002] path_openat+0x1e88/0x2d80 [ 892.334767][T25002] ? __pfx_path_openat+0x10/0x10 [ 892.339719][T25002] do_filp_open+0x20c/0x470 [ 892.344229][T25002] ? __pfx_do_filp_open+0x10/0x10 [ 892.349269][T25002] ? alloc_fd+0x41f/0x760 [ 892.353603][T25002] do_sys_openat2+0x17a/0x1e0 [ 892.358276][T25002] ? __pfx_do_sys_openat2+0x10/0x10 [ 892.363473][T25002] ? __pfx_do_sys_openat2+0x10/0x10 [ 892.368670][T25002] ? __pfx___might_resched+0x10/0x10 [ 892.373965][T25002] __x64_sys_openat+0x175/0x210 [ 892.378815][T25002] ? __pfx___x64_sys_openat+0x10/0x10 [ 892.384186][T25002] ? rcu_is_watching+0x12/0xc0 [ 892.388952][T25002] ? rcu_is_watching+0x12/0xc0 [ 892.393715][T25002] do_syscall_64+0xcd/0x250 [ 892.398220][T25002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 892.404118][T25002] RIP: 0033:0x7ff90298cde9 [ 892.408526][T25002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 892.428130][T25002] RSP: 002b:00007ff903803038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 892.436541][T25002] RAX: ffffffffffffffda RBX: 00007ff902ba5fa0 RCX: 00007ff90298cde9 [ 892.444512][T25002] RDX: 0000000000000001 RSI: 0000400000000000 RDI: ffffffffffffff9c [ 892.452482][T25002] RBP: 00007ff902a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 892.460448][T25002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 892.468414][T25002] R13: 0000000000000000 R14: 00007ff902ba5fa0 R15: 00007ffe02adb938 [ 892.476385][T25002] [ 892.479615][T25002] Kernel Offset: disabled [ 892.483928][T25002] Rebooting in 86400 seconds..