last executing test programs: 8.23627643s ago: executing program 0 (id=2736): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) connect$auto(0x3, 0x0, 0x54) mmap$auto(0x0, 0x40009, 0x1000036, 0x9b72, 0x7, 0x28000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptyya\x00', 0x40001, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) r1 = socket(0xa, 0x5, 0x0) bind$auto(r1, &(0x7f0000000040)=@qipcrtr={0x2a, 0x0, 0xfffffffe}, 0x69) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x4, 0x7ffffffefffeffff, 0x205) r2 = io_uring_setup$auto(0x6, 0x0) r3 = fcntl$getown(0xffffffffffffffff, 0x9) rt_tgsigqueueinfo$auto_SIGCONT(0xffffffffffffffff, r3, 0x12, &(0x7f0000000400)={@siginfo_0_0={0xffffffff, 0x6, 0x3, @_kill={r3}}}) madvise$auto(0x0, 0x200007, 0x19) waitid$auto(0x6f, r2, &(0x7f00000002c0)={@siginfo_0_0={0x6, 0x2, 0x0, @_sigfault={&(0x7f00000001c0), @_trapno=0x2}}}, 0x2, &(0x7f0000000340)={{0xfffffffffffffff9, 0x1}, {0x2, 0xa}, 0x9, 0x3, 0x7fffffffffffffff, 0x5, 0x4, 0x0, 0xe, 0x2, 0x8000000000000000, 0x0, 0x5, 0x80, 0x2, 0x1c7c}) prctl$auto(0x7f, 0xfffffffffffffffd, r3, 0x5, 0xfffffffffffffffb) mmap$auto(0x0, 0x5, 0xdf, 0x9b72, r2, 0x800008000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) process_mrelease$auto(0xffffffffffffffff, 0xff) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) r4 = socket(0x2, 0x801, 0x100) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00'}) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4080}, 0x40054) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_fd, r4, 0x9f, 0x0, 0x1, @relative_fd, 0x5}, 0x96) 8.130782944s ago: executing program 3 (id=2737): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/oom_score\x00', 0x80000, 0x0) read$auto_proc_single_file_operations_base(r0, &(0x7f0000001280)=""/143, 0x8f) semctl$auto(0xc6b, 0x0, 0x0, 0x9) 7.529629118s ago: executing program 3 (id=2739): r0 = bpf$auto(0x3, &(0x7f00000000c0)=@query={@target_ifindex, 0x7, 0x400, 0xfffff001, 0x3, @prog_cnt=0x7fff, 0x0, 0x8, 0xffffffffffffffff, 0x800000000, 0x100000001}, 0x8) ioctl$auto_dma_heap_fops_dma_heap(r0, 0x80000000, &(0x7f0000000180)="232c37b9733ace931613252166ba9b661f00aabd0388d01d25b12f0c068d12369ab78e6909ea7f193ec8cac0f9b144896a559e0059b8207d5195d97331fbf1571c462cd0c30820f144fc5728b149335dee05cf8f5da17a4b25917c77a3464a5ac5e3c5bcb4481a581488f6ac1d538548b1087aeb2a886f3f90715e1cd182d5cac10736b6caa6079220c0092efebdc58ae772b6e9c6e356769665594d5599b6bd109d57da5e3119602bfbc559194ae4bb4f1b955e40e8c274842b74e3ecfd339a32d3514af34e597bf0219040820a1e05d9347d1982f870a0c8036b7dc6") mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_SET_PMKSA(r0, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0xb4, r1, 0x8, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_WPA_VERSIONS={0x8, 0x4b, 0x81}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x95, 0xac, "9812c2346350b2c34ab5dd95b0c15842a05133d4a53450623536ec21b60fed8e794272a2dbb9e2bd6e5c1cce36dd7382355c356e984d0e6df76e059ca48066dd6c2cdbc50b94a7fc81c7dd5d916e0da1ea8c7c964ae5d9b11df69397fee09ea5ab6c6b3bb732d17b39184a869b3eb8e92d3f519212ac172ae0a3f76edda5c9bf372cb556d2cedc28843c55ee55878570b4"}]}, 0xb4}, 0x1, 0x0, 0x0, 0x800}, 0x4000010) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x20009, 0xfffffffffffffffe, 0xeb2, 0x401, 0x8000008000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) memfd_create$auto(&(0x7f00000003c0)='nl80211\x00', 0xfff) select$auto(0xffffffff, &(0x7f0000000040)={[0x54, 0x10, 0x800000c8be, 0x8, 0x273a, 0x0, 0xb, 0x5, 0x5, 0x330, 0x7, 0x200cf, 0x45, 0xc, 0x5, 0xb98]}, 0x0, 0x0, 0x0) sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf25020000002c00018028003c8008001b"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(0x3, 0x0, 0x8, 0x6, 0x0) socket(0x2, 0x1, 0x0) listen$auto(0x3, 0x81) listen$auto(0x3, 0x0) write$auto(0x3, 0x0, 0x3f00) 7.103209696s ago: executing program 3 (id=2742): mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) prctl$auto_PR_RISCV_SET_ICACHE_FLUSH_CTX(0x47, 0xe, 0xffffffffffffffff, 0x25, 0x8) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x84, 0x8, 0x0, 0x0) 5.948173687s ago: executing program 3 (id=2748): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x103, 0x0) ioperm$auto(0x7, 0x6, 0x2) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r1 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r1, 0x5, 0x0, 0x5) setresuid$auto(0x1ffffffffffff, 0x0, 0x80080008080) mmap$auto(0x4, 0x2020009, 0x7, 0xeb1, r0, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x18, 0x3, 0x40006) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffff7ffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) time$auto(&(0x7f00000001c0)=0x5) rseq$auto(0x0, 0x8004, 0x0, 0x6) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0x3, 0x80000, 0x300) prctl$auto_PR_SET_ENDIAN(0x14, 0x5, 0x0, 0x9, 0xfffffffffffffff9) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) setgroups$auto(0xe32, 0x0) 4.595079316s ago: executing program 0 (id=2756): mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) prctl$auto_PR_RISCV_SET_ICACHE_FLUSH_CTX(0x47, 0xe, 0xffffffffffffffff, 0x25, 0x8) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x84, 0x8, 0x0, 0x0) 3.525420871s ago: executing program 2 (id=2762): mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638a2a513, 0x0) socket(0x2b, 0x1, 0x1) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/traceSMB\x00', 0x40c01, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, 0x0, 0x0) r1 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/current_tracer\x00', 0x1a3642, 0x0) writev$auto(r1, &(0x7f0000000100)={0x0, 0x8}, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) unshare$auto(0x40000080) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x34, 0x65f, 0x7fffffff, 0x7, 0x3, 0x20000002, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x8, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x2004, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0x1, 0x3, 0x0, 0x6, 0xfffffffffffffffd, 0x200000000001, 0x3, 0xffffffffefffffff, 0x200000000000004, 0x0, 0x0, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x4, 0x6, 0xffffffffffffffff, 0x890, 0x8000000000008, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x4000000000, 0x10006]}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r3 = epoll_create$auto(0x3e) epoll_ctl$auto(r3, 0x1, 0x8000000000000000, 0x0) read$auto_tap_fops_tap(r3, &(0x7f0000000000)=""/83, 0x53) r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x4000, 0x1) renameat$auto(r3, &(0x7f0000000080)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00') 3.160205049s ago: executing program 0 (id=2764): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0xe8) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) read$auto(r1, &(0x7f0000000280)='nl80211\x00', 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) ioperm$auto(0x7, 0x6, 0x2) pread64$auto(0xffffffffffffffff, 0x0, 0x4, 0x7) copy_file_range$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0) socket(0xa, 0x2, 0x88) r2 = socket(0x2, 0x6, 0x0) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x3, 0x3a) setsockopt$auto(0xffffffffffffffff, 0x2b, 0xd0, 0x0, 0x18d7) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000001b40)={'batadv0\x00'}) r5 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r3, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000000)={0x30, r5, 0x21, 0x70bd26, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80) msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000140)={{0xb, 0xffffffffffffffff, 0xee00, 0x7, 0xb034, 0x5, 0x5}, &(0x7f00000000c0)=0x8, &(0x7f0000000100)=0x6, 0x80006, 0x4, 0x2, 0x2, 0x3, 0x0, 0xc, 0x3, @raw=0xfff, @raw=0xac6}) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000ac0)={0x0, 0x0, 0x0}, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x800, 0x0) ioctl$auto(r6, 0x4b65, r6) mmap$auto(0x0, 0x40008, 0xb3, 0x9b72, r0, 0x28000) write$auto(0xffffffffffffffff, 0x0, 0x40) 2.53142747s ago: executing program 1 (id=2765): socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0x80000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x2c, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd]}, 0x1fe, 0x81) read$auto(0x4, 0x0, 0xfdef) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x4000000000000}, 0x40000) 2.519292071s ago: executing program 3 (id=2766): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x103, 0x0) ioperm$auto(0x7, 0x6, 0x2) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) r1 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r1, 0x5, 0x0, 0x5) setresuid$auto(0x1ffffffffffff, 0x0, 0x80080008080) mmap$auto(0x4, 0x2020009, 0x7, 0xeb1, r0, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x18, 0x3, 0x40006) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffff7ffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) time$auto(&(0x7f00000001c0)=0x5) rseq$auto(0x0, 0x8004, 0x0, 0x6) madvise$auto(0x0, 0xffffffffffff0005, 0x19) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) setgroups$auto(0xe32, 0x0) 1.861111043s ago: executing program 1 (id=2767): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setresuid$auto(0xffffffffffffffff, 0x8, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x9, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0xc) setsockopt$auto(0x5, 0x104000000000010e, 0x2, 0x0, 0x16) 1.664956284s ago: executing program 0 (id=2768): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setresuid$auto(0xffffffffffffffff, 0x8, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x9, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x10, 0x2, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00') sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a"], 0x1ac}}, 0x40000) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_enter$auto(r0, 0x3, 0x8, 0x3, &(0x7f0000000000)="5e16821c0211c4da723aaf9ce32264a2803f24ce66244037e2806178ccf238d0bf0d9a9178ed16d4158d8d135c0c30c7b93fd8", 0x1) socket(0x10, 0x2, 0xc) setsockopt$auto(0x5, 0x104000000000010e, 0x2, 0x0, 0x16) 1.660917701s ago: executing program 2 (id=2769): r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(0x0, 0x2) (async) memfd_create$auto(0x0, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0xe8) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) (async) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x40008, 0xb3, 0x9b72, r2, 0x28000) mmap$auto(0x0, 0x2020009, 0x100003, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x6, 0x0) setsockopt$auto(0xffffffffffffffff, 0x0, 0x5, &(0x7f0000000180)='\b+l\xf1\xef\\%\xe9p\xd1\f#\xa2\x80\x1d\x87Q\'F\xd1\xff\xf7/0\n\xd3\xc5\x89\xf6;x\xdd\x8aM\xb4\x8f1\x15\x89l\x9b-w\x8e\xf0\xbf\xca|\xce3c1w\x1c(\x8e\x1f\xa4\xb9\xc7gO\xb0\xee\xa5\x11l\xa2w\xbc\xdf\x9d5\xa2\xc6=\x85`\xde\xbcq\x15\xfa\x9c!m\xc0\xb9B\x1e\x90]\x84\xbe\x0e~a\x02\x8fvm\xf9\t\x9d\xbb4[\x81\f\xbc\xe2S\x93\xe1\x89\xb5\xde\xc2\xcc=D\xc1V\xaa', 0x9) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) (async) socket(0x10, 0x2, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) statmount$auto(&(0x7f0000000080)={0x6, @raw=0x6, 0x0, 0x400, 0x1}, &(0x7f0000000280)={0x6, 0x0, 0x6, 0xe, 0x5, 0x8, 0xeb91, 0x2, 0xffffffffffffff53, 0x1000, 0x4, 0x104, 0x7fffffff, 0x10000, 0x7f, 0x0, 0x425d, 0x5, 0x26f, 0x5, 0x9, 0x7, 0x8, 0x7, 0x9ca5, 0x101, [0xc38, 0xd, 0x100000000, 0x2, 0xf38, 0x1, 0x10001, 0x0, 0x9, 0x3, 0x10000, 0xfffffffffffeffff, 0x1, 0x1, 0x3, 0x7ff, 0x1, 0x4f4, 0x2, 0x9, 0x3, 0x40, 0x1, 0x80, 0xf9, 0x6, 0x7ff, 0x8, 0x7fffffff, 0x0, 0x80, 0xe22, 0x71, 0x6, 0x2, 0xdce9, 0x8001, 0x9, 0x100000000, 0x3, 0x901c, 0x5164, 0xffffffffffffffff, 0x8000, 0x5, 0xffffffff], "d7af6121e8e25f7fe8a44cdf68a046ba1487fa717722a2364cfca7279aed92b62115671e4f0b5eb81f5c07250a7305da098082fe4f9ecda3c9ae25b371100753baebf9b5e9442d6bd882a25677325b1b85c47410b4bc61613dd86b4b163b4eda3c9b0005aa9368ae332822a27bea361d9b324ed216a52f29da743bf0a5eb18"}, 0x9, 0x7) sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={0x14f4, r0, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x33, 0x1, 0x0, 0x1, [@generic="f2656b96c6b2a22702a74a803e4778a2408b73bc879d7c4e2a53ca06f50ebe0f3e90760a26a6a4763828b95e92c0bf"]}, @OVS_FLOW_ATTR_ACTIONS={0x14a7, 0x2, 0x0, 0x1, [@generic="f2aef3e6cc267a2fe638e28d336d2957668d80401a31f2aa7522d19a258633472816e5f23aeaa60991bd95d2868b27280762cb0ab4b1dab300f48ca19589fe6059c951f3e7bd04213dd496e411a5945bb43722fcdd88b495309c2ef9efa59ea807ddfa7b21a1a9bfb20a5310d15cf7d907ff67d5a5e0f1bbd9d244e644fe9b", @nested={0x189, 0x104, 0x0, 0x1, [@generic="1313b53eebc9d9e32836ab8f900388ceb0fcc15179d9191f8cddea556ced83bb53dc0466650e2e43034f431d41bbd6c8d95f39d9f02bfca34b2c885e136ad2f7f0808b99ee045376237a48996f3ac854293920f791be9c6f9ba82863bbc37a8421810904451b2f48a609dbeaef0a228b900343c0d0cf062f776529797b26e1a3876f8910ebe2518453518f85d4994a50dedde42835dd05c3b54cd85d6590533bd273a88a9d471952863015432ae6208b9766c4f2b1", @typed={0x8, 0x3a, 0x0, 0x0, @u32=0x4b56}, @typed={0x8, 0xa4, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0xa7}, @typed={0x4e, 0xe9, 0x0, 0x0, @binary="c52adf0a27e25085dfd2b4b68bd68a6fc4536e173749d2639419e1dee72ad934fcb8021e546a209d3cbda60007262a04fcf9697914c7abd6adf35173bbf8e17372380b8b6f82341e0cd0"}, @generic="a20d5f8d623c04f605178214fcaeff62c9032ef06636af91a83ebda924f729b667118b42a7f9eb4ad74429696656e33254a92ba7c0066566413c2abd05af52b56a777eb075ba1e2edf0b9f7351dbde10d7edc4328adf2113218182ea402f11038004e6cf7f5e440b2eee19e8"]}, @nested={0xeb, 0x12c, 0x0, 0x1, [@nested={0x4, 0x6}, @generic="c609c77f6bdc530e53", @generic="1a530d4e41ac7a7fb2e63cd9eb821433d288b5d7dd77c8c68fa9b498d289d8aa83", @generic="28ad92c27afcbd872726d1505107128aad5a3a91ac68b77f632b044d51ce", @generic="c54b511e031bbbc1bd46a14c5ed28b8d1d7bc4713b31a45524f4a1971280f1c226f74e9c1126c64bf245ce30e5936fe909c3ecc181f4639e8ab0a0a906d946f86d77c216ca8eb2c2121808eef8c9495ee63d37cec131f2a72678b88b655cc785c9342cb117ec21aac037ba0f3ad50309b5a95f7ee593ce88b1ef4468a9ad19064bb63e1e094548cb5f9c70dbc98600029b5cbaf1bcb295594b2478"]}, @nested={0x105c, 0x114, 0x0, 0x1, [@typed={0x8, 0xcd, 0x0, 0x0, @fd=r1}, @generic="814975fbadcc209a802b3241fa91bef795c2a4e80cfca592a2933bff544b318db7c8663c68b08e798d2950252b", @typed={0x4, 0x5b}, @generic="8eebc302fc3b5b926ecb3efd6c38810b1a88d968f11c37aff4fd02a7be0b10", @generic="77f096ba093922b97a03e83c2157797441ac9f553c4a99faeb7a66a37911111c24d958c8e4f5c9dc77a24d587fd363dd1fb8e04faba98d8759a0fef567e7beca1b264263eae79ba4e438d6e85bf7a41fe1329f2c079e33bc85a06d10ce951cf942467ebc0a2215856f7b0f40373a2bbf4fd1cbe5b1100c6338521ab845ab9562ca6041ff3592abda196315b4dc4bc15cafbb3e9e5839d1315efa11334690c3060efac8f47316365466ed350e49e3ecc1f3ac22873fc86036d1b44c6c9d086caf681a96dcc6a5c314bee9957b429138cd4d0ce80ed284bb18690d056dd7c9ba080441b019bde7ea9a17ab8e50637b5a6be8de6c0501645aed361b517b8b9be33ba32d76405ee32974b0e8e498f692b0b93900a56e988102e84923b8810eab2f23f8d6dfbd7de9dd5b75e838eeca9fe3626e2cece2753f2f5b89df5accbbabd7b02eed29e2eb71f5dfa55cbbbab6252e601779f9cef007625f151f6a7b3d7feb45b7f3b391ee2e95825997c6335cc0daeb2928daeda614e50246f17073dec1ebcb6855aa11de1f87ce7903e0cd7b58c49d51c32a8a5e1bcfe2a9db95075c03c37ae815170524226dfee275e633dd07c77e1548d0ccfe29c096d34c800397fbd2302a9d5a3c8e8a7f9e55dafa9538fca4dd8a31a197de62017d067a9c2ad48db5b163f279d707bfb94dc3467162dc34ab0d10f24e600ed5241ac976a2bcd2adf15618b4ff06862d969ce8c7d948114d40cc489fd208e2f21f28c8fb197250bff8ed22e98f1efcc1d22714691fa8ec54dd926cc3846562d7adb448d605810d598ba6646a674775e40a6d58f517dbd8d534b019200a6191e06ff7876468cc563d8ca650ae33030813c1dc63fe5c8bd2b6f42cf25649efdc872981fcc03a3f456dddffc581f0bee36ff05ca59449ef46419e0a8349a556bb6ca7e06f77f848b43a23dfc494261471f9bfb31b7fc3f1fe0023a5ac88411ea357def39e4f86b4c9fa000ac49405daee14ae2f11e28cb73ec2bb2102f5830c4c9aedb7f16f933f41cd5f6f3ecc31d629893c1be11b2f797695ea656ca191d111d9f11847d479b8f39f3aba07d8e6c277452a8b07ff85eb9fbe6fe5033b3c3ecfe7646751353477517efda8e7df7c99ada507dd125e765c03888c46f90af862a3b8da3b3519d7f772a65de1d31cdd414d4d71c55fd72769fd68c57385d07069abd0d14089aa71a277bb11d7dd8f606944ba541fdf6cfc5f5e07f6c6a6f61dcc840afb0a001c7f6a3701daec02d114c7d8b9e39e6935ae05df28cf4b2bb16366fd12cb793cff60049b1df2cdf7ad2b90c7b04b4c3d2b31af6ee29a3a58bd62161bd459d5d385fa0071e946da995f1a304d39da388b6483e275a3e529329e81aceed316f52181556b79298e2377ac06612cd46967bbd23d0e97056bb032685690f2f96ce5f777238b7c3a0fd37a83a6b5f37fd7d38e2e0857bfba1d5003d7a5e4eb37dbfdd788021de771ee99825d77cac94e86b9424bca6c74f65b88da88765afbaf230d58ae894beab83aef3872e200215c059d81a67cb32b1eb46dd3227dec1772673a3b0193f916eebfde2884d7f797426cba0862f382f0b7875a77b098425b64e31d1af9de4c1e57f419af3614198d5632107420c56cbf149446b08737769e866d2b756eb6bc5e6acf33b693f8d94a0780236f53da39dacfce0ced020ebc7037a8d3b0a6f788ecfb88ebe88cc06b29dcb1bdd42f11cdb665163831e34ff6b776bad6f8c5a4c84f53a3aaaa235d651cdf30bb896a719bac1733126d1c02c2ced3b4d8dfb31bf148bbe42f45587dc889b2ad8865ba68228c9fe0bc5bbba24a0dd273752314e2d151bfc4e2e408b293f99a67ece0644040dfa293f08f056ac464b7067729d68b0b3ad36599540c5fa0e437cb04298727ffe1d41da691c944f3d912754c71fb5e6f5366d8bb46bae5f43242fd6f3ac1ed33b785d3c21964c2a6defba9bdef3cda4400ee5f6e39f34946e76241f57b9155e1d5ab9dee23a798b7d1679267294b1737121cf667628ec885c30f4bcd029cd7b42523de540427fca4a91c4709cde0f651f4eba6ac9c4d6c5377c556883fad05558fe3c12fe10558457525e7b1d9539a48cf9052190a45aa27af9a15240ba7ca84f01e9ecf5c0e895a77e7586cbaea6e0cb99fe42bbf99adca731a20f20311628ad4e2f53deda76f999ce388810d60bbd90bd27a7a1c75ebef84e70bfed9a6f6587536e8f78166b5a1670f8f886e35cfb96a6ec60a9d96679698cd1ec14966e42310a5849802aa9c519a511cc27b4c13a33af1a89729387f3772b0e6037a7a521e2a70b6db93eb9fd12c0d40d5f83cded5a5a61f5620912e8cf464b5ec09baa94e3a5b763af7b04e44f60a7099a404dc3f9a0f9ad66005a8b914d605140ea6ff4355c68aca89e07be0f72b4a87ce9695eea2e50206d8db1e94e615d6506cc062e7087c461d5d3490c7b75ae271821df924ac84fc7165f51fe69ca7355bd19ebf595d63d703a041bc48ad1dc68a92c26429efbf52556254e8d362f80ac8c0952349db88abd22ece561e011bedd099fa994e855dcddec9ae1399764ea05cb11f2d723f220bab5d6b6ba3663fbe04c37d6f46ab18e1931adecbd18097ca18f3dfd17cd09d803427a05835694da6fd7565582cdef5d5c9f07f73260447d9827de46e9f431aad0353cc828c0ae62509175d4ba4ddef539ae4467e986b94fa2039387dbe773896ae5b8a559343fadcdfc294c5e321a0f5ca465651327bc10f9921cb04bd14b8b62b9fa4f881cc8a23760f6d1552a92d82d0856fd4ad22f49b8448bcc94d7476a81b6a9b82fd9090d3c68c460563d568eb7f10a67a782af9505e03d7ffcecf4a721f19fdadf04e2f0f5fa7e9d5d27653ca399169c68057f9eac8276a768a4dcd13567c5ff991f0aa02d8a8b6e717348235471f9a22cde358a42c7d9f502931468dafe322f389bf5d007ab04b68fc02913c15f107931b3e7c63caac8d015f644ae73da2a43843b8d804850262eb8a1bb5c83fcdd56acb50893faa0ed7ef2d0fd333c27160180f098cc8e7e238bd7a71bd94c9793ebc067315e4feb00eb5c0dbc6e6d40199e7e5a7fa1d685609f1e72c3e433344c320ed6161bc2646a6b7d688a638f775e2a7eb8498848be5346f3faebc50e0641edc6b31b38d9df1628b40c3600816bb244001ba63ca93c127916ff393ccc8ad99287662457ddc80359440be4ca2e2305eeb71839a92f463df179ade6a20d324c1b7c2c753431d05a62c2b99001d54190c49beaca180b95fbd58196f4fd3ec329bf3e0a7c6fa6e990b9eef947a9f927cb062d928c6ca264a77c3fcad2eb8f2a403089030f4b9d2186fa5c560da94dc57ae4f40380407f58c10b7f01fb69f4a928a779b3bc3a1c41a25abc713c687f60e24f36ce73d5ad9a4a826748addb1fd7084f98f5eaae979060faafc9d7d69f234e5e222453119a77c1f5461d9bc5a01b2cc6a677d721310472885c285ac726bd39df98a3b075f318b9fd395cc5e6f2977e808ac335d1a026f54d3b3595bc0a3ace6abe65156bda5fb3c07682f16faed5c3abdab96b48403cb3ee509a889422853022c6b713e253f704618b6e0b416e938819166329233b4c0689c2c529496bf781d42844ceaca538b1bf9d6581bd0a2c3eeb96cb24726c875290acc8f176a3e88b49883707a8d86b59e6e735880fab038f7288cd27825cdfe4a469347204dd1f052f357bf405460bbee421c182b1326461e2ea73a23cd2e60039b04be330d1caa8c1c67453d9b497b013ddf49480ea79030f2d7c58c6ad878f4d158bb178c951f640db9ec5e2499c56f0cad8ed9925bf9c701209ea9fcc5357e7fb8abc1fafda5eb0f234081f8157233b2a1774dec40403e6949147bb16e097acce369ff20e0898ff81238fc45fd3b2dce4570ee253ae268ed1efc35546db3b0fce22f16ebfb86431f65a6b31cda0dbc261147ecbd87ec74f08dcc2d646be6281ca15c18ab8ccce06d15ffb71e19e830a74be9a274fade54897337da88bbb6165cbd3661318cc703f074cf7cdae7ef0798fd605ce017d7b02bfbc9ed560dbc4adf2dbffb622b0e2368ab27656d88ad16e424fe67f37292a815baaa025e5a07e81adb1c367f2d3290dcda48badc2cebb81c0b53921f3fb89d6cc32e3fac355519f1d25ae8da8b57f20a1a9e90b2b54f3bf17f86730a319828f43eada6303d096b346c8723b6ea0948083924a59e89d6ec6f9e6f4b0b8d871d864be6e145123b1dfac668fe44fa6434aa51866e54561630ef56c11bfc9165831e57bc22754c0de62a6cc2dae05a20c48b335015ddd18d0712d69f89179dc8f1aa9dd7b9c46402937fabbeba579124e5fe2b952c5ff00bbabee8ffcc422274d48ca0731aba8e6ebce301a7aa4620e1893bdbc9f47f83f7bd7e8bd4314e8ec684af86295480a626d5104187a284341a041c9c39ef2dc753d401bfe1d6e49bada08a9b3e5b1a2df04a4237b894276c8fd52c62a57556e97501be72f7edd9431cecfc8f226f825256f585ac22bdd0a8f35121dd3dbbc562d4c38c4952559813827f7fdc93c35db0ff95cf389fd445fa838c7fb47f0206ec2c4b874c979b49fc0837ef425df1d4ff8c71f02dd17d68b519a485cb89822bc01479fd430e77a6d52b560c70ddf146cc4be788ab6e4db01bf6733c0bb5e1bb3bbb1993b9455435da2121e42adc4ddb134f0dc0bd979986bd89d814eb1ecfcf3797b534f6f9aafa98cf8d2e12a6469a686bd79e27e820acccb26de6c59cb817f5bc3c0154efcce42889cea837111e623233f49fada2bf2dd5d1e5e9553a462e8d624ce7582d442970a80b91e9ca9e5b13f070765dd88d62b07c1ab58a535d74025d98952cda2d8f06c01948643c2d300cffd2bff5d42979a0470c61cc0bfc567259eff2e50803d5a8591e4cebcb94c981adb3f04c45b581a736ea2ba642004c0bc6e4bacda09346d8a399472ab6dd5c0ed54627a38317c97c8ce41238fc391ebfb7a97c43bff1bc20538567b40a36b780d9064b582be902fdc73571aa008fa696083c670f1f787f4944eab1eab1e61ec5a6ef861bdcfb3f3e222a5b09d07bd6b100beab3009a2260eda0f23fbcc64e20b55917c9df53da55fcd7adeb581fa9db0985a2e5f42e4b2124fd1c4a3e7120424dbe6a8c32ed02605ed1402f94deef0f03a46ca3e37b95df5c77c83c10fffaa3121e2f8a51285d54e56a7362715298e66ceae5876291aafd78508bb29a40debe3bf40993cd6214e7190fcf41259bbb028c97e5d932723b73f25f7938a208ca27c486a3079888d37f0ac75bb85daf85c1c56ae72d22329502e48c1866a015c2d3d55091c7362c7ffd6add0fbec9f0cc6d20f94b91f905c5be569897334a77f8b75b53d559f018f9ab0717562a56fd0988b43664f9eaec4fc847d4712046e5e3fa52cd77506e3647303d6c49f31edb8d34b112d3c1eb626f84776126db8fba47a6223f0eb7dad71583fb25fdbac7df724f78453d48a149b12d0b5d9ebbba6c8c6e89821059cadf300a8858cdd7a84a24ebf3e6e9fee1864aa4827d23ede4628023ffdfb0362d8bd76e6cedc67a191df3642e755d8f1500d1da5dc84b9dd6eaf92f93d6cd54197d6e662446ccd57e1bc02a81fc0958809bb49d74038330531bceee41d682cff5354f989250e4dced04f1a05c92fc25dbeb2fee0fb3e5e8623360c4c8ccd0c4b5f85dacc49fe4bd9c7765f8bd5ea35f6a0f2cec0eff535381acf19c6a4ce898d480afda2f2ca557f31fef2e564a7235ea3d738f3"]}, @generic="52463e34b395532f6c336fa8ee5404ba690689e7a516992a3c169c1eee560e49c7a89138d1bf3680a2842c894b69f21a63320b9f34ab6f69", @nested={0x5b, 0x11c, 0x0, 0x1, [@typed={0x8, 0x5e, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x17}}, @generic="768e60a368f4aec58a7ce958a3cd7282db0e5a1cd902fda92b0d04fecc51f5f1d7340574ea8bd363f2cd2ff56ceb20ba3a3bd70b602a54", @generic="2549e93633090fb56ae5e1dd8ec884c35930c037ec423280"]}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0xb1, 0x0, 0x0, @fd=r4}]}, @generic="b29cdafae54436660f5d5fd50427f0e6b35a1fcc6e270b17ef635ebce3088ef4caf8e2440262b0b10049229a8655760bd37b3a4f9421abebdbc8e4698a433b269655a9f5b107d6bea45eb5f4f613f0b132f7be0fa65a07de9800e9e7970b8e63d51cd63c4b57621c91650c0ea0bdf3e97d8f186f613f363b091a032228bf83b67bc0bb654d6e5ac5709b1621182bf1498bf28ba69b061489882f13093268634734ee7922eae441a2e29f1ae0df3bd6b3"]}]}, 0x14f4}, 0x1, 0x0, 0x0, 0x24040071}, 0x800) 1.648311912s ago: executing program 1 (id=2770): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/tty/ttyv0/dev\x00', 0xa0240, 0x0) r1 = fspick$auto(0x926, 0x0, 0x10) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x4b000) r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec4\x00', 0x101901, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce25aafc24b9952f997e703f222ce1", '\x00', "0001410c", '\x00', ["f5404de9641f0000000060c1", "70d9a9a3af9f39d000000001", "ef5ac4927ad89c5c00"]}) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/64, 0x40) r3 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r3, 0x10f, 0x80, 0x0, 0x14) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4) msgctl$auto_MSG_INFO(0x10, 0xc, &(0x7f00000012c0)={{0x1000, 0xffffffffffffffff, 0x0, 0x3, 0xac1, 0x7}, &(0x7f0000001240)=0x4, &(0x7f0000001280)=0x1, 0x9, 0x2, 0xfffffffffffffff9, 0x4, 0x1, 0xc48e, 0xe, 0xc1d, @raw=0x81, @raw}) fstat$auto(r4, &(0x7f0000001440)={0x1, 0x5, 0xfffffffffffffffd, 0x6, 0xee00, 0xffffffffffffffff, 0x0, 0x7d, 0x7, 0x1, 0x6, 0x8417, 0x8, 0x74, 0x6, 0x9, 0x6}) keyctl$auto_KEYCTL_WATCH_KEY(0x20, r5, 0x0, r6, 0x8) bpf$auto(0xf, 0xffffffffffffffff, 0x0) ioctl$auto_XFS_IOC_PATH_TO_FSHANDLE(r1, 0xc0385868, &(0x7f0000001200)={r3, &(0x7f00000000c0)="d16a44fbae92b452a95565afa88ba8ea96c2858cdbd414e002d722ac9848c965fb2063666ab0f4e24925411396f7ae857bdd43927ee4f5da57e6ca665c146d903c6806aec69996e401780637d401e8fc70c760ac1ef8cca730d00f2c90772cbf35cdc7bd0ed066", 0x7e, &(0x7f0000000140)="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", 0x6, &(0x7f0000001140)="2bc0394198747156f7265f7e2e9e30cc786b79f26da0cdc97b1d8e6fadca440d59c71973382772693e78890fd7b2f4242baa3380b05d1a1d9d18f51600ab0678b4a590bdbca5060d73298dbec57c6c6ecf6fed4c688b848a50f2393a4631095ff208b980db38c9fc78b7370a7bc996e43825abee39980e268d6b73aec2bcb0ffc74624268aceeff9213ca70bc2118f7961670fafe95fd2f62ee518960781203483a1ddd82d939232d9806f19cef0", &(0x7f0000000040)=0x5}) 1.360368896s ago: executing program 2 (id=2771): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x10001, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') rt_sigsuspend$auto(0x0, 0x8) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/lo/disable_ipv6\x00', 0x0, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) clock_getres$auto(0x9a, &(0x7f0000000040)={0x3, 0xaa8f}) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/fib_multipath_hash_seed\x00', 0x2202, 0x0) writev$auto(r1, &(0x7f0000000100)={0x0, 0x6}, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0x2, 0x6, 0x1) r3 = getsockopt$auto(r2, 0x6, 0x23, 0x0, &(0x7f00000000c0)=0x28000) ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000140)={"e57bb8cf23ff85e6fdf0dbc3877df933f2e22be1c315fe88f115d534210f603b", 0x1, 0x7fff, 0x9, 0x4, 0x7, 0xffffffffffffffff}) tkill$auto(r4, 0x8) rmdir$auto(&(0x7f00000001c0)='}[,&*}\x00') 1.35937455s ago: executing program 1 (id=2772): mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) prctl$auto_PR_RISCV_SET_ICACHE_FLUSH_CTX(0x47, 0xe, 0xffffffffffffffff, 0x25, 0x8) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) r1 = socket(0xa, 0x5, 0x0) getsockopt$auto(r1, 0x84, 0x8, 0x0, 0x0) 1.308069421s ago: executing program 0 (id=2773): lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x100000000000001c, 0x280000000000, 0x63, 0x0, 0x0, 0x0, 0x1002, 0x4, 0x80000008040000a, 0x40000402, 0x7, 0x8, 0xffffffff80000000, 0x800000000000b, 0x6, 0x240000100103}) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) r0 = socket(0x10, 0x2, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x300000000000000}, 0x4004) 1.03659668s ago: executing program 0 (id=2774): unshare$auto(0x40000080) (async) unshare$auto(0x40000080) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffe, 0x1ff, 0x7, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x1ff, 0x0, 0x84, [0x3, 0x2, 0x0, 0x2, 0x0, 0x2000, 0x0, 0xe, 0x4000000070624ce7, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x4000, 0x0, 0x6, 0x0, 0xfffffffffffbfffd, 0x4, 0x1, 0x10000000000, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x400000000005b8, 0x0, 0x6, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88d, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x2, 0x1, 0x4]}, 0x1fe, 0xd) mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2, 0x801, 0x106) getsockopt$auto(r0, 0x6, 0xd, 0x0, 0x0) (async) r1 = getsockopt$auto(r0, 0x6, 0xd, 0x0, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1000"], 0x3c}, 0x1, 0x0, 0x0, 0x8814}, 0xf7374674b920089e) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x40, 0x0) (async) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x40, 0x0) fcntl$auto(0x3, 0x4, 0xa553) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x800, 0xfffffffc) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000011c0)='/sys/kernel/tracing/set_event_pid\x00', 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) close_range$auto(0x2, 0xa, 0x0) (async) close_range$auto(0x2, 0xa, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = pipe$auto(0x0) dup2$auto(0x5, 0x4) write$auto(0x6, 0x0, 0x100000001) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/loop8\x00', 0x5c9080, 0x0) splice$auto(0x4, 0x0, r2, 0x0, 0x80800001, 0xb) (async) splice$auto(0x4, 0x0, r2, 0x0, 0x80800001, 0xb) setsockopt$auto_SO_DOMAIN(r1, 0x8, 0x27, &(0x7f0000000000)='/dev/snd/pcmC1D0c\x00', 0x6) r3 = openat$auto_component_list_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) read$auto_component_list_fops_(r3, &(0x7f0000000100)=""/78, 0x4e) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='r'], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0x800000000000002}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0x0) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0x800000000000002}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) 936.224162ms ago: executing program 2 (id=2775): close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x3, 0x100) socketpair$auto(0x8, 0x7, 0x1, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/swaps\x00', 0x0, 0x0) read$auto_proc_pid_maps_operations_internal(r2, &(0x7f0000000040)=""/136, 0x88) setsockopt$auto_SO_ATTACH_REUSEPORT_EBPF(r1, 0x1, 0x34, &(0x7f0000000200)=':[%+\x00', 0x6) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) close_range$auto(0x2, 0x8, 0x0) 548.512121ms ago: executing program 2 (id=2776): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x966, 0x1, 0x800000000df, 0x9b72, 0xffffffffffffffff, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) ioctl$auto_HDIO_GETGEO(0xffffffffffffffff, 0x301, &(0x7f00000000c0)="7a95e47485716148e647054a8eceae6d7751cc210bd8bc2a50c17eee0d9496e2d7b69f0e03df8cbe39503fc4fd34a18954eb69b2132037c1104f8ab82ae4960f3aca0c4ad4506bf8dcb31f9edcfab1cd63aa7689cc61ec8e27856fabb06a2f1f27f634d45a6adeaea40080cf2ec3dde8082a9dc88381eaf0374ca22ce55567cf03ed850993bf897ff29e895dec7654") writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) semget$auto(0xffffff81, 0x4, 0x7) socket(0x1, 0x2, 0x0) 405.391538ms ago: executing program 1 (id=2777): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x0) sysfs$auto(0x2, 0x10000000000048, 0x0) r0 = fsopen$auto(0x0, 0x1) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xc040aed4, r0) close_range$auto(r0, 0xffffffffffffffff, 0x2000000) 282.608225ms ago: executing program 2 (id=2778): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000040)={0x3c, r1, 0x1, 0x70bd25, 0x25dfcbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0x2, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xffffffffffffff7d}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x40080) 134.571513ms ago: executing program 1 (id=2779): mmap$auto(0x0, 0x4020009, 0xdd, 0xeb1, 0x401, 0x8000) r0 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/cpuid\x00', 0x2, 0x0) read$auto(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x5, 0x2, 0x7, 0x0) r1 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r1, 0x0, 0xe) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x6, 0x0) r2 = socket(0xa, 0x801, 0x84) r3 = socket(0x26, 0x80805, 0x0) bind$auto(0x3, &(0x7f0000000000)=@generic={0x1d, "300d591f2aa59b764486be5aa222"}, 0x69) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/machinecheck/machinecheck0/monarch_timeout\x00', 0x2, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000140)="33aa0d7191af", 0x6) close_range$auto(r2, r3, 0x0) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) io_uring_setup$auto(0x9, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0) r6 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x2a482, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) read$auto(r6, 0x0, 0xbca7) r7 = openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x204000, 0x0) write$auto(r7, &(0x7f00000001c0)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x6) write$auto(r5, 0x0, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r8 = socket(0x1d, 0x2, 0x7) getsockopt$auto(r8, 0x6b, 0xdc5a, 0xfffffffffffffffe, 0x0) 0s ago: executing program 3 (id=2780): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/tty/ttyv0/dev\x00', 0xa0240, 0x0) r1 = fspick$auto(0x926, 0x0, 0x10) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x4b000) r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec4\x00', 0x101901, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000100)={'\x00', 0xffff, 0x6, 0x2, 0x9b4, 0x9, "ce25aafc24b9952f997e703f222ce1", '\x00', "0001410c", '\x00', ["f5404de9641f0000000060c1", "70d9a9a3af9f39d000000001", "ef5ac4927ad89c5c00"]}) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/64, 0x40) r3 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r3, 0x10f, 0x80, 0x0, 0x14) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4) msgctl$auto_MSG_INFO(0x10, 0xc, &(0x7f00000012c0)={{0x1000, 0xffffffffffffffff, 0x0, 0x3, 0xac1, 0x7}, &(0x7f0000001240)=0x4, &(0x7f0000001280)=0x1, 0x9, 0x2, 0xfffffffffffffff9, 0x4, 0x1, 0xc48e, 0xe, 0xc1d, @raw=0x81, @raw}) fstat$auto(r4, &(0x7f0000001440)={0x1, 0x5, 0xfffffffffffffffd, 0x6, 0xee00, 0xffffffffffffffff, 0x0, 0x7d, 0x7, 0x1, 0x6, 0x8417, 0x8, 0x74, 0x6, 0x9, 0x6}) keyctl$auto_KEYCTL_WATCH_KEY(0x20, r5, 0x0, r6, 0x8) bpf$auto(0xf, 0xffffffffffffffff, 0x0) ioctl$auto_XFS_IOC_PATH_TO_FSHANDLE(r1, 0xc0385868, &(0x7f0000001200)={r3, &(0x7f00000000c0)="d16a44fbae92b452a95565afa88ba8ea96c2858cdbd414e002d722ac9848c965fb2063666ab0f4e24925411396f7ae857bdd43927ee4f5da57e6ca665c146d903c6806aec69996e401780637d401e8fc70c760ac1ef8cca730d00f2c90772cbf35cdc7bd0ed066", 0x7e, &(0x7f0000000140)="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", 0x6, &(0x7f0000001140)="2bc0394198747156f7265f7e2e9e30cc786b79f26da0cdc97b1d8e6fadca440d59c71973382772693e78890fd7b2f4242baa3380b05d1a1d9d18f51600ab0678b4a590bdbca5060d73298dbec57c6c6ecf6fed4c688b848a50f2393a4631095ff208b980db38c9fc78b7370a7bc996e43825abee39980e268d6b73aec2bcb0ffc74624268aceeff9213ca70bc2118f7961670fafe95fd2f62ee518960781203483a1ddd82d939232d9806f19cef0", &(0x7f0000000040)=0x5}) kernel console output (not intermixed with test programs): 8] [ 564.529067][T14198] dump_stack_lvl+0x16c/0x1f0 [ 564.529113][T14198] should_fail_ex+0x50a/0x650 [ 564.529162][T14198] ? fs_reclaim_acquire+0xae/0x150 [ 564.529209][T14198] should_failslab+0xc2/0x120 [ 564.529244][T14198] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 564.529288][T14198] ? alloc_empty_file+0x73/0x1e0 [ 564.529322][T14198] alloc_empty_file+0x73/0x1e0 [ 564.529352][T14198] alloc_file_pseudo+0x13b/0x230 [ 564.529383][T14198] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 564.529413][T14198] ? do_raw_spin_unlock+0x172/0x230 [ 564.529445][T14198] __anon_inode_getfile+0xf8/0x370 [ 564.529484][T14198] ? __hrtimer_init+0x106/0x2c0 [ 564.529534][T14198] __do_sys_timerfd_create+0x209/0x410 [ 564.529604][T14198] ? do_syscall_64+0x91/0x250 [ 564.529654][T14198] do_syscall_64+0xcd/0x250 [ 564.529700][T14198] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.529747][T14198] RIP: 0033:0x7f4fce78d169 [ 564.529771][T14198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 564.529804][T14198] RSP: 002b:00007f4fcf5ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000011b [ 564.529834][T14198] RAX: ffffffffffffffda RBX: 00007f4fce9a5fa0 RCX: 00007f4fce78d169 [ 564.529855][T14198] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 564.529873][T14198] RBP: 00007f4fce80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 564.529891][T14198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 564.529910][T14198] R13: 0000000000000000 R14: 00007f4fce9a5fa0 R15: 00007ffd90637618 [ 564.529947][T14198] [ 564.977853][T14213] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 565.074329][T14213] sd 0:0:1:0: device reset [ 565.223387][T14219] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 565.269323][T14219] udevd[14219]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 565.360429][T14202] Process accounting resumed [ 565.526755][T14228] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 565.614203][T14223] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2270'. [ 565.678729][T14231] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 565.726226][T14231] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 565.796197][T14231] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 566.644603][ T5146] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 566.659973][ T5146] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 566.669227][ T5146] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 566.679226][ T5146] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 566.692123][ T5146] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 566.699758][ T5146] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 567.048854][T14254] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr [ 567.129784][T14256] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 567.588017][ T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 567.834369][T14261] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 567.942870][ T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 567.995172][T14248] chnl_net:caif_netlink_parms(): no params data found [ 568.341255][ T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.391377][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.397811][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.656199][T14248] bridge0: port 1(bridge_slave_0) entered blocking state [ 568.682504][T14248] bridge0: port 1(bridge_slave_0) entered disabled state [ 568.707918][T14248] bridge_slave_0: entered allmulticast mode [ 568.718878][T14248] bridge_slave_0: entered promiscuous mode [ 568.788934][ T5146] Bluetooth: hci4: command tx timeout [ 568.799615][ T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.862981][T14248] bridge0: port 2(bridge_slave_1) entered blocking state [ 568.879821][T14248] bridge0: port 2(bridge_slave_1) entered disabled state [ 568.896328][T14248] bridge_slave_1: entered allmulticast mode [ 568.915612][T14248] bridge_slave_1: entered promiscuous mode [ 569.033925][T14285] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 569.170084][T14248] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 569.258906][T14248] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 569.613162][T14289] openvswitch: netlink: Key 23 has unexpected len 16 expected 2 [ 569.658277][T14248] team0: Port device team_slave_0 added [ 569.710556][T14248] team0: Port device team_slave_1 added [ 569.735671][T14291] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 569.795171][T14294] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 570.290057][ T12] bond0 (unregistering): Released all slaves [ 570.377705][ T12] HfR: left promiscuous mode [ 570.499822][T14248] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 570.525220][T14248] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 570.567156][T14248] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 570.594857][T14298] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2290'. [ 570.610243][T14248] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 570.617255][T14248] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 570.687757][T14248] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 570.782838][T14301] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 570.821949][T14304] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 570.848523][T14300] openvswitch: HfR: Dropping previously announced user features [ 570.861222][T14248] hsr_slave_0: entered promiscuous mode [ 570.869163][ T5146] Bluetooth: hci4: command tx timeout [ 570.870720][T14300] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2292'. [ 570.893735][T14248] hsr_slave_1: entered promiscuous mode [ 570.903603][T14248] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 570.926079][T14248] Cannot create hsr debugfs directory [ 570.968515][T14300] openvswitch: HfR: Dropping previously announced user features [ 571.205737][T14311] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 571.236882][T14312] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 571.271066][T14313] netlink: 'syz.2.2295': attribute type 1 has an invalid length. [ 571.737014][T14329] FAULT_INJECTION: forcing a failure. [ 571.737014][T14329] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 571.847962][T14329] CPU: 0 UID: 0 PID: 14329 Comm: syz.0.2298 Not tainted 6.14.0-rc5-syzkaller #0 [ 571.848003][T14329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 571.848021][T14329] Call Trace: [ 571.848030][T14329] [ 571.848041][T14329] dump_stack_lvl+0x16c/0x1f0 [ 571.848089][T14329] should_fail_ex+0x50a/0x650 [ 571.848145][T14329] _copy_to_iter+0x465/0x1560 [ 571.848189][T14329] ? __pfx__copy_to_iter+0x10/0x10 [ 571.848221][T14329] ? __virt_addr_valid+0x1a4/0x590 [ 571.848261][T14329] ? __virt_addr_valid+0x5e/0x590 [ 571.848292][T14329] ? __phys_addr_symbol+0x30/0x80 [ 571.848323][T14329] ? __check_object_size+0x488/0x710 [ 571.848369][T14329] seq_read_iter+0x725/0x12b0 [ 571.848413][T14329] ? aa_file_perm+0x4d5/0xfe0 [ 571.848466][T14329] seq_read+0x39f/0x4e0 [ 571.848505][T14329] ? __pfx_seq_read+0x10/0x10 [ 571.848571][T14329] ? __pfx_seq_read+0x10/0x10 [ 571.848610][T14329] proc_reg_read+0x23d/0x330 [ 571.848657][T14329] ? __pfx_proc_reg_read+0x10/0x10 [ 571.848708][T14329] vfs_read+0x1df/0xbf0 [ 571.848752][T14329] ? __fget_files+0x1fc/0x3a0 [ 571.848798][T14329] ? __pfx_lock_release+0x10/0x10 [ 571.848843][T14329] ? __pfx_vfs_read+0x10/0x10 [ 571.848888][T14329] ? lock_acquire+0x2f/0xb0 [ 571.848930][T14329] ? __fget_files+0x40/0x3a0 [ 571.848977][T14329] ? __fget_files+0x206/0x3a0 [ 571.849035][T14329] __x64_sys_pread64+0x1f6/0x250 [ 571.849079][T14329] ? __pfx___x64_sys_pread64+0x10/0x10 [ 571.849135][T14329] do_syscall_64+0xcd/0x250 [ 571.849178][T14329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 571.849221][T14329] RIP: 0033:0x7f738138d169 [ 571.849244][T14329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 571.849274][T14329] RSP: 002b:00007f737f1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 571.849303][T14329] RAX: ffffffffffffffda RBX: 00007f73815a5fa0 RCX: 00007f738138d169 [ 571.849323][T14329] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 571.849347][T14329] RBP: 00007f737f1f6090 R08: 0000000000000000 R09: 0000000000000000 [ 571.849366][T14329] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 571.849383][T14329] R13: 0000000000000000 R14: 00007f73815a5fa0 R15: 00007ffff6c23848 [ 571.849420][T14329] [ 572.328233][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 572.334668][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 572.538314][ T12] hsr_slave_0: left promiscuous mode [ 572.557981][ T12] hsr_slave_1: left promiscuous mode [ 572.600763][ T12] veth1_macvtap: left promiscuous mode [ 572.615143][ T12] veth0_macvtap: left promiscuous mode [ 572.624240][ T12] veth1_vlan: left promiscuous mode [ 572.631444][ T12] veth0_vlan: left promiscuous mode [ 572.656074][T14346] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2303'. [ 572.947906][ T5146] Bluetooth: hci4: command tx timeout [ 574.234482][ T12] team0 (unregistering): Port device team_slave_1 removed [ 574.449551][ T12] team0 (unregistering): Port device team_slave_0 removed [ 575.029282][ T5146] Bluetooth: hci4: command tx timeout [ 575.418115][T14364] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2310'. [ 575.808155][T14371] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2313'. [ 575.922573][T14371] bond0: (slave bond_slave_0): Releasing backup interface [ 576.003293][T14376] EXT4-fs error: 5 callbacks suppressed [ 576.003316][T14376] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 576.340668][T14248] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 576.375953][T14382] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 576.401114][T14248] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 576.444036][T14248] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 576.462092][T14386] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 576.481048][T14248] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 576.502692][T14381] FAULT_INJECTION: forcing a failure. [ 576.502692][T14381] name fail_futex, interval 1, probability 0, space 0, times 1 [ 576.578640][T14388] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 576.600460][T14381] CPU: 1 UID: 0 PID: 14381 Comm: syz.1.2315 Not tainted 6.14.0-rc5-syzkaller #0 [ 576.600503][T14381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 576.600523][T14381] Call Trace: [ 576.600533][T14381] [ 576.600546][T14381] dump_stack_lvl+0x16c/0x1f0 [ 576.600596][T14381] should_fail_ex+0x50a/0x650 [ 576.600655][T14381] get_futex_key+0x4a3/0x1000 [ 576.600696][T14381] ? __pfx_get_futex_key+0x10/0x10 [ 576.600733][T14381] ? pick_eevdf+0x2f6/0x6b0 [ 576.600789][T14381] ? update_curr_se+0x8b/0x220 [ 576.600843][T14381] ? find_held_lock+0x2d/0x110 [ 576.600881][T14381] futex_wait_setup+0x78/0x290 [ 576.600937][T14381] __futex_wait+0x267/0x3c0 [ 576.600988][T14381] ? __pfx___futex_wait+0x10/0x10 [ 576.601038][T14381] ? try_to_wake_up+0x158/0x1490 [ 576.601088][T14381] ? __pfx_futex_wake_mark+0x10/0x10 [ 576.601152][T14381] futex_wait+0xe9/0x380 [ 576.601198][T14381] ? __pfx_futex_wait+0x10/0x10 [ 576.601252][T14381] ? lock_acquire.part.0+0x11b/0x380 [ 576.601298][T14381] ? find_held_lock+0x2d/0x110 [ 576.601339][T14381] do_futex+0x22b/0x350 [ 576.601377][T14381] ? __pfx_do_futex+0x10/0x10 [ 576.601425][T14381] __x64_sys_futex+0x1e1/0x4c0 [ 576.601467][T14381] ? __sys_socket+0xad/0x260 [ 576.601506][T14381] ? __pfx___x64_sys_futex+0x10/0x10 [ 576.601544][T14381] ? ksys_mmap_pgoff+0x85/0x5c0 [ 576.601587][T14381] ? rcu_is_watching+0x12/0xc0 [ 576.601633][T14381] do_syscall_64+0xcd/0x250 [ 576.601679][T14381] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.601727][T14381] RIP: 0033:0x7fee1d58d169 [ 576.601764][T14381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.601796][T14381] RSP: 002b:00007fee1e3250e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 576.601827][T14381] RAX: ffffffffffffffda RBX: 00007fee1d7a5fa8 RCX: 00007fee1d58d169 [ 576.601848][T14381] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fee1d7a5fa8 [ 576.601868][T14381] RBP: 00007fee1d7a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 576.601887][T14381] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fee1d7a5fac [ 576.601906][T14381] R13: 0000000000000000 R14: 00007ffde9a542a0 R15: 00007ffde9a54388 [ 576.601942][T14381] [ 576.884974][T14248] 8021q: adding VLAN 0 to HW filter on device bond0 [ 576.906433][T14248] 8021q: adding VLAN 0 to HW filter on device team0 [ 576.980601][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 576.987824][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 577.022773][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 577.030015][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 577.055117][T14390] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 577.152253][T14395] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 577.177264][T14248] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 577.192287][T14248] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 577.209447][T14396] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 577.254117][T14397] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 577.285342][T14399] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 577.360476][T14400] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 577.435997][T14248] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 577.645104][T14248] veth0_vlan: entered promiscuous mode [ 577.713252][T14248] veth1_vlan: entered promiscuous mode [ 577.836993][T14248] veth0_macvtap: entered promiscuous mode [ 577.919969][T14248] veth1_macvtap: entered promiscuous mode [ 578.007431][T14248] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 578.051086][T14248] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 578.108346][T14248] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 578.266022][T14248] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 578.275497][T14248] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 578.284700][T14248] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 578.669010][T14413] FAULT_INJECTION: forcing a failure. [ 578.669010][T14413] name failslab, interval 1, probability 0, space 0, times 0 [ 578.720164][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 578.778031][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 578.906791][T14413] CPU: 1 UID: 0 PID: 14413 Comm: syz.0.2321 Not tainted 6.14.0-rc5-syzkaller #0 [ 578.906833][T14413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 578.906879][T14413] Call Trace: [ 578.906888][T14413] [ 578.906900][T14413] dump_stack_lvl+0x16c/0x1f0 [ 578.906948][T14413] should_fail_ex+0x50a/0x650 [ 578.906998][T14413] ? fs_reclaim_acquire+0xae/0x150 [ 578.907042][T14413] should_failslab+0xc2/0x120 [ 578.907073][T14413] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 578.907122][T14413] ? security_file_alloc+0x34/0x2b0 [ 578.907170][T14413] security_file_alloc+0x34/0x2b0 [ 578.907214][T14413] init_file+0x93/0x4c0 [ 578.907246][T14413] alloc_empty_file+0x91/0x1e0 [ 578.907281][T14413] path_openat+0xe1/0x2d80 [ 578.907326][T14413] ? hlock_class+0x4e/0x130 [ 578.907359][T14413] ? __lock_acquire+0x15a9/0x3c40 [ 578.907416][T14413] ? __pfx_path_openat+0x10/0x10 [ 578.907464][T14413] ? __pfx___lock_acquire+0x10/0x10 [ 578.907507][T14413] ? lock_acquire.part.0+0x11b/0x380 [ 578.907552][T14413] ? find_held_lock+0x2d/0x110 [ 578.907592][T14413] do_filp_open+0x20c/0x470 [ 578.907632][T14413] ? __pfx_do_filp_open+0x10/0x10 [ 578.907673][T14413] ? find_held_lock+0x2d/0x110 [ 578.907728][T14413] ? alloc_fd+0x41f/0x760 [ 578.907783][T14413] do_sys_openat2+0x17a/0x1e0 [ 578.907818][T14413] ? __pfx_do_sys_openat2+0x10/0x10 [ 578.907872][T14413] __x64_sys_openat+0x175/0x210 [ 578.907908][T14413] ? __pfx___x64_sys_openat+0x10/0x10 [ 578.907958][T14413] do_syscall_64+0xcd/0x250 [ 578.908003][T14413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 578.908048][T14413] RIP: 0033:0x7f738138bad0 [ 578.908081][T14413] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 578.908112][T14413] RSP: 002b:00007f737f1f5fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 578.908141][T14413] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f738138bad0 [ 578.908161][T14413] RDX: 0000000000000002 RSI: 00007f738140e585 RDI: 00000000ffffff9c [ 578.908179][T14413] RBP: 00007f738140e585 R08: 0000000000000000 R09: 00007f73820f8000 [ 578.908198][T14413] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 578.908216][T14413] R13: 0000000000000000 R14: 00007f73815a5fa0 R15: 00007ffff6c23848 [ 578.908253][T14413] [ 579.246154][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 579.254149][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 579.343886][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 579.350891][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 580.479795][T14434] Process accounting paused [ 580.488810][T14440] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 580.495056][T14440] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 580.538638][T14440] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 580.544800][T14440] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 580.617855][T14440] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 580.630342][T14440] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 580.909458][T14449] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5) [ 581.035739][T14455] FAULT_INJECTION: forcing a failure. [ 581.035739][T14455] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 581.035823][T14455] CPU: 1 UID: 0 PID: 14455 Comm: syz.3.2335 Not tainted 6.14.0-rc5-syzkaller #0 [ 581.035865][T14455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 581.035887][T14455] Call Trace: [ 581.035896][T14455] [ 581.035908][T14455] dump_stack_lvl+0x16c/0x1f0 [ 581.035955][T14455] should_fail_ex+0x50a/0x650 [ 581.036013][T14455] _copy_to_user+0x32/0xd0 [ 581.036050][T14455] simple_read_from_buffer+0xd0/0x160 [ 581.036095][T14455] proc_fail_nth_read+0x198/0x270 [ 581.036134][T14455] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 581.036175][T14455] ? rw_verify_area+0xcf/0x680 [ 581.036213][T14455] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 581.036251][T14455] vfs_read+0x1df/0xbf0 [ 581.036294][T14455] ? __fget_files+0x1fc/0x3a0 [ 581.036339][T14455] ? __pfx___mutex_lock+0x10/0x10 [ 581.036380][T14455] ? __pfx_vfs_read+0x10/0x10 [ 581.036432][T14455] ? __fget_files+0x206/0x3a0 [ 581.036490][T14455] ksys_read+0x12b/0x250 [ 581.036538][T14455] ? __pfx_ksys_read+0x10/0x10 [ 581.036599][T14455] do_syscall_64+0xcd/0x250 [ 581.036644][T14455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.036687][T14455] RIP: 0033:0x7fddbc18bb7c [ 581.036711][T14455] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 581.036742][T14455] RSP: 002b:00007fddbd084030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 581.036770][T14455] RAX: ffffffffffffffda RBX: 00007fddbc3a5fa0 RCX: 00007fddbc18bb7c [ 581.036791][T14455] RDX: 000000000000000f RSI: 00007fddbd0840a0 RDI: 0000000000000004 [ 581.036809][T14455] RBP: 00007fddbd084090 R08: 0000000000000000 R09: 0000000000000000 [ 581.036828][T14455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 581.036846][T14455] R13: 0000000000000000 R14: 00007fddbc3a5fa0 R15: 00007ffecba34948 [ 581.036885][T14455] [ 581.210617][T14454] lo: entered promiscuous mode [ 581.211041][T14454] lo: left promiscuous mode [ 582.249889][T14474] EXT4-fs error: 3 callbacks suppressed [ 582.249913][T14474] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 582.509347][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 582.516037][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 582.547740][T13285] Bluetooth: hci4: command 0x0c1a tx timeout [ 582.555335][ T5146] Bluetooth: hci2: command 0x0c1a tx timeout [ 582.563217][ T5146] Bluetooth: hci1: command 0x0c1a tx timeout [ 582.571123][ T5146] Bluetooth: hci0: command 0x0c1a tx timeout [ 583.098871][T14495] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 583.186736][T14498] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 583.702366][T14511] cougar: G6 mapped to space [ 583.871068][T14512] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 584.627804][ T5146] Bluetooth: hci4: command 0x0c1a tx timeout [ 584.648003][T14521] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 584.736576][T14518] FAULT_INJECTION: forcing a failure. [ 584.736576][T14518] name fail_futex, interval 1, probability 0, space 0, times 0 [ 584.757098][T14522] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 584.797942][T14518] CPU: 0 UID: 0 PID: 14518 Comm: syz.3.2351 Not tainted 6.14.0-rc5-syzkaller #0 [ 584.797986][T14518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 584.798007][T14518] Call Trace: [ 584.798016][T14518] [ 584.798027][T14518] dump_stack_lvl+0x16c/0x1f0 [ 584.798076][T14518] should_fail_ex+0x50a/0x650 [ 584.798131][T14518] get_futex_key+0x4a3/0x1000 [ 584.798171][T14518] ? __pfx_get_futex_key+0x10/0x10 [ 584.798223][T14518] futex_wait_setup+0x78/0x290 [ 584.798279][T14518] __futex_wait+0x267/0x3c0 [ 584.798328][T14518] ? __pfx___futex_wait+0x10/0x10 [ 584.798382][T14518] ? __pfx_futex_wake_mark+0x10/0x10 [ 584.798444][T14518] futex_wait+0xe9/0x380 [ 584.798490][T14518] ? __pfx_futex_wait+0x10/0x10 [ 584.798557][T14518] do_futex+0x22b/0x350 [ 584.798594][T14518] ? __pfx_do_futex+0x10/0x10 [ 584.798635][T14518] ? ktime_get_ts64+0x2d2/0x400 [ 584.798682][T14518] __x64_sys_futex+0x1e1/0x4c0 [ 584.798726][T14518] ? __pfx___x64_sys_futex+0x10/0x10 [ 584.798764][T14518] ? __x64_sys_poll+0x124/0x450 [ 584.798810][T14518] ? __pfx___x64_sys_poll+0x10/0x10 [ 584.798866][T14518] do_syscall_64+0xcd/0x250 [ 584.798912][T14518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 584.798968][T14518] RIP: 0033:0x7fddbc18d169 [ 584.798994][T14518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 584.799027][T14518] RSP: 002b:00007fddbd0840e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 584.799057][T14518] RAX: ffffffffffffffda RBX: 00007fddbc3a5fa8 RCX: 00007fddbc18d169 [ 584.799077][T14518] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fddbc3a5fa8 [ 584.799096][T14518] RBP: 00007fddbc3a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 584.799115][T14518] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fddbc3a5fac [ 584.799133][T14518] R13: 0000000000000000 R14: 00007ffecba34860 R15: 00007ffecba34948 [ 584.799172][T14518] [ 585.001442][ C0] vkms_vblank_simulate: vblank timer overrun [ 585.460085][T14535] FAULT_INJECTION: forcing a failure. [ 585.460085][T14535] name failslab, interval 1, probability 0, space 0, times 0 [ 585.547986][T14535] CPU: 0 UID: 0 PID: 14535 Comm: syz.3.2354 Not tainted 6.14.0-rc5-syzkaller #0 [ 585.548027][T14535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 585.548044][T14535] Call Trace: [ 585.548053][T14535] [ 585.548064][T14535] dump_stack_lvl+0x16c/0x1f0 [ 585.548112][T14535] should_fail_ex+0x50a/0x650 [ 585.548163][T14535] ? fs_reclaim_acquire+0xae/0x150 [ 585.548207][T14535] should_failslab+0xc2/0x120 [ 585.548236][T14535] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 585.548284][T14535] ? __pfx___might_resched+0x10/0x10 [ 585.548334][T14535] ? __anon_vma_prepare+0x344/0x5e0 [ 585.548391][T14535] __anon_vma_prepare+0x344/0x5e0 [ 585.548438][T14535] ? __filemap_get_folio+0x333/0xbd0 [ 585.548493][T14535] __vmf_anon_prepare+0x11c/0x240 [ 585.548539][T14535] hugetlb_fault+0x1f32/0x2fa0 [ 585.548592][T14535] ? __pfx_hugetlb_fault+0x10/0x10 [ 585.548652][T14535] ? find_vma+0xc0/0x140 [ 585.548689][T14535] ? __pfx_find_vma+0x10/0x10 [ 585.548734][T14535] handle_mm_fault+0x930/0xaa0 [ 585.548791][T14535] do_user_addr_fault+0x7a3/0x13f0 [ 585.548847][T14535] exc_page_fault+0x5c/0xc0 [ 585.548887][T14535] asm_exc_page_fault+0x26/0x30 [ 585.548938][T14535] RIP: 0010:rep_movs_alternative+0x30/0x70 [ 585.548971][T14535] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 [ 585.549002][T14535] RSP: 0018:ffffc900049dfaa8 EFLAGS: 00050202 [ 585.549026][T14535] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c [ 585.549045][T14535] RDX: fffff5200093bf85 RSI: 0000000000000000 RDI: ffffc900049dfc20 [ 585.549065][T14535] RBP: 000000000000000c R08: 0000000000000001 R09: fffff5200093bf85 [ 585.549084][T14535] R10: 0000000000000003 R11: 0000000000000002 R12: 0000000000000000 [ 585.549102][T14535] R13: ffffc900049dfc20 R14: 0000000000000000 R15: 0000000000000000 [ 585.549145][T14535] _copy_from_user+0x98/0xd0 [ 585.549181][T14535] copy_from_sockptr_offset.constprop.0+0x157/0x190 [ 585.549234][T14535] ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10 [ 585.549290][T14535] ? __local_bh_enable_ip+0xa4/0x120 [ 585.549338][T14535] ? lockdep_hardirqs_on+0x7c/0x110 [ 585.549383][T14535] do_ip_setsockopt+0x1d01/0x3680 [ 585.549432][T14535] ? find_held_lock+0x2d/0x110 [ 585.549470][T14535] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 585.549550][T14535] ip_setsockopt+0x59/0xf0 [ 585.549603][T14535] raw_setsockopt+0xb8/0x290 [ 585.549635][T14535] ? __pfx_raw_setsockopt+0x10/0x10 [ 585.549669][T14535] ? sock_common_setsockopt+0x2e/0xf0 [ 585.549704][T14535] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 585.549767][T14535] do_sock_setsockopt+0x222/0x480 [ 585.549799][T14535] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 585.549834][T14535] ? lock_acquire+0x2f/0xb0 [ 585.549906][T14535] __sys_setsockopt+0x1a0/0x230 [ 585.549959][T14535] __x64_sys_setsockopt+0xbd/0x160 [ 585.550002][T14535] ? do_syscall_64+0x91/0x250 [ 585.550044][T14535] ? lockdep_hardirqs_on+0x7c/0x110 [ 585.550082][T14535] do_syscall_64+0xcd/0x250 [ 585.550128][T14535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 585.550171][T14535] RIP: 0033:0x7fddbc18d169 [ 585.550196][T14535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 585.550223][T14535] RSP: 002b:00007fddbd063038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 585.550245][T14535] RAX: ffffffffffffffda RBX: 00007fddbc3a6080 RCX: 00007fddbc18d169 [ 585.550261][T14535] RDX: 0000000000000024 RSI: 0000000000000000 RDI: 0000000000000003 [ 585.550276][T14535] RBP: 00007fddbd063090 R08: 0000000000000028 R09: 0000000000000000 [ 585.550291][T14535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 585.550306][T14535] R13: 0000000000000000 R14: 00007fddbc3a6080 R15: 00007ffecba34948 [ 585.550344][T14535] [ 585.934028][ C0] vkms_vblank_simulate: vblank timer overrun [ 586.170566][T13285] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 586.184634][T13285] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 586.194471][T13285] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 586.204374][T13285] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 586.214896][T13285] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 586.225469][T13285] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 586.261724][T14545] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 586.682869][T14564] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 586.707776][T13285] Bluetooth: hci4: command 0x0c1a tx timeout [ 586.715646][T14565] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 586.757428][T14567] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 586.793419][T14539] chnl_net:caif_netlink_parms(): no params data found [ 586.817528][T14570] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2363'. [ 586.832284][T14570] bridge_slave_1: left allmulticast mode [ 586.847773][T14570] bridge_slave_1: left promiscuous mode [ 586.856522][T14570] bridge0: port 2(bridge_slave_1) entered disabled state [ 586.890964][T14570] bridge_slave_0: left allmulticast mode [ 586.907042][T14570] bridge_slave_0: left promiscuous mode [ 586.913136][T14570] bridge0: port 1(bridge_slave_0) entered disabled state [ 586.916481][T14554] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2360'. [ 587.039449][ T3466] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.096090][T14554] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode [ 587.136808][T14554] mac80211_hwsim hwsim3 wlan1: left allmulticast mode [ 587.221568][T14575] Dead loop on virtual device ip6_vti0, fix it urgently! [ 587.238732][T14575] Dead loop on virtual device ip6_vti0, fix it urgently! [ 587.246390][T14575] Dead loop on virtual device ip6_vti0, fix it urgently! [ 587.263435][T14575] openvswitch: netlink: Key 23 has unexpected len 16 expected 2 [ 587.279651][T14575] Dead loop on virtual device ip6_vti0, fix it urgently! [ 587.307291][ T3466] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.421108][T14539] bridge0: port 1(bridge_slave_0) entered blocking state [ 587.428396][T14539] bridge0: port 1(bridge_slave_0) entered disabled state [ 587.435674][T14539] bridge_slave_0: entered allmulticast mode [ 587.443156][T14539] bridge_slave_0: entered promiscuous mode [ 587.519590][ T3466] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.567455][T14539] bridge0: port 2(bridge_slave_1) entered blocking state [ 587.586206][T14539] bridge0: port 2(bridge_slave_1) entered disabled state [ 587.607871][T14539] bridge_slave_1: entered allmulticast mode [ 587.631533][T14539] bridge_slave_1: entered promiscuous mode [ 587.774436][ T3466] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.841304][T14539] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 587.880318][T14539] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 588.013498][T14539] team0: Port device team_slave_0 added [ 588.030642][T14539] team0: Port device team_slave_1 added [ 588.054488][T14592] EXT4-fs error: 2 callbacks suppressed [ 588.054511][T14592] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 588.099316][T14539] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 588.110775][T14594] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 588.133387][T14539] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 588.185652][T14539] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 588.253330][T14539] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 588.287714][T14539] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 588.318678][T13285] Bluetooth: hci3: command tx timeout [ 588.357643][T14539] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 588.472660][T14599] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 588.525183][T14600] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 588.527929][T14539] hsr_slave_0: entered promiscuous mode [ 588.568668][T14539] hsr_slave_1: entered promiscuous mode [ 588.574935][T14539] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 588.597675][T14539] Cannot create hsr debugfs directory [ 589.419958][ T3466] bond0 (unregistering): Released all slaves [ 589.477330][T14603] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 589.545831][T14604] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 589.632733][ T3466] ovs_: left promiscuous mode [ 589.701473][ T3466] HfR: left promiscuous mode [ 589.896303][T14608] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2373'. [ 589.923875][T14608] bridge_slave_1: entered promiscuous mode [ 590.074329][T14610] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 590.133665][T14611] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 590.240497][T14608] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2373'. [ 590.387979][T13285] Bluetooth: hci3: command tx timeout [ 590.506645][T14614] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 590.560758][T14616] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 590.783761][T14623] udevd[14623]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 591.569569][ T3466] hsr_slave_0: left promiscuous mode [ 591.589156][ T3466] hsr_slave_1: left promiscuous mode [ 591.647414][ T3466] veth1_macvtap: left promiscuous mode [ 591.653215][ T3466] veth0_macvtap: left promiscuous mode [ 591.668348][ T3466] veth1_vlan: left promiscuous mode [ 591.673746][ T3466] veth0_vlan: left promiscuous mode [ 592.470458][T13285] Bluetooth: hci3: command tx timeout [ 592.722283][T14625] Invalid ELF header magic: != ELF [ 593.175060][ T3466] team0 (unregistering): Port device team_slave_1 removed [ 593.289969][ T3466] team0 (unregistering): Port device team_slave_0 removed [ 594.009444][T14539] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 594.023682][T14539] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 594.038839][T14539] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 594.046655][T14650] EXT4-fs error: 5 callbacks suppressed [ 594.046677][T14650] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 594.071223][T14539] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 594.081558][T14651] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 594.104176][T14652] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 594.124417][T14653] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 594.156355][T14626] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 594.162876][T14626] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 594.181265][T14626] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 594.192035][T14626] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 594.198634][T14626] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 594.218270][T14626] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 594.425818][T14539] 8021q: adding VLAN 0 to HW filter on device bond0 [ 594.453306][T14539] 8021q: adding VLAN 0 to HW filter on device team0 [ 594.470811][ T9331] bridge0: port 1(bridge_slave_0) entered blocking state [ 594.478105][ T9331] bridge0: port 1(bridge_slave_0) entered forwarding state [ 594.504117][ T9331] bridge0: port 2(bridge_slave_1) entered blocking state [ 594.511429][ T9331] bridge0: port 2(bridge_slave_1) entered forwarding state [ 594.584122][T14539] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 594.658663][T14654] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr [ 594.692407][T14655] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr [ 594.730666][T14656] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr [ 594.772324][T14657] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr [ 594.821543][T14539] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 594.903548][T14539] veth0_vlan: entered promiscuous mode [ 594.934577][T14539] veth1_vlan: entered promiscuous mode [ 595.022614][T14539] veth0_macvtap: entered promiscuous mode [ 595.041774][T14539] veth1_macvtap: entered promiscuous mode [ 595.100723][T14539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 595.125155][T14539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 595.155475][T14539] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 595.173078][T14539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 595.185389][T14539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 595.202701][T14539] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 595.225424][T14539] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 595.234978][T14539] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 595.248798][T14539] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 595.262182][T14539] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 595.379194][T14666] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 595.408394][ T3466] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 595.425273][ T3466] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 595.480951][ T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 595.498031][ T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 595.541826][T14669] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 595.619001][T14664] Process accounting paused [ 595.946053][T14681] sctp: [Deprecated]: syz.1.2390 (pid 14681) Use of int in max_burst socket option. [ 595.946053][T14681] Use struct sctp_assoc_value instead [ 596.023788][T14681] ubi0: attaching mtd0 [ 596.029315][T14681] ubi0: scanning is finished [ 596.034003][T14681] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 596.113179][T14688] cougar: G6 mapped to space [ 596.130026][T14684] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2392'. [ 596.238242][T13285] Bluetooth: hci3: command 0x0c1a tx timeout [ 596.244412][ T5146] Bluetooth: hci4: command 0x0c1a tx timeout [ 596.250578][T14482] Bluetooth: hci2: command 0x0c1a tx timeout [ 596.256638][T14482] Bluetooth: hci0: command 0x0c1a tx timeout [ 596.336288][T14681] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 596.796432][T14699] cougar: G6 mapped to space [ 598.308081][T14691] Bluetooth: hci3: command 0x0c1a tx timeout [ 598.778324][ T5845] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 598.812827][ T5845] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 598.830833][ T5845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 598.854373][ T52] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 598.873035][ T5845] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 598.881417][ T5845] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 598.889620][ T5845] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 599.117459][ T52] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 599.240731][ T52] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 599.454187][ T52] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 599.482805][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 599.491234][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 599.694898][T14745] EXT4-fs error: 2 callbacks suppressed [ 599.694922][T14745] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 599.774659][T14734] chnl_net:caif_netlink_parms(): no params data found [ 600.244986][T14734] bridge0: port 1(bridge_slave_0) entered blocking state [ 600.267816][T14734] bridge0: port 1(bridge_slave_0) entered disabled state [ 600.275128][T14734] bridge_slave_0: entered allmulticast mode [ 600.310443][T14734] bridge_slave_0: entered promiscuous mode [ 600.358541][T14758] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2408'. [ 600.388242][T14691] Bluetooth: hci3: command 0x0c1a tx timeout [ 600.416918][T14757] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2409'. [ 600.958600][T14691] Bluetooth: hci1: command tx timeout [ 601.306675][T14765] Dead loop on virtual device ip6_vti0, fix it urgently! [ 601.314456][T14765] Dead loop on virtual device ip6_vti0, fix it urgently! [ 601.322569][T14765] Dead loop on virtual device ip6_vti0, fix it urgently! [ 601.334692][T14765] openvswitch: netlink: Key 23 has unexpected len 16 expected 2 [ 601.335922][ T52] bond0 (unregistering): Released all slaves [ 601.344705][T14765] Dead loop on virtual device ip6_vti0, fix it urgently! [ 601.371858][T14734] bridge0: port 2(bridge_slave_1) entered blocking state [ 601.379718][T14734] bridge0: port 2(bridge_slave_1) entered disabled state [ 601.404369][T14734] bridge_slave_1: entered allmulticast mode [ 601.415730][T14734] bridge_slave_1: entered promiscuous mode [ 601.455153][ T52] ovs_: left promiscuous mode [ 601.527191][T14770] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 601.543565][T14734] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 601.553305][ T52] HfR: left promiscuous mode [ 601.563604][T14771] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 601.592516][T14734] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 601.739336][T14734] team0: Port device team_slave_0 added [ 601.757063][T14734] team0: Port device team_slave_1 added [ 601.964781][T14734] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 601.985873][T14734] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 602.038835][T14734] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 602.087868][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 602.094647][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 602.098940][T14786] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 602.116552][T14734] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 602.141579][T14734] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 602.167653][ C0] vkms_vblank_simulate: vblank timer overrun [ 602.186052][T14787] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 602.217649][T14734] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 602.569703][T14734] hsr_slave_0: entered promiscuous mode [ 602.576212][T14734] hsr_slave_1: entered promiscuous mode [ 602.598669][T14734] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 602.606312][T14734] Cannot create hsr debugfs directory [ 602.811853][T14795] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 602.921474][T14797] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 602.967228][ T52] hsr_slave_0: left promiscuous mode [ 602.992127][ T52] hsr_slave_1: left promiscuous mode [ 603.037834][T14691] Bluetooth: hci1: command tx timeout [ 603.054177][ T52] veth1_macvtap: left promiscuous mode [ 603.083801][ T52] veth0_macvtap: left promiscuous mode [ 603.104103][ T52] veth1_vlan: left promiscuous mode [ 603.116194][ T52] veth0_vlan: left promiscuous mode [ 603.212745][T14801] cougar: G6 mapped to space [ 603.894856][T14803] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2419'. [ 604.672262][ T52] team0 (unregistering): Port device team_slave_0 removed [ 604.714347][T14817] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 604.732046][T14818] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 605.107786][T14691] Bluetooth: hci1: command tx timeout [ 605.363685][T14803] bond0: (slave bond_slave_0): Releasing backup interface [ 605.385985][T14823] HfR: entered promiscuous mode [ 605.567520][T14825] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 605.646464][T14826] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 605.893043][T14835] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 605.988843][T14838] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 606.004955][T14838] udevd[14838]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 606.046094][T14830] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2427'. [ 606.760139][T14845] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 606.861360][T14844] cougar: G6 mapped to space [ 607.192042][T14691] Bluetooth: hci1: command tx timeout [ 607.388396][T14849] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 607.440021][T14734] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 607.483470][T14734] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 607.509274][T14734] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 607.512228][T14850] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 607.546518][T14734] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 607.614329][T14852] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 607.783223][T14734] 8021q: adding VLAN 0 to HW filter on device bond0 [ 607.824787][T14734] 8021q: adding VLAN 0 to HW filter on device team0 [ 607.872377][ T1159] bridge0: port 1(bridge_slave_0) entered blocking state [ 607.879555][ T1159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 607.951712][ T1159] bridge0: port 2(bridge_slave_1) entered blocking state [ 607.958911][ T1159] bridge0: port 2(bridge_slave_1) entered forwarding state [ 608.030574][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 608.037080][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 608.208797][T14734] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 608.283685][T14734] veth0_vlan: entered promiscuous mode [ 608.315556][T14734] veth1_vlan: entered promiscuous mode [ 608.546210][T14734] veth0_macvtap: entered promiscuous mode [ 608.600649][T14734] veth1_macvtap: entered promiscuous mode [ 608.692063][T14734] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 608.721758][T14734] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 608.771296][T14734] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 608.822117][T14734] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 608.839440][T14734] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 608.893276][T14734] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 608.915985][T14734] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 608.932955][T14734] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 608.957657][T14734] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 609.004258][T14734] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 609.095960][T14734] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 609.105629][T14734] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 609.114773][T14734] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 609.139020][T14734] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 609.465794][ T9331] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 609.483272][ T9331] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 609.542414][T14892] openvswitch: HfR: Dropping previously announced user features [ 609.624339][ T1159] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 609.651200][ T1159] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 609.720931][T14895] EXT4-fs error: 7 callbacks suppressed [ 609.720954][T14895] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 609.781380][T14900] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 609.804627][T14901] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 610.041907][T14908] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 610.047011][T14907] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2443'. [ 610.628245][T14918] cougar: G6 mapped to space [ 610.765768][T14914] cougar: G6 mapped to space [ 611.070350][T14922] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 611.075568][T14899] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 611.102760][T14923] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 611.170297][T14924] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 611.248107][T14925] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 611.311674][T14933] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr [ 611.370024][T14934] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr [ 612.346802][T14936] Process accounting resumed [ 612.393561][T14957] FAULT_INJECTION: forcing a failure. [ 612.393561][T14957] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 612.435430][T14957] CPU: 1 UID: 0 PID: 14957 Comm: syz.0.2452 Not tainted 6.14.0-rc5-syzkaller #0 [ 612.435483][T14957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 612.435501][T14957] Call Trace: [ 612.435511][T14957] [ 612.435522][T14957] dump_stack_lvl+0x16c/0x1f0 [ 612.435569][T14957] should_fail_ex+0x50a/0x650 [ 612.435627][T14957] _copy_to_user+0x32/0xd0 [ 612.435665][T14957] simple_read_from_buffer+0xd0/0x160 [ 612.435710][T14957] proc_fail_nth_read+0x198/0x270 [ 612.435751][T14957] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 612.435793][T14957] ? rw_verify_area+0xcf/0x680 [ 612.435831][T14957] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 612.435870][T14957] vfs_read+0x1df/0xbf0 [ 612.435912][T14957] ? __fget_files+0x1fc/0x3a0 [ 612.435958][T14957] ? __pfx___mutex_lock+0x10/0x10 [ 612.436001][T14957] ? __pfx_vfs_read+0x10/0x10 [ 612.436054][T14957] ? __fget_files+0x206/0x3a0 [ 612.436112][T14957] ksys_read+0x12b/0x250 [ 612.436155][T14957] ? __pfx_ksys_read+0x10/0x10 [ 612.436196][T14957] ? syscall_user_dispatch+0x7a/0x130 [ 612.436260][T14957] do_syscall_64+0xcd/0x250 [ 612.436306][T14957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 612.436351][T14957] RIP: 0033:0x7fa7f9f8bb7c [ 612.436375][T14957] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 612.436406][T14957] RSP: 002b:00007fa7fae8d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 612.436436][T14957] RAX: ffffffffffffffda RBX: 00007fa7fa1a5fa0 RCX: 00007fa7f9f8bb7c [ 612.436461][T14957] RDX: 000000000000000f RSI: 00007fa7fae8d0a0 RDI: 0000000000000004 [ 612.436479][T14957] RBP: 00007fa7fae8d090 R08: 0000000000000000 R09: 0000000000000000 [ 612.436497][T14957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 612.436514][T14957] R13: 0000000000000000 R14: 00007fa7fa1a5fa0 R15: 00007ffdc43ae838 [ 612.436552][T14957] [ 612.967159][T14966] netlink: 'syz.0.2456': attribute type 11 has an invalid length. [ 612.967218][T14966] netlink: 'syz.0.2456': attribute type 11 has an invalid length. [ 612.967242][T14966] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2456'. [ 613.084349][T14967] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 613.116770][T14968] zswap: compressor not available [ 613.823795][T14964] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2454'. [ 614.299170][T14994] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2463'. [ 614.557325][T15002] FAULT_INJECTION: forcing a failure. [ 614.557325][T15002] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 614.610941][T15002] CPU: 0 UID: 0 PID: 15002 Comm: syz.0.2467 Not tainted 6.14.0-rc5-syzkaller #0 [ 614.610986][T15002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 614.611006][T15002] Call Trace: [ 614.611016][T15002] [ 614.611029][T15002] dump_stack_lvl+0x16c/0x1f0 [ 614.611079][T15002] should_fail_ex+0x50a/0x650 [ 614.611131][T15002] ? __pfx___might_resched+0x10/0x10 [ 614.611198][T15002] should_fail_alloc_page+0xe7/0x130 [ 614.611235][T15002] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 614.611288][T15002] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 614.611346][T15002] ? hlock_class+0x4e/0x130 [ 614.611380][T15002] ? mark_lock+0xb5/0xc60 [ 614.611429][T15002] ? __pfx_mark_lock+0x10/0x10 [ 614.611479][T15002] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 614.611537][T15002] ? hlock_class+0x4e/0x130 [ 614.611571][T15002] ? mark_lock+0xb5/0xc60 [ 614.611616][T15002] ? hlock_class+0x4e/0x130 [ 614.611658][T15002] ? hlock_class+0x4e/0x130 [ 614.611693][T15002] ? __lock_acquire+0xcc5/0x3c40 [ 614.611740][T15002] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 614.611795][T15002] ? policy_nodemask+0xea/0x4e0 [ 614.611851][T15002] alloc_pages_mpol+0x1fc/0x540 [ 614.611885][T15002] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 614.611916][T15002] ? __lock_acquire+0x15a9/0x3c40 [ 614.611971][T15002] folio_alloc_mpol_noprof+0x36/0x2f0 [ 614.612012][T15002] vma_alloc_folio_noprof+0xee/0x1b0 [ 614.612051][T15002] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 614.612089][T15002] ? find_held_lock+0x2d/0x110 [ 614.612134][T15002] do_pte_missing+0x202f/0x3e10 [ 614.612206][T15002] __handle_mm_fault+0x1166/0x2c60 [ 614.612268][T15002] ? __pfx___handle_mm_fault+0x10/0x10 [ 614.612317][T15002] ? follow_page_pte+0x3ac/0x1490 [ 614.612364][T15002] ? __pfx_lock_release+0x10/0x10 [ 614.612441][T15002] handle_mm_fault+0x3fa/0xaa0 [ 614.612500][T15002] __get_user_pages+0x773/0x36f0 [ 614.612559][T15002] ? __pfx_mt_find+0x10/0x10 [ 614.612604][T15002] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 614.612652][T15002] ? __pfx___get_user_pages+0x10/0x10 [ 614.612705][T15002] ? __mm_populate+0x21d/0x380 [ 614.612763][T15002] populate_vma_page_range+0x27f/0x3a0 [ 614.612817][T15002] ? __pfx_populate_vma_page_range+0x10/0x10 [ 614.612868][T15002] ? __pfx_find_vma_intersection+0x10/0x10 [ 614.612913][T15002] ? vm_mmap_pgoff+0x29b/0x3a0 [ 614.612966][T15002] __mm_populate+0x1d6/0x380 [ 614.613018][T15002] ? __pfx___mm_populate+0x10/0x10 [ 614.613071][T15002] ? up_write+0x1b2/0x520 [ 614.613126][T15002] vm_mmap_pgoff+0x2d3/0x3a0 [ 614.613184][T15002] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 614.613237][T15002] ? __x64_sys_futex+0x1e1/0x4c0 [ 614.613277][T15002] ? __x64_sys_futex+0x1ea/0x4c0 [ 614.613323][T15002] ksys_mmap_pgoff+0x7d/0x5c0 [ 614.613366][T15002] ? rcu_is_watching+0x12/0xc0 [ 614.613405][T15002] __x64_sys_mmap+0x125/0x190 [ 614.613459][T15002] do_syscall_64+0xcd/0x250 [ 614.613506][T15002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 614.613554][T15002] RIP: 0033:0x7fa7f9f8d169 [ 614.613580][T15002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 614.613613][T15002] RSP: 002b:00007fa7fae8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 614.613644][T15002] RAX: ffffffffffffffda RBX: 00007fa7fa1a5fa0 RCX: 00007fa7f9f8d169 [ 614.613664][T15002] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 614.613683][T15002] RBP: 00007fa7fa00e2a0 R08: 0000000000000002 R09: 0000000000008000 [ 614.613703][T15002] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 614.613721][T15002] R13: 0000000000000000 R14: 00007fa7fa1a5fa0 R15: 00007ffdc43ae838 [ 614.613762][T15002] [ 614.999092][T14996] netlink: 'syz.3.2464': attribute type 5 has an invalid length. [ 615.007952][T15000] cougar: G6 mapped to space [ 615.158587][T15006] cougar: G6 mapped to space [ 615.237731][T14996] netlink: 314 bytes leftover after parsing attributes in process `syz.3.2464'. [ 615.601507][T15011] EXT4-fs error: 4 callbacks suppressed [ 615.601532][T15011] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 615.662049][T15015] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2468'. [ 615.768155][T15017] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2469'. [ 615.834459][T15019] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2470'. [ 616.056821][T15023] openvswitch: netlink: Key 23 has unexpected len 16 expected 2 [ 616.609507][T15037] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2478'. [ 616.978894][T15047] cougar: G6 mapped to space [ 617.198685][T15052] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr [ 617.305037][T15051] can: request_module (can-proto-0) failed. [ 618.283184][T15067] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2486'. [ 618.691494][T15072] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2487'. [ 620.327753][T15096] openvswitch: HfR: Dropping previously announced user features [ 620.351934][T15096] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2495'. [ 620.377790][T15096] HfR: left promiscuous mode [ 620.406044][T15098] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 620.452044][T15099] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 621.146927][T15107] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2498'. [ 621.457111][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 621.487685][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 621.618355][T15121] FAULT_INJECTION: forcing a failure. [ 621.618355][T15121] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 621.663830][T15121] CPU: 0 UID: 0 PID: 15121 Comm: syz.3.2502 Not tainted 6.14.0-rc5-syzkaller #0 [ 621.663874][T15121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 621.663892][T15121] Call Trace: [ 621.663901][T15121] [ 621.663913][T15121] dump_stack_lvl+0x16c/0x1f0 [ 621.663962][T15121] should_fail_ex+0x50a/0x650 [ 621.664014][T15121] ? __pfx___might_resched+0x10/0x10 [ 621.664070][T15121] should_fail_alloc_page+0xe7/0x130 [ 621.664104][T15121] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 621.664153][T15121] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 621.664209][T15121] ? hlock_class+0x4e/0x130 [ 621.664251][T15121] ? __lock_acquire+0xcc5/0x3c40 [ 621.664303][T15121] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 621.664360][T15121] ? __pfx___lock_acquire+0x10/0x10 [ 621.664418][T15121] ? find_held_lock+0x2d/0x110 [ 621.664455][T15121] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 621.664512][T15121] ? policy_nodemask+0xea/0x4e0 [ 621.664569][T15121] alloc_pages_mpol+0x1fc/0x540 [ 621.664603][T15121] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 621.664636][T15121] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 621.664677][T15121] ? is_bpf_text_address+0x94/0x1a0 [ 621.664727][T15121] folio_alloc_mpol_noprof+0x36/0x2f0 [ 621.664769][T15121] alloc_migration_target_by_mpol+0x247/0x490 [ 621.664812][T15121] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 621.664854][T15121] ? __pfx___might_resched+0x10/0x10 [ 621.664907][T15121] ? __pfx_mark_lock+0x10/0x10 [ 621.664964][T15121] migrate_pages_batch+0x3c0/0x3150 [ 621.665008][T15121] ? mark_lock+0xb5/0xc60 [ 621.665050][T15121] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 621.665092][T15121] ? kasan_save_stack+0x42/0x60 [ 621.665152][T15121] ? __pfx_migrate_pages_batch+0x10/0x10 [ 621.665204][T15121] migrate_pages_sync+0x131/0x910 [ 621.665255][T15121] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 621.665306][T15121] ? __pfx_migrate_pages_sync+0x10/0x10 [ 621.665345][T15121] ? __pfx___lock_acquire+0x10/0x10 [ 621.665393][T15121] ? __pfx_lock_release+0x10/0x10 [ 621.665440][T15121] ? trace_lock_acquire+0x14e/0x1f0 [ 621.665487][T15121] migrate_pages+0x1acf/0x2290 [ 621.665527][T15121] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 621.665580][T15121] ? __pfx_migrate_pages+0x10/0x10 [ 621.665614][T15121] ? do_mbind+0x4e4/0xed0 [ 621.665651][T15121] ? __pfx_lock_release+0x10/0x10 [ 621.665711][T15121] ? up_write+0x1b2/0x520 [ 621.665766][T15121] do_mbind+0x6c0/0xed0 [ 621.665815][T15121] ? __pfx_do_mbind+0x10/0x10 [ 621.665873][T15121] ? __pfx_get_nodes+0x10/0x10 [ 621.665935][T15121] kernel_mbind+0x1e8/0x200 [ 621.665977][T15121] ? __pfx_kernel_mbind+0x10/0x10 [ 621.666027][T15121] do_syscall_64+0xcd/0x250 [ 621.666097][T15121] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.666145][T15121] RIP: 0033:0x7fddbc18d169 [ 621.666171][T15121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 621.666204][T15121] RSP: 002b:00007fddbd084038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 621.666243][T15121] RAX: ffffffffffffffda RBX: 00007fddbc3a5fa0 RCX: 00007fddbc18d169 [ 621.666265][T15121] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000 [ 621.666284][T15121] RBP: 00007fddbc20e2a0 R08: 0000000000000006 R09: 0000000000000002 [ 621.666303][T15121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 621.666323][T15121] R13: 0000000000000000 R14: 00007fddbc3a5fa0 R15: 00007ffecba34948 [ 621.666362][T15121] [ 622.646033][T15140] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 623.978447][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 623.986448][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.088727][T15169] snd_aloop snd_aloop.0: control 772:1:8:1Յ:-4095 is already present [ 624.131383][T15171] Dead loop on virtual device ip6_vti0, fix it urgently! [ 624.148226][T15171] Dead loop on virtual device ip6_vti0, fix it urgently! [ 624.156188][T15171] Dead loop on virtual device ip6_vti0, fix it urgently! [ 624.242611][T15171] openvswitch: netlink: Key 23 has unexpected len 16 expected 2 [ 624.285649][T15171] Dead loop on virtual device ip6_vti0, fix it urgently! [ 625.637725][T15194] cougar: G6 mapped to space [ 627.023035][T15217] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2530'. [ 627.057903][T15217] bridge_slave_1: left allmulticast mode [ 627.064950][T15217] bridge_slave_1: left promiscuous mode [ 627.108429][T15217] bridge0: port 2(bridge_slave_1) entered disabled state [ 627.158475][T15217] bridge_slave_0: left allmulticast mode [ 627.164302][T15217] bridge_slave_0: left promiscuous mode [ 627.172126][T15217] bridge0: port 1(bridge_slave_0) entered disabled state [ 627.712751][T15229] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 627.754076][T15229] udevd[15229]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 628.090010][T15238] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 628.233726][T15244] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:1: corrupted in-inode xattr: bad magic number in in-inode xattr [ 628.268617][T15245] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 628.308822][T15247] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 629.603483][T15269] openvswitch: netlink: Key 23 has unexpected len 16 expected 2 [ 629.825360][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.836241][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 629.844733][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.851272][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 630.127901][T15279] FAULT_INJECTION: forcing a failure. [ 630.127901][T15279] name failslab, interval 1, probability 0, space 0, times 0 [ 630.158231][T15279] CPU: 0 UID: 0 PID: 15279 Comm: syz.3.2546 Not tainted 6.14.0-rc5-syzkaller #0 [ 630.158279][T15279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 630.158299][T15279] Call Trace: [ 630.158309][T15279] [ 630.158322][T15279] dump_stack_lvl+0x16c/0x1f0 [ 630.158371][T15279] should_fail_ex+0x50a/0x650 [ 630.158423][T15279] ? fs_reclaim_acquire+0xae/0x150 [ 630.158469][T15279] ? __register_sysctl_table+0xb4/0x1910 [ 630.158518][T15279] should_failslab+0xc2/0x120 [ 630.158549][T15279] __kmalloc_noprof+0xcb/0x510 [ 630.158604][T15279] __register_sysctl_table+0xb4/0x1910 [ 630.158660][T15279] ? rcu_is_watching+0x12/0xc0 [ 630.158705][T15279] ? trace_kmalloc+0x2d/0xd0 [ 630.158741][T15279] ? __pfx___register_sysctl_table+0x10/0x10 [ 630.158795][T15279] ? setup_mq_sysctls+0x5d/0x230 [ 630.158835][T15279] ? __asan_memcpy+0x3c/0x60 [ 630.158881][T15279] setup_mq_sysctls+0x13d/0x230 [ 630.158924][T15279] copy_ipcs+0x479/0x610 [ 630.158957][T15279] ? copy_utsname+0xab/0x470 [ 630.159005][T15279] create_new_namespaces+0x20a/0xad0 [ 630.159057][T15279] ? security_capable+0x7e/0x260 [ 630.159092][T15279] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 630.159147][T15279] ksys_unshare+0x45d/0xa40 [ 630.159180][T15279] ? __pfx_ksys_unshare+0x10/0x10 [ 630.159211][T15279] ? xfd_validate_state+0x5d/0x180 [ 630.159269][T15279] __x64_sys_unshare+0x31/0x40 [ 630.159302][T15279] do_syscall_64+0xcd/0x250 [ 630.159348][T15279] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 630.159393][T15279] RIP: 0033:0x7fddbc18d169 [ 630.159418][T15279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 630.159449][T15279] RSP: 002b:00007fddbd084038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 630.159479][T15279] RAX: ffffffffffffffda RBX: 00007fddbc3a5fa0 RCX: 00007fddbc18d169 [ 630.159500][T15279] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400 [ 630.159519][T15279] RBP: 00007fddbc20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 630.159538][T15279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 630.159556][T15279] R13: 0000000000000000 R14: 00007fddbc3a5fa0 R15: 00007ffecba34948 [ 630.159595][T15279] [ 630.530837][T15281] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2547'. [ 630.806160][T15286] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2549'. [ 630.817418][ T5845] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 630.829569][ T5845] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 630.856499][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 630.869922][ T5845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 630.879388][ T5845] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 630.886867][ T5845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 630.967908][T15286] bridge_slave_1: left allmulticast mode [ 630.973715][T15286] bridge_slave_1: left promiscuous mode [ 630.985059][T15286] bridge0: port 2(bridge_slave_1) entered disabled state [ 631.046614][T15286] bridge_slave_0: left allmulticast mode [ 631.068096][T15286] bridge_slave_0: left promiscuous mode [ 631.073950][T15286] bridge0: port 1(bridge_slave_0) entered disabled state [ 631.563346][ T1159] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 631.732564][T15302] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 631.786763][T15287] chnl_net:caif_netlink_parms(): no params data found [ 631.878002][ T1159] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 632.019099][ T1159] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 632.111516][T15306] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2553'. [ 632.225605][ T1159] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 632.484240][T15287] bridge0: port 1(bridge_slave_0) entered blocking state [ 632.513152][T15287] bridge0: port 1(bridge_slave_0) entered disabled state [ 632.525338][T15287] bridge_slave_0: entered allmulticast mode [ 632.545812][T15287] bridge_slave_0: entered promiscuous mode [ 632.603547][T15287] bridge0: port 2(bridge_slave_1) entered blocking state [ 632.614846][T15287] bridge0: port 2(bridge_slave_1) entered disabled state [ 632.633139][T15287] bridge_slave_1: entered allmulticast mode [ 632.650283][T15287] bridge_slave_1: entered promiscuous mode [ 632.762927][T15287] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 632.836153][T15287] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 632.940140][T15287] team0: Port device team_slave_0 added [ 632.948180][T14691] Bluetooth: hci2: command tx timeout [ 632.961637][T15287] team0: Port device team_slave_1 added [ 633.787599][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 633.794750][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 633.890979][ T1159] bond0 (unregistering): Released all slaves [ 634.060743][ T1159] HfR: left promiscuous mode [ 634.076655][T15287] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 634.090405][T15287] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 634.157631][T15287] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 634.225911][T15330] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 634.301320][T15331] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 634.375601][T15287] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 634.397676][T15287] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 634.457857][T15287] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 634.803472][T15287] hsr_slave_0: entered promiscuous mode [ 634.812391][T15287] hsr_slave_1: entered promiscuous mode [ 634.976290][ T1159] hsr_slave_0: left promiscuous mode [ 634.993685][ T1159] hsr_slave_1: left promiscuous mode [ 635.027541][ T1159] veth1_macvtap: left promiscuous mode [ 635.047719][T14691] Bluetooth: hci2: command tx timeout [ 635.057697][ T1159] veth0_macvtap: left promiscuous mode [ 635.063312][ T1159] veth1_vlan: left allmulticast mode [ 635.068964][ T1159] veth1_vlan: left promiscuous mode [ 635.074840][ T1159] veth0_vlan: left promiscuous mode [ 636.115549][ T1159] team0 (unregistering): Port device team_slave_1 removed [ 636.208758][ T1159] team0 (unregistering): Port device team_slave_0 removed [ 636.718995][T15337] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 636.751962][T15338] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 637.002924][T15340] Invalid ELF header magic: != ELF [ 637.033745][T15343] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 637.050478][T15342] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2560'. [ 637.068450][T15342] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 637.107768][T14691] Bluetooth: hci2: command tx timeout [ 637.121065][T15345] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 637.371630][T15348] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 637.670892][T15357] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 637.835046][T15361] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 637.885001][T15362] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 637.986135][T15287] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 638.043952][T15287] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 638.061637][T15287] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 638.088447][T15287] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 638.117152][T15352] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2559'. [ 638.135544][T15366] Dead loop on virtual device ip6_vti0, fix it urgently! [ 638.144169][T15366] Dead loop on virtual device ip6_vti0, fix it urgently! [ 638.169816][T15366] Dead loop on virtual device ip6_vti0, fix it urgently! [ 638.175265][T15352] netdevsim netdevsim1 netdevsim1: entered allmulticast mode [ 638.217835][T15366] openvswitch: netlink: Key 23 has unexpected len 16 expected 2 [ 638.242922][T15366] Dead loop on virtual device ip6_vti0, fix it urgently! [ 638.362032][T15287] 8021q: adding VLAN 0 to HW filter on device bond0 [ 638.410563][T15287] 8021q: adding VLAN 0 to HW filter on device team0 [ 638.436211][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 638.443430][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 638.486077][ T9331] bridge0: port 2(bridge_slave_1) entered blocking state [ 638.493304][ T9331] bridge0: port 2(bridge_slave_1) entered forwarding state [ 638.575661][T15373] MTRR 1 not used [ 638.695318][T15287] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 638.789390][T15287] veth0_vlan: entered promiscuous mode [ 638.826338][T15287] veth1_vlan: entered promiscuous mode [ 638.902139][T15287] veth0_macvtap: entered promiscuous mode [ 638.913811][T15287] veth1_macvtap: entered promiscuous mode [ 638.959858][T15287] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 638.981640][T15287] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.014161][T15287] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 639.032202][T15287] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.045856][T15287] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 639.059355][T15287] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.074443][T15287] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 639.099411][T15287] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 639.121785][T15287] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.137175][T15287] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 639.154473][T15287] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.164951][T15287] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 639.182827][T15287] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.188115][T14691] Bluetooth: hci2: command tx timeout [ 639.296645][T15287] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 639.331069][T15387] EXT4-fs error: 6 callbacks suppressed [ 639.331093][T15387] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 639.349408][T15287] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 639.397911][T15287] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 639.406716][T15287] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 639.410573][T15387] udevd[15387]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 639.448269][T15287] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 639.770701][ T9331] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 639.834690][ T9331] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 640.000482][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 640.059785][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 640.223497][T15403] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr [ 640.764804][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 640.764863][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 641.668258][T15427] openvswitch: netlink: Unknown nsh attribute 0 [ 642.778025][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 642.784447][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 643.116169][T15441] Process accounting paused [ 643.294941][T15460] Dead loop on virtual device ip6_vti0, fix it urgently! [ 643.448573][T15460] Dead loop on virtual device ip6_vti0, fix it urgently! [ 643.456186][T15460] Dead loop on virtual device ip6_vti0, fix it urgently! [ 643.531229][T15457] cougar: G6 mapped to space [ 643.660120][T15462] Dead loop on virtual device ip6_vti0, fix it urgently! [ 644.167146][T15473] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2596'. [ 644.199428][T15473] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2596'. [ 645.002124][T15485] netlink: 'syz.3.2601': attribute type 1 has an invalid length. [ 645.030749][T15485] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2601'. [ 645.158361][T15488] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2602'. [ 645.167530][T15488] IPv6: NLM_F_CREATE should be specified when creating new route [ 645.206393][T15488] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 645.214668][T15488] IPv6: NLM_F_CREATE should be set when creating new route [ 645.222002][T15488] IPv6: NLM_F_CREATE should be set when creating new route [ 645.958904][T15500] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 646.839119][T15512] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 646.874346][T15513] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2608'. [ 646.883569][T15513] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 646.892401][T15513] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 646.901957][T15513] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 646.924562][T15513] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 647.181497][T15516] Dead loop on virtual device ip6_vti0, fix it urgently! [ 647.208968][T15516] Dead loop on virtual device ip6_vti0, fix it urgently! [ 647.216588][T15516] Dead loop on virtual device ip6_vti0, fix it urgently! [ 647.223788][T15518] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2610'. [ 647.245107][T15516] Dead loop on virtual device ip6_vti0, fix it urgently! [ 647.616604][T15533] FAULT_INJECTION: forcing a failure. [ 647.616604][T15533] name failslab, interval 1, probability 0, space 0, times 0 [ 647.737664][T15533] CPU: 0 UID: 0 PID: 15533 Comm: syz.1.2617 Not tainted 6.14.0-rc5-syzkaller #0 [ 647.737707][T15533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 647.737737][T15533] Call Trace: [ 647.737746][T15533] [ 647.737758][T15533] dump_stack_lvl+0x16c/0x1f0 [ 647.737807][T15533] should_fail_ex+0x50a/0x650 [ 647.737859][T15533] ? fs_reclaim_acquire+0xae/0x150 [ 647.737904][T15533] should_failslab+0xc2/0x120 [ 647.737935][T15533] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 647.737986][T15533] ? alloc_vfsmnt+0x23/0x6f0 [ 647.738020][T15533] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 647.738072][T15533] alloc_vfsmnt+0x23/0x6f0 [ 647.738108][T15533] clone_mnt+0x6d/0xf90 [ 647.738146][T15533] ? lock_acquire+0x2f/0xb0 [ 647.738187][T15533] ? copy_mnt_ns+0x14d/0xa70 [ 647.738246][T15533] copy_tree+0xeb/0x9c0 [ 647.738293][T15533] ? __pfx_down_write+0x10/0x10 [ 647.738343][T15533] ? alloc_mnt_ns+0x325/0x520 [ 647.738388][T15533] copy_mnt_ns+0x1b5/0xa70 [ 647.738438][T15533] ? kmem_cache_alloc_noprof+0x279/0x3d0 [ 647.738490][T15533] ? create_new_namespaces+0x30/0xad0 [ 647.738550][T15533] create_new_namespaces+0xd3/0xad0 [ 647.738612][T15533] ? bpf_lsm_capable+0x9/0x10 [ 647.738647][T15533] ? security_capable+0x7e/0x260 [ 647.738683][T15533] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 647.738747][T15533] ksys_unshare+0x45d/0xa40 [ 647.738783][T15533] ? __pfx_ksys_unshare+0x10/0x10 [ 647.738815][T15533] ? xfd_validate_state+0x5d/0x180 [ 647.738874][T15533] __x64_sys_unshare+0x31/0x40 [ 647.738903][T15533] do_syscall_64+0xcd/0x250 [ 647.738947][T15533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 647.738994][T15533] RIP: 0033:0x7f885798d169 [ 647.739018][T15533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 647.739049][T15533] RSP: 002b:00007f88587de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 647.739077][T15533] RAX: ffffffffffffffda RBX: 00007f8857ba5fa0 RCX: 00007f885798d169 [ 647.739098][T15533] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000020000 [ 647.739114][T15533] RBP: 00007f8857a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 647.739132][T15533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 647.739150][T15533] R13: 0000000000000000 R14: 00007f8857ba5fa0 R15: 00007ffd3e5ab0a8 [ 647.739187][T15533] [ 647.981057][ C0] vkms_vblank_simulate: vblank timer overrun [ 648.134941][T15541] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 648.404650][T15546] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2620'. [ 648.412722][T15547] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2621'. [ 648.562322][T15549] Dead loop on virtual device ip6_vti0, fix it urgently! [ 648.580599][T15549] Dead loop on virtual device ip6_vti0, fix it urgently! [ 648.616968][T15549] Dead loop on virtual device ip6_vti0, fix it urgently! [ 648.645150][T15554] Dead loop on virtual device ip6_vti0, fix it urgently! [ 648.684072][T15557] FAULT_INJECTION: forcing a failure. [ 648.684072][T15557] name failslab, interval 1, probability 0, space 0, times 0 [ 648.701657][T15557] CPU: 1 UID: 0 PID: 15557 Comm: syz.0.2625 Not tainted 6.14.0-rc5-syzkaller #0 [ 648.701696][T15557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 648.701713][T15557] Call Trace: [ 648.701721][T15557] [ 648.701731][T15557] dump_stack_lvl+0x16c/0x1f0 [ 648.701774][T15557] should_fail_ex+0x50a/0x650 [ 648.701822][T15557] should_failslab+0xc2/0x120 [ 648.701847][T15557] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 648.701889][T15557] ? skb_clone+0x190/0x3f0 [ 648.701933][T15557] skb_clone+0x190/0x3f0 [ 648.701972][T15557] netlink_deliver_tap+0xabd/0xd30 [ 648.702014][T15557] netlink_unicast+0x5e1/0x7f0 [ 648.702054][T15557] ? __pfx_netlink_unicast+0x10/0x10 [ 648.702091][T15557] ? __phys_addr_symbol+0x30/0x80 [ 648.702117][T15557] ? __check_object_size+0x488/0x710 [ 648.702148][T15557] netlink_sendmsg+0x8b8/0xd70 [ 648.702189][T15557] ? __pfx_netlink_sendmsg+0x10/0x10 [ 648.702239][T15557] ____sys_sendmsg+0xaaf/0xc90 [ 648.702267][T15557] ? copy_msghdr_from_user+0x10b/0x160 [ 648.702305][T15557] ? __pfx_____sys_sendmsg+0x10/0x10 [ 648.702350][T15557] ___sys_sendmsg+0x135/0x1e0 [ 648.702399][T15557] ? __pfx____sys_sendmsg+0x10/0x10 [ 648.702473][T15557] ? __pfx_lock_release+0x10/0x10 [ 648.702516][T15557] ? trace_lock_acquire+0x14e/0x1f0 [ 648.702566][T15557] ? __fget_files+0x206/0x3a0 [ 648.702615][T15557] __sys_sendmsg+0x16e/0x220 [ 648.702654][T15557] ? __pfx___sys_sendmsg+0x10/0x10 [ 648.702714][T15557] do_syscall_64+0xcd/0x250 [ 648.702751][T15557] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 648.702788][T15557] RIP: 0033:0x7fa7f9f8d169 [ 648.702808][T15557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 648.702833][T15557] RSP: 002b:00007fa7fae8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 648.702856][T15557] RAX: ffffffffffffffda RBX: 00007fa7fa1a5fa0 RCX: 00007fa7f9f8d169 [ 648.702872][T15557] RDX: 0000000000000080 RSI: 0000400000000180 RDI: 000000000000000f [ 648.702888][T15557] RBP: 00007fa7fae8d090 R08: 0000000000000000 R09: 0000000000000000 [ 648.702903][T15557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 648.702918][T15557] R13: 0000000000000000 R14: 00007fa7fa1a5fa0 R15: 00007ffdc43ae838 [ 648.702948][T15557] [ 648.702997][T15557] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2625'. [ 649.451663][T15571] blktrace: Concurrent blktraces are not allowed on ram7 [ 649.575598][T15575] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2632'. [ 650.036231][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 650.042801][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 650.441668][T15589] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2635'. [ 650.525884][T15594] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr [ 650.551788][T15596] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 650.810678][T15607] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 651.155127][T15616] ovs_: entered promiscuous mode [ 652.329921][T15646] FAULT_INJECTION: forcing a failure. [ 652.329921][T15646] name failslab, interval 1, probability 0, space 0, times 0 [ 652.345029][T15646] CPU: 1 UID: 0 PID: 15646 Comm: syz.1.2654 Not tainted 6.14.0-rc5-syzkaller #0 [ 652.345070][T15646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 652.345089][T15646] Call Trace: [ 652.345098][T15646] [ 652.345109][T15646] dump_stack_lvl+0x16c/0x1f0 [ 652.345157][T15646] should_fail_ex+0x50a/0x650 [ 652.345208][T15646] ? fs_reclaim_acquire+0xae/0x150 [ 652.345252][T15646] should_failslab+0xc2/0x120 [ 652.345281][T15646] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 652.345330][T15646] ? sp_alloc+0x27/0x160 [ 652.345368][T15646] sp_alloc+0x27/0x160 [ 652.345402][T15646] mpol_set_shared_policy+0xaa/0x800 [ 652.345457][T15646] ? __pfx_shmem_set_policy+0x10/0x10 [ 652.345501][T15646] mbind_range+0x345/0x530 [ 652.345538][T15646] do_mbind+0x818/0xed0 [ 652.345584][T15646] ? __pfx_do_mbind+0x10/0x10 [ 652.345641][T15646] ? __pfx_get_nodes+0x10/0x10 [ 652.345699][T15646] kernel_mbind+0x1e8/0x200 [ 652.345738][T15646] ? __pfx_kernel_mbind+0x10/0x10 [ 652.345787][T15646] do_syscall_64+0xcd/0x250 [ 652.345833][T15646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 652.345878][T15646] RIP: 0033:0x7f885798d169 [ 652.345902][T15646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 652.345934][T15646] RSP: 002b:00007f88587de038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 652.345963][T15646] RAX: ffffffffffffffda RBX: 00007f8857ba5fa0 RCX: 00007f885798d169 [ 652.345984][T15646] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000 [ 652.346004][T15646] RBP: 00007f8857a0e2a0 R08: 0000000000000006 R09: 0000000000000002 [ 652.346023][T15646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 652.346042][T15646] R13: 0000000000000000 R14: 00007f8857ba5fa0 R15: 00007ffd3e5ab0a8 [ 652.346082][T15646] [ 652.449725][T15645] FAULT_INJECTION: forcing a failure. [ 652.449725][T15645] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 652.559180][T15645] CPU: 0 UID: 0 PID: 15645 Comm: syz.2.2655 Not tainted 6.14.0-rc5-syzkaller #0 [ 652.559222][T15645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 652.559240][T15645] Call Trace: [ 652.559249][T15645] [ 652.559259][T15645] dump_stack_lvl+0x16c/0x1f0 [ 652.559299][T15645] should_fail_ex+0x50a/0x650 [ 652.559345][T15645] _copy_to_user+0x32/0xd0 [ 652.559374][T15645] simple_read_from_buffer+0xd0/0x160 [ 652.559416][T15645] proc_fail_nth_read+0x198/0x270 [ 652.559448][T15645] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 652.559482][T15645] ? rw_verify_area+0xcf/0x680 [ 652.559513][T15645] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 652.559544][T15645] vfs_read+0x1df/0xbf0 [ 652.559579][T15645] ? __fget_files+0x1fc/0x3a0 [ 652.559616][T15645] ? __pfx___mutex_lock+0x10/0x10 [ 652.559650][T15645] ? __pfx_vfs_read+0x10/0x10 [ 652.559693][T15645] ? __fget_files+0x206/0x3a0 [ 652.559738][T15645] ksys_read+0x12b/0x250 [ 652.559772][T15645] ? __pfx_ksys_read+0x10/0x10 [ 652.559816][T15645] do_syscall_64+0xcd/0x250 [ 652.559853][T15645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 652.559889][T15645] RIP: 0033:0x7f472bb8bb7c [ 652.559909][T15645] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 652.559933][T15645] RSP: 002b:00007f472c92c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 652.559956][T15645] RAX: ffffffffffffffda RBX: 00007f472bda5fa0 RCX: 00007f472bb8bb7c [ 652.559973][T15645] RDX: 000000000000000f RSI: 00007f472c92c0a0 RDI: 0000000000000004 [ 652.559988][T15645] RBP: 00007f472c92c090 R08: 0000000000000000 R09: 0000000000000000 [ 652.560004][T15645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 652.560018][T15645] R13: 0000000000000000 R14: 00007f472bda5fa0 R15: 00007ffee95b6b88 [ 652.560050][T15645] [ 652.750988][ C0] vkms_vblank_simulate: vblank timer overrun [ 652.830388][T15652] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 652.934347][T15654] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 654.386518][T15680] netlink: 'syz.0.2664': attribute type 11 has an invalid length. [ 654.433490][T15682] HfR: entered promiscuous mode [ 654.449295][T15682] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2666'. [ 654.467826][T15682] HfR: left promiscuous mode [ 654.510754][T15684] FAULT_INJECTION: forcing a failure. [ 654.510754][T15684] name failslab, interval 1, probability 0, space 0, times 0 [ 654.537777][T15684] CPU: 0 UID: 0 PID: 15684 Comm: syz.2.2666 Not tainted 6.14.0-rc5-syzkaller #0 [ 654.537816][T15684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 654.537833][T15684] Call Trace: [ 654.537842][T15684] [ 654.537853][T15684] dump_stack_lvl+0x16c/0x1f0 [ 654.537898][T15684] should_fail_ex+0x50a/0x650 [ 654.537954][T15684] ? fs_reclaim_acquire+0xae/0x150 [ 654.537996][T15684] should_failslab+0xc2/0x120 [ 654.538026][T15684] __kmalloc_node_noprof+0xd1/0x510 [ 654.538075][T15684] ? aa_file_perm+0x4c6/0xfe0 [ 654.538115][T15684] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 654.538165][T15684] __kvmalloc_node_noprof+0xad/0x1a0 [ 654.538209][T15684] seq_read_iter+0x82a/0x12b0 [ 654.538251][T15684] ? aa_file_perm+0x4d5/0xfe0 [ 654.538304][T15684] seq_read+0x39f/0x4e0 [ 654.538343][T15684] ? __pfx_seq_read+0x10/0x10 [ 654.538407][T15684] ? __pfx_seq_read+0x10/0x10 [ 654.538445][T15684] proc_reg_read+0x23d/0x330 [ 654.538492][T15684] ? __pfx_proc_reg_read+0x10/0x10 [ 654.538540][T15684] vfs_read+0x1df/0xbf0 [ 654.538583][T15684] ? __fget_files+0x1fc/0x3a0 [ 654.538629][T15684] ? __pfx___mutex_lock+0x10/0x10 [ 654.538670][T15684] ? __pfx_vfs_read+0x10/0x10 [ 654.538722][T15684] ? __fget_files+0x206/0x3a0 [ 654.538778][T15684] ksys_read+0x12b/0x250 [ 654.538820][T15684] ? __pfx_ksys_read+0x10/0x10 [ 654.538873][T15684] do_syscall_64+0xcd/0x250 [ 654.538918][T15684] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 654.538963][T15684] RIP: 0033:0x7f472bb8d169 [ 654.538989][T15684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 654.539017][T15684] RSP: 002b:00007f472c90b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 654.539042][T15684] RAX: ffffffffffffffda RBX: 00007f472bda6080 RCX: 00007f472bb8d169 [ 654.539060][T15684] RDX: 0000000000000008 RSI: 0000400000000180 RDI: 000000000000000d [ 654.539076][T15684] RBP: 00007f472c90b090 R08: 0000000000000000 R09: 0000000000000000 [ 654.539093][T15684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 654.539110][T15684] R13: 0000000000000000 R14: 00007f472bda6080 R15: 00007ffee95b6b88 [ 654.539148][T15684] [ 654.763310][ C0] vkms_vblank_simulate: vblank timer overrun [ 655.158835][T15690] FAULT_INJECTION: forcing a failure. [ 655.158835][T15690] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 655.176712][T15690] CPU: 1 UID: 0 PID: 15690 Comm: syz.3.2670 Not tainted 6.14.0-rc5-syzkaller #0 [ 655.176754][T15690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 655.176774][T15690] Call Trace: [ 655.176784][T15690] [ 655.176795][T15690] dump_stack_lvl+0x16c/0x1f0 [ 655.176851][T15690] should_fail_ex+0x50a/0x650 [ 655.176897][T15690] ? __pfx___might_resched+0x10/0x10 [ 655.176950][T15690] should_fail_alloc_page+0xe7/0x130 [ 655.176982][T15690] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 655.177030][T15690] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 655.177085][T15690] ? hlock_class+0x4e/0x130 [ 655.177116][T15690] ? __lock_acquire+0xcc5/0x3c40 [ 655.177167][T15690] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 655.177219][T15690] ? __pfx___lock_acquire+0x10/0x10 [ 655.177273][T15690] ? find_held_lock+0x2d/0x110 [ 655.177306][T15690] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 655.177358][T15690] ? policy_nodemask+0xea/0x4e0 [ 655.177411][T15690] alloc_pages_mpol+0x1fc/0x540 [ 655.177441][T15690] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 655.177468][T15690] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 655.177505][T15690] ? is_bpf_text_address+0x94/0x1a0 [ 655.177556][T15690] folio_alloc_mpol_noprof+0x36/0x2f0 [ 655.177594][T15690] alloc_migration_target_by_mpol+0x247/0x490 [ 655.177634][T15690] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 655.177674][T15690] ? __pfx___might_resched+0x10/0x10 [ 655.177725][T15690] ? __pfx_mark_lock+0x10/0x10 [ 655.177789][T15690] migrate_pages_batch+0x3c0/0x3150 [ 655.177849][T15690] ? mark_lock+0xb5/0xc60 [ 655.177890][T15690] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 655.177929][T15690] ? kasan_save_stack+0x42/0x60 [ 655.177987][T15690] ? __pfx_migrate_pages_batch+0x10/0x10 [ 655.178039][T15690] migrate_pages_sync+0x131/0x910 [ 655.178079][T15690] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 655.178128][T15690] ? __pfx_migrate_pages_sync+0x10/0x10 [ 655.178166][T15690] ? __pfx___lock_acquire+0x10/0x10 [ 655.178212][T15690] ? __pfx_lock_release+0x10/0x10 [ 655.178256][T15690] ? trace_lock_acquire+0x14e/0x1f0 [ 655.178313][T15690] migrate_pages+0x1acf/0x2290 [ 655.178350][T15690] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 655.178395][T15690] ? __pfx_migrate_pages+0x10/0x10 [ 655.178426][T15690] ? do_mbind+0x4e4/0xed0 [ 655.178459][T15690] ? __pfx_lock_release+0x10/0x10 [ 655.178514][T15690] ? up_write+0x1b2/0x520 [ 655.178562][T15690] do_mbind+0x6c0/0xed0 [ 655.178607][T15690] ? __pfx_do_mbind+0x10/0x10 [ 655.178659][T15690] ? __pfx_get_nodes+0x10/0x10 [ 655.178715][T15690] kernel_mbind+0x1e8/0x200 [ 655.178753][T15690] ? __pfx_kernel_mbind+0x10/0x10 [ 655.178797][T15690] do_syscall_64+0xcd/0x250 [ 655.178892][T15690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 655.178955][T15690] RIP: 0033:0x7fddbc18d169 [ 655.178980][T15690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 655.179012][T15690] RSP: 002b:00007fddbd084038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 655.179041][T15690] RAX: ffffffffffffffda RBX: 00007fddbc3a5fa0 RCX: 00007fddbc18d169 [ 655.179062][T15690] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000 [ 655.179081][T15690] RBP: 00007fddbc20e2a0 R08: 0000000000000006 R09: 0000000000000002 [ 655.179099][T15690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 655.179117][T15690] R13: 0000000000000000 R14: 00007fddbc3a5fa0 R15: 00007ffecba34948 [ 655.179153][T15690] [ 655.212374][T15688] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2668'. [ 655.611052][T15696] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2671'. [ 655.769178][T15699] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2672'. [ 655.811650][T15699] bridge_slave_1: left allmulticast mode [ 655.817430][T15699] bridge_slave_1: left promiscuous mode [ 655.823424][T15699] bridge0: port 2(bridge_slave_1) entered disabled state [ 655.853739][T15699] bridge_slave_0: left allmulticast mode [ 655.871624][T15699] bridge_slave_0: left promiscuous mode [ 655.881996][T15699] bridge0: port 1(bridge_slave_0) entered disabled state [ 656.432111][T15711] cougar: G6 mapped to space [ 657.785070][T15737] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 657.831115][T15737] CIFS mount error: No usable UNC path provided in device string! [ 657.831115][T15737] [ 657.850280][T15737] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 658.471409][T15753] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 658.662802][T15761] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 659.225718][T15770] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2692'. [ 659.387809][T15773] FAULT_INJECTION: forcing a failure. [ 659.387809][T15773] name failslab, interval 1, probability 0, space 0, times 0 [ 659.400661][T15773] CPU: 0 UID: 0 PID: 15773 Comm: syz.2.2693 Not tainted 6.14.0-rc5-syzkaller #0 [ 659.400702][T15773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 659.400721][T15773] Call Trace: [ 659.400730][T15773] [ 659.400742][T15773] dump_stack_lvl+0x16c/0x1f0 [ 659.400791][T15773] should_fail_ex+0x50a/0x650 [ 659.400844][T15773] ? fs_reclaim_acquire+0xae/0x150 [ 659.400890][T15773] should_failslab+0xc2/0x120 [ 659.400921][T15773] __kmalloc_node_track_caller_noprof+0xcf/0x510 [ 659.400978][T15773] ? kstrdup_const+0x63/0x80 [ 659.401024][T15773] kstrdup+0x53/0x100 [ 659.401065][T15773] kstrdup_const+0x63/0x80 [ 659.401105][T15773] __kernfs_new_node+0x9c/0x890 [ 659.401156][T15773] ? __pfx___kernfs_new_node+0x10/0x10 [ 659.401200][T15773] ? __pfx_lock_release+0x10/0x10 [ 659.401245][T15773] ? kernfs_add_one+0x39d/0x520 [ 659.401301][T15773] ? lock_acquire.part.0+0x11b/0x380 [ 659.401346][T15773] ? find_held_lock+0x2d/0x110 [ 659.401401][T15773] kernfs_new_node+0x186/0x240 [ 659.401460][T15773] kernfs_create_link+0xcc/0x240 [ 659.401501][T15773] sysfs_do_create_link_sd+0x90/0x140 [ 659.401548][T15773] sysfs_create_link+0x61/0xc0 [ 659.401592][T15773] device_add+0x62e/0x1a70 [ 659.401641][T15773] ? __pfx_device_add+0x10/0x10 [ 659.401686][T15773] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 659.401740][T15773] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 659.401792][T15773] wiphy_register+0x1cab/0x2860 [ 659.401841][T15773] ? __pfx__dev_printk+0x10/0x10 [ 659.401886][T15773] ? __pfx_wiphy_register+0x10/0x10 [ 659.401946][T15773] ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0 [ 659.401995][T15773] ieee80211_register_hw+0x2455/0x4060 [ 659.402060][T15773] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 659.402103][T15773] ? net_generic+0xea/0x2a0 [ 659.402144][T15773] ? lockdep_init_map_type+0x16d/0x7d0 [ 659.402195][T15773] ? __asan_memset+0x23/0x50 [ 659.402255][T15773] ? __hrtimer_init+0x106/0x2c0 [ 659.402313][T15773] mac80211_hwsim_new_radio+0x304e/0x54e0 [ 659.402399][T15773] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 659.402463][T15773] hwsim_new_radio_nl+0xb42/0x12b0 [ 659.402518][T15773] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 659.402580][T15773] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 659.402638][T15773] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 659.402709][T15773] genl_family_rcv_msg_doit+0x202/0x2f0 [ 659.402768][T15773] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 659.402821][T15773] ? trace_cap_capable+0x1a2/0x210 [ 659.402871][T15773] ? bpf_lsm_capable+0x9/0x10 [ 659.402905][T15773] ? security_capable+0x7e/0x260 [ 659.402942][T15773] ? ns_capable+0xd7/0x110 [ 659.402994][T15773] genl_rcv_msg+0x565/0x800 [ 659.403051][T15773] ? __pfx_genl_rcv_msg+0x10/0x10 [ 659.403109][T15773] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 659.403172][T15773] netlink_rcv_skb+0x16b/0x440 [ 659.403221][T15773] ? __pfx_genl_rcv_msg+0x10/0x10 [ 659.403279][T15773] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 659.403344][T15773] ? down_read+0xc9/0x330 [ 659.403412][T15773] ? __pfx_down_read+0x10/0x10 [ 659.403465][T15773] ? netlink_deliver_tap+0x1ae/0xd30 [ 659.403516][T15773] genl_rcv+0x28/0x40 [ 659.403566][T15773] netlink_unicast+0x53c/0x7f0 [ 659.403617][T15773] ? __pfx_netlink_unicast+0x10/0x10 [ 659.403665][T15773] ? __phys_addr_symbol+0x30/0x80 [ 659.403702][T15773] ? __check_object_size+0x488/0x710 [ 659.403740][T15773] netlink_sendmsg+0x8b8/0xd70 [ 659.403796][T15773] ? __pfx_netlink_sendmsg+0x10/0x10 [ 659.403859][T15773] ____sys_sendmsg+0xaaf/0xc90 [ 659.403900][T15773] ? copy_msghdr_from_user+0x10b/0x160 [ 659.403949][T15773] ? __pfx_____sys_sendmsg+0x10/0x10 [ 659.404019][T15773] ___sys_sendmsg+0x135/0x1e0 [ 659.404072][T15773] ? __pfx____sys_sendmsg+0x10/0x10 [ 659.404137][T15773] ? __pfx_lock_release+0x10/0x10 [ 659.404179][T15773] ? trace_lock_acquire+0x14e/0x1f0 [ 659.404228][T15773] ? __fget_files+0x206/0x3a0 [ 659.404287][T15773] __sys_sendmsg+0x16e/0x220 [ 659.404335][T15773] ? __pfx___sys_sendmsg+0x10/0x10 [ 659.404380][T15773] ? __x64_sys_futex+0x1e1/0x4c0 [ 659.404454][T15773] do_syscall_64+0xcd/0x250 [ 659.404501][T15773] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 659.404565][T15773] RIP: 0033:0x7f472bb8d169 [ 659.404591][T15773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 659.404623][T15773] RSP: 002b:00007f472c92c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 659.404654][T15773] RAX: ffffffffffffffda RBX: 00007f472bda5fa0 RCX: 00007f472bb8d169 [ 659.404675][T15773] RDX: 00000000040000c0 RSI: 0000400000000300 RDI: 0000000000000005 [ 659.404694][T15773] RBP: 00007f472bc0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 659.404712][T15773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 659.404731][T15773] R13: 0000000000000000 R14: 00007f472bda5fa0 R15: 00007ffee95b6b88 [ 659.404773][T15773] [ 659.889860][ C0] vkms_vblank_simulate: vblank timer overrun [ 660.500090][T15783] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr [ 660.551709][T15784] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr [ 660.824290][T15786] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2697'. [ 660.906790][T15792] netlink: 346 bytes leftover after parsing attributes in process `syz.2.2699'. [ 661.221495][T15798] Invalid ELF header magic: != ELF [ 661.261367][T15802] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 661.321001][T15804] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 661.511093][T15800] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2701'. [ 661.585555][T15813] nfs: Unknown parameter 'w`_I+; HY Lu>>uh*C<+ ' [ 661.666738][T15800] geneve1: entered allmulticast mode [ 661.909709][T15817] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 662.030167][T15820] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr [ 662.401075][T15827] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 663.222574][T15844] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr [ 663.344369][T15846] Dead loop on virtual device ip6_vti0, fix it urgently! [ 663.371616][T15846] Dead loop on virtual device ip6_vti0, fix it urgently! [ 663.472027][T15847] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 663.478349][T15846] Dead loop on virtual device ip6_vti0, fix it urgently! [ 663.578136][T15848] Dead loop on virtual device ip6_vti0, fix it urgently! [ 664.396229][T15854] Invalid ELF header magic: != ELF [ 664.600668][T15856] Dead loop on virtual device ip6_vti0, fix it urgently! [ 664.665389][T15856] Dead loop on virtual device ip6_vti0, fix it urgently! [ 664.688871][T15860] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 664.759544][T15863] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2715'. [ 664.779579][T15861] Dead loop on virtual device ip6_vti0, fix it urgently! [ 664.858498][T15856] Dead loop on virtual device ip6_vti0, fix it urgently! [ 664.874735][T15865] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2716'. [ 665.228710][T15863] bond0: (slave bond_slave_0): Releasing backup interface [ 665.360681][T15876] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 665.446028][T15877] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 665.591324][T15881] netlink: 'syz.2.2720': attribute type 1 has an invalid length. [ 665.999804][T15892] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2724'. [ 666.041253][T15894] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 666.101233][T15894] udevd[15894]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 666.204222][T15896] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2725'. [ 666.866664][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 666.873306][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 668.385872][T15924] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 668.442581][T15927] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr [ 669.155808][T15939] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2738'. [ 669.232202][T15939] mac80211_hwsim hwsim35 wlan1: entered promiscuous mode [ 670.845468][T15959] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2745'. [ 671.039423][T15963] FAULT_INJECTION: forcing a failure. [ 671.039423][T15963] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 671.053421][T15963] CPU: 1 UID: 0 PID: 15963 Comm: syz.2.2747 Not tainted 6.14.0-rc5-syzkaller #0 [ 671.053459][T15963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 671.053477][T15963] Call Trace: [ 671.053486][T15963] [ 671.053497][T15963] dump_stack_lvl+0x16c/0x1f0 [ 671.053545][T15963] should_fail_ex+0x50a/0x650 [ 671.053601][T15963] _copy_from_user+0x2e/0xd0 [ 671.053635][T15963] copy_msghdr_from_user+0x99/0x160 [ 671.053683][T15963] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 671.053729][T15963] ? __lock_acquire+0xcc5/0x3c40 [ 671.053791][T15963] ___sys_sendmsg+0xff/0x1e0 [ 671.053839][T15963] ? __pfx____sys_sendmsg+0x10/0x10 [ 671.053904][T15963] ? trace_lock_acquire+0x14e/0x1f0 [ 671.053966][T15963] __sys_sendmmsg+0x201/0x420 [ 671.054017][T15963] ? __pfx___sys_sendmmsg+0x10/0x10 [ 671.054077][T15963] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 671.054134][T15963] ? fput+0x67/0x440 [ 671.054166][T15963] ? ksys_write+0x1ba/0x250 [ 671.054208][T15963] ? __pfx_ksys_write+0x10/0x10 [ 671.054264][T15963] __x64_sys_sendmmsg+0x9c/0x100 [ 671.054311][T15963] ? lockdep_hardirqs_on+0x7c/0x110 [ 671.054349][T15963] do_syscall_64+0xcd/0x250 [ 671.054392][T15963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 671.054438][T15963] RIP: 0033:0x7f472bb8d169 [ 671.054462][T15963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 671.054492][T15963] RSP: 002b:00007f472c92c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 671.054522][T15963] RAX: ffffffffffffffda RBX: 00007f472bda5fa0 RCX: 00007f472bb8d169 [ 671.054543][T15963] RDX: 0000000000000007 RSI: 0000400000000200 RDI: 0000000000000003 [ 671.054561][T15963] RBP: 00007f472c92c090 R08: 0000000000000000 R09: 0000000000000000 [ 671.054580][T15963] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 671.054598][T15963] R13: 0000000000000000 R14: 00007f472bda5fa0 R15: 00007ffee95b6b88 [ 671.054635][T15963] [ 671.252613][ C1] vkms_vblank_simulate: vblank timer overrun [ 671.560405][T15970] HfR: entered promiscuous mode [ 671.575303][T15970] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2750'. [ 671.584702][T15970] HfR: left promiscuous mode [ 672.033612][T15977] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2752'. [ 672.377414][T15984] cougar: G6 mapped to space [ 673.852386][T16014] FAULT_INJECTION: forcing a failure. [ 673.852386][T16014] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 673.937968][T16014] CPU: 1 UID: 0 PID: 16014 Comm: syz.0.2764 Not tainted 6.14.0-rc5-syzkaller #0 [ 673.938010][T16014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 673.938028][T16014] Call Trace: [ 673.938041][T16014] [ 673.938054][T16014] dump_stack_lvl+0x16c/0x1f0 [ 673.938103][T16014] should_fail_ex+0x50a/0x650 [ 673.938151][T16014] ? __pfx___might_resched+0x10/0x10 [ 673.938206][T16014] should_fail_alloc_page+0xe7/0x130 [ 673.938239][T16014] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 673.938289][T16014] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 673.938342][T16014] ? hlock_class+0x4e/0x130 [ 673.938374][T16014] ? mark_lock+0xb5/0xc60 [ 673.938420][T16014] ? __pfx_mark_lock+0x10/0x10 [ 673.938468][T16014] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 673.938521][T16014] ? hlock_class+0x4e/0x130 [ 673.938553][T16014] ? mark_lock+0xb5/0xc60 [ 673.938595][T16014] ? hlock_class+0x4e/0x130 [ 673.938636][T16014] ? hlock_class+0x4e/0x130 [ 673.938667][T16014] ? __lock_acquire+0xcc5/0x3c40 [ 673.938711][T16014] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 673.938764][T16014] ? policy_nodemask+0xea/0x4e0 [ 673.938821][T16014] alloc_pages_mpol+0x1fc/0x540 [ 673.938871][T16014] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 673.938913][T16014] ? __lock_acquire+0x15a9/0x3c40 [ 673.938969][T16014] folio_alloc_mpol_noprof+0x36/0x2f0 [ 673.939011][T16014] vma_alloc_folio_noprof+0xee/0x1b0 [ 673.939049][T16014] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 673.939087][T16014] ? find_held_lock+0x2d/0x110 [ 673.939128][T16014] do_pte_missing+0x202f/0x3e10 [ 673.939192][T16014] __handle_mm_fault+0x1166/0x2c60 [ 673.939253][T16014] ? __pfx___handle_mm_fault+0x10/0x10 [ 673.939302][T16014] ? follow_page_pte+0x3ac/0x1490 [ 673.939349][T16014] ? __pfx_lock_release+0x10/0x10 [ 673.939424][T16014] handle_mm_fault+0x3fa/0xaa0 [ 673.939482][T16014] __get_user_pages+0x773/0x36f0 [ 673.939537][T16014] ? __pfx_mt_find+0x10/0x10 [ 673.939583][T16014] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 673.939632][T16014] ? __pfx___get_user_pages+0x10/0x10 [ 673.939683][T16014] ? __mm_populate+0x21d/0x380 [ 673.939740][T16014] populate_vma_page_range+0x27f/0x3a0 [ 673.939794][T16014] ? __pfx_populate_vma_page_range+0x10/0x10 [ 673.939845][T16014] ? __pfx_find_vma_intersection+0x10/0x10 [ 673.939891][T16014] ? vm_mmap_pgoff+0x29b/0x3a0 [ 673.939952][T16014] __mm_populate+0x1d6/0x380 [ 673.940004][T16014] ? __pfx___mm_populate+0x10/0x10 [ 673.940058][T16014] ? up_write+0x1b2/0x520 [ 673.940110][T16014] vm_mmap_pgoff+0x2d3/0x3a0 [ 673.940160][T16014] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 673.940213][T16014] ? native_tss_update_io_bitmap+0x3cc/0x730 [ 673.940261][T16014] ? __x64_sys_futex+0x1ea/0x4c0 [ 673.940318][T16014] ksys_mmap_pgoff+0x7d/0x5c0 [ 673.940359][T16014] ? rcu_is_watching+0x12/0xc0 [ 673.940397][T16014] __x64_sys_mmap+0x125/0x190 [ 673.940447][T16014] do_syscall_64+0xcd/0x250 [ 673.940493][T16014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 673.940538][T16014] RIP: 0033:0x7fa7f9f8d169 [ 673.940563][T16014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 673.940593][T16014] RSP: 002b:00007fa7fae8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 673.940622][T16014] RAX: ffffffffffffffda RBX: 00007fa7fa1a5fa0 RCX: 00007fa7f9f8d169 [ 673.940643][T16014] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 673.940660][T16014] RBP: 00007fa7fa00e2a0 R08: 0000000000000002 R09: 0000000000008000 [ 673.940679][T16014] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 673.940697][T16014] R13: 0000000000000000 R14: 00007fa7fa1a5fa0 R15: 00007ffdc43ae838 [ 673.940736][T16014] [ 674.306694][ C1] vkms_vblank_simulate: vblank timer overrun [ 674.370045][T15964] Process accounting resumed [ 674.669257][T16021] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2762'. [ 674.723039][T16019] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2765'. [ 675.825456][T16046] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 675.857047][T16048] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:26: corrupted in-inode xattr: bad magic number in in-inode xattr [ 676.176055][T16053] mkiss: ax0: crc mode is auto. [ 676.928229][T16068] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 676.961544][T16069] ================================================================== [ 676.969683][T16069] BUG: KASAN: global-out-of-bounds in __mutex_lock+0x8b9/0xb10 [ 676.977306][T16069] Read of size 8 at addr ffffffff8bb22830 by task syz.1.2779/16069 [ 676.985244][T16069] [ 676.987609][T16069] CPU: 1 UID: 0 PID: 16069 Comm: syz.1.2779 Not tainted 6.14.0-rc5-syzkaller #0 [ 676.987648][T16069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 676.987668][T16069] Call Trace: [ 676.987678][T16069] [ 676.987690][T16069] dump_stack_lvl+0x116/0x1f0 [ 676.987737][T16069] print_report+0xc3/0x670 [ 676.987788][T16069] ? __virt_addr_valid+0x5e/0x590 [ 676.987820][T16069] ? __phys_addr+0xc6/0x150 [ 676.987853][T16069] kasan_report+0xd9/0x110 [ 676.987893][T16069] ? __mutex_lock+0x8b9/0xb10 [ 676.987955][T16069] ? __mutex_lock+0x8b9/0xb10 [ 676.988001][T16069] __mutex_lock+0x8b9/0xb10 [ 676.988042][T16069] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 676.988092][T16069] ? kmem_cache_alloc_node_noprof+0x272/0x3c0 [ 676.988141][T16069] ? hci_devcd_register+0x47/0x170 [ 676.988182][T16069] ? __pfx___mutex_lock+0x10/0x10 [ 676.988222][T16069] ? __asan_memset+0x23/0x50 [ 676.988262][T16069] ? __build_skb_around+0x278/0x3b0 [ 676.988304][T16069] ? __pfx___alloc_skb+0x10/0x10 [ 676.988346][T16069] ? __might_fault+0xe3/0x190 [ 676.988380][T16069] ? __pfx_vhci_coredump+0x10/0x10 [ 676.988418][T16069] ? __pfx_vhci_coredump_hdr+0x10/0x10 [ 676.988477][T16069] ? hci_devcd_register+0x47/0x170 [ 676.988518][T16069] hci_devcd_register+0x47/0x170 [ 676.988560][T16069] force_devcd_write+0x173/0x330 [ 676.988612][T16069] ? __pfx_force_devcd_write+0x10/0x10 [ 676.988659][T16069] ? rcu_is_watching+0x12/0xc0 [ 676.988693][T16069] ? trace_lock_acquire+0x14e/0x1f0 [ 676.988733][T16069] full_proxy_write+0x13c/0x200 [ 676.988776][T16069] ? __pfx_full_proxy_write+0x10/0x10 [ 676.988817][T16069] vfs_write+0x24c/0x1150 [ 676.988862][T16069] ? __fget_files+0x1fc/0x3a0 [ 676.988919][T16069] ? __pfx___mutex_lock+0x10/0x10 [ 676.988960][T16069] ? __pfx_vfs_write+0x10/0x10 [ 676.989005][T16069] ? __fget_files+0x206/0x3a0 [ 676.989055][T16069] ksys_write+0x12b/0x250 [ 676.989096][T16069] ? __pfx_ksys_write+0x10/0x10 [ 676.989144][T16069] do_syscall_64+0xcd/0x250 [ 676.989186][T16069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 676.989231][T16069] RIP: 0033:0x7f885798d169 [ 676.989254][T16069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 676.989286][T16069] RSP: 002b:00007f88587bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 676.989314][T16069] RAX: ffffffffffffffda RBX: 00007f8857ba6080 RCX: 00007f885798d169 [ 676.989334][T16069] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000005 [ 676.989351][T16069] RBP: 00007f8857a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 676.989370][T16069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 676.989388][T16069] R13: 0000000000000000 R14: 00007f8857ba6080 R15: 00007ffd3e5ab0a8 [ 676.989416][T16069] [ 676.989427][T16069] [ 677.264192][T16069] The buggy address belongs to the variable: [ 677.270176][T16069] afs_RXCMxxxx+0x70/0x1580 [ 677.274703][T16069] [ 677.277029][T16069] The buggy address belongs to the physical page: [ 677.283455][T16069] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xbb22 [ 677.292152][T16069] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 677.300085][T16069] raw: 00fff00000002000 ffffea00002ec888 ffffea00002ec888 0000000000000000 [ 677.308681][T16069] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 677.317270][T16069] page dumped because: kasan: bad access detected [ 677.323697][T16069] page_owner info is not present (never set?) [ 677.329768][T16069] [ 677.332096][T16069] Memory state around the buggy address: [ 677.337734][T16069] ffffffff8bb22700: 00 00 00 00 00 00 00 00 00 00 00 00 f9 f9 f9 f9 [ 677.345811][T16069] ffffffff8bb22780: 00 f9 f9 f9 f9 f9 f9 f9 00 00 00 00 00 00 00 00 [ 677.353891][T16069] >ffffffff8bb22800: f9 f9 f9 f9 00 00 02 f9 f9 f9 f9 f9 00 00 00 00 [ 677.361971][T16069] ^ [ 677.367628][T16069] ffffffff8bb22880: 00 05 f9 f9 f9 f9 f9 f9 00 00 00 00 00 02 f9 f9 [ 677.375708][T16069] ffffffff8bb22900: f9 f9 f9 f9 00 00 00 03 f9 f9 f9 f9 00 00 00 00 [ 677.383781][T16069] ================================================================== [ 677.410241][T16069] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 677.417504][T16069] CPU: 0 UID: 0 PID: 16069 Comm: syz.1.2779 Not tainted 6.14.0-rc5-syzkaller #0 [ 677.426572][T16069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 677.436673][T16069] Call Trace: [ 677.439990][T16069] [ 677.442956][T16069] dump_stack_lvl+0x3d/0x1f0 [ 677.447606][T16069] panic+0x71d/0x800 [ 677.451534][T16069] ? __pfx_panic+0x10/0x10 [ 677.455977][T16069] ? irqentry_exit+0x3b/0x90 [ 677.460597][T16069] ? lockdep_hardirqs_on+0x7c/0x110 [ 677.465828][T16069] ? preempt_schedule_thunk+0x1a/0x30 [ 677.471237][T16069] ? preempt_schedule_common+0x44/0xc0 [ 677.476725][T16069] check_panic_on_warn+0xab/0xb0 [ 677.481691][T16069] end_report+0x117/0x180 [ 677.486056][T16069] kasan_report+0xe9/0x110 [ 677.490492][T16069] ? __mutex_lock+0x8b9/0xb10 [ 677.495199][T16069] ? __mutex_lock+0x8b9/0xb10 [ 677.499908][T16069] __mutex_lock+0x8b9/0xb10 [ 677.504442][T16069] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 677.509850][T16069] ? kmem_cache_alloc_node_noprof+0x272/0x3c0 [ 677.515957][T16069] ? hci_devcd_register+0x47/0x170 [ 677.521098][T16069] ? __pfx___mutex_lock+0x10/0x10 [ 677.526147][T16069] ? __asan_memset+0x23/0x50 [ 677.530761][T16069] ? __build_skb_around+0x278/0x3b0 [ 677.535991][T16069] ? __pfx___alloc_skb+0x10/0x10 [ 677.540967][T16069] ? __might_fault+0xe3/0x190 [ 677.545682][T16069] ? __pfx_vhci_coredump+0x10/0x10 [ 677.550820][T16069] ? __pfx_vhci_coredump_hdr+0x10/0x10 [ 677.556324][T16069] ? hci_devcd_register+0x47/0x170 [ 677.561465][T16069] hci_devcd_register+0x47/0x170 [ 677.566433][T16069] force_devcd_write+0x173/0x330 [ 677.571397][T16069] ? __pfx_force_devcd_write+0x10/0x10 [ 677.576884][T16069] ? rcu_is_watching+0x12/0xc0 [ 677.581667][T16069] ? trace_lock_acquire+0x14e/0x1f0 [ 677.586891][T16069] full_proxy_write+0x13c/0x200 [ 677.591770][T16069] ? __pfx_full_proxy_write+0x10/0x10 [ 677.597172][T16069] vfs_write+0x24c/0x1150 [ 677.601529][T16069] ? __fget_files+0x1fc/0x3a0 [ 677.606243][T16069] ? __pfx___mutex_lock+0x10/0x10 [ 677.611316][T16069] ? __pfx_vfs_write+0x10/0x10 [ 677.616134][T16069] ? __fget_files+0x206/0x3a0 [ 677.620846][T16069] ksys_write+0x12b/0x250 [ 677.625220][T16069] ? __pfx_ksys_write+0x10/0x10 [ 677.630124][T16069] do_syscall_64+0xcd/0x250 [ 677.634674][T16069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 677.640603][T16069] RIP: 0033:0x7f885798d169 [ 677.645048][T16069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 677.664678][T16069] RSP: 002b:00007f88587bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 677.673116][T16069] RAX: ffffffffffffffda RBX: 00007f8857ba6080 RCX: 00007f885798d169 [ 677.681106][T16069] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000005 [ 677.689095][T16069] RBP: 00007f8857a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 677.697077][T16069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 677.705057][T16069] R13: 0000000000000000 R14: 00007f8857ba6080 R15: 00007ffd3e5ab0a8 [ 677.713056][T16069] [ 677.716404][T16069] Kernel Offset: disabled [ 677.720741][T16069] Rebooting in 86400 seconds..