last executing test programs:

21m13.474027455s ago: executing program 1 (id=833):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mmap$auto(0x343, 0x403, 0x8, 0xeb1, 0x401, 0x8000)
futex_wake$auto(0x0, 0x4, 0x92, 0x9)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x1000000000000005, 0xeb1, r0, 0x5)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x343403, 0x0)
ftruncate$auto(0x3, 0x700)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=<r4=>r3, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0xc)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000200), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_SET(r5, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000a38044e2bd8a8cda70c7ebe6ae2f9d5a45fff767f7676e4cf469cc34473bd7879d25b3a7fdc45d49553ccee224d63772628ef4c9e770f71bf9ced6b67df0b9bed61a37b11f5fe8e2c2ea0984dd200e1be0b7b6974d52c06028ba13146ff850fd545500018e2f5447f0c5a7160d90b42d9a838eeb13fa63241901f1dbd0c981c0aaab1da2238e0a86a84d", @ANYRES16=r6, @ANYBLOB="01002dbd7000ffdbdf2505000000"], 0x14}, 0x1, 0x0, 0x0, 0x44}, 0x80000)
wait4$auto(0x0, 0x0, 0x2, 0x0)
getuid()
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r1, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)={0x84, r6, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x4}, @TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@typed={0x14, 0x61, 0x0, 0x0, @ipv6=@empty}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@generic="b26942e9a791d4af762220febe3a23c786faa9250236d91f8f0ce966e24e5864eaa52427c6b6bb0ea32d75425d24130f26130b9f"]}, @TIPC_NLA_PUBL={0x18, 0x3, 0x0, 0x1, [@typed={0x7, 0x29, 0x0, 0x0, @str='\'+\x00'}, @typed={0xc, 0x110, 0x0, 0x0, @u64=0x6}]}, @TIPC_NLA_MON={0x4}]}, 0x84}, 0x1, 0x0, 0x0, 0x14}, 0x1)
readv$auto(0x3, 0x0, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@xdp={0x2c, 0x0, r4, 0x1b}, 0x6e)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

21m13.349161956s ago: executing program 1 (id=835):
mmap$auto(0x20, 0x400005, 0xe3, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
setsockopt$auto(0x3, 0x6, 0x19, 0x0, 0xfb3)
r0 = socket(0xf, 0x6, 0x8)
eventfd$auto(0x7)
r1 = open(&(0x7f0000004080)='./file0\x00', 0x40, 0x23)
socket(0x2, 0x3, 0x6)
mmap$auto(0x0, 0x4020009, 0x100, 0xebf, 0x401, 0x8001)
r2 = getsockopt$auto(r1, 0x0, 0x22, 0xfffffffffffffffe, 0x0)
r3 = socket(0xa, 0x3, 0x2c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0xbd8, 0xffffffffffffffff)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
setsockopt$auto(r3, 0x1, 0x2a, 0x0, 0xa95e)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x1e, 0x4, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = socket(0x28, 0x1, 0x0)
setsockopt$auto(r5, 0x28, 0x1, 0x0, 0x8)
setsockopt$auto(r4, 0x10f, 0x87, 0x0, 0x14)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
sysfs$auto(0x2, 0x2, 0x9)
close_range$auto(0x2, 0x8000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000400), r6)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="050326bd7000fcdbdf251f00000005000400a300000007ee72000100000008000300040000000d0afb99c662b67ff1af6eb55dbc4dc416c00af592a4074bd7b1a7770425f8a02ac522cd4984942389113de0fc5d8436887342a7bc5e8a2c1e3101f64157f7d178da97ef9fe76987dfe7513d667fdef716a50cdda1f3b29ba1ee6d339039bd0cf0d8fdb17314bc63c817f260930574bb2f5fdbbe655f10a9f8cdf9e7216880f26b75a702"], 0x2c}, 0x1, 0x0, 0x0, 0x34044040}, 0x4)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r0)
sendmsg$auto_NL802154_CMD_SET_BACKOFF_EXPONENT(r6, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYRESDEC, @ANYRES16=r2, @ANYBLOB="000227bd7000f1db00"/26], 0x20}, 0x1, 0x0, 0x0, 0x5}, 0x8010)

21m12.291166483s ago: executing program 1 (id=838):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
socket(0x2a, 0x1, 0x1)
mmap$auto(0x0, 0x2020009, 0xffff, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0xe986, 0x100df, 0xeb1, 0x401, 0x8000)
r1 = socket$nl_generic(0x11, 0x3, 0x10)
getsockname$auto(r1, &(0x7f0000000080)=@generic={0x2, "4cfb00da5050627285b4246d5d4c"}, &(0x7f00000000c0)=0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(r0, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55)
setsockopt$auto(0x3, 0x1, 0xd, 0x0, 0x8)
close_range$auto(0x2, 0x8000, 0x0)
r2 = socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1040, 0x0)
r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5)
ioctl$auto(r4, 0x4008af23, r3)
setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\xfc\x00\x06\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3)

21m11.444855911s ago: executing program 1 (id=841):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x31}}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x4c8c1}, 0x4000040)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0xfffffdef)
socket(0x23, 0x2, 0x0)
shutdown$auto(0x200000003, 0x2)

21m11.124045734s ago: executing program 1 (id=843):
r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000100), 0x10b000, 0x0)
prctl$auto(0x23, 0x3, 0x2009, 0x0, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r0, 0x40095505, &(0x7f0000000040)={0x4, 0xe, 0x1, 0x5, 0x5d49, 0xae, 0x2, 0x1})

21m10.896095363s ago: executing program 1 (id=845):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
truncate$auto(&(0x7f00000000c0)='./file0\x00', 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = clone3$auto(&(0x7f0000000100)={0x1, 0x6, 0xffffffffffffffff, 0xa93c, 0x40, 0x9, 0x200, 0xfff, 0x761d, 0x4, 0x1}, 0x3)
move_pages$auto(r0, 0x2000000000003, 0x0, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0x400454ca, 0x38)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0x5}, 0x5, 0x80000000)

20m55.726681469s ago: executing program 32 (id=845):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
truncate$auto(&(0x7f00000000c0)='./file0\x00', 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = clone3$auto(&(0x7f0000000100)={0x1, 0x6, 0xffffffffffffffff, 0xa93c, 0x40, 0x9, 0x200, 0xfff, 0x761d, 0x4, 0x1}, 0x3)
move_pages$auto(r0, 0x2000000000003, 0x0, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0x400454ca, 0x38)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0x5}, 0x5, 0x80000000)

20m52.498779179s ago: executing program 0 (id=912):
madvise$auto_MADV_PAGEOUT(0x77, 0xefbe, 0x15)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
unshare$auto(0x40000080)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x18, 0x4, 0x0)
openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0x40002, 0x0)
socket(0x2, 0x801, 0x6)
openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x121080, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x4a0543, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103400, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x800000, 0x40)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183042, 0x0)
sendfile$auto(r1, r1, 0x0, 0x4)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/tty17\x00', 0x0, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptye4\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x6)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)

20m51.78969517s ago: executing program 0 (id=916):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x29, 0x2, 0x0)
socket(0x10, 0x2, 0x0)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
mprotect$auto(0x8000, 0x8, 0x8)

20m50.273190001s ago: executing program 0 (id=918):
socket(0x2, 0x5, 0x0)
rt_tgsigqueueinfo$auto(0x3, 0x96, 0x3, 0x0)
r0 = prctl$auto_PR_GET_FPEMU(0x9, 0x0, 0xffffffffffffffff, 0xe000000000000000, 0xfffffffffffffffe)
ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000d80)="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")
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r2, 0x4, 0x7ff)
ptrace$auto(0xf, r2, 0x1, 0x53)
prctl$auto_PR_SET_VMA(0x53564d41, 0x4, r2, 0x39, 0xb6)
socket(0xa, 0x806, 0x0)
r3 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ubifs/chk_index\x00', 0x40aa2, 0x0)
write$auto_dfs_global_fops_debug(r3, &(0x7f0000000d80)='0', 0x1)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/arp_tables_matches\x00', 0x80, 0x0)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000d40), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x6, 0x0)
r4 = socket(0x1e, 0x4, 0x0)
recvmmsg$auto(r4, 0x0, 0x7, 0x5, 0x0)
bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
getsockopt$auto(r4, 0x84, 0x7a, 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
r5 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/flags\x00', 0x80, 0x0)
read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r5, 0x0, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x2c0000, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
socket(0x2, 0x80002, 0x73)

20m49.90505974s ago: executing program 0 (id=920):
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0xf3fa640505b2330d, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_FREE2(r0, 0x4112, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS642(r0, 0x80984120, &(0x7f0000000040)={0x2, "89d444ad", 0xa68, 0x0, 0x8, 0xc0, 0x2, 0xfff, 0x8001, 0x6, 0x8, 0x6, 0x8, 0x7f0, 0x401, 0x4, 0x5, 0x6, 0x2, "c8ebcdbaf3f935efb9222a033a84405a43a51c07"})
sendmsg$auto(r0, &(0x7f0000000340)={&(0x7f0000000100)="9521d2bbb69844c72d3244de167d984b4b0830749f11c7d4b76d35cd0757c041a7d80516855fdc4026f77d577c1f56b8dd28e076c4dc8b4fac1a7e9846506e13e80f905550d32ba0129d032419b44292a4550f87fab647cab8ba4604accbc9af4de822a973e80abb9b50859a1f1e74b80ca898469e5013c755dd81a171e6de9533e569afa6cf24e04e9c10482e7d019458d731e488356af376467805082688fec5ab41a3df09559e31ef3b813e88bb614cf18427c84566d0588d7fc55091b1b382c74c7f3e4be5494fdeacb115a677dfc2267402b45a5b67", 0x2, &(0x7f0000000280)={&(0x7f0000000200)="a1004bd9dbc19ff00480c04793da6f686ff696b4b88deda768d0c868d7ca2bb333257931cbe58f3c004b5d7ab0dc91595a208c20feaebc94cf4e55e70c83a3c56435247cbcf175352ac0e8a29fcd02b357f6995dca8abb5e3679f24a8363b3dcab3161", 0xde}, 0xffffffffffffffff, &(0x7f00000002c0)="5ace486daa427afe5e9df55a8538fb3c34f0c969a587063fea0cf6618d836faf9d580cfecabac9750223af223c96ec7a2bcfec73ac326aca1c4bd53d8fa5093c5bce76c8a7735d86e6f8c73c029f5b8774e034a7f196fa7b32ebf98015dba95644bd4565f994d8bc28612ca61769f0dfe4c1dd14a059e39d3c25140933caf7d7", 0x3597, 0x9}, 0x3)
pidfd_send_signal$auto(r0, 0x40, &(0x7f0000000480)={@siginfo_0_0={0x3ff, 0x5, 0x8, @_sigfault={&(0x7f0000000380)="96790e663f39381ad829d846213c35c1ca0c00137da1feab79cca55e8a8b07c812151a6677e00f15899eef12908e49b78af36f7d1bb500b783cf1a43c9de62be842a857db59326331574869e371d067506830e6ddb9eacd8d32936b3e025803b11668d35d774bedc751b8da5d1402bb1d401903d5df43b0df163b7a2355c74c623b8e83ef0b246cd7f4206db19bfcdf1efab78c3594ce863639b445177b59991aba2a269ba1060aa00ac09cea6f46b0f6f967c71aa504080dfb6c22f62c3cbffb7a54f2195", @_trapno=0x2}}}, 0x9)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000500), 0xffffffffffffffff)
sysfs$auto(0x5, 0x1, 0x4)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000540)='/proc/thread-self/fail-nth\x00', 0x24000, 0x0)
mmap$auto(0x500000, 0x5, 0x0, 0x12, r1, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000580), r2)
r3 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000600), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000640)={'team_slave_1\x00', <r4=>0x0})
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0x84, r3, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@OVS_VPORT_ATTR_UPCALL_PID={0x60, 0x5, "8e0adfa039d25d963740ec134a6d27fb2689afbb900d00b2a039bf22210526caa6e9f8be520a0664a86ec577c6681ddddeacbf666af92cf5d190ad7346746aa49150e2f5e3874b2035f7feb0677972f0bff73ee648fff70f67da194c"}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x6}, @OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r4}]}, 0x84}, 0x1, 0x0, 0x0, 0xd5}, 0x48014)
ioctl$auto_SNDRV_PCM_IOCTL_SW_PARAMS2(r0, 0xc0884113, &(0x7f00000007c0)={0x6, 0x3, 0xc6c, 0x1, 0x5, 0x1, 0xb, 0x5, 0x2, 0x10, 0x60, 0x7fffffff, "722bc7bd7dda57bc7f8c5f3a7b101d506523d8aaf1c6f1563146d31227bacefdc7850b91857757661ea035b8e225c275071e604341ff91ec"})
r5 = prctl$auto_PR_GET_SECCOMP(0x15, 0x800, 0x0, 0x3, 0x3)
r6 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000008c0), r2)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x2c, r6, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r4}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r7, &(0x7f0000000a80)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x2c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x9}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x6}, @NL80211_ATTR_USE_RRM={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24048001}, 0x2000000)
r8 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000b00), r2)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(r5, &(0x7f0000000bc0)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x34, r8, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_EEE_ENABLED={0x5, 0x5, 0x1}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x2}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
msgctl$auto_MSG_INFO(0x4, 0xc, &(0x7f0000000cc0)={{0x1, <r10=>0xffffffffffffffff, 0x0, 0x1, 0x6, 0x1ff, 0x39}, &(0x7f0000000c40)=0x2, &(0x7f0000000c80)=0xd, 0x10, 0x8, 0x3, 0x3, 0xffffffffffffff80, 0x8, 0x4, 0x6, @raw=0x401})
r11 = clone$auto(0x1000, 0x101, &(0x7f0000000d40)=0x6, &(0x7f0000000d80)=0x4, 0x8000000000000000)
sendmsg$auto_NCSI_CMD_SET_CHANNEL_MASK(r9, &(0x7f0000001980)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001940)={&(0x7f0000000dc0)={0xb78, 0x0, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x4}, @NCSI_ATTR_DATA={0x76f, 0x5, "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"}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x7}, @NCSI_ATTR_PACKAGE_ID={0x8}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x3}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x1f7}, @NCSI_ATTR_PACKAGE_LIST={0x3ca, 0x2, 0x0, 0x1, [@nested={0x12f, 0xef, 0x0, 0x1, [@nested={0x4, 0xf7}, @typed={0x8, 0xc0, 0x0, 0x0, @uid=r10}, @typed={0x8, 0x108, 0x0, 0x0, @u32=0x4}, @generic="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", @nested={0x4, 0x115}, @nested={0x4, 0xef}, @typed={0x8, 0xb8, 0x0, 0x0, @u32=0x5}, @nested={0x4, 0x42}, @nested={0x4, 0xe6}]}, @nested={0xb4, 0xae, 0x0, 0x1, [@nested={0x4, 0xe9}, @generic="53754381f0c33d649ca95e74f2e2adce175fd35b03a356c2716925d79e83d6921a214646f77aa11a3237104a6c6e7febef8ba1f074a73f1c0ea08cdb57e9a46fbda8a575874ad8b3da43268fa0c13ccc85baa1cdc26cdad163c3592b8a0437ac538acbab9a162c240a73c88ba10c2cb40beebe47e4de7419ce791782d9d7de2be9c5c32d08412bb919a094661c5955d3f0bf32785ecd0bfffd99358d7e68df63b0f8c51c801790b5ad9db789"]}, @generic="739d5fc63c16e57e2d4105001f5e4d9ae72941370303a1a208d03830aacb22529a5966e5c1d62e1a8f4b1ba6b4848d5e7b971fde4e26bc6a99f2ef7e147c2bda37b9267a1775259b01ba2925972ca054580864cfdd2ca5eb2666ef3870062050e160a9ea9004b7753a088b9faa1aba52fe9bb1ea53fc030bda2d7e3f61504b947e5c5561a0d56f0191407a0f89276c91cfb7a0119b586afc3c90d3e6a8db45b4c6d7e5d84382e5c2160a983440e3794308d529ba43193e2643dd0b1b0abbdebd33a02ab4777c50448c53cdcaeedd5372e87bdc391950ae9967bf490efb1ab00898", @generic="007fb94df458602843ee30c9c4b1667f068fccdbc2e49b691f17fe0c999338804dc093b400e9d82d1f0e22bf1931b39866fb80e4b7c64e6575b8a7e445416adeabff18b6c1aa77185b7d8475240f67ed8d4b7fa81afcc9ae54a5d269a16e8ee0db646bd2fcae6932dd102ad5d120deabc84259f73b2f8cf5258eb723be16f6f3fa269924e2758ed1cab2eac07816b3f5b79daefc733e24f2ead5745bc90ccfd579adffbfba7abe5bcec978f7151cd46d4a383584f16e5f91ee60ccf4f5dab37371d2c90aec66c12392fb518936b69b233ddf2b443608ed450358424d9e0c787f7c", @nested={0x18, 0xe0, 0x0, 0x1, [@typed={0x13, 0x2b, 0x0, 0x0, @str='MAC80211_HWSIM\x00'}]}, @typed={0x8, 0x3d, 0x0, 0x0, @pid=r11}]}]}, 0xb78}}, 0x20000000)
ioctl$auto_PPPIOCSFLAGS(r5, 0x40047459, &(0x7f00000019c0)=0x1)
io_uring_register$auto(r1, 0x9, &(0x7f0000001a00)="1fff1ef29e7231e61ac1aec086394030ab5472299f4c004dfaf79cc9a2f51aa5399cec05841adefc74cce6b83e488ee4d9777733f0f2e9ea1efc351798b2aaf8d2d7f9a3afb13c96ece370d4363e1a94f7bd8eb425fd59aa919f16beef71dc9e3129b34c33e9dfa02c28f555654cc1a8975fbeaa41e950f7cc7b7fc05d917c22c231f9ba5a81598dbba13eab44a109084b73226e38ab036dbd73c0242dca48a551c9c36d882e63f919ff799dd9ea74ca5b806e0b", 0x9)
openat$auto_ipsec_dbg_fops_ipsec(0xffffffffffffff9c, &(0x7f0000001ac0)='/sys/kernel/debug/netdevsim/netdevsim5/ports/3/ipsec\x00', 0x27a800, 0x0)
prctl$auto_PR_SET_MM_START_CODE(0x3, 0x1, r11, 0x6, 0x5)

20m49.436400244s ago: executing program 0 (id=922):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x4c8c1}, 0x4000040)
mmap$auto(0x2fff, 0x9, 0x8, 0x8000000008011, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0xfffffdef)
socket(0x23, 0x2, 0x0)
shutdown$auto(0x200000003, 0x2)

20m49.150684811s ago: executing program 0 (id=924):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/55, 0x37)
msgctl$auto_MSG_STAT(0xffff, 0xb, &(0x7f00000001c0)={{0x81, 0xee00, 0xee00, 0x0, 0x7, 0x1, 0x517}, &(0x7f0000000140), &(0x7f0000000180)=0x5, 0x8001, 0x9, 0x3, 0x3, 0x13, 0x5, 0x9c, 0x5, @raw=0x9, @inferred=0xffffffffffffffff})
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000e40), 0x80d02, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x20000000000eb1, 0x401, 0x8000)
move_pages$auto(0x0, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0xc1f, 0x9, 0x0)
mmap$auto(0x0, 0x4000000000020009, 0x4000000000e1, 0x400ebf, r1, 0x7)
unshare$auto(0x40800080)
mmap$auto(0x0, 0x400005, 0x2, 0x15, 0xffffffffffffffff, 0x62)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x452a03, 0x0)
write$auto_fuse_dev_operations_fuse_i(r2, &(0x7f0000000440)="19000003d30000", 0x7)
socket(0x2, 0x1, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='\x00'/12, 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x80000000000000d, 0x1, 0x948d, 0x6, 0x15f4da0a, 0x1, 0x8, 0x1000000, 0xfffffffffffffffd, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x7a100ac}, 0x6)
close_range$auto(0x2, 0x8, 0x0)

20m33.992127047s ago: executing program 33 (id=924):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/55, 0x37)
msgctl$auto_MSG_STAT(0xffff, 0xb, &(0x7f00000001c0)={{0x81, 0xee00, 0xee00, 0x0, 0x7, 0x1, 0x517}, &(0x7f0000000140), &(0x7f0000000180)=0x5, 0x8001, 0x9, 0x3, 0x3, 0x13, 0x5, 0x9c, 0x5, @raw=0x9, @inferred=0xffffffffffffffff})
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000e40), 0x80d02, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x20000000000eb1, 0x401, 0x8000)
move_pages$auto(0x0, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0xc1f, 0x9, 0x0)
mmap$auto(0x0, 0x4000000000020009, 0x4000000000e1, 0x400ebf, r1, 0x7)
unshare$auto(0x40800080)
mmap$auto(0x0, 0x400005, 0x2, 0x15, 0xffffffffffffffff, 0x62)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x452a03, 0x0)
write$auto_fuse_dev_operations_fuse_i(r2, &(0x7f0000000440)="19000003d30000", 0x7)
socket(0x2, 0x1, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='\x00'/12, 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x80000000000000d, 0x1, 0x948d, 0x6, 0x15f4da0a, 0x1, 0x8, 0x1000000, 0xfffffffffffffffd, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x7a100ac}, 0x6)
close_range$auto(0x2, 0x8, 0x0)

9.761844219s ago: executing program 4 (id=5825):
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd05, &(0x7f0000000240)="4b76455da8b6c965dcaded7bc426d9e0c203a82d4cc8674558fd998df16fdd6e89c7e89ab53b915fa3d22d4d0dece0b1a1ee813a361143d422b7a15a33af2110ceaa149a1b05bb07d501489eb4787b937af073549dd7cf0a80186786ede76d2a084d8d4aac2cc3ad0576c50a6ff470a9b4ceef0f56dba1e1a64ce5c89db1bf36a4d16fca3e97dcc6ab94d82f20cb8e090080000000000063ec")
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0)
write$auto_fuse_dev_operations_fuse_i(r1, &(0x7f0000000440)="110000000200"/17, 0x11)
socket(0xe, 0x1, 0x0)
r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x100182, 0x0)
pread64$auto(r2, &(0x7f0000000100)='\xb9+.\x00', 0x6, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0xa02, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyw5\x00', 0x0, 0x0)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xcd, 0x0, 0x567)

9.315883468s ago: executing program 2 (id=5828):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
r0 = socket(0x28, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/asound/card0/pcm0c/sub4/xrun_injection\x00', 0x400, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x5, 0x2]}, 0x0)
unshare$auto(0x40000080)
prctl$auto(0x27, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x40802, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
ioctl$auto(0xffffffffffffffff, 0x800064bc, 0x1e6)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'batadv0\x00'})
ioctl$auto_SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000480)="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")
openat$auto_proc_timers_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0x1a1502, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72)
landlock_create_ruleset$auto(0x0, 0x9, 0x0)
fsetxattr$auto(r0, &(0x7f00000001c0)='/dev/ttyS0\x00', &(0x7f0000000880)="a5c31a8ccfc3c5fbb284a056e27306f677700814e26bbe5efd7503c8de7c64a0c34961cbcfad0a9054b3c4adbbe75f1d396867ebf4236f8dc6466abbbee75e7fd6fe0e46e3f050a4d736008141e422d12fa2", 0xe144, 0x2)
close_range$auto(0x2, 0x8, 0x0)

8.152588393s ago: executing program 4 (id=5829):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioperm$auto(0x7, 0x6, 0x1)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x500, 0x0)
mmap$auto(0x0, 0xb, 0x72, 0x8b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto(0x6, 0x40000000029, 0x1e, 0xfffffffffffffffe, 0x0)
unshare$auto(0x40000080)
acct$auto(&(0x7f0000000080)='/proc/sys/kernel/sched_deadline\xdcBH\xc7H\xe2\x1d\b\x00ax_us\x00\xae\xb5\x86\xe9\xf6\xfe\x9b6\x91\x8f\x158\xe7qwI\t0\xc3\xd1\xcd\xf5\x04\xe0B\xe0U<\xb1\x1d\xda\xd2')
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x111142, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty12\x00', 0x800, 0x0)
read$auto_tracing_pipe_fops_trace(0xffffffffffffffff, &(0x7f0000000100)=""/70, 0x46)
setresuid$auto(0x2, 0x7, 0x8080)
ioctl$auto(r1, 0x4b3a, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
write$auto(0xffffffffffffffff, 0x0, 0x0)
io_uring_register$auto(r0, 0x80, &(0x7f0000000240)="89cb92b4015e75fcfb76862efb1f38685d5d0906c31f6a23a61374f4071c09b4bfb0bee1c83bb920dc13b470b60b60d664b688eff561ae914e32da4779e0d6c6f1300e158bfcc179fa82dbdfdefebef014217443721b51426045f8405f25f581fdaa2bb52dc0ca73860d6393a74d1a0bb2ff3f6d6f404150f190b22c6000fffbfce06d7bcaf068af5bfba809446e81bd88de11eca4807a7689e9a9", 0x3)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0))
read$auto_nsim_dev_trap_fa_cookie_fops_dev(r2, &(0x7f0000000000)=""/156, 0x9c)

7.564434997s ago: executing program 5 (id=5830):
ioperm$auto(0x4, 0x8, 0x3)
r0 = socket(0x2, 0x5, 0x0)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ustat$auto(0x801, 0x0)
sendmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000002c0)="bd3d46d0621261053f1dcd51908c2c22b8b56e95083cbdf2d337cf0ff9e38d163606020e506df942c2486601b086ca88d517550bfa133cff3feb6f9908f7a84e3f0318d8154fa55d7762ff6e8f", 0x7fa, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)

6.757278857s ago: executing program 5 (id=5832):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
r0 = socket(0x28, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/asound/card0/pcm0c/sub4/xrun_injection\x00', 0x400, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x5, 0x2]}, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x40802, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
ioctl$auto(0xffffffffffffffff, 0x800064bc, 0x1e6)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'batadv0\x00'})
ioctl$auto_SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000480)="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")
openat$auto_proc_timers_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0x1a1502, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72)
landlock_create_ruleset$auto(0x0, 0x9, 0x0)
fsetxattr$auto(r0, &(0x7f00000001c0)='/dev/ttyS0\x00', &(0x7f0000000880)="a5c31a8ccfc3c5fbb284a056e27306f677700814e26bbe5efd7503c8de7c64a0c34961cbcfad0a9054b3c4adbbe75f1d396867ebf4236f8dc6466abbbee75e7fd6fe0e46e3f050a4d736008141e422d12fa2", 0xe144, 0x2)
close_range$auto(0x2, 0x8, 0x0)

6.26277546s ago: executing program 2 (id=5833):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
r0 = socket(0x10, 0x2, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x44eb2, 0x3, 0x300000000000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)
ioctl$auto(r1, 0xc0104d08, 0x7)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r2, 0x40025504, 0xea3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x2, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x29e, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40008815}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20008841)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x6000, 0x9}, 0x1}, 0x2, 0x0)

6.261932544s ago: executing program 4 (id=5841):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0)
r0 = signalfd$auto(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r2 = socket(0x2b, 0x1, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(0x0, r2)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(r0, &(0x7f00000008c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000880)={&(0x7f0000000200)={0x64, r3, 0x2, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_SCAN_SUPP_RATES={0x8, 0x7d, 0x0, 0x1, [@nested={0x4, 0xac}]}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x5cc}, @NL80211_ATTR_VLAN_ID={0x6}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0xfff5}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x7}, @NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0x1000}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x4}, @NL80211_ATTR_FILS_KEK={0x17, 0xf2, "1ceb52176931bbfd623b3269ae3981c1089a76"}]}, 0x64}, 0x1, 0x0, 0x0, 0x40094}, 0x20000044)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000380)='/dev/bus/usb/013/001\x00', 0x1c100, 0x0)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x8802, 0x0)
r4 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
read$auto(r4, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = socket(0x1d, 0x3, 0x1)
setsockopt$auto(r5, 0x65, 0x2, 0x0, 0x4)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r6, &(0x7f0000000280)=""/65, 0x41)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)

5.557094674s ago: executing program 4 (id=5834):
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001980)={0x3c, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x5}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000280), 0x240000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptybb\x00', 0x628c0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x4605, 0x0)

5.224407978s ago: executing program 4 (id=5835):
mmap$auto(0x0, 0x8000, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(r0, 0x4008ae90, 0x4175746800000000)

4.718525436s ago: executing program 4 (id=5836):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdff00"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x200, 0xf401)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x101, 0x7, 0xeb1, 0x3fd, 0x800007ffc)
r0 = io_uring_setup$auto(0x6, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9)
write$auto(0x6, 0x0, 0x100000001)
connect$auto(0x3, 0x0, 0x55)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYRESHEX=r0, @ANYRESDEC], 0x1ac}}, 0x40001)
msgctl$auto_MSG_STAT_ANY(0x401, 0xd, 0x0)
geteuid()
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r1, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000280)='\x00\x00\x00\x00@\x88\xff\x16\xda\xd6\x1f\x84\xf9\xe3\x10\xda\xa7\x9b;36A\x87}\x00\x01\xb4\xaf\xe55\xce\xbf\xa5\xdcst\xf3\x15=A#I\xd4\xe0({\xf2\xaf\x0fi-k\xed9\xc6\xa3\n\x80\xe9\xa65\xf3\xdfH\x7f\x83\b\xc0\x9aD\x02C\xa4\x14O\x8b\x8e\xc0D\x13\x99\xfb`\xab\xb0\x1a@\x02UA\xd42\x06K\xde\xd6C\xf69\x16\xe8\xd3\x7f\xc5b\x17\x8c\xd9XB\xa5\xf4\x02?\n6\xa098\xcf\x91&\x03\x05)\xa90\x85\x9d\fw`s\a\x94i\\\x97v\xbe\x82\x18\x8e\x9f*D\xedn\xf1\xe4!\xcaZI\xd4\xb8pN\xd65~0\xc6\x8b\xaaQ\\l\x1c2\a\xc2@\x14?\xbe\xc8\xb5V\x03\x1f\xb8\xa8\x82\x1a\x8e\x02[I\xc1\xd8', 0x8, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')

4.429122098s ago: executing program 3 (id=5837):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2b, 0x1, 0x1)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x59e, 0x0, 0x2, 0x9}, 0x207}, 0x40, 0x100)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYRES8=r0], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x5}, 0x5, 0x0, 0x2, 0x200}, 0x7ff}, 0x10a, 0x8, 0x0)
setsockopt$auto(r0, 0x29, 0x20, 0x0, 0x1f)

3.40337691s ago: executing program 2 (id=5839):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video63\x00', 0x80800, 0x0)
read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f00000001c0)=""/191, 0x1f8)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x14)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
r1 = socket(0x10, 0x2, 0x6)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
open_by_handle_at$auto(r2, &(0x7f0000000000)={0x8, 0x2, 'u\x00\x00\x00\x00\x00\x00\x00'}, 0x2)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_fastopen_blackhole_timeout_sec\x00', 0x189302, 0x0)
sendfile$auto(r1, r3, 0x0, 0x3)

3.175359832s ago: executing program 3 (id=5840):
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
r0 = socket(0x2, 0x5, 0x0)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ustat$auto(0x801, 0x0)
sendmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000002c0)="bd3d46d0621261053f1dcd51908c2c22b8b56e95083cbdf2d337cf0ff9e38d163606020e506df942c2486601b086ca88d517550bfa133cff3feb6f9908f7a84e3f0318d8154fa55d7762ff6e8f", 0x7fa, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)

3.077200925s ago: executing program 5 (id=5842):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
r0 = socket(0x28, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/asound/card0/pcm0c/sub4/xrun_injection\x00', 0x400, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x5, 0x2]}, 0x0)
unshare$auto(0x40000080)
prctl$auto(0x27, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x40802, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
ioctl$auto(0xffffffffffffffff, 0x800064bc, 0x1e6)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'batadv0\x00'})
ioctl$auto_SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000480)="f17d9456ac964d7a9d73c932d73700a882860f0a7b185f7ed86bb4d98c4b638afc933044e722baa807b4dd5b0282e719f70c7a3d1a8c2fcf62bf1de6b96b8ade2a98386a331b2f775acf1a8b90a8325bfae4e915c38aa9a6b5599e34540911423d3786b37f4d8c492f6e113c4f76b3af3b3aac6193287d783b5270c81e4dbfa84b169aef547fe7962e6fa7f672ff93e6bce002c536076d45036b190ab37a53a193dcc532959cb5417e3bb16f0cd5160b82a68defa9320734f1382f56be5db540fdf8857d58e92956c607a4d4c274c4916126e4574328d4da4d861c3f9057c0f08a3312a6613340a37e75cef1db24b4ab1394605b2f891a35ccd3f87237c2feb212021fff66e1bcdeefca63a908dde8c4b587785fc38ec2987f7fabf2a7f10cd577fca35dda1cb0e2706a42ccd13b65b6796836c544532d75b02a05281d178e06a4c2a6533f1d2337e374d724d2de13c10f282577b4c4ee3a8105f6a30f7617279dc8e13923b36b248d7e3955cbe93c57652e7847baef35c0e95ff964ad43ba281539a03dcab3eb7f746bd12c019ab898924aa56fd5a65d2a62230b6b8a93cc588a8a89de3110bf85dc37fc4005ec050f12264c9063294228aebd73060899d404c50e6517efe635cd24da5422fd107e657bc9b1e4a1126c04957b24c9e0da02ecd42aa080533d389bbaa94c5fd196cceb0054e61a3576346d7b6c85d3f7abb8dd7c188766db5fe4a1682a336e7eb1a5d40466e9deabad0d5815df3d228d091eafa573fe4970180fd442211e2df8ddef07c7effbb934d1f1dec89e54386377c556c7862e060a6217ba2915fbbb8ba535e7811e2a0bcf833054135f46e56bdc2a053ea37ed20e023f8cad4b37cddb101f9aaeacd25c51823243904257c6a12e7338eb9672606974983c74c6bbfbe6955db1349077bbc9f9834e3f91528a988c78e231cab5d98b051eb8fa7daf9c14bdeec73c73a04d69dbb774df7a6c5049162e424798dacbdef0737197c0fac37dbb490f3f726ff83f6c5e712095a2736fbcb8ca7c16b9056389a99b743c7197c973c1becdd7f0d688c0823b06d4b300da243860c8c6877cb7ebb8b3a82ddc91a80db73b8409083198e394d5da9780f1cb34f1a3cc8ae342c7d403d460b9b40096519b7fd689ca417245f25d5a5e60ae84b8ce793ada965cec7474705496902f5d1822d8ea28e25d902497e38d2288337d895748eaa11d90ed8b611f1f77094fc253a0e08db7024260d09abe0b593edebee8e59796510aad780164a2aed20e290106e5eda1215cb6b396ea48677aeed913749b0274dbe4b6d8ed3166c317b62469ac4d880b56416a9d7a3f9fbdf020bf132be48c8f1dacc300d4ff44f218d03839866e9470c0df95bb14b05cd19025a80737e45f49e0af3aac2aecd3ddf1c1a30d27554a")
openat$auto_proc_timers_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0x1a1502, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72)
landlock_create_ruleset$auto(0x0, 0x9, 0x0)
fsetxattr$auto(r0, &(0x7f00000001c0)='/dev/ttyS0\x00', &(0x7f0000000880)="a5c31a8ccfc3c5fbb284a056e27306f677700814e26bbe5efd7503c8de7c64a0c34961cbcfad0a9054b3c4adbbe75f1d396867ebf4236f8dc6466abbbee75e7fd6fe0e46e3f050a4d736008141e422d12fa2", 0xe144, 0x2)
close_range$auto(0x2, 0x8, 0x0)

2.642763149s ago: executing program 2 (id=5843):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NL80211_CMD_DISASSOCIATE(r0, 0x0, 0x1)
getsockopt$auto(0xffffffffffffffff, 0x84, 0x1b, 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SNDCTL_DSP_SETFMT(r1, 0xc0045005, 0x0)

2.538066228s ago: executing program 3 (id=5844):
r0 = open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x6f)
bpf$auto(0x10, &(0x7f00000000c0)=@info={r0, 0x22, 0x200000007fff}, 0x8)

2.041382215s ago: executing program 3 (id=5845):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
socket(0x28, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/asound/card0/pcm0c/sub4/xrun_injection\x00', 0x400, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, 0x0, 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4460, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x0, 0x5, 0x2]}, 0x0)

1.1631673s ago: executing program 5 (id=5846):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x6, 0xdf, 0x9b72, 0x2, 0x8000)
semget$auto(0x4, 0x2b, 0xffffff4a)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x9, 0x3ff57697, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_urandom_fops_random(0xffffffffffffff9c, 0x0, 0x20a01, 0x0)
ioctl$auto(0x3, 0xc038563b, 0x38)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x7)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x2, 0x0)
r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x4c, r4, 0x20, 0x74bd26, 0x25dfdbf9, {}, [@OVS_PACKET_ATTR_PACKET={0x12, 0x1, "ea90606d9ed08eed900be0919044"}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x6, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mprotect$auto(0x0, 0x2, 0x1000002)
socket(0x1a, 0x4, 0xbe)
r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
r6 = semctl$auto_GETPID(0xffffffff, 0x8, 0xb, 0x7)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r7 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'netpci0\x00'})
write$auto_proc_mem_operations_base(r7, &(0x7f0000001680)="a7", 0x80000)
r8 = openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$auto_kernel_debug_fops_orangefs_debugfs(r8, 0x0, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)={0x3c, r5, 0x1, 0x70bd23, 0x25dfdbfb, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, r6}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x800}, @OVS_DP_ATTR_NAME={0x8, 0x1, '.SR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000800}, 0x80)

1.084709824s ago: executing program 3 (id=5847):
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd05, &(0x7f0000000240)="4b76455da8b6c965dcaded7bc426d9e0c203a82d4cc8674558fd998df16fdd6e89c7e89ab53b915fa3d22d4d0dece0b1a1ee813a361143d422b7a15a33af2110ceaa149a1b05bb07d501489eb4787b937af073549dd7cf0a80186786ede76d2a084d8d4aac2cc3ad0576c50a6ff470a9b4ceef0f56dba1e1a64ce5c89db1bf36a4d16fca3e97dcc6ab94d82f20cb8e090080000000000063ec")
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0)
write$auto_fuse_dev_operations_fuse_i(r1, &(0x7f0000000440)="110000000200"/17, 0x11)
socket(0xe, 0x1, 0x0)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x100182, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0xa02, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyw5\x00', 0x0, 0x0)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xcd, 0x0, 0x567)

888.89442ms ago: executing program 2 (id=5848):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0)
r0 = signalfd$auto(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r2 = socket(0x2b, 0x1, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(0x0, r2)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(r0, &(0x7f00000008c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000880)={&(0x7f0000000200)={0x64, r3, 0x2, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_SCAN_SUPP_RATES={0x8, 0x7d, 0x0, 0x1, [@generic, @nested={0x4, 0xac}]}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x5cc}, @NL80211_ATTR_VLAN_ID={0x6}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0xfff5}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x7}, @NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0x1000}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x4}, @NL80211_ATTR_FILS_KEK={0x17, 0xf2, "1ceb52176931bbfd623b3269ae3981c1089a76"}]}, 0x64}, 0x1, 0x0, 0x0, 0x40094}, 0x20000044)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000380)='/dev/bus/usb/013/001\x00', 0x1c100, 0x0)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x8802, 0x0)
r4 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
read$auto(r4, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = socket(0x1d, 0x3, 0x1)
setsockopt$auto(r5, 0x65, 0x2, 0x0, 0x4)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r6, &(0x7f0000000280)=""/65, 0x41)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)

660.316493ms ago: executing program 5 (id=5849):
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001980)={0x3c, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x5}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000280), 0x240000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x4605, 0x0)

328.823461ms ago: executing program 5 (id=5850):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioperm$auto(0x7, 0x6, 0x1)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x500, 0x0)
mmap$auto(0x0, 0xb, 0x72, 0x8b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto(0x6, 0x40000000029, 0x1e, 0xfffffffffffffffe, 0x0)
unshare$auto(0x40000080)
acct$auto(&(0x7f0000000080)='/proc/sys/kernel/sched_deadline\xdcBH\xc7H\xe2\x1d\b\x00ax_us\x00\xae\xb5\x86\xe9\xf6\xfe\x9b6\x91\x8f\x158\xe7qwI\t0\xc3\xd1\xcd\xf5\x04\xe0B\xe0U<\xb1\x1d\xda\xd2')
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x111142, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty12\x00', 0x800, 0x0)
read$auto_tracing_pipe_fops_trace(0xffffffffffffffff, &(0x7f0000000100)=""/70, 0x46)
setresuid$auto(0x2, 0x7, 0x8080)
ioctl$auto(r1, 0x4b3a, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
write$auto(0xffffffffffffffff, 0x0, 0x0)
io_uring_register$auto(r0, 0x80, &(0x7f0000000240)="89cb92b4015e75fcfb76862efb1f38685d5d0906c31f6a23a61374f4071c09b4bfb0bee1c83bb920dc13b470b60b60d664b688eff561ae914e32da4779e0d6c6f1300e158bfcc179fa82dbdfdefebef014217443721b51426045f8405f25f581fdaa2bb52dc0ca73860d6393a74d1a0bb2ff3f6d6f404150f190b22c6000fffbfce06d7bcaf068af5bfba809446e81bd88de11eca4807a7689e9a9", 0x3)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0))
read$auto_nsim_dev_trap_fa_cookie_fops_dev(r2, &(0x7f0000000000)=""/156, 0x9c)

305.830387ms ago: executing program 2 (id=5851):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioperm$auto(0x7, 0x6, 0x1)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x500, 0x0)
mmap$auto(0x0, 0xb, 0x72, 0x8b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto(0x6, 0x40000000029, 0x1e, 0xfffffffffffffffe, 0x0)
unshare$auto(0x40000080)
acct$auto(&(0x7f0000000080)='/proc/sys/kernel/sched_deadline\xdcBH\xc7H\xe2\x1d\b\x00ax_us\x00\xae\xb5\x86\xe9\xf6\xfe\x9b6\x91\x8f\x158\xe7qwI\t0\xc3\xd1\xcd\xf5\x04\xe0B\xe0U<\xb1\x1d\xda\xd2')
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x111142, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty12\x00', 0x800, 0x0)
read$auto_tracing_pipe_fops_trace(0xffffffffffffffff, &(0x7f0000000100)=""/70, 0x46)
setresuid$auto(0x2, 0x7, 0x8080)
ioctl$auto(r1, 0x4b3a, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x0)
set_mempolicy$auto(0x4005, &(0x7f0000000000)=0x1, 0x4)
io_uring_register$auto(r0, 0x80, &(0x7f0000000240)="89cb92b4015e75fcfb76862efb1f38685d5d0906c31f6a23a61374f4071c09b4bfb0bee1c83bb920dc13b470b60b60d664b688eff561ae914e32da4779e0d6c6f1300e158bfcc179fa82dbdfdefebef014217443721b51426045f8405f25f581fdaa2bb52dc0ca73860d6393a74d1a0bb2ff3f6d6f404150f190b22c6000fffbfce06d7bcaf068af5bfba809446e81bd88de11eca4807a7689e9a9", 0x3)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0))
read$auto_nsim_dev_trap_fa_cookie_fops_dev(r2, &(0x7f0000000000)=""/156, 0x9c)
wait4$auto(0x0, &(0x7f0000000200)=0x400, 0x1c000000, &(0x7f0000000300)={{0xd, 0x80000000000005}, {0x1, 0x400000000000002}, 0x2, 0x3, 0x9, 0x0, 0x8, 0xcfe, 0x0, 0x1, 0x800, 0x1, 0x80000001, 0x3, 0x8, 0x5})
madvise$auto(0x0, 0x200007, 0x19)

0s ago: executing program 3 (id=5852):
r0 = openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci0/force_wakeup\x00', 0x88f42, 0x0)
write$auto_force_wakeup_fops_hci_vhci(r0, &(0x7f0000001780)='T', 0x1)
r1 = socket(0x5, 0x5, 0x5)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
listen$auto(0x3, 0x81)
read$auto(r1, 0x0, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0)
sendfile$auto(r2, r2, 0x0, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x6a)
listen$auto(0x3, 0x81)
close_range$auto(0x2, 0xa, 0x0)

kernel console output (not intermixed with test programs):

27]  ? __pfx___mutex_lock+0x10/0x10
[ 1436.712256][T26127]  ? __pfx_vfs_read+0x10/0x10
[ 1436.712302][T26127]  ? __fget_files+0x206/0x3a0
[ 1436.712351][T26127]  ksys_read+0x12b/0x250
[ 1436.712387][T26127]  ? __pfx_ksys_read+0x10/0x10
[ 1436.712434][T26127]  do_syscall_64+0xcd/0x250
[ 1436.712473][T26127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1436.712512][T26127] RIP: 0033:0x7f100d38bb7c
[ 1436.712534][T26127] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1436.712559][T26127] RSP: 002b:00007f100e227030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1436.712585][T26127] RAX: ffffffffffffffda RBX: 00007f100d5a5fa0 RCX: 00007f100d38bb7c
[ 1436.712602][T26127] RDX: 000000000000000f RSI: 00007f100e2270a0 RDI: 0000000000000004
[ 1436.712618][T26127] RBP: 00007f100e227090 R08: 0000000000000000 R09: 0000000000000000
[ 1436.712634][T26127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1436.712650][T26127] R13: 0000000000000000 R14: 00007f100d5a5fa0 R15: 00007ffc3abad6a8
[ 1436.712691][T26127]  </TASK>
[ 1437.264346][T26133] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1437.376770][T26135] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1437.405329][T26135] udevd[26135]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1437.494601][T26139] FAULT_INJECTION: forcing a failure.
[ 1437.494601][T26139] name failslab, interval 1, probability 0, space 0, times 0
[ 1437.507450][T26139] CPU: 1 UID: 0 PID: 26139 Comm: syz.3.4998 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1437.507490][T26139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1437.507510][T26139] Call Trace:
[ 1437.507519][T26139]  <TASK>
[ 1437.507531][T26139]  dump_stack_lvl+0x16c/0x1f0
[ 1437.507588][T26139]  should_fail_ex+0x50a/0x650
[ 1437.507639][T26139]  ? fs_reclaim_acquire+0xae/0x150
[ 1437.507682][T26139]  should_failslab+0xc2/0x120
[ 1437.507712][T26139]  __kmalloc_node_noprof+0xd1/0x510
[ 1437.507762][T26139]  ? __vmalloc_node_range_noprof+0x3d8/0x1530
[ 1437.507811][T26139]  __vmalloc_node_range_noprof+0x3d8/0x1530
[ 1437.507868][T26139]  ? n_tty_open+0x1a/0x170
[ 1437.507917][T26139]  ? __ldsem_down_write_nested+0x10f/0x8d0
[ 1437.507968][T26139]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1437.508023][T26139]  ? n_tty_open+0x1a/0x170
[ 1437.508069][T26139]  vzalloc_noprof+0x6b/0x90
[ 1437.508111][T26139]  ? n_tty_open+0x1a/0x170
[ 1437.508154][T26139]  ? __pfx_n_tty_open+0x10/0x10
[ 1437.508197][T26139]  n_tty_open+0x1a/0x170
[ 1437.508241][T26139]  ? __pfx_n_tty_open+0x10/0x10
[ 1437.508285][T26139]  tty_ldisc_open+0x9c/0x120
[ 1437.508325][T26139]  tty_ldisc_setup+0x40/0x100
[ 1437.508380][T26139]  tty_init_dev.part.0+0x1e7/0x660
[ 1437.508431][T26139]  tty_open+0xac1/0xf80
[ 1437.508478][T26139]  ? chrdev_open+0x10e/0x6a0
[ 1437.508536][T26139]  ? __pfx_tty_open+0x10/0x10
[ 1437.508599][T26139]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1437.508633][T26139]  ? lock_acquire+0x2f/0xb0
[ 1437.508676][T26139]  ? chrdev_open+0x80/0x6a0
[ 1437.508731][T26139]  ? __pfx_tty_open+0x10/0x10
[ 1437.508775][T26139]  chrdev_open+0x237/0x6a0
[ 1437.508823][T26139]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1437.508867][T26139]  ? __pfx_chrdev_open+0x10/0x10
[ 1437.508920][T26139]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1437.508973][T26139]  do_dentry_open+0x735/0x1c40
[ 1437.509020][T26139]  ? __pfx_chrdev_open+0x10/0x10
[ 1437.509079][T26139]  vfs_open+0x82/0x3f0
[ 1437.509110][T26139]  ? may_open+0x1f2/0x400
[ 1437.509151][T26139]  path_openat+0x1e88/0x2d80
[ 1437.509215][T26139]  ? __pfx_path_openat+0x10/0x10
[ 1437.509265][T26139]  ? __pfx___lock_acquire+0x10/0x10
[ 1437.509308][T26139]  ? lock_acquire.part.0+0x11b/0x380
[ 1437.509353][T26139]  ? find_held_lock+0x2d/0x110
[ 1437.509393][T26139]  do_filp_open+0x20c/0x470
[ 1437.509441][T26139]  ? __pfx_do_filp_open+0x10/0x10
[ 1437.509488][T26139]  ? find_held_lock+0x2d/0x110
[ 1437.509575][T26139]  ? alloc_fd+0x41f/0x760
[ 1437.509628][T26139]  do_sys_openat2+0x17a/0x1e0
[ 1437.509660][T26139]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1437.509706][T26139]  __x64_sys_openat+0x175/0x210
[ 1437.509738][T26139]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1437.509772][T26139]  ? syscall_user_dispatch+0x7a/0x130
[ 1437.509829][T26139]  do_syscall_64+0xcd/0x250
[ 1437.509870][T26139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1437.509912][T26139] RIP: 0033:0x7f2a7ab8d169
[ 1437.509935][T26139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1437.509963][T26139] RSP: 002b:00007f2a7ba3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1437.509991][T26139] RAX: ffffffffffffffda RBX: 00007f2a7ada5fa0 RCX: 00007f2a7ab8d169
[ 1437.510010][T26139] RDX: 0000000000040000 RSI: 0000400000000040 RDI: ffffffffffffff9c
[ 1437.510029][T26139] RBP: 00007f2a7ac0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1437.510047][T26139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1437.510064][T26139] R13: 0000000000000000 R14: 00007f2a7ada5fa0 R15: 00007ffcbea38f78
[ 1437.510100][T26139]  </TASK>
[ 1437.510114][T26139] syz.3.4998: vmalloc error: size 12288, failed to allocated page array size 24, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1437.892023][T26139] CPU: 1 UID: 0 PID: 26139 Comm: syz.3.4998 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1437.892061][T26139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1437.892078][T26139] Call Trace:
[ 1437.892087][T26139]  <TASK>
[ 1437.892098][T26139]  dump_stack_lvl+0x16c/0x1f0
[ 1437.892142][T26139]  warn_alloc+0x24d/0x3a0
[ 1437.892190][T26139]  ? __pfx_warn_alloc+0x10/0x10
[ 1437.892231][T26139]  ? dump_stack_lvl+0x185/0x1f0
[ 1437.892267][T26139]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1437.892313][T26139]  ? rcu_is_watching+0x12/0xc0
[ 1437.892343][T26139]  ? trace_kmalloc+0x2d/0xd0
[ 1437.892374][T26139]  ? __kmalloc_node_noprof+0x23d/0x510
[ 1437.892426][T26139]  __vmalloc_node_range_noprof+0x1102/0x1530
[ 1437.892480][T26139]  ? n_tty_open+0x1a/0x170
[ 1437.892527][T26139]  ? __ldsem_down_write_nested+0x10f/0x8d0
[ 1437.892575][T26139]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1437.892627][T26139]  ? n_tty_open+0x1a/0x170
[ 1437.892669][T26139]  vzalloc_noprof+0x6b/0x90
[ 1437.892708][T26139]  ? n_tty_open+0x1a/0x170
[ 1437.892748][T26139]  ? __pfx_n_tty_open+0x10/0x10
[ 1437.892796][T26139]  n_tty_open+0x1a/0x170
[ 1437.892836][T26139]  ? __pfx_n_tty_open+0x10/0x10
[ 1437.892883][T26139]  tty_ldisc_open+0x9c/0x120
[ 1437.892916][T26139]  tty_ldisc_setup+0x40/0x100
[ 1437.892949][T26139]  tty_init_dev.part.0+0x1e7/0x660
[ 1437.892992][T26139]  tty_open+0xac1/0xf80
[ 1437.893030][T26139]  ? chrdev_open+0x10e/0x6a0
[ 1437.893079][T26139]  ? __pfx_tty_open+0x10/0x10
[ 1437.893115][T26139]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1437.893144][T26139]  ? lock_acquire+0x2f/0xb0
[ 1437.893181][T26139]  ? chrdev_open+0x80/0x6a0
[ 1437.893227][T26139]  ? __pfx_tty_open+0x10/0x10
[ 1437.893265][T26139]  chrdev_open+0x237/0x6a0
[ 1437.893307][T26139]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1437.893345][T26139]  ? __pfx_chrdev_open+0x10/0x10
[ 1437.893392][T26139]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1437.893438][T26139]  do_dentry_open+0x735/0x1c40
[ 1437.893480][T26139]  ? __pfx_chrdev_open+0x10/0x10
[ 1437.893531][T26139]  vfs_open+0x82/0x3f0
[ 1437.893558][T26139]  ? may_open+0x1f2/0x400
[ 1437.893592][T26139]  path_openat+0x1e88/0x2d80
[ 1437.893647][T26139]  ? __pfx_path_openat+0x10/0x10
[ 1437.893689][T26139]  ? __pfx___lock_acquire+0x10/0x10
[ 1437.893727][T26139]  ? lock_acquire.part.0+0x11b/0x380
[ 1437.893767][T26139]  ? find_held_lock+0x2d/0x110
[ 1437.893808][T26139]  do_filp_open+0x20c/0x470
[ 1437.893851][T26139]  ? __pfx_do_filp_open+0x10/0x10
[ 1437.893891][T26139]  ? find_held_lock+0x2d/0x110
[ 1437.893947][T26139]  ? alloc_fd+0x41f/0x760
[ 1437.893999][T26139]  do_sys_openat2+0x17a/0x1e0
[ 1437.894029][T26139]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1437.894074][T26139]  __x64_sys_openat+0x175/0x210
[ 1437.894106][T26139]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1437.894140][T26139]  ? syscall_user_dispatch+0x7a/0x130
[ 1437.894197][T26139]  do_syscall_64+0xcd/0x250
[ 1437.894239][T26139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1437.894280][T26139] RIP: 0033:0x7f2a7ab8d169
[ 1437.894302][T26139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1437.894331][T26139] RSP: 002b:00007f2a7ba3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1437.894358][T26139] RAX: ffffffffffffffda RBX: 00007f2a7ada5fa0 RCX: 00007f2a7ab8d169
[ 1437.894376][T26139] RDX: 0000000000040000 RSI: 0000400000000040 RDI: ffffffffffffff9c
[ 1437.894394][T26139] RBP: 00007f2a7ac0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1437.894411][T26139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1437.894427][T26139] R13: 0000000000000000 R14: 00007f2a7ada5fa0 R15: 00007ffcbea38f78
[ 1437.894462][T26139]  </TASK>
[ 1437.894611][T26139] Mem-Info:
[ 1438.267468][T26139] active_anon:43855 inactive_anon:1 isolated_anon:0
[ 1438.267468][T26139]  active_file:6387 inactive_file:55118 isolated_file:0
[ 1438.267468][T26139]  unevictable:768 dirty:521 writeback:25
[ 1438.267468][T26139]  slab_reclaimable:11720 slab_unreclaimable:101120
[ 1438.267468][T26139]  mapped:30041 shmem:30739 pagetables:1181
[ 1438.267468][T26139]  sec_pagetables:0 bounce:0
[ 1438.267468][T26139]  kernel_misc_reclaimable:0
[ 1438.267468][T26139]  free:1282352 free_pcp:4786 free_cma:0
[ 1438.321692][T15196] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[ 1438.361462][T26139] Node 0 active_anon:176284kB inactive_anon:4kB active_file:25580kB inactive_file:220468kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:120944kB dirty:2052kB writeback:72kB shmem:122276kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10924kB pagetables:4528kB sec_pagetables:0kB all_unreclaimable? no
[ 1438.508290][T26139] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1438.579656][T26139] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1438.652676][T26155] FAULT_INJECTION: forcing a failure.
[ 1438.652676][T26155] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1438.655284][T26139] lowmem_reserve[]:
[ 1438.684847][T26155] CPU: 0 UID: 0 PID: 26155 Comm: syz.2.5003 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1438.684886][T26155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1438.684902][T26155] Call Trace:
[ 1438.684911][T26155]  <TASK>
[ 1438.684922][T26155]  dump_stack_lvl+0x16c/0x1f0
[ 1438.684964][T26155]  should_fail_ex+0x50a/0x650
[ 1438.685011][T26155]  _copy_to_user+0x32/0xd0
[ 1438.685046][T26155]  simple_read_from_buffer+0xd0/0x160
[ 1438.685083][T26155]  proc_fail_nth_read+0x198/0x270
[ 1438.685114][T26155]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1438.685151][T26155]  ? rw_verify_area+0xcf/0x680
[ 1438.685183][T26155]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1438.685215][T26155]  vfs_read+0x1df/0xbf0
[ 1438.685252][T26155]  ? __fget_files+0x1fc/0x3a0
[ 1438.685286][T26155]  ? __pfx___mutex_lock+0x10/0x10
[ 1438.685340][T26155]  ? __pfx_vfs_read+0x10/0x10
[ 1438.685395][T26155]  ? __fget_files+0x206/0x3a0
[ 1438.685437][T26155]  ksys_read+0x12b/0x250
[ 1438.685468][T26155]  ? __pfx_ksys_read+0x10/0x10
[ 1438.685509][T26155]  do_syscall_64+0xcd/0x250
[ 1438.685543][T26155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1438.685577][T26155] RIP: 0033:0x7f100d38bb7c
[ 1438.685596][T26155] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1438.685619][T26155] RSP: 002b:00007f100e206030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1438.685642][T26155] RAX: ffffffffffffffda RBX: 00007f100d5a6080 RCX: 00007f100d38bb7c
[ 1438.685658][T26155] RDX: 000000000000000f RSI: 00007f100e2060a0 RDI: 0000000000000006
[ 1438.685672][T26155] RBP: 00007f100e206090 R08: 0000000000000000 R09: 0000000000000000
[ 1438.685687][T26155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1438.685701][T26155] R13: 0000000000000001 R14: 00007f100d5a6080 R15: 00007ffc3abad6a8
[ 1438.685730][T26155]  </TASK>
[ 1438.874701][T26139]  0 2487 2487 0 0
[ 1438.878552][T26139] Node 0 DMA32 free:1209544kB boost:0kB min:34392kB low:42988kB high:51584kB reserved_highatomic:0KB active_anon:184376kB inactive_anon:4kB active_file:25580kB inactive_file:220380kB unevictable:1536kB writepending:2124kB present:3129332kB managed:2547528kB mlocked:0kB bounce:0kB free_pcp:5988kB local_pcp:4856kB free_cma:0kB
[ 1438.910351][T26139] lowmem_reserve[]: 0 0 0 0 0
[ 1438.920468][T26139] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:88kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:4kB free_cma:0kB
[ 1438.963794][T26139] lowmem_reserve[]: 0 0 0 0 0
[ 1438.968694][T26139] Node 1 Normal free:3887648kB boost:0kB min:55504kB low:69380kB high:83256kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:17740kB local_pcp:12188kB free_cma:0kB
[ 1439.022604][T26139] lowmem_reserve[]: 0 0 0 0 0
[ 1439.030832][T26139] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1439.070563][T26139] Node 0 DMA32: 37*4kB (UE) 10*8kB (ME) 47*16kB (ME) 22*32kB (ME) 645*64kB (UME) 636*128kB (UME) 313*256kB (UME) 126*512kB (UME) 96*1024kB (UME) 19*2048kB (UM) 192*4096kB (UME) = 1192660kB
[ 1439.151057][T26139] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1439.220470][T26139] Node 1 Normal: 208*4kB (UME) 72*8kB (UME) 38*16kB (UME) 218*32kB (UME) 90*64kB (UME) 33*128kB (UME) 16*256kB (UE) 12*512kB (UME) 8*1024kB (UME) 4*2048kB (UE) 938*4096kB (UM) = 3887648kB
[ 1439.239531][T26139] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1439.550626][T26139] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[ 1439.589875][T26139] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1439.660286][T26139] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 1439.680590][T26163] FAULT_INJECTION: forcing a failure.
[ 1439.680590][T26163] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1439.710006][T26139] 102054 total pagecache pages
[ 1439.714897][T26139] 5 pages in swap cache
[ 1439.719221][T26139] Free swap  = 124700kB
[ 1439.724225][T26139] Total swap = 124996kB
[ 1439.729795][T26163] CPU: 1 UID: 0 PID: 26163 Comm: syz.5.5007 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1439.729835][T26163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1439.729851][T26163] Call Trace:
[ 1439.729860][T26163]  <TASK>
[ 1439.729870][T26163]  dump_stack_lvl+0x16c/0x1f0
[ 1439.729913][T26163]  should_fail_ex+0x50a/0x650
[ 1439.729960][T26163]  _copy_from_user+0x2e/0xd0
[ 1439.729990][T26163]  copy_msghdr_from_user+0x99/0x160
[ 1439.730032][T26163]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1439.730088][T26163]  ___sys_sendmsg+0xff/0x1e0
[ 1439.730129][T26163]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1439.730183][T26163]  ? __pfx_lock_release+0x10/0x10
[ 1439.730221][T26163]  ? trace_lock_acquire+0x14e/0x1f0
[ 1439.730264][T26163]  ? __fget_files+0x206/0x3a0
[ 1439.730313][T26163]  __sys_sendmsg+0x16e/0x220
[ 1439.730355][T26163]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1439.730418][T26163]  do_syscall_64+0xcd/0x250
[ 1439.730458][T26163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1439.730497][T26163] RIP: 0033:0x7f2bfbf8d169
[ 1439.730518][T26163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1439.730544][T26163] RSP: 002b:00007f2bfcebc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1439.730569][T26163] RAX: ffffffffffffffda RBX: 00007f2bfc1a5fa0 RCX: 00007f2bfbf8d169
[ 1439.730593][T26163] RDX: 000000000400c850 RSI: 0000400000000840 RDI: 0000000000000003
[ 1439.730611][T26163] RBP: 00007f2bfcebc090 R08: 0000000000000000 R09: 0000000000000000
[ 1439.730627][T26163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1439.730643][T26163] R13: 0000000000000000 R14: 00007f2bfc1a5fa0 R15: 00007ffe374a4b58
[ 1439.730676][T26163]  </TASK>
[ 1439.736837][T26139] 2097051 pages RAM
[ 1439.944620][T26139] 0 pages HighMem/MovableOnly
[ 1439.958526][T26139] 428511 pages reserved
[ 1439.962844][T26139] 0 pages cma reserved
[ 1439.966995][T26139] tty tty26: ldisc open failed (-12), clearing slot 25
[ 1440.202658][T26171] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1440.268443][T26171] udevd[26171]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1441.620303][T15196] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[ 1443.271550][T26205] ptrace attach of "./syz-executor exec"[19455] was attempted by "./syz-executor exec"[26205]
[ 1443.468898][T26211] FAULT_INJECTION: forcing a failure.
[ 1443.468898][T26211] name failslab, interval 1, probability 0, space 0, times 0
[ 1443.517455][T26211] CPU: 0 UID: 0 PID: 26211 Comm: syz.4.5019 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1443.517494][T26211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1443.517512][T26211] Call Trace:
[ 1443.517522][T26211]  <TASK>
[ 1443.517535][T26211]  dump_stack_lvl+0x16c/0x1f0
[ 1443.517579][T26211]  should_fail_ex+0x50a/0x650
[ 1443.517627][T26211]  ? fs_reclaim_acquire+0xae/0x150
[ 1443.517668][T26211]  should_failslab+0xc2/0x120
[ 1443.517696][T26211]  __kmalloc_node_noprof+0xd1/0x510
[ 1443.517742][T26211]  ? __vmalloc_node_range_noprof+0x3d8/0x1530
[ 1443.517789][T26211]  __vmalloc_node_range_noprof+0x3d8/0x1530
[ 1443.517842][T26211]  ? n_tty_open+0x1a/0x170
[ 1443.517888][T26211]  ? __ldsem_down_write_nested+0x10f/0x8d0
[ 1443.517933][T26211]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1443.517985][T26211]  ? n_tty_open+0x1a/0x170
[ 1443.518029][T26211]  vzalloc_noprof+0x6b/0x90
[ 1443.518067][T26211]  ? n_tty_open+0x1a/0x170
[ 1443.518108][T26211]  ? __pfx_n_tty_open+0x10/0x10
[ 1443.518147][T26211]  n_tty_open+0x1a/0x170
[ 1443.518199][T26211]  ? __pfx_n_tty_open+0x10/0x10
[ 1443.518241][T26211]  tty_ldisc_open+0x9c/0x120
[ 1443.518273][T26211]  tty_ldisc_setup+0x40/0x100
[ 1443.518312][T26211]  tty_init_dev.part.0+0x1e7/0x660
[ 1443.518374][T26211]  tty_open+0xac1/0xf80
[ 1443.518417][T26211]  ? chrdev_open+0x10e/0x6a0
[ 1443.518473][T26211]  ? __pfx_tty_open+0x10/0x10
[ 1443.518515][T26211]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1443.518548][T26211]  ? lock_acquire+0x2f/0xb0
[ 1443.518591][T26211]  ? chrdev_open+0x80/0x6a0
[ 1443.518643][T26211]  ? __pfx_tty_open+0x10/0x10
[ 1443.518687][T26211]  chrdev_open+0x237/0x6a0
[ 1443.518736][T26211]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1443.518779][T26211]  ? __pfx_chrdev_open+0x10/0x10
[ 1443.518834][T26211]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1443.518887][T26211]  do_dentry_open+0x735/0x1c40
[ 1443.518934][T26211]  ? __pfx_chrdev_open+0x10/0x10
[ 1443.518994][T26211]  vfs_open+0x82/0x3f0
[ 1443.519024][T26211]  ? may_open+0x1f2/0x400
[ 1443.519066][T26211]  path_openat+0x1e88/0x2d80
[ 1443.519130][T26211]  ? __pfx_path_openat+0x10/0x10
[ 1443.519178][T26211]  ? __pfx___lock_acquire+0x10/0x10
[ 1443.519229][T26211]  ? lock_acquire.part.0+0x11b/0x380
[ 1443.519276][T26211]  ? find_held_lock+0x2d/0x110
[ 1443.519317][T26211]  do_filp_open+0x20c/0x470
[ 1443.519365][T26211]  ? __pfx_do_filp_open+0x10/0x10
[ 1443.519411][T26211]  ? find_held_lock+0x2d/0x110
[ 1443.519473][T26211]  ? alloc_fd+0x41f/0x760
[ 1443.519541][T26211]  do_sys_openat2+0x17a/0x1e0
[ 1443.519574][T26211]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1443.519630][T26211]  __x64_sys_openat+0x175/0x210
[ 1443.519662][T26211]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1443.519696][T26211]  ? syscall_user_dispatch+0x7a/0x130
[ 1443.519754][T26211]  do_syscall_64+0xcd/0x250
[ 1443.519795][T26211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1443.519836][T26211] RIP: 0033:0x7f70d1f8d169
[ 1443.519859][T26211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1443.519887][T26211] RSP: 002b:00007f70cfdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1443.519915][T26211] RAX: ffffffffffffffda RBX: 00007f70d21a5fa0 RCX: 00007f70d1f8d169
[ 1443.519935][T26211] RDX: 0000000000040000 RSI: 0000400000000040 RDI: ffffffffffffff9c
[ 1443.519953][T26211] RBP: 00007f70d200e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1443.519970][T26211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1443.519986][T26211] R13: 0000000000000000 R14: 00007f70d21a5fa0 R15: 00007ffdf2b2fc08
[ 1443.520040][T26211]  </TASK>
[ 1443.957987][T26211] tty tty26: ldisc open failed (-12), clearing slot 25
[ 1445.059370][T26218] ptrace attach of "./syz-executor exec"[19734] was attempted by "./syz-executor exec"[26218]
[ 1445.499784][T15196] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 1445.670344][T15196] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 1446.055766][T26237] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1446.148499][T26238] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:10: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1446.153063][T26237] udevd[26237]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1446.485591][T26241] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1446.991726][T26248] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1447.045151][T26249] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1447.089696][T26245] FAULT_INJECTION: forcing a failure.
[ 1447.089696][T26245] name failslab, interval 1, probability 0, space 0, times 0
[ 1447.106018][T26245] CPU: 1 UID: 0 PID: 26245 Comm: syz.3.5030 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1447.106057][T26245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1447.106074][T26245] Call Trace:
[ 1447.106084][T26245]  <TASK>
[ 1447.106094][T26245]  dump_stack_lvl+0x16c/0x1f0
[ 1447.106137][T26245]  should_fail_ex+0x50a/0x650
[ 1447.106182][T26245]  ? fs_reclaim_acquire+0xae/0x150
[ 1447.106219][T26245]  ? call_usermodehelper_setup+0x9a/0x340
[ 1447.106259][T26245]  should_failslab+0xc2/0x120
[ 1447.106285][T26245]  __kmalloc_cache_noprof+0x68/0x410
[ 1447.106324][T26245]  ? trace_kmalloc+0x2d/0xd0
[ 1447.106354][T26245]  ? __kmalloc_node_track_caller_noprof+0x240/0x510
[ 1447.106402][T26245]  ? __pfx_free_modprobe_argv+0x10/0x10
[ 1447.106448][T26245]  call_usermodehelper_setup+0x9a/0x340
[ 1447.106492][T26245]  __request_module+0x3d6/0x6c0
[ 1447.106530][T26245]  ? crypto_alg_mod_lookup+0x3a2/0x4e0
[ 1447.106571][T26245]  ? __pfx___request_module+0x10/0x10
[ 1447.106624][T26245]  ? __pfx___up_read+0x10/0x10
[ 1447.106663][T26245]  ? notifier_call_chain+0x36c/0x410
[ 1447.106705][T26245]  crypto_alg_mod_lookup+0x3a2/0x4e0
[ 1447.106737][T26245]  crypto_has_alg+0x22/0x80
[ 1447.106768][T26245]  __zswap_param_set+0x17e/0xba0
[ 1447.106811][T26245]  param_attr_store+0x18f/0x300
[ 1447.106858][T26245]  ? __pfx_param_attr_store+0x10/0x10
[ 1447.106900][T26245]  module_attr_store+0x55/0x80
[ 1447.106935][T26245]  ? __pfx_module_attr_store+0x10/0x10
[ 1447.106975][T26245]  sysfs_kf_write+0x117/0x170
[ 1447.107007][T26245]  kernfs_fop_write_iter+0x33d/0x500
[ 1447.107036][T26245]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1447.107070][T26245]  vfs_write+0x5ae/0x1150
[ 1447.107116][T26245]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1447.107148][T26245]  ? __pfx___mutex_lock+0x10/0x10
[ 1447.107188][T26245]  ? __pfx_vfs_write+0x10/0x10
[ 1447.107245][T26245]  ksys_write+0x12b/0x250
[ 1447.107279][T26245]  ? __pfx_ksys_write+0x10/0x10
[ 1447.107324][T26245]  do_syscall_64+0xcd/0x250
[ 1447.107362][T26245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1447.107401][T26245] RIP: 0033:0x7f2a7ab8d169
[ 1447.107423][T26245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1447.107451][T26245] RSP: 002b:00007f2a7ba1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1447.107477][T26245] RAX: ffffffffffffffda RBX: 00007f2a7ada6080 RCX: 00007f2a7ab8d169
[ 1447.107496][T26245] RDX: 0000000000000001 RSI: 0000400000003900 RDI: 000000000000000c
[ 1447.107514][T26245] RBP: 00007f2a7ac0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1447.107531][T26245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1447.107548][T26245] R13: 0000000000000000 R14: 00007f2a7ada6080 R15: 00007ffcbea38f78
[ 1447.107592][T26245]  </TASK>
[ 1447.109666][T26245] zswap: compressor  not available
[ 1447.619323][T26257] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1447.675615][T26258] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:5: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1447.892200][T26262] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1448.325403][T15196] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[ 1448.665279][T26281] ptrace attach of "./syz-executor exec"[25627] was attempted by "./syz-executor exec"[26281]
[ 1449.494294][T26293] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1449.527313][T26294] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1449.556400][T26292] zswap: compressor  not available
[ 1449.582731][T26292] FAULT_INJECTION: forcing a failure.
[ 1449.582731][T26292] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1449.608666][T26292] CPU: 0 UID: 0 PID: 26292 Comm: syz.2.5041 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1449.608710][T26292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1449.608730][T26292] Call Trace:
[ 1449.608739][T26292]  <TASK>
[ 1449.608752][T26292]  dump_stack_lvl+0x16c/0x1f0
[ 1449.608801][T26292]  should_fail_ex+0x50a/0x650
[ 1449.608851][T26292]  ? __pfx_mark_lock+0x10/0x10
[ 1449.608899][T26292]  get_futex_key+0x4a3/0x1000
[ 1449.608939][T26292]  ? kasan_save_stack+0x42/0x60
[ 1449.608987][T26292]  ? __pfx_get_futex_key+0x10/0x10
[ 1449.609022][T26292]  ? __kasan_slab_free+0x51/0x70
[ 1449.609071][T26292]  ? kernfs_fop_write_iter+0x1f5/0x500
[ 1449.609103][T26292]  ? vfs_write+0x5ae/0x1150
[ 1449.609143][T26292]  ? ksys_write+0x12b/0x250
[ 1449.609184][T26292]  ? do_syscall_64+0xcd/0x250
[ 1449.609225][T26292]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1449.609273][T26292]  ? hlock_class+0x4e/0x130
[ 1449.609310][T26292]  futex_wait_setup+0x78/0x290
[ 1449.609366][T26292]  __futex_wait+0x267/0x3c0
[ 1449.609415][T26292]  ? __pfx___futex_wait+0x10/0x10
[ 1449.609469][T26292]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1449.609519][T26292]  ? find_held_lock+0x2d/0x110
[ 1449.609579][T26292]  futex_wait+0xe9/0x380
[ 1449.609620][T26292]  ? __pfx_futex_wait+0x10/0x10
[ 1449.609669][T26292]  ? vfs_write+0x306/0x1150
[ 1449.609714][T26292]  do_futex+0x22b/0x350
[ 1449.609749][T26292]  ? __pfx_do_futex+0x10/0x10
[ 1449.609792][T26292]  __x64_sys_futex+0x1e1/0x4c0
[ 1449.609831][T26292]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1449.609866][T26292]  ? rcu_is_watching+0x12/0xc0
[ 1449.609906][T26292]  do_syscall_64+0xcd/0x250
[ 1449.609945][T26292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1449.609984][T26292] RIP: 0033:0x7f100d38d169
[ 1449.610006][T26292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1449.610033][T26292] RSP: 002b:00007f100e2270e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1449.610059][T26292] RAX: ffffffffffffffda RBX: 00007f100d5a5fa8 RCX: 00007f100d38d169
[ 1449.610078][T26292] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f100d5a5fa8
[ 1449.610094][T26292] RBP: 00007f100d5a5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1449.610111][T26292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f100d5a5fac
[ 1449.610128][T26292] R13: 0000000000000000 R14: 00007ffc3abad5c0 R15: 00007ffc3abad6a8
[ 1449.610162][T26292]  </TASK>
[ 1450.507797][T15196] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[ 1451.123929][T26322] FAULT_INJECTION: forcing a failure.
[ 1451.123929][T26322] name failslab, interval 1, probability 0, space 0, times 0
[ 1451.261273][T26322] CPU: 1 UID: 0 PID: 26322 Comm: syz.4.5049 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1451.261309][T26322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1451.261325][T26322] Call Trace:
[ 1451.261334][T26322]  <TASK>
[ 1451.261344][T26322]  dump_stack_lvl+0x16c/0x1f0
[ 1451.261386][T26322]  should_fail_ex+0x50a/0x650
[ 1451.261431][T26322]  ? fs_reclaim_acquire+0xae/0x150
[ 1451.261469][T26322]  should_failslab+0xc2/0x120
[ 1451.261496][T26322]  __kmalloc_node_noprof+0xd1/0x510
[ 1451.261540][T26322]  ? __pfx___mutex_lock+0x10/0x10
[ 1451.261576][T26322]  ? __kvmalloc_node_noprof+0xad/0x1a0
[ 1451.261620][T26322]  __kvmalloc_node_noprof+0xad/0x1a0
[ 1451.261660][T26322]  traverse.part.0.constprop.0+0x392/0x640
[ 1451.261699][T26322]  ? __pfx_lock_release+0x10/0x10
[ 1451.261737][T26322]  ? trace_lock_acquire+0x14e/0x1f0
[ 1451.261776][T26322]  seq_read_iter+0x934/0x12b0
[ 1451.261813][T26322]  ? aa_file_perm+0x4d5/0xfe0
[ 1451.261860][T26322]  seq_read+0x39f/0x4e0
[ 1451.261894][T26322]  ? __pfx_seq_read+0x10/0x10
[ 1451.261951][T26322]  ? __pfx_seq_read+0x10/0x10
[ 1451.261985][T26322]  proc_reg_read+0x23d/0x330
[ 1451.262026][T26322]  ? __pfx_proc_reg_read+0x10/0x10
[ 1451.262069][T26322]  vfs_read+0x1df/0xbf0
[ 1451.262108][T26322]  ? __fget_files+0x1fc/0x3a0
[ 1451.262153][T26322]  ? __pfx_lock_release+0x10/0x10
[ 1451.262191][T26322]  ? __pfx_vfs_read+0x10/0x10
[ 1451.262230][T26322]  ? lock_acquire+0x2f/0xb0
[ 1451.262271][T26322]  ? __fget_files+0x40/0x3a0
[ 1451.262314][T26322]  ? __fget_files+0x206/0x3a0
[ 1451.262363][T26322]  __x64_sys_pread64+0x1f6/0x250
[ 1451.262404][T26322]  ? __pfx___x64_sys_pread64+0x10/0x10
[ 1451.262456][T26322]  do_syscall_64+0xcd/0x250
[ 1451.262496][T26322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1451.262534][T26322] RIP: 0033:0x7f70d1f8d169
[ 1451.262555][T26322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1451.262581][T26322] RSP: 002b:00007f70cfdd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1451.262605][T26322] RAX: ffffffffffffffda RBX: 00007f70d21a6080 RCX: 00007f70d1f8d169
[ 1451.262622][T26322] RDX: 000000000000000a RSI: 0000000000000000 RDI: 0000000000000004
[ 1451.262636][T26322] RBP: 00007f70cfdd5090 R08: 0000000000000000 R09: 0000000000000000
[ 1451.262651][T26322] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001
[ 1451.262665][T26322] R13: 0000000000000000 R14: 00007f70d21a6080 R15: 00007ffdf2b2fc08
[ 1451.262698][T26322]  </TASK>
[ 1452.156510][T26339] EXT4-fs error: 1 callbacks suppressed
[ 1452.156529][T26339] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1452.178811][T26339] udevd[26339]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1452.652619][T26332] ptrace attach of "./syz-executor exec"[25627] was attempted by "./syz-executor exec"[26332]
[ 1452.883456][T26353] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1452.925899][T26353] udevd[26353]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1454.441645][T26366] ptrace attach of "./syz-executor exec"[19734] was attempted by "./syz-executor exec"[26366]
[ 1455.215036][T15196] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 1455.224892][T15196] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[ 1456.476149][T26393] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1456.524591][T26393] udevd[26393]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1457.139726][T15196] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[ 1457.495235][T26398] ptrace attach of "./syz-executor exec"[19455] was attempted by "./syz-executor exec"[26398]
[ 1459.230899][T26427] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1459.286273][T26427] udevd[26427]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1459.677843][   T29] audit: type=1806 audit(4295010270.566:43):  res=-14
[ 1461.220331][T26462] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1461.279081][T26462] udevd[26462]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1461.453195][T26467] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input163
[ 1461.877886][T26475] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1463.482361][T26501] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1463.498851][T26501] udevd[26501]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1464.408625][T26521] netlink: 326 bytes leftover after parsing attributes in process `syz.2.5108'.
[ 1465.736553][T26544] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1465.770158][T26544] udevd[26544]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1468.846657][T15196] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 1470.511280][T26606] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1470.570631][T26606] udevd[26606]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1470.770873][T15196] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 1470.946444][T15196] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 1471.106059][T26621] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1471.192655][T26621] udevd[26621]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1472.260991][T26644] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1472.311510][T26644] udevd[26644]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1472.600891][T26652] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:10: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1472.625570][T26653] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:10: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1473.045033][T15196] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[ 1473.132249][T15196] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[ 1473.584838][T26667] ptrace attach of "./syz-executor exec"[19455] was attempted by "./syz-executor exec"[26667]
[ 1473.999511][T26674] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1474.095953][T26677] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:9: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1474.614317][T15196] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 1474.783987][T26664] vivid-003: =================  START STATUS  =================
[ 1474.799177][T26664] vivid-003: Radio HW Seek Mode: Bounded
[ 1474.804872][T26664] vivid-003: Radio Programmable HW Seek: false
[ 1474.812664][T26664] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1474.818693][T26664] vivid-003: Generate RBDS Instead of RDS: false
[ 1474.825083][T26664] vivid-003: RDS Reception: true
[ 1474.830483][T26664] vivid-003: RDS Program Type: 0 inactive
[ 1474.836274][T26664] vivid-003: RDS PS Name:  inactive
[ 1474.842128][T26664] vivid-003: RDS Radio Text:  inactive
[ 1474.848308][T26664] vivid-003: RDS Traffic Announcement: false inactive
[ 1474.855411][T26664] vivid-003: RDS Traffic Program: false inactive
[ 1474.922514][T26664] vivid-003: RDS Music: false inactive
[ 1474.928210][T26664] vivid-003: ==================  END STATUS  ==================
[ 1476.476001][T26714] ptrace attach of "./syz-executor exec"[19455] was attempted by "./syz-executor exec"[26714]
[ 1476.551036][T26720] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1476.601904][T15196] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[ 1476.603956][T26720] udevd[26720]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1477.809541][T26755] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:10: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1478.232054][T26765] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1478.298882][T26765] udevd[26765]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1478.561362][T15196] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[ 1478.815907][T26770] ptrace attach of "./syz-executor exec"[19455] was attempted by "./syz-executor exec"[26770]
[ 1478.906141][T26780] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1478.946584][T26784] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1479.046710][T26775] vivid-003: =================  START STATUS  =================
[ 1479.075378][T26775] vivid-003: Radio HW Seek Mode: Bounded
[ 1479.171340][T26775] vivid-003: Radio Programmable HW Seek: false
[ 1479.194553][T26775] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1479.200441][T26775] vivid-003: Generate RBDS Instead of RDS: false
[ 1479.224382][T26775] vivid-003: RDS Reception: true
[ 1479.229409][T26775] vivid-003: RDS Program Type: 0 inactive
[ 1479.274274][T26775] vivid-003: RDS PS Name:  inactive
[ 1479.279660][T26775] vivid-003: RDS Radio Text:  inactive
[ 1479.313667][T26775] vivid-003: RDS Traffic Announcement: false inactive
[ 1479.357946][T26792] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1479.393466][T26775] vivid-003: RDS Traffic Program: false inactive
[ 1479.400250][T26775] vivid-003: RDS Music: false inactive
[ 1479.424195][T26794] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1479.470939][T26795] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1479.502374][T26775] vivid-003: ==================  END STATUS  ==================
[ 1479.531728][T26796] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1479.574344][T26797] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1480.372403][T26887] udevd[26887]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1481.072484][   T29] audit: type=1807 audit(4295010292.057:44): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0
[ 1481.095538][T15196] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[ 1481.115206][   T29] audit: type=1802 audit(4295010292.097:45): pid=26897 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.5192" res=0 errno=0
[ 1482.047146][T26913] EXT4-fs error: 70 callbacks suppressed
[ 1482.047167][T26913] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:16: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1482.112099][T26914] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:16: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1482.213140][T26918] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1482.268855][T26916] can: request_module (can-proto-0) failed.
[ 1482.353538][T26896] ima: policy update failed
[ 1482.358658][   T29] audit: type=1802 audit(4295010293.364:46): pid=26896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.5192" res=0 errno=0
[ 1482.597516][T26926] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1482.623338][T26906] vivid-003: =================  START STATUS  =================
[ 1482.642240][T26906] vivid-003: Radio HW Seek Mode: Bounded
[ 1482.666541][T26906] vivid-003: Radio Programmable HW Seek: false
[ 1482.672768][T26906] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1482.697489][T26932] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:16: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1482.723173][T26906] vivid-003: Generate RBDS Instead of RDS: false
[ 1482.756761][T26934] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:16: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1482.775816][T26906] vivid-003: RDS Reception: true
[ 1482.780837][T26906] vivid-003: RDS Program Type: 0 inactive
[ 1482.817761][T26906] vivid-003: RDS PS Name:  inactive
[ 1482.823140][T26906] vivid-003: RDS Radio Text:  inactive
[ 1482.860160][T26935] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1482.906899][T26906] vivid-003: RDS Traffic Announcement: false inactive
[ 1482.958448][T26937] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1483.002973][T26906] vivid-003: RDS Traffic Program: false inactive
[ 1483.040445][T26939] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1483.055173][T26906] vivid-003: RDS Music: false inactive
[ 1483.076331][T26940] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:16: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1483.141343][T26906] vivid-003: ==================  END STATUS  ==================
[ 1484.080124][T15196] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[ 1484.216306][T26979] Invalid ELF header magic: != ELF
[ 1485.425066][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1485.442628][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1486.951673][T27020] zswap: compressor  not available
[ 1486.978841][T27020] FAULT_INJECTION: forcing a failure.
[ 1486.978841][T27020] name failslab, interval 1, probability 0, space 0, times 0
[ 1486.998742][T27020] CPU: 0 UID: 0 PID: 27020 Comm: syz.5.5216 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1486.998774][T27020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1486.998789][T27020] Call Trace:
[ 1486.998797][T27020]  <TASK>
[ 1486.998806][T27020]  dump_stack_lvl+0x16c/0x1f0
[ 1486.998843][T27020]  should_fail_ex+0x50a/0x650
[ 1486.998880][T27020]  ? fs_reclaim_acquire+0xae/0x150
[ 1486.998914][T27020]  should_failslab+0xc2/0x120
[ 1486.998937][T27020]  __kmalloc_node_noprof+0xd1/0x510
[ 1486.998974][T27020]  ? __pfx_aa_file_perm+0x10/0x10
[ 1486.999006][T27020]  ? __kvmalloc_node_noprof+0xad/0x1a0
[ 1486.999044][T27020]  __kvmalloc_node_noprof+0xad/0x1a0
[ 1486.999078][T27020]  seq_read_iter+0x82a/0x12b0
[ 1486.999110][T27020]  ? __mutex_trylock_common+0xea/0x250
[ 1486.999154][T27020]  kernfs_fop_read_iter+0x414/0x580
[ 1486.999179][T27020]  ? rw_verify_area+0xcf/0x680
[ 1486.999212][T27020]  vfs_read+0x886/0xbf0
[ 1486.999248][T27020]  ? __pfx_vfs_read+0x10/0x10
[ 1486.999329][T27020]  ksys_read+0x12b/0x250
[ 1486.999362][T27020]  ? __pfx_ksys_read+0x10/0x10
[ 1486.999406][T27020]  do_syscall_64+0xcd/0x250
[ 1486.999443][T27020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1486.999478][T27020] RIP: 0033:0x7f2bfbf8d169
[ 1486.999498][T27020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1486.999522][T27020] RSP: 002b:00007f2bfcebc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1486.999548][T27020] RAX: ffffffffffffffda RBX: 00007f2bfc1a5fa0 RCX: 00007f2bfbf8d169
[ 1486.999577][T27020] RDX: 00000000000000ff RSI: 00004000000000c0 RDI: 0000000000000004
[ 1486.999605][T27020] RBP: 00007f2bfcebc090 R08: 0000000000000000 R09: 0000000000000000
[ 1486.999621][T27020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1486.999637][T27020] R13: 0000000000000000 R14: 00007f2bfc1a5fa0 R15: 00007ffe374a4b58
[ 1486.999670][T27020]  </TASK>
[ 1488.804957][T27052] EXT4-fs error: 29 callbacks suppressed
[ 1488.804978][T27052] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1488.881016][T27054] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:16: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1488.960814][T27056] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1489.196149][T27060] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1489.252175][   T29] audit: type=1807 audit(4295010300.279:47): UNKNOWN=§Ö res=0
[ 1489.269170][T27049] ima: policy update failed
[ 1489.283479][   T29] audit: type=1802 audit(4295010300.279:48): pid=27049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.4.5223" res=0 errno=0
[ 1489.326794][   T29] audit: type=1802 audit(4295010300.320:49): pid=27049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.5223" res=0 errno=0
[ 1494.432869][T27128] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1494.601727][T27128] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1494.813674][T27128] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1494.962136][T27137] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1494.963629][T27128] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1495.011421][T27138] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1495.123865][T27139] usbip-vudc usbip-vudc.0: gadget not bound
[ 1495.194648][T27127] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1496.519756][T27168] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:16: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1496.691118][T27172] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:16: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1497.182983][T27178] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1497.225051][T27187] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1497.292387][   T29] audit: type=1807 audit(4295010308.351:50): UNKNOWN=§Ö res=0
[ 1497.311331][T27189] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1497.338047][T27165] ima: policy update failed
[ 1497.361784][   T29] audit: type=1802 audit(4295010308.351:51): pid=27165 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.5252" res=0 errno=0
[ 1497.412545][   T29] audit: type=1802 audit(4295010308.482:52): pid=27165 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.5252" res=0 errno=0
[ 1498.513234][T27209] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5264'.
[ 1501.170898][T27251] FAULT_INJECTION: forcing a failure.
[ 1501.170898][T27251] name failslab, interval 1, probability 0, space 0, times 0
[ 1501.246296][T27251] CPU: 1 UID: 0 PID: 27251 Comm: syz.3.5275 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1501.246335][T27251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1501.246354][T27251] Call Trace:
[ 1501.246362][T27251]  <TASK>
[ 1501.246374][T27251]  dump_stack_lvl+0x16c/0x1f0
[ 1501.246417][T27251]  should_fail_ex+0x50a/0x650
[ 1501.246462][T27251]  ? fs_reclaim_acquire+0xae/0x150
[ 1501.246501][T27251]  should_failslab+0xc2/0x120
[ 1501.246528][T27251]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[ 1501.246572][T27251]  ? __d_alloc+0x31/0xaa0
[ 1501.246602][T27251]  __d_alloc+0x31/0xaa0
[ 1501.246625][T27251]  ? hlock_class+0x4e/0x130
[ 1501.246659][T27251]  d_alloc+0x4a/0x1e0
[ 1501.246686][T27251]  d_alloc_parallel+0xe7/0x12b0
[ 1501.246734][T27251]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 1501.246776][T27251]  ? lockdep_init_map_type+0x16d/0x7d0
[ 1501.246818][T27251]  ? find_held_lock+0x2d/0x110
[ 1501.246846][T27251]  ? lockdep_init_map_type+0x16d/0x7d0
[ 1501.246896][T27251]  __lookup_slow+0x194/0x470
[ 1501.246929][T27251]  ? __pfx___lookup_slow+0x10/0x10
[ 1501.246968][T27251]  ? walk_component+0x342/0x5b0
[ 1501.247015][T27251]  ? lookup_fast+0x153/0x5f0
[ 1501.247055][T27251]  walk_component+0x350/0x5b0
[ 1501.247094][T27251]  link_path_walk.part.0.constprop.0+0x669/0xd40
[ 1501.247146][T27251]  path_openat+0x228/0x2d80
[ 1501.247188][T27251]  ? arch_stack_walk+0xa7/0x100
[ 1501.247224][T27251]  ? __pfx_path_openat+0x10/0x10
[ 1501.247265][T27251]  ? stack_trace_save+0x95/0xd0
[ 1501.247297][T27251]  ? __pfx_stack_trace_save+0x10/0x10
[ 1501.247332][T27251]  do_filp_open+0x20c/0x470
[ 1501.247374][T27251]  ? __pfx_do_filp_open+0x10/0x10
[ 1501.247413][T27251]  ? kasan_save_stack+0x42/0x60
[ 1501.247450][T27251]  ? kasan_save_stack+0x33/0x60
[ 1501.247528][T27251]  file_open_name+0x2a4/0x450
[ 1501.247558][T27251]  ? __pfx_file_open_name+0x10/0x10
[ 1501.247602][T27251]  acct_on+0x77/0x870
[ 1501.247642][T27251]  __x64_sys_acct+0xad/0x220
[ 1501.247680][T27251]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1501.247715][T27251]  do_syscall_64+0xcd/0x250
[ 1501.247754][T27251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1501.247801][T27251] RIP: 0033:0x7f2a7ab8d169
[ 1501.247822][T27251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1501.247848][T27251] RSP: 002b:00007f2a7ba3d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[ 1501.247874][T27251] RAX: ffffffffffffffda RBX: 00007f2a7ada5fa0 RCX: 00007f2a7ab8d169
[ 1501.247891][T27251] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000200
[ 1501.247907][T27251] RBP: 00007f2a7ba3d090 R08: 0000000000000000 R09: 0000000000000000
[ 1501.247923][T27251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1501.247939][T27251] R13: 0000000000000001 R14: 00007f2a7ada5fa0 R15: 00007ffcbea38f78
[ 1501.247973][T27251]  </TASK>
[ 1503.882976][T27296] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:16: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1504.044846][T27295] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5285'.
[ 1505.039218][T27312] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5290'.
[ 1508.569664][T27377] random: crng reseeded on system resumption
[ 1509.438020][T27396] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1509.458325][T27397] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1509.488440][T27398] FAULT_INJECTION: forcing a failure.
[ 1509.488440][T27398] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1509.488481][T27398] CPU: 0 UID: 0 PID: 27398 Comm: syz.2.5312 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1509.488515][T27398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1509.488534][T27398] Call Trace:
[ 1509.488543][T27398]  <TASK>
[ 1509.488555][T27398]  dump_stack_lvl+0x16c/0x1f0
[ 1509.488601][T27398]  should_fail_ex+0x50a/0x650
[ 1509.488647][T27398]  ? __pfx___might_resched+0x10/0x10
[ 1509.488701][T27398]  should_fail_alloc_page+0xe7/0x130
[ 1509.488733][T27398]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1509.488782][T27398]  __alloc_frozen_pages_noprof+0x18e/0x2470
[ 1509.488834][T27398]  ? hlock_class+0x4e/0x130
[ 1509.488873][T27398]  ? mark_lock+0xb5/0xc60
[ 1509.488913][T27398]  ? __pfx___lock_acquire+0x10/0x10
[ 1509.488959][T27398]  ? __pfx_mark_lock+0x10/0x10
[ 1509.489002][T27398]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1509.489054][T27398]  ? find_held_lock+0x2d/0x110
[ 1509.489084][T27398]  ? fb_var_to_videomode+0x4c9/0x690
[ 1509.489135][T27398]  ? __pfx_fb_match_mode+0x10/0x10
[ 1509.489186][T27398]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1509.489221][T27398]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1509.489263][T27398]  ? vc_allocate+0x48a/0x880
[ 1509.489298][T27398]  __alloc_pages_noprof+0xb/0x1b0
[ 1509.489344][T27398]  ___kmalloc_large_node+0x84/0x1b0
[ 1509.489380][T27398]  ? con_is_visible+0x65/0x150
[ 1509.489411][T27398]  __kmalloc_large_node_noprof+0x1c/0x70
[ 1509.489454][T27398]  __kmalloc_noprof.cold+0xc/0x61
[ 1509.489494][T27398]  vc_allocate+0x48a/0x880
[ 1509.489533][T27398]  ? __pfx_vc_allocate+0x10/0x10
[ 1509.489571][T27398]  ? lock_acquire+0x2f/0xb0
[ 1509.489621][T27398]  ? con_install+0x9a/0x600
[ 1509.489662][T27398]  con_install+0xa2/0x600
[ 1509.489718][T27398]  ? __pfx_con_install+0x10/0x10
[ 1509.489763][T27398]  ? __pfx_con_install+0x10/0x10
[ 1509.489813][T27398]  tty_init_dev.part.0+0x99/0x660
[ 1509.489854][T27398]  tty_open+0xac1/0xf80
[ 1509.489900][T27398]  ? chrdev_open+0x596/0x6a0
[ 1509.489949][T27398]  ? __pfx_tty_open+0x10/0x10
[ 1509.489983][T27398]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1509.490010][T27398]  ? lock_acquire+0x2f/0xb0
[ 1509.490046][T27398]  ? chrdev_open+0x36b/0x6a0
[ 1509.490090][T27398]  ? __pfx_tty_open+0x10/0x10
[ 1509.490127][T27398]  chrdev_open+0x237/0x6a0
[ 1509.490169][T27398]  ? __pfx_chrdev_open+0x10/0x10
[ 1509.490216][T27398]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1509.490260][T27398]  do_dentry_open+0x735/0x1c40
[ 1509.490300][T27398]  ? __pfx_chrdev_open+0x10/0x10
[ 1509.490350][T27398]  vfs_open+0x82/0x3f0
[ 1509.490376][T27398]  ? may_open+0x1f2/0x400
[ 1509.490410][T27398]  path_openat+0x1e88/0x2d80
[ 1509.490464][T27398]  ? __pfx_path_openat+0x10/0x10
[ 1509.490503][T27398]  ? __pfx___lock_acquire+0x10/0x10
[ 1509.490540][T27398]  ? lock_acquire.part.0+0x11b/0x380
[ 1509.490578][T27398]  ? find_held_lock+0x2d/0x110
[ 1509.490613][T27398]  do_filp_open+0x20c/0x470
[ 1509.490655][T27398]  ? __pfx_do_filp_open+0x10/0x10
[ 1509.490693][T27398]  ? find_held_lock+0x2d/0x110
[ 1509.490745][T27398]  ? alloc_fd+0x41f/0x760
[ 1509.490795][T27398]  do_sys_openat2+0x17a/0x1e0
[ 1509.490824][T27398]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1509.490877][T27398]  __x64_sys_openat+0x175/0x210
[ 1509.490910][T27398]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1509.490955][T27398]  do_syscall_64+0xcd/0x250
[ 1509.490996][T27398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1509.491035][T27398] RIP: 0033:0x7f100d38d169
[ 1509.491057][T27398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1509.491083][T27398] RSP: 002b:00007f100e206038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1509.491109][T27398] RAX: ffffffffffffffda RBX: 00007f100d5a6080 RCX: 00007f100d38d169
[ 1509.491128][T27398] RDX: 0000000000042200 RSI: 0000400000000040 RDI: ffffffffffffff9c
[ 1509.491145][T27398] RBP: 00007f100d40e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1509.491162][T27398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1509.491177][T27398] R13: 0000000000000000 R14: 00007f100d5a6080 R15: 00007ffc3abad6a8
[ 1509.491211][T27398]  </TASK>
[ 1514.463467][T27478] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[ 1515.822626][T27502] openvswitch: netlink: Message has 8 unknown bytes.
[ 1515.952252][T27511] random: crng reseeded on system resumption
[ 1516.691075][T27518] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1516.724646][T27521] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1516.806073][T27524] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5352'.
[ 1516.902277][T27527] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1516.922987][T27524] mac80211_hwsim hwsim42 wlan1: entered allmulticast mode
[ 1517.030183][T27522] delete_channel: no stack
[ 1517.037968][T27523] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[ 1518.638602][T27534] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1518.644756][T27534] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1518.651801][T27534] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1518.658120][T27534] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1518.671050][T27534] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1518.678352][T27534] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1519.037853][T27562] openvswitch: netlink: Message has 8 unknown bytes.
[ 1519.222205][T27565] FAULT_INJECTION: forcing a failure.
[ 1519.222205][T27565] name failslab, interval 1, probability 0, space 0, times 0
[ 1519.297360][T27565] CPU: 0 UID: 0 PID: 27565 Comm: syz.4.5360 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1519.297400][T27565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1519.297455][T27565] Call Trace:
[ 1519.297465][T27565]  <TASK>
[ 1519.297476][T27565]  dump_stack_lvl+0x16c/0x1f0
[ 1519.297523][T27565]  should_fail_ex+0x50a/0x650
[ 1519.297570][T27565]  ? fs_reclaim_acquire+0xae/0x150
[ 1519.297612][T27565]  should_failslab+0xc2/0x120
[ 1519.297640][T27565]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[ 1519.297685][T27565]  ? __set_current_blocked+0xce/0x110
[ 1519.297725][T27565]  ? sock_alloc_inode+0x25/0x1c0
[ 1519.297758][T27565]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1519.297786][T27565]  sock_alloc_inode+0x25/0x1c0
[ 1519.297814][T27565]  alloc_inode+0x5d/0x230
[ 1519.297850][T27565]  sock_alloc+0x40/0x280
[ 1519.297877][T27565]  __sock_create+0xc1/0x8d0
[ 1519.297916][T27565]  __sys_socket+0x14f/0x260
[ 1519.297950][T27565]  ? __pfx___sys_socket+0x10/0x10
[ 1519.297987][T27565]  ? rcu_is_watching+0x12/0xc0
[ 1519.298024][T27565]  __x64_sys_socket+0x72/0xb0
[ 1519.298055][T27565]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1519.298091][T27565]  do_syscall_64+0xcd/0x250
[ 1519.298132][T27565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1519.298171][T27565] RIP: 0033:0x7f70d1f8d169
[ 1519.298193][T27565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1519.298221][T27565] RSP: 002b:00007f70cfdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1519.298247][T27565] RAX: ffffffffffffffda RBX: 00007f70d21a5fa0 RCX: 00007f70d1f8d169
[ 1519.298266][T27565] RDX: 0000000000400105 RSI: 0000000000080000 RDI: 0000000000000002
[ 1519.298284][T27565] RBP: 00007f70d200e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1519.298300][T27565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1519.298316][T27565] R13: 0000000000000000 R14: 00007f70d21a5fa0 R15: 00007ffdf2b2fc08
[ 1519.298349][T27565]  </TASK>
[ 1519.298362][T27565] socket: no more sockets
[ 1520.041306][T27575] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1520.108429][T27578] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1520.142458][T27579] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1520.366227][T15196] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1520.418034][T27583] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5364'.
[ 1520.637782][T27583] mac80211_hwsim hwsim36 wlan1: entered allmulticast mode
[ 1520.662898][T27581] delete_channel: no stack
[ 1520.679586][T15196] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1520.685939][T15196] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1520.692112][T15196] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1522.521750][T27623] random: crng reseeded on system resumption
[ 1522.758271][T27596] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1523.526411][T27636] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1523.881653][T27640] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5379'.
[ 1523.998192][T27640] mac80211_hwsim hwsim40 wlan1: entered allmulticast mode
[ 1524.064198][T27639] delete_channel: no stack
[ 1524.471953][T27659] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1524.656600][T27664] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1524.834545][T27596] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1526.113936][T27686] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1526.145187][T27685] can: request_module (can-proto-0) failed.
[ 1526.173175][T27685] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5391'.
[ 1526.184013][T27685] netlink: 354 bytes leftover after parsing attributes in process `syz.2.5391'.
[ 1529.277682][T27755] FAULT_INJECTION: forcing a failure.
[ 1529.277682][T27755] name failslab, interval 1, probability 0, space 0, times 0
[ 1529.356265][T27755] CPU: 0 UID: 0 PID: 27755 Comm: syz.4.5409 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1529.356301][T27755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1529.356318][T27755] Call Trace:
[ 1529.356325][T27755]  <TASK>
[ 1529.356336][T27755]  dump_stack_lvl+0x16c/0x1f0
[ 1529.356379][T27755]  should_fail_ex+0x50a/0x650
[ 1529.356459][T27755]  should_failslab+0xc2/0x120
[ 1529.356493][T27755]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1529.356540][T27755]  ? skb_clone+0x190/0x3f0
[ 1529.356587][T27755]  skb_clone+0x190/0x3f0
[ 1529.356633][T27755]  netlink_deliver_tap+0xabd/0xd30
[ 1529.356674][T27755]  ? __pfx_rtnl_stats_dump+0x10/0x10
[ 1529.356723][T27755]  netlink_dump+0x639/0xd00
[ 1529.356766][T27755]  ? __pfx_netlink_dump+0x10/0x10
[ 1529.356801][T27755]  ? __phys_addr_symbol+0x30/0x80
[ 1529.356830][T27755]  ? __check_object_size+0x488/0x710
[ 1529.356873][T27755]  ? skb_recv_datagram+0x89/0xc0
[ 1529.356911][T27755]  ? rcu_is_watching+0x12/0xc0
[ 1529.356944][T27755]  netlink_recvmsg+0xa1a/0xf30
[ 1529.357005][T27755]  ? __pfx_netlink_recvmsg+0x10/0x10
[ 1529.357055][T27755]  ? aa_sk_perm+0x2f5/0xb20
[ 1529.357089][T27755]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1529.357117][T27755]  ? find_held_lock+0x2d/0x110
[ 1529.357157][T27755]  sock_recvmsg+0x1f6/0x250
[ 1529.357186][T27755]  ____sys_recvmsg+0x219/0x6b0
[ 1529.357220][T27755]  ? __pfx_____sys_recvmsg+0x10/0x10
[ 1529.357270][T27755]  ___sys_recvmsg+0x115/0x1a0
[ 1529.357314][T27755]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1529.357352][T27755]  ? __pfx_lock_release+0x10/0x10
[ 1529.357387][T27755]  ? trace_lock_acquire+0x14e/0x1f0
[ 1529.357439][T27755]  do_recvmmsg+0x2f8/0x740
[ 1529.357486][T27755]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1529.357527][T27755]  ? vfs_write+0x306/0x1150
[ 1529.357573][T27755]  ? __mutex_unlock_slowpath+0x164/0x6a0
[ 1529.357626][T27755]  ? __fget_files+0x206/0x3a0
[ 1529.357677][T27755]  __x64_sys_recvmmsg+0x239/0x290
[ 1529.357724][T27755]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1529.357781][T27755]  do_syscall_64+0xcd/0x250
[ 1529.357824][T27755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1529.357865][T27755] RIP: 0033:0x7f70d1f8d169
[ 1529.357888][T27755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1529.357916][T27755] RSP: 002b:00007f70cfdd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1529.357952][T27755] RAX: ffffffffffffffda RBX: 00007f70d21a6080 RCX: 00007f70d1f8d169
[ 1529.357972][T27755] RDX: 0000000000000005 RSI: 0000400000000180 RDI: 0000000000000003
[ 1529.358000][T27755] RBP: 00007f70cfdd5090 R08: 0000000000000000 R09: 0000000000000000
[ 1529.358017][T27755] R10: 00000000000066a6 R11: 0000000000000246 R12: 0000000000000001
[ 1529.358039][T27755] R13: 0000000000000001 R14: 00007f70d21a6080 R15: 00007ffdf2b2fc08
[ 1529.358074][T27755]  </TASK>
[ 1530.250171][T27764] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1530.319440][T27767] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1530.337936][T27769] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1530.340714][T27771] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1530.408594][T27772] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1530.448862][T27774] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1531.274075][   T35] bridge_slave_1: left allmulticast mode
[ 1531.280008][   T35] bridge_slave_1: left promiscuous mode
[ 1531.293639][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1531.344182][   T35] bridge_slave_0: left allmulticast mode
[ 1531.349867][   T35] bridge_slave_0: left promiscuous mode
[ 1531.364197][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1531.842491][T27799] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1531.963975][T27801] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1532.605020][   T35] gretap0 (unregistering): left allmulticast mode
[ 1533.124757][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1533.144394][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1533.158790][   T35] bond0 (unregistering): Released all slaves
[ 1534.475009][   T35] hsr_slave_0: left promiscuous mode
[ 1534.494506][   T35] hsr_slave_1: left promiscuous mode
[ 1534.507797][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1534.522556][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1534.530966][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1534.538567][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1534.565749][   T35] veth1_macvtap: left promiscuous mode
[ 1534.571638][   T35] veth0_macvtap: left promiscuous mode
[ 1534.577649][   T35] veth1_vlan: left promiscuous mode
[ 1534.583171][   T35] veth0_vlan: left promiscuous mode
[ 1534.640648][T27825] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1534.664363][T27826] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1535.400628][   T35] team0 (unregistering): Port device team_slave_1 removed
[ 1535.464942][   T35] team0 (unregistering): Port device team_slave_0 removed
[ 1538.164946][T27883] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1538.192959][T27884] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1539.963664][T27923] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1540.029028][T27926] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1540.089450][T27928] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1540.158299][T27932] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1540.221178][T27935] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1540.354605][T27939] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1540.510998][T27942] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1540.695110][T27948] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1540.789302][T27951] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1541.600006][T27991] openvswitch: netlink: IP tunnel dst address not specified
[ 1544.719874][T28050] EXT4-fs error: 27 callbacks suppressed
[ 1544.719896][T28050] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1545.582835][T28060] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1546.426319][T28080] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1546.546893][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.554726][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1547.485881][T28105] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1549.334477][T28140] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1550.136189][T28161] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1550.192036][T28164] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1550.542235][T28176] FAULT_INJECTION: forcing a failure.
[ 1550.542235][T28176] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1550.610803][T28176] CPU: 0 UID: 0 PID: 28176 Comm: syz.4.5507 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1550.610846][T28176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1550.610869][T28176] Call Trace:
[ 1550.610879][T28176]  <TASK>
[ 1550.610890][T28176]  dump_stack_lvl+0x16c/0x1f0
[ 1550.610939][T28176]  should_fail_ex+0x50a/0x650
[ 1550.610998][T28176]  _copy_to_user+0x32/0xd0
[ 1550.611034][T28176]  simple_read_from_buffer+0xd0/0x160
[ 1550.611082][T28176]  proc_fail_nth_read+0x198/0x270
[ 1550.611122][T28176]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1550.611166][T28176]  ? rw_verify_area+0xcf/0x680
[ 1550.611204][T28176]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1550.611247][T28176]  vfs_read+0x1df/0xbf0
[ 1550.611289][T28176]  ? __fget_files+0x1fc/0x3a0
[ 1550.611338][T28176]  ? __pfx___mutex_lock+0x10/0x10
[ 1550.611381][T28176]  ? __pfx_vfs_read+0x10/0x10
[ 1550.611438][T28176]  ? __fget_files+0x206/0x3a0
[ 1550.611494][T28176]  ksys_read+0x12b/0x250
[ 1550.611537][T28176]  ? __pfx_ksys_read+0x10/0x10
[ 1550.611591][T28176]  do_syscall_64+0xcd/0x250
[ 1550.611639][T28176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1550.611694][T28176] RIP: 0033:0x7f70d1f8bb7c
[ 1550.611716][T28176] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1550.611751][T28176] RSP: 002b:00007f70cfdf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1550.611788][T28176] RAX: ffffffffffffffda RBX: 00007f70d21a5fa0 RCX: 00007f70d1f8bb7c
[ 1550.611805][T28176] RDX: 000000000000000f RSI: 00007f70cfdf60a0 RDI: 0000000000000003
[ 1550.611821][T28176] RBP: 00007f70cfdf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1550.611837][T28176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1550.611856][T28176] R13: 0000000000000000 R14: 00007f70d21a5fa0 R15: 00007ffdf2b2fc08
[ 1550.611890][T28176]  </TASK>
[ 1552.194343][   T29] audit: type=1800 audit(4295043132.556:53): pid=28196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5515" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 1552.467975][T28202] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1552.490039][T28203] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1552.708120][T28206] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5519'.
[ 1554.719180][T28240] FAULT_INJECTION: forcing a failure.
[ 1554.719180][T28240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1554.808748][T28240] CPU: 0 UID: 0 PID: 28240 Comm: syz.4.5528 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1554.808800][T28240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1554.808821][T28240] Call Trace:
[ 1554.808832][T28240]  <TASK>
[ 1554.808845][T28240]  dump_stack_lvl+0x16c/0x1f0
[ 1554.808901][T28240]  should_fail_ex+0x50a/0x650
[ 1554.808963][T28240]  _copy_from_iter+0x2a1/0x1560
[ 1554.809009][T28240]  ? policy_nodemask+0xea/0x4e0
[ 1554.809066][T28240]  ? __pfx__copy_from_iter+0x10/0x10
[ 1554.809104][T28240]  ? alloc_pages_mpol+0x25b/0x540
[ 1554.809138][T28240]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1554.809181][T28240]  copy_page_from_iter+0xa5/0x120
[ 1554.809224][T28240]  pipe_write+0xd1e/0x1b30
[ 1554.809301][T28240]  ? __pfx_pipe_write+0x10/0x10
[ 1554.809355][T28240]  ? apparmor_file_permission+0x251/0x400
[ 1554.809400][T28240]  ? bpf_lsm_file_permission+0x9/0x10
[ 1554.809453][T28240]  ? security_file_permission+0x71/0x210
[ 1554.809502][T28240]  ? rw_verify_area+0xcf/0x680
[ 1554.809548][T28240]  vfs_write+0x5ae/0x1150
[ 1554.809597][T28240]  ? __pfx_pipe_write+0x10/0x10
[ 1554.809663][T28240]  ? __pfx_vfs_write+0x10/0x10
[ 1554.809705][T28240]  ? do_futex+0x123/0x350
[ 1554.809749][T28240]  ? __fget_files+0x40/0x3a0
[ 1554.809823][T28240]  ksys_write+0x207/0x250
[ 1554.809879][T28240]  ? __pfx_ksys_write+0x10/0x10
[ 1554.809934][T28240]  do_syscall_64+0xcd/0x250
[ 1554.809981][T28240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1554.810023][T28240] RIP: 0033:0x7f70d1f8d169
[ 1554.810046][T28240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1554.810079][T28240] RSP: 002b:00007f70cfdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1554.810109][T28240] RAX: ffffffffffffffda RBX: 00007f70d21a5fa0 RCX: 00007f70d1f8d169
[ 1554.810132][T28240] RDX: 0000000100000001 RSI: 0000000000000000 RDI: 0000000000000006
[ 1554.810152][T28240] RBP: 00007f70d200e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1554.810169][T28240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1554.810188][T28240] R13: 0000000000000000 R14: 00007f70d21a5fa0 R15: 00007ffdf2b2fc08
[ 1554.810224][T28240]  </TASK>
[ 1555.300912][T28245] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1555.339966][T28245] udevd[28245]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[ 1555.597296][T28252] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1555.670259][T28255] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1555.944660][T28260] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1556.008211][T28264] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1557.454993][T28288] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1557.982770][T28294] netlink: 338 bytes leftover after parsing attributes in process `syz.5.5551'.
[ 1558.329880][T28298] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5545'.
[ 1558.883200][T28308] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1558.925671][T28309] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1559.060096][T28314] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1559.159512][T28317] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1560.174846][T28329] FAULT_INJECTION: forcing a failure.
[ 1560.174846][T28329] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1560.253100][T28329] CPU: 0 UID: 0 PID: 28329 Comm: syz.5.5563 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1560.253159][T28329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1560.253191][T28329] Call Trace:
[ 1560.253200][T28329]  <TASK>
[ 1560.253211][T28329]  dump_stack_lvl+0x16c/0x1f0
[ 1560.253256][T28329]  should_fail_ex+0x50a/0x650
[ 1560.253308][T28329]  _copy_from_user+0x2e/0xd0
[ 1560.253341][T28329]  move_addr_to_kernel+0x68/0x160
[ 1560.253378][T28329]  __sys_bind+0x11c/0x260
[ 1560.253414][T28329]  ? __pfx___sys_bind+0x10/0x10
[ 1560.253446][T28329]  ? __fget_files+0x206/0x3a0
[ 1560.253502][T28329]  ? __pfx_ksys_write+0x10/0x10
[ 1560.253549][T28329]  __x64_sys_bind+0x72/0xb0
[ 1560.253582][T28329]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1560.253618][T28329]  do_syscall_64+0xcd/0x250
[ 1560.253660][T28329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1560.253701][T28329] RIP: 0033:0x7f2bfbf8d169
[ 1560.253723][T28329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1560.253750][T28329] RSP: 002b:00007f2bfcebc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 1560.253783][T28329] RAX: ffffffffffffffda RBX: 00007f2bfc1a5fa0 RCX: 00007f2bfbf8d169
[ 1560.253802][T28329] RDX: 000000000000006b RSI: 0000400000000080 RDI: 0000000000000003
[ 1560.253819][T28329] RBP: 00007f2bfcebc090 R08: 0000000000000000 R09: 0000000000000000
[ 1560.253837][T28329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1560.253853][T28329] R13: 0000000000000000 R14: 00007f2bfc1a5fa0 R15: 00007ffe374a4b58
[ 1560.253886][T28329]  </TASK>
[ 1560.753656][T28340] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5557'.
[ 1561.277149][T28353] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1561.357604][T28355] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1561.600823][T28362] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1561.661576][T28363] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1562.044153][T28370] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1562.108381][T28371] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1562.842668][T28386] Invalid ELF header magic: != ELF
[ 1563.807183][T28404] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1563.882602][T28405] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1564.674324][T28425] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1564.712523][T28426] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1564.759337][T28428] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1564.839987][T28430] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1565.911444][T28448] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1565.987376][T28450] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1566.250942][ T5840] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1566.273536][ T5840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1566.286595][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1566.310909][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1566.332706][ T5840] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1566.351368][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1566.898918][T28466] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1567.138300][T17001] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1567.189445][T28452] chnl_net:caif_netlink_parms(): no params data found
[ 1567.430109][T17001] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1567.522875][T28479] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1567.732429][T28483] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1568.064153][T17001] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1568.164212][T28452] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1568.179596][T28452] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1568.187011][T28452] bridge_slave_0: entered allmulticast mode
[ 1568.203068][T28452] bridge_slave_0: entered promiscuous mode
[ 1568.253832][T17001] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1568.297138][T28452] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1568.306500][T28452] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1568.318152][T28452] bridge_slave_1: entered allmulticast mode
[ 1568.328129][T28452] bridge_slave_1: entered promiscuous mode
[ 1568.430441][ T5840] Bluetooth: hci1: command tx timeout
[ 1568.432749][T28452] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1568.606041][T28452] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1568.734642][T28452] team0: Port device team_slave_0 added
[ 1568.769732][T28452] team0: Port device team_slave_1 added
[ 1568.861138][T28452] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1568.871098][T28452] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1568.898267][T28452] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1568.924740][T17001] bridge_slave_1: left allmulticast mode
[ 1568.937818][T17001] bridge_slave_1: left promiscuous mode
[ 1568.943593][T17001] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1568.955166][T17001] bridge_slave_0: left allmulticast mode
[ 1568.970420][T17001] bridge_slave_0: left promiscuous mode
[ 1568.976187][T17001] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1569.238157][T17001] erspan0 (unregistering): left allmulticast mode
[ 1569.545549][T17001] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1569.560315][T17001] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1569.577440][T17001] bond0 (unregistering): Released all slaves
[ 1569.606994][T28452] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1569.613988][T28452] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1569.643448][T28452] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1569.721331][T17001] HfR: left promiscuous mode
[ 1569.826927][T28452] hsr_slave_0: entered promiscuous mode
[ 1569.839727][T28489] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1569.872494][T28452] hsr_slave_1: entered promiscuous mode
[ 1569.885501][T28490] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1570.149419][T28495] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1570.176446][T28496] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1570.499708][ T5840] Bluetooth: hci1: command tx timeout
[ 1570.565765][T28505] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1570.606688][T28507] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1570.717032][T17001] hsr_slave_0: left promiscuous mode
[ 1570.739179][T17001] hsr_slave_1: left promiscuous mode
[ 1570.745071][T17001] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1570.783137][T17001] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1570.799135][T17001] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1570.816775][T17001] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1570.844252][T28513] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1570.861496][T17001] veth1_macvtap: left promiscuous mode
[ 1570.877343][T17001] veth0_macvtap: left promiscuous mode
[ 1570.883353][T17001] veth1_vlan: left promiscuous mode
[ 1570.897297][T17001] veth0_vlan: left promiscuous mode
[ 1570.897871][T28515] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1572.118668][T17001] team0 (unregistering): Port device team_slave_1 removed
[ 1572.160398][T17001] team0 (unregistering): Port device team_slave_0 removed
[ 1572.569007][ T5840] Bluetooth: hci1: command tx timeout
[ 1573.070231][T28535] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1573.148282][T28452] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1573.172667][T28452] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1573.185451][T28452] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1573.204987][T28452] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1573.282721][T28536] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1573.327842][T28452] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1573.421275][T28452] 8021q: adding VLAN 0 to HW filter on device team0
[ 1573.456580][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1573.463737][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1573.549693][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1573.556902][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1573.618802][T28544] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1573.679772][T28452] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1573.727931][T28546] netlink: 'syz.3.5608': attribute type 2 has an invalid length.
[ 1573.762238][T28549] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1573.794800][T28548] netlink: 342 bytes leftover after parsing attributes in process `syz.4.5609'.
[ 1573.883675][T28551] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1573.895498][T28553] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1574.100083][T28556] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1574.188878][T28557] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1574.312205][T28560] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1574.401544][T28562] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1574.456449][T28452] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1574.638425][ T5840] Bluetooth: hci1: command tx timeout
[ 1574.770868][T28452] veth0_vlan: entered promiscuous mode
[ 1574.808595][T28452] veth1_vlan: entered promiscuous mode
[ 1574.859437][T28452] veth0_macvtap: entered promiscuous mode
[ 1574.903003][T28452] veth1_macvtap: entered promiscuous mode
[ 1574.925571][T28452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1574.945152][T28452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1574.955511][T28452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1574.975180][T28452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1574.985411][T28452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1575.000351][T28452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1575.011583][T28452] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1575.095353][T28452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1575.112630][T28452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1575.123440][T28452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1575.150613][T28452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1575.175284][T28452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1575.204206][T28452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1575.221415][T28452] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1575.263719][T28452] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1575.295000][T28452] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1575.303746][T28452] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1575.333617][T28452] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1576.063602][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1576.110712][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1576.196897][T28600] Invalid ELF header magic: != ELF
[ 1576.220942][T26867] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1576.228826][T26867] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1577.519786][T28626] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1577.654026][T28629] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1578.408071][T28646] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1578.456282][T28648] EXT4-fs error: 9 callbacks suppressed
[ 1578.456301][T28648] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:7: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1579.363619][T28671] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1579.411991][T28675] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1579.422244][T28669] Invalid ELF header magic: != ELF
[ 1580.531482][T28692] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1581.029152][T28704] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1581.080217][T28709] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1581.682540][T28713] blktrace: Concurrent blktraces are not allowed on mtdblock0
[ 1582.114307][T28723] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1582.151376][T28722] FAULT_INJECTION: forcing a failure.
[ 1582.151376][T28722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1582.165399][T28722] CPU: 1 UID: 0 PID: 28722 Comm: syz.5.5651 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1582.165434][T28722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1582.165450][T28722] Call Trace:
[ 1582.165458][T28722]  <TASK>
[ 1582.165468][T28722]  dump_stack_lvl+0x16c/0x1f0
[ 1582.165509][T28722]  should_fail_ex+0x50a/0x650
[ 1582.165558][T28722]  _copy_to_user+0x32/0xd0
[ 1582.165591][T28722]  simple_read_from_buffer+0xd0/0x160
[ 1582.165630][T28722]  proc_fail_nth_read+0x198/0x270
[ 1582.165664][T28722]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1582.165700][T28722]  ? rw_verify_area+0xcf/0x680
[ 1582.165733][T28722]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1582.165767][T28722]  vfs_read+0x1df/0xbf0
[ 1582.165803][T28722]  ? __fget_files+0x1fc/0x3a0
[ 1582.165844][T28722]  ? __pfx___mutex_lock+0x10/0x10
[ 1582.165881][T28722]  ? __pfx_vfs_read+0x10/0x10
[ 1582.165927][T28722]  ? __fget_files+0x206/0x3a0
[ 1582.165976][T28722]  ksys_read+0x12b/0x250
[ 1582.166012][T28722]  ? __pfx_ksys_read+0x10/0x10
[ 1582.166059][T28722]  do_syscall_64+0xcd/0x250
[ 1582.166099][T28722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1582.166138][T28722] RIP: 0033:0x7fe82298bb7c
[ 1582.166164][T28722] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1582.166190][T28722] RSP: 002b:00007fe8237f3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1582.166216][T28722] RAX: ffffffffffffffda RBX: 00007fe822ba6080 RCX: 00007fe82298bb7c
[ 1582.166234][T28722] RDX: 000000000000000f RSI: 00007fe8237f30a0 RDI: 0000000000000005
[ 1582.166250][T28722] RBP: 00007fe8237f3090 R08: 0000000000000000 R09: 0000000000000000
[ 1582.166266][T28722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1582.166281][T28722] R13: 0000000000000000 R14: 00007fe822ba6080 R15: 00007ffe8e0c3338
[ 1582.166315][T28722]  </TASK>
[ 1582.401999][T28726] Invalid ELF header magic: != ELF
[ 1582.933668][T28746] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5661'.
[ 1582.962931][T28746] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[ 1582.988290][T28746] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5661'.
[ 1583.296818][T28755] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1583.351001][T28756] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1583.738115][T28762] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1583.779211][T28764] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1584.708995][T28788] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1585.335984][T28801] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1585.403082][T28804] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1586.094698][T28816] zram: Added device: zram3
[ 1587.221620][T28839] FAULT_INJECTION: forcing a failure.
[ 1587.221620][T28839] name failslab, interval 1, probability 0, space 0, times 0
[ 1587.239366][T28839] CPU: 1 UID: 0 PID: 28839 Comm: syz.3.5687 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1587.239403][T28839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1587.239419][T28839] Call Trace:
[ 1587.239428][T28839]  <TASK>
[ 1587.239439][T28839]  dump_stack_lvl+0x16c/0x1f0
[ 1587.239482][T28839]  should_fail_ex+0x50a/0x650
[ 1587.239530][T28839]  ? fs_reclaim_acquire+0xae/0x150
[ 1587.239570][T28839]  should_failslab+0xc2/0x120
[ 1587.239608][T28839]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1587.239649][T28839]  ? __mutex_unlock_slowpath+0x164/0x6a0
[ 1587.239688][T28839]  ? getname_flags.part.0+0x4c/0x550
[ 1587.239725][T28839]  getname_flags.part.0+0x4c/0x550
[ 1587.239760][T28839]  getname_flags+0x93/0xf0
[ 1587.239798][T28839]  do_readlinkat+0xb5/0x390
[ 1587.239833][T28839]  ? __pfx_do_readlinkat+0x10/0x10
[ 1587.239858][T28839]  ? ksys_write+0x1ba/0x250
[ 1587.239895][T28839]  ? __pfx_ksys_write+0x10/0x10
[ 1587.239940][T28839]  __x64_sys_readlink+0x78/0xc0
[ 1587.239971][T28839]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1587.240005][T28839]  do_syscall_64+0xcd/0x250
[ 1587.240045][T28839]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1587.240084][T28839] RIP: 0033:0x7f2a7ab8d169
[ 1587.240105][T28839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1587.240131][T28839] RSP: 002b:00007f2a7ba3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000059
[ 1587.240157][T28839] RAX: ffffffffffffffda RBX: 00007f2a7ada5fa0 RCX: 00007f2a7ab8d169
[ 1587.240175][T28839] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000400000000c80
[ 1587.240191][T28839] RBP: 00007f2a7ba3d090 R08: 0000000000000000 R09: 0000000000000000
[ 1587.240208][T28839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1587.240223][T28839] R13: 0000000000000001 R14: 00007f2a7ada5fa0 R15: 00007ffcbea38f78
[ 1587.240255][T28839]  </TASK>
[ 1587.971130][T28853] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1587.990438][T28854] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1588.616202][T28871] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1588.664449][T28875] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1590.145330][T28902] FAULT_INJECTION: forcing a failure.
[ 1590.145330][T28902] name failslab, interval 1, probability 0, space 0, times 0
[ 1590.167463][T28902] CPU: 1 UID: 0 PID: 28902 Comm: syz.5.5706 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1590.167507][T28902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1590.167524][T28902] Call Trace:
[ 1590.167533][T28902]  <TASK>
[ 1590.167545][T28902]  dump_stack_lvl+0x16c/0x1f0
[ 1590.167587][T28902]  should_fail_ex+0x50a/0x650
[ 1590.167633][T28902]  ? fs_reclaim_acquire+0xae/0x150
[ 1590.167672][T28902]  ? tomoyo_encode2+0x100/0x3e0
[ 1590.167710][T28902]  should_failslab+0xc2/0x120
[ 1590.167739][T28902]  __kmalloc_noprof+0xcb/0x510
[ 1590.167782][T28902]  ? d_absolute_path+0x137/0x1b0
[ 1590.167815][T28902]  ? rcu_is_watching+0x12/0xc0
[ 1590.167849][T28902]  tomoyo_encode2+0x100/0x3e0
[ 1590.167893][T28902]  tomoyo_encode+0x29/0x50
[ 1590.167930][T28902]  tomoyo_realpath_from_path+0x19d/0x720
[ 1590.167975][T28902]  ? tomoyo_path_number_perm+0x235/0x590
[ 1590.168014][T28902]  tomoyo_path_number_perm+0x248/0x590
[ 1590.168048][T28902]  ? tomoyo_path_number_perm+0x235/0x590
[ 1590.168086][T28902]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1590.168155][T28902]  ? __pfx_lock_release+0x10/0x10
[ 1590.168194][T28902]  ? trace_lock_acquire+0x14e/0x1f0
[ 1590.168227][T28902]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1590.168271][T28902]  ? lock_acquire+0x2f/0xb0
[ 1590.168308][T28902]  ? __fget_files+0x40/0x3a0
[ 1590.168355][T28902]  ? __fget_files+0x206/0x3a0
[ 1590.168407][T28902]  security_file_ioctl+0x9b/0x240
[ 1590.168469][T28902]  __x64_sys_ioctl+0xb7/0x200
[ 1590.168522][T28902]  do_syscall_64+0xcd/0x250
[ 1590.168573][T28902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1590.168618][T28902] RIP: 0033:0x7fe82298d169
[ 1590.168645][T28902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1590.168679][T28902] RSP: 002b:00007fe8237f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1590.168708][T28902] RAX: ffffffffffffffda RBX: 00007fe822ba6080 RCX: 00007fe82298d169
[ 1590.168733][T28902] RDX: 0000000000005c8d RSI: 00000000401054d5 RDI: 00000000000000c8
[ 1590.168752][T28902] RBP: 00007fe822a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1590.168770][T28902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1590.168789][T28902] R13: 0000000000000000 R14: 00007fe822ba6080 R15: 00007ffe8e0c3338
[ 1590.168829][T28902]  </TASK>
[ 1590.168851][T28902] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1591.418020][T28927] FAULT_INJECTION: forcing a failure.
[ 1591.418020][T28927] name failslab, interval 1, probability 0, space 0, times 0
[ 1591.460763][T28927] CPU: 1 UID: 0 PID: 28927 Comm: syz.3.5715 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1591.460798][T28927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1591.460813][T28927] Call Trace:
[ 1591.460821][T28927]  <TASK>
[ 1591.460831][T28927]  dump_stack_lvl+0x16c/0x1f0
[ 1591.460874][T28927]  should_fail_ex+0x50a/0x650
[ 1591.460918][T28927]  ? fs_reclaim_acquire+0xae/0x150
[ 1591.460956][T28927]  ? kernfs_fop_write_iter+0x223/0x500
[ 1591.460984][T28927]  should_failslab+0xc2/0x120
[ 1591.461011][T28927]  __kmalloc_noprof+0xcb/0x510
[ 1591.461052][T28927]  ? rcu_is_watching+0x12/0xc0
[ 1591.461089][T28927]  kernfs_fop_write_iter+0x223/0x500
[ 1591.461130][T28927]  vfs_write+0x5ae/0x1150
[ 1591.461169][T28927]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1591.461204][T28927]  ? __pfx_vfs_write+0x10/0x10
[ 1591.461245][T28927]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1591.461273][T28927]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1591.461317][T28927]  ksys_write+0x12b/0x250
[ 1591.461354][T28927]  ? __pfx_ksys_write+0x10/0x10
[ 1591.461402][T28927]  do_syscall_64+0xcd/0x250
[ 1591.461441][T28927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1591.461479][T28927] RIP: 0033:0x7f2a7ab8d169
[ 1591.461500][T28927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1591.461527][T28927] RSP: 002b:00007f2a7ba3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1591.461551][T28927] RAX: ffffffffffffffda RBX: 00007f2a7ada5fa0 RCX: 00007f2a7ab8d169
[ 1591.461568][T28927] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[ 1591.461583][T28927] RBP: 00007f2a7ba3d090 R08: 0000000000000000 R09: 0000000000000000
[ 1591.461599][T28927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1591.461614][T28927] R13: 0000000000000000 R14: 00007f2a7ada5fa0 R15: 00007ffcbea38f78
[ 1591.461648][T28927]  </TASK>
[ 1593.079367][T28969] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1593.132709][T28971] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1593.875963][T28985] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5731'.
[ 1593.982001][T28985] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1594.130258][T28985] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1594.512919][T29001] FAULT_INJECTION: forcing a failure.
[ 1594.512919][T29001] name failslab, interval 1, probability 0, space 0, times 0
[ 1594.555891][T29001] CPU: 1 UID: 0 PID: 29001 Comm: syz.4.5737 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1594.555929][T29001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1594.555946][T29001] Call Trace:
[ 1594.555955][T29001]  <TASK>
[ 1594.555966][T29001]  dump_stack_lvl+0x16c/0x1f0
[ 1594.556011][T29001]  should_fail_ex+0x50a/0x650
[ 1594.556076][T29001]  ? fs_reclaim_acquire+0xae/0x150
[ 1594.556146][T29001]  ? tomoyo_encode2+0x100/0x3e0
[ 1594.556186][T29001]  should_failslab+0xc2/0x120
[ 1594.556216][T29001]  __kmalloc_noprof+0xcb/0x510
[ 1594.556262][T29001]  ? d_absolute_path+0x137/0x1b0
[ 1594.556295][T29001]  ? rcu_is_watching+0x12/0xc0
[ 1594.556330][T29001]  tomoyo_encode2+0x100/0x3e0
[ 1594.556376][T29001]  tomoyo_encode+0x29/0x50
[ 1594.556416][T29001]  tomoyo_realpath_from_path+0x19d/0x720
[ 1594.556464][T29001]  ? tomoyo_path_number_perm+0x235/0x590
[ 1594.556504][T29001]  tomoyo_path_number_perm+0x248/0x590
[ 1594.556543][T29001]  ? tomoyo_path_number_perm+0x235/0x590
[ 1594.556584][T29001]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1594.556651][T29001]  ? __pfx_lock_release+0x10/0x10
[ 1594.556694][T29001]  ? trace_lock_acquire+0x14e/0x1f0
[ 1594.556726][T29001]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1594.556766][T29001]  ? lock_acquire+0x2f/0xb0
[ 1594.556798][T29001]  ? __fget_files+0x40/0x3a0
[ 1594.556837][T29001]  ? __fget_files+0x206/0x3a0
[ 1594.556883][T29001]  security_file_ioctl+0x9b/0x240
[ 1594.556917][T29001]  __x64_sys_ioctl+0xb7/0x200
[ 1594.556950][T29001]  do_syscall_64+0xcd/0x250
[ 1594.556985][T29001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1594.557020][T29001] RIP: 0033:0x7f70d1f8d169
[ 1594.557040][T29001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1594.557065][T29001] RSP: 002b:00007f70cfdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1594.557088][T29001] RAX: ffffffffffffffda RBX: 00007f70d21a5fa0 RCX: 00007f70d1f8d169
[ 1594.557104][T29001] RDX: 0000000000005c8d RSI: 00000000401054d5 RDI: 00000000000000c8
[ 1594.557120][T29001] RBP: 00007f70d200e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1594.557136][T29001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1594.557150][T29001] R13: 0000000000000000 R14: 00007f70d21a5fa0 R15: 00007ffdf2b2fc08
[ 1594.557179][T29001]  </TASK>
[ 1594.557247][T29001] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1595.236508][T29014] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1595.282618][T29017] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1595.744857][T29028] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1596.855683][T29054] FAULT_INJECTION: forcing a failure.
[ 1596.855683][T29054] name failslab, interval 1, probability 0, space 0, times 0
[ 1596.910334][T29054] CPU: 0 UID: 0 PID: 29054 Comm: syz.2.5754 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1596.910370][T29054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1596.910385][T29054] Call Trace:
[ 1596.910392][T29054]  <TASK>
[ 1596.910402][T29054]  dump_stack_lvl+0x16c/0x1f0
[ 1596.910440][T29054]  should_fail_ex+0x50a/0x650
[ 1596.910475][T29054]  ? fs_reclaim_acquire+0xae/0x150
[ 1596.910507][T29054]  ? tomoyo_encode2+0x100/0x3e0
[ 1596.910539][T29054]  should_failslab+0xc2/0x120
[ 1596.910569][T29054]  __kmalloc_noprof+0xcb/0x510
[ 1596.910605][T29054]  ? d_absolute_path+0x137/0x1b0
[ 1596.910631][T29054]  ? rcu_is_watching+0x12/0xc0
[ 1596.910658][T29054]  tomoyo_encode2+0x100/0x3e0
[ 1596.910694][T29054]  tomoyo_encode+0x29/0x50
[ 1596.910723][T29054]  tomoyo_realpath_from_path+0x19d/0x720
[ 1596.910759][T29054]  ? tomoyo_path_number_perm+0x235/0x590
[ 1596.910789][T29054]  tomoyo_path_number_perm+0x248/0x590
[ 1596.910820][T29054]  ? tomoyo_path_number_perm+0x235/0x590
[ 1596.910856][T29054]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1596.910921][T29054]  ? __pfx_lock_release+0x10/0x10
[ 1596.910958][T29054]  ? trace_lock_acquire+0x14e/0x1f0
[ 1596.910987][T29054]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1596.911029][T29054]  ? lock_acquire+0x2f/0xb0
[ 1596.911064][T29054]  ? __fget_files+0x40/0x3a0
[ 1596.911108][T29054]  ? __fget_files+0x206/0x3a0
[ 1596.911152][T29054]  security_file_ioctl+0x9b/0x240
[ 1596.911189][T29054]  __x64_sys_ioctl+0xb7/0x200
[ 1596.911225][T29054]  do_syscall_64+0xcd/0x250
[ 1596.911265][T29054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1596.911305][T29054] RIP: 0033:0x7f100d38d169
[ 1596.911326][T29054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1596.911354][T29054] RSP: 002b:00007f100e206038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1596.911379][T29054] RAX: ffffffffffffffda RBX: 00007f100d5a6080 RCX: 00007f100d38d169
[ 1596.911397][T29054] RDX: 0000000000005c8d RSI: 00000000401054d5 RDI: 00000000000000c8
[ 1596.911413][T29054] RBP: 00007f100d40e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1596.911430][T29054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1596.911445][T29054] R13: 0000000000000000 R14: 00007f100d5a6080 R15: 00007ffc3abad6a8
[ 1596.911479][T29054]  </TASK>
[ 1596.911500][T29054] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1597.090827][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1597.492400][T29063] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1597.563463][T29067] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:15: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1599.609048][T29107] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5775'.
[ 1599.703050][T29107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1600.229084][T29116] FAULT_INJECTION: forcing a failure.
[ 1600.229084][T29116] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1600.284247][T29116] CPU: 0 UID: 0 PID: 29116 Comm: syz.3.5778 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1600.284290][T29116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1600.284308][T29116] Call Trace:
[ 1600.284318][T29116]  <TASK>
[ 1600.284331][T29116]  dump_stack_lvl+0x16c/0x1f0
[ 1600.284380][T29116]  should_fail_ex+0x50a/0x650
[ 1600.284434][T29116]  get_futex_key+0x4a3/0x1000
[ 1600.284481][T29116]  ? __pfx_get_futex_key+0x10/0x10
[ 1600.284517][T29116]  ? kasan_save_stack+0x42/0x60
[ 1600.284559][T29116]  ? kasan_save_stack+0x33/0x60
[ 1600.284604][T29116]  ? kasan_save_track+0x14/0x30
[ 1600.284647][T29116]  ? __kasan_slab_alloc+0x89/0x90
[ 1600.284692][T29116]  ? kmem_cache_alloc_noprof+0x226/0x3d0
[ 1600.284737][T29116]  ? security_file_alloc+0x34/0x2b0
[ 1600.284782][T29116]  futex_wait_setup+0x78/0x290
[ 1600.284833][T29116]  __futex_wait+0x267/0x3c0
[ 1600.284877][T29116]  ? __pfx___futex_wait+0x10/0x10
[ 1600.284927][T29116]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1600.284985][T29116]  futex_wait+0xe9/0x380
[ 1600.285029][T29116]  ? __pfx_futex_wait+0x10/0x10
[ 1600.285088][T29116]  ? lock_acquire.part.0+0x11b/0x380
[ 1600.285148][T29116]  ? find_held_lock+0x2d/0x110
[ 1600.285188][T29116]  do_futex+0x22b/0x350
[ 1600.285224][T29116]  ? __pfx_do_futex+0x10/0x10
[ 1600.285270][T29116]  __x64_sys_futex+0x1e1/0x4c0
[ 1600.285308][T29116]  ? __sys_socket+0xad/0x260
[ 1600.285344][T29116]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1600.285382][T29116]  ? rcu_is_watching+0x12/0xc0
[ 1600.285423][T29116]  do_syscall_64+0xcd/0x250
[ 1600.285473][T29116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1600.285516][T29116] RIP: 0033:0x7f2a7ab8d169
[ 1600.285538][T29116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1600.285567][T29116] RSP: 002b:00007f2a7ba3d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1600.285595][T29116] RAX: ffffffffffffffda RBX: 00007f2a7ada5fa8 RCX: 00007f2a7ab8d169
[ 1600.285614][T29116] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2a7ada5fa8
[ 1600.285632][T29116] RBP: 00007f2a7ada5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1600.285650][T29116] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2a7ada5fac
[ 1600.285668][T29116] R13: 0000000000000000 R14: 00007ffcbea38e90 R15: 00007ffcbea38f78
[ 1600.285704][T29116]  </TASK>
[ 1600.515233][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.728585][T29107] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1601.659710][T29137] FAULT_INJECTION: forcing a failure.
[ 1601.659710][T29137] name failslab, interval 1, probability 0, space 0, times 0
[ 1601.674333][T29137] CPU: 1 UID: 0 PID: 29137 Comm: syz.2.5785 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1601.674366][T29137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1601.674381][T29137] Call Trace:
[ 1601.674390][T29137]  <TASK>
[ 1601.674401][T29137]  dump_stack_lvl+0x16c/0x1f0
[ 1601.674443][T29137]  should_fail_ex+0x50a/0x650
[ 1601.674485][T29137]  ? fs_reclaim_acquire+0xae/0x150
[ 1601.674523][T29137]  should_failslab+0xc2/0x120
[ 1601.674549][T29137]  __kmalloc_node_noprof+0xd1/0x510
[ 1601.674593][T29137]  ? __kvmalloc_node_noprof+0xad/0x1a0
[ 1601.674637][T29137]  __kvmalloc_node_noprof+0xad/0x1a0
[ 1601.674676][T29137]  io_sqe_buffers_register+0x136/0x740
[ 1601.674715][T29137]  ? __lock_acquire+0xcc5/0x3c40
[ 1601.674760][T29137]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[ 1601.674807][T29137]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1601.674850][T29137]  __io_uring_register+0x2111/0x22f0
[ 1601.674886][T29137]  ? trace_contention_end+0xee/0x140
[ 1601.674927][T29137]  ? __pfx___io_uring_register+0x10/0x10
[ 1601.674960][T29137]  ? __mutex_lock+0x1cc/0xb10
[ 1601.674998][T29137]  ? __fget_files+0x1fc/0x3a0
[ 1601.675044][T29137]  ? __x64_sys_io_uring_register+0x15b/0x280
[ 1601.675078][T29137]  ? __pfx_lock_release+0x10/0x10
[ 1601.675117][T29137]  ? __pfx___mutex_lock+0x10/0x10
[ 1601.675155][T29137]  ? __fget_files+0x40/0x3a0
[ 1601.675198][T29137]  ? __fget_files+0x206/0x3a0
[ 1601.675246][T29137]  __x64_sys_io_uring_register+0x16c/0x280
[ 1601.675287][T29137]  do_syscall_64+0xcd/0x250
[ 1601.675330][T29137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1601.675369][T29137] RIP: 0033:0x7f100d38d169
[ 1601.675389][T29137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1601.675416][T29137] RSP: 002b:00007f100e227038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[ 1601.675441][T29137] RAX: ffffffffffffffda RBX: 00007f100d5a5fa0 RCX: 00007f100d38d169
[ 1601.675459][T29137] RDX: 0000400000000000 RSI: 0000000000000000 RDI: 0000000000000002
[ 1601.675475][T29137] RBP: 00007f100e227090 R08: 0000000000000000 R09: 0000000000000000
[ 1601.675491][T29137] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[ 1601.675507][T29137] R13: 0000000000000000 R14: 00007f100d5a5fa0 R15: 00007ffc3abad6a8
[ 1601.675540][T29137]  </TASK>
[ 1606.483115][T29243] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1606.543319][T29244] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1606.672364][T29247] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1606.800767][T29242] zswap: compressor  not available
[ 1607.696601][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.703062][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1608.433090][T29271] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1608.525899][T29275] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:13: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1613.733794][T29325] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1613.851359][T29327] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1614.779199][T27596] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1614.798466][T27596] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1614.809558][T27596] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1614.820970][T27596] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1614.830088][T27596] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1614.837409][T27596] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1616.579772][T29354] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1616.882393][T29333] chnl_net:caif_netlink_parms(): no params data found
[ 1616.901039][ T5840] Bluetooth: hci3: command tx timeout
[ 1617.064628][T29359] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1617.386494][T29366] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1564833355.1707718312.2079174108), cmd(5)
[ 1617.427928][T29368] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:8: corrupted in-inode xattr: bad magic number in in-inode xattr
[ 1617.514714][T29333] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1617.521994][T29333] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1617.545321][T29333] bridge_slave_0: entered allmulticast mode
[ 1617.552381][T29333] bridge_slave_0: entered promiscuous mode
[ 1617.587050][T29333] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1617.594187][T29333] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1617.607195][T29333] bridge_slave_1: entered allmulticast mode
[ 1617.614337][T29333] bridge_slave_1: entered promiscuous mode
[ 1617.762355][T29333] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1617.800603][T29333] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1617.908530][T29333] team0: Port device team_slave_0 added
[ 1617.936365][T29333] team0: Port device team_slave_1 added
[ 1618.134993][T29333] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1618.157800][T29333] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1618.213354][T29333] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1618.250977][T29379] ==================================================================
[ 1618.259104][T29379] BUG: KASAN: slab-use-after-free in force_wakeup_write+0x14d/0x170
[ 1618.267145][T29379] Read of size 1 at addr ffff888027f9d231 by task syz.3.5852/29379
[ 1618.275100][T29379] 
[ 1618.277446][T29379] CPU: 0 UID: 0 PID: 29379 Comm: syz.3.5852 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1618.277481][T29379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1618.277499][T29379] Call Trace:
[ 1618.277509][T29379]  <TASK>
[ 1618.277520][T29379]  dump_stack_lvl+0x116/0x1f0
[ 1618.277562][T29379]  print_report+0xc3/0x670
[ 1618.277606][T29379]  ? __virt_addr_valid+0x5e/0x590
[ 1618.277634][T29379]  ? __phys_addr+0xc6/0x150
[ 1618.277662][T29379]  kasan_report+0xd9/0x110
[ 1618.277686][T29379]  ? force_wakeup_write+0x14d/0x170
[ 1618.277723][T29379]  ? force_wakeup_write+0x14d/0x170
[ 1618.277761][T29379]  force_wakeup_write+0x14d/0x170
[ 1618.277796][T29379]  ? __pfx_force_wakeup_write+0x10/0x10
[ 1618.277831][T29379]  ? rcu_watching_snap_stopped_since+0xe1/0x110
[ 1618.277863][T29379]  ? trace_lock_acquire+0x14e/0x1f0
[ 1618.277898][T29379]  full_proxy_write+0x13c/0x200
[ 1618.277936][T29379]  ? __pfx_full_proxy_write+0x10/0x10
[ 1618.277972][T29379]  vfs_write+0x24c/0x1150
[ 1618.278009][T29379]  ? __fget_files+0x1fc/0x3a0
[ 1618.278049][T29379]  ? __pfx___mutex_lock+0x10/0x10
[ 1618.278086][T29379]  ? __pfx_vfs_write+0x10/0x10
[ 1618.278126][T29379]  ? __fget_files+0x206/0x3a0
[ 1618.278169][T29379]  ksys_write+0x12b/0x250
[ 1618.278206][T29379]  ? __pfx_ksys_write+0x10/0x10
[ 1618.278254][T29379]  do_syscall_64+0xcd/0x250
[ 1618.278288][T29379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1618.278321][T29379] RIP: 0033:0x7f2a7ab8d169
[ 1618.278340][T29379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1618.278363][T29379] RSP: 002b:00007f2a7ba3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1618.278384][T29379] RAX: ffffffffffffffda RBX: 00007f2a7ada5fa0 RCX: 00007f2a7ab8d169
[ 1618.278402][T29379] RDX: 0000000000000001 RSI: 0000400000001780 RDI: 0000000000000003
[ 1618.278420][T29379] RBP: 00007f2a7ac0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1618.278436][T29379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1618.278453][T29379] R13: 0000000000000000 R14: 00007f2a7ada5fa0 R15: 00007ffcbea38f78
[ 1618.278498][T29379]  </TASK>
[ 1618.278525][T29379] 
[ 1618.491881][T29379] Allocated by task 19734:
[ 1618.496299][T29379]  kasan_save_stack+0x33/0x60
[ 1618.501006][T29379]  kasan_save_track+0x14/0x30
[ 1618.505700][T29379]  __kasan_kmalloc+0xaa/0xb0
[ 1618.510329][T29379]  vhci_open+0x4c/0x430
[ 1618.514515][T29379]  misc_open+0x35a/0x420
[ 1618.518771][T29379]  chrdev_open+0x237/0x6a0
[ 1618.523222][T29379]  do_dentry_open+0x735/0x1c40
[ 1618.528003][T29379]  vfs_open+0x82/0x3f0
[ 1618.532085][T29379]  path_openat+0x1e88/0x2d80
[ 1618.536700][T29379]  do_filp_open+0x20c/0x470
[ 1618.541226][T29379]  do_sys_openat2+0x17a/0x1e0
[ 1618.545912][T29379]  __x64_sys_openat+0x175/0x210
[ 1618.550772][T29379]  do_syscall_64+0xcd/0x250
[ 1618.555305][T29379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1618.561221][T29379] 
[ 1618.563552][T29379] Freed by task 29326:
[ 1618.567623][T29379]  kasan_save_stack+0x33/0x60
[ 1618.572344][T29379]  kasan_save_track+0x14/0x30
[ 1618.577053][T29379]  kasan_save_free_info+0x3b/0x60
[ 1618.582093][T29379]  __kasan_slab_free+0x51/0x70
[ 1618.586886][T29379]  kfree+0x2c4/0x4d0
[ 1618.590800][T29379]  vhci_release+0xbb/0xf0
[ 1618.595145][T29379]  __fput+0x3ff/0xb70
[ 1618.599142][T29379]  task_work_run+0x14e/0x250
[ 1618.603758][T29379]  do_exit+0xad8/0x2d70
[ 1618.607922][T29379]  __x64_sys_exit+0x42/0x50
[ 1618.612447][T29379]  x64_sys_call+0xe97/0x1720
[ 1618.617048][T29379]  do_syscall_64+0xcd/0x250
[ 1618.621564][T29379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1618.627482][T29379] 
[ 1618.629814][T29379] The buggy address belongs to the object at ffff888027f9d000
[ 1618.629814][T29379]  which belongs to the cache kmalloc-1k of size 1024
[ 1618.643885][T29379] The buggy address is located 561 bytes inside of
[ 1618.643885][T29379]  freed 1024-byte region [ffff888027f9d000, ffff888027f9d400)
[ 1618.657779][T29379] 
[ 1618.660123][T29379] The buggy address belongs to the physical page:
[ 1618.666534][T29379] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x27f98
[ 1618.675305][T29379] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1618.683809][T29379] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1618.691364][T29379] page_type: f5(slab)
[ 1618.695358][T29379] raw: 00fff00000000040 ffff88801b041dc0 dead000000000100 dead000000000122
[ 1618.703954][T29379] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 1618.712546][T29379] head: 00fff00000000040 ffff88801b041dc0 dead000000000100 dead000000000122
[ 1618.721225][T29379] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 1618.729944][T29379] head: 00fff00000000003 ffffea00009fe601 ffffffffffffffff 0000000000000000
[ 1618.738638][T29379] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 1618.747316][T29379] page dumped because: kasan: bad access detected
[ 1618.753729][T29379] page_owner tracks the page as allocated
[ 1618.759447][T29379] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 52, tgid 52 (kworker/u8:3), ts 89160577045, free_ts 89033998014
[ 1618.779881][T29379]  post_alloc_hook+0x181/0x1b0
[ 1618.784670][T29379]  get_page_from_freelist+0xfce/0x2f80
[ 1618.790153][T29379]  __alloc_frozen_pages_noprof+0x221/0x2470
[ 1618.796074][T29379]  alloc_pages_mpol+0x1fc/0x540
[ 1618.800933][T29379]  new_slab+0x23d/0x330
[ 1618.805133][T29379]  ___slab_alloc+0xc5d/0x1720
[ 1618.809829][T29379]  __slab_alloc.constprop.0+0x56/0xb0
[ 1618.815216][T29379]  __kmalloc_node_track_caller_noprof+0x2f1/0x510
[ 1618.821657][T29379]  kmalloc_reserve+0xef/0x2c0
[ 1618.826347][T29379]  pskb_expand_head+0x243/0x1240
[ 1618.831313][T29379]  batadv_skb_head_push+0xf5/0x290
[ 1618.836446][T29379]  batadv_send_skb_packet+0x115/0x770
[ 1618.841848][T29379]  batadv_iv_send_outstanding_bat_ogm_packet+0x70a/0x8d0
[ 1618.848887][T29379]  process_one_work+0x9c5/0x1ba0
[ 1618.853846][T29379]  worker_thread+0x6c8/0xf00
[ 1618.858477][T29379]  kthread+0x3af/0x750
[ 1618.862564][T29379] page last free pid 5191 tgid 5191 stack trace:
[ 1618.868895][T29379]  free_frozen_pages+0x6db/0xfb0
[ 1618.873885][T29379]  __put_partials+0x14c/0x170
[ 1618.878584][T29379]  qlist_free_all+0x4e/0x120
[ 1618.883210][T29379]  kasan_quarantine_reduce+0x195/0x1e0
[ 1618.888689][T29379]  __kasan_slab_alloc+0x69/0x90
[ 1618.893565][T29379]  kmem_cache_alloc_noprof+0x226/0x3d0
[ 1618.899044][T29379]  getname_flags.part.0+0x4c/0x550
[ 1618.904179][T29379]  getname+0x8d/0xe0
[ 1618.908100][T29379]  do_sys_openat2+0x104/0x1e0
[ 1618.912803][T29379]  __x64_sys_openat+0x175/0x210
[ 1618.917660][T29379]  do_syscall_64+0xcd/0x250
[ 1618.922183][T29379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1618.928099][T29379] 
[ 1618.930429][T29379] Memory state around the buggy address:
[ 1618.936055][T29379]  ffff888027f9d100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1618.944130][T29379]  ffff888027f9d180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1618.952201][T29379] >ffff888027f9d200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1618.960260][T29379]                                      ^
[ 1618.965890][T29379]  ffff888027f9d280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1618.973957][T29379]  ffff888027f9d300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1618.982020][T29379] ==================================================================
[ 1618.991770][T29382] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1619.029431][ T5840] Bluetooth: hci3: command tx timeout
[ 1619.052689][T29379] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1619.059928][T29379] CPU: 0 UID: 0 PID: 29379 Comm: syz.3.5852 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1619.070713][T29379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1619.080789][T29379] Call Trace:
[ 1619.084123][T29379]  <TASK>
[ 1619.087081][T29379]  dump_stack_lvl+0x3d/0x1f0
[ 1619.091725][T29379]  panic+0x71d/0x800
[ 1619.095656][T29379]  ? __pfx_panic+0x10/0x10
[ 1619.100115][T29379]  ? preempt_schedule_thunk+0x1a/0x30
[ 1619.105545][T29379]  ? preempt_schedule_common+0x44/0xc0
[ 1619.111046][T29379]  check_panic_on_warn+0xab/0xb0
[ 1619.116019][T29379]  end_report+0x117/0x180
[ 1619.120401][T29379]  kasan_report+0xe9/0x110
[ 1619.124852][T29379]  ? force_wakeup_write+0x14d/0x170
[ 1619.130091][T29379]  ? force_wakeup_write+0x14d/0x170
[ 1619.135338][T29379]  force_wakeup_write+0x14d/0x170
[ 1619.140399][T29379]  ? __pfx_force_wakeup_write+0x10/0x10
[ 1619.145982][T29379]  ? rcu_watching_snap_stopped_since+0xe1/0x110
[ 1619.152286][T29379]  ? trace_lock_acquire+0x14e/0x1f0
[ 1619.157513][T29379]  full_proxy_write+0x13c/0x200
[ 1619.162384][T29379]  ? __pfx_full_proxy_write+0x10/0x10
[ 1619.167781][T29379]  vfs_write+0x24c/0x1150
[ 1619.172145][T29379]  ? __fget_files+0x1fc/0x3a0
[ 1619.176845][T29379]  ? __pfx___mutex_lock+0x10/0x10
[ 1619.181887][T29379]  ? __pfx_vfs_write+0x10/0x10
[ 1619.186677][T29379]  ? __fget_files+0x206/0x3a0
[ 1619.191380][T29379]  ksys_write+0x12b/0x250
[ 1619.195728][T29379]  ? __pfx_ksys_write+0x10/0x10
[ 1619.200600][T29379]  do_syscall_64+0xcd/0x250
[ 1619.205119][T29379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1619.211132][T29379] RIP: 0033:0x7f2a7ab8d169
[ 1619.215576][T29379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1619.235190][T29379] RSP: 002b:00007f2a7ba3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1619.243615][T29379] RAX: ffffffffffffffda RBX: 00007f2a7ada5fa0 RCX: 00007f2a7ab8d169
[ 1619.251594][T29379] RDX: 0000000000000001 RSI: 0000400000001780 RDI: 0000000000000003
[ 1619.259588][T29379] RBP: 00007f2a7ac0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1619.267572][T29379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1619.275572][T29379] R13: 0000000000000000 R14: 00007f2a7ada5fa0 R15: 00007ffcbea38f78
[ 1619.283568][T29379]  </TASK>
[ 1619.286726][T29379] Kernel Offset: disabled
[ 1619.291058][T29379] Rebooting in 86400 seconds..