last executing test programs: 3m29.65210379s ago: executing program 1 (id=722): madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) unshare$auto(0x40000080) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) mmap$auto(0x3, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x18, 0x4, 0x0) (async) openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0x40002, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20c40, 0x0) (async) socket(0x2, 0x801, 0x6) (async) openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x121080, 0x0) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103400, 0x0) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/sctp/remaddr\x00', 0xb00, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x103, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) (async) socket(0x15, 0x5, 0x0) (async) write$auto(0xffffffffffffffff, 0x0, 0x6) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) (async) openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x101400, 0xc5) (async) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/tty/ptyd5/power/control\x00', 0x183042, 0x0) sendfile$auto(r0, r0, 0x0, 0x4) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8102, 0x0) (async) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/tty17\x00', 0x0, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptye4\x00', 0x0, 0x0) 3m29.224994334s ago: executing program 1 (id=728): r0 = socket(0x22, 0x1, 0x80000000) r1 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0) sendfile$auto(r1, 0x3, 0x0, 0x744) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bus/usb/037/001\x00', 0x121802, 0x0) ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, 0x0) r3 = socket(0x15, 0x800, 0x80000000) setsockopt$auto(0xffffffffffffffff, 0x858c, 0x10, 0x0, 0x8b) r4 = fcntl$auto_F_UNLCK(r1, 0x21, 0x2) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'bond_slave_0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'veth0_to_bond\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'veth0_to_bridge\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_FEC_SET(r4, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0x78, r5, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_FEC_HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xad9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7e}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7fffffff}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x800}, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x8, 0xffffffffffffff49, 0x5, 0x1823, 0x800000000004, 0x1, 0x5, 0x19, 0x10, 0x5, 0x2dde, 0x8, 0xfffffffffffffffa, 0xab, 0x0, 0x1]}, &(0x7f0000000040)={0x0, 0x100}) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 3m28.089458087s ago: executing program 1 (id=738): r0 = open(&(0x7f0000000100)='./file0\x00', 0x6c02c2, 0x154) execveat$auto(r0, &(0x7f0000000200)='\x00', 0x0, 0x0, 0x11000) ppoll$auto(&(0x7f0000000000)={r0, 0x0, 0x6}, 0xffffff00, &(0x7f0000000040)={0x5, 0xffffffffffffffff}, &(0x7f0000000080)={0x7}, 0x8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'wg0\x00'}) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) mmap$auto(0x349, 0xfffffffffffffffe, 0x8000000000000001, 0xbfd, r1, 0x48) 3m27.86721927s ago: executing program 1 (id=739): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000640)='/dev/video39\x00', 0x0, 0x0) r0 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0x2) getsockopt$auto(r0, 0xff000000, 0xcf, 0x0, 0x0) 3m27.777686824s ago: executing program 1 (id=740): write$auto(0xffffffffffffffff, 0x0, 0x8) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000004080)='/sys/kernel/debug/zswap/pool_total_size\x00', 0x2, 0x0) (async) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cuse\x00', 0x62041, 0x0) (async) gettid() (async) write$auto(0x3, 0x0, 0x100082) (async) mmap$auto(0x0, 0x2020009, 0x3, 0x18, 0xffffffffffffffff, 0x3) (async, rerun: 64) r0 = socket(0x11, 0x3, 0x2) (rerun: 64) getsockopt$auto(r0, 0x107, 0xb, 0x0, 0x0) 3m27.372961851s ago: executing program 1 (id=745): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x40040c0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/ext4/sda1/fc_info\x00', 0x800, 0x0) preadv$auto(r2, &(0x7f0000000200)={0x0, 0x101}, 0x3, 0x80000000, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r1], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x6}, 0x3, 0x0) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r4, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000340)=ANY=[@ANYBLOB="4c00000060f496f3153535080f0b26c4b2586a39db8f74542276fbfd9fe9b5278708c49fd20dad7f476a3c464b734865df6287dee1674fc97f480fb8ac83ca0b35af740a", @ANYRES16=r3, @ANYBLOB="01002cbd7000ffdbdf251f0000000500060009000000080003000700000005000400e900000008000200ff000000180001801400020076657468305f766972745f7769666900"], 0x4c}, 0x1, 0x0, 0x0, 0x4004084}, 0x82) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r5, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000000080)={0x14, r6, 0x1, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4000) sendmsg$auto_NFSD_CMD_VERSION_GET(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1880}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r6, 0x400, 0x70bd2c, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x408d0}, 0x4000000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x7000000) 3m12.120649469s ago: executing program 32 (id=745): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x40040c0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/ext4/sda1/fc_info\x00', 0x800, 0x0) preadv$auto(r2, &(0x7f0000000200)={0x0, 0x101}, 0x3, 0x80000000, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r1], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x6}, 0x3, 0x0) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r4, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000340)=ANY=[@ANYBLOB="4c00000060f496f3153535080f0b26c4b2586a39db8f74542276fbfd9fe9b5278708c49fd20dad7f476a3c464b734865df6287dee1674fc97f480fb8ac83ca0b35af740a", @ANYRES16=r3, @ANYBLOB="01002cbd7000ffdbdf251f0000000500060009000000080003000700000005000400e900000008000200ff000000180001801400020076657468305f766972745f7769666900"], 0x4c}, 0x1, 0x0, 0x0, 0x4004084}, 0x82) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r5, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000000080)={0x14, r6, 0x1, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4000) sendmsg$auto_NFSD_CMD_VERSION_GET(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1880}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r6, 0x400, 0x70bd2c, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x408d0}, 0x4000000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x7000000) 2m42.451407428s ago: executing program 0 (id=889): openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x103, 0x0) mmap$auto(0x0, 0xe6b, 0xfffffffffffffffd, 0x18, 0xfffffffffffffffa, 0x8004) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x18, 0x3, 0x40006) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffff7ffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x13) rseq$auto(0x0, 0x30000, 0x80000800, 0x6) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0x26, 0x4, 0x87f0) readv$auto(0x3, 0x0, 0x1) open(&(0x7f0000000000)='./file0\x00', 0x40440, 0x40) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mprotect$auto(0x110c238000, 0x1, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0x2, 0x80000, 0x67fe) socket(0x11, 0x80003, 0x300) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/rpc/auth.unix.ip/channel\x00', 0x141401, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) pwrite64$auto(0xffffffffffffffff, 0x0, 0x6bc, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto(0x3, 0x0, 0x1) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) write$auto(r0, 0x0, 0x80) socketpair$auto(0x1e, 0x1, 0x0, 0x0) 2m41.979390098s ago: executing program 0 (id=892): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x5, 0x6, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) 2m41.632978879s ago: executing program 0 (id=895): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d76d"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) 2m40.627329367s ago: executing program 0 (id=898): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x21, 0x2, 0x73) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mlockall$auto(0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) timer_create$auto_CLOCK_BOOTTIME_ALARM(0x9, &(0x7f0000000040)={@sival_int=0x9, @raw=0x8}, &(0x7f00000000c0)=0x7c4f) read$auto(r0, 0x0, 0x6) openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000001100), 0x2141, 0x0) writev$auto(0x3, 0x0, 0x3) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0x28, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x6d4382, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') fremovexattr$auto(r2, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.4/usb5/descriptors\x00') socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x108000, 0x800034, 0xa) unshare$auto(0x40000080) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/ip_forward_update_priority\x00', 0x202, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r3, &(0x7f00000000c0)="85e8ee24", 0x4) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) 2m40.053958089s ago: executing program 0 (id=901): openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x103, 0x0) mmap$auto(0x0, 0xe6b, 0xfffffffffffffffd, 0x18, 0xfffffffffffffffa, 0x8004) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x18, 0x3, 0x40006) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x13) rseq$auto(0x0, 0x30000, 0x80000800, 0x6) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0x26, 0x4, 0x87f0) readv$auto(0x3, 0x0, 0x1) open(&(0x7f0000000000)='./file0\x00', 0x40440, 0x40) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) mprotect$auto(0x110c238000, 0x1, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0x2, 0x80000, 0x67fe) socket(0x11, 0x80003, 0x300) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/rpc/auth.unix.ip/channel\x00', 0x141401, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) pwrite64$auto(0xffffffffffffffff, 0x0, 0x6bc, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto(0x3, 0x0, 0x1) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0) write$auto(r0, 0x0, 0x80) socketpair$auto(0x1e, 0x1, 0x0, 0x0) 2m39.438681536s ago: executing program 0 (id=904): rseq$auto(&(0x7f00000002c0)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2}, 0xfffffff4, 0x0, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8182, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xf) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0) 2m24.294356747s ago: executing program 33 (id=904): rseq$auto(&(0x7f00000002c0)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2}, 0xfffffff4, 0x0, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8182, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xf) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0) 2m2.685758124s ago: executing program 4 (id=1001): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d76d"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) 2m1.638672666s ago: executing program 4 (id=1009): socket(0x29, 0xa, 0x8) rseq$auto(&(0x7f0000000000)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x7ffe, 0x0, 0x6) write$auto(0x3, 0x0, 0xfdef) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r0, 0x4, 0x7ff) unshare$auto(0x40000080) truncate$auto(0x0, 0x0) io_uring_enter$auto(0xffffffffffffffff, 0x9, 0x820e, 0x2a, 0x0, 0x18) ptrace$auto(0x3, r0, 0x20000004, 0x7) pwrite64$auto(0xc8, &(0x7f0000000240)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99?\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\xf2\xff\x9e\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcd^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00F\xd7\x02\xd2\xe7?\xaaw\x89\xea\xb1\x1d\xea\xa8\xb1\xaf\xdc\xdeS\xe4\x88\x16\x8eu8\x7f\xa7\xe5\xbb\xf8\v \x90E\xd8\nw,S\xf5\x00\xd8\xda\x16\xb6C\xe6\xc0j\xae\x19\x1eU\f\x18\x14 \x05\xd9:\'\xf5\r\xd8C\xc7,\xe1\xa9wzVf\xa4\xfc\xff\xb87\xa5.\x14\x81mgI\xb2\xbc\x91o\x1c\xfd/\x88\xa0\x02n\x98C\xd3\xfcY\xf4\x98\xb3-\xec\x87\x1f\xe5\xdcn[\x19\xac\'\xc86s{ \x0f', 0xfdf2, 0x3a) execve$auto(0x0, 0x0, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/dirty_bytes\x00', 0x200, 0x0) read$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) open(0x0, 0x0, 0xb5d1af1605322df2) close_range$auto(0x2, 0x8, 0x0) getdents$auto(r1, &(0x7f0000000100)={0x5, 0xffffffffffffffff, 0x0, "31d4c671af927b78ab3a6d6a1be615d5d63404774c4882c7667bd58eeaf4af4e98bdbb6fac53e1fe7fac3e3835f5b015d3e153442eff678e571c76b5d8dca20ceffdc7276382ef55f154136a62acd9ff733d2c388105c360e17ea5388dea6a9624ae6f0edefddef804e64c91f7de5f2987475d7e8db273595f17b2c51832d9409f927cda6ab10383b5c5c28ef84f27e2fdc0f1033a5cfffbb007128da18df6345525ee72b73b925bb1ab9039144e487b626e8f223816b6c86d8349db9166c46a4b11f70c39eec221f35d2e9ef2a64bff0bd541efa2"}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) shutdown$auto(0x200000003, 0x2) 1m59.498970496s ago: executing program 4 (id=1013): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d76d"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) 1m57.926754262s ago: executing program 4 (id=1017): r0 = socket(0xf, 0x1, 0x1) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000000), r0) (async) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00') openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x100, 0x0) (async) ioctl$auto(0x3, 0x80000541b, 0x38) (async) ioctl$NS_GET_PARENT(r1, 0xb701, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x30, r3, 0x1, 0x70bd31, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0xffffff89, 0x2, 'wlan0\x00'}]}]}, 0x30}}, 0x24048084) setsockopt$auto(r0, 0x65, 0x1, 0x0, 0x800) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) (async) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000b80), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_WOWLAN(r4, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000001680)={0x28, r5, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x8}, @NL80211_ATTR_WDEV={0xc, 0x99, 0x9ef}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x0) sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000a40)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000a00)={&(0x7f00000000c0)=ANY=[@ANYBLOB="10090000", @ANYRES16=r5, @ANYBLOB="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"], 0x910}}, 0x40) (async) bind$auto(0x3, &(0x7f0000000040)=@can, 0x6a) 1m57.82424795s ago: executing program 2 (id=1018): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d76d"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) 1m57.677032128s ago: executing program 4 (id=1019): r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001100)='/sys/kernel/security/tomoyo/manager\x00', 0x400, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r1, 0x4b31, r2) r3 = setfsuid$auto(0x0) ioprio_get$auto(0x6, r3) syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) socket(0xa, 0x2, 0x73) setsockopt$auto(0x4, 0x29, 0x1, 0x0, 0x8) getcwd$auto(&(0x7f0000000040)='/sys/kernel/security/tomoyo/manager\x00', 0x9c0) read$auto_tomoyo_operations_securityfs_if(r0, 0x0, 0x0) 1m57.437790709s ago: executing program 4 (id=1023): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002580), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000002640)={0x0, 0x3e, &(0x7f0000002600)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2c}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x810) 1m56.953794548s ago: executing program 2 (id=1026): mmap$auto(0x0, 0xfffffffffffffff7, 0xffffffffffffffff, 0xaeb1, 0xfffffffffffffffa, 0x7fff) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda\x00', 0x1ada01, 0x0) ioctl$auto_BLKGETSIZE(r0, 0x1260, 0x0) 1m56.851298967s ago: executing program 2 (id=1027): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(r1, 0xf, 0x0) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cec2\x00', 0x618a03, 0x0) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x8880) unshare$auto(0x40000080) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) setresuid$auto(0x2, 0x7, 0x8080) msgget$auto(0x0, 0x5) msgrcv$auto(0x0, 0x0, 0x4bd, 0x1, 0xf1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r2, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) bpf$auto(0x6, &(0x7f0000000300)=@iter_create={r0, 0x1}, 0x1e99) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r2) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) socket(0xa, 0x3, 0xff) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, 0x0, 0x54) madvise$auto(0x110c230000, 0x8031ca, 0x9) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) 1m55.666495233s ago: executing program 2 (id=1028): ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0) close_range$auto(0x2, 0x8, 0x1) openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0xca981, 0x0) socketpair$auto(0x10001, 0x5, 0x6c775535, &(0x7f0000000100)=0x6) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) unshare$auto(0xfffffffffffffffd) sync_file_range$auto(0xffffffffffffffff, 0x3b, 0x1, 0x1000) socket(0x28, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) madvise$auto(0x0, 0xf663, 0x15) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) pread64$auto(r0, 0x0, 0x59, 0x7) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x11, 0x80003, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'geneve0\x00', 0x0}) sendto$auto(0x3, 0x0, 0x36, 0xfffffff9, &(0x7f0000000440)=@xdp={0x2c, 0xdd86, r2, 0x10}, 0x22) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x608, 0x76c5, 0x8, 0x100000000}}) io_uring_enter$auto(0xffffffffffffffff, 0x9, 0x820e, 0x29, 0x0, 0x18) socket(0x2a, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0x800005411, 0x38) 1m55.444312084s ago: executing program 2 (id=1029): r0 = inotify_init1$auto(0x6) ioctl$auto_USBDEVFS_CLAIM_PORT(r0, 0x80045518, &(0x7f0000000000)=0x5) epoll_create$auto(0x3e) bpf$auto(0x1d, &(0x7f00000004c0)=@info={0xffffffffffffffff, 0x4, 0x2}, 0x3ff) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) mmap$auto(0x0, 0x2020009, 0x0, 0xeb1, 0xfffffffffffffffa, 0x5) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_wireguard(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cpu.max.burst\x00', 0x80302, 0x0) sendfile$auto(r1, r1, 0x0, 0x3) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) memfd_secret$auto(0x0) socket(0x2b, 0x1, 0x1) bind$auto(0x3, 0x0, 0x6b) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/ram5/queue/write_cache\x00', 0xac683, 0x0) write$auto(r2, 0x0, 0x300000000000) socket(0xa, 0x3, 0x100) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ib_srp/parameters/reconnect_delay\x00', 0x20681, 0x0) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f00000000c0), 0x801, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0x40047452, &(0x7f0000000100)=0xe) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000080)="3700b8", 0x3) socketpair$auto(0x40, 0x400, 0xfffffffd, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_TCFLSH2(r5, 0x8926, 0x0) 1m54.975419951s ago: executing program 2 (id=1031): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002580), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002600)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2c}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x810) setitimer$auto_ITIMER_PROF(0x2, &(0x7f0000000080)={{0x1}, {0x4, 0x100000000}}, &(0x7f00000000c0)={{0x3, 0x8}, {0x4, 0xe649}}) read$auto(r0, &(0x7f0000000100)='/dev/cpu_dma_latency\x00', 0x8) openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000000040), 0x501002, 0x0) 1m42.101059002s ago: executing program 34 (id=1023): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002580), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000002640)={0x0, 0x3e, &(0x7f0000002600)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2c}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x810) 1m39.526067815s ago: executing program 35 (id=1031): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002580), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002600)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2c}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x810) setitimer$auto_ITIMER_PROF(0x2, &(0x7f0000000080)={{0x1}, {0x4, 0x100000000}}, &(0x7f00000000c0)={{0x3, 0x8}, {0x4, 0xe649}}) read$auto(r0, &(0x7f0000000100)='/dev/cpu_dma_latency\x00', 0x8) openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000000040), 0x501002, 0x0) 6.176502435s ago: executing program 6 (id=1455): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fa"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) 4.151533081s ago: executing program 6 (id=1464): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x81, 0x8000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/scsi/sg/device_strs\x00', 0x101881, 0x0) r0 = getpid() move_pages$auto(r0, 0xd3, &(0x7f0000001100)=0x0, 0x0, 0x0, 0x2504) r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x488, 0x0) futimesat$auto(0xffffffffffffffff, 0x0, 0x0) madvise$auto(0x0, 0x1010001, 0x100000003) fcntl$auto_F_OFD_SETLKW(r1, 0x26, 0x0) 4.043067262s ago: executing program 5 (id=1465): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r0, 0x0, 0x1) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x3, 0x4000000000df, 0xeb1, 0x401, 0x8000) timerfd_create$auto(0x5, 0x3) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) r1 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0) getsockopt$auto_SO_RCVMARK(r1, 0xe, 0x4b, &(0x7f0000000080)='/dev/cpu_dma_latency\x00', &(0x7f00000000c0)=0x8) readv$auto(r1, &(0x7f0000001080)={&(0x7f0000000fc0), 0xc1f}, 0x5) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 3.821233281s ago: executing program 6 (id=1466): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000c00)) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D1\x00', 0x100, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) kcmp$auto(0x0, 0x0, 0x4, 0xffffffffffffffff, r2) shmctl$auto_SHM_LOCK(0x1, 0xb, 0x0) read$auto(0x3, 0x0, 0x7) sethostname$auto(&(0x7f0000000080)='.[/}-+\'\x00', 0x8) close_range$auto(r1, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) 3.20579986s ago: executing program 5 (id=1469): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/threads-max\x00', 0x40001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) unshare$auto(0x200) memfd_secret$auto(0x0) mmap$auto(0x0, 0xc1, 0x8003, 0x8000000008011, 0x3, 0x0) ftruncate$auto(0x3, 0x700) socketpair$auto(0x1e, 0x8, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents64$auto(0x0, 0x0, 0x41) getdents$auto(0x0, 0x0, 0x100) mkdir$auto(0x0, 0xc001) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') setns(r0, 0x0) clone$auto(0xfffffffe22000, 0x2, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x800fffffffc) 3.116541124s ago: executing program 3 (id=1470): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000c00)) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) read$auto(0x3, 0x0, 0x7) socket$nl_generic(0x10, 0x3, 0x10) 2.793618682s ago: executing program 5 (id=1471): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fa"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) 2.793076742s ago: executing program 7 (id=1473): socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0xf, 0x3, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x801, 0x100) fcntl$auto(0x4, 0x4, 0xa553) madvise$auto(0x0, 0xffffffffffff0005, 0x19) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000100)='/d-:\xe7J\x00'/23, 0x1eb07fd) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x7ffffffffffffffe, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0xa) 2.793001763s ago: executing program 3 (id=1474): mmap$auto(0x0, 0x2000d, 0x4000800200df, 0xeb1, 0x404, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) socketpair$auto(0x1e, 0x5, 0xda0, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmmsg$auto(0x3, 0x0, 0x3, 0x2000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) 2.672804297s ago: executing program 6 (id=1475): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) 2.571049802s ago: executing program 3 (id=1476): unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async) r0 = socket(0xa, 0x1, 0x100) (async) setsockopt$auto(0x400000000000003, 0x80000426, 0x10001b, 0x0, 0x567) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x28f42, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0) (async) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f00000004c0)="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") (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) (async) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) (async) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80805, 0xd) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async) pidfd_getfd$auto(0x3, 0x1, 0x100000000) (async) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, r2, 0x99, 0x8, 0x1, @relative_fd=r1, 0x5}, 0x92) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) (async) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x6}, 0xc) (async) setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b) syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002) (async) setsockopt$auto_SO_MAX_PACING_RATE(r0, 0x3, 0x2f, &(0x7f0000000300)='\xba\xf13\xa4o\xd3\xd2\xe0v\x95\xe6mAk\x90\xa1\xfd\xb0\xe1\xa6W\x85py\x91Q\xe7\xc9\x05\xce\x17\xe6<0e\x12\xe8/\x16\xf0\xd2\xe5\x06[\vFb\xd6\xc0sTv*\xa6\x97\xb4\xcf\xc8d^\xb1\x7f\xeeH\xd2\xa8\xeb\xad\xdfw\xad\x1e\xcf\x13\xd2\xbbh\xb7\xb1\xa2\x14\xbe=Q\xf3\xd6\x85\x8as\x04\x93\x8c3\n\x9e\xcc\xbdP\x89\xee\xa8\x82\x03\x97\xe6^\x85#\x11T\x8dE\xba\nF\xc2\xe2\x06k\xf0~\xa3\x86h\xc2\xb8\xcfk\x1f', 0x4) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) getpgid(0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) (async) socket(0x2, 0x3, 0x6) 1.702593885s ago: executing program 7 (id=1477): close_range$auto(0x0, 0xfffffffffffff000, 0x2) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x11, 0x3, 0x10) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x2, 0x2, 0x1) bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x17, r0, 0x4, r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x40, r2, 0x1b, 0x70bd26, 0x25dfdbfb, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x11, 0x0, 0x0, @fd}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x3) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) rt_sigaction$auto(0x1, &(0x7f0000000180)={&(0x7f0000000000)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8) rt_sigaction$auto(0x5, &(0x7f0000000140)={&(0x7f0000000040)=0x0, 0x9, 0x0, {0x81}}, 0x0, 0x8) r3 = gettid() sched_setaffinity$auto(0x0, 0x9899, &(0x7f00000000c0)=0xf19d) ioperm$auto(0x9, 0x6, 0x5) tkill$auto(0x0, 0x101) ioperm$auto(0xefdd, 0x4, 0xfffffffa) rt_sigqueueinfo$auto(r3, 0x1, 0x0) pwrite64$auto(0xc8, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a) 1.296728062s ago: executing program 3 (id=1478): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r0, 0x0, 0x1) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) shutdown$auto(0x200000003, 0x2) mmap$auto(0x0, 0x3, 0x4000000000df, 0xeb1, 0x401, 0x8000) timerfd_create$auto(0x5, 0x3) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) r1 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0) getsockopt$auto_SO_RCVMARK(r1, 0xe, 0x4b, &(0x7f0000000080)='/dev/cpu_dma_latency\x00', &(0x7f00000000c0)=0x8) readv$auto(r1, &(0x7f0000001080)={&(0x7f0000000fc0), 0xc1f}, 0x5) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 1.287179938s ago: executing program 7 (id=1479): r0 = socket(0x2, 0x3, 0xa) connect$auto(r0, &(0x7f00000000c0), 0x55) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) r1 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/ieee80211/phy0/aqm\x00', 0x400, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x80, 0x0) get_robust_list$auto(0x1, 0x0, 0x0) ioctl$auto(r3, 0xc0045520, r2) read$auto(r1, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy0/aqm\x00', 0x7fff) r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)={0x24, r4, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xb78}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x140000e4) recvfrom$auto(r1, &(0x7f00000000c0)="8709212107730bd71d657785bef1f9ab3f0207d8475808e552bb05dbe04087bfbf5e7bc45058f330f92890fb8cc9a066f597914ef73dbe00a8299f7744f0992b566204cec64eb8493255877f6d4ca6895972b8", 0x5, 0xb7, &(0x7f0000000140)=@xdp={0x2c, 0x0, r6, 0x13}, &(0x7f0000000180)=0x100) close_range$auto(r1, r1, 0x10) 1.257981833s ago: executing program 5 (id=1480): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d7"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) 1.211875251s ago: executing program 6 (id=1481): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000c00)) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) read$auto(0x3, 0x0, 0x7) socket$nl_generic(0x10, 0x3, 0x10) 971.260233ms ago: executing program 6 (id=1482): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fac93497d7"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) 830.388753ms ago: executing program 7 (id=1483): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/threads-max\x00', 0x40001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) unshare$auto(0x200) memfd_secret$auto(0x0) mmap$auto(0x0, 0xc1, 0x8003, 0x8000000008011, 0x3, 0x0) ftruncate$auto(0x3, 0x700) socketpair$auto(0x1e, 0x8, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents64$auto(0x0, 0x0, 0x41) getdents$auto(0x0, 0x0, 0x100) mkdir$auto(0x0, 0xc001) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') setns(r0, 0x0) clone$auto(0xfffffffe22000, 0x2, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x800fffffffc) 608.784505ms ago: executing program 3 (id=1484): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000c00)) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D1\x00', 0x100, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) kcmp$auto(0x0, 0x0, 0x4, 0xffffffffffffffff, r2) shmctl$auto_SHM_LOCK(0x1, 0xb, 0x0) read$auto(0x3, 0x0, 0x7) sethostname$auto(&(0x7f0000000080)='.[/}-+\'\x00', 0x8) close_range$auto(r1, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) 331.853065ms ago: executing program 7 (id=1485): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, 0x0, 0x44098) r0 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vkms/internal_clients\x00', 0x101402, 0x0) setresuid$auto(0x0, 0x8, 0x8000) open_by_handle_at$auto(r0, 0x0, 0xfffffffd) rt_sigaction$auto(0x4, &(0x7f0000000300)={&(0x7f0000000240)=0x0, 0x0, 0x0, {0x1}}, 0x0, 0x8) r1 = gettid() ioperm$auto(0x3, 0x5, 0x149) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x0, 0x8, 0x0, 0x7) rt_sigqueueinfo$auto(r1, 0x1, 0x0) 295.891837ms ago: executing program 5 (id=1486): close_range$auto(0x0, 0xfffffffffffff000, 0x2) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x11, 0x3, 0x10) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x2, 0x2, 0x1) bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x17, r0, 0x4, r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x40, r2, 0x1b, 0x70bd26, 0x25dfdbfb, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x11, 0x0, 0x0, @fd}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x3) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) rt_sigaction$auto(0x1, &(0x7f0000000180)={&(0x7f0000000000)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8) rt_sigaction$auto(0x5, &(0x7f0000000140)={&(0x7f0000000040)=0x0, 0x9, 0x0, {0x81}}, 0x0, 0x8) r3 = gettid() sched_setaffinity$auto(0x0, 0x9899, &(0x7f00000000c0)=0xf19d) ioperm$auto(0x9, 0x6, 0x5) tkill$auto(0x0, 0x101) ioperm$auto(0xefdd, 0x4, 0xfffffffa) rt_sigqueueinfo$auto(r3, 0x1, 0x0) pwrite64$auto(0xc8, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a) 93.846806ms ago: executing program 5 (id=1487): ftruncate$auto(0xffffffffffffffff, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) setresuid$auto(0x2, 0x7, 0x0) mincore$auto(0x0, 0xfffc, 0x0) mmap$auto(0x101, 0xe, 0xe1, 0x59, 0xffffffffffffffff, 0x200) r1 = socket(0x26, 0x2, 0x3) ioperm$auto(0xfb, 0x5, 0xe) mlockall$auto(0x7) mmap$auto(0x0, 0x80000002, 0xdf, 0x9b72, r1, 0x8000) close_range$auto(r0, r0, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) signalfd4$auto(0xffffffff, 0x0, 0x80000000000a, 0x4) signalfd$auto(0x4, 0x0, 0x8) io_uring_setup$auto(0x6, 0x0) shmget$auto(0x14, 0x2, 0xe64) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0x3f, 0x0, 0xf2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x405, 0x8000) r3 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0) read$auto(r2, 0x0, 0x2) close_range$auto(0x2, 0x8, 0x10000000) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0x40a0ae49, 0x38) ioctl$auto(r3, 0x8, r4) unshare$auto(0x40000080) 78.326508ms ago: executing program 7 (id=1488): mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000) r0 = socket(0xa, 0x3, 0x3a) close$auto(r0) set_mempolicy$auto(0x2, 0x0, 0x8) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x80002, 0x0) mmap$auto(0x0, 0x4004020009, 0xdc, 0xeb1, 0x401, 0x8000) unshare$auto(0x800) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000100)='/d-:\xe7J\x00'/23, 0x1eb07fd) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x8000000, 0x80000001, 0x7, 0xffffffffffffffff, 0x5, 0x2]}, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0xa) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) 0s ago: executing program 3 (id=1489): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sysfs$auto(0x2, 0x10000000000002a, 0x0) r0 = fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) write$auto_configfs_file_operations_configfs_internal(r0, &(0x7f0000000480)="189f63354a77469548daa82b94c541dd947c70a218987687e1a59ffe303e0485376df00aa8f8e2f45016a6af06a86f1a29e3a8e14e2c1dbbade242e6eb9bd90cd6c889aa82e31ed915f3c646c7ef6c3758182b87ecd483b5898f0a047926cca59153546411d5435bda", 0x69) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a0005000700000000000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f00003460fa"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) write$auto(0x3, 0x0, 0xfdef) write$auto(0x3, 0x0, 0xfdef) r2 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xb, &(0x7f00000003c0)={{0x81}, {0x4, 0x8}, 0x4, 0x0, 0x3, 0x3, 0x5, 0x571, 0x8, 0xf69, 0x7f, 0x1, 0xc1, 0x8, 0x3ff, 0x2}) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000140)={{0x7, 0xffffffffffffffff, 0xee01, 0x101, 0x7fffffff, 0x4, 0x3}, &(0x7f00000000c0)=0x8, &(0x7f0000000100), 0x7ff, 0x2, 0xfffffffffffffff9, 0xe, 0x80000000, 0x101, 0x1f, 0x8, @inferred=0xffffffffffffffff, @inferred=r2}) ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000001c0)={0xe0b, 0xffffffffffffffff, 0x4, 0x4}) newfstatat$auto(r0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)={0x8000000000000001, 0x7fffffffffffffff, 0xc, 0x6, r3, r4, 0x0, 0x4, 0x4, 0x8, 0x7, 0x5, 0x6c, 0x101, 0x5, 0x7, 0x4d20}, 0x1) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): ributes in process `syz.0.694'. [ 217.818001][ T8511] syz.0.692(8511): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 218.470074][ T8532] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 219.405251][ T8555] netlink: 186 bytes leftover after parsing attributes in process `syz.0.705'. [ 219.511875][ T8558] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 219.539919][ T8546] netlink: 334 bytes leftover after parsing attributes in process `syz.3.701'. can't run '/sbi[ 219.912979][ T8568] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[8568] [ 220.564714][ T8588] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 221.105504][ T8598] netlink: 334 bytes leftover after parsing attributes in process `syz.2.718'. [ 221.200098][ T8605] capability: warning: `syz.3.723' uses 32-bit capabilities (legacy support in use) [ 221.626216][ T8624] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 221.951022][ T8636] netlink: 342 bytes leftover after parsing attributes in process `syz.0.732'. [ 222.010486][ T8638] netlink: 342 bytes leftover after parsing attributes in process `syz.0.732'. [ 222.664807][ T8650] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 222.976398][ T8645] netlink: 342 bytes leftover after parsing attributes in process `syz.3.734'. [ 223.477648][ T8686] netlink: 342 bytes leftover after parsing attributes in process `syz.1.745'. [ 223.534973][ T8686] netlink: 342 bytes leftover after parsing attributes in process `syz.1.745'. [ 223.735404][ T8692] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 224.784302][ T8700] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 225.356982][ T8706] netlink: 326 bytes leftover after parsing attributes in process `syz.2.750'. [ 225.392004][ T8706] netlink: 326 bytes leftover after parsing attributes in process `syz.2.750'. [ 225.403389][ T8706] netlink: 326 bytes leftover after parsing attributes in process `syz.2.750'. [ 225.441143][ T8706] netlink: 326 bytes leftover after parsing attributes in process `syz.2.750'. [ 225.834158][ T8713] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 226.113205][ T8711] netlink: 342 bytes leftover after parsing attributes in process `syz.0.751'. [ 226.522554][ T8718] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 226.882279][ T8724] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 227.106270][ T8717] netlink: 342 bytes leftover after parsing attributes in process `syz.0.752'. [ 227.942136][ T8726] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 229.000058][ T8727] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 230.023186][ T8728] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 231.049911][ T8729] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 232.071663][ T8731] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 233.089757][ T8734] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 234.109768][ T8735] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 235.128801][ T8737] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 236.148546][ T8740] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 237.169587][ T8741] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Struct[ 238.193341][ T8742] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 238.729769][ T8743] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 238.753554][ T8743] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 238.771663][ T8749] syz.2.756 uses obsolete (PF_INET,SOCK_PACKET) [ 238.855351][ T8743] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 239.212511][ T8760] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 239.523437][ T5849] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 239.533292][ T5849] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 239.542397][ T5849] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 239.572002][ T5849] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 239.589780][ T5849] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 239.598497][ T5849] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 240.016928][ T8763] netlink: 342 bytes leftover after parsing attributes in process `syz.2.761'. [ 240.104114][ T8764] chnl_net:caif_netlink_parms(): no params data found [ 240.290616][ T8779] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 240.311966][ T8764] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.319071][ T8764] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.330238][ T8764] bridge_slave_0: entered allmulticast mode [ 240.337391][ T8764] bridge_slave_0: entered promiscuous mode [ 240.351579][ T8764] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.358798][ T8764] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.371330][ T8764] bridge_slave_1: entered allmulticast mode [ 240.378378][ T8764] bridge_slave_1: entered promiscuous mode [ 240.434826][ T8764] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.452736][ T8764] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.533544][ T8764] team0: Port device team_slave_0 added [ 240.563264][ T8764] team0: Port device team_slave_1 added [ 240.627272][ T8764] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 240.643639][ T8764] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 240.706102][ T8764] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 240.733798][ T8784] netlink: 342 bytes leftover after parsing attributes in process `syz.3.762'. [ 240.761873][ T8764] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 240.773744][ T8764] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 240.874505][ T8764] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 240.994998][ T8764] hsr_slave_0: entered promiscuous mode [ 241.052177][ T8764] hsr_slave_1: entered promiscuous mode [ 241.070734][ T8764] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 241.078362][ T8764] Cannot create hsr debugfs directory [ 241.132419][ T8783] netlink: 342 bytes leftover after parsing attributes in process `syz.2.763'. [ 241.322969][ T8794] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Struct[ 241.396771][ T8788] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 241.508118][ T8764] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 241.554777][ T8764] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 241.576887][ T8764] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 241.613075][ T8764] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 241.660352][ T5849] Bluetooth: hci4: command tx timeout [ 241.734418][ T8764] 8021q: adding VLAN 0 to HW filter on device bond0 [ 241.774006][ T8764] 8021q: adding VLAN 0 to HW filter on device team0 [ 241.797459][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.804658][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 241.833748][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.840929][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 242.164535][ T8764] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 242.365139][ T8816] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 242.488323][ T8764] veth0_vlan: entered promiscuous mode [ 242.509219][ T8764] veth1_vlan: entered promiscuous mode [ 242.543658][ T8764] veth0_macvtap: entered promiscuous mode [ 242.559345][ T8764] veth1_macvtap: entered promiscuous mode [ 242.584173][ T8764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.601105][ T8764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.617984][ T8764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.629623][ T8764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.639691][ T8764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.653570][ T8764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.663504][ T8764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.676417][ T8764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.691498][ T8764] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 242.712094][ T8764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 242.722981][ T8764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.734480][ T8764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 242.745373][ T8764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.756310][ T8764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 242.773105][ T8764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.789833][ T8764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 242.806614][ T8764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.818079][ T8764] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 242.829265][ T8764] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.840337][ T8764] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.849087][ T8764] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.858321][ T8764] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.960193][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.968144][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.009619][ T3000] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.017681][ T3000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.407081][ T8829] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 243.740296][ T5849] Bluetooth: hci4: command tx timeout [ 244.080219][ T8828] netlink: 342 bytes leftover after parsing attributes in process `syz.2.772'. [ 244.478980][ T8846] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 245.147551][ T8842] netlink: 342 bytes leftover after parsing attributes in process `syz.2.773'. [ 245.253879][ T8854] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 245.577314][ T8870] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 245.800896][ T8855] netlink: 342 bytes leftover after parsing attributes in process `syz.4.777'. [ 245.820130][ T5849] Bluetooth: hci4: command tx timeout [ 246.128142][ T8887] misc userio: Invalid payload size [ 246.544926][ T8872] netlink: 342 bytes leftover after parsing attributes in process `syz.3.787'. [ 246.642792][ T8897] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 246.699792][ T8894] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 247.200855][ T8878] netlink: 342 bytes leftover after parsing attributes in process `syz.0.786'. [ 247.704595][ T8915] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 247.901312][ T5849] Bluetooth: hci4: command tx timeout [ 248.249602][ T8921] ovs_ÿÃ: entered promiscuous mode [ 248.410881][ T8904] netlink: 342 bytes leftover after parsing attributes in process `syz.4.793'. [ 248.783244][ T8932] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 249.835274][ T8951] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 250.230353][ T8930] netlink: 342 bytes leftover after parsing attributes in process `syz.4.801'. [ 250.323981][ T8918] netlink: 342 bytes leftover after parsing attributes in process `syz.0.799'. [ 250.432614][ T8948] netlink: 342 bytes leftover after parsing attributes in process `syz.2.808'. [ 250.890622][ T8964] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 251.587106][ T8959] netlink: 342 bytes leftover after parsing attributes in process `syz.2.810'. [ 251.969734][ T8980] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 252.811191][ T8991] netlink: 342 bytes leftover after parsing attributes in process `syz.3.819'. [ 252.907517][ T8967] netlink: 342 bytes leftover after parsing attributes in process `syz.0.812'. [ 253.021866][ T8996] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 254.090485][ T9013] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 254.449883][ T9016] netlink: 4 bytes leftover after parsing attributes in process `syz.3.826'. [ 254.451078][ T9007] netlink: 342 bytes leftover after parsing attributes in process `syz.4.824'. [ 255.141952][ T9028] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 255.452222][ T9008] netlink: 342 bytes leftover after parsing attributes in process `syz.0.820'. [ 255.594021][ T9023] netlink: 342 bytes leftover after parsing attributes in process `syz.4.828'. [ 255.767579][ T9037] netlink: 8 bytes leftover after parsing attributes in process `syz.3.832'. [ 255.871944][ T9039] FAULT_INJECTION: forcing a failure. [ 255.871944][ T9039] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 255.897086][ T9039] CPU: 1 UID: 0 PID: 9039 Comm: syz.4.833 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 255.897127][ T9039] Tainted: [U]=USER [ 255.897134][ T9039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 255.897148][ T9039] Call Trace: [ 255.897154][ T9039] [ 255.897168][ T9039] dump_stack_lvl+0x16c/0x1f0 [ 255.897206][ T9039] should_fail_ex+0x50a/0x650 [ 255.897241][ T9039] ? __pfx___might_resched+0x10/0x10 [ 255.897280][ T9039] should_fail_alloc_page+0xe7/0x130 [ 255.897306][ T9039] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 255.897338][ T9039] ? __pfx___might_resched+0x10/0x10 [ 255.897377][ T9039] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 255.897414][ T9039] ? hlock_class+0x4e/0x130 [ 255.897439][ T9039] ? __lock_acquire+0xcc5/0x3c40 [ 255.897481][ T9039] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 255.897522][ T9039] ? hlock_class+0x4e/0x130 [ 255.897546][ T9039] ? mark_lock+0xb5/0xc60 [ 255.897580][ T9039] ? __pfx_mark_lock+0x10/0x10 [ 255.897610][ T9039] ? find_held_lock+0x2d/0x110 [ 255.897639][ T9039] ? rcu_read_unlock+0x17/0x60 [ 255.897662][ T9039] ? __pfx_lock_release+0x10/0x10 [ 255.897694][ T9039] ? trace_lock_acquire+0x14e/0x1f0 [ 255.897722][ T9039] ? vhost_dev_set_owner+0x197/0xa70 [ 255.897747][ T9039] __alloc_pages_noprof+0xb/0x1b0 [ 255.897782][ T9039] ___kmalloc_large_node+0x84/0x1b0 [ 255.897815][ T9039] __kmalloc_large_node_noprof+0x1c/0x70 [ 255.897847][ T9039] __kmalloc_noprof.cold+0xc/0x61 [ 255.897872][ T9039] ? rcu_is_watching+0x12/0xc0 [ 255.897896][ T9039] ? trace_kmalloc+0x2d/0xd0 [ 255.897925][ T9039] vhost_dev_set_owner+0x197/0xa70 [ 255.897962][ T9039] vhost_net_ioctl+0x690/0x16e0 [ 255.898012][ T9039] ? __pfx_lock_release+0x10/0x10 [ 255.898045][ T9039] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 255.898090][ T9039] ? __fget_files+0x206/0x3a0 [ 255.898126][ T9039] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 255.898161][ T9039] __x64_sys_ioctl+0x190/0x200 [ 255.898186][ T9039] do_syscall_64+0xcd/0x250 [ 255.898218][ T9039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.898247][ T9039] RIP: 0033:0x7f5f1638d169 [ 255.898267][ T9039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.898290][ T9039] RSP: 002b:00007f5f171f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 255.898314][ T9039] RAX: ffffffffffffffda RBX: 00007f5f165a5fa0 RCX: 00007f5f1638d169 [ 255.898329][ T9039] RDX: 0000000000000005 RSI: 000000000000af01 RDI: 0000000000000005 [ 255.898341][ T9039] RBP: 00007f5f1640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 255.898353][ T9039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.898363][ T9039] R13: 0000000000000000 R14: 00007f5f165a5fa0 R15: 00007ffcdfd0f578 [ 255.898393][ T9039] [ 256.353790][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.361836][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.482402][ T9046] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 257.518633][ T9055] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 258.538468][ T9052] netlink: 342 bytes leftover after parsing attributes in process `syz.3.837'. [ 258.564211][ T9069] FAULT_INJECTION: forcing a failure. [ 258.564211][ T9069] name failslab, interval 1, probability 0, space 0, times 0 [ 258.605713][ T9069] CPU: 0 UID: 0 PID: 9069 Comm: syz.4.841 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 258.605755][ T9069] Tainted: [U]=USER [ 258.605762][ T9069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 258.605776][ T9069] Call Trace: [ 258.605784][ T9069] [ 258.605794][ T9069] dump_stack_lvl+0x16c/0x1f0 [ 258.605832][ T9069] should_fail_ex+0x50a/0x650 [ 258.605868][ T9069] ? fs_reclaim_acquire+0xae/0x150 [ 258.605898][ T9069] should_failslab+0xc2/0x120 [ 258.605921][ T9069] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 258.605954][ T9069] ? __kernfs_new_node+0xd3/0x890 [ 258.605991][ T9069] __kernfs_new_node+0xd3/0x890 [ 258.606027][ T9069] ? __pfx___kernfs_new_node+0x10/0x10 [ 258.606057][ T9069] ? __pfx_lock_release+0x10/0x10 [ 258.606096][ T9069] ? kernfs_add_one+0x39d/0x520 [ 258.606138][ T9069] ? up_write+0x1b2/0x520 [ 258.606172][ T9069] kernfs_new_node+0x186/0x240 [ 258.606207][ T9069] __kernfs_create_file+0x53/0x350 [ 258.606234][ T9069] sysfs_add_file_mode_ns+0x1ff/0x3b0 [ 258.606268][ T9069] internal_create_group+0x56c/0xf10 [ 258.606305][ T9069] ? __pfx_internal_create_group+0x10/0x10 [ 258.606340][ T9069] ? kernfs_create_link+0x1bd/0x240 [ 258.606371][ T9069] internal_create_groups+0x9d/0x150 [ 258.606406][ T9069] device_add+0x733/0x1a70 [ 258.606537][ T9069] ? __pfx_device_add+0x10/0x10 [ 258.606584][ T9069] add_disk_fwnode+0x468/0x1320 [ 258.606624][ T9069] zram_add+0x486/0x6b0 [ 258.606656][ T9069] ? __pfx_zram_add+0x10/0x10 [ 258.606708][ T9069] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 258.606740][ T9069] ? rcu_is_watching+0x12/0xc0 [ 258.606771][ T9069] ? __pfx_hot_add_show+0x10/0x10 [ 258.606803][ T9069] hot_add_show+0x21/0x80 [ 258.606833][ T9069] class_attr_show+0x6f/0xa0 [ 258.606863][ T9069] ? __pfx_class_attr_show+0x10/0x10 [ 258.606891][ T9069] sysfs_kf_seq_show+0x23e/0x410 [ 258.606925][ T9069] seq_read_iter+0x4f4/0x12b0 [ 258.606970][ T9069] kernfs_fop_read_iter+0x414/0x580 [ 258.606995][ T9069] ? rw_verify_area+0xcf/0x680 [ 258.607027][ T9069] vfs_read+0x886/0xbf0 [ 258.607064][ T9069] ? __pfx_vfs_read+0x10/0x10 [ 258.607118][ T9069] ksys_read+0x12b/0x250 [ 258.607147][ T9069] ? __pfx_ksys_read+0x10/0x10 [ 258.607188][ T9069] do_syscall_64+0xcd/0x250 [ 258.607222][ T9069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 258.607255][ T9069] RIP: 0033:0x7f5f1638d169 [ 258.607275][ T9069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.607296][ T9069] RSP: 002b:00007f5f171f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 258.607319][ T9069] RAX: ffffffffffffffda RBX: 00007f5f165a5fa0 RCX: 00007f5f1638d169 [ 258.607335][ T9069] RDX: 0000000000001000 RSI: 0000400000000ec0 RDI: 0000000000000007 [ 258.607350][ T9069] RBP: 00007f5f1640e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 258.607364][ T9069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 258.607378][ T9069] R13: 0000000000000000 R14: 00007f5f165a5fa0 R15: 00007ffcdfd0f578 [ 258.607411][ T9069] [ 258.645920][ T9074] netlink: 334 bytes leftover after parsing attributes in process `syz.0.843'. [ 258.647055][ C0] vkms_vblank_simulate: vblank timer overrun [ 258.924754][ C0] vkms_vblank_simulate: vblank timer overrun [ 258.930784][ C0] hrtimer: interrupt took 320823034 ns [ 259.030848][ C0] vkms_vblank_simulate: vblank timer overrun [ 259.108522][ T9075] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 259.142164][ T9076] netlink: 44 bytes leftover after parsing attributes in process `syz.0.843'. can't run '/sbi[ 259.491437][ T9071] netlink: 342 bytes leftover after parsing attributes in process `syz.2.842'. [ 260.223257][ T9098] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 260.251086][ T9081] netlink: 342 bytes leftover after parsing attributes in process `syz.4.844'. can't run '/sbi[ 261.227454][ T9101] netlink: 28 bytes leftover after parsing attributes in process `syz.4.852'. [ 261.301822][ T9107] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Struct[ 261.388854][ T9104] can: request_module (can-proto-4) failed. [ 262.410820][ T9125] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 262.480331][ T9119] netlink: 342 bytes leftover after parsing attributes in process `syz.4.854'. [ 262.629722][ T9116] netlink: 342 bytes leftover after parsing attributes in process `syz.0.856'. [ 263.478558][ T9154] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 264.223481][ T9157] netlink: 342 bytes leftover after parsing attributes in process `syz.4.867'. [ 264.275226][ T9173] netlink: 342 bytes leftover after parsing attributes in process `syz.3.872'. [ 264.550767][ T9174] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 265.025454][ T9184] openvswitch: netlink: nsh attr 1 has unexpected len 14 expected 8 [ 265.497433][ T9194] netlink: 296 bytes leftover after parsing attributes in process `syz.2.877'. [ 265.589206][ T9195] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 265.730423][ T9182] netlink: 342 bytes leftover after parsing attributes in process `syz.0.881'. can't run '/sbi[ 266.167234][ T9181] kexec: Could not allocate control_code_buffer [ 266.710973][ T9207] netlink: 28 bytes leftover after parsing attributes in process `syz.3.879'. [ 266.826200][ T9219] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 267.805223][ T9207] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 267.877423][ T9207] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 267.901715][ T9207] bond0 (unregistering): Released all slaves [ 267.914280][ T9232] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 267.952387][ T9212] netlink: 342 bytes leftover after parsing attributes in process `syz.0.890'. [ 267.971212][ T9214] netlink: 342 bytes leftover after parsing attributes in process `syz.2.883'. can't run '/sbi[ 269.031246][ T9261] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 269.798380][ T9255] netlink: 342 bytes leftover after parsing attributes in process `syz.2.891'. [ 270.041683][ T9268] netlink: 342 bytes leftover after parsing attributes in process `syz.0.895'. [ 270.104147][ T9276] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 270.895159][ T9280] netlink: 342 bytes leftover after parsing attributes in process `syz.3.897'. [ 271.218821][ T9303] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Struct[ 271.285550][ T9305] netlink: 342 bytes leftover after parsing attributes in process `syz.4.902'. [ 271.330201][ T9305] IPv6: NLM_F_CREATE should be specified when creating new route [ 271.370132][ T9305] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 271.377907][ T9305] IPv6: NLM_F_CREATE should be set when creating new route [ 271.385338][ T9305] IPv6: NLM_F_CREATE should be set when creating new route [ 272.278159][ T9327] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 272.372838][ T9314] netlink: 342 bytes leftover after parsing attributes in process `syz.3.905'. [ 272.563912][ T9321] netlink: 342 bytes leftover after parsing attributes in process `syz.2.907'. [ 273.337379][ T9344] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 274.391289][ T9345] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 275.427111][ T9346] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Struct[ 276.461300][ T9347] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 277.481928][ T9348] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 278.503635][ T9349] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 279.523117][ T9350] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 280.547099][ T9351] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 281.568696][ T9352] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 282.592055][ T9353] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 283.617695][ T9354] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 284.640475][ T9355] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 285.662467][ T9356] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 286.691960][ T9367] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 287.020789][ T5839] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 287.030696][ T5839] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 287.038975][ T5839] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 287.054458][ T5839] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 287.062269][ T5839] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 287.069661][ T5839] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 287.496960][ T9386] netlink: 342 bytes leftover after parsing attributes in process `syz.3.922'. [ 287.548277][ T9375] chnl_net:caif_netlink_parms(): no params data found [ 287.761783][ T9375] bridge0: port 1(bridge_slave_0) entered blocking state [ 287.768929][ T9375] bridge0: port 1(bridge_slave_0) entered disabled state [ 287.777562][ T9398] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 287.830938][ T9375] bridge_slave_0: entered allmulticast mode [ 287.838006][ T9375] bridge_slave_0: entered promiscuous mode can't run '/sbi[ 287.865456][ T9375] bridge0: port 2(bridge_slave_1) entered blocking state [ 287.883255][ T9375] bridge0: port 2(bridge_slave_1) entered disabled state [ 287.898429][ T9375] bridge_slave_1: entered allmulticast mode [ 287.908915][ T9375] bridge_slave_1: entered promiscuous mode [ 287.946192][ T9382] netlink: 342 bytes leftover after parsing attributes in process `syz.4.920'. [ 287.981949][ T9375] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 288.019046][ T9375] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 288.109745][ T9375] team0: Port device team_slave_0 added [ 288.146751][ T9375] team0: Port device team_slave_1 added [ 288.207778][ T9375] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 288.219469][ T9375] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 288.339608][ T9375] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 288.373118][ T9375] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 288.394925][ T9375] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 288.461450][ T9375] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 288.672974][ T9375] hsr_slave_0: entered promiscuous mode [ 288.679460][ T9375] hsr_slave_1: entered promiscuous mode [ 288.738087][ T9375] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 288.760129][ T9375] Cannot create hsr debugfs directory [ 288.801401][ T9401] netlink: 342 bytes leftover after parsing attributes in process `syz.3.924'. [ 288.856161][ T9417] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 289.184896][ T5849] Bluetooth: hci5: command tx timeout [ 289.583466][ T9375] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 289.631488][ T9375] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 289.706735][ T9375] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 289.761849][ T9375] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 289.897079][ T9434] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 289.954722][ T9375] 8021q: adding VLAN 0 to HW filter on device bond0 can't run '/sbi[ 289.996127][ T9375] 8021q: adding VLAN 0 to HW filter on device team0 [ 290.022503][ T3000] bridge0: port 1(bridge_slave_0) entered blocking state [ 290.029683][ T3000] bridge0: port 1(bridge_slave_0) entered forwarding state [ 290.048947][ T3000] bridge0: port 2(bridge_slave_1) entered blocking state [ 290.056140][ T3000] bridge0: port 2(bridge_slave_1) entered forwarding state [ 290.152941][ T9430] netlink: 342 bytes leftover after parsing attributes in process `syz.3.932'. [ 290.406633][ T9375] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 290.757291][ T9375] veth0_vlan: entered promiscuous mode [ 290.768702][ T9375] veth1_vlan: entered promiscuous mode [ 290.804949][ T9375] veth0_macvtap: entered promiscuous mode [ 290.828469][ T9375] veth1_macvtap: entered promiscuous mode [ 290.847673][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.858286][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.869210][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.890136][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.900533][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.911492][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.921907][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.938025][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.961983][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.978089][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.996942][ T9375] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 291.001845][ T9448] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 291.018407][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.041554][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! can't run '/sbi[ 291.061389][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.079291][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.089934][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.101490][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.111432][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.122033][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.131955][ T9375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.142734][ T9375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.155448][ T9375] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 291.177122][ T9375] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 291.189114][ T9375] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 291.199766][ T9375] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 291.209616][ T9375] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 291.260229][ T5849] Bluetooth: hci5: command tx timeout [ 291.286826][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 291.294913][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 291.325476][ T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 291.337980][ T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 292.191933][ T9463] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 292.454316][ T9456] netlink: 342 bytes leftover after parsing attributes in process `syz.5.914'. [ 292.533109][ T9457] netlink: 342 bytes leftover after parsing attributes in process `syz.4.941'. [ 293.234625][ T9477] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 293.340230][ T5849] Bluetooth: hci5: command tx timeout [ 293.420116][ T9471] netlink: 342 bytes leftover after parsing attributes in process `syz.5.934'. [ 293.448076][ T9472] netlink: 342 bytes leftover after parsing attributes in process `syz.4.945'. [ 293.788377][ T9487] ======================================================= [ 293.788377][ T9487] WARNING: The mand mount option has been deprecated and [ 293.788377][ T9487] and is ignored by this kernel. Remove the mand [ 293.788377][ T9487] option from the mount to silence this warning. [ 293.788377][ T9487] ======================================================= [ 293.823319][ C1] vkms_vblank_simulate: vblank timer overrun [ 294.242279][ T9498] futex_wake_op: syz.3.944 tries to shift op by 64; fix this program [ 294.283251][ T9500] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 294.440739][ T9481] netlink: 342 bytes leftover after parsing attributes in process `syz.4.936'. [ 295.353515][ T9520] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 295.437542][ T5849] Bluetooth: hci5: command tx timeout [ 295.439655][ T9505] netlink: 342 bytes leftover after parsing attributes in process `syz.2.947'. [ 295.484555][ T9508] netlink: 342 bytes leftover after parsing attributes in process `syz.3.948'. [ 295.724036][ T9511] netlink: 342 bytes leftover after parsing attributes in process `syz.4.950'. [ 296.070875][ T9516] netlink: 342 bytes leftover after parsing attributes in process `syz.5.951'. [ 296.433175][ T9542] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 297.086706][ T9543] netlink: 342 bytes leftover after parsing attributes in process `syz.5.957'. [ 297.840864][ T9564] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 298.405549][ T9560] netlink: 342 bytes leftover after parsing attributes in process `syz.4.963'. [ 298.468755][ T9555] netlink: 342 bytes leftover after parsing attributes in process `syz.2.961'. [ 298.705036][ T9580] bridge0: port 3(syz_tun) entered blocking state [ 298.726978][ T9580] bridge0: port 3(syz_tun) entered disabled state [ 298.740485][ T9580] syz_tun: entered allmulticast mode [ 298.762483][ T9580] syz_tun: entered promiscuous mode [ 298.769350][ T9580] bridge0: port 3(syz_tun) entered blocking state [ 298.776301][ T9580] bridge0: port 3(syz_tun) entered forwarding state [ 298.852540][ T9577] netlink: 342 bytes leftover after parsing attributes in process `syz.5.964'. [ 298.894114][ T9580] netlink: Conntrack attr type has unexpected length (type=0, length=3, expected=0) [ 298.907198][ T9585] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 299.570911][ T9574] netlink: 342 bytes leftover after parsing attributes in process `syz.3.966'. [ 299.987303][ T9606] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 300.090803][ T29] audit: type=1326 audit(6035842228.611:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9596 comm="syz.4.970" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5f1638d169 code=0x0 [ 300.112220][ C0] vkms_vblank_simulate: vblank timer overrun can't run '/sbin/getty': Structure needs cleaning [ 300.481058][ T9605] netlink: 342 bytes leftover after parsing attributes in process `syz.5.971'. [ 301.146397][ T9626] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 301.388004][ T9611] netlink: 342 bytes leftover after parsing attributes in process `syz.3.974'. [ 302.009649][ T9624] netlink: 342 bytes leftover after parsing attributes in process `syz.5.976'. [ 302.202851][ T9632] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 302.739589][ T9633] netlink: 342 bytes leftover after parsing attributes in process `syz.4.985'. [ 303.259333][ T9655] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 303.528509][ T9649] netlink: 342 bytes leftover after parsing attributes in process `syz.5.989'. [ 304.102487][ T9650] netlink: 342 bytes leftover after parsing attributes in process `syz.2.980'. [ 304.324818][ T9667] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 305.004678][ T9662] netlink: 342 bytes leftover after parsing attributes in process `syz.3.982'. [ 305.034962][ T9663] netlink: 342 bytes leftover after parsing attributes in process `syz.5.992'. [ 305.054076][ T29] audit: type=1326 audit(6035842233.591:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9669 comm="syz.2.983" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1a7f38d169 code=0x0 [ 305.451642][ T9684] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 305.863521][ T9690] netlink: 342 bytes leftover after parsing attributes in process `syz.4.999'. [ 306.490555][ T9692] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 306.608268][ T9697] netlink: 330 bytes leftover after parsing attributes in process `syz.4.991'. [ 307.612155][ T9722] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 308.049453][ T9719] netlink: 342 bytes leftover after parsing attributes in process `syz.2.998'. [ 308.138774][ T29] audit: type=1326 audit(6035842236.661:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.5.1000" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f61cc38d169 code=0x0 [ 308.170678][ T9710] netlink: 342 bytes leftover after parsing attributes in process `syz.3.996'. [ 308.648884][ T9738] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1004'. [ 308.723225][ T9740] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 308.838717][ T9742] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 308.899657][ T9728] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1001'. [ 309.066012][ T9750] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1008'. [ 309.098038][ T9750] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1008'. [ 309.762420][ T9762] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 310.806348][ T9763] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 312.197586][ T9778] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 312.650969][ T9768] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1013'. [ 312.862390][ T9786] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535 [ 312.900163][ T29] audit: type=1326 audit(6035842241.421:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9780 comm="syz.3.1012" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ae278d169 code=0x0 [ 312.921665][ C1] vkms_vblank_simulate: vblank timer overrun [ 312.969572][ T9792] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1017'. [ 313.218639][ T9804] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 313.716820][ T9796] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1018'. [ 314.294922][ T9832] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 315.301034][ T9816] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1024'. [ 315.602725][ T9844] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 316.652404][ T9864] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 316.850879][ T9861] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1035'. [ 317.587548][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.594037][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.634162][ T9866] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1036'. [ 317.696736][ T9875] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 318.775005][ T9887] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 319.812208][ T9889] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 320.843089][ T9890] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 321.868155][ T9891] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 322.887829][ T9892] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 323.911993][ T9893] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 324.938913][ T9894] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 325.971050][ T9895] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 326.994197][ T9896] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 328.018496][ T9897] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 329.052421][ T9911] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 329.115152][ T5839] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 329.132084][ T5839] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 329.140814][ T5839] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 329.156151][ T5839] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 329.163976][ T5839] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 329.175021][ T5839] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 329.546448][ T9912] chnl_net:caif_netlink_parms(): no params data found [ 329.704950][ T9912] bridge0: port 1(bridge_slave_0) entered blocking state [ 329.726069][ T9912] bridge0: port 1(bridge_slave_0) entered disabled state [ 329.739784][ T9912] bridge_slave_0: entered allmulticast mode [ 329.771871][ T9912] bridge_slave_0: entered promiscuous mode [ 329.781493][ T9912] bridge0: port 2(bridge_slave_1) entered blocking state [ 329.789032][ T9912] bridge0: port 2(bridge_slave_1) entered disabled state [ 329.796386][ T9912] bridge_slave_1: entered allmulticast mode [ 329.804805][ T9912] bridge_slave_1: entered promiscuous mode [ 329.854565][ T9912] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 329.867110][ T9912] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 329.916406][ T9912] team0: Port device team_slave_0 added [ 329.928803][ T9912] team0: Port device team_slave_1 added [ 329.978937][ T9912] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 330.008422][ T9912] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 330.046681][ T9912] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 330.077603][ T9912] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 330.083388][ T9929] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 330.101300][ T9912] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. can't run '/sbi[ 330.147061][ T9912] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 330.195692][ T9927] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1046'. [ 330.211185][ T9912] hsr_slave_0: entered promiscuous mode [ 330.226332][ T9912] hsr_slave_1: entered promiscuous mode [ 330.235078][ T9912] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 330.249215][ T9912] Cannot create hsr debugfs directory [ 330.645638][ T9912] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 330.658507][ T9912] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 330.684505][ T9912] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 330.694565][ T9912] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 330.799602][ T9937] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1047'. [ 330.848347][ T9912] 8021q: adding VLAN 0 to HW filter on device bond0 [ 330.875106][ T9912] 8021q: adding VLAN 0 to HW filter on device team0 [ 330.894572][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 330.901743][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 330.943282][ T3662] bridge0: port 2(bridge_slave_1) entered blocking state [ 330.950502][ T3662] bridge0: port 2(bridge_slave_1) entered forwarding state [ 331.164143][ T9943] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 331.269360][ T5849] Bluetooth: hci6: command tx timeout [ 331.359815][ T9912] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 331.858854][ T9912] veth0_vlan: entered promiscuous mode [ 331.919599][ T9912] veth1_vlan: entered promiscuous mode [ 331.955483][ T9912] veth0_macvtap: entered promiscuous mode [ 331.978976][ T9912] veth1_macvtap: entered promiscuous mode [ 331.998043][ T5839] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 332.021550][ T5839] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 332.039618][ T5839] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 332.043287][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.070122][ T5839] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 332.083075][ T5839] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 332.092905][ T5839] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 332.115845][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.128981][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.139823][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.152253][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.162970][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.172876][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.183946][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.193971][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.204600][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.214810][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.236936][ T9965] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 332.252579][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.265035][ T9912] batman_adv: batadv0: Interface activated: batadv_slave_0 can't run '/sbi[ 332.317454][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 332.340017][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.357091][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 332.368581][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.378800][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 332.389585][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.399737][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 332.414398][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.424663][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 332.435686][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.446404][ T9912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 332.465068][ T9912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.477501][ T9912] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 332.491326][ T9912] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.500654][ T9912] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.509474][ T9912] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.520748][ T9912] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.762645][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 332.770792][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 332.876410][ T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 332.891019][ T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 332.982517][ T9979] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 333.053912][ T9956] chnl_net:caif_netlink_parms(): no params data found [ 333.058757][ T9981] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 333.272366][ T9956] bridge0: port 1(bridge_slave_0) entered blocking state [ 333.282106][ T9987] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 333.311213][ T9956] bridge0: port 1(bridge_slave_0) entered disabled state can't run '/sbi[ 333.318527][ T9956] bridge_slave_0: entered allmulticast mode n/getty': Structure needs cleaning [ 333.350903][ T9956] bridge_slave_0: entered promiscuous mode [ 333.352823][ T5839] Bluetooth: hci6: command tx timeout [ 333.397852][ T9956] bridge0: port 2(bridge_slave_1) entered blocking state [ 333.438063][ T9956] bridge0: port 2(bridge_slave_1) entered disabled state [ 333.470390][ T9956] bridge_slave_1: entered allmulticast mode [ 333.498667][ T9956] bridge_slave_1: entered promiscuous mode [ 333.558971][ T9990] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.5.1056: iget: checksum invalid [ 333.593336][ T9956] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 333.593648][ T9990] platform regulatory.0: loading /lib/firmware/updates/6.14.0-rc4-syzkaller-00248-g03d38806a902/regulatory.db failed with error -74 [ 333.615548][ T9956] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 333.650430][ T9990] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.5.1056: iget: checksum invalid [ 333.689761][ T9990] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 333.728040][ T9956] team0: Port device team_slave_0 added [ 333.730458][ T9990] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.5.1056: iget: checksum invalid [ 333.753917][ T9956] team0: Port device team_slave_1 added [ 333.800466][ T9990] platform regulatory.0: loading /lib/firmware/6.14.0-rc4-syzkaller-00248-g03d38806a902/regulatory.db failed with error -74 [ 333.831439][ T9956] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 333.841423][ T9990] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.5.1056: iget: checksum invalid [ 333.852456][ T9956] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 333.876392][ T9990] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74 [ 333.878401][ C1] vkms_vblank_simulate: vblank timer overrun [ 333.888980][ T9990] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74 [ 333.895804][ T9956] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 333.943382][ T9956] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 333.951421][ T9990] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 333.957168][ T9956] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 333.989251][ T9956] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 334.084464][ T9956] hsr_slave_0: entered promiscuous mode [ 334.099668][ T9956] hsr_slave_1: entered promiscuous mode [ 334.108642][ T9956] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 334.126118][ T9956] Cannot create hsr debugfs directory [ 334.140190][ T5839] Bluetooth: hci7: command tx timeout [ 334.326549][ T9956] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 334.338786][ T9956] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 334.338847][ T9994] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 334.392955][ T9956] netdevsim netdevsim7 netdevsim2: renamed from eth2 can't run '/sbi[ 334.421035][ T9993] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1057'. [ 334.440559][ T9956] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 334.528949][ T9956] 8021q: adding VLAN 0 to HW filter on device bond0 [ 334.647058][ T9956] 8021q: adding VLAN 0 to HW filter on device team0 [ 334.688728][ T51] bridge0: port 1(bridge_slave_0) entered blocking state [ 334.695964][ T51] bridge0: port 1(bridge_slave_0) entered forwarding state [ 334.744838][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 334.753132][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 334.885387][T10005] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 335.012502][ T9956] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 335.167243][ T9956] veth0_vlan: entered promiscuous mode [ 335.194841][ T9956] veth1_vlan: entered promiscuous mode [ 335.264506][ T9956] veth0_macvtap: entered promiscuous mode [ 335.282092][ T9956] veth1_macvtap: entered promiscuous mode [ 335.302070][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 can't run '/sbin/getty': Structure needs cleaning [ 335.302098][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.302112][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 335.302129][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.302141][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 335.302159][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.302172][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 335.302189][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.302205][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 335.302223][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.302238][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 335.302255][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.302269][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 335.302287][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.303523][ T9956] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 335.323753][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 335.323779][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.323792][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 335.323809][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.323820][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 335.323836][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.323848][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 335.323864][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.323878][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 335.323894][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.323907][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 335.323923][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.323935][ T9956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 335.323951][ T9956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 335.334188][ T9956] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 335.342835][ T9956] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 335.342880][ T9956] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 335.342915][ T9956] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 335.342950][ T9956] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 335.371385][T10004] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1066'. [ 335.420266][ T5839] Bluetooth: hci6: command tx timeout [ 335.493231][T10003] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1058'. [ 335.495111][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 335.495136][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 335.609793][ T3000] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 335.609821][ T3000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 336.230237][ T5839] Bluetooth: hci7: command tx timeout [ 336.786676][T10023] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1068'. can't run '/sbi[ 337.044721][T10022] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1051'. [ 337.452890][T10044] EXT4-fs error: 12 callbacks suppressed [ 337.452910][T10044] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 337.505376][ T5839] Bluetooth: hci6: command tx timeout [ 337.726477][T10040] FAULT_INJECTION: forcing a failure. [ 337.726477][T10040] name failslab, interval 1, probability 0, space 0, times 0 [ 337.740510][T10040] CPU: 0 UID: 0 PID: 10040 Comm: syz.7.1062 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 337.740562][T10040] Tainted: [U]=USER [ 337.740570][T10040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 337.740584][T10040] Call Trace: [ 337.740590][T10040] [ 337.740600][T10040] dump_stack_lvl+0x16c/0x1f0 [ 337.740641][T10040] should_fail_ex+0x50a/0x650 [ 337.740677][T10040] ? fs_reclaim_acquire+0xae/0x150 [ 337.740708][T10040] should_failslab+0xc2/0x120 [ 337.740730][T10040] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 337.740761][T10040] ? lockdep_init_map_type+0x16d/0x7d0 [ 337.740794][T10040] ? security_inode_alloc+0x3b/0x2b0 [ 337.740826][T10040] security_inode_alloc+0x3b/0x2b0 [ 337.740854][T10040] inode_init_always_gfp+0xce4/0x1030 [ 337.740893][T10040] alloc_inode+0x82/0x230 [ 337.740916][T10040] sock_alloc+0x40/0x280 [ 337.740950][T10040] __sock_create+0xc1/0x8d0 [ 337.740981][T10040] smc_create_clcsk+0x37/0xd0 [ 337.741016][T10040] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 337.741046][T10040] inet_create+0x94a/0x10a0 [ 337.741081][T10040] ? inet_create+0x90/0x10a0 [ 337.741118][T10040] __sock_create+0x335/0x8d0 [ 337.741150][T10040] __sys_socket+0x14f/0x260 [ 337.741177][T10040] ? __pfx___sys_socket+0x10/0x10 [ 337.741205][T10040] ? rcu_is_watching+0x12/0xc0 [ 337.741236][T10040] __x64_sys_socket+0x72/0xb0 [ 337.741262][T10040] ? lockdep_hardirqs_on+0x7c/0x110 [ 337.741291][T10040] do_syscall_64+0xcd/0x250 [ 337.741324][T10040] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.741355][T10040] RIP: 0033:0x7eff0858d169 [ 337.741375][T10040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 337.741398][T10040] RSP: 002b:00007eff094bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 337.741421][T10040] RAX: ffffffffffffffda RBX: 00007eff087a5fa0 RCX: 00007eff0858d169 [ 337.741438][T10040] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 337.741453][T10040] RBP: 00007eff0860e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 337.741467][T10040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.741482][T10040] R13: 0000000000000000 R14: 00007eff087a5fa0 R15: 00007fff5706faa8 [ 337.741512][T10040] [ 337.741714][T10040] socket: no more sockets [ 338.040229][T10055] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 338.222220][T10057] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.3.1069: iget: checksum invalid [ 338.236571][T10057] platform regulatory.0: loading /lib/firmware/updates/6.14.0-rc4-syzkaller-00248-g03d38806a902/regulatory.db failed with error -74 [ 338.271866][T10057] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.3.1069: iget: checksum invalid [ 338.299322][T10057] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 338.300653][ T5849] Bluetooth: hci7: command tx timeout [ 338.347315][T10057] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.3.1069: iget: checksum invalid [ 338.360588][T10057] platform regulatory.0: loading /lib/firmware/6.14.0-rc4-syzkaller-00248-g03d38806a902/regulatory.db failed with error -74 [ 338.390265][T10057] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.3.1069: iget: checksum invalid [ 338.438391][T10057] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74 [ 338.458068][T10057] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74 [ 338.511772][T10057] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 338.920184][T10061] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1076'. [ 339.117396][T10074] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 339.185034][T10076] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr [ 339.705252][T10077] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1073'. [ 340.159850][T10095] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 340.267480][T10097] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 340.313120][T10096] FAULT_INJECTION: forcing a failure. [ 340.313120][T10096] name failslab, interval 1, probability 0, space 0, times 0 [ 340.328886][T10079] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1077'. [ 340.376711][T10096] CPU: 1 UID: 0 PID: 10096 Comm: syz.6.1078 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 340.376755][T10096] Tainted: [U]=USER [ 340.376763][T10096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 340.376777][T10096] Call Trace: [ 340.376785][T10096] [ 340.376795][T10096] dump_stack_lvl+0x16c/0x1f0 [ 340.376831][T10096] should_fail_ex+0x50a/0x650 [ 340.376862][T10096] ? fs_reclaim_acquire+0xae/0x150 [ 340.376890][T10096] ? lsm_blob_alloc+0x68/0x90 [ 340.376920][T10096] should_failslab+0xc2/0x120 [ 340.376939][T10096] __kmalloc_noprof+0xcb/0x510 [ 340.376973][T10096] lsm_blob_alloc+0x68/0x90 [ 340.376999][T10096] security_sk_alloc+0x30/0x270 [ 340.377021][T10096] sk_prot_alloc+0xfb/0x2a0 [ 340.377043][T10096] sk_alloc+0x36/0xc20 [ 340.377068][T10096] inet_create+0x3a1/0x10a0 [ 340.377096][T10096] ? inet_create+0x90/0x10a0 [ 340.377126][T10096] __sock_create+0x335/0x8d0 [ 340.377151][T10096] smc_create_clcsk+0x37/0xd0 [ 340.377178][T10096] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 340.377201][T10096] inet_create+0x94a/0x10a0 [ 340.377228][T10096] ? inet_create+0x90/0x10a0 [ 340.377258][T10096] __sock_create+0x335/0x8d0 [ 340.377284][T10096] __sys_socket+0x14f/0x260 [ 340.377305][T10096] ? __pfx___sys_socket+0x10/0x10 [ 340.377327][T10096] ? rcu_is_watching+0x12/0xc0 [ 340.377352][T10096] __x64_sys_socket+0x72/0xb0 [ 340.377372][T10096] ? lockdep_hardirqs_on+0x7c/0x110 [ 340.377395][T10096] do_syscall_64+0xcd/0x250 [ 340.377420][T10096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.377446][T10096] RIP: 0033:0x7f9602b8d169 [ 340.377461][T10096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 340.377480][T10096] RSP: 002b:00007f960396e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 340.377498][T10096] RAX: ffffffffffffffda RBX: 00007f9602da6080 RCX: 00007f9602b8d169 [ 340.377511][T10096] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 340.377534][T10096] RBP: 00007f9602c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 340.377546][T10096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 340.377558][T10096] R13: 0000000000000000 R14: 00007f9602da6080 R15: 00007fff6d775398 [ 340.377583][T10096] [ 340.698346][ T5849] Bluetooth: hci7: command tx timeout [ 341.040632][T10107] FAULT_INJECTION: forcing a failure. [ 341.040632][T10107] name failslab, interval 1, probability 0, space 0, times 0 [ 341.085493][T10107] CPU: 0 UID: 0 PID: 10107 Comm: syz.7.1080 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 341.085535][T10107] Tainted: [U]=USER [ 341.085544][T10107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 341.085558][T10107] Call Trace: [ 341.085566][T10107] [ 341.085576][T10107] dump_stack_lvl+0x16c/0x1f0 [ 341.085614][T10107] should_fail_ex+0x50a/0x650 [ 341.085652][T10107] ? fs_reclaim_acquire+0xae/0x150 [ 341.085682][T10107] should_failslab+0xc2/0x120 [ 341.085706][T10107] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 341.085742][T10107] ? getname_flags.part.0+0x4c/0x550 [ 341.085775][T10107] getname_flags.part.0+0x4c/0x550 [ 341.085808][T10107] getname+0x8d/0xe0 [ 341.085838][T10107] do_sys_openat2+0x104/0x1e0 [ 341.085864][T10107] ? __pfx_do_sys_openat2+0x10/0x10 [ 341.085902][T10107] __x64_sys_openat+0x175/0x210 [ 341.085928][T10107] ? __pfx___x64_sys_openat+0x10/0x10 [ 341.085967][T10107] do_syscall_64+0xcd/0x250 [ 341.086001][T10107] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.086033][T10107] RIP: 0033:0x7eff0858d169 [ 341.086053][T10107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 341.086081][T10107] RSP: 002b:00007eff094bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 341.086105][T10107] RAX: ffffffffffffffda RBX: 00007eff087a5fa0 RCX: 00007eff0858d169 [ 341.086122][T10107] RDX: 0000000000101181 RSI: 00004000000003c0 RDI: ffffffffffffff9c [ 341.086138][T10107] RBP: 00007eff0860e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 341.086153][T10107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 341.086169][T10107] R13: 0000000000000000 R14: 00007eff087a5fa0 R15: 00007fff5706faa8 [ 341.086201][T10107] can't run '/sbi[ 342.101385][T10118] platform regulatory.0: loading /lib/firmware/updates/6.14.0-rc4-syzkaller-00248-g03d38806a902/regulatory.db failed with error -74 [ 342.129572][T10118] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 342.150653][T10118] platform regulatory.0: loading /lib/firmware/6.14.0-rc4-syzkaller-00248-g03d38806a902/regulatory.db failed with error -74 [ 342.194617][T10118] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74 [ 342.215643][T10118] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74 [ 342.234311][T10118] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db can't run '/sbi[ 342.640754][T10114] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1082'. [ 343.035625][T10138] EXT4-fs error: 8 callbacks suppressed [ 343.035643][T10138] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1198: comm udevd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 343.114240][T10138] udevd[10138]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning [ 343.305367][T10145] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 343.710531][T10134] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1087'. [ 344.133673][T10157] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:6: corrupted in-inode xattr: bad magic number in in-inode xattr [ 344.321242][T10154] FAULT_INJECTION: forcing a failure. [ 344.321242][T10154] name failslab, interval 1, probability 0, space 0, times 0 [ 344.360464][T10154] CPU: 1 UID: 0 PID: 10154 Comm: syz.5.1091 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 344.360503][T10154] Tainted: [U]=USER [ 344.360510][T10154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 344.360522][T10154] Call Trace: [ 344.360528][T10154] [ 344.360536][T10154] dump_stack_lvl+0x16c/0x1f0 [ 344.360573][T10154] should_fail_ex+0x50a/0x650 [ 344.360607][T10154] ? fs_reclaim_acquire+0xae/0x150 [ 344.360639][T10154] should_failslab+0xc2/0x120 [ 344.360663][T10154] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 344.360698][T10154] ? sk_prot_alloc+0x60/0x2a0 [ 344.360728][T10154] sk_prot_alloc+0x60/0x2a0 [ 344.360754][T10154] sk_alloc+0x36/0xc20 [ 344.360786][T10154] inet_create+0x3a1/0x10a0 [ 344.360821][T10154] ? inet_create+0x90/0x10a0 [ 344.360857][T10154] __sock_create+0x335/0x8d0 [ 344.360888][T10154] smc_create_clcsk+0x37/0xd0 [ 344.360922][T10154] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 344.360950][T10154] inet_create+0x94a/0x10a0 [ 344.360984][T10154] ? inet_create+0x90/0x10a0 [ 344.361021][T10154] __sock_create+0x335/0x8d0 [ 344.361051][T10154] __sys_socket+0x14f/0x260 [ 344.361077][T10154] ? __pfx___sys_socket+0x10/0x10 [ 344.361112][T10154] ? rcu_is_watching+0x12/0xc0 [ 344.361145][T10154] __x64_sys_socket+0x72/0xb0 [ 344.361171][T10154] ? lockdep_hardirqs_on+0x7c/0x110 [ 344.361202][T10154] do_syscall_64+0xcd/0x250 [ 344.361233][T10154] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.361265][T10154] RIP: 0033:0x7f61cc38d169 [ 344.361284][T10154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 344.361308][T10154] RSP: 002b:00007f61cd1e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 344.361331][T10154] RAX: ffffffffffffffda RBX: 00007f61cc5a5fa0 RCX: 00007f61cc38d169 [ 344.361348][T10154] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 344.361362][T10154] RBP: 00007f61cc40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 344.361377][T10154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 344.361391][T10154] R13: 0000000000000000 R14: 00007f61cc5a5fa0 R15: 00007ffc05276788 [ 344.361420][T10154] [ 344.647033][T10164] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:6: corrupted in-inode xattr: bad magic number in in-inode xattr [ 344.664132][T10165] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 344.721102][T10166] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:6: corrupted in-inode xattr: bad magic number in in-inode xattr [ 344.725269][T10161] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1092'. [ 345.321801][T10173] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1098'. [ 345.333007][T10173] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1098'. [ 345.380252][T10173] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1098'. [ 345.389546][T10173] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1098'. [ 345.482907][T10173] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1098'. [ 345.570101][T10173] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1098'. [ 345.579391][T10173] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1098'. can't run '/sbi[ 345.696610][T10183] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 346.648385][T10191] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.7.1101: iget: checksum invalid [ 346.700692][T10191] platform regulatory.0: loading /lib/firmware/updates/6.14.0-rc4-syzkaller-00248-g03d38806a902/regulatory.db failed with error -74 [ 346.722689][T10193] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 346.750306][T10191] EXT4-fs error (device sda1): ext4_lookup:1813: inode #248: comm syz.7.1101: iget: checksum invalid can't run '/sbi[ 346.799523][T10191] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 346.799851][T10191] platform regulatory.0: loading /lib/firmware/6.14.0-rc4-syzkaller-00248-g03d38806a902/regulatory.db failed with error -74 [ 346.800434][T10191] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74 [ 346.800469][T10191] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74 [ 346.800491][T10191] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 347.675899][T10209] __nla_validate_parse: 61 callbacks suppressed [ 347.675921][T10209] netlink: 306 bytes leftover after parsing attributes in process `syz.3.1107'. [ 347.751574][T10211] FAULT_INJECTION: forcing a failure. [ 347.751574][T10211] name failslab, interval 1, probability 0, space 0, times 0 [ 347.778516][T10211] CPU: 0 UID: 0 PID: 10211 Comm: syz.5.1105 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 347.778565][T10211] Tainted: [U]=USER [ 347.778574][T10211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 347.778588][T10211] Call Trace: [ 347.778595][T10211] [ 347.778606][T10211] dump_stack_lvl+0x16c/0x1f0 [ 347.778644][T10211] should_fail_ex+0x50a/0x650 [ 347.778683][T10211] ? fs_reclaim_acquire+0xae/0x150 [ 347.778718][T10211] ? lsm_blob_alloc+0x68/0x90 [ 347.778751][T10211] should_failslab+0xc2/0x120 [ 347.778775][T10211] __kmalloc_noprof+0xcb/0x510 [ 347.778822][T10211] lsm_blob_alloc+0x68/0x90 [ 347.778858][T10211] security_sk_alloc+0x30/0x270 [ 347.778885][T10211] sk_prot_alloc+0xfb/0x2a0 [ 347.778913][T10211] sk_alloc+0x36/0xc20 [ 347.778946][T10211] inet_create+0x3a1/0x10a0 [ 347.778983][T10211] ? inet_create+0x90/0x10a0 [ 347.779022][T10211] __sock_create+0x335/0x8d0 [ 347.779054][T10211] smc_create_clcsk+0x37/0xd0 [ 347.779090][T10211] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 347.779119][T10211] inet_create+0x94a/0x10a0 [ 347.779155][T10211] ? inet_create+0x90/0x10a0 [ 347.779193][T10211] __sock_create+0x335/0x8d0 [ 347.779226][T10211] __sys_socket+0x14f/0x260 [ 347.779253][T10211] ? __pfx___sys_socket+0x10/0x10 [ 347.779281][T10211] ? rcu_is_watching+0x12/0xc0 [ 347.779313][T10211] __x64_sys_socket+0x72/0xb0 [ 347.779338][T10211] ? lockdep_hardirqs_on+0x7c/0x110 [ 347.779367][T10211] do_syscall_64+0xcd/0x250 [ 347.779400][T10211] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.779432][T10211] RIP: 0033:0x7f61cc38d169 [ 347.779451][T10211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 347.779474][T10211] RSP: 002b:00007f61cd1a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 347.779497][T10211] RAX: ffffffffffffffda RBX: 00007f61cc5a6160 RCX: 00007f61cc38d169 [ 347.779513][T10211] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002 [ 347.779528][T10211] RBP: 00007f61cc40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 347.779544][T10211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 347.779565][T10211] R13: 0000000000000000 R14: 00007f61cc5a6160 R15: 00007ffc05276788 [ 347.779596][T10211] [ 348.005895][ C0] vkms_vblank_simulate: vblank timer overrun [ 348.162536][T10215] EXT4-fs error: 3 callbacks suppressed [ 348.162569][T10215] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 348.534436][T10203] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1102'. [ 349.123318][T10210] kexec: Could not allocate control_code_buffer [ 349.295507][T10225] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 350.200558][T10229] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1112'. [ 350.371699][T10236] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 350.507012][T10220] kexec: Could not allocate control_code_buffer [ 350.510937][T10227] netlink: 342 bytes leftover after parsing attributes in process `syz.7.1108'. can't run '/sbi[ 351.461164][T10251] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 351.821110][T10260] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:6: corrupted in-inode xattr: bad magic number in in-inode xattr [ 351.847939][T10261] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:6: corrupted in-inode xattr: bad magic number in in-inode xattr [ 352.260214][ T5849] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 352.260258][ T5849] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 352.275282][ T5849] Bluetooth: hci1: adv larger than maximum supported [ 352.275346][ T5849] Bluetooth: hci1: adv larger than maximum supported [ 352.282603][ T5849] Bluetooth: hci1: Unknown advertising packet type: 0x30 [ 352.291038][ T5849] Bluetooth: hci1: adv larger than maximum supported [ 352.484840][T10273] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 352.527849][T10274] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:11: corrupted in-inode xattr: bad magic number in in-inode xattr [ 352.569805][T10275] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:11: corrupted in-inode xattr: bad magic number in in-inode xattr [ 352.735729][T10266] netlink: 342 bytes leftover after parsing attributes in process `syz.7.1119'. [ 353.523020][T10287] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 353.539788][T10279] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1123'. can't run '/sbi[ 353.838413][T10284] netlink: 342 bytes leftover after parsing attributes in process `syz.7.1125'. [ 354.437153][T10282] kexec: Could not allocate control_code_buffer [ 354.606110][T10297] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Structure needs cleani[ 355.509729][T10313] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 355.511190][T10314] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:6: corrupted in-inode xattr: bad magic number in in-inode xattr [ 355.688973][T10317] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Structure needs cleaning [ 356.751242][T10322] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 357.605070][T10327] netlink: 342 bytes leftover after parsing attributes in process `syz.7.1135'. [ 357.787897][T10340] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:11: corrupted in-inode xattr: bad magic number in in-inode xattr [ 357.835932][T10341] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 357.911815][T10325] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1134'. [ 358.877033][T10343] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 359.908898][T10356] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Struct[ 360.525372][T10362] tipc: Started in network mode [ 360.525398][T10362] tipc: Node identity ee00, cluster identity 4711 [ 360.525413][T10362] tipc: Node number set to 60928 [ 360.566370][T10352] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1147'. [ 360.919286][T10371] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 360.946166][T10371] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 361.031728][T10377] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 361.944202][T10382] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1149'. [ 362.095531][T10403] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:11: corrupted in-inode xattr: bad magic number in in-inode xattr [ 362.123804][T10404] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 362.528260][T10400] netlink: 342 bytes leftover after parsing attributes in process `syz.7.1155'. [ 363.193634][T10419] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 363.518084][T10410] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1156'. [ 364.248292][T10444] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 364.505994][T10447] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1166'. [ 365.333257][T10462] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 365.336496][T10463] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:3: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 365.706763][T10453] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1168'. [ 365.740216][ T5839] Bluetooth: hci4: command 0x0406 tx timeout [ 366.148129][T10460] netlink: 342 bytes leftover after parsing attributes in process `syz.6.1169'. [ 366.433513][T10476] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 367.033501][T10483] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1172'. [ 367.057900][T10473] netlink: 86 bytes leftover after parsing attributes in process `syz.5.1180'. [ 367.501562][T10493] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 367.518229][T10492] syz.3.1177 calls setitimer() with new_value NULL pointer. Misfeature support will be removed can't run '/sbi[ 368.557726][T10514] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 368.861316][T10505] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1183'. [ 369.394423][T10518] netlink: 86 bytes leftover after parsing attributes in process `syz.7.1185'. [ 369.650791][T10526] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 369.718389][T10531] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:6: corrupted in-inode xattr: bad magic number in in-inode xattr [ 370.385789][T10529] netlink: 86 bytes leftover after parsing attributes in process `syz.3.1197'. [ 370.667489][T10533] netlink: 342 bytes leftover after parsing attributes in process `syz.7.1187'. [ 370.704302][T10549] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 371.800653][T10566] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 372.850300][T10579] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 373.014681][T10583] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:10: corrupted in-inode xattr: bad magic number in in-inode xattr [ 373.569202][T10573] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1202'. [ 373.734085][T10576] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1200'. [ 373.892399][T10594] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 374.992586][T10613] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 375.201509][T10597] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1207'. [ 375.718343][T10620] netlink: 86 bytes leftover after parsing attributes in process `syz.5.1212'. [ 376.098771][T10634] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 376.760603][T10626] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1216'. [ 377.179861][T10650] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 377.355152][T10638] kexec: Could not allocate control_code_buffer [ 378.278907][T10670] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 379.023098][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.029909][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.056229][T10675] netlink: 86 bytes leftover after parsing attributes in process `syz.3.1229'. [ 379.105728][T10677] input input10: cannot allocate more than FF_MAX_EFFECTS effects [ 379.307333][T10682] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 380.078991][T10684] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1232'. [ 380.369604][T10708] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 381.018145][T10703] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1246'. [ 381.107445][T10705] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1240'. [ 381.421043][T10724] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 381.884744][T10720] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1251'. [ 382.712640][T10739] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 382.956692][T10738] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1253'. [ 383.037014][T10735] netlink: 86 bytes leftover after parsing attributes in process `syz.6.1243'. [ 383.756616][T10753] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 384.141892][T10731] kexec: Could not allocate control_code_buffer [ 384.355752][T10754] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1258'. [ 384.794200][T10767] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 385.819235][T10792] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 386.068659][T10791] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1255'. [ 386.543759][T10785] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1257'. [ 386.939285][T10809] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 387.088450][T10803] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1264'. [ 387.249844][T10799] netlink: 86 bytes leftover after parsing attributes in process `syz.7.1262'. [ 387.990647][T10829] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 388.633193][T10824] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1276'. [ 388.857969][T10823] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1269'. [ 389.024918][T10845] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 389.846816][T10855] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1283'. [ 390.111175][T10857] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr [ 390.126690][T10853] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1274'. can't run '/sbi[ 391.052741][T10863] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1277'. [ 391.192215][T10877] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 392.273308][T10896] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 392.846833][T10903] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1287'. [ 393.124023][T10904] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1288'. [ 393.314534][T10916] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 393.771606][T10906] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1289'. [ 393.957610][T10914] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1292'. [ 394.411317][T10934] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 394.637106][T10922] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1302'. [ 394.688401][T10938] netlink: 342 bytes leftover after parsing attributes in process `syz.7.1297'. [ 394.858169][T10940] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1298'. [ 395.074922][T10946] FAULT_INJECTION: forcing a failure. [ 395.074922][T10946] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 395.088242][T10946] CPU: 1 UID: 0 PID: 10946 Comm: syz.6.1301 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 395.088281][T10946] Tainted: [U]=USER [ 395.088289][T10946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 395.088304][T10946] Call Trace: [ 395.088311][T10946] [ 395.088321][T10946] dump_stack_lvl+0x16c/0x1f0 [ 395.088359][T10946] should_fail_ex+0x50a/0x650 [ 395.088400][T10946] strncpy_from_user+0x3b/0x2d0 [ 395.088438][T10946] getname_flags.part.0+0x8f/0x550 [ 395.088469][T10946] getname+0x8d/0xe0 [ 395.088499][T10946] do_sys_openat2+0x104/0x1e0 [ 395.088526][T10946] ? __pfx_do_sys_openat2+0x10/0x10 [ 395.088562][T10946] __x64_sys_open+0x154/0x1e0 [ 395.088588][T10946] ? __pfx___x64_sys_open+0x10/0x10 [ 395.088623][T10946] do_syscall_64+0xcd/0x250 [ 395.088656][T10946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 395.088688][T10946] RIP: 0033:0x7f9602b8d169 [ 395.088707][T10946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 395.088731][T10946] RSP: 002b:00007f960398f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 395.088754][T10946] RAX: ffffffffffffffda RBX: 00007f9602da5fa0 RCX: 00007f9602b8d169 [ 395.088770][T10946] RDX: 0000000000000155 RSI: 0000000000022242 RDI: 0000000000000000 [ 395.088785][T10946] RBP: 00007f9602c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 395.088801][T10946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 395.088816][T10946] R13: 0000000000000000 R14: 00007f9602da5fa0 R15: 00007fff6d775398 [ 395.088856][T10946] [ 395.502247][T10949] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 396.459569][T10961] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1305'. [ 396.514725][T10958] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1304'. [ 396.541332][T10966] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 396.814612][T10955] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1306'. [ 397.594715][T10990] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 398.483224][T10988] __nla_validate_parse: 1 callbacks suppressed [ 398.483247][T10988] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1322'. [ 398.650391][T11003] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 398.879539][T11013] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:10: corrupted in-inode xattr: bad magic number in in-inode xattr [ 399.738662][T11029] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 400.064723][T11020] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1320'. [ 400.080128][T11018] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1330'. [ 400.374370][T11026] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1324'. [ 400.388858][ T29] audit: type=1326 audit(6035842333.923:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11033 comm="syz.3.1326" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ae278d169 code=0x0 [ 400.450827][T11037] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 400.739575][T11022] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1323'. [ 400.805412][T11045] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 401.864943][T11069] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 402.028463][T11071] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:10: corrupted in-inode xattr: bad magic number in in-inode xattr [ 402.048380][T11072] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:2: corrupted in-inode xattr: bad magic number in in-inode xattr [ 402.648284][T11054] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1340'. [ 402.781233][T11077] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1336'. [ 402.945793][T11082] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 403.002836][T11089] FAULT_INJECTION: forcing a failure. [ 403.002836][T11089] name failslab, interval 1, probability 0, space 0, times 0 [ 403.027743][T11089] CPU: 1 UID: 0 PID: 11089 Comm: syz.7.1339 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 403.027782][T11089] Tainted: [U]=USER [ 403.027789][T11089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 403.027801][T11089] Call Trace: [ 403.027808][T11089] [ 403.027817][T11089] dump_stack_lvl+0x16c/0x1f0 [ 403.027853][T11089] should_fail_ex+0x50a/0x650 [ 403.027891][T11089] should_failslab+0xc2/0x120 [ 403.027914][T11089] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 403.027947][T11089] ? skb_clone+0x190/0x3f0 [ 403.027981][T11089] skb_clone+0x190/0x3f0 [ 403.028013][T11089] netlink_deliver_tap+0xabd/0xd30 [ 403.028049][T11089] netlink_unicast+0x5e1/0x7f0 [ 403.028082][T11089] ? __pfx_netlink_unicast+0x10/0x10 [ 403.028111][T11089] ? __phys_addr_symbol+0x30/0x80 [ 403.028134][T11089] ? __check_object_size+0x488/0x710 [ 403.028160][T11089] netlink_sendmsg+0x8b8/0xd70 [ 403.028195][T11089] ? __pfx_netlink_sendmsg+0x10/0x10 [ 403.028236][T11089] ____sys_sendmsg+0xaaf/0xc90 [ 403.028261][T11089] ? copy_msghdr_from_user+0x10b/0x160 [ 403.028291][T11089] ? __pfx_____sys_sendmsg+0x10/0x10 [ 403.028337][T11089] ___sys_sendmsg+0x135/0x1e0 [ 403.028370][T11089] ? __pfx____sys_sendmsg+0x10/0x10 [ 403.028413][T11089] ? __pfx_lock_release+0x10/0x10 [ 403.028441][T11089] ? trace_lock_acquire+0x14e/0x1f0 [ 403.028478][T11089] ? __fget_files+0x206/0x3a0 [ 403.028516][T11089] __sys_sendmsg+0x16e/0x220 [ 403.028546][T11089] ? __pfx___sys_sendmsg+0x10/0x10 [ 403.028598][T11089] do_syscall_64+0xcd/0x250 [ 403.028628][T11089] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.028657][T11089] RIP: 0033:0x7eff0858d169 [ 403.028675][T11089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 403.028697][T11089] RSP: 002b:00007eff094bd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 403.028719][T11089] RAX: ffffffffffffffda RBX: 00007eff087a5fa0 RCX: 00007eff0858d169 [ 403.028734][T11089] RDX: 0000000000009800 RSI: 00004000000007c0 RDI: 0000000000000003 [ 403.028748][T11089] RBP: 00007eff094bd090 R08: 0000000000000000 R09: 0000000000000000 [ 403.028761][T11089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 403.028775][T11089] R13: 0000000000000000 R14: 00007eff087a5fa0 R15: 00007fff5706faa8 [ 403.028804][T11089] [ 403.437453][T11080] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1337'. [ 403.919772][T11087] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1347'. [ 403.980577][T11094] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 404.305234][T11086] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1338'. [ 405.049298][T11114] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 405.320854][T11113] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1353'. [ 406.162386][T11136] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Structure needs cleaning [ 406.374705][T11138] FAULT_INJECTION: forcing a failure. [ 406.374705][T11138] name failslab, interval 1, probability 0, space 0, times 0 [ 406.399889][T11138] CPU: 0 UID: 0 PID: 11138 Comm: syz.6.1352 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 406.399929][T11138] Tainted: [U]=USER [ 406.399937][T11138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 406.399952][T11138] Call Trace: [ 406.399958][T11138] [ 406.399966][T11138] dump_stack_lvl+0x16c/0x1f0 [ 406.400009][T11138] should_fail_ex+0x50a/0x650 [ 406.400041][T11138] ? fs_reclaim_acquire+0xae/0x150 [ 406.400070][T11138] ? tomoyo_realpath_from_path+0xb9/0x720 [ 406.400098][T11138] should_failslab+0xc2/0x120 [ 406.400120][T11138] __kmalloc_noprof+0xcb/0x510 [ 406.400151][T11138] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 406.400187][T11138] tomoyo_realpath_from_path+0xb9/0x720 [ 406.400214][T11138] ? tomoyo_path_number_perm+0x235/0x590 [ 406.400241][T11138] ? tomoyo_path_number_perm+0x235/0x590 [ 406.400270][T11138] tomoyo_path_number_perm+0x248/0x590 [ 406.400295][T11138] ? tomoyo_path_number_perm+0x235/0x590 [ 406.400325][T11138] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 406.400382][T11138] ? __pfx_lock_release+0x10/0x10 [ 406.400410][T11138] ? trace_lock_acquire+0x14e/0x1f0 [ 406.400440][T11138] ? lock_acquire+0x2f/0xb0 [ 406.400466][T11138] ? __fget_files+0x40/0x3a0 [ 406.400501][T11138] ? __fget_files+0x206/0x3a0 [ 406.400536][T11138] security_file_ioctl+0x9b/0x240 [ 406.400564][T11138] __x64_sys_ioctl+0xb7/0x200 [ 406.400592][T11138] do_syscall_64+0xcd/0x250 [ 406.400624][T11138] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.400653][T11138] RIP: 0033:0x7f9602b8d169 [ 406.400672][T11138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 406.400693][T11138] RSP: 002b:00007f960398f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 406.400715][T11138] RAX: ffffffffffffffda RBX: 00007f9602da5fa0 RCX: 00007f9602b8d169 [ 406.400731][T11138] RDX: 0000400000000080 RSI: 00000000c008aec1 RDI: 0000000000000004 [ 406.400745][T11138] RBP: 00007f960398f090 R08: 0000000000000000 R09: 0000000000000000 [ 406.400757][T11138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 406.400770][T11138] R13: 0000000000000000 R14: 00007f9602da5fa0 R15: 00007fff6d775398 [ 406.400801][T11138] [ 406.644480][T11138] ERROR: Out of memory at tomoyo_realpath_from_path. [ 406.780109][T11132] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1349'. [ 407.236102][T11151] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 407.806718][T11150] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1354'. [ 408.313641][T11172] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 408.991133][T11169] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1362'. [ 409.381797][T11200] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 409.732756][T11209] FAULT_INJECTION: forcing a failure. [ 409.732756][T11209] name failslab, interval 1, probability 0, space 0, times 0 [ 409.790184][T11209] CPU: 1 UID: 0 PID: 11209 Comm: syz.6.1375 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 409.790224][T11209] Tainted: [U]=USER [ 409.790231][T11209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 409.790245][T11209] Call Trace: [ 409.790252][T11209] [ 409.790261][T11209] dump_stack_lvl+0x16c/0x1f0 [ 409.790296][T11209] should_fail_ex+0x50a/0x650 [ 409.790329][T11209] ? fs_reclaim_acquire+0xae/0x150 [ 409.790358][T11209] should_failslab+0xc2/0x120 [ 409.790381][T11209] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 409.790414][T11209] ? getname_flags.part.0+0x4c/0x550 [ 409.790440][T11209] ? vfs_write+0x306/0x1150 [ 409.790472][T11209] getname_flags.part.0+0x4c/0x550 [ 409.790502][T11209] getname+0x8d/0xe0 [ 409.790530][T11209] do_sys_openat2+0x104/0x1e0 [ 409.790554][T11209] ? __pfx_do_sys_openat2+0x10/0x10 [ 409.790582][T11209] ? __fget_files+0x206/0x3a0 [ 409.790626][T11209] __x64_sys_openat+0x175/0x210 [ 409.790650][T11209] ? __pfx___x64_sys_openat+0x10/0x10 [ 409.790674][T11209] ? ksys_write+0x1ba/0x250 [ 409.790715][T11209] do_syscall_64+0xcd/0x250 [ 409.790746][T11209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 409.790777][T11209] RIP: 0033:0x7f9602b8d169 [ 409.790795][T11209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 409.790816][T11209] RSP: 002b:00007f960398f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 409.790839][T11209] RAX: ffffffffffffffda RBX: 00007f9602da5fa0 RCX: 00007f9602b8d169 [ 409.790854][T11209] RDX: 0000000000080102 RSI: 0000400000000000 RDI: ffffffffffffff9c [ 409.790869][T11209] RBP: 00007f960398f090 R08: 0000000000000000 R09: 0000000000000000 [ 409.790883][T11209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 409.790897][T11209] R13: 0000000000000000 R14: 00007f9602da5fa0 R15: 00007fff6d775398 [ 409.790926][T11209] [ 410.168718][ T29] audit: type=1326 audit(6035940650.658:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11206 comm="syz.3.1374" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ae278d169 code=0x0 [ 410.192387][T11220] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:10: corrupted in-inode xattr: bad magic number in in-inode xattr [ 410.221933][T11203] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1381'. [ 410.456356][T11227] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 411.206578][T11223] kexec: Could not allocate control_code_buffer [ 411.376911][T11239] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 411.693016][T11247] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 411.822662][ T5839] Bluetooth: hci5: command 0x0406 tx timeout [ 412.073296][T11229] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1387'. [ 412.297615][T11249] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1383'. [ 412.736528][T11264] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 412.988421][T11262] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1393'. [ 413.765109][T11287] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 414.432805][T11298] perf: Dynamic interrupt throttling disabled, can hang your system! [ 414.601540][T11275] kexec: Could not allocate control_code_buffer [ 414.720478][T11294] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1396'. [ 414.854667][T11302] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 415.065922][T11306] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1402'. [ 415.620055][T11304] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1401'. [ 415.741764][T11323] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:0: corrupted in-inode xattr: bad magic number in in-inode xattr [ 415.791375][T11324] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 415.800663][T11321] can: request_module (can-proto-0) failed. [ 415.901804][T11329] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 416.370966][T11339] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1251: comm kworker/u8:4: corrupted in-inode xattr: bad magic number in in-inode xattr [ 416.965224][T11357] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 417.358398][T11343] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1410'. [ 418.032152][T11380] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 418.357391][T11367] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1417'. [ 419.093249][T11396] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 419.203191][T11398] Invalid ELF header magic: != ELF [ 419.238129][T11398] Invalid ELF header magic: != ELF [ 419.740868][T11383] kexec: Could not allocate control_code_buffer [ 419.922241][T11406] netlink: 330 bytes leftover after parsing attributes in process `syz.7.1430'. [ 420.179463][T11416] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Struct[ 421.000261][T11424] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1434'. [ 421.088653][T11413] kexec: Could not allocate control_code_buffer [ 421.240536][T11430] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 422.277455][T11452] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 422.376980][T11436] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1438'. [ 422.778685][T11448] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1451'. [ 423.586927][T11464] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Structure needs cleaning [ 423.992854][T11466] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1448'. [ 424.656203][T11482] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 425.709486][T11503] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 425.852186][T11487] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1455'. [ 426.301801][T11500] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1457'. [ 426.418248][T11502] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1460'. [ 426.769219][T11518] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 427.731235][T11513] netlink: 334 bytes leftover after parsing attributes in process `syz.7.1472'. [ 427.843263][T11537] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 428.914378][T11558] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 429.259684][T11551] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1471'. [ 429.376985][T11549] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1475'. [ 429.959000][T11575] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbi[ 430.339166][T11567] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1480'. [ 430.778312][T11578] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1482'. [ 430.870218][ T30] INFO: task syz.0.904:9308 blocked for more than 143 seconds. [ 430.888214][ T30] Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 430.950212][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 431.005359][ T30] task:syz.0.904 state:D stack:27936 pid:9308 tgid:9307 ppid:5832 task_flags:0x400140 flags:0x00000006 [ 431.038297][T11598] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #1217: comm init: corrupted in-inode xattr: bad magic number in in-inode xattr can't run '/sbin/getty': Struct[ 431.064829][ T30] Call Trace: [ 431.070566][ T30] [ 431.075897][ T30] __schedule+0xf43/0x5890 [ 431.080470][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 431.085803][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 431.091198][ T30] ? __pfx___schedule+0x10/0x10 [ 431.096162][ T30] ? schedule+0x298/0x350 [ 431.100972][ T30] ? __pfx_lock_release+0x10/0x10 [ 431.106343][ T30] ? __mutex_trylock_common+0x78/0x250 [ 431.112008][ T30] ? lock_acquire+0x2f/0xb0 [ 431.116630][ T30] ? schedule+0x1fd/0x350 [ 431.121124][ T30] schedule+0xe7/0x350 [ 431.125342][ T30] schedule_preempt_disabled+0x13/0x30 [ 431.130970][ T30] __mutex_lock+0x6bd/0xb10 [ 431.135595][ T30] ? nfsd_shutdown_threads+0x5b/0xf0 [ 431.141051][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 431.146204][ T30] ? __pfx_lock_release+0x10/0x10 [ 431.151392][ T30] ? nfsd_shutdown_threads+0x5b/0xf0 [ 431.156796][ T30] nfsd_shutdown_threads+0x5b/0xf0 [ 431.162135][ T30] nfsd_umount+0x48/0xe0 [ 431.167036][ T30] deactivate_locked_super+0xbe/0x1a0 [ 431.172585][ T30] deactivate_super+0xde/0x100 [ 431.177472][ T30] cleanup_mnt+0x222/0x450 [ 431.182197][ T30] task_work_run+0x14e/0x250 [ 431.187341][ T30] ? __pfx_task_work_run+0x10/0x10 [ 431.203681][ T30] ? __pfx___x64_sys_mount+0x10/0x10 [ 431.209250][ T30] syscall_exit_to_user_mode+0x27b/0x2a0 [ 431.228344][ T30] do_syscall_64+0xda/0x250 [ 431.238148][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.255048][ T30] RIP: 0033:0x7fa3b6b8d169 [ 431.282128][ T30] RSP: 002b:00007fa3b49f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 431.352683][ T30] RAX: ffffffffffffffea RBX: 00007fa3b6da5fa0 RCX: 00007fa3b6b8d169 [ 431.412306][ T30] RDX: 0000400000000080 RSI: 0000400000000040 RDI: 0000000000000000 [ 431.435125][ T30] RBP: 00007fa3b6c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 431.456786][ T30] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 431.471127][ T30] R13: 0000000000000000 R14: 00007fa3b6da5fa0 R15: 00007ffc4614fdb8 [ 431.479350][ T30] [ 431.483104][ T30] [ 431.483104][ T30] Showing all locks held in the system: [ 431.491925][ T30] 3 locks held by kworker/u8:1/12: [ 431.497155][ T30] 1 lock held by khungtaskd/30: [ 431.507234][ T30] #0: ffffffff8e1bccc0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390 [ 431.518759][ T30] 4 locks held by kworker/u8:10/3600: [ 431.531713][ T30] #0: ffff88801bef5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 [ 431.548700][ T30] #1: ffffc9000c4d7d18 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 [ 431.559149][ T30] #2: ffffffff8fee3650 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xb30 [ 431.569225][ T30] #3: ffffffff8fef9368 (rtnl_mutex){+.+.}-{4:4}, at: caif_exit_net+0x64/0x3c0 [ 431.586430][ T30] 2 locks held by syz.1.745/8686: [ 431.591897][ T30] #0: ffffffff8ff9a0f0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 431.600390][ T30] #1: ffffffff8e5bfe68 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xe3/0x1b40 [ 431.643890][ T30] 2 locks held by syz.0.904/9308: [ 431.655230][ T30] #0: ffff88806161e0e0 (&type->s_umount_key#50){+.+.}-{4:4}, at: deactivate_super+0xd6/0x100 [ 431.666034][ T30] #1: ffffffff8e5bfe68 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0 [ 431.676410][ T30] 2 locks held by syz.4.1023/9811: [ 431.681817][ T30] #0: ffffffff8ff9a0f0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 431.690242][ T30] #1: ffffffff8e5bfe68 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x694/0xbe0 [ 431.706927][ T30] 2 locks held by syz.2.1031/9848: [ 431.715792][ T30] #0: ffffffff8ff9a0f0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 431.734449][ T30] #1: ffffffff8e5bfe68 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x694/0xbe0 [ 431.755130][ T30] 1 lock held by syz.5.1487/11590: [ 431.760739][ T30] #0: ffffffff8e1c8000 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x700 [ 431.771172][ T30] [ 431.773529][ T30] ============================================= [ 431.773529][ T30] [ 431.790378][ T30] NMI backtrace for cpu 1 [ 431.790396][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 431.790428][ T30] Tainted: [U]=USER [ 431.790435][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 431.790448][ T30] Call Trace: [ 431.790455][ T30] [ 431.790463][ T30] dump_stack_lvl+0x116/0x1f0 [ 431.790499][ T30] nmi_cpu_backtrace+0x27b/0x390 [ 431.790524][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 431.790555][ T30] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 431.790582][ T30] watchdog+0xf62/0x12b0 [ 431.790620][ T30] ? __pfx_watchdog+0x10/0x10 [ 431.790650][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 431.790680][ T30] ? __kthread_parkme+0x148/0x220 [ 431.790703][ T30] ? __pfx_watchdog+0x10/0x10 [ 431.790736][ T30] kthread+0x3af/0x750 [ 431.790763][ T30] ? __pfx_kthread+0x10/0x10 [ 431.790794][ T30] ? __pfx_kthread+0x10/0x10 [ 431.790821][ T30] ret_from_fork+0x45/0x80 [ 431.790849][ T30] ? __pfx_kthread+0x10/0x10 [ 431.790875][ T30] ret_from_fork_asm+0x1a/0x30 [ 431.790913][ T30] [ 431.790921][ T30] Sending NMI from CPU 1 to CPUs 0: [ 431.911360][ C0] NMI backtrace for cpu 0 [ 431.911389][ C0] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:1 Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 431.911423][ C0] Tainted: [U]=USER [ 431.911429][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 431.911442][ C0] Workqueue: bat_events batadv_nc_worker [ 431.911472][ C0] RIP: 0010:debug_lockdep_rcu_enabled+0x2e/0x40 [ 431.911500][ C0] Code: 8b 05 e2 54 0d 05 85 c0 74 20 8b 05 00 87 0d 05 85 c0 74 16 65 48 8b 05 60 b3 ae 74 8b 80 ec 0a 00 00 85 c0 0f 94 c0 0f b6 c0 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 90 90 90 [ 431.911518][ C0] RSP: 0000:ffffc90000117b20 EFLAGS: 00000246 [ 431.911533][ C0] RAX: 0000000000000001 RBX: ffff888061054660 RCX: ffffffff8b23bcee [ 431.911546][ C0] RDX: ffff88801d285a00 RSI: ffffffff8b23b939 RDI: 0000000000000001 [ 431.911559][ C0] RBP: 00000000000000cc R08: 0000000000000001 R09: 0000000000000000 [ 431.911571][ C0] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000001 [ 431.911583][ C0] R13: 0000000000000001 R14: 0000000000000000 R15: dffffc0000000000 [ 431.911595][ C0] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 431.911614][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 431.911627][ C0] CR2: 0000001b308faff8 CR3: 00000000797e0000 CR4: 00000000003526f0 [ 431.911640][ C0] Call Trace: [ 431.911646][ C0] [ 431.911653][ C0] ? nmi_cpu_backtrace+0x1d8/0x390 [ 431.911674][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 431.911700][ C0] ? nmi_handle+0x1ac/0x5d0 [ 431.911726][ C0] ? debug_lockdep_rcu_enabled+0x2e/0x40 [ 431.911750][ C0] ? default_do_nmi+0x6a/0x160 [ 431.911771][ C0] ? exc_nmi+0x170/0x1e0 [ 431.911789][ C0] ? end_repeat_nmi+0xf/0x53 [ 431.911818][ C0] ? batadv_nc_worker+0xc0e/0x1060 [ 431.911842][ C0] ? batadv_nc_worker+0x859/0x1060 [ 431.911868][ C0] ? debug_lockdep_rcu_enabled+0x2e/0x40 [ 431.911892][ C0] ? debug_lockdep_rcu_enabled+0x2e/0x40 [ 431.911916][ C0] ? debug_lockdep_rcu_enabled+0x2e/0x40 [ 431.911940][ C0] [ 431.911946][ C0] [ 431.911952][ C0] batadv_nc_worker+0x85e/0x1060 [ 431.911982][ C0] ? __pfx_batadv_nc_worker+0x10/0x10 [ 431.912007][ C0] ? rcu_is_watching+0x12/0xc0 [ 431.912027][ C0] ? trace_lock_acquire+0x14e/0x1f0 [ 431.912049][ C0] ? process_one_work+0x921/0x1ba0 [ 431.912074][ C0] ? lock_acquire+0x2f/0xb0 [ 431.912098][ C0] ? process_one_work+0x921/0x1ba0 [ 431.912123][ C0] process_one_work+0x9c5/0x1ba0 [ 431.912151][ C0] ? __pfx_batadv_nc_worker+0x10/0x10 [ 431.912177][ C0] ? __pfx_process_one_work+0x10/0x10 [ 431.912205][ C0] ? assign_work+0x1a0/0x250 [ 431.912228][ C0] worker_thread+0x6c8/0xf00 [ 431.912257][ C0] ? __pfx_worker_thread+0x10/0x10 [ 431.912281][ C0] kthread+0x3af/0x750 [ 431.912303][ C0] ? __pfx_kthread+0x10/0x10 [ 431.912324][ C0] ? lock_acquire+0x2f/0xb0 [ 431.912350][ C0] ? __pfx_kthread+0x10/0x10 [ 431.912372][ C0] ret_from_fork+0x45/0x80 [ 431.912395][ C0] ? __pfx_kthread+0x10/0x10 [ 431.912422][ C0] ret_from_fork_asm+0x1a/0x30 [ 431.912449][ C0] [ 431.924356][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 431.924378][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Tainted: G U 6.14.0-rc4-syzkaller-00248-g03d38806a902 #0 [ 432.241991][ T30] Tainted: [U]=USER [ 432.245789][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 432.255928][ T30] Call Trace: [ 432.259201][ T30] [ 432.262140][ T30] dump_stack_lvl+0x3d/0x1f0 [ 432.266747][ T30] panic+0x71d/0x800 [ 432.270643][ T30] ? __pfx_panic+0x10/0x10 [ 432.275329][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 432.280708][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 432.286702][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 432.292083][ T30] ? watchdog+0xdcc/0x12b0 [ 432.296513][ T30] ? watchdog+0xdbf/0x12b0 [ 432.300937][ T30] watchdog+0xddd/0x12b0 [ 432.305361][ T30] ? __pfx_watchdog+0x10/0x10 [ 432.310041][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 432.315241][ T30] ? __kthread_parkme+0x148/0x220 [ 432.320273][ T30] ? __pfx_watchdog+0x10/0x10 [ 432.324979][ T30] kthread+0x3af/0x750 [ 432.329091][ T30] ? __pfx_kthread+0x10/0x10 [ 432.333712][ T30] ? __pfx_kthread+0x10/0x10 [ 432.338320][ T30] ret_from_fork+0x45/0x80 [ 432.342751][ T30] ? __pfx_kthread+0x10/0x10 [ 432.347354][ T30] ret_from_fork_asm+0x1a/0x30 [ 432.352131][ T30] [ 432.355283][ T30] Kernel Offset: disabled [ 432.359598][ T30] Rebooting in 86400 seconds..