last executing test programs:

2m43.402063236s ago: executing program 2 (id=2398):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vivid.0/video4linux/swradio11/dev\x00', 0x20240, 0x0)
socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800)
sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000fd63deb171", @ANYRES16=0x0, @ANYBLOB="000229bd7000fedbdf253d0000001900210064b6698fa876c13434397b82dd574e5da012ca661800000020001b8004000300040003000400030004000200040002000400020004000200"], 0x50}, 0x1, 0x0, 0x0, 0x20004800}, 0x48080)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/numa_zonelist_order\x00', 0x202, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = io_uring_setup$auto(0x6, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/ipc\x00')
r1 = fsopen$auto(&(0x7f0000000080)='\x81\x00', 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'bridge_slave_1\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'ip6tnl0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'vxcan1\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'bridge_slave_1\x00', <r5=>0x0})
r6 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000)
r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0)
pread64$auto(r7, 0x0, 0x40, 0x8004)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r8=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, <r9=>r8, 0xfd}, 0x6a)
sendmsg$auto_NETDEV_CMD_DEV_GET(r1, &(0x7f0000000500)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x4c, 0x0, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@NETDEV_A_DEV_IFINDEX={0x8, 0x1, r2}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r3}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r9}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r4}, @NETDEV_A_DEV_IFINDEX={0x8}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r5}, @NETDEV_A_DEV_IFINDEX={0x8, 0x1, r8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8015}, 0x4000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
socket(0xa, 0x2, 0x88)

2m43.206997013s ago: executing program 2 (id=2400):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)

2m43.158109852s ago: executing program 2 (id=2401):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x1000000000004}, 0x2bc)
r0 = io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1)
io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000040c0)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x100, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000002480)='/dev/midi2\x00', 0x2841, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000040)={0x0, 0x73d, 0x4, 0x1, 0xff, "50b82e6c92b172b4cfaaca8e"})
mmap$auto(0x401, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000)
r2 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x1c, r2, 0x9, 0x70bd2c, 0x25dfdbfb, {}, [@IOAM6_ATTR_NS_ID={0x6, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x808)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x2, 0x70bd2a, 0x25dfdbff}, 0x14}}, 0x14000001)
read$auto(0x3, 0x0, 0x80)

2m42.321734314s ago: executing program 2 (id=2402):
memfd_secret$auto(0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket(0x1a, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x401f, @inferred=r1, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/i8042/serio1/resetafter\x00', 0x129102, 0x0)
write$auto(r4, &(0x7f0000000000)='y\x8c', 0x2)
fadvise64$auto(0xffffffffffffffff, 0x8, 0x400000000000006, 0x4)
socket(0x29, 0xa, 0x6)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x800000000000005)
madvise$auto(0x0, 0x200007, 0x19)
msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
socket(0x200000000000011, 0x2, 0x0)

2m41.261189941s ago: executing program 2 (id=2406):
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sequencer2\x00', 0x2, 0x0)
epoll_create$auto(0x3e)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
open(0x0, 0x6041, 0x0)
r1 = gettid()
process_vm_readv$auto(r1, &(0x7f0000000080)={&(0x7f0000000040)="0e5165", 0x1}, 0x2, &(0x7f00000001c0)={0x0, 0x7}, 0x2, 0x0)
ioctl$auto_BLKTRACESETUP32(r0, 0xc0401273, &(0x7f0000000240)={"f63073df8058c302b0d3672f446ffae0e2e72cce81bb817c6c1737b5f32b9d13", 0xaf, 0x2, 0xda, 0xffffffffffffffff, 0x7})
openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000080), 0x2e6100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x900, 0x0)
ioctl$auto_CEC_ADAP_G_LOG_ADDRS(r3, 0x805c6103, &(0x7f00000001c0)={"8911bd3a", 0x1, 0x0, 0x6, 0x4, 0x6, "feaf587cdf4d2f534a1c88d3e40a00", "e6cf6512", "f34cae3a", "10a991b3", ["3ae887a128f1d8c79420d880", "b11feafce4d296d8c985d069", "0149f0a7102c3fffab592db0", "0059c09dca7de9bdbbc6be07"]})
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
syz_clone3(0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)

2m40.213108349s ago: executing program 2 (id=2409):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
keyctl$auto_KEY_REQKEY_DEFL_PROCESS_KEYRING(0x1, 0x2, 0x0, 0x0, 0x3)
socket(0x11, 0x80003, 0x304)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/authorized\x00', 0x10b142, 0x0)
socketpair$auto(0x2, 0x7, 0xc, 0x0)
close_range$auto(0x2, 0xa, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xea582, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/suspend_stats/last_failed_step\x00', 0x12000, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
vmsplice$auto(0x2, &(0x7f00000000c0)={0x0, 0x7ff}, 0x8000000000000001, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
r2 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x42, 0x20)
r3 = open_tree$auto(r2, 0x0, 0x1001)
statx$auto(r3, 0x0, 0x4001000, 0x8, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto_XFS_IOC_FREESP(r1, 0x4030580b, &(0x7f0000000100)={0x800, 0x5, 0x9, 0x2a1, 0x9, <r4=>0xffffffffffffffff})
prctl$auto_PR_SCHED_CORE_SHARE_TO(0x200, 0x2, r4, 0x1, 0x5)
socket$nl_generic(0x10, 0x3, 0x10)
mkdir$auto(&(0x7f0000000040)='}[,&*}\x00', 0x6)
statfs$auto(&(0x7f0000000180)='}[,&*}\x00', 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r5)
socket$nl_generic(0x10, 0x3, 0x10)

2m39.863697426s ago: executing program 1 (id=2368):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x2c201, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
pipe$auto(0x0)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80004001, 0x9)
write$auto(0x6, 0x0, 0x100000001)

2m38.888376222s ago: executing program 1 (id=2413):
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sequencer2\x00', 0x2, 0x0)
epoll_create$auto(0x3e)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
open(0x0, 0x6041, 0x0)
gettid()
clone3$auto(&(0x7f0000000100)={0x6, 0x7, 0x0, 0x5, 0xd, 0x80000000, 0x3ff, 0x8, 0x2, 0x2, 0x1}, 0x3)
ioctl$auto_BLKTRACESETUP32(r0, 0xc0401273, &(0x7f0000000240)={"f63073df8058c302b0d3672f446ffae0e2e72cce81bb817c6c1737b5f32b9d13", 0xaf, 0x2, 0xda, 0xffffffffffffffff, 0x7})
openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000080), 0x2e6100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x900, 0x0)
ioctl$auto_CEC_ADAP_G_LOG_ADDRS(r2, 0x805c6103, &(0x7f00000001c0)={"8911bd3a", 0x1, 0x0, 0x6, 0x4, 0x6, "feaf587cdf4d2f534a1c88d3e40a00", "e6cf6512", "f34cae3a", "10a991b3", ["3ae887a128f1d8c79420d880", "b11feafce4d296d8c985d069", "0149f0a7102c3fffab592db0", "0059c09dca7de9bdbbc6be07"]})
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
syz_clone3(0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)

2m37.777976736s ago: executing program 1 (id=2414):
memfd_secret$auto(0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket(0x1a, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x401f, @inferred=r1, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/i8042/serio1/resetafter\x00', 0x129102, 0x0)
write$auto(r4, &(0x7f0000000000)='y\x8c', 0x2)
fadvise64$auto(0xffffffffffffffff, 0x8, 0x400000000000006, 0x4)
socket(0x29, 0xa, 0x6)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x800000000000005)
madvise$auto(0x0, 0x200007, 0x19)
msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
socket(0x200000000000011, 0x2, 0x0)

2m36.5328313s ago: executing program 1 (id=2417):
madvise$auto(0x0, 0x2000040080000004, 0xe)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
madvise$auto_MADV_DODUMP(0x8, 0x5, 0x11)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0)
pread64$auto(r2, 0x0, 0x40000000f42c, 0x80002)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
dup2$auto(0x0, 0x3)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, 0x0, 0x5)
mmap$auto(0x0, 0xeb1f, 0x9, 0x14, 0x401, 0x8000)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
io_uring_setup$auto(0x23, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
timer_create$auto(0x9, 0x0, 0x0)
timer_settime$auto(0x0, 0x4b, &(0x7f0000000040)={{0x3, 0x1}, {0xc, 0x4c}}, 0x0)
ioctl$auto_IOC_PR_PREEMPT_ABORT(0xffffffffffffffff, 0x401870cc, &(0x7f0000000000)={0x1, 0x10000003, 0x1000025})
ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/midiC2D2\x00', 0x84000, 0x0)
r4 = io_uring_setup$auto(0x5, &(0x7f0000000200)={0x7, 0x401, 0xd, 0x2e0, 0x7, 0x1000, r1, [0x9, 0x0, 0x2], {0x374a, 0x7, 0x4, 0x1ff, 0x0, 0x4ce5, 0x10, 0x0, 0x2}, {0xca2f, 0x8, 0x3, 0xf7af, 0xbc, 0x1, 0x5, 0x5, 0x3}})
ioctl$auto_SNDRV_RAWMIDI_IOCTL_USER_PVERSION(r4, 0x40045702, &(0x7f00000001c0)=0x8916)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, &(0x7f00000000c0)={0x1, 0xaa, 0xb, 0x1, 0x5, "e7227115127a1e8f00"})

2m35.375572034s ago: executing program 1 (id=2419):
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptya1\x00', 0x42880, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0)
read$auto(r0, 0x0, 0x1ff)
write$auto(0x3, 0x0, 0x7)
fcntl$auto(0x3, 0x400, 0x9ec0000000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x26, 0x6, 0x84)
mmap$auto(0x0, 0x1000009, 0x10001, 0xeb1, 0xfffffffffffffffa, 0x8)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000001)
io_uring_setup$auto(0xc, 0x0)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
shmctl$auto_SHM_STAT_ANY(0x7ff, 0xf, 0x0)
unshare$auto(0x40000080)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop3\x00', 0x40, 0x0)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0xfffffffffffffffb, 0x8)
write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, 0x0, 0x0)
rseq$auto(&(0x7f0000000040)={0x10001, 0x4401, 0x80000001, 0x2, 0x6, 0x6}, 0x8000, 0x0, 0x6)
pkey_free$auto(0xfffffffd)
epoll_create1$auto(0x8)
mprotect$auto(0x0, 0x806121, 0x6)
mmap$auto(0x0, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000)
connect$auto(0xffffffffffffffff, 0x0, 0x55)

2m32.584682355s ago: executing program 1 (id=2424):
mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
lseek$auto(0xffffffffffffffff, 0x7fffffffffffffff, 0x2)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0xffffffffffffffff)
ioctl$auto(0x3, 0xae64, 0x38)
readv$auto(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x7}, 0x8)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r1, 0x0, 0x20)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0)
mmap$auto(0xff0f0000, 0x1, 0x1000000000002, 0x8000000008011, 0x3, 0x0)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48)
faccessat$auto(r2, 0x0, 0x2)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
socket(0x10, 0x2, 0x0)
r4 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r4, 0x0, 0x1ff)

2m17.449003805s ago: executing program 32 (id=2424):
mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
lseek$auto(0xffffffffffffffff, 0x7fffffffffffffff, 0x2)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0xffffffffffffffff)
ioctl$auto(0x3, 0xae64, 0x38)
readv$auto(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x7}, 0x8)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r1, 0x0, 0x20)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0)
mmap$auto(0xff0f0000, 0x1, 0x1000000000002, 0x8000000008011, 0x3, 0x0)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48)
faccessat$auto(r2, 0x0, 0x2)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
socket(0x10, 0x2, 0x0)
r4 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r4, 0x0, 0x1ff)

10.798728068s ago: executing program 3 (id=2905):
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff)
r1 = socket(0x2, 0x80002, 0x73)
close_range$auto(0x2, r1, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0)
read$auto(0xca, 0x0, 0x6)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
write$auto(r2, &(0x7f0000000040)='[.,*\x00', 0x8000)
r4 = setfsuid$auto(0xee00)
r5 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000680), 0x40, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(r5, 0x40087543, &(0x7f00000006c0)={0x1, 0x7, [{r1, 0x0, 0x3, 0x7}, {r0, 0x0, 0x3663, 0xe679}]})
setreuid$auto(r4, 0x0)
waitid$auto_P_PGID(0x2, 0x0, &(0x7f0000000080)={@siginfo_0_0={0x3ac, 0x3, 0x3444d36e, @_sigpoll={0x2, r3}}}, 0x7ff, &(0x7f0000000100)={{0x5, 0x4}, {0x3, 0x7fffffff}, 0x8, 0x5, 0x6, 0x8, 0x0, 0x3, 0xfffffffffffffffd, 0x10, 0x5, 0x6, 0xffffffffffffffff, 0x2, 0x8, 0x6})
ioctl$auto(r3, 0xc0045520, r2)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
msgctl$auto(0x0, 0x3, 0x0)
r8 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r8, 0x107, 0x12, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(r6, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000002c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="78010000", @ANYRES16=r7, @ANYBLOB="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"], 0x178}, 0x1, 0x0, 0x0, 0x40}, 0x4)
sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000000600)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000480)={0x108, r7, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_COORDINATOR={0xd6, 0x1e, 0x0, 0x1, [@nested={0x8, 0x5, 0x0, 0x1, [@nested={0x4, 0x88}]}, @typed={0x9, 0xfb, 0x0, 0x0, @binary="90bec66cd3"}, @generic="809ba0fb84dea1f5e2e840717ff72d50ace685baeb0268d64bf7e0f87971e8acfaf403ae1fd3963c3ebf1f97a661238358d4f1b3c3bb62f4a53fc5a604d47a56b90ebcbdd870d402b32771f49bad6e4628dc5109955128bfbb8a", @nested={0x4, 0x43}, @nested={0x5e, 0x115, 0x0, 0x1, [@generic="752ab2e69b6408f8589fe4c840ccd4f4121f29b22d7cda7e3ea310a2ad6d8b0819138b42c6736e37bd3ae6d58717491eac56e4870800000000000000b7aceab48509aa2c8e72c877e7e8f48e24db95f3f469fe743255646402b4"]}]}, @NL802154_ATTR_SCAN_TYPE={0x5}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x6}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0x7f}]}, 0x108}, 0x1, 0x0, 0x0, 0x1}, 0x40000)
open(&(0x7f0000000640)='./file0\x00', 0x8002, 0xc1)

10.720103411s ago: executing program 3 (id=2906):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027617c36720add70ab0343990f7d0bbc96dc0b"], 0x1ac}, 0x1, 0x0, 0xf0ffffffffffff, 0x40}, 0x40000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r3=>0x0})
sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)={0x40, r2, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r3}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x6}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\x00\x00\x00\x00\x00\x00\x00\x00\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)
read$auto(r0, &(0x7f0000000040)='\x00', 0x10001)

9.83366339s ago: executing program 3 (id=2908):
r0 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, r1, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_BLA_BACKBONE={0xa, 0x21, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @BATADV_ATTR_BLA_CRC={0x6, 0x22, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'caif0\x00'})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'wg1\x00'})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'netdevsim0\x00', <r3=>0x0})
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000000)={0x1c, r0, 0x101, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x60040440}, 0x800)
mmap$auto(0x0, 0x20009, 0x2de, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5)
io_uring_setup$auto(0x85, 0x0)
ioctl$auto(r4, 0x4008af03, r4)

9.724844065s ago: executing program 3 (id=2909):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x4000000008000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
msgsnd$auto(0x5, 0x0, 0x3, 0x8)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x2, 0x2, 0x1)
socket(0x2, 0x801, 0x106)
socket(0x26, 0x80805, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x145)
fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
readv$auto(0x0, &(0x7f0000000080)={0x0, 0x1e}, 0x3)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
write$auto(r1, 0x0, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x1000, 0xf)
mlock$auto(0x3, 0x1)
msgrcv$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x8, 0x9, 0xfffffbff)
mlockall$auto(0x47)
mremap$auto(0x1000, 0x4, 0x4, 0x7, 0x100000000)
madvise$auto(0x0, 0x200007, 0x19)
read$auto(r0, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x400000003)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb5, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0x10)

9.34682733s ago: executing program 3 (id=2910):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x400008000)
socket(0x21, 0x5, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/batadv_slave_0/proxy_ndp\x00', 0x382, 0x0)
mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
inotify_init1$auto(0x5)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40942, 0x0)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x189002, 0x0)
openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x280, 0x0)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8042, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x20000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1$auto(0x3000000000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x880, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8b40, 0x0)
openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x800, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
socketpair$auto(0x1e, 0x9, 0x7, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

8.49215676s ago: executing program 3 (id=2913):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000800), r0)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000840)=ANY=[@ANYBLOB="7fdb9154", @ANYRES16=r1, @ANYBLOB="010029bd7000ffdbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x4040}, 0x4800) (async)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32)
write$auto(r2, &(0x7f0000000480)='/EXv/a^\xfdudio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\x04\x00\x00\x00\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\t\x00\x01\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\f\xa8\xf1_\xa5[U\xb6\n\xacQ\x9f\xe5\xa6\xc9\x9e\x00T1\x11\x9cC\x93i', 0xd) (rerun: 32)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r5)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x1ff, 0x7, 0x5, 0x717f, 0x1ffde, 0x7, 0x3, 0x10000000000009, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x0, 0x10006, 0x4004080, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x40, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x8]}, 0x1fc, 0xd) (async, rerun: 64)
r7 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) (rerun: 64)
ioctl$auto__ctl_fops_dm_ioctl(r7, 0xfffffffffffffd0a, &(0x7f00000001c0)) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r5, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r6], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) (async)
recvmmsg$auto(r5, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x5, 0x6}, 0x803}, 0x10a, 0x6, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async, rerun: 32)
r8 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x201, 0x0)
ioctl$auto_PAGEMAP_SCAN(r8, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r9 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x101000, 0x0)
listen$auto(r9, 0x5) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/misc/userfaultfd/power/control\x00', 0x668000, 0x0) (async)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x0) (async)
shutdown$auto(0xffffffffffffffff, 0x2) (async, rerun: 64)
read$auto_rng_chrdev_ops_core(r4, 0x0, 0x0) (rerun: 64)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x3ff, 0x0) (async)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec22\x00', 0x28000, 0x0)
fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(r3, 0xfffffffc, &(0x7f00000001c0)='/sys/devices/virtual/misc/userfaultfd/power/control\x00', 0x0, 0x4)

3.758810535s ago: executing program 0 (id=2922):
memfd_secret$auto(0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket(0x1a, 0x1, 0x0)
epoll_create$auto(0x9)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x401f, @inferred=r1, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/i8042/serio1/resetafter\x00', 0x129102, 0x0)
write$auto(r4, 0x0, 0x2)
fadvise64$auto(0xffffffffffffffff, 0x8, 0x400000000000006, 0x4)
socket(0x29, 0xa, 0x6)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x800000000000005)
madvise$auto(0x0, 0x200007, 0x19)
msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
socket(0x200000000000011, 0x2, 0x0)

2.824897478s ago: executing program 0 (id=2923):
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x800, 0x0)
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001140), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001540), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_KEY_SET(r1, &(0x7f0000001fc0)={0x0, 0x0, &(0x7f0000001f80)={&(0x7f0000000000)={0x18, r2, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x80}, 0xe040)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dmmidi2\x00', 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xb, 0x0)
r5 = socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r5, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x200009}, 0x1}, 0x2, 0x0)
close_range$auto(0x0, 0xffffeffe, 0x2)
openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, 0x0, 0x181441, 0x0)
socket(0x11, 0x80003, 0x300)
pipe$auto(0x0)
unshare$auto(0x40000080)
r6 = prctl$auto_PR_SET_MM_ARG_START(0x8001, 0x8, 0xffffffffffffffff, 0xa7, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x40, r0, 0x1, 0x70bd26, 0x25dfdbfb, {0x2, 0x0, 0x14}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_MBSSID_CONFIG={0x24, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0x2}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8, 0x4, r4}, @NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x1}, @NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0xb}]}]}, 0x40}, 0x1, 0x1400, 0x0, 0x20040810}, 0x20000084)

2.696900342s ago: executing program 0 (id=2924):
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sequencer2\x00', 0x2, 0x0)
epoll_create$auto(0x3e)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
open(0x0, 0x6041, 0x0)
r1 = gettid()
process_vm_readv$auto(r1, 0x0, 0x2, &(0x7f00000001c0)={0x0, 0x7}, 0x2, 0x0)
clone3$auto(&(0x7f0000000100)={0x6, 0x7, 0x0, 0x5, 0xd, 0x80000000, 0x3ff, 0x8, 0x2, 0x2, 0x1}, 0x3)
ioctl$auto_BLKTRACESETUP32(r0, 0xc0401273, &(0x7f0000000240)={"f63073df8058c302b0d3672f446ffae0e2e72cce81bb817c6c1737b5f32b9d13", 0xaf, 0x2, 0xda, 0xffffffffffffffff, 0x7})
openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000080), 0x2e6100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x900, 0x0)
ioctl$auto_CEC_ADAP_G_LOG_ADDRS(r3, 0x805c6103, &(0x7f00000001c0)={"8911bd3a", 0x1, 0x0, 0x6, 0x4, 0x6, "feaf587cdf4d2f534a1c88d3e40a00", "e6cf6512", "f34cae3a", "10a991b3", ["3ae887a128f1d8c79420d880", "b11feafce4d296d8c985d069", "0149f0a7102c3fffab592db0", "0059c09dca7de9bdbbc6be07"]})
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
syz_clone3(0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)

1.796196178s ago: executing program 0 (id=2925):
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sequencer2\x00', 0x2, 0x0)
epoll_create$auto(0x3e)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
open(0x0, 0x6041, 0x0)
r1 = gettid()
process_vm_readv$auto(r1, &(0x7f0000000080)={&(0x7f0000000040)="0e5165", 0x1}, 0x2, &(0x7f00000001c0)={0x0, 0x7}, 0x2, 0x0)
ioctl$auto_BLKTRACESETUP32(r0, 0xc0401273, &(0x7f0000000240)={"f63073df8058c302b0d3672f446ffae0e2e72cce81bb817c6c1737b5f32b9d13", 0xaf, 0x2, 0xda, 0xffffffffffffffff, 0x7})
openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000080), 0x2e6100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x900, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
syz_clone3(0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)

900.830483ms ago: executing program 0 (id=2926):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TASKSTATS_CMD_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010a2bbd7000fbdbdf25010000000e0004004e2d", @ANYRESOCT=r0], 0x24}, 0x1, 0x0, 0x0, 0xc001}, 0x8094)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r1, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)={0x38, r2, 0x23, 0x70bd27, 0x25dfdbfe, {}, [@MACSEC_ATTR_SA_CONFIG={0x18, 0x3, 0x0, 0x1, [@nested={0x5, 0x1, 0x0, 0x1, [@generic="03"]}, @typed={0xc, 0x2, 0x0, 0x0, @u64=0x4}]}, @MACSEC_ATTR_RXSC_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008008}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'macvlan1\x00', <r3=>0x0})
sendmsg$auto_MACSEC_CMD_UPD_OFFLOAD(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, r2, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@MACSEC_ATTR_IFINDEX={0x8, 0x1, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40880}, 0x800)
socket(0x2, 0x5, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
write$auto(r4, &(0x7f0000000200)='\xfdde\xef\xe7audio1\x00', 0xa3d9)
prctl$auto(0x4, 0x828, 0x0, 0x9, 0x7056)
close_range$auto(0xffffffffffffffff, 0x5, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0x1, 0x8, 0x1, 0x4005, 0x1, 0x3ffde, 0x400, 0x3, 0x9, 0x6, 0x9d96, 0x4, 0x11ffffffffffc, 0xb2, 0x2, 0x8, 0x10, 0x80, 0x8, 0x8000, 0x2, 0x100001, 0x202, 0x9, 0xbca7, 0x4, 0x1, 0x0, 0x0, 0x0, [0x0, 0x6, 0x0, 0xb, 0x0, 0x7, 0x20000000000, 0x0, 0x0, 0xbffffffffffffffc, 0x2, 0x0, 0x0, 0x3ffffffffffe, 0x7fffffff, 0xffffffffffffffff, 0x0, 0x9, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0xeff, 0x7fffffff, 0x0, 0x0, 0x20000000000000, 0x0, 0x1000000000000200, 0x0, 0x10000, 0x96, 0x9, 0x3, 0x9, 0x0, 0x6]}, 0x1fe, 0x1)
r5 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r5, 0xfffffffffffffd03, &(0x7f00000001c0))
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r6 = io_uring_setup$auto(0x6, 0x0)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/module/ib_iser/parameters/max_sectors\x00', 0x20a42, 0x0)
sendfile$auto(r7, r7, 0x0, 0x4f64a1d2)
r8 = clone$auto(0x21, 0x80000007, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
io_uring_setup$auto(0x6, 0x0)
wait4$auto(r8, 0x0, 0x80000000, 0x0)
close_range$auto(r6, 0xffffffffffffffff, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
settimeofday$auto(&(0x7f0000000100)={0x1000, 0x566}, &(0x7f0000000440)={0x2, 0x100})
r9 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/queues\x00', 0x20000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r9, &(0x7f0000000e80)=""/215, 0xd7)
setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0xa, 0x0, 0x806)

0s ago: executing program 0 (id=2927):
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sequencer2\x00', 0x2, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
open(0x0, 0x6041, 0x0)
r1 = gettid()
process_vm_readv$auto(r1, &(0x7f0000000080)={&(0x7f0000000040)="0e5165", 0x1}, 0x2, &(0x7f00000001c0)={0x0, 0x7}, 0x2, 0x0)
ioctl$auto_BLKTRACESETUP32(r0, 0xc0401273, &(0x7f0000000240)={"f63073df8058c302b0d3672f446ffae0e2e72cce81bb817c6c1737b5f32b9d13", 0xaf, 0x2, 0xda, 0xffffffffffffffff, 0x7})
openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000080), 0x2e6100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x900, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
syz_clone3(0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)

kernel console output (not intermixed with test programs):

528896][T16661]  <TASK>
[  724.528906][T16661]  dump_stack_lvl+0x16c/0x1f0
[  724.528945][T16661]  should_fail_ex+0x512/0x640
[  724.528984][T16661]  _copy_to_user+0x32/0xd0
[  724.529013][T16661]  simple_read_from_buffer+0xcb/0x170
[  724.529042][T16661]  proc_fail_nth_read+0x197/0x240
[  724.529077][T16661]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  724.529107][T16661]  ? rw_verify_area+0xcf/0x6c0
[  724.529133][T16661]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  724.529161][T16661]  vfs_read+0x1e1/0xcf0
[  724.529193][T16661]  ? __pfx___mutex_lock+0x10/0x10
[  724.529230][T16661]  ? __pfx_vfs_read+0x10/0x10
[  724.529267][T16661]  ? __fget_files+0x20e/0x3c0
[  724.529292][T16661]  ? ktime_get_ts64+0x210/0x400
[  724.529334][T16661]  ksys_read+0x12a/0x250
[  724.529361][T16661]  ? __pfx_ksys_read+0x10/0x10
[  724.529401][T16661]  do_syscall_64+0xcd/0x4c0
[  724.529439][T16661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.529465][T16661] RIP: 0033:0x7f35cef8d63c
[  724.529486][T16661] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  724.529510][T16661] RSP: 002b:00007f35cfef6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  724.529534][T16661] RAX: ffffffffffffffda RBX: 00007f35cf1d5fa0 RCX: 00007f35cef8d63c
[  724.529551][T16661] RDX: 000000000000000f RSI: 00007f35cfef60a0 RDI: 0000000000000004
[  724.529567][T16661] RBP: 00007f35cfef6090 R08: 0000000000000000 R09: 0000000000000000
[  724.529582][T16661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  724.529597][T16661] R13: 00007f35cf1d6038 R14: 00007f35cf1d5fa0 R15: 00007fff3be29888
[  724.529633][T16661]  </TASK>
[  724.548215][T16663] FAULT_INJECTION: forcing a failure.
[  724.548215][T16663] name failslab, interval 1, probability 0, space 0, times 0
[  724.745149][T16663] CPU: 1 UID: 0 PID: 16663 Comm: syz.0.2484 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  724.745188][T16663] Tainted: [U]=USER
[  724.745197][T16663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  724.745216][T16663] Call Trace:
[  724.745224][T16663]  <TASK>
[  724.745234][T16663]  dump_stack_lvl+0x16c/0x1f0
[  724.745274][T16663]  should_fail_ex+0x512/0x640
[  724.745310][T16663]  ? __kmalloc_noprof+0xbf/0x510
[  724.745341][T16663]  ? sk_prot_alloc+0x1a8/0x2a0
[  724.745366][T16663]  should_failslab+0xc2/0x120
[  724.745397][T16663]  __kmalloc_noprof+0xd2/0x510
[  724.745433][T16663]  sk_prot_alloc+0x1a8/0x2a0
[  724.745462][T16663]  sk_alloc+0x36/0xc20
[  724.745497][T16663]  xsk_create+0x11b/0x770
[  724.745529][T16663]  __sock_create+0x338/0x8d0
[  724.745564][T16663]  __sys_socket+0x14d/0x260
[  724.745594][T16663]  ? __pfx___sys_socket+0x10/0x10
[  724.745622][T16663]  ? xfd_validate_state+0x61/0x180
[  724.745666][T16663]  __x64_sys_socket+0x72/0xb0
[  724.745692][T16663]  ? lockdep_hardirqs_on+0x7c/0x110
[  724.745723][T16663]  do_syscall_64+0xcd/0x4c0
[  724.745756][T16663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.745791][T16663] RIP: 0033:0x7fca2178ec29
[  724.745818][T16663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  724.745844][T16663] RSP: 002b:00007fca22674038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  724.745865][T16663] RAX: ffffffffffffffda RBX: 00007fca219d5fa0 RCX: 00007fca2178ec29
[  724.745883][T16663] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 000000000000002c
[  724.745897][T16663] RBP: 00007fca21811e41 R08: 0000000000000000 R09: 0000000000000000
[  724.745910][T16663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  724.745923][T16663] R13: 00007fca219d6038 R14: 00007fca219d5fa0 R15: 00007fff52ab8668
[  724.745951][T16663]  </TASK>
[  725.039236][T16671] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  725.060744][T16672] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  725.247850][T16677] random: crng reseeded on system resumption
[  725.324401][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  725.330782][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  725.476479][T16685] FAULT_INJECTION: forcing a failure.
[  725.476479][T16685] name failslab, interval 1, probability 0, space 0, times 0
[  725.489233][T16685] CPU: 1 UID: 0 PID: 16685 Comm: syz.0.2491 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  725.489272][T16685] Tainted: [U]=USER
[  725.489281][T16685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  725.489294][T16685] Call Trace:
[  725.489303][T16685]  <TASK>
[  725.489314][T16685]  dump_stack_lvl+0x16c/0x1f0
[  725.489354][T16685]  should_fail_ex+0x512/0x640
[  725.489387][T16685]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  725.489414][T16685]  should_failslab+0xc2/0x120
[  725.489444][T16685]  __kmalloc_cache_noprof+0x6a/0x3e0
[  725.489465][T16685]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  725.489495][T16685]  ? device_create_groups_vargs+0x8a/0x270
[  725.489526][T16685]  device_create_groups_vargs+0x8a/0x270
[  725.489554][T16685]  device_create+0xed/0x130
[  725.489579][T16685]  ? __pfx_device_create+0x10/0x10
[  725.489607][T16685]  ? do_init_timer+0xc9/0x110
[  725.489635][T16685]  ? ieee80211_roc_setup+0x136/0x270
[  725.489663][T16685]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[  725.489700][T16685]  mac80211_hwsim_new_radio+0x369/0x54d0
[  725.489749][T16685]  ? __asan_memset+0x23/0x50
[  725.489774][T16685]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  725.489812][T16685]  hwsim_new_radio_nl+0xb51/0x12c0
[  725.489842][T16685]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  725.489877][T16685]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  725.489903][T16685]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  725.489934][T16685]  genl_family_rcv_msg_doit+0x209/0x2f0
[  725.489961][T16685]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  725.489996][T16685]  ? bpf_lsm_capable+0x9/0x10
[  725.490015][T16685]  ? security_capable+0x7e/0x260
[  725.490039][T16685]  ? ns_capable+0xd7/0x110
[  725.490065][T16685]  genl_rcv_msg+0x55c/0x800
[  725.490092][T16685]  ? __pfx_genl_rcv_msg+0x10/0x10
[  725.490115][T16685]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  725.490152][T16685]  netlink_rcv_skb+0x155/0x420
[  725.490184][T16685]  ? __pfx_genl_rcv_msg+0x10/0x10
[  725.490209][T16685]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  725.490255][T16685]  ? netlink_deliver_tap+0x1ae/0xd30
[  725.490290][T16685]  genl_rcv+0x28/0x40
[  725.490310][T16685]  netlink_unicast+0x5aa/0x870
[  725.490346][T16685]  ? __pfx_netlink_unicast+0x10/0x10
[  725.490379][T16685]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  725.490410][T16685]  ? __lock_acquire+0xb97/0x1ce0
[  725.490446][T16685]  netlink_sendmsg+0x8d1/0xdd0
[  725.490484][T16685]  ? __pfx_netlink_sendmsg+0x10/0x10
[  725.490521][T16685]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  725.490550][T16685]  ____sys_sendmsg+0xa95/0xc70
[  725.490576][T16685]  ? copy_msghdr_from_user+0x10a/0x160
[  725.490608][T16685]  ? __pfx_____sys_sendmsg+0x10/0x10
[  725.490646][T16685]  ___sys_sendmsg+0x134/0x1d0
[  725.490680][T16685]  ? __pfx____sys_sendmsg+0x10/0x10
[  725.490756][T16685]  __sys_sendmsg+0x16d/0x220
[  725.490791][T16685]  ? __pfx___sys_sendmsg+0x10/0x10
[  725.490824][T16685]  ? __x64_sys_futex+0x1e0/0x4c0
[  725.490871][T16685]  do_syscall_64+0xcd/0x4c0
[  725.490907][T16685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.490929][T16685] RIP: 0033:0x7fca2178ec29
[  725.490947][T16685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  725.490968][T16685] RSP: 002b:00007fca22674038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  725.490990][T16685] RAX: ffffffffffffffda RBX: 00007fca219d5fa0 RCX: 00007fca2178ec29
[  725.491005][T16685] RDX: 0000000000040050 RSI: 0000200000000300 RDI: 0000000000000000
[  725.491019][T16685] RBP: 00007fca21811e41 R08: 0000000000000000 R09: 0000000000000000
[  725.491032][T16685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  725.491045][T16685] R13: 00007fca219d6038 R14: 00007fca219d5fa0 R15: 00007fff52ab8668
[  725.491075][T16685]  </TASK>
[  725.666175][T15899] Bluetooth: hci5: command tx timeout
[  726.127591][T16689] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input51
[  727.896040][T15899] Bluetooth: hci5: command tx timeout
[  728.433915][T16728] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input52
[  728.519986][T16730] FAULT_INJECTION: forcing a failure.
[  728.519986][T16730] name failslab, interval 1, probability 0, space 0, times 0
[  728.532861][T16730] CPU: 1 UID: 0 PID: 16730 Comm: syz.0.2503 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  728.532902][T16730] Tainted: [U]=USER
[  728.532910][T16730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  728.532919][T16730] Call Trace:
[  728.532926][T16730]  <TASK>
[  728.532932][T16730]  dump_stack_lvl+0x16c/0x1f0
[  728.532959][T16730]  should_fail_ex+0x512/0x640
[  728.532980][T16730]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  728.533002][T16730]  should_failslab+0xc2/0x120
[  728.533023][T16730]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  728.533042][T16730]  ? kasprintf+0xc7/0x100
[  728.533061][T16730]  kvasprintf+0xbc/0x160
[  728.533076][T16730]  ? __pfx_kvasprintf+0x10/0x10
[  728.533092][T16730]  ? mark_held_locks+0x49/0x80
[  728.533110][T16730]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  728.533131][T16730]  ? lockdep_hardirqs_on+0x7c/0x110
[  728.533154][T16730]  kasprintf+0xc7/0x100
[  728.533169][T16730]  ? __pfx_kasprintf+0x10/0x10
[  728.533188][T16730]  ? __pfx_sta_info_cleanup+0x10/0x10
[  728.533211][T16730]  ieee80211_alloc_led_names+0x11b/0x420
[  728.533235][T16730]  ieee80211_alloc_hw_nm+0x1941/0x2260
[  728.533260][T16730]  mac80211_hwsim_new_radio+0x1d4/0x54d0
[  728.533287][T16730]  ? __asan_memset+0x23/0x50
[  728.533302][T16730]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  728.533324][T16730]  hwsim_new_radio_nl+0xb51/0x12c0
[  728.533343][T16730]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  728.533366][T16730]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  728.533384][T16730]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  728.533404][T16730]  genl_family_rcv_msg_doit+0x209/0x2f0
[  728.533422][T16730]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  728.533444][T16730]  ? bpf_lsm_capable+0x9/0x10
[  728.533457][T16730]  ? security_capable+0x7e/0x260
[  728.533472][T16730]  ? ns_capable+0xd7/0x110
[  728.533489][T16730]  genl_rcv_msg+0x55c/0x800
[  728.533507][T16730]  ? __pfx_genl_rcv_msg+0x10/0x10
[  728.533526][T16730]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  728.533549][T16730]  netlink_rcv_skb+0x155/0x420
[  728.533571][T16730]  ? __pfx_genl_rcv_msg+0x10/0x10
[  728.533587][T16730]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  728.533621][T16730]  genl_rcv+0x28/0x40
[  728.533633][T16730]  netlink_unicast+0x5aa/0x870
[  728.533657][T16730]  ? __pfx_netlink_unicast+0x10/0x10
[  728.533678][T16730]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  728.533698][T16730]  ? __lock_acquire+0xb97/0x1ce0
[  728.533721][T16730]  netlink_sendmsg+0x8d1/0xdd0
[  728.533745][T16730]  ? __pfx_netlink_sendmsg+0x10/0x10
[  728.533780][T16730]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  728.533800][T16730]  ____sys_sendmsg+0xa95/0xc70
[  728.533818][T16730]  ? copy_msghdr_from_user+0x10a/0x160
[  728.533839][T16730]  ? __pfx_____sys_sendmsg+0x10/0x10
[  728.533864][T16730]  ___sys_sendmsg+0x134/0x1d0
[  728.533885][T16730]  ? __pfx____sys_sendmsg+0x10/0x10
[  728.533930][T16730]  __sys_sendmsg+0x16d/0x220
[  728.533950][T16730]  ? __pfx___sys_sendmsg+0x10/0x10
[  728.533970][T16730]  ? __x64_sys_futex+0x1e0/0x4c0
[  728.534000][T16730]  do_syscall_64+0xcd/0x4c0
[  728.534023][T16730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.534038][T16730] RIP: 0033:0x7fca2178ec29
[  728.534051][T16730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  728.534065][T16730] RSP: 002b:00007fca22674038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  728.534080][T16730] RAX: ffffffffffffffda RBX: 00007fca219d5fa0 RCX: 00007fca2178ec29
[  728.534090][T16730] RDX: 0000000000040050 RSI: 0000200000000300 RDI: 0000000000000001
[  728.534099][T16730] RBP: 00007fca21811e41 R08: 0000000000000000 R09: 0000000000000000
[  728.534108][T16730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  728.534116][T16730] R13: 00007fca219d6038 R14: 00007fca219d5fa0 R15: 00007fff52ab8668
[  728.534136][T16730]  </TASK>
[  729.333611][T16736] FAULT_INJECTION: forcing a failure.
[  729.333611][T16736] name failslab, interval 1, probability 0, space 0, times 0
[  729.346811][T16736] CPU: 1 UID: 0 PID: 16736 Comm: syz.3.2504 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  729.346853][T16736] Tainted: [U]=USER
[  729.346862][T16736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  729.346878][T16736] Call Trace:
[  729.346888][T16736]  <TASK>
[  729.346899][T16736]  dump_stack_lvl+0x16c/0x1f0
[  729.346943][T16736]  should_fail_ex+0x512/0x640
[  729.346983][T16736]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  729.347025][T16736]  should_failslab+0xc2/0x120
[  729.347060][T16736]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  729.347096][T16736]  ? kasprintf+0xc7/0x100
[  729.347130][T16736]  kvasprintf+0xbc/0x160
[  729.347159][T16736]  ? __pfx_kvasprintf+0x10/0x10
[  729.347187][T16736]  ? mark_held_locks+0x49/0x80
[  729.347218][T16736]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  729.347252][T16736]  ? lockdep_hardirqs_on+0x7c/0x110
[  729.347296][T16736]  kasprintf+0xc7/0x100
[  729.347328][T16736]  ? __pfx_kasprintf+0x10/0x10
[  729.347365][T16736]  ? __pfx_sta_info_cleanup+0x10/0x10
[  729.347408][T16736]  ieee80211_alloc_led_names+0x243/0x420
[  729.347453][T16736]  ieee80211_alloc_hw_nm+0x1941/0x2260
[  729.347499][T16736]  mac80211_hwsim_new_radio+0x1d4/0x54d0
[  729.347550][T16736]  ? __asan_memset+0x23/0x50
[  729.347579][T16736]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  729.347622][T16736]  hwsim_new_radio_nl+0xb51/0x12c0
[  729.347657][T16736]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  729.347701][T16736]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  729.347737][T16736]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  729.347775][T16736]  genl_family_rcv_msg_doit+0x209/0x2f0
[  729.347806][T16736]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  729.347847][T16736]  ? bpf_lsm_capable+0x9/0x10
[  729.347872][T16736]  ? security_capable+0x7e/0x260
[  729.347901][T16736]  ? ns_capable+0xd7/0x110
[  729.347933][T16736]  genl_rcv_msg+0x55c/0x800
[  729.347966][T16736]  ? __pfx_genl_rcv_msg+0x10/0x10
[  729.347995][T16736]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  729.348036][T16736]  netlink_rcv_skb+0x155/0x420
[  729.348073][T16736]  ? __pfx_genl_rcv_msg+0x10/0x10
[  729.348103][T16736]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  729.348158][T16736]  ? netlink_deliver_tap+0x1ae/0xd30
[  729.348202][T16736]  genl_rcv+0x28/0x40
[  729.348225][T16736]  netlink_unicast+0x5aa/0x870
[  729.348269][T16736]  ? __pfx_netlink_unicast+0x10/0x10
[  729.348308][T16736]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  729.348345][T16736]  ? __lock_acquire+0xb97/0x1ce0
[  729.348389][T16736]  netlink_sendmsg+0x8d1/0xdd0
[  729.348434][T16736]  ? __pfx_netlink_sendmsg+0x10/0x10
[  729.348478][T16736]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  729.348514][T16736]  ____sys_sendmsg+0xa95/0xc70
[  729.348545][T16736]  ? copy_msghdr_from_user+0x10a/0x160
[  729.348582][T16736]  ? __pfx_____sys_sendmsg+0x10/0x10
[  729.348621][T16736]  ? __pfx_futex_wake_mark+0x10/0x10
[  729.348665][T16736]  ___sys_sendmsg+0x134/0x1d0
[  729.348706][T16736]  ? __pfx____sys_sendmsg+0x10/0x10
[  729.348800][T16736]  __sys_sendmsg+0x16d/0x220
[  729.348839][T16736]  ? __pfx___sys_sendmsg+0x10/0x10
[  729.348878][T16736]  ? __x64_sys_futex+0x1e0/0x4c0
[  729.348937][T16736]  do_syscall_64+0xcd/0x4c0
[  729.348979][T16736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.349006][T16736] RIP: 0033:0x7f35cef8ec29
[  729.349028][T16736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  729.349053][T16736] RSP: 002b:00007f35cfef6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  729.349078][T16736] RAX: ffffffffffffffda RBX: 00007f35cf1d5fa0 RCX: 00007f35cef8ec29
[  729.349096][T16736] RDX: 0000000000040050 RSI: 0000200000000300 RDI: 0000000000000000
[  729.349113][T16736] RBP: 00007f35cf011e41 R08: 0000000000000000 R09: 0000000000000000
[  729.349129][T16736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  729.349145][T16736] R13: 00007f35cf1d6038 R14: 00007f35cf1d5fa0 R15: 00007fff3be29888
[  729.349182][T16736]  </TASK>
[  729.976065][T15899] Bluetooth: hci5: command tx timeout
[  730.082610][T16745] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  730.259271][T16750] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  730.572433][T16751] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input53
[  730.762410][T16752] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  731.227939][T16759] FAULT_INJECTION: forcing a failure.
[  731.227939][T16759] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  731.241404][T16759] CPU: 1 UID: 0 PID: 16759 Comm: syz.0.2510 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  731.241453][T16759] Tainted: [U]=USER
[  731.241463][T16759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  731.241479][T16759] Call Trace:
[  731.241489][T16759]  <TASK>
[  731.241500][T16759]  dump_stack_lvl+0x16c/0x1f0
[  731.241545][T16759]  should_fail_ex+0x512/0x640
[  731.241589][T16759]  should_fail_alloc_page+0xe7/0x130
[  731.241627][T16759]  prepare_alloc_pages+0x3c2/0x610
[  731.241672][T16759]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  731.241704][T16759]  ? stack_depot_save_flags+0x29/0x9c0
[  731.241748][T16759]  ? __lock_acquire+0x62e/0x1ce0
[  731.241787][T16759]  ? __vmf_anon_prepare+0x11c/0x240
[  731.241823][T16759]  ? do_pte_missing+0x10bd/0x3ba0
[  731.241847][T16759]  ? __handle_mm_fault+0x152a/0x2a50
[  731.241874][T16759]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  731.241909][T16759]  ? __lock_acquire+0x62e/0x1ce0
[  731.241951][T16759]  ? __lock_acquire+0xb97/0x1ce0
[  731.241991][T16759]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  731.242031][T16759]  ? policy_nodemask+0xea/0x4e0
[  731.242068][T16759]  alloc_pages_mpol+0x1fb/0x550
[  731.242105][T16759]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  731.242142][T16759]  ? __anon_vma_prepare+0x2db/0x5e0
[  731.242176][T16759]  folio_alloc_mpol_noprof+0x36/0x2f0
[  731.242216][T16759]  vma_alloc_folio_noprof+0xed/0x1e0
[  731.242254][T16759]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  731.242291][T16759]  ? __anon_vma_prepare+0x2e2/0x5e0
[  731.242330][T16759]  do_pte_missing+0x2230/0x3ba0
[  731.242359][T16759]  ? find_held_lock+0x2b/0x80
[  731.242395][T16759]  __handle_mm_fault+0x152a/0x2a50
[  731.242440][T16759]  ? __pfx___handle_mm_fault+0x10/0x10
[  731.242470][T16759]  ? __pte_offset_map_lock+0x174/0x310
[  731.242507][T16759]  ? find_held_lock+0x2b/0x80
[  731.242545][T16759]  ? follow_page_pte.constprop.0+0x5cf/0x1390
[  731.242595][T16759]  handle_mm_fault+0x589/0xd10
[  731.242630][T16759]  __get_user_pages+0x551/0x34a0
[  731.242684][T16759]  ? __pfx___get_user_pages+0x10/0x10
[  731.242728][T16759]  populate_vma_page_range+0x267/0x3f0
[  731.242770][T16759]  ? __pfx_populate_vma_page_range+0x10/0x10
[  731.242797][T16759]  ? __pfx_find_vma_intersection+0x10/0x10
[  731.242818][T16759]  ? do_mmap+0x69c/0x1210
[  731.242840][T16759]  __mm_populate+0x1d8/0x380
[  731.242854][T16759]  ? __pfx___mm_populate+0x10/0x10
[  731.242868][T16759]  ? up_write+0x1b2/0x520
[  731.242890][T16759]  vm_mmap_pgoff+0x37f/0x470
[  731.242912][T16759]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  731.242936][T16759]  ? __x64_sys_futex+0x1e0/0x4c0
[  731.242953][T16759]  ? __x64_sys_futex+0x1e9/0x4c0
[  731.242973][T16759]  ksys_mmap_pgoff+0x7d/0x5c0
[  731.242996][T16759]  __x64_sys_mmap+0x125/0x190
[  731.243020][T16759]  do_syscall_64+0xcd/0x4c0
[  731.243043][T16759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.243058][T16759] RIP: 0033:0x7fca2178ec29
[  731.243072][T16759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  731.243087][T16759] RSP: 002b:00007fca22674038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  731.243101][T16759] RAX: ffffffffffffffda RBX: 00007fca219d5fa0 RCX: 00007fca2178ec29
[  731.243111][T16759] RDX: 00000000000000df RSI: 00000000000007ff RDI: 0000000000000000
[  731.243119][T16759] RBP: 00007fca21811e41 R08: ffffffffffffffff R09: 0000000000008000
[  731.243129][T16759] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  731.243138][T16759] R13: 00007fca219d6038 R14: 00007fca219d5fa0 R15: 00007fff52ab8668
[  731.243157][T16759]  </TASK>
[  731.836364][T16764] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input54
[  733.594387][T16801] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  733.611657][T16800] FAULT_INJECTION: forcing a failure.
[  733.611657][T16800] name failslab, interval 1, probability 0, space 0, times 0
[  733.624365][T16800] CPU: 1 UID: 0 PID: 16800 Comm: syz.0.2519 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  733.624401][T16800] Tainted: [U]=USER
[  733.624407][T16800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  733.624417][T16800] Call Trace:
[  733.624423][T16800]  <TASK>
[  733.624429][T16800]  dump_stack_lvl+0x16c/0x1f0
[  733.624457][T16800]  should_fail_ex+0x512/0x640
[  733.624480][T16800]  ? __kmalloc_noprof+0xbf/0x510
[  733.624498][T16800]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  733.624515][T16800]  should_failslab+0xc2/0x120
[  733.624534][T16800]  __kmalloc_noprof+0xd2/0x510
[  733.624549][T16800]  ? __pfx___mutex_trylock_common+0x10/0x10
[  733.624574][T16800]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  733.624595][T16800]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  733.624612][T16800]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  733.624627][T16800]  ? genl_get_cmd+0x194/0x580
[  733.624647][T16800]  ? __radix_tree_lookup+0x21f/0x2c0
[  733.624669][T16800]  genl_rcv_msg+0x55c/0x800
[  733.624686][T16800]  ? __pfx_genl_rcv_msg+0x10/0x10
[  733.624708][T16800]  ? __pfx_ctrl_getfamily+0x10/0x10
[  733.624749][T16800]  netlink_rcv_skb+0x155/0x420
[  733.624781][T16800]  ? __pfx_genl_rcv_msg+0x10/0x10
[  733.624797][T16800]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  733.624826][T16800]  ? netlink_deliver_tap+0x1ae/0xd30
[  733.624849][T16800]  genl_rcv+0x28/0x40
[  733.624862][T16800]  netlink_unicast+0x5aa/0x870
[  733.624886][T16800]  ? __pfx_netlink_unicast+0x10/0x10
[  733.624907][T16800]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  733.624934][T16800]  netlink_sendmsg+0x8d1/0xdd0
[  733.624973][T16800]  ? __pfx_netlink_sendmsg+0x10/0x10
[  733.624998][T16800]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  733.625017][T16800]  __sys_sendto+0x4a3/0x520
[  733.625039][T16800]  ? __pfx___sys_sendto+0x10/0x10
[  733.625066][T16800]  ? fd_install+0x225/0x750
[  733.625090][T16800]  ? __pfx___sys_socket+0x10/0x10
[  733.625111][T16800]  __x64_sys_sendto+0xe0/0x1c0
[  733.625129][T16800]  ? do_syscall_64+0x91/0x4c0
[  733.625149][T16800]  ? lockdep_hardirqs_on+0x7c/0x110
[  733.625169][T16800]  do_syscall_64+0xcd/0x4c0
[  733.625192][T16800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  733.625207][T16800] RIP: 0033:0x7fca21790abc
[  733.625224][T16800] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  733.625239][T16800] RSP: 002b:00007fca22672ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  733.625254][T16800] RAX: ffffffffffffffda RBX: 00007fca22672fc0 RCX: 00007fca21790abc
[  733.625265][T16800] RDX: 0000000000000028 RSI: 00007fca22673010 RDI: 0000000000000003
[  733.625274][T16800] RBP: 0000000000000000 R08: 00007fca22672f14 R09: 000000000000000c
[  733.625283][T16800] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  733.625291][T16800] R13: 00007fca22672f68 R14: 00007fca22673010 R15: 0000000000000000
[  733.625315][T16800]  </TASK>
[  735.802884][T16825] FAULT_INJECTION: forcing a failure.
[  735.802884][T16825] name failslab, interval 1, probability 0, space 0, times 0
[  735.822165][T16825] CPU: 0 UID: 0 PID: 16825 Comm: syz.3.2525 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  735.822207][T16825] Tainted: [U]=USER
[  735.822216][T16825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  735.822232][T16825] Call Trace:
[  735.822242][T16825]  <TASK>
[  735.822253][T16825]  dump_stack_lvl+0x16c/0x1f0
[  735.822295][T16825]  should_fail_ex+0x512/0x640
[  735.822332][T16825]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  735.822356][T16825]  should_failslab+0xc2/0x120
[  735.822376][T16825]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  735.822394][T16825]  ? getname_flags.part.0+0x4c/0x550
[  735.822419][T16825]  getname_flags.part.0+0x4c/0x550
[  735.822442][T16825]  getname_flags+0x93/0xf0
[  735.822458][T16825]  do_sys_openat2+0xb8/0x1d0
[  735.822479][T16825]  ? __pfx_do_sys_openat2+0x10/0x10
[  735.822507][T16825]  __x64_sys_openat+0x174/0x210
[  735.822520][T16825]  ? __pfx___x64_sys_openat+0x10/0x10
[  735.822540][T16825]  do_syscall_64+0xcd/0x4c0
[  735.822563][T16825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  735.822577][T16825] RIP: 0033:0x7f35cef8ec29
[  735.822589][T16825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  735.822603][T16825] RSP: 002b:00007f35cfef6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  735.822618][T16825] RAX: ffffffffffffffda RBX: 00007f35cf1d5fa0 RCX: 00007f35cef8ec29
[  735.822627][T16825] RDX: 0000000000008402 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  735.822636][T16825] RBP: 00007f35cf011e41 R08: 0000000000000000 R09: 0000000000000000
[  735.822645][T16825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  735.822653][T16825] R13: 00007f35cf1d6038 R14: 00007f35cf1d5fa0 R15: 00007fff3be29888
[  735.822671][T16825]  </TASK>
[  736.142066][T16840] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  736.162053][T16841] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  736.319802][T16846] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  736.363241][T16847] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  736.388452][T16849] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  736.408203][T16850] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  736.426969][T16851] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  736.442372][T16852] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  738.125757][T16875] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1257: comm udevd: corrupted xattr entries
[  738.138958][T16875] udevd[16875]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[  738.199777][T16879] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  738.358429][T16882] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2537'.
[  738.368726][T16882] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2537'.
[  738.385049][T16882] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2537'.
[  738.400793][T16882] netlink: 302 bytes leftover after parsing attributes in process `syz.3.2537'.
[  738.766055][T16901] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  738.772951][T16901] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  738.779128][T16901] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  738.788130][T16901] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  738.797244][T16901] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  738.803326][T16901] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  738.810968][T16901] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  738.818434][T16901] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  738.824761][T16901] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  738.831678][T16901] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  738.838516][T16901] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  738.844987][T16901] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  738.852140][T16901] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  739.294618][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807a136400: rx timeout, send abort
[  739.388992][T16912] udevd[16912]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[  739.804251][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807a136400: abort rx timeout. Force session deactivation
[  740.781470][T15537] Bluetooth: hci2: command 0x0406 tx timeout
[  740.787542][T15899] Bluetooth: hci1: command 0x0c1a tx timeout
[  740.861713][T15899] Bluetooth: hci5: command 0x0c1a tx timeout
[  740.867881][T15537] Bluetooth: hci3: command 0x0c1a tx timeout
[  740.879593][T15537] Bluetooth: hci4: command 0x0c1a tx timeout
[  741.013297][T16921] kexec: Could not allocate control_code_buffer
[  741.323029][T16942] lo: entered allmulticast mode
[  741.390271][T16943] lo: left allmulticast mode
[  741.587619][T16945] block nbd0: not configured, cannot reconfigure
[  741.689148][T16945] openvswitch: netlink: Flow key attr not present in new flow.
[  741.827179][T16952] EXT4-fs error: 7 callbacks suppressed
[  741.827206][T16952] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1257: comm udevd: corrupted xattr entries
[  741.845883][T16952] udevd[16952]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[  742.293016][T16957] FAULT_INJECTION: forcing a failure.
[  742.293016][T16957] name failslab, interval 1, probability 0, space 0, times 0
[  742.311488][T16957] CPU: 0 UID: 0 PID: 16957 Comm: syz.0.2555 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  742.311530][T16957] Tainted: [U]=USER
[  742.311538][T16957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  742.311547][T16957] Call Trace:
[  742.311553][T16957]  <TASK>
[  742.311559][T16957]  dump_stack_lvl+0x16c/0x1f0
[  742.311587][T16957]  should_fail_ex+0x512/0x640
[  742.311610][T16957]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  742.311633][T16957]  should_failslab+0xc2/0x120
[  742.311652][T16957]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  742.311672][T16957]  ? kvasprintf_const+0x66/0x1a0
[  742.311692][T16957]  kvasprintf+0xbc/0x160
[  742.311707][T16957]  ? __pfx_kvasprintf+0x10/0x10
[  742.311723][T16957]  ? find_held_lock+0x2b/0x80
[  742.311739][T16957]  ? rcu_read_unlock+0x17/0x60
[  742.311760][T16957]  kvasprintf_const+0x66/0x1a0
[  742.311777][T16957]  kobject_set_name_vargs+0x5a/0x140
[  742.311792][T16957]  dev_set_name+0xc7/0x100
[  742.311809][T16957]  ? __pfx_dev_set_name+0x10/0x10
[  742.311824][T16957]  ? rcu_is_watching+0x12/0xc0
[  742.311840][T16957]  ? rcu_is_watching+0x12/0xc0
[  742.311854][T16957]  ? trace_kmalloc+0x2b/0xd0
[  742.311872][T16957]  ? __kmalloc_noprof.cold+0x5c/0x61
[  742.311896][T16957]  wiphy_new_nm+0x811/0x2190
[  742.311918][T16957]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[  742.311961][T16957]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[  742.311997][T16957]  ieee80211_alloc_hw_nm+0x1b7a/0x2260
[  742.312023][T16957]  ? __local_bh_enable_ip+0xa4/0x120
[  742.312042][T16957]  mac80211_hwsim_new_radio+0x1d4/0x54d0
[  742.312069][T16957]  ? __asan_memset+0x23/0x50
[  742.312084][T16957]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  742.312106][T16957]  hwsim_new_radio_nl+0xb51/0x12c0
[  742.312125][T16957]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  742.312153][T16957]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  742.312172][T16957]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  742.312192][T16957]  genl_family_rcv_msg_doit+0x209/0x2f0
[  742.312209][T16957]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  742.312232][T16957]  ? bpf_lsm_capable+0x9/0x10
[  742.312246][T16957]  ? security_capable+0x7e/0x260
[  742.312262][T16957]  ? ns_capable+0xd7/0x110
[  742.312278][T16957]  genl_rcv_msg+0x55c/0x800
[  742.312296][T16957]  ? __pfx_genl_rcv_msg+0x10/0x10
[  742.312311][T16957]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  742.312334][T16957]  netlink_rcv_skb+0x155/0x420
[  742.312355][T16957]  ? __pfx_genl_rcv_msg+0x10/0x10
[  742.312371][T16957]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  742.312403][T16957]  ? netlink_deliver_tap+0x1ae/0xd30
[  742.312427][T16957]  genl_rcv+0x28/0x40
[  742.312439][T16957]  netlink_unicast+0x5aa/0x870
[  742.312464][T16957]  ? __pfx_netlink_unicast+0x10/0x10
[  742.312485][T16957]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  742.312509][T16957]  ? __lock_acquire+0xb97/0x1ce0
[  742.312549][T16957]  netlink_sendmsg+0x8d1/0xdd0
[  742.312592][T16957]  ? __pfx_netlink_sendmsg+0x10/0x10
[  742.312621][T16957]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  742.312640][T16957]  ____sys_sendmsg+0xa95/0xc70
[  742.312658][T16957]  ? copy_msghdr_from_user+0x10a/0x160
[  742.312678][T16957]  ? __pfx_____sys_sendmsg+0x10/0x10
[  742.312699][T16957]  ? __pfx_futex_wake_mark+0x10/0x10
[  742.312723][T16957]  ___sys_sendmsg+0x134/0x1d0
[  742.312745][T16957]  ? __pfx____sys_sendmsg+0x10/0x10
[  742.312790][T16957]  __sys_sendmsg+0x16d/0x220
[  742.312810][T16957]  ? __pfx___sys_sendmsg+0x10/0x10
[  742.312831][T16957]  ? __x64_sys_futex+0x1e0/0x4c0
[  742.312860][T16957]  do_syscall_64+0xcd/0x4c0
[  742.312884][T16957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.312899][T16957] RIP: 0033:0x7fca2178ec29
[  742.312911][T16957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  742.312925][T16957] RSP: 002b:00007fca22674038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  742.312940][T16957] RAX: ffffffffffffffda RBX: 00007fca219d5fa0 RCX: 00007fca2178ec29
[  742.312950][T16957] RDX: 0000000000040050 RSI: 0000200000000300 RDI: 0000000000000001
[  742.312959][T16957] RBP: 00007fca21811e41 R08: 0000000000000000 R09: 0000000000000000
[  742.312968][T16957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  742.312977][T16957] R13: 00007fca219d6038 R14: 00007fca219d5fa0 R15: 00007fff52ab8668
[  742.312996][T16957]  </TASK>
[  742.862606][T15537] Bluetooth: hci1: command 0x0c1a tx timeout
[  742.942794][T16934] Bluetooth: hci5: command 0x0c1a tx timeout
[  742.948857][T16934] Bluetooth: hci3: command 0x0c1a tx timeout
[  742.960760][T15537] Bluetooth: hci4: command 0x0c1a tx timeout
[  743.453676][T16969] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2558'.
[  745.002149][T15537] Bluetooth: hci1: command 0x0c1a tx timeout
[  745.026644][T15537] Bluetooth: hci4: command 0x0c1a tx timeout
[  745.032686][T16934] Bluetooth: hci3: command 0x0c1a tx timeout
[  745.040347][T15899] Bluetooth: hci5: command 0x0c1a tx timeout
[  745.231224][T16989] FAULT_INJECTION: forcing a failure.
[  745.231224][T16989] name failslab, interval 1, probability 0, space 0, times 0
[  745.247205][T16989] CPU: 0 UID: 0 PID: 16989 Comm: syz.0.2562 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  745.247248][T16989] Tainted: [U]=USER
[  745.247258][T16989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  745.247273][T16989] Call Trace:
[  745.247283][T16989]  <TASK>
[  745.247293][T16989]  dump_stack_lvl+0x16c/0x1f0
[  745.247338][T16989]  should_fail_ex+0x512/0x640
[  745.247377][T16989]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  745.247414][T16989]  should_failslab+0xc2/0x120
[  745.247449][T16989]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  745.247482][T16989]  ? __d_alloc+0x32/0xae0
[  745.247520][T16989]  __d_alloc+0x32/0xae0
[  745.247550][T16989]  ? bpf_ksym_find+0x124/0x1c0
[  745.247579][T16989]  d_alloc_parallel+0x111/0x1480
[  745.247619][T16989]  ? __x64_sys_ioctl+0x18b/0x210
[  745.247659][T16989]  ? unwind_get_return_address+0x59/0xa0
[  745.247688][T16989]  ? arch_stack_walk+0xa6/0x100
[  745.247722][T16989]  ? __pfx_d_alloc_parallel+0x10/0x10
[  745.247766][T16989]  ? lockdep_init_map_type+0x5c/0x280
[  745.247804][T16989]  ? lockdep_init_map_type+0x5c/0x280
[  745.247846][T16989]  __lookup_slow+0x193/0x460
[  745.247887][T16989]  ? __pfx___lookup_slow+0x10/0x10
[  745.247931][T16989]  ? perf_trace_mm_compaction_suitable_template+0x110/0x5e0
[  745.247979][T16989]  ? perf_trace_mm_compaction_suitable_template+0x110/0x5e0
[  745.248018][T16989]  ? d_lookup+0xe7/0x190
[  745.248062][T16989]  lookup_noperm+0xe1/0x110
[  745.248103][T16989]  simple_start_creating+0xd1/0x1b0
[  745.248136][T16989]  start_creating.part.0+0x82/0x190
[  745.248176][T16989]  __debugfs_create_file+0xa7/0x6b0
[  745.248212][T16989]  debugfs_create_file_full+0x41/0x60
[  745.248246][T16989]  kvm_dev_ioctl+0x153f/0x1af0
[  745.248285][T16989]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  745.248325][T16989]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  745.248355][T16989]  __x64_sys_ioctl+0x18b/0x210
[  745.248398][T16989]  do_syscall_64+0xcd/0x4c0
[  745.248440][T16989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  745.248467][T16989] RIP: 0033:0x7fca2178ec29
[  745.248489][T16989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  745.248515][T16989] RSP: 002b:00007fca22653038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  745.248541][T16989] RAX: ffffffffffffffda RBX: 00007fca219d6090 RCX: 00007fca2178ec29
[  745.248559][T16989] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008
[  745.248575][T16989] RBP: 00007fca21811e41 R08: 0000000000000000 R09: 0000000000000000
[  745.248591][T16989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  745.248607][T16989] R13: 00007fca219d6128 R14: 00007fca219d6090 R15: 00007fff52ab8668
[  745.248644][T16989]  </TASK>
[  745.930001][T17001] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  745.990261][T17006] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  746.760226][T17014] FAULT_INJECTION: forcing a failure.
[  746.760226][T17014] name failslab, interval 1, probability 0, space 0, times 0
[  746.773032][T17014] CPU: 1 UID: 0 PID: 17014 Comm: syz.0.2574 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  746.773067][T17014] Tainted: [U]=USER
[  746.773072][T17014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  746.773081][T17014] Call Trace:
[  746.773088][T17014]  <TASK>
[  746.773094][T17014]  dump_stack_lvl+0x16c/0x1f0
[  746.773123][T17014]  should_fail_ex+0x512/0x640
[  746.773145][T17014]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  746.773165][T17014]  should_failslab+0xc2/0x120
[  746.773184][T17014]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  746.773202][T17014]  ? alloc_inode+0x61/0x240
[  746.773224][T17014]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  746.773240][T17014]  alloc_inode+0x61/0x240
[  746.773259][T17014]  new_inode+0x22/0x1c0
[  746.773280][T17014]  __debugfs_create_file+0x11c/0x6b0
[  746.773299][T17014]  debugfs_create_file_full+0x41/0x60
[  746.773318][T17014]  kvm_dev_ioctl+0x153f/0x1af0
[  746.773339][T17014]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  746.773360][T17014]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  746.773375][T17014]  __x64_sys_ioctl+0x18b/0x210
[  746.773398][T17014]  do_syscall_64+0xcd/0x4c0
[  746.773421][T17014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.773435][T17014] RIP: 0033:0x7fca2178ec29
[  746.773448][T17014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  746.773462][T17014] RSP: 002b:00007fca22674038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  746.773476][T17014] RAX: ffffffffffffffda RBX: 00007fca219d5fa0 RCX: 00007fca2178ec29
[  746.773485][T17014] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008
[  746.773493][T17014] RBP: 00007fca21811e41 R08: 0000000000000000 R09: 0000000000000000
[  746.773502][T17014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  746.773510][T17014] R13: 00007fca219d6038 R14: 00007fca219d5fa0 R15: 00007fff52ab8668
[  746.773529][T17014]  </TASK>
[  746.773536][T17014] debugfs: out of free dentries, can not create file 'pages_1g'
[  747.104091][T17019] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:5: corrupted xattr entries
[  747.123245][T17017] FAULT_INJECTION: forcing a failure.
[  747.123245][T17017] name failslab, interval 1, probability 0, space 0, times 0
[  747.136070][T17017] CPU: 1 UID: 0 PID: 17017 Comm: syz.3.2569 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  747.136112][T17017] Tainted: [U]=USER
[  747.136121][T17017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  747.136137][T17017] Call Trace:
[  747.136147][T17017]  <TASK>
[  747.136158][T17017]  dump_stack_lvl+0x16c/0x1f0
[  747.136201][T17017]  should_fail_ex+0x512/0x640
[  747.136239][T17017]  ? __kmalloc_noprof+0xbf/0x510
[  747.136274][T17017]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  747.136305][T17017]  should_failslab+0xc2/0x120
[  747.136339][T17017]  __kmalloc_noprof+0xd2/0x510
[  747.136367][T17017]  ? __pfx___mutex_trylock_common+0x10/0x10
[  747.136413][T17017]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  747.136452][T17017]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  747.136483][T17017]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  747.136512][T17017]  ? genl_get_cmd+0x194/0x580
[  747.136550][T17017]  ? __radix_tree_lookup+0x21f/0x2c0
[  747.136592][T17017]  genl_rcv_msg+0x55c/0x800
[  747.136624][T17017]  ? __pfx_genl_rcv_msg+0x10/0x10
[  747.136652][T17017]  ? __pfx_ctrl_getfamily+0x10/0x10
[  747.136695][T17017]  netlink_rcv_skb+0x155/0x420
[  747.136742][T17017]  ? __pfx_genl_rcv_msg+0x10/0x10
[  747.136773][T17017]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  747.136829][T17017]  ? netlink_deliver_tap+0x1ae/0xd30
[  747.136875][T17017]  genl_rcv+0x28/0x40
[  747.136898][T17017]  netlink_unicast+0x5aa/0x870
[  747.136945][T17017]  ? __pfx_netlink_unicast+0x10/0x10
[  747.136986][T17017]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  747.137038][T17017]  netlink_sendmsg+0x8d1/0xdd0
[  747.137083][T17017]  ? __pfx_netlink_sendmsg+0x10/0x10
[  747.137127][T17017]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  747.137163][T17017]  __sys_sendto+0x4a3/0x520
[  747.137199][T17017]  ? __pfx___sys_sendto+0x10/0x10
[  747.137246][T17017]  ? fd_install+0x225/0x750
[  747.137291][T17017]  ? __pfx___sys_socket+0x10/0x10
[  747.137331][T17017]  __x64_sys_sendto+0xe0/0x1c0
[  747.137364][T17017]  ? do_syscall_64+0x91/0x4c0
[  747.137401][T17017]  ? lockdep_hardirqs_on+0x7c/0x110
[  747.137437][T17017]  do_syscall_64+0xcd/0x4c0
[  747.137479][T17017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  747.137505][T17017] RIP: 0033:0x7f35cef90abc
[  747.137527][T17017] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  747.137553][T17017] RSP: 002b:00007f35cfef4ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  747.137579][T17017] RAX: ffffffffffffffda RBX: 00007f35cfef4fc0 RCX: 00007f35cef90abc
[  747.137597][T17017] RDX: 0000000000000028 RSI: 00007f35cfef5010 RDI: 0000000000000003
[  747.137614][T17017] RBP: 0000000000000000 R08: 00007f35cfef4f14 R09: 000000000000000c
[  747.137631][T17017] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  747.137648][T17017] R13: 00007f35cfef4f68 R14: 00007f35cfef5010 R15: 0000000000000000
[  747.137686][T17017]  </TASK>
[  747.434937][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  747.441265][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  747.863435][   T30] audit: type=1800 audit(4294967362.338:19): pid=17028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2571" name="features" dev="configfs" ino=73735 res=0 errno=0
[  748.503337][T17035] FAULT_INJECTION: forcing a failure.
[  748.503337][T17035] name failslab, interval 1, probability 0, space 0, times 0
[  748.519635][T17035] CPU: 0 UID: 0 PID: 17035 Comm: syz.0.2575 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  748.519679][T17035] Tainted: [U]=USER
[  748.519689][T17035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  748.519705][T17035] Call Trace:
[  748.519715][T17035]  <TASK>
[  748.519726][T17035]  dump_stack_lvl+0x16c/0x1f0
[  748.519769][T17035]  should_fail_ex+0x512/0x640
[  748.519807][T17035]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  748.519852][T17035]  should_failslab+0xc2/0x120
[  748.519887][T17035]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  748.519921][T17035]  ? __d_alloc+0x32/0xae0
[  748.519958][T17035]  __d_alloc+0x32/0xae0
[  748.519993][T17035]  d_alloc_parallel+0x111/0x1480
[  748.520041][T17035]  ? find_held_lock+0x2b/0x80
[  748.520070][T17035]  ? __pfx_d_alloc_parallel+0x10/0x10
[  748.520113][T17035]  ? __d_lookup+0x266/0x4a0
[  748.520159][T17035]  lookup_open.isra.0+0x665/0x1580
[  748.520194][T17035]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  748.520241][T17035]  ? mnt_get_write_access+0x20c/0x300
[  748.520284][T17035]  path_openat+0x893/0x2cb0
[  748.520328][T17035]  ? __pfx_path_openat+0x10/0x10
[  748.520368][T17035]  do_filp_open+0x20b/0x470
[  748.520399][T17035]  ? __pfx_do_filp_open+0x10/0x10
[  748.520456][T17035]  ? alloc_fd+0x471/0x7d0
[  748.520494][T17035]  do_sys_openat2+0x11b/0x1d0
[  748.520531][T17035]  ? __pfx_do_sys_openat2+0x10/0x10
[  748.520581][T17035]  __x64_sys_openat+0x174/0x210
[  748.520605][T17035]  ? __pfx___x64_sys_openat+0x10/0x10
[  748.520643][T17035]  do_syscall_64+0xcd/0x4c0
[  748.520685][T17035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  748.520710][T17035] RIP: 0033:0x7fca2178ec29
[  748.520732][T17035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  748.520758][T17035] RSP: 002b:00007fca22674038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  748.520783][T17035] RAX: ffffffffffffffda RBX: 00007fca219d5fa0 RCX: 00007fca2178ec29
[  748.520801][T17035] RDX: 0000000000088002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  748.520826][T17035] RBP: 00007fca21811e41 R08: 0000000000000000 R09: 0000000000000000
[  748.520842][T17035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  748.520858][T17035] R13: 00007fca219d6038 R14: 00007fca219d5fa0 R15: 00007fff52ab8668
[  748.520895][T17035]  </TASK>
[  748.549717][T17033] FAULT_INJECTION: forcing a failure.
[  748.549717][T17033] name failslab, interval 1, probability 0, space 0, times 0
[  748.769594][T17033] CPU: 1 UID: 0 PID: 17033 Comm: syz.3.2573 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  748.769637][T17033] Tainted: [U]=USER
[  748.769648][T17033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  748.769664][T17033] Call Trace:
[  748.769673][T17033]  <TASK>
[  748.769684][T17033]  dump_stack_lvl+0x16c/0x1f0
[  748.769728][T17033]  should_fail_ex+0x512/0x640
[  748.769765][T17033]  ? __kvmalloc_node_noprof+0x124/0x620
[  748.769807][T17033]  should_failslab+0xc2/0x120
[  748.769843][T17033]  __kvmalloc_node_noprof+0x137/0x620
[  748.769875][T17033]  ? __pfx___debug_object_init+0x10/0x10
[  748.769904][T17033]  ? bucket_table_alloc.isra.0+0x83/0x460
[  748.769948][T17033]  ? bucket_table_alloc.isra.0+0x83/0x460
[  748.769986][T17033]  bucket_table_alloc.isra.0+0x83/0x460
[  748.770030][T17033]  rhashtable_init_noprof+0x41a/0x7e0
[  748.770068][T17033]  ? __init_waitqueue_head+0xca/0x150
[  748.770111][T17033]  rhltable_init_noprof+0x20/0x60
[  748.770151][T17033]  sta_info_init+0x27/0x160
[  748.770187][T17033]  ieee80211_alloc_hw_nm+0x840/0x2260
[  748.770226][T17033]  ? __local_bh_enable_ip+0xa4/0x120
[  748.770262][T17033]  mac80211_hwsim_new_radio+0x1d4/0x54d0
[  748.770311][T17033]  ? __asan_memset+0x23/0x50
[  748.770341][T17033]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  748.770385][T17033]  hwsim_new_radio_nl+0xb51/0x12c0
[  748.770417][T17033]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  748.770455][T17033]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  748.770484][T17033]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  748.770523][T17033]  genl_family_rcv_msg_doit+0x209/0x2f0
[  748.770555][T17033]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  748.770596][T17033]  ? bpf_lsm_capable+0x9/0x10
[  748.770620][T17033]  ? security_capable+0x7e/0x260
[  748.770649][T17033]  ? ns_capable+0xd7/0x110
[  748.770680][T17033]  genl_rcv_msg+0x55c/0x800
[  748.770713][T17033]  ? __pfx_genl_rcv_msg+0x10/0x10
[  748.770742][T17033]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  748.770786][T17033]  netlink_rcv_skb+0x155/0x420
[  748.770833][T17033]  ? __pfx_genl_rcv_msg+0x10/0x10
[  748.770864][T17033]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  748.770923][T17033]  ? netlink_deliver_tap+0x1ae/0xd30
[  748.770966][T17033]  genl_rcv+0x28/0x40
[  748.770990][T17033]  netlink_unicast+0x5aa/0x870
[  748.771033][T17033]  ? __pfx_netlink_unicast+0x10/0x10
[  748.771073][T17033]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  748.771109][T17033]  ? __lock_acquire+0xb97/0x1ce0
[  748.771153][T17033]  netlink_sendmsg+0x8d1/0xdd0
[  748.771198][T17033]  ? __pfx_netlink_sendmsg+0x10/0x10
[  748.771243][T17033]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  748.771279][T17033]  ____sys_sendmsg+0xa95/0xc70
[  748.771310][T17033]  ? copy_msghdr_from_user+0x10a/0x160
[  748.771348][T17033]  ? __pfx_____sys_sendmsg+0x10/0x10
[  748.771396][T17033]  ___sys_sendmsg+0x134/0x1d0
[  748.771436][T17033]  ? __pfx____sys_sendmsg+0x10/0x10
[  748.771519][T17033]  __sys_sendmsg+0x16d/0x220
[  748.771556][T17033]  ? __pfx___sys_sendmsg+0x10/0x10
[  748.771591][T17033]  ? __x64_sys_futex+0x1e0/0x4c0
[  748.771645][T17033]  do_syscall_64+0xcd/0x4c0
[  748.771684][T17033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  748.771709][T17033] RIP: 0033:0x7f35cef8ec29
[  748.771728][T17033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  748.771749][T17033] RSP: 002b:00007f35cfef6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  748.771772][T17033] RAX: ffffffffffffffda RBX: 00007f35cf1d5fa0 RCX: 00007f35cef8ec29
[  748.771788][T17033] RDX: 0000000000040050 RSI: 0000200000000300 RDI: 0000000000000001
[  748.771809][T17033] RBP: 00007f35cf011e41 R08: 0000000000000000 R09: 0000000000000000
[  748.771824][T17033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  748.771837][T17033] R13: 00007f35cf1d6038 R14: 00007f35cf1d5fa0 R15: 00007fff3be29888
[  748.771873][T17033]  </TASK>
[  749.064293][T17042] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  749.195225][T17045] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  749.383988][T17049] FAULT_INJECTION: forcing a failure.
[  749.383988][T17049] name failslab, interval 1, probability 0, space 0, times 0
[  749.397851][T17049] CPU: 1 UID: 0 PID: 17049 Comm: syz.0.2579 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  749.397875][T17049] Tainted: [U]=USER
[  749.397881][T17049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  749.397890][T17049] Call Trace:
[  749.397896][T17049]  <TASK>
[  749.397902][T17049]  dump_stack_lvl+0x16c/0x1f0
[  749.397928][T17049]  should_fail_ex+0x512/0x640
[  749.397951][T17049]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  749.397968][T17049]  should_failslab+0xc2/0x120
[  749.397988][T17049]  __kmalloc_cache_noprof+0x6a/0x3e0
[  749.398003][T17049]  ? kvm_dev_ioctl+0x13ce/0x1af0
[  749.398020][T17049]  kvm_dev_ioctl+0x13ce/0x1af0
[  749.398041][T17049]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  749.398061][T17049]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  749.398077][T17049]  __x64_sys_ioctl+0x18b/0x210
[  749.398101][T17049]  do_syscall_64+0xcd/0x4c0
[  749.398123][T17049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  749.398137][T17049] RIP: 0033:0x7fca2178ec29
[  749.398150][T17049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  749.398164][T17049] RSP: 002b:00007fca22674038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  749.398178][T17049] RAX: ffffffffffffffda RBX: 00007fca219d5fa0 RCX: 00007fca2178ec29
[  749.398187][T17049] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008
[  749.398196][T17049] RBP: 00007fca21811e41 R08: 0000000000000000 R09: 0000000000000000
[  749.398204][T17049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  749.398213][T17049] R13: 00007fca219d6038 R14: 00007fca219d5fa0 R15: 00007fff52ab8668
[  749.398230][T17049]  </TASK>
[  749.848207][T17055] bond0: option all_slaves_active: invalid value (
)
[  749.893198][T17055] bond0: option all_slaves_active: invalid value (
)
[  750.205464][T17059] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  752.506381][T17109] netlink: 'syz.3.2592': attribute type 1 has an invalid length.
[  752.834590][T17115] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  752.862283][T17112] FAULT_INJECTION: forcing a failure.
[  752.862283][T17112] name failslab, interval 1, probability 0, space 0, times 0
[  752.888906][T17112] CPU: 0 UID: 0 PID: 17112 Comm: syz.3.2593 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  752.888932][T17112] Tainted: [U]=USER
[  752.888938][T17112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  752.888947][T17112] Call Trace:
[  752.888953][T17112]  <TASK>
[  752.888959][T17112]  dump_stack_lvl+0x16c/0x1f0
[  752.888985][T17112]  should_fail_ex+0x512/0x640
[  752.889008][T17112]  ? __kmalloc_noprof+0xbf/0x510
[  752.889027][T17112]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  752.889044][T17112]  should_failslab+0xc2/0x120
[  752.889076][T17112]  __kmalloc_noprof+0xd2/0x510
[  752.889092][T17112]  ? __pfx___mutex_trylock_common+0x10/0x10
[  752.889119][T17112]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  752.889140][T17112]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  752.889157][T17112]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  752.889173][T17112]  ? genl_get_cmd+0x194/0x580
[  752.889193][T17112]  ? __radix_tree_lookup+0x21f/0x2c0
[  752.889216][T17112]  genl_rcv_msg+0x55c/0x800
[  752.889233][T17112]  ? __pfx_genl_rcv_msg+0x10/0x10
[  752.889252][T17112]  ? __pfx_ctrl_getfamily+0x10/0x10
[  752.889290][T17112]  netlink_rcv_skb+0x155/0x420
[  752.889325][T17112]  ? __pfx_genl_rcv_msg+0x10/0x10
[  752.889353][T17112]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  752.889404][T17112]  ? netlink_deliver_tap+0x1ae/0xd30
[  752.889445][T17112]  genl_rcv+0x28/0x40
[  752.889469][T17112]  netlink_unicast+0x5aa/0x870
[  752.889520][T17112]  ? __pfx_netlink_unicast+0x10/0x10
[  752.889568][T17112]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  752.889620][T17112]  netlink_sendmsg+0x8d1/0xdd0
[  752.889667][T17112]  ? __pfx_netlink_sendmsg+0x10/0x10
[  752.889713][T17112]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  752.889749][T17112]  __sys_sendto+0x4a3/0x520
[  752.889786][T17112]  ? __pfx___sys_sendto+0x10/0x10
[  752.889836][T17112]  ? fd_install+0x225/0x750
[  752.889881][T17112]  ? __pfx___sys_socket+0x10/0x10
[  752.889911][T17112]  ? xfd_validate_state+0x61/0x180
[  752.889956][T17112]  __x64_sys_sendto+0xe0/0x1c0
[  752.889990][T17112]  ? do_syscall_64+0x91/0x4c0
[  752.890028][T17112]  ? lockdep_hardirqs_on+0x7c/0x110
[  752.890065][T17112]  do_syscall_64+0xcd/0x4c0
[  752.890107][T17112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.890135][T17112] RIP: 0033:0x7f35cef90abc
[  752.890157][T17112] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  752.890183][T17112] RSP: 002b:00007f35cfef4ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  752.890208][T17112] RAX: ffffffffffffffda RBX: 00007f35cfef4fc0 RCX: 00007f35cef90abc
[  752.890226][T17112] RDX: 0000000000000028 RSI: 00007f35cfef5010 RDI: 0000000000000003
[  752.890243][T17112] RBP: 0000000000000000 R08: 00007f35cfef4f14 R09: 000000000000000c
[  752.890259][T17112] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  752.890275][T17112] R13: 00007f35cfef4f68 R14: 00007f35cfef5010 R15: 0000000000000000
[  752.890311][T17112]  </TASK>
[  753.676934][T17110] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2589'.
[  753.722621][T17122] FAULT_INJECTION: forcing a failure.
[  753.722621][T17122] name fail_futex, interval 1, probability 0, space 0, times 0
[  753.741695][T17122] CPU: 1 UID: 0 PID: 17122 Comm: syz.3.2595 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  753.741736][T17122] Tainted: [U]=USER
[  753.741745][T17122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  753.741761][T17122] Call Trace:
[  753.741769][T17122]  <TASK>
[  753.741781][T17122]  dump_stack_lvl+0x16c/0x1f0
[  753.741825][T17122]  should_fail_ex+0x512/0x640
[  753.741869][T17122]  get_futex_key+0x1d0/0x1560
[  753.741907][T17122]  ? __pfx_get_futex_key+0x10/0x10
[  753.741951][T17122]  futex_wait_setup+0x9d/0x550
[  753.742000][T17122]  __futex_wait+0x194/0x2f0
[  753.742039][T17122]  ? __pfx___futex_wait+0x10/0x10
[  753.742082][T17122]  ? __pfx_futex_wake_mark+0x10/0x10
[  753.742125][T17122]  ? futex_private_hash_put+0x176/0x300
[  753.742161][T17122]  ? futex_private_hash_put+0x18a/0x300
[  753.742195][T17122]  futex_wait+0xe8/0x380
[  753.742233][T17122]  ? __pfx_futex_wait+0x10/0x10
[  753.742281][T17122]  ? do_readv+0x218/0x340
[  753.742315][T17122]  do_futex+0x229/0x350
[  753.742349][T17122]  ? __pfx_do_futex+0x10/0x10
[  753.742386][T17122]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  753.742438][T17122]  __x64_sys_futex+0x1e0/0x4c0
[  753.742477][T17122]  ? __pfx___x64_sys_futex+0x10/0x10
[  753.742511][T17122]  ? __pfx_do_readv+0x10/0x10
[  753.742550][T17122]  do_syscall_64+0xcd/0x4c0
[  753.742591][T17122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  753.742619][T17122] RIP: 0033:0x7f35cef8ec29
[  753.742640][T17122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  753.742666][T17122] RSP: 002b:00007f35cfed50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  753.742692][T17122] RAX: ffffffffffffffda RBX: 00007f35cf1d6098 RCX: 00007f35cef8ec29
[  753.742709][T17122] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f35cf1d6098
[  753.742725][T17122] RBP: 00007f35cf1d6090 R08: 0000000000000000 R09: 0000000000000000
[  753.742742][T17122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  753.742756][T17122] R13: 00007f35cf1d6128 R14: 00007fff3be297a0 R15: 00007fff3be29888
[  753.742791][T17122]  </TASK>
[  754.658004][T17129] FAULT_INJECTION: forcing a failure.
[  754.658004][T17129] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  754.678215][T17129] CPU: 1 UID: 0 PID: 17129 Comm: syz.0.2596 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  754.678257][T17129] Tainted: [U]=USER
[  754.678266][T17129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  754.678280][T17129] Call Trace:
[  754.678289][T17129]  <TASK>
[  754.678301][T17129]  dump_stack_lvl+0x16c/0x1f0
[  754.678345][T17129]  should_fail_ex+0x512/0x640
[  754.678389][T17129]  should_fail_alloc_page+0xe7/0x130
[  754.678426][T17129]  prepare_alloc_pages+0x3c2/0x610
[  754.678463][T17129]  ? rcu_is_watching+0x12/0xc0
[  754.678493][T17129]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  754.678532][T17129]  ? __lock_acquire+0x62e/0x1ce0
[  754.678570][T17129]  ? css_rstat_updated+0x1c2/0x510
[  754.678602][T17129]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  754.678640][T17129]  ? rcu_is_watching+0x12/0xc0
[  754.678677][T17129]  ? __lock_acquire+0x62e/0x1ce0
[  754.678710][T17129]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  754.678751][T17129]  ? policy_nodemask+0xea/0x4e0
[  754.678789][T17129]  alloc_pages_mpol+0x1fb/0x550
[  754.678825][T17129]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  754.678862][T17129]  ? filemap_get_entry+0x1a7/0x3b0
[  754.678901][T17129]  folio_alloc_noprof+0x20/0x2d0
[  754.678939][T17129]  filemap_alloc_folio_noprof+0x3a1/0x470
[  754.678969][T17129]  ? __pfx_filemap_alloc_folio_noprof+0x10/0x10
[  754.679016][T17129]  __filemap_get_folio+0x5e1/0xc30
[  754.679060][T17129]  ioctx_alloc+0x761/0x2120
[  754.679109][T17129]  ? __pfx_ioctx_alloc+0x10/0x10
[  754.679144][T17129]  ? __x64_sys_io_setup+0x6b/0x210
[  754.679179][T17129]  __x64_sys_io_setup+0xc9/0x210
[  754.679213][T17129]  do_syscall_64+0xcd/0x4c0
[  754.679253][T17129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  754.679280][T17129] RIP: 0033:0x7fca2178ec29
[  754.679302][T17129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  754.679329][T17129] RSP: 002b:00007fca22674038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  754.679354][T17129] RAX: ffffffffffffffda RBX: 00007fca219d5fa0 RCX: 00007fca2178ec29
[  754.679374][T17129] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000007ffe
[  754.679391][T17129] RBP: 00007fca21811e41 R08: 0000000000000000 R09: 0000000000000000
[  754.679409][T17129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  754.679426][T17129] R13: 00007fca219d6038 R14: 00007fca219d5fa0 R15: 00007fff52ab8668
[  754.679463][T17129]  </TASK>
[  755.021957][T17134] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  756.504314][T17155] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  756.524507][T17156] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  756.539633][T17157] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  757.139054][T17167] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  757.157158][T17166] FAULT_INJECTION: forcing a failure.
[  757.157158][T17166] name failslab, interval 1, probability 0, space 0, times 0
[  757.175476][T17166] CPU: 0 UID: 0 PID: 17166 Comm: syz.3.2608 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  757.175519][T17166] Tainted: [U]=USER
[  757.175529][T17166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  757.175545][T17166] Call Trace:
[  757.175555][T17166]  <TASK>
[  757.175567][T17166]  dump_stack_lvl+0x16c/0x1f0
[  757.175612][T17166]  should_fail_ex+0x512/0x640
[  757.175659][T17166]  should_failslab+0xc2/0x120
[  757.175698][T17166]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  757.175732][T17166]  ? skb_clone+0x190/0x3f0
[  757.175776][T17166]  skb_clone+0x190/0x3f0
[  757.175814][T17166]  netlink_deliver_tap+0xabd/0xd30
[  757.175867][T17166]  netlink_unicast+0x71f/0x870
[  757.175913][T17166]  ? __pfx_netlink_unicast+0x10/0x10
[  757.175952][T17166]  ? idr_get_next+0xec/0x150
[  757.176000][T17166]  ctrl_getfamily+0x40a/0x540
[  757.176031][T17166]  ? __pfx_ctrl_getfamily+0x10/0x10
[  757.176061][T17166]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  757.176091][T17166]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  757.176130][T17166]  genl_family_rcv_msg_doit+0x209/0x2f0
[  757.176162][T17166]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  757.176192][T17166]  ? genl_get_cmd+0x194/0x580
[  757.176229][T17166]  ? __radix_tree_lookup+0x21f/0x2c0
[  757.176271][T17166]  genl_rcv_msg+0x55c/0x800
[  757.176305][T17166]  ? __pfx_genl_rcv_msg+0x10/0x10
[  757.176334][T17166]  ? __pfx_ctrl_getfamily+0x10/0x10
[  757.176377][T17166]  netlink_rcv_skb+0x155/0x420
[  757.176416][T17166]  ? __pfx_genl_rcv_msg+0x10/0x10
[  757.176447][T17166]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  757.176502][T17166]  ? netlink_deliver_tap+0x1ae/0xd30
[  757.176547][T17166]  genl_rcv+0x28/0x40
[  757.176571][T17166]  netlink_unicast+0x5aa/0x870
[  757.176616][T17166]  ? __pfx_netlink_unicast+0x10/0x10
[  757.176656][T17166]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  757.176707][T17166]  netlink_sendmsg+0x8d1/0xdd0
[  757.176754][T17166]  ? __pfx_netlink_sendmsg+0x10/0x10
[  757.176798][T17166]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  757.176840][T17166]  __sys_sendto+0x4a3/0x520
[  757.176876][T17166]  ? __pfx___sys_sendto+0x10/0x10
[  757.176921][T17166]  ? fd_install+0x225/0x750
[  757.176967][T17166]  ? __pfx___sys_socket+0x10/0x10
[  757.176999][T17166]  ? xfd_validate_state+0x61/0x180
[  757.177046][T17166]  __x64_sys_sendto+0xe0/0x1c0
[  757.177079][T17166]  ? do_syscall_64+0x91/0x4c0
[  757.177117][T17166]  ? lockdep_hardirqs_on+0x7c/0x110
[  757.177154][T17166]  do_syscall_64+0xcd/0x4c0
[  757.177197][T17166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  757.177223][T17166] RIP: 0033:0x7f35cef90abc
[  757.177245][T17166] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  757.177271][T17166] RSP: 002b:00007f35cfef4ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  757.177296][T17166] RAX: ffffffffffffffda RBX: 00007f35cfef4fc0 RCX: 00007f35cef90abc
[  757.177314][T17166] RDX: 0000000000000028 RSI: 00007f35cfef5010 RDI: 0000000000000003
[  757.177331][T17166] RBP: 0000000000000000 R08: 00007f35cfef4f14 R09: 000000000000000c
[  757.177348][T17166] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  757.177364][T17166] R13: 00007f35cfef4f68 R14: 00007f35cfef5010 R15: 0000000000000000
[  757.177403][T17166]  </TASK>
[  760.117861][T15537] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  760.128217][T15537] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  760.138213][T15537] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  760.147292][T15537] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  760.155054][T15537] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  760.705224][T17217] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  760.734128][T17200] chnl_net:caif_netlink_parms(): no params data found
[  760.874801][T17200] bridge0: port 1(bridge_slave_0) entered blocking state
[  760.890039][T17200] bridge0: port 1(bridge_slave_0) entered disabled state
[  760.906612][T17200] bridge_slave_0: entered allmulticast mode
[  760.917702][T17200] bridge_slave_0: entered promiscuous mode
[  760.928053][T17200] bridge0: port 2(bridge_slave_1) entered blocking state
[  761.012767][T17200] bridge0: port 2(bridge_slave_1) entered disabled state
[  761.022819][T17200] bridge_slave_1: entered allmulticast mode
[  761.039193][T17200] bridge_slave_1: entered promiscuous mode
[  761.178690][T17200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  761.213779][T17200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  761.218790][T17222] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input56
[  761.399852][T17200] team0: Port device team_slave_0 added
[  761.414371][T17200] team0: Port device team_slave_1 added
[  761.426917][T17227] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  761.468406][T17200] batman_adv: batadv0: Adding interface: batadv_slave_0
[  761.475647][T17200] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  761.507401][T17200] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  761.527505][T17200] batman_adv: batadv0: Adding interface: batadv_slave_1
[  761.535922][T17200] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  761.567963][T17200] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  761.733612][T17200] hsr_slave_0: entered promiscuous mode
[  761.740231][T17200] hsr_slave_1: entered promiscuous mode
[  761.747934][T17200] debugfs: 'hsr0' already exists in 'hsr'
[  761.753816][T17200] Cannot create hsr debugfs directory
[  762.234272][T15537] Bluetooth: hci6: command tx timeout
[  762.341151][T17236] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  764.292463][T17274] EXT4-fs error (device sda1): xattr_find_entry:333: inode #90: comm dhcpcd: corrupted xattr entries
[  764.316954][T15537] Bluetooth: hci6: command tx timeout
[  764.335545][T17277] EXT4-fs error (device sda1): xattr_find_entry:333: inode #90: comm dhcpcd: corrupted xattr entries
[  764.371622][T17280] EXT4-fs error (device sda1): xattr_find_entry:333: inode #90: comm dhcpcd: corrupted xattr entries
[  764.998888][T17296] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  765.062706][T17299] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  765.644288][T17308] cougar: G6 mapped to space
[  766.394543][T15537] Bluetooth: hci6: command tx timeout
[  768.410807][T17344] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  768.477138][T15537] Bluetooth: hci6: command tx timeout
[  769.758297][T17360] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  771.028169][   T30] audit: type=1804 audit(4294967303.846:20): pid=17373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2654" name="/newroot/140/file0" dev="tmpfs" ino=751 res=1 errno=0
[  771.086106][   T30] audit: type=1804 audit(4294967303.876:21): pid=17373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2654" name="/newroot/140/file0" dev="tmpfs" ino=751 res=1 errno=0
[  771.493536][T17376] svc: failed to register nfsdv3 RPC service (errno 111).
[  771.519584][T17376] svc: failed to register nfsaclv3 RPC service (errno 111).
[  772.842222][T17392] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  773.774667][T17408] openvswitch: ovs_: Dropping previously announced user features
[  773.842227][T17410] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  775.577632][T17436] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2669'.
[  776.709432][T17452] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  776.715520][T17452] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  776.723000][T17452] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  776.729027][T17452] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  776.763106][T17452] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  776.775735][T17452] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  776.789386][T17452] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  776.820449][T17452] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  778.730070][T15537] Bluetooth: hci1: command 0x0c1a tx timeout
[  778.736228][T15899] Bluetooth: hci2: command 0x0406 tx timeout
[  778.802533][T15537] Bluetooth: hci6: command 0x0c1a tx timeout
[  778.809554][T15899] Bluetooth: hci5: command 0x0c1a tx timeout
[  778.815568][T16934] Bluetooth: hci3: command 0x0c1a tx timeout
[  778.823591][T15899] Bluetooth: hci4: command 0x0c1a tx timeout
[  779.521331][T17489] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:3: corrupted xattr entries
[  780.101527][T17490] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  781.102374][T17482] Bluetooth: hci6: command 0x0c1a tx timeout
[  781.942125][T17513] openvswitch: ovs_: Dropping previously announced user features
[  782.030913][T15522] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  782.044475][T15522] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  782.054100][T15522] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  782.063380][T15522] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  782.074867][T15522] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  782.398582][T17518] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  782.433158][T17514] chnl_net:caif_netlink_parms(): no params data found
[  782.675608][T17514] bridge0: port 1(bridge_slave_0) entered blocking state
[  782.694243][T17514] bridge0: port 1(bridge_slave_0) entered disabled state
[  782.716135][T17514] bridge_slave_0: entered allmulticast mode
[  782.732587][T17514] bridge_slave_0: entered promiscuous mode
[  782.746543][T17514] bridge0: port 2(bridge_slave_1) entered blocking state
[  782.755540][T17514] bridge0: port 2(bridge_slave_1) entered disabled state
[  782.771397][T17514] bridge_slave_1: entered allmulticast mode
[  782.779314][T17514] bridge_slave_1: entered promiscuous mode
[  782.931173][T17514] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  782.954977][T17514] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  783.058888][T17514] team0: Port device team_slave_0 added
[  783.078075][T17514] team0: Port device team_slave_1 added
[  783.093405][T17532] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  783.127791][T15522] Bluetooth: hci6: command 0x0c1a tx timeout
[  783.198375][T17514] batman_adv: batadv0: Adding interface: batadv_slave_0
[  783.208858][T17514] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  783.239674][T17514] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  783.392580][T17514] batman_adv: batadv0: Adding interface: batadv_slave_1
[  783.399725][T17514] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  783.491387][T17514] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  784.026912][T17514] hsr_slave_0: entered promiscuous mode
[  784.036048][T17514] hsr_slave_1: entered promiscuous mode
[  784.042475][T17514] debugfs: 'hsr0' already exists in 'hsr'
[  784.048974][T17514] Cannot create hsr debugfs directory
[  784.224399][T15522] Bluetooth: hci7: command tx timeout
[  786.324802][T15522] Bluetooth: hci7: command tx timeout
[  786.886759][T17581] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  786.940422][T17583] openvswitch: ovs_: Dropping previously announced user features
[  788.408662][T15522] Bluetooth: hci7: command tx timeout
[  789.143621][T17611] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  789.169185][T17608] netlink: 93 bytes leftover after parsing attributes in process `syz.3.2707'.
[  789.193475][T17608] kfence: disabled
[  790.385245][T17628] random: crng reseeded on system resumption
[  790.486892][T15522] Bluetooth: hci7: command tx timeout
[  791.902640][T17642] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input57
[  792.659196][T17657] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  794.830609][T17696] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  795.365923][T17701] netlink: 'syz.3.2726': attribute type 12 has an invalid length.
[  795.377090][T17701] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2726'.
[  795.838655][T17706] openvswitch: ovs_: Dropping previously announced user features
[  798.293639][T17734] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  798.698287][T17745] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  799.479692][T17747] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1257: comm udevd: corrupted xattr entries
[  799.512861][T17747] udevd[17747]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[  800.442797][T17758] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  800.461789][T17759] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  800.634281][T17762] random: crng reseeded on system resumption
[  801.015108][T17776] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  801.030915][T17772] FAULT_INJECTION: forcing a failure.
[  801.030915][T17772] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  801.044779][T17772] CPU: 1 UID: 0 PID: 17772 Comm: syz.3.2744 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  801.044803][T17772] Tainted: [U]=USER
[  801.044809][T17772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  801.044818][T17772] Call Trace:
[  801.044824][T17772]  <TASK>
[  801.044830][T17772]  dump_stack_lvl+0x16c/0x1f0
[  801.044857][T17772]  should_fail_ex+0x512/0x640
[  801.044882][T17772]  _copy_to_iter+0x29f/0x1710
[  801.044900][T17772]  ? __pfx___skb_try_recv_datagram+0x10/0x10
[  801.044920][T17772]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  801.044938][T17772]  ? kasan_quarantine_put+0x10a/0x240
[  801.044956][T17772]  ? __pfx__copy_to_iter+0x10/0x10
[  801.044974][T17772]  ? __skb_recv_datagram+0x1b2/0x220
[  801.044994][T17772]  ? __pfx___skb_recv_datagram+0x10/0x10
[  801.045016][T17772]  simple_copy_to_iter+0x46/0x90
[  801.045035][T17772]  __skb_datagram_iter+0x129/0x900
[  801.045051][T17772]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  801.045070][T17772]  ? skb_recv_datagram+0x88/0xc0
[  801.045090][T17772]  skb_copy_datagram_iter+0x40/0x50
[  801.045109][T17772]  netlink_recvmsg+0x27e/0xa90
[  801.045131][T17772]  ? __pfx_netlink_recvmsg+0x10/0x10
[  801.045151][T17772]  ? __fget_files+0x204/0x3c0
[  801.045168][T17772]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  801.045187][T17772]  sock_recvmsg+0x1f6/0x250
[  801.045204][T17772]  __sys_recvfrom+0x203/0x310
[  801.045231][T17772]  ? __pfx___sys_recvfrom+0x10/0x10
[  801.045256][T17772]  ? fd_install+0x225/0x750
[  801.045278][T17772]  ? __pfx___sys_socket+0x10/0x10
[  801.045295][T17772]  ? xfd_validate_state+0x61/0x180
[  801.045319][T17772]  __x64_sys_recvfrom+0xe0/0x1c0
[  801.045339][T17772]  ? do_syscall_64+0x91/0x4c0
[  801.045360][T17772]  ? lockdep_hardirqs_on+0x7c/0x110
[  801.045380][T17772]  do_syscall_64+0xcd/0x4c0
[  801.045402][T17772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  801.045417][T17772] RIP: 0033:0x7f35cef909f4
[  801.045429][T17772] Code: 89 4c 24 1c e8 ed 5f 02 00 44 8b 54 24 1c 8b 3c 24 45 31 c9 89 c5 48 8b 54 24 10 48 8b 74 24 08 45 31 c0 b8 2d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 04 24 e8 39 60 02 00 48 8b 04
[  801.045444][T17772] RSP: 002b:00007f35cfef4ed0 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
[  801.045458][T17772] RAX: ffffffffffffffda RBX: 00007f35cfef4fc0 RCX: 00007f35cef909f4
[  801.045469][T17772] RDX: 0000000000001000 RSI: 00007f35cfef5010 RDI: 0000000000000003
[  801.045478][T17772] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  801.045487][T17772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[  801.045496][T17772] R13: 00007f35cfef4f68 R14: 00007f35cfef5010 R15: 0000000000000000
[  801.045514][T17772]  </TASK>
[  801.368639][T17777] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input58
[  803.616896][T17811] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  803.629017][T17810] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  803.941083][T17815] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input59
[  804.101130][T17812] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  804.744258][T17822] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1257: comm udevd: corrupted xattr entries
[  804.763698][T17822] udevd[17822]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[  805.128278][T15522] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7
[  805.870868][T17839] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  806.047729][T17848] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  806.355506][T15522] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  807.986514][T17884] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  808.902427][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  808.909710][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  809.603033][T17908] FAULT_INJECTION: forcing a failure.
[  809.603033][T17908] name failslab, interval 1, probability 0, space 0, times 0
[  809.618669][T17908] CPU: 1 UID: 0 PID: 17908 Comm: syz.3.2771 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  809.618709][T17908] Tainted: [U]=USER
[  809.618718][T17908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  809.618731][T17908] Call Trace:
[  809.618741][T17908]  <TASK>
[  809.618751][T17908]  dump_stack_lvl+0x16c/0x1f0
[  809.618793][T17908]  should_fail_ex+0x512/0x640
[  809.618831][T17908]  ? fs_reclaim_acquire+0xae/0x150
[  809.618858][T17908]  should_failslab+0xc2/0x120
[  809.618878][T17908]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  809.618904][T17908]  ? security_inode_alloc+0x3b/0x2b0
[  809.618925][T17908]  security_inode_alloc+0x3b/0x2b0
[  809.618942][T17908]  inode_init_always_gfp+0xce4/0x1030
[  809.618962][T17908]  alloc_inode+0x86/0x240
[  809.618984][T17908]  new_inode+0x22/0x1c0
[  809.619005][T17908]  __debugfs_create_file+0x11c/0x6b0
[  809.619025][T17908]  debugfs_create_file_full+0x41/0x60
[  809.619044][T17908]  kvm_dev_ioctl+0x153f/0x1af0
[  809.619066][T17908]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  809.619087][T17908]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  809.619102][T17908]  __x64_sys_ioctl+0x18b/0x210
[  809.619125][T17908]  do_syscall_64+0xcd/0x4c0
[  809.619148][T17908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  809.619163][T17908] RIP: 0033:0x7f35cef8ec29
[  809.619175][T17908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  809.619190][T17908] RSP: 002b:00007f35cfed5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  809.619205][T17908] RAX: ffffffffffffffda RBX: 00007f35cf1d6090 RCX: 00007f35cef8ec29
[  809.619215][T17908] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009
[  809.619223][T17908] RBP: 00007f35cf011e41 R08: 0000000000000000 R09: 0000000000000000
[  809.619232][T17908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  809.619240][T17908] R13: 00007f35cf1d6128 R14: 00007f35cf1d6090 R15: 00007fff3be29888
[  809.619259][T17908]  </TASK>
[  809.621952][T17908] debugfs: out of free dentries, can not create file 'pages_2m'
[  810.278015][T17916] openvswitch: ovs_: Dropping previously announced user features
[  810.578628][T17919] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input60
[  810.957957][T17925] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  811.268603][T17931] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  811.281541][T17926] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  812.452030][T17945] futex_wake_op: syz.0.2781 tries to shift op by -9; fix this program
[  813.099350][T17960] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  813.259951][T17966] bridge0: port 3(dummy0) entered blocking state
[  813.266421][T17966] bridge0: port 3(dummy0) entered disabled state
[  813.295311][T17966] dummy0: entered allmulticast mode
[  813.306359][T17966] dummy0: entered promiscuous mode
[  813.314960][T17966] bridge0: port 3(dummy0) entered blocking state
[  813.321480][T17966] bridge0: port 3(dummy0) entered forwarding state
[  814.063714][T17975] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  814.406474][T17973] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  814.875741][T17984] FAULT_INJECTION: forcing a failure.
[  814.875741][T17984] name failslab, interval 1, probability 0, space 0, times 0
[  814.888703][T17984] CPU: 1 UID: 0 PID: 17984 Comm: syz.3.2789 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  814.888746][T17984] Tainted: [U]=USER
[  814.888756][T17984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  814.888771][T17984] Call Trace:
[  814.888780][T17984]  <TASK>
[  814.888791][T17984]  dump_stack_lvl+0x16c/0x1f0
[  814.888834][T17984]  should_fail_ex+0x512/0x640
[  814.888874][T17984]  ? fs_reclaim_acquire+0xae/0x150
[  814.888916][T17984]  should_failslab+0xc2/0x120
[  814.888951][T17984]  __kmalloc_cache_noprof+0x6a/0x3e0
[  814.888978][T17984]  ? find_held_lock+0x2b/0x80
[  814.889004][T17984]  ? tomoyo_open_control+0x56/0xa30
[  814.889036][T17984]  tomoyo_open_control+0x56/0xa30
[  814.889067][T17984]  do_dentry_open+0x97f/0x1530
[  814.889101][T17984]  ? __pfx_tomoyo_open+0x10/0x10
[  814.889144][T17984]  vfs_open+0x82/0x3f0
[  814.889183][T17984]  path_openat+0x1de4/0x2cb0
[  814.889227][T17984]  ? __pfx_path_openat+0x10/0x10
[  814.889268][T17984]  do_filp_open+0x20b/0x470
[  814.889300][T17984]  ? __pfx_do_filp_open+0x10/0x10
[  814.889357][T17984]  ? alloc_fd+0x471/0x7d0
[  814.889396][T17984]  do_sys_openat2+0x11b/0x1d0
[  814.889434][T17984]  ? __pfx_do_sys_openat2+0x10/0x10
[  814.889495][T17984]  __x64_sys_openat+0x174/0x210
[  814.889520][T17984]  ? __pfx___x64_sys_openat+0x10/0x10
[  814.889560][T17984]  do_syscall_64+0xcd/0x4c0
[  814.889603][T17984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  814.889629][T17984] RIP: 0033:0x7f35cef8ec29
[  814.889650][T17984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  814.889675][T17984] RSP: 002b:00007f35cfef6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  814.889700][T17984] RAX: ffffffffffffffda RBX: 00007f35cf1d5fa0 RCX: 00007f35cef8ec29
[  814.889719][T17984] RDX: 00000000000c0802 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  814.889736][T17984] RBP: 00007f35cf011e41 R08: 0000000000000000 R09: 0000000000000000
[  814.889753][T17984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  814.889770][T17984] R13: 00007f35cf1d6038 R14: 00007f35cf1d5fa0 R15: 00007fff3be29888
[  814.889806][T17984]  </TASK>
[  815.197902][T17992] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2790'.
[  815.430168][T17996] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  815.447056][T17997] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  815.470574][T17995] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2791'.
[  815.525631][T17999] openvswitch: ovs_: Dropping previously announced user features
[  815.755042][T18004] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  815.770744][T18003] FAULT_INJECTION: forcing a failure.
[  815.770744][T18003] name failslab, interval 1, probability 0, space 0, times 0
[  815.783580][T18003] CPU: 1 UID: 0 PID: 18003 Comm: syz.3.2794 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  815.783605][T18003] Tainted: [U]=USER
[  815.783610][T18003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  815.783619][T18003] Call Trace:
[  815.783624][T18003]  <TASK>
[  815.783631][T18003]  dump_stack_lvl+0x16c/0x1f0
[  815.783660][T18003]  should_fail_ex+0x512/0x640
[  815.783701][T18003]  should_failslab+0xc2/0x120
[  815.783733][T18003]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  815.783757][T18003]  ? skb_clone+0x190/0x3f0
[  815.783781][T18003]  skb_clone+0x190/0x3f0
[  815.783802][T18003]  netlink_deliver_tap+0xabd/0xd30
[  815.783827][T18003]  netlink_unicast+0x64c/0x870
[  815.783851][T18003]  ? __pfx_netlink_unicast+0x10/0x10
[  815.783872][T18003]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  815.783899][T18003]  netlink_sendmsg+0x8d1/0xdd0
[  815.783923][T18003]  ? __pfx_netlink_sendmsg+0x10/0x10
[  815.783946][T18003]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  815.783965][T18003]  __sys_sendto+0x4a3/0x520
[  815.783985][T18003]  ? __pfx___sys_sendto+0x10/0x10
[  815.784009][T18003]  ? fd_install+0x225/0x750
[  815.784033][T18003]  ? __pfx___sys_socket+0x10/0x10
[  815.784050][T18003]  ? xfd_validate_state+0x61/0x180
[  815.784073][T18003]  __x64_sys_sendto+0xe0/0x1c0
[  815.784091][T18003]  ? do_syscall_64+0x91/0x4c0
[  815.784112][T18003]  ? lockdep_hardirqs_on+0x7c/0x110
[  815.784132][T18003]  do_syscall_64+0xcd/0x4c0
[  815.784154][T18003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  815.784169][T18003] RIP: 0033:0x7f35cef90abc
[  815.784181][T18003] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  815.784195][T18003] RSP: 002b:00007f35cfef4ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  815.784209][T18003] RAX: ffffffffffffffda RBX: 00007f35cfef4fc0 RCX: 00007f35cef90abc
[  815.784219][T18003] RDX: 0000000000000024 RSI: 00007f35cfef5010 RDI: 0000000000000003
[  815.784228][T18003] RBP: 0000000000000000 R08: 00007f35cfef4f14 R09: 000000000000000c
[  815.784237][T18003] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  815.784245][T18003] R13: 00007f35cfef4f68 R14: 00007f35cfef5010 R15: 0000000000000000
[  815.784264][T18003]  </TASK>
[  815.785370][T18005] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  816.539674][T18033] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  816.793860][T18039] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  816.831603][T18040] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  817.476214][T18052] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  818.476675][T18058] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  818.559084][T18060] openvswitch: ovs_: Dropping previously announced user features
[  819.089914][T18065] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input61
[  819.880906][T15522] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  819.890202][T15522] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  819.903202][T15522] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  819.929137][T15522] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  819.944104][T15522] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  820.267229][T18082] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  820.314286][T18074] chnl_net:caif_netlink_parms(): no params data found
[  820.712552][T18074] bridge0: port 1(bridge_slave_0) entered blocking state
[  820.727955][T18074] bridge0: port 1(bridge_slave_0) entered disabled state
[  820.735336][T18074] bridge_slave_0: entered allmulticast mode
[  820.786540][T18074] bridge_slave_0: entered promiscuous mode
[  820.920216][T18074] bridge0: port 2(bridge_slave_1) entered blocking state
[  820.941504][T18074] bridge0: port 2(bridge_slave_1) entered disabled state
[  820.950558][T18074] bridge_slave_1: entered allmulticast mode
[  820.960919][T18074] bridge_slave_1: entered promiscuous mode
[  820.998747][T18091] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input62
[  821.100701][T18074] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  821.125026][T18074] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  821.178501][T18074] team0: Port device team_slave_0 added
[  821.189859][T18074] team0: Port device team_slave_1 added
[  821.244883][T18074] batman_adv: batadv0: Adding interface: batadv_slave_0
[  821.264429][T18074] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  821.316009][T18074] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  821.344925][T18074] batman_adv: batadv0: Adding interface: batadv_slave_1
[  821.355077][T18074] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  821.396439][T18074] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  821.727879][T18074] hsr_slave_0: entered promiscuous mode
[  821.769730][T18074] hsr_slave_1: entered promiscuous mode
[  821.782135][T18074] debugfs: 'hsr0' already exists in 'hsr'
[  821.797004][T18074] Cannot create hsr debugfs directory
[  822.022668][T15522] Bluetooth: hci8: command tx timeout
[  822.465992][T18109] openvswitch: ovs_: Dropping previously announced user features
[  823.662492][T18137] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  823.769955][T18144] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  824.103291][T17482] Bluetooth: hci8: command tx timeout
[  824.481170][T18155] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  824.519419][T18154] FAULT_INJECTION: forcing a failure.
[  824.519419][T18154] name failslab, interval 1, probability 0, space 0, times 0
[  824.532269][T18154] CPU: 1 UID: 0 PID: 18154 Comm: syz.3.2826 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  824.532310][T18154] Tainted: [U]=USER
[  824.532319][T18154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  824.532335][T18154] Call Trace:
[  824.532346][T18154]  <TASK>
[  824.532357][T18154]  dump_stack_lvl+0x16c/0x1f0
[  824.532402][T18154]  should_fail_ex+0x512/0x640
[  824.532440][T18154]  ? __kmalloc_noprof+0xbf/0x510
[  824.532475][T18154]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  824.532514][T18154]  should_failslab+0xc2/0x120
[  824.532550][T18154]  __kmalloc_noprof+0xd2/0x510
[  824.532579][T18154]  ? __pfx___mutex_trylock_common+0x10/0x10
[  824.532624][T18154]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  824.532663][T18154]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  824.532695][T18154]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  824.532723][T18154]  ? genl_get_cmd+0x194/0x580
[  824.532761][T18154]  ? __radix_tree_lookup+0x21f/0x2c0
[  824.532803][T18154]  genl_rcv_msg+0x55c/0x800
[  824.532835][T18154]  ? __pfx_genl_rcv_msg+0x10/0x10
[  824.532864][T18154]  ? __pfx_ctrl_getfamily+0x10/0x10
[  824.532907][T18154]  netlink_rcv_skb+0x155/0x420
[  824.532946][T18154]  ? __pfx_genl_rcv_msg+0x10/0x10
[  824.532976][T18154]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  824.533031][T18154]  ? netlink_deliver_tap+0x1ae/0xd30
[  824.533071][T18154]  genl_rcv+0x28/0x40
[  824.533094][T18154]  netlink_unicast+0x5aa/0x870
[  824.533138][T18154]  ? __pfx_netlink_unicast+0x10/0x10
[  824.533177][T18154]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  824.533226][T18154]  netlink_sendmsg+0x8d1/0xdd0
[  824.533268][T18154]  ? __pfx_netlink_sendmsg+0x10/0x10
[  824.533312][T18154]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  824.533348][T18154]  __sys_sendto+0x4a3/0x520
[  824.533385][T18154]  ? __pfx___sys_sendto+0x10/0x10
[  824.533433][T18154]  ? fd_install+0x225/0x750
[  824.533480][T18154]  ? xfd_validate_state+0x61/0x180
[  824.533531][T18154]  __x64_sys_sendto+0xe0/0x1c0
[  824.533568][T18154]  ? do_syscall_64+0x91/0x4c0
[  824.533608][T18154]  ? lockdep_hardirqs_on+0x7c/0x110
[  824.533645][T18154]  do_syscall_64+0xcd/0x4c0
[  824.533686][T18154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  824.533711][T18154] RIP: 0033:0x7f35cef90abc
[  824.533733][T18154] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  824.533759][T18154] RSP: 002b:00007f35cfef4ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  824.533785][T18154] RAX: ffffffffffffffda RBX: 00007f35cfef4fc0 RCX: 00007f35cef90abc
[  824.533804][T18154] RDX: 0000000000000028 RSI: 00007f35cfef5010 RDI: 0000000000000003
[  824.533821][T18154] RBP: 0000000000000000 R08: 00007f35cfef4f14 R09: 000000000000000c
[  824.533838][T18154] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  824.533855][T18154] R13: 00007f35cfef4f68 R14: 00007f35cfef5010 R15: 0000000000000000
[  824.533893][T18154]  </TASK>
[  825.899405][T18176] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  826.179438][T18179] Format for adding new device is "id port_count num_queues" (uint uint unit).
[  826.184395][T17482] Bluetooth: hci8: command tx timeout
[  827.477056][T18193] bond0: option all_slaves_active: invalid value (
)
[  828.265340][T17482] Bluetooth: hci8: command tx timeout
[  828.746798][T18203] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input63
[  829.545134][T18215] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  830.532155][T18224] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  830.562247][T18222] FAULT_INJECTION: forcing a failure.
[  830.562247][T18222] name failslab, interval 1, probability 0, space 0, times 0
[  830.588534][T18222] CPU: 1 UID: 0 PID: 18222 Comm: syz.3.2840 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  830.588575][T18222] Tainted: [U]=USER
[  830.588584][T18222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  830.588600][T18222] Call Trace:
[  830.588610][T18222]  <TASK>
[  830.588620][T18222]  dump_stack_lvl+0x16c/0x1f0
[  830.588663][T18222]  should_fail_ex+0x512/0x640
[  830.588702][T18222]  ? fs_reclaim_acquire+0xae/0x150
[  830.588744][T18222]  should_failslab+0xc2/0x120
[  830.588779][T18222]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  830.588812][T18222]  ? security_inode_alloc+0x3b/0x2b0
[  830.588848][T18222]  security_inode_alloc+0x3b/0x2b0
[  830.588879][T18222]  inode_init_always_gfp+0xce4/0x1030
[  830.588915][T18222]  alloc_inode+0x86/0x240
[  830.588961][T18222]  new_inode+0x22/0x1c0
[  830.589003][T18222]  __debugfs_create_file+0x11c/0x6b0
[  830.589038][T18222]  debugfs_create_file_full+0x41/0x60
[  830.589073][T18222]  kvm_dev_ioctl+0x153f/0x1af0
[  830.589111][T18222]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  830.589152][T18222]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  830.589181][T18222]  __x64_sys_ioctl+0x18b/0x210
[  830.589225][T18222]  do_syscall_64+0xcd/0x4c0
[  830.589267][T18222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  830.589293][T18222] RIP: 0033:0x7f35cef8ec29
[  830.589315][T18222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  830.589340][T18222] RSP: 002b:00007f35cfed5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  830.589365][T18222] RAX: ffffffffffffffda RBX: 00007f35cf1d6090 RCX: 00007f35cef8ec29
[  830.589382][T18222] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009
[  830.589399][T18222] RBP: 00007f35cf011e41 R08: 0000000000000000 R09: 0000000000000000
[  830.589415][T18222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  830.589430][T18222] R13: 00007f35cf1d6128 R14: 00007f35cf1d6090 R15: 00007fff3be29888
[  830.589468][T18222]  </TASK>
[  830.589541][T18222] debugfs: out of free dentries, can not create file 'pages_2m'
[  830.818850][T18230] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  831.455590][T18237] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:2: corrupted xattr entries
[  831.883982][T18246] openvswitch: ovs_: Dropping previously announced user features
[  833.591775][T18267] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input64
[  833.792320][T18271] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  833.888019][T18276] openvswitch: ovs_: Dropping previously announced user features
[  834.150254][T18278] netlink: 672 bytes leftover after parsing attributes in process `syz.3.2856'.
[  835.397218][T18298] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  836.069440][T18305] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input65
[  836.153980][T18307] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  837.273827][T18317] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  837.304887][T18313] can: request_module (can-proto-0) failed.
[  837.347460][T18323] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  837.515188][T18327] FAULT_INJECTION: forcing a failure.
[  837.515188][T18327] name failslab, interval 1, probability 0, space 0, times 0
[  837.528700][T18327] CPU: 1 UID: 0 PID: 18327 Comm: syz.3.2870 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  837.528743][T18327] Tainted: [U]=USER
[  837.528752][T18327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  837.528770][T18327] Call Trace:
[  837.528780][T18327]  <TASK>
[  837.528792][T18327]  dump_stack_lvl+0x16c/0x1f0
[  837.528837][T18327]  should_fail_ex+0x512/0x640
[  837.528877][T18327]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  837.528918][T18327]  should_failslab+0xc2/0x120
[  837.528954][T18327]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  837.528990][T18327]  ? drm_atomic_get_connector_state+0x231/0x740
[  837.529029][T18327]  krealloc_noprof+0x1ff/0x3a0
[  837.529065][T18327]  drm_atomic_get_connector_state+0x231/0x740
[  837.529105][T18327]  drm_atomic_add_affected_connectors+0x2e0/0x3f0
[  837.529142][T18327]  ? __pfx_drm_atomic_add_affected_connectors+0x10/0x10
[  837.529173][T18327]  ? ww_mutex_lock+0x37/0x160
[  837.529212][T18327]  ? modeset_lock+0x114/0x6e0
[  837.529244][T18327]  __drm_atomic_helper_set_config+0x5ef/0xea0
[  837.529282][T18327]  ? __pfx___drm_atomic_helper_set_config+0x10/0x10
[  837.529320][T18327]  ? drm_client_rotation+0x4da/0x6a0
[  837.529359][T18327]  drm_client_modeset_commit_atomic+0x53d/0x7e0
[  837.529414][T18327]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  837.529449][T18327]  ? rcu_is_watching+0x12/0xc0
[  837.529516][T18327]  drm_client_modeset_commit_locked+0x14d/0x580
[  837.529555][T18327]  drm_client_modeset_commit+0x4f/0x80
[  837.529586][T18327]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[  837.529619][T18327]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  837.529659][T18327]  drm_fbdev_client_restore+0x2c/0x40
[  837.529698][T18327]  drm_client_dev_restore+0x1f6/0x2a0
[  837.529735][T18327]  drm_release+0x2c4/0x360
[  837.529768][T18327]  ? __pfx_drm_release+0x10/0x10
[  837.529796][T18327]  __fput+0x3ff/0xb70
[  837.529839][T18327]  task_work_run+0x14d/0x240
[  837.529881][T18327]  ? __pfx_task_work_run+0x10/0x10
[  837.529921][T18327]  ? __pfx___do_sys_close_range+0x10/0x10
[  837.529963][T18327]  exit_to_user_mode_loop+0xeb/0x110
[  837.530002][T18327]  do_syscall_64+0x41c/0x4c0
[  837.530045][T18327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.530071][T18327] RIP: 0033:0x7f35cef8ec29
[  837.530095][T18327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  837.530120][T18327] RSP: 002b:00007f35cfef6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  837.530146][T18327] RAX: 0000000000000000 RBX: 00007f35cf1d5fa0 RCX: 00007f35cef8ec29
[  837.530164][T18327] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  837.530179][T18327] RBP: 00007f35cf011e41 R08: 0000000000000000 R09: 0000000000000000
[  837.530196][T18327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  837.530213][T18327] R13: 00007f35cf1d6038 R14: 00007f35cf1d5fa0 R15: 00007fff3be29888
[  837.530253][T18327]  </TASK>
[  838.193765][T18338] netlink: 'syz.3.2874': attribute type 64 has an invalid length.
[  838.209939][T18338] netlink: 74 bytes leftover after parsing attributes in process `syz.3.2874'.
[  838.465907][T18345] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  839.377513][T18363] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  839.490997][T18368] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  839.610200][T18371] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  839.649303][T18370] FAULT_INJECTION: forcing a failure.
[  839.649303][T18370] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  839.662809][T18370] CPU: 1 UID: 0 PID: 18370 Comm: syz.3.2881 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  839.662843][T18370] Tainted: [U]=USER
[  839.662848][T18370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  839.662858][T18370] Call Trace:
[  839.662864][T18370]  <TASK>
[  839.662870][T18370]  dump_stack_lvl+0x16c/0x1f0
[  839.662897][T18370]  should_fail_ex+0x512/0x640
[  839.662922][T18370]  should_fail_alloc_page+0xe7/0x130
[  839.662943][T18370]  prepare_alloc_pages+0x3c2/0x610
[  839.662968][T18370]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  839.662992][T18370]  ? __lock_acquire+0x62e/0x1ce0
[  839.663013][T18370]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  839.663031][T18370]  ? __lock_acquire+0x62e/0x1ce0
[  839.663059][T18370]  ? find_held_lock+0x2b/0x80
[  839.663071][T18370]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  839.663093][T18370]  ? policy_nodemask+0xea/0x4e0
[  839.663113][T18370]  alloc_pages_mpol+0x1fb/0x550
[  839.663132][T18370]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  839.663154][T18370]  ? arch_stack_walk+0xa6/0x100
[  839.663172][T18370]  ? wiphy_new_nm+0x701/0x2190
[  839.663191][T18370]  ___kmalloc_large_node+0xed/0x160
[  839.663215][T18370]  ? wiphy_new_nm+0x701/0x2190
[  839.663233][T18370]  __kmalloc_large_node_noprof+0x1c/0x70
[  839.663256][T18370]  __kmalloc_noprof.cold+0xc/0x61
[  839.663279][T18370]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[  839.663301][T18370]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[  839.663323][T18370]  wiphy_new_nm+0x701/0x2190
[  839.663344][T18370]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[  839.663366][T18370]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[  839.663387][T18370]  ieee80211_alloc_hw_nm+0x1b7a/0x2260
[  839.663416][T18370]  ? __local_bh_enable_ip+0xa4/0x120
[  839.663437][T18370]  mac80211_hwsim_new_radio+0x1d4/0x54d0
[  839.663463][T18370]  ? __asan_memset+0x23/0x50
[  839.663478][T18370]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  839.663501][T18370]  hwsim_new_radio_nl+0xb51/0x12c0
[  839.663520][T18370]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  839.663542][T18370]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  839.663559][T18370]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  839.663579][T18370]  genl_family_rcv_msg_doit+0x209/0x2f0
[  839.663597][T18370]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  839.663619][T18370]  ? bpf_lsm_capable+0x9/0x10
[  839.663632][T18370]  ? security_capable+0x7e/0x260
[  839.663647][T18370]  ? ns_capable+0xd7/0x110
[  839.663663][T18370]  genl_rcv_msg+0x55c/0x800
[  839.663681][T18370]  ? __pfx_genl_rcv_msg+0x10/0x10
[  839.663696][T18370]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  839.663719][T18370]  netlink_rcv_skb+0x155/0x420
[  839.663740][T18370]  ? __pfx_genl_rcv_msg+0x10/0x10
[  839.663756][T18370]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  839.663789][T18370]  ? netlink_deliver_tap+0x1ae/0xd30
[  839.663812][T18370]  genl_rcv+0x28/0x40
[  839.663824][T18370]  netlink_unicast+0x5aa/0x870
[  839.663857][T18370]  ? __pfx_netlink_unicast+0x10/0x10
[  839.663891][T18370]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  839.663926][T18370]  ? __lock_acquire+0xb97/0x1ce0
[  839.663967][T18370]  netlink_sendmsg+0x8d1/0xdd0
[  839.664011][T18370]  ? __pfx_netlink_sendmsg+0x10/0x10
[  839.664052][T18370]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  839.664086][T18370]  ____sys_sendmsg+0xa95/0xc70
[  839.664117][T18370]  ? copy_msghdr_from_user+0x10a/0x160
[  839.664155][T18370]  ? __pfx_____sys_sendmsg+0x10/0x10
[  839.664192][T18370]  ? __pfx_futex_wake_mark+0x10/0x10
[  839.664236][T18370]  ___sys_sendmsg+0x134/0x1d0
[  839.664275][T18370]  ? __pfx____sys_sendmsg+0x10/0x10
[  839.664360][T18370]  __sys_sendmsg+0x16d/0x220
[  839.664407][T18370]  ? __pfx___sys_sendmsg+0x10/0x10
[  839.664447][T18370]  ? __x64_sys_futex+0x1e0/0x4c0
[  839.664505][T18370]  do_syscall_64+0xcd/0x4c0
[  839.664550][T18370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.664576][T18370] RIP: 0033:0x7f35cef8ec29
[  839.664596][T18370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  839.664621][T18370] RSP: 002b:00007f35cfef6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  839.664647][T18370] RAX: ffffffffffffffda RBX: 00007f35cf1d5fa0 RCX: 00007f35cef8ec29
[  839.664665][T18370] RDX: 0000000000040050 RSI: 0000200000000300 RDI: 0000000000000001
[  839.664681][T18370] RBP: 00007f35cf011e41 R08: 0000000000000000 R09: 0000000000000000
[  839.664697][T18370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  839.664712][T18370] R13: 00007f35cf1d6038 R14: 00007f35cf1d5fa0 R15: 00007fff3be29888
[  839.664744][T18370]  </TASK>
[  840.551759][T18380] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  840.626741][T18384] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1257: comm udevd: corrupted xattr entries
[  840.661007][T18384] udevd[18384]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Structure needs cleaning
[  841.579453][T18390] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  842.618890][T18407] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  842.694464][T15522] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  842.703679][T15522] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  842.715483][T15522] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  842.724006][T15522] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  842.732026][T15522] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  843.110544][T18420] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  843.137566][T18410] chnl_net:caif_netlink_parms(): no params data found
[  843.350511][T18410] bridge0: port 1(bridge_slave_0) entered blocking state
[  843.383257][T18410] bridge0: port 1(bridge_slave_0) entered disabled state
[  843.390551][T18410] bridge_slave_0: entered allmulticast mode
[  843.423891][T18410] bridge_slave_0: entered promiscuous mode
[  843.445465][T18410] bridge0: port 2(bridge_slave_1) entered blocking state
[  843.470073][T18410] bridge0: port 2(bridge_slave_1) entered disabled state
[  843.497109][T18410] bridge_slave_1: entered allmulticast mode
[  843.519892][T18410] bridge_slave_1: entered promiscuous mode
[  843.601207][T18410] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  843.630469][T18410] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  843.647109][T18425] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  843.740573][T18410] team0: Port device team_slave_0 added
[  843.770390][T18410] team0: Port device team_slave_1 added
[  843.885445][T18410] batman_adv: batadv0: Adding interface: batadv_slave_0
[  843.897066][T18410] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  843.926453][T18410] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  843.967474][T18431] openvswitch: ovs_: Dropping previously announced user features
[  843.978110][T18410] batman_adv: batadv0: Adding interface: batadv_slave_1
[  843.992021][T18410] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  844.019990][T18410] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  844.110652][T18410] hsr_slave_0: entered promiscuous mode
[  844.128435][T18410] hsr_slave_1: entered promiscuous mode
[  844.135092][T18410] debugfs: 'hsr0' already exists in 'hsr'
[  844.140928][T18410] Cannot create hsr debugfs directory
[  844.692447][T18437] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  844.834574][T17482] Bluetooth: hci9: command tx timeout
[  844.875396][T18441] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:7: corrupted xattr entries
[  845.057224][T18436] FAULT_INJECTION: forcing a failure.
[  845.057224][T18436] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  845.071772][T18436] CPU: 0 UID: 0 PID: 18436 Comm: syz.3.2896 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  845.071812][T18436] Tainted: [U]=USER
[  845.071822][T18436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  845.071839][T18436] Call Trace:
[  845.071848][T18436]  <TASK>
[  845.071858][T18436]  dump_stack_lvl+0x16c/0x1f0
[  845.071911][T18436]  should_fail_ex+0x512/0x640
[  845.071957][T18436]  should_fail_alloc_page+0xe7/0x130
[  845.071997][T18436]  prepare_alloc_pages+0x3c2/0x610
[  845.072042][T18436]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  845.072077][T18436]  ? finish_task_switch.isra.0+0x2fa/0xc10
[  845.072108][T18436]  ? rcu_is_watching+0x12/0xc0
[  845.072136][T18436]  ? trace_sched_exit_tp+0xd1/0x120
[  845.072175][T18436]  ? __schedule+0x11a3/0x5de0
[  845.072213][T18436]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  845.072246][T18436]  ? do_raw_spin_lock+0x12c/0x2b0
[  845.072289][T18436]  ? find_held_lock+0x2b/0x80
[  845.072325][T18436]  ? __lock_acquire+0xb97/0x1ce0
[  845.072360][T18436]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  845.072400][T18436]  ? policy_nodemask+0xea/0x4e0
[  845.072439][T18436]  alloc_pages_mpol+0x1fb/0x550
[  845.072479][T18436]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  845.072524][T18436]  folio_alloc_mpol_noprof+0x36/0x2f0
[  845.072567][T18436]  shmem_alloc_folio+0x135/0x160
[  845.072596][T18436]  shmem_alloc_and_add_folio+0x499/0xc20
[  845.072635][T18436]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  845.072669][T18436]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  845.072707][T18436]  shmem_get_folio_gfp+0x67f/0x1600
[  845.072746][T18436]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  845.072781][T18436]  ? filemap_map_pages+0xf58/0x1670
[  845.072818][T18436]  shmem_fault+0x1fe/0xa30
[  845.072851][T18436]  ? __pfx_shmem_fault+0x10/0x10
[  845.072888][T18436]  ? __pfx_filemap_map_pages+0x10/0x10
[  845.072938][T18436]  ? __pfx_filemap_map_pages+0x10/0x10
[  845.072969][T18436]  __do_fault+0x10d/0x490
[  845.073007][T18436]  ? __pfx_filemap_map_pages+0x10/0x10
[  845.073038][T18436]  do_pte_missing+0xf50/0x3ba0
[  845.073067][T18436]  ? find_held_lock+0x2b/0x80
[  845.073095][T18436]  ? __handle_mm_fault+0x14fd/0x2a50
[  845.073128][T18436]  __handle_mm_fault+0x152a/0x2a50
[  845.073167][T18436]  ? __pfx___handle_mm_fault+0x10/0x10
[  845.073196][T18436]  ? __pte_offset_map_lock+0x174/0x310
[  845.073231][T18436]  ? find_held_lock+0x2b/0x80
[  845.073268][T18436]  ? follow_page_pte.constprop.0+0x5cf/0x1390
[  845.073313][T18436]  handle_mm_fault+0x589/0xd10
[  845.073344][T18436]  __get_user_pages+0x551/0x34a0
[  845.073394][T18436]  ? __pfx___get_user_pages+0x10/0x10
[  845.073444][T18436]  populate_vma_page_range+0x267/0x3f0
[  845.073488][T18436]  ? __pfx_populate_vma_page_range+0x10/0x10
[  845.073526][T18436]  ? __pfx_find_vma_intersection+0x10/0x10
[  845.073563][T18436]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  845.073596][T18436]  __mm_populate+0x1d8/0x380
[  845.073622][T18436]  ? __pfx___mm_populate+0x10/0x10
[  845.073649][T18436]  ? up_write+0x1b2/0x520
[  845.073689][T18436]  do_mlock+0x448/0x810
[  845.073719][T18436]  ? __pfx___might_resched+0x10/0x10
[  845.073748][T18436]  ? __pfx_do_mlock+0x10/0x10
[  845.073775][T18436]  ? __x64_sys_futex+0x1e0/0x4c0
[  845.073808][T18436]  ? __x64_sys_futex+0x1e9/0x4c0
[  845.073841][T18436]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  845.073881][T18436]  ? xfd_validate_state+0x61/0x180
[  845.073936][T18436]  __x64_sys_mlock+0x59/0x80
[  845.073968][T18436]  do_syscall_64+0xcd/0x4c0
[  845.074013][T18436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  845.074041][T18436] RIP: 0033:0x7f35cef8ec29
[  845.074063][T18436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  845.074090][T18436] RSP: 002b:00007f35cfed5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  845.074116][T18436] RAX: ffffffffffffffda RBX: 00007f35cf1d6090 RCX: 00007f35cef8ec29
[  845.074134][T18436] RDX: 0000000000000000 RSI: 0000000000080006 RDI: 0000000000000112
[  845.074151][T18436] RBP: 00007f35cf011e41 R08: 0000000000000000 R09: 0000000000000000
[  845.074168][T18436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  845.074185][T18436] R13: 00007f35cf1d6128 R14: 00007f35cf1d6090 R15: 00007fff3be29888
[  845.074222][T18436]  </TASK>
[  845.587212][T18447] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  845.931003][T18448] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  845.973514][T18449] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  846.312480][T18453] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  846.330079][T18451] FAULT_INJECTION: forcing a failure.
[  846.330079][T18451] name fail_futex, interval 1, probability 0, space 0, times 0
[  846.343186][T18451] CPU: 1 UID: 0 PID: 18451 Comm: syz.3.2900 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  846.343210][T18451] Tainted: [U]=USER
[  846.343215][T18451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  846.343224][T18451] Call Trace:
[  846.343230][T18451]  <TASK>
[  846.343236][T18451]  dump_stack_lvl+0x16c/0x1f0
[  846.343262][T18451]  should_fail_ex+0x512/0x640
[  846.343287][T18451]  get_futex_key+0x1d0/0x1560
[  846.343307][T18451]  ? __pfx_get_futex_key+0x10/0x10
[  846.343325][T18451]  ? select_task_rq_fair+0x4c4/0x45e0
[  846.343345][T18451]  ? __pfx_call_function_single_prep_ipi+0x10/0x10
[  846.343367][T18451]  futex_wait_setup+0x9d/0x550
[  846.343394][T18451]  __futex_wait+0x194/0x2f0
[  846.343415][T18451]  ? __pfx___futex_wait+0x10/0x10
[  846.343434][T18451]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  846.343454][T18451]  ? lockdep_hardirqs_on+0x7c/0x110
[  846.343475][T18451]  ? __pfx_futex_wake_mark+0x10/0x10
[  846.343499][T18451]  ? futex_private_hash_put+0x176/0x300
[  846.343518][T18451]  ? futex_private_hash_put+0x18a/0x300
[  846.343544][T18451]  futex_wait+0xe8/0x380
[  846.343565][T18451]  ? __pfx_futex_wait+0x10/0x10
[  846.343597][T18451]  do_futex+0x229/0x350
[  846.343616][T18451]  ? __pfx_do_futex+0x10/0x10
[  846.343634][T18451]  ? fput+0x9b/0xd0
[  846.343654][T18451]  ? __sys_sendmsg+0x18c/0x220
[  846.343678][T18451]  __x64_sys_futex+0x1e0/0x4c0
[  846.343698][T18451]  ? __pfx___x64_sys_futex+0x10/0x10
[  846.343723][T18451]  do_syscall_64+0xcd/0x4c0
[  846.343745][T18451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  846.343760][T18451] RIP: 0033:0x7f35cef8ec29
[  846.343772][T18451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  846.343789][T18451] RSP: 002b:00007f35cfef60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  846.343805][T18451] RAX: ffffffffffffffda RBX: 00007f35cf1d5fa8 RCX: 00007f35cef8ec29
[  846.343815][T18451] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f35cf1d5fa8
[  846.343824][T18451] RBP: 00007f35cf1d5fa0 R08: 0000000000000000 R09: 0000000000000000
[  846.343834][T18451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  846.343843][T18451] R13: 00007f35cf1d6038 R14: 00007fff3be297a0 R15: 00007fff3be29888
[  846.343861][T18451]  </TASK>
[  846.914336][T17482] Bluetooth: hci9: command tx timeout
[  846.998183][T18461] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  847.412108][T18464] zero sized request
[  847.503185][T18467] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  847.519765][T18468] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:6: corrupted xattr entries
[  847.785347][T18477] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:1: corrupted xattr entries
[  847.866939][T18479] openvswitch: ovs_: Dropping previously announced user features
[  848.021743][T18480] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  848.289750][T18484] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1312: comm kworker/u11:4: corrupted xattr entries
[  848.995356][T17482] Bluetooth: hci9: command tx timeout
[  849.051500][T18492] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  851.026127][T18516] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2914'.
[  851.076457][T17482] Bluetooth: hci9: command tx timeout
[  851.132995][T18519] EXT4-fs error: 1 callbacks suppressed
[  851.133014][T18519] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  851.305591][T18523] ptrace attach of "./syz-executor exec"[18524] was attempted by "./syz-executor exec"[18523]
[  852.155481][T18528] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  852.267293][T18531] openvswitch: ovs_: Dropping previously announced user features
[  853.174089][T18534] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  854.200310][T18542] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  855.221692][T18549] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  856.247562][T18560] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  857.275248][T18567] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  857.674230][T18569] netlink: 'syz.0.2926': attribute type 2 has an invalid length.
[  858.295448][T18573] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  858.840501][   T31] INFO: task syz-executor:16316 blocked for more than 143 seconds.
[  858.848452][   T31]       Tainted: G     U              syzkaller #0
[  858.870253][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  858.890255][   T31] task:syz-executor    state:D stack:23752 pid:16316 tgid:16316 ppid:1      task_flags:0x480140 flags:0x00004006
[  858.902753][   T31] Call Trace:
[  858.906054][   T31]  <TASK>
[  858.908999][   T31]  __schedule+0x1190/0x5de0
[  858.914082][   T31]  ? __lock_acquire+0x62e/0x1ce0
[  858.919072][   T31]  ? __pfx___schedule+0x10/0x10
[  858.950683][   T31]  ? find_held_lock+0x2b/0x80
[  858.955498][   T31]  ? schedule+0x2d7/0x3a0
[  858.959857][   T31]  schedule+0xe7/0x3a0
[  858.974579][   T31]  schedule_timeout+0x257/0x290
[  858.979493][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  859.438709][T18580] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  859.470584][   T31]  ? mark_held_locks+0x49/0x80
[  859.483774][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  859.499455][   T31]  __wait_for_common+0x2fc/0x4e0
[  859.504776][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  859.510183][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  859.525915][   T31]  remove_one+0x312/0x420
[  859.530306][   T31]  ? find_next_child+0x18f/0x280
[  859.545965][   T31]  __simple_recursive_removal+0x158/0x610
[  859.570630][   T31]  ? __pfx_remove_one+0x10/0x10
[  859.600620][   T31]  debugfs_remove+0x5d/0x80
[  859.605192][   T31]  nsim_dev_health_exit+0x3b/0xe0
[  859.610262][   T31]  nsim_dev_reload_destroy+0x144/0x4d0
[  859.630880][   T31]  nsim_drv_remove+0x52/0x1d0
[  859.635618][   T31]  ? __pfx_nsim_bus_remove+0x10/0x10
[  859.650803][   T31]  device_remove+0xcb/0x170
[  859.655398][   T31]  device_release_driver_internal+0x44b/0x620
[  859.670995][   T31]  bus_remove_device+0x22f/0x420
[  859.675995][   T31]  device_del+0x396/0x9f0
[  859.680365][   T31]  ? __pfx_device_del+0x10/0x10
[  859.700686][   T31]  device_unregister+0x1d/0xc0
[  859.705524][   T31]  del_device_store+0x355/0x4a0
[  859.710415][   T31]  ? __pfx_del_device_store+0x10/0x10
[  859.730675][   T31]  ? find_held_lock+0x2b/0x80
[  859.735414][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  859.740288][   T31]  ? __pfx_del_device_store+0x10/0x10
[  859.760811][   T31]  bus_attr_store+0x74/0xb0
[  859.765380][   T31]  ? __pfx_bus_attr_store+0x10/0x10
[  859.771313][   T31]  sysfs_kf_write+0xef/0x150
[  859.775944][   T31]  kernfs_fop_write_iter+0x3ac/0x570
[  859.781681][   T31]  ? __pfx_sysfs_kf_write+0x10/0x10
[  859.787066][   T31]  vfs_write+0x7d3/0x11d0
[  859.792126][   T31]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  859.798321][   T31]  ? __pfx_vfs_write+0x10/0x10
[  859.803585][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  859.808812][   T31]  ? find_held_lock+0x2b/0x80
[  859.814100][   T31]  ksys_write+0x12a/0x250
[  859.818860][   T31]  ? __pfx_ksys_write+0x10/0x10
[  859.824193][   T31]  do_syscall_64+0xcd/0x4c0
[  859.828904][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  859.837332][   T31] RIP: 0033:0x7f684098d6df
[  859.842026][   T31] RSP: 002b:00007ffe974eb4b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  859.850607][   T31] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f684098d6df
[  859.858998][   T31] RDX: 0000000000000001 RSI: 00007ffe974eb500 RDI: 0000000000000005
[  859.867564][   T31] RBP: 00007f6840a130e9 R08: 0000000000000000 R09: 00007ffe974eb307
[  859.876913][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  859.885179][   T31] R13: 00007ffe974eb500 R14: 00007f6841704620 R15: 0000000000000003
[  859.893652][   T31]  </TASK>
[  859.896710][   T31] INFO: task syz.1.2424:16404 blocked for more than 144 seconds.
[  859.904988][   T31]       Tainted: G     U              syzkaller #0
[  859.911800][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  859.920479][   T31] task:syz.1.2424      state:D stack:26968 pid:16404 tgid:16399 ppid:16095  task_flags:0x400040 flags:0x00004004
[  859.932785][   T31] Call Trace:
[  859.936075][   T31]  <TASK>
[  859.939021][   T31]  __schedule+0x1190/0x5de0
[  859.944118][   T31]  ? __lock_acquire+0x62e/0x1ce0
[  859.949094][   T31]  ? __pfx___schedule+0x10/0x10
[  859.954513][   T31]  ? find_held_lock+0x2b/0x80
[  859.959229][   T31]  ? schedule+0x2d7/0x3a0
[  859.964070][   T31]  ? devlink_health_report+0x3ba/0x9c0
[  859.969555][   T31]  schedule+0xe7/0x3a0
[  859.974145][   T31]  schedule_preempt_disabled+0x13/0x30
[  859.979632][   T31]  __mutex_lock+0x81b/0x1060
[  859.991230][   T31]  ? devlink_health_report+0x3ba/0x9c0
[  859.996740][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  860.020829][   T31]  ? devlink_health_report+0x3ba/0x9c0
[  860.026344][   T31]  devlink_health_report+0x3ba/0x9c0
[  860.040842][   T31]  ? __pfx_devlink_health_report+0x10/0x10
[  860.046695][   T31]  ? _copy_from_user+0x59/0xd0
[  860.060807][   T31]  nsim_dev_health_break_write+0x166/0x210
[  860.066675][   T31]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  860.110856][   T31]  full_proxy_write+0x12e/0x1a0
[  860.115777][   T31]  ? __pfx_full_proxy_write+0x10/0x10
[  860.145231][   T31]  vfs_write+0x29d/0x11d0
[  860.149639][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  860.180514][   T31]  ? __pfx_vfs_write+0x10/0x10
[  860.187910][   T31]  ? __fget_files+0x20e/0x3c0
[  860.200947][   T31]  ksys_write+0x12a/0x250
[  860.205332][   T31]  ? __pfx_ksys_write+0x10/0x10
[  860.210215][   T31]  do_syscall_64+0xcd/0x4c0
[  860.220950][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  860.226893][   T31] RIP: 0033:0x7f5330f8ec29
[  860.231406][   T31] RSP: 002b:00007f5331ed7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  860.239833][   T31] RAX: ffffffffffffffda RBX: 00007f53311d6090 RCX: 00007f5330f8ec29
[  860.247924][   T31] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000005
[  860.260951][   T31] RBP: 00007f5331011e41 R08: 0000000000000000 R09: 0000000000000000
[  860.268969][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  860.280970][   T31] R13: 00007f53311d6128 R14: 00007f53311d6090 R15: 00007ffc73c18b58
[  860.289004][   T31]  </TASK>
[  860.295232][   T31] 
[  860.295232][   T31] Showing all locks held in the system:
[  860.303052][   T31] 2 locks held by ksoftirqd/0/15:
[  860.308085][   T31]  #0: ffff8880b843a458 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  860.326230][   T31]  #1: ffff8880b8424088 (psi_seq){-.-.}-{0:0}, at: __schedule+0x1861/0x5de0
[  860.335139][   T31] 1 lock held by khungtaskd/31:
[  860.339995][   T31]  #0: ffffffff8e5c1420 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  860.360766][   T31] 2 locks held by kworker/u11:6/16232:
[  860.366375][   T31] 7 locks held by syz-executor/16316:
[  860.380960][   T31]  #0: ffff88807c4b6428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  860.390010][   T31]  #1: ffff88807d68fc88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  860.399971][   T31]  #2: ffff888027d20788 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  860.410129][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  860.420613][   T31]  #4: ffff88807e78e0e8 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xa4/0x620
[  860.431426][   T31]  #5: ffff88807e78f250 (&devlink->lock_key#4){+.+.}-{4:4}, at: nsim_drv_remove+0x4a/0x1d0
[  860.448257][   T31]  #6: ffff888082f79090 (&sb->s_type->i_mutex_key#3/2){+.+.}-{4:4}, at: __simple_recursive_removal+0x354/0x610
[  860.460206][   T31] 3 locks held by syz.1.2424/16404:
[  860.466627][   T31]  #0: ffff88807d611cf8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  860.473115][T18582] EXT4-fs error (device sda1): xattr_find_entry:333: inode #1277: comm init: corrupted xattr entries
[  860.475876][   T31]  #1: ffff888140ef0428 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  860.496334][   T31]  #2: ffff88807e78f250 (&devlink->lock_key#4){+.+.}-{4:4}, at: devlink_health_report+0x3ba/0x9c0
[  860.507601][   T31] 4 locks held by syz-executor/16605:
[  860.513327][   T31]  #0: ffff88807c4b6428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  860.522513][   T31]  #1: ffff88805a6b5088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  860.532412][   T31]  #2: ffff888027d20788 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  860.542674][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  860.553101][   T31] 1 lock held by syz.0.2487/16675:
[  860.558226][   T31]  #0: ffffffff8e5cc880 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6e0
[  860.568213][   T31] 4 locks held by syz-executor/17200:
[  860.573650][   T31]  #0: ffff88807c4b6428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  860.582797][   T31]  #1: ffff88807d696888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  860.592637][   T31]  #2: ffff888027d20788 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  860.602864][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  860.613244][   T31] 4 locks held by syz-executor/17514:
[  860.618600][   T31]  #0: ffff88807c4b6428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  860.627632][   T31]  #1: ffff88805a5f6888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  860.637453][   T31]  #2: ffff888027d20788 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  860.647539][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  860.657964][   T31] 4 locks held by syz-executor/18074:
[  860.663374][   T31]  #0: ffff88807c4b6428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  860.672452][   T31]  #1: ffff888033497488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  860.682306][   T31]  #2: ffff888027d20788 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  860.692409][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  860.702791][   T31] 4 locks held by syz-executor/18410:
[  860.708157][   T31]  #0: ffff88807c4b6428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  860.717192][   T31]  #1: ffff88806521c488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  860.726993][   T31]  #2: ffff888027d20788 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  860.737058][   T31]  #3: ffffffff8f8f78c8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[  860.747405][   T31] 1 lock held by syz.3.2913/18501:
[  860.752574][   T31]  #0: ffff888082f79090 (&sb->s_type->i_mutex_key#3){++++}-{4:4}, at: path_openat+0x818/0x2cb0
[  860.763160][   T31] 1 lock held by syz.0.2926/18571:
[  860.768267][   T31]  #0: ffffffff8e5cc9b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x284/0x3c0
[  860.778355][   T31] 
[  860.780706][   T31] =============================================
[  860.780706][   T31] 
[  860.789446][   T31] NMI backtrace for cpu 1
[  860.789466][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  860.789501][   T31] Tainted: [U]=USER
[  860.789510][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  860.789523][   T31] Call Trace:
[  860.789532][   T31]  <TASK>
[  860.789542][   T31]  dump_stack_lvl+0x116/0x1f0
[  860.789581][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  860.789609][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  860.789643][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  860.789679][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  860.789712][   T31]  watchdog+0xf0e/0x1260
[  860.789754][   T31]  ? __pfx_watchdog+0x10/0x10
[  860.789784][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  860.789821][   T31]  ? __kthread_parkme+0x19e/0x250
[  860.789852][   T31]  ? __pfx_watchdog+0x10/0x10
[  860.789885][   T31]  kthread+0x3c5/0x780
[  860.789920][   T31]  ? __pfx_kthread+0x10/0x10
[  860.789956][   T31]  ? rcu_is_watching+0x12/0xc0
[  860.789981][   T31]  ? __pfx_kthread+0x10/0x10
[  860.790016][   T31]  ret_from_fork+0x56d/0x730
[  860.790051][   T31]  ? __pfx_kthread+0x10/0x10
[  860.790086][   T31]  ret_from_fork_asm+0x1a/0x30
[  860.790131][   T31]  </TASK>
[  860.790141][   T31] Sending NMI from CPU 1 to CPUs 0:
[  860.919867][    C0] NMI backtrace for cpu 0
[  860.919890][    C0] CPU: 0 UID: 0 PID: 15698 Comm: kworker/u11:4 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  860.919926][    C0] Tainted: [U]=USER
[  860.919934][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  860.919950][    C0] Workqueue: ext4-rsv-conversion ext4_end_io_rsv_work
[  860.919983][    C0] RIP: 0010:__es_remove_extent+0x439/0x1750
[  860.920012][    C0] Code: ff df 48 01 c1 c7 01 00 00 00 00 c7 41 08 00 00 00 00 48 c7 41 10 00 00 00 00 48 c7 41 18 00 00 00 00 48 8b 84 24 78 01 00 00 <65> 48 2b 05 57 3c 64 11 0f 85 aa 10 00 00 48 81 c4 80 01 00 00 89
[  860.920038][    C0] RSP: 0018:ffffc90019787560 EFLAGS: 00000286
[  860.920056][    C0] RAX: 12e913aa6e92e200 RBX: ffff88808258bd58 RCX: fffff520032f0eb8
[  860.920072][    C0] RDX: ffff8880764c1e00 RSI: ffffffff82722372 RDI: 0000000000000005
[  860.920089][    C0] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000001
[  860.920112][    C0] R10: 0000000000000001 R11: 0000000000002c10 R12: 0000000000000b20
[  860.920128][    C0] R13: ffff88807f9f0c28 R14: ffff88814e892000 R15: 0000000000000000
[  860.920145][    C0] FS:  0000000000000000(0000) GS:ffff8881246ba000(0000) knlGS:0000000000000000
[  860.920168][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  860.920185][    C0] CR2: 00005631705965c0 CR3: 0000000031c32000 CR4: 00000000003526f0
[  860.920203][    C0] Call Trace:
[  860.920212][    C0]  <TASK>
[  860.920225][    C0]  ? __lock_acquire+0xb97/0x1ce0
[  860.920260][    C0]  ? __pfx___es_remove_extent+0x10/0x10
[  860.920291][    C0]  ? do_raw_write_lock+0x11c/0x3a0
[  860.920330][    C0]  ? __pfx_do_raw_write_lock+0x10/0x10
[  860.920372][    C0]  ext4_es_insert_extent+0x484/0x11b0
[  860.920403][    C0]  ? __pfx_ext4_es_insert_extent+0x10/0x10
[  860.920438][    C0]  ? __pfx_down_write+0x10/0x10
[  860.920461][    C0]  ? ext4_es_lookup_extent+0xc7/0xc50
[  860.920490][    C0]  ext4_map_blocks+0xad5/0x1400
[  860.920522][    C0]  ? __pfx_ext4_map_blocks+0x10/0x10
[  860.920556][    C0]  ? __pfx_start_this_handle+0x10/0x10
[  860.920601][    C0]  ext4_convert_unwritten_extents+0x2ab/0x4c0
[  860.920644][    C0]  ? __pfx_ext4_convert_unwritten_extents+0x10/0x10
[  860.920688][    C0]  ? __ext4_journal_start_reserved+0x243/0x540
[  860.920721][    C0]  ? ext4_convert_unwritten_io_end_vec+0x3d/0x280
[  860.920764][    C0]  ext4_convert_unwritten_io_end_vec+0x127/0x280
[  860.920809][    C0]  ext4_end_io_end+0xd5/0x4a0
[  860.920831][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  860.920868][    C0]  ext4_end_io_rsv_work+0x205/0x380
[  860.920895][    C0]  ? __pfx_ext4_end_io_rsv_work+0x10/0x10
[  860.920922][    C0]  ? rcu_is_watching+0x12/0xc0
[  860.920950][    C0]  process_one_work+0x9cf/0x1b70
[  860.920997][    C0]  ? __pfx_process_one_work+0x10/0x10
[  860.921040][    C0]  ? assign_work+0x1a0/0x250
[  860.921077][    C0]  worker_thread+0x6c8/0xf10
[  860.921110][    C0]  ? __kthread_parkme+0x19e/0x250
[  860.921141][    C0]  ? __pfx_worker_thread+0x10/0x10
[  860.921163][    C0]  kthread+0x3c5/0x780
[  860.921197][    C0]  ? __pfx_kthread+0x10/0x10
[  860.921231][    C0]  ? rcu_is_watching+0x12/0xc0
[  860.921255][    C0]  ? __pfx_kthread+0x10/0x10
[  860.921291][    C0]  ret_from_fork+0x56d/0x730
[  860.921328][    C0]  ? __pfx_kthread+0x10/0x10
[  860.921363][    C0]  ret_from_fork_asm+0x1a/0x30
[  860.921400][    C0]  </TASK>
[  860.926695][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  860.926718][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  860.926752][   T31] Tainted: [U]=USER
[  860.926761][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  860.926775][   T31] Call Trace:
[  860.926785][   T31]  <TASK>
[  860.926795][   T31]  dump_stack_lvl+0x3d/0x1f0
[  860.926834][   T31]  vpanic+0x6e8/0x7a0
[  860.926868][   T31]  ? __pfx_vpanic+0x10/0x10
[  860.926904][   T31]  ? __pfx___irq_work_queue_local+0x10/0x10
[  860.926944][   T31]  panic+0xca/0xd0
[  860.926975][   T31]  ? __pfx_panic+0x10/0x10
[  860.927009][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  860.927044][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b1/0x300
[  860.927075][   T31]  ? watchdog+0xd78/0x1260
[  860.927107][   T31]  ? watchdog+0xd6b/0x1260
[  860.927142][   T31]  watchdog+0xd89/0x1260
[  860.927180][   T31]  ? __pfx_watchdog+0x10/0x10
[  860.927212][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  860.927249][   T31]  ? __kthread_parkme+0x19e/0x250
[  860.927280][   T31]  ? __pfx_watchdog+0x10/0x10
[  860.927314][   T31]  kthread+0x3c5/0x780
[  860.927353][   T31]  ? __pfx_kthread+0x10/0x10
[  860.927389][   T31]  ? rcu_is_watching+0x12/0xc0
[  860.927414][   T31]  ? __pfx_kthread+0x10/0x10
[  860.927449][   T31]  ret_from_fork+0x56d/0x730
[  860.927483][   T31]  ? __pfx_kthread+0x10/0x10
[  860.927517][   T31]  ret_from_fork_asm+0x1a/0x30
[  860.927560][   T31]  </TASK>
[  861.380420][   T31] Kernel Offset: disabled
[  861.384727][   T31] Rebooting in 86400 seconds..